
from marvin-template986
Autonomous project hardening audit: security, AI-specific risks, test coverage, code quality, and decoupling recommendations for repositories.
This skill provides an autonomous hardening audit for software repositories. It inspects code, configuration, and project structure to find real issues—not hypotheticals—covering security, AI-specific data/exposure risks, test coverage gaps, code quality problems, and architectural coupling. The skill produces a prioritized scorecard, a batch plan for fixes, and optional issue creation guidance.
Invoke this skill before making a repo public, after a major refactor, when onboarding to a new codebase, or when you need a practical audit to prioritize remediation work. It’s appropriate for libraries, web apps, and backend services where code-level issues and dependency risks matter.
Agents with repository access and file-reading capabilities (code-review assistants, CI-integrated bots, or local analysis agents).
Project Hardening Audit skill — a purely instructional SKILL.md with no bundled scripts. Provides a structured 6-phase methodology for auditing repos (security, AI gaps, test coverage, code quality, decoupling). Well-written prompt template with clear scoring rubrics and output format, but lacks automation/tooling. No security concerns whatsoever.
No scripts present for execution testing. Static analysis only. Skill is essentially a detailed audit prompt — useful but not technically complex. The structured scoring and batching methodology is well-designed.