Can this skill detect security risks?

Yes, it scans for hardcoded paths and potential path traversal vulnerabilities, suggesting the use of securePath() and atomic writing utilities instead.

Does it support logging audits?

Absolutely. The skill flags direct console.log usage and recommends migrating to context-aware logging (ctx.logger) to ensure proper metadata handling and redaction.

What is the primary purpose of the Outfitter Review skill?

It is designed to audit TypeScript codebases for compliance with Outfitter Stack standards, specifically focusing on robust error handling, path security, and standardized logging.

How does this skill improve error handling?

It identifies where code is throwing exceptions and recommends replacing them with the Outfitter Result pattern and specific error taxonomy classes like ValidationError or NotFoundError.

Outfitter Stack Code Auditor

Name: Outfitter Stack Code Auditor
Author: outfitter-dev

byoutfitter-dev

•

安全与测试

Audits TypeScript codebases for Outfitter Stack compliance, ensuring robust error handling, secure pathing, and consistent logging patterns.

The Outfitter Review skill empowers Claude to perform deep static analysis of projects built on the Outfitter shared infrastructure. It systematically identifies architectural anti-patterns—such as thrown exceptions, direct console logging, and insecure file pathing—and provides actionable recommendations to align code with idiomatic Outfitter patterns. By scanning for Result types, error taxonomy, and context propagation, this skill ensures high code quality and security standards during pre-commit reviews or legacy code migrations.

主要功能

01Structured compliance reporting with categorized severity levels (Critical to Low)

02Identification of unauthorized console usage in favor of context-aware logging

032 GitHub stars

04Automated Result type and error taxonomy auditing to replace thrown exceptions

05Validation of handler entry points and Zod-based schema implementation

06Detection of insecure path traversal risks and non-atomic file operations

使用场景

01Auditing third-party contributions for security vulnerabilities and logging standards

02Performing pre-commit code quality checks to ensure strict stack compliance

03Migrating legacy TypeScript modules to the Outfitter shared infrastructure

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add outfitter-dev/outfitter review

For use in Claude.ai and ChatGPT

Download Skill