一键导入
codeql-fix
Run CodeQL security/quality analysis and fix findings. Use when the user asks to run CodeQL, security scan, static analysis, or fix CodeQL findings.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Run CodeQL security/quality analysis and fix findings. Use when the user asks to run CodeQL, security scan, static analysis, or fix CodeQL findings.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Upgrade outdated npm dependencies in the pnpm monorepo (recursive update, latest, targeted packages). Use when the user asks to upgrade dependencies, bump packages, refresh lockfile, pnpm update, outdated packages, latest versions, or dependency refresh—not monorepo release versions.
Format code, run linters and static analysis, and find unused code (ESLint + Knip). Use when the user asks to fix lint, format code, run formatters, find dead code, unused exports, run knip, fix style, tidy code, or run eslint --fix.
Manage Architecture Decision Records (ADRs). Use this to initialize, create, list, and link ADRs to document architectural evolution. Requires 'adr-tools' to be installed.
Use at the end of a coding session to summarize outcomes, failures, inefficiencies, and root causes, then output a concise postmortem report with ranked improvements for next time. Output only in chat; do not edit project files unless the user explicitly asks. Skip nit-picks and one-off mistakes.
Interactively bump package versions for the parser package. Use when the user asks to bump version, increment version, set release version, or release dbt-artifacts-parser.
Regenerates TypeScript types from dbt artifact JSON schemas. Use when the user asks to update parsers, sync with upstream, refresh types, or regenerate parser types from existing schemas.
| name | codeql-fix |
| description | Run CodeQL security/quality analysis and fix findings. Use when the user asks to run CodeQL, security scan, static analysis, or fix CodeQL findings. |
| compatibility | Requires CodeQL CLI on PATH (e.g. brew install codeql). |
Activate this skill when the user says or implies:
Run from the repository root:
pnpm codeql
codeql-db/) and runs analysiscodeql-results.sarif (view with SARIF Viewer in VS Code)Install: CodeQL CLI (e.g. brew install codeql).
For local codeql database create --codescanning-config=<file> (custom paths-ignore, query suites, etc.), render a YAML file from this skill’s template:
.claude/skills/codeql-fix/scripts/render-code-scanning-config.sh "$(git rev-parse --show-toplevel)" /tmp/codeql-config.yml
See references/code-scanning-config.md and the official code scanning configuration reference.
If SARIF findings remain:
codeql-results.sarif or the CLI output for reported findings.pnpm codeql.