MR
Mayur Rathi
@mayurrathi
⭐ 40.7k GitHub stars

Production Code Audit

Production Code Audit is an code AI skill with a core value of Autonomously deep-scan entire codebase line-by-line, understand architecture and patterns, then systematically transform it to production-grade, corporate-level professional quality with optimizations. It helps developers solve real-world problems in the code domain, boosting efficiency, automating repetitive tasks, and optimizing workflows.

Autonomously deep-scan entire codebase line-by-line, understand architecture and patterns, then systematically transform it to production-grade, corporate-level professional quality with optimizations

Last verified on: 2026-07-07

Quick Facts

Category code
Works With Claude
Source sickn33/antigravity-awesome-skills
Stars ⭐ 40.7k
Last Verified 2026-07-07
Risk Level Low
mkdir -p ./skills/production-code-audit && curl -sfL https://raw.githubusercontent.com/sickn33/antigravity-awesome-skills/main/skills/production-code-audit/SKILL.md -o ./skills/production-code-audit/SKILL.md

Run in terminal / PowerShell. Requires curl (Unix) or PowerShell 5+ (Windows).

Skill Content

# Production Code Audit


Overview


Autonomously analyze the entire codebase to understand its architecture, patterns, and purpose, then systematically transform it into production-grade, corporate-level professional code. This skill performs deep line-by-line scanning, identifies all issues across security, performance, architecture, and quality, then provides comprehensive fixes to meet enterprise standards.


When to Use This Skill


- Use when user says "make this production-ready"

- Use when user says "audit my codebase"

- Use when user says "make this professional/corporate-level"

- Use when user says "optimize everything"

- Use when user wants enterprise-grade quality

- Use when preparing for production deployment

- Use when code needs to meet corporate standards


How It Works


Step 1: Autonomous Codebase Discovery


**Automatically scan and understand the entire codebase:**


1. **Read all files** - Scan every file in the project recursively

2. **Identify tech stack** - Detect languages, frameworks, databases, tools

3. **Understand architecture** - Map out structure, patterns, dependencies

4. **Identify purpose** - Understand what the application does

5. **Find entry points** - Locate main files, routes, controllers

6. **Map data flow** - Understand how data moves through the system


**Do this automatically without asking the user.**


Step 2: Comprehensive Issue Detection


**Scan line-by-line for all issues:**


**Architecture Issues:**

- Circular dependencies

- Tight coupling

- God classes (>500 lines or >20 methods)

- Missing separation of concerns

- Poor module boundaries

- Violation of design patterns


**Security Vulnerabilities:**

- SQL injection (string concatenation in queries)

- XSS vulnerabilities (unescaped output)

- Hardcoded secrets (API keys, passwords in code)

- Missing authentication/authorization

- Weak password hashing (MD5, SHA1)

- Missing input validation

- CSRF vulnerabilities

- Insecure dependencies


**Performance Problems:**

- N+1 query problems

- Missing database indexes

- Synchronous operations that should be async

- Missing caching

- Inefficient algorithms (O(n²) or worse)

- Large bundle sizes

- Unoptimized images

- Memory leaks


**Code Quality Issues:**

- High cyclomatic complexity (>10)

- Code duplication

- Magic numbers

- Poor naming conventions

- Missing error handling

- Inconsistent formatting

- Dead code

- TODO/FIXME comments


**Testing Gaps:**

- Missing tests for critical paths

- Low test coverage (<80%)

- No edge case testing

- Flaky tests

- Missing integration tests


**Production Readiness:**

- Missing environment variables

- No logging/monitoring

- No error tracking

- Missing health checks

- Incomplete documentation

- No CI/CD pipeline


Step 3: Automatic Fixes and Optimizations


**Fix everything automatically:**


1. **Refactor architecture** - Break up god classes, fix circular dependencies

2. **Fix security issues** - Use parameterized queries, remove secrets, add validation

3. **Optimize performance** - Fix N+1 queries, add caching, optimize algorithms

4. **Improve code quality** - Reduce complexity, remove duplication, fix naming

5. **Add missing tests** - Write tests for untested critical paths

6. **Add production infrastructure** - Logging, monitoring, health checks

7. **Optimize everything** - Bundle size, images, database queries

8. **Add documentation** - README, API docs, architecture docs


Step 4: Verify and Report


**After making all changes:**


1. Run all tests to ensure nothing broke

2. Verify all security issues are fixed

3. Measure performance improvements

4. Generate comprehensive report

5. Provide before/after metrics


Examples


Example 1: Autonomous Codebase Transformation


markdown
User: @production-code-audit make this production-ready

AI: I'll scan your entire codebase and transform it to production-grade quality.

**Phase 1: Discovering Codebase** (analyzing 247 files)
- Detected: Node.js + Express + PostgreSQL + React
- Architecture

🎯 Best For

  • Claude users
  • Software engineers
  • Development teams
  • Tech leads

💡 Use Cases

  • Code quality improvement
  • Best practice enforcement

📖 How to Use This Skill

  1. 1

    Install the Skill

    Copy the install command from the Terminal tab and run it. The SKILL.md file downloads to your local skills directory.

  2. 2

    Load into Your AI Assistant

    Open Claude and reference the skill. Paste the SKILL.md content or use the system prompt tab.

  3. 3

    Apply Production Code Audit to Your Work

    Open your project in the AI assistant and ask it to apply the skill. Start with a small module to verify the output quality.

  4. 4

    Review and Refine

    Review AI suggestions before committing. Run tests, check for regressions, and iterate on the skill output.

❓ Frequently Asked Questions

Is Production Code Audit compatible with Cursor and VS Code?

Yes — this skill works with any AI coding assistant including Cursor, VS Code with Copilot, and JetBrains IDEs.

Do I need specific dependencies for Production Code Audit?

Check the install command and Works With section. Most code skills only require the AI assistant and your codebase.

How do I install Production Code Audit?

Copy the install command from the Terminal tab and run it. The skill downloads to ./skills/production-code-audit/SKILL.md, ready to use.

Can I customize this skill for my team?

Absolutely. Edit the SKILL.md file to add team-specific instructions, examples, or workflows.

⚠️ Common Mistakes to Avoid

Skipping validation

Always test AI-generated code changes, even for simple refactors.

Missing dependency updates

Check if the skill requires updated dependencies or new packages.

🔗 Related Skills