TypeScript Engineering

Use these rules when writing or editing TypeScript code. The goal is senior-level application engineering: clear ownership, precise types, explicit boundaries, small reviewable changes, and behavior that remains understandable after the original author leaves the room.

How To Use This Skill

Before changing TypeScript or TSX:

Read local project instructions first, including AGENTS.md, contributing docs, and nearby conventions.
Inspect the existing code shape before deciding on abstractions, dependencies, or file layout.
Make the smallest change that fully solves the request.
Keep runtime boundaries explicit: parse untrusted data at the edge, then pass trusted typed values inward.
Run the deterministic checks the project supports, such as typecheck, lint, focused tests, or format checks.

When reviewing TypeScript, lead with behavioral risks, broken contracts, weak validation, async/state bugs, missing tests, and type unsoundness. Keep style-only observations secondary unless they hide a real maintenance risk.

Core Principle

Preserve the system's important invariants before optimizing for convenience.

For meaningful changes, make the cause and effect visible:

What behavior changed.
What data crosses a boundary.
What assumptions the code relies on.
What evidence would show the change works.

Types should make invalid states harder to express, but they should not hide simple runtime behavior behind clever type machinery.

Change Shape

Make the smallest change that fully solves the problem.

Prefer changes that are easy to review, easy to revert, and easy to explain.

Keep edits scoped to the requested behavior.
Avoid unrelated refactors while changing behavior.
Let existing code style and module ownership guide the implementation.
When a local fix is enough, do not introduce a shared abstraction.
When the same bug appears in several places, fix the shared cause instead of patching symptoms independently.
If a change affects a public contract, persistence format, or cross-module API, make that explicit in code and tests.

Ownership And Boundaries

Code should live where its owner is obvious.

Keep behavior near the feature, domain, route, component, command, or adapter that owns it.
Import through narrow, intentional exports instead of reaching into another module's internals.
Prefer domain-named functions and files when the code has domain meaning.
Shared modules should exist because multiple real callers need the same stable behavior, not because code might be reusable.
Generic helper files are acceptable only for genuinely generic, low-level operations such as formatting, small collection transforms, date math, or string normalization.
Do not let helpers, utils, common, core, services, or managers become catch-all locations for domain behavior.
Separate external boundaries from internal logic: parse and validate at the edge, then pass trusted typed values inward.
Keep framework glue thin. Route handlers, controllers, UI units, CLI commands, and workers should delegate meaningful domain work to named functions.

Types And Schemas

Use TypeScript to model domain facts, not to decorate JavaScript.

Use type by default for application code.
Use interface only when openness is intentional: declaration merging, module augmentation, ambient declarations, or a public extension point.
Prefer precise domain types over broad primitives when the distinction matters.
Use discriminated unions for states, variants, and finite workflows.
Make impossible states unrepresentable when it stays readable.
Avoid any; use unknown at boundaries and narrow it deliberately.
Avoid type assertions unless they are close to a runtime check or a well-documented external guarantee.
Do not use clever generic types when a simple explicit type is clearer.
Let schemas define contracts at runtime boundaries, and infer TypeScript types from those schemas when the schema is the source of truth.
Do not duplicate the same contract as both a hand-written type and a schema unless there is a clear reason.

Null And Undefined

Use undefined for absence inside application code.

Prefer optional properties like foo?: number over foo: number | null.
Use null only when the external contract, database, protocol, or API explicitly distinguishes null from absence.
Keep raw boundary schemas faithful to external data: if an API can return null, parse it as null.
Normalize external null values to internal undefined at the boundary when the application does not need to preserve the distinction.
Do not pass null deeper into domain code just because an external API used it.
Do not blindly erase null when it carries meaning, such as "explicitly cleared", "known empty", or "intentionally unset".
Prefer exactOptionalPropertyTypes when the codebase can support it, so foo?: T means the property may be absent rather than casually assigned undefined.

Functions And Control Flow

Write functions that make the happy path and failure paths obvious.

