| name | vscode-bug-hunter |
| description | This skill provides systematic bug detection and discovery capabilities for VS Code extensions. Use when searching for hidden bugs, analyzing code for potential issues, investigating suspicious behavior, performing code audits, or proactively finding bugs before they manifest. Covers static analysis patterns, dynamic analysis techniques, code smell detection, and systematic codebase investigation. Use when this capability is needed. |
| metadata | {"author":"s-hiraoku"} |
VS Code Bug Hunter
Overview
This skill enables systematic discovery and detection of bugs in VS Code extensions before they cause problems in production. It provides structured workflows for proactively finding issues through static analysis, pattern matching, code auditing, and systematic investigation techniques.
When to Use This Skill
- Proactively searching for bugs in extension code
- Auditing code for potential issues before release
- Investigating suspicious behavior patterns
- Analyzing code for memory leaks, race conditions, or security vulnerabilities
- Performing systematic code reviews
- Finding bugs that haven't manifested yet
- Preparing for release by identifying hidden issues
Bug Hunting vs Debugging
| Bug Hunting (This Skill) | Debugging (vscode-extension-debugger) |
|---|
| Proactive discovery | Reactive fixing |
| Find bugs before they manifest | Fix bugs after they occur |
| Static and dynamic analysis | Error investigation |
| Code auditing | Stack trace analysis |
| Pattern-based detection | Reproduction-based fixing |
Bug Detection Workflow
Phase 1: Reconnaissance
Gather intelligence about the codebase before hunting.
1.1 Map the Codebase Structure
find src -name "*.ts" | head -20
grep -r "export class" src/ --include="*.ts" | head -20
grep -r "activate\|deactivate" src/ --include="*.ts"
1.2 Identify High-Risk Areas
High-risk areas are more likely to contain bugs:
| Area | Risk Level | Reason |
|---|
| Async operations | High | Race conditions, unhandled rejections |
| Event handlers | High | Memory leaks, missing dispose |
| WebView communication | High | Message timing, state sync |
| File I/O | Medium | Error handling, permissions |
| User input processing | Medium | Validation, injection |
| Configuration handling | Medium | Type mismatches, defaults |
| UI rendering | Low | Visual issues, layout |
1.3 Review Recent Changes
git log --oneline -20
git diff --name-only HEAD~10
git diff HEAD~5 -- src/path/to/suspicious/file.ts
Phase 2: Static Analysis
Analyze code without executing it.
2.1 Pattern-Based Bug Detection
Search for known bug patterns:
Memory Leak Patterns
Race Condition Patterns
Null/Undefined Patterns
2.2 Automated Search Commands
grep -rn "addEventListener\|setInterval\|setTimeout" src/ --include="*.ts"
grep -rn "catch\s*{\s*}" src/ --include="*.ts"
grep -rn "TODO\|FIXME\|HACK\|BUG\|XXX" src/ --include="*.ts"
grep -rn "console\.\(log\|debug\|info\)" src/ --include="*.ts"
grep -rn "async.*{" src/ --include="*.ts" | head -20
2.3 TypeScript Compiler Analysis
npx tsc --noEmit --strict
npx tsc --noEmit --noImplicitAny
npx tsc --noEmit --noUnusedLocals --noUnusedParameters
Phase 3: Semantic Analysis
Understand code behavior beyond syntax.
3.1 Control Flow Analysis
Trace execution paths to find issues:
3.2 State Analysis
Track state changes:
3.3 Lifecycle Analysis
Verify proper lifecycle management:
Phase 4: Dynamic Analysis
Analyze code behavior during execution.
4.1 Runtime Monitoring
Add temporary instrumentation:
const original = object.suspiciousMethod;
object.suspiciousMethod = function(...args) {
console.log('[MONITOR] suspiciousMethod called with:', args);
const result = original.apply(this, args);
console.log('[MONITOR] suspiciousMethod returned:', result);
return result;
};
4.2 Memory Profiling
const instances = new WeakSet();
const originalConstructor = SuspiciousClass;
SuspiciousClass = class extends originalConstructor {
constructor(...args) {
super(...args);
instances.add(this);
console.log('[MEMORY] New instance created, count:', instances.size);
}
};
4.3 Performance Profiling
const start = performance.now();
await suspiciousOperation();
const duration = performance.now() - start;
console.log(`[PERF] Operation took ${duration}ms`);
Phase 5: Hypothesis Testing
Form and test hypotheses about potential bugs.
5.1 Hypothesis Formation
Template:
IF [condition/action]
THEN [expected buggy behavior]
BECAUSE [root cause theory]
Example:
IF rapid terminal creation requests are made
THEN duplicate terminals may be created
BECAUSE there is no atomic lock on the creation operation
5.2 Test Design
describe('Bug Hypothesis: Rapid terminal creation causes duplicates', () => {
it('should handle concurrent creation requests', async () => {
const manager = new TerminalManager();
const results = await Promise.all([
manager.createTerminal(),
manager.createTerminal(),
manager.createTerminal()
]);
const uniqueIds = new Set(results.map(t => t.id));
expect(uniqueIds.size).toBe(results.length);
});
});
Bug Categories Reference
Category 1: Resource Leaks
Memory Leaks
- Event listeners not removed
- Timers not cleared
- References not nullified
- Closures capturing large objects
Handle Leaks
- File handles not closed
- WebView panels not disposed
- Terminal processes not killed
- Watchers not stopped
Category 2: Concurrency Issues
Race Conditions
- Check-then-act patterns
- Shared mutable state
- Non-atomic operations
- Missing synchronization
Deadlocks
- Circular dependencies
- Nested locks
- Resource contention
Category 3: State Issues
Invalid State
- Uninitialized variables
- Stale state references
- Inconsistent state transitions
- Missing state validation
State Corruption
- Concurrent modification
- Partial updates
- Missing rollback on failure
Category 4: Error Handling Issues
Missing Error Handling
- Uncaught exceptions
- Unhandled promise rejections
- Silent failures
- Missing validation
Incorrect Error Handling
- Swallowed errors
- Wrong error type caught
- Incomplete cleanup on error
Category 5: Security Issues
Injection Vulnerabilities
- Command injection
- Path traversal
- XSS in WebView
Information Disclosure
- Sensitive data in logs
- Error messages revealing internals
- Debug information in production
Quick Reference Commands
Find Memory Leaks
grep -rn "addEventListener\|on.*=.*function" src/ --include="*.ts" | grep -v "dispose\|remove"
Find Missing Error Handling
grep -rn "\.then\(" src/ --include="*.ts" | grep -v "\.catch\("
Find Potential Race Conditions
grep -rn "async.*{" src/ --include="*.ts" -A 5 | grep -E "if.*\{|while.*\{"
Find Security Issues
grep -rn "eval\|innerHTML\|child_process\|exec\(" src/ --include="*.ts"
Find Code Smells
grep -rn "any\|@ts-ignore\|@ts-nocheck" src/ --include="*.ts"
Investigation Workflow Summary
- Reconnaissance: Map codebase, identify high-risk areas
- Static Analysis: Search for known bug patterns
- Semantic Analysis: Understand control flow and state
- Dynamic Analysis: Monitor runtime behavior
- Hypothesis Testing: Form and test bug theories
- Documentation: Record findings for fixing
Resources
For detailed reference documentation:
references/detection-patterns.md - Comprehensive bug pattern catalogreferences/analysis-tools.md - Static and dynamic analysis tool guidereferences/investigation-checklist.md - Systematic investigation procedures
Converted and distributed by TomeVault — claim your Tome and manage your conversions.
