project-audit
Project Audit
When NOT to Use
- Security-specific review (use
/codex-security) - Runtime performance profiling
- Mid-development review (use
/codex-review-fast)
Procedure
- Run
bash scripts/run-skill.sh project-audit audit.js --jsonto collect deterministic scores - Parse the JSON output — overall_score, status, dimensions, checks, findings, next_actions
- If status = Blocked (P0 findings) — highlight critical gaps, suggest immediate fixes
- If status = Needs Work (P1 findings) — format improvement roadmap by dimension
- If status = Healthy — summarize strengths, note any P2 improvements
- Add qualitative interpretation beyond the scores (e.g., "test ratio is good but concentrated in unit tests")
Script Integration
The audit script runs 12 deterministic checks across 5 dimensions:
| Dimension | Checks | What It Measures |
|---|---|---|
| oss | 2 | LICENSE, README quality |
| robustness | 3 | CI config, lint/typecheck, test ratio |
| scope | 2 | Declared features vs implementation, AC completion |
| runnability | 3 | Package manifest, scripts, env/Docker setup |
| stability | 2 | Lock file + audit, type configuration |
Scoring Model
- Each check:
1(pass) /0.5(partial) /0(fail) /N/A(skipped) - Dimension score:
applicable_sum / applicable_count * 100 - Overall score: average of dimension scores
- Confidence:
applicable_checks / total_checksper dimension
Status Determination
| Status | Condition | Exit Code |
|---|---|---|
| Blocked | Any P0 finding | 2 |
| Needs Work | No P0, has P1 | 1 |
| Healthy | No P0/P1 | 0 |
Script Failure Fallback
If the script fails, report the error and suggest running manually:
bash scripts/run-skill.sh project-audit audit.js --json
Output Format
## Project Audit Report
| Field | Value |
|-------|-------|
| Repo | [name] |
| Score | **[N]/100** |
| Status | [icon] [status] |
### Dimensions
[table of dimension scores]
### Checks
[list of check results with suggestions]
### Next Actions
[prioritized action items]
## Gate: ✅/⛔
References
references/check-catalog.md— Check definitions, scoring criteria, ecosystem detection (read when investigating a specific check result)references/output-template.md— Report format examples and JSON schema (read when customizing output)
Verification
- Script ran successfully
- All 12 checks executed (or marked N/A with reason)
- Qualitative interpretation added beyond raw scores
- Next actions are actionable (include commands where applicable)
More from sd0xdev/sd0x-dev-flow
statusline-config
Customize Claude Code statusline. Use when: user says 'statusline', 'status line', 'customize statusline', 'modify statusline', 'statusline settings', 'statusline theme', 'change theme', 'color scheme', wants to add/remove/change segments (cost, git, model, context), switch color themes (catppuccin, dracula, nord), or asks what can be shown in the statusline.
52tech-spec
Tech spec generation and review. Use when: designing features, writing specs, spec review. Not for: requirements analysis (use req-analyze), implementation (use feature-dev), architecture advice (use codex-architect). Output: numbered tech spec document.
45codex-brainstorm
Adversarial brainstorming via Claude+Codex debate. Use when: exploring solutions, feasibility analysis, exhaustive enumeration. Not for: implementation (use feature-dev), architecture only (use codex-architect). Output: Nash equilibrium consensus + action items.
7security-review
Security review via Codex MCP. Use when: OWASP Top 10 audit, dependency vulnerability check, security-sensitive changes. Not for: code review (use codex-code-review), test review (use test-review). Output: security findings + audit report.
7test-review
Test coverage review via Codex MCP. Use when: reviewing test sufficiency, identifying coverage gaps, test quality audit. Not for: generating tests (use codex-test-gen), code review (use codex-code-review). Output: coverage analysis + gap report.
7post-dev-test
Post-development test completion. Use when: checking test coverage after feature-dev, writing missing integration/e2e tests. Not for: unit test generation (use codex-test-gen), test review (use test-review). Output: test files + coverage report.
6