Give functions one clear responsibility, but do not split code into tiny wrappers that only rename each other.
Prefer early returns for invalid, empty, or exceptional cases.
Keep branching explicit when business rules matter.
Avoid boolean parameters that change a function's mode; prefer separate named functions or an options object with a discriminant.
Avoid functions that both compute a value and cause unrelated side effects.
Prefer pure functions for calculations, transformations, filtering, parsing, and policy decisions.
Keep async boundaries visible: do not hide network, filesystem, database, or time-dependent work inside innocent-looking helpers.
Do not swallow errors silently. Either handle them with domain intent or let them propagate with useful context.
For discriminated unions, use exhaustive handling so new variants fail loudly during typecheck.
Use concurrency deliberately. Parallelize independent async work with Promise.all, but do not create hidden races around shared state or ordering.

Errors And Results

Choose the error shape by how callers can respond.

Throw for programmer errors, violated invariants, and failures the current layer cannot reasonably recover from.
Use a local typed union for expected domain outcomes that callers should branch on, such as validation failures, unavailable resources, declined actions, or recoverable external failures.
Do not introduce a Result library or rewrite an exception-based codebase around Result unless the codebase already uses that style or the benefit is concrete and broad.
Do not wrap every function in a Result type by default; use typed outcomes only when the caller has meaningful recovery branches.
Do not return null or undefined as a vague failure signal. Use a named union variant or throw.
Preserve useful context when rethrowing or wrapping errors.
Avoid catch blocks that only log and continue unless continuing is a deliberate domain decision.
Keep user-facing error messages separate from diagnostic details when security or UX matters.
At process, request, and job boundaries, convert unknown thrown values into structured errors.

Example:

type CreateUserOutcome =
  | { status: "created"; user: User }
  | { status: "email_taken" }
  | { status: "invalid_invite" };

Runtime Boundaries And Validation

Static types stop at runtime boundaries. Validate data when it enters the system.

Validate:

HTTP request bodies, params, query strings, and headers when used for behavior.
External API responses before relying on their shape.
Environment variables before application startup continues.
Persisted JSON blobs when reading them back.
Job, queue, message, webhook, and event payloads.
AI/model/tool outputs before treating them as structured data.

Guidelines:

Use a schema library such as Zod, Valibot, ArkType, or the project's existing choice; do not mix validation libraries casually.
Keep boundary schemas close to the boundary or domain that owns the contract.
Parse once at the edge, then pass trusted typed values inward.
Preserve raw external payloads when auditability or debugging matters.
Normalize awkward external shapes into cleaner internal types at the boundary.
Do not repeatedly re-validate trusted internal values through every layer.
Prefer explicit schema failures over defensive optional chaining deep in domain code.

Async, Effects, And State

Make side effects visible and intentional.

Keep network, filesystem, database, clock, random, and process-level effects near adapters or clearly named functions.
Pass dependencies explicitly when it improves testability or makes effects clearer.
Avoid hidden module-level mutable state unless it is truly process-wide configuration or a managed cache.
Treat time and randomness as dependencies in domain logic.
Use async/await for readable control flow; use promise chains only when they are clearer for composition.
Always handle or return promises; do not leave floating promises.
Use cancellation, timeouts, or abort signals for external calls when the runtime path can hang or outlive its caller.
Make retries, backoff, and idempotency explicit around external side effects.
Be careful with Promise.all: it is for independent work, not work that depends on sequencing or shared mutation.
Keep derived state derived; do not store duplicate mutable state unless there is a clear synchronization plan.

Data Modeling And Persistence

Do not pretend that every layer has the same data shape.

Distinguish external DTOs, persistence records, domain objects, and UI/view models when their meanings differ.
Avoid one giant User, Order, or Config type that is reused across unrelated boundaries.
Store durable data with enough version, timestamp, and source metadata to explain where it came from.
Treat persisted historical inputs and raw external outputs as append-only unless the domain explicitly allows correction.
Prefer explicit migrations or transformation functions when a stored shape changes.
Keep serialization and deserialization near the boundary that owns the format.
Do not let database nullability, API awkwardness, or UI convenience leak through every layer.
Use stable identifiers and explicit timestamps instead of relying on array positions, object key order, or implicit runtime timing.
Use readonly for data that should not be mutated after construction, especially shared config, parsed inputs, and domain snapshots.

Naming And Readability

Names should make code review easier.

Use domain nouns and verbs rather than generic technical verbs.
Prefer calculateInvoiceTotal, parseWebhookPayload, or selectVisibleItems over processData, handleResult, or formatPayload.
Name booleans as predicates, such as isArchived, hasPermission, or shouldRetry.
Name functions by the observable action they perform or value they return.
Avoid names that describe implementation mechanics instead of intent.
Avoid vague suffixes like Manager, Service, Helper, Util, Processor, and Handler unless the domain meaning is still clear.
Do not use abbreviations unless they are established in the domain or codebase.
Keep comments for why, tradeoffs, invariants, and non-obvious constraints; do not comment what the code already says.
When code needs a long comment to explain control flow, consider reshaping the code first.

Imports, Modules, And Dependencies

Make module relationships explicit and boring.

Prefer named exports for application code.
Avoid default exports except where the framework or existing convention expects them.
Avoid broad export * barrel files that hide ownership or expose internals.
A barrel is acceptable when it is a narrow, intentional public API for a module.
Keep dependency direction clear: framework glue may call domain code, but domain code should not import framework glue.
Do not introduce a package for something the standard library or existing dependency already handles well.
Do not add dependencies for tiny helpers.
Isolate side-effect imports, global setup, polyfills, and instrumentation in obvious entrypoint files.
Avoid cyclic imports; split by domain meaning instead of creating a generic shared dumping ground.
Prefer explicit relative or configured path imports that match the project convention; do not mix import styles casually.

Testing And Checks

Use tests and tooling to protect behavior, not to decorate the repo.

Prioritize tests for parsing, normalization, calculations, permissions, state transitions, data migrations, and bug fixes.
Prefer focused tests with fixed examples over broad snapshot tests that are hard to review.
Add regression tests when fixing a bug unless the cost is clearly disproportionate.
Test public behavior and important invariants more than private implementation details.
Mock at external boundaries; avoid mocking the function you are trying to prove.
For UI code, test user-visible behavior and accessibility-relevant states instead of component internals.
Use typecheck, lint, format checks, and focused tests before review when the project supports them.
Keep tests deterministic: control time, randomness, network, filesystem, and concurrency.
Do not chase coverage numbers before the core behavior is trustworthy.
If a change cannot be tested cheaply, explain what was verified manually and what risk remains.

Code Size And Complexity

Prefer code that fits in a reviewer's head.

Keep functions short enough that their responsibility, inputs, outputs, and failure modes are obvious.
Split long code by domain steps, not by arbitrary technical phases.
Do not extract a function unless its name adds meaning or it removes real duplication.
Avoid deeply nested conditionals; use guard clauses, discriminated unions, or small named steps.
Keep route handlers, controllers, components, jobs, and command handlers thin enough that the workflow is visible.
Large files are acceptable for schemas, generated code, migrations, constants, cohesive domain tables, or domain-owned types.ts files.
A large types.ts is acceptable when the types belong to one clear domain owner; split it when unrelated domains start accumulating there.
When a file grows too large, split by ownership and behavior rather than creating helpers.ts.
As a rough review signal, reconsider ordinary source files above 300 lines and ordinary functions above 50 lines.

Configuration And Environment

Configuration should fail early and be typed after startup.

Parse and validate environment variables at the application boundary.
Export a typed config object instead of reading process.env throughout the codebase.
Do not use non-null assertions like process.env.API_KEY! outside the config loader.
Convert strings to domain types early: numbers, booleans, URLs, enums, durations, and feature flags.
Keep secrets out of logs, errors, snapshots, and client bundles.
Make defaults explicit. Avoid hidden fallback behavior for important production settings.
Separate build-time, server-runtime, and client-exposed configuration.
Treat feature flags as configuration with owners and expected removal paths, not as permanent branching clutter.

Constants

Give important constants a domain home.

Put domain constants in a constants.ts file at the level of the domain, feature, module, or component that owns them.
This applies even when a domain constant currently has only one caller, if the value represents a business rule, protocol value, limit, timeout, default, storage key, route, or repeated UI dimension.
Keep purely local readability constants near the code that uses them.
Avoid magic numbers and magic strings in executable logic.
Name constants by their meaning, not by their value.

UI Code

Keep UI code declarative, typed, and behavior-focused.

UI units should express structure, rendering, and user interactions; move non-trivial domain logic, data shaping, and policy decisions into named feature-owned functions.
Model UI state as the smallest state that cannot be derived from props, server data, URL state, or existing application state.
Prefer discriminated unions for async and multi-mode UI states instead of several loosely related booleans.
Keep event handlers small; delegate meaningful work to named functions.
Do not mirror server data into local state unless the user can edit it locally or there is a clear synchronization plan.
Keep URL state, form state, server/cache state, and local UI state conceptually separate.
Use accessible semantic elements before custom div-based controls.
Test visible behavior, important states, and accessibility-relevant interactions instead of component internals.

APIs And Public Contracts

Treat public contracts as promises.

Be explicit when changing exported functions, HTTP APIs, event payloads, database shapes, CLI flags, environment variables, or component props used outside the file.
Prefer additive changes when callers may exist outside the immediate edit.
Keep compatibility code only with an owner and a removal path.
Version contracts when historical interpretation matters.
Do not reuse the same field name for a different meaning.
Prefer narrow request/response types over exposing broad internal domain objects.
Keep internal types internal until there is a real external caller.
Document non-obvious invariants at the contract boundary.
If a contract is generated from a schema, update the schema first and regenerate rather than editing generated artifacts by hand.

Security And Privacy

Treat inputs, identity, and secrets with suspicion.

Validate and normalize untrusted input before using it for behavior.
Keep authentication and authorization checks close to the operation they protect.
Do not rely on client-side checks for server-side authorization.
Include tenant/user ownership filters in data access paths where applicable; do not add them only at the UI layer.
Do not log secrets, tokens, credentials, private user data, or raw payloads that may contain them.
Avoid unsafe HTML injection. If HTML rendering is required, sanitize with a project-approved library and keep the boundary obvious.
Use parameterized database queries or the project's query builder; do not concatenate untrusted SQL.
Be careful with redirects, file paths, shell commands, and URLs derived from user input.
Fail closed when permission, identity, or tenant context is missing or ambiguous.

Performance And Resource Use

Do not optimize blindly, but avoid obviously wasteful shapes.

Prefer simple code until there is evidence of a performance problem or the inefficient shape is obvious.
Avoid accidental N+1 database queries, API calls, filesystem reads, and expensive renders.
Bound untrusted or potentially large work: pagination, limits, timeouts, streaming, batching, or backpressure.
Do not load large datasets, files, or response bodies into memory unless the size is known and acceptable.
Avoid blocking the event loop with heavy synchronous work on request, UI, or job hot paths.
Cache only when invalidation, ownership, and memory growth are understood.
Keep expensive derived values memoized or precomputed only when profiling, scale, or code structure justifies it.
Measure before making invasive performance changes.

Review Mindset

Before finishing a meaningful change, check the engineering story.

What behavior changed?
What data crosses a boundary?
What assumptions does the code now rely on?
What contracts, schemas, migrations, or public APIs changed?
Did this add an abstraction, dependency, or shared module? Why is it needed now?
Are errors, loading states, empty states, and permission failures handled deliberately?
Are important inputs, outputs, timestamps, versions, and source metadata preserved where relevant?
What deterministic checks or focused tests prove the change?
What remains unverified, and is that acceptable for the risk?

typescript-engineering