This skill should be used when reviewing or auditing AI-generated code for common failure patterns. Applies a systematic checklist covering hallucinated APIs, phantom dependencies, OWASP security vulnerabilities, control-flow omissions, logic errors, and agentic AI risks. Triggers on "scrutinize AI code", "check for hallucinated APIs", "OWASP review", "audit generated code", "review code for AI-specific bugs", "security checklist on generated code".
How this skill is triggered — by the user, by Claude, or both
Slash command
/ai-quality-guardrails:ai-code-scrutinyThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
- **No runtime dependencies** — this is a pure instruction/skill package (Markdown + YAML frontmatter)
Systematic checklist for code produced by AI coding agents.
AI-generated code has significantly higher rates of security vulnerabilities (45% per Veracode 2025), logic errors (+75% per CodeRabbit 2025), and control-flow omissions compared to human-written code. These follow patterns that can be checked systematically.
See the plugin's docs/RESEARCH.md for full sourced evidence.
Apply this section only when reviewing code that configures AI agents, skills, hooks, or MCP servers:
When reviewing code:
[CRITICAL|HIGH|MEDIUM|LOW] Section X.Y — description (file:line)
When a capability warrant block is present in the session context:
[HIGH] if a capability was relied upon without warrant coverage.verification_state: stale, flag usage of that capability as [MEDIUM] — the capability may not be reliably available.policy: prohibit or policy: discourage, flag any usage as [CRITICAL] or [HIGH] respectively.When no warrant block is present: use existing heuristic checks unchanged.
self-review-before-done — uses this checklist as fallback when no validation commands existparallel-review — Perspective 1 covers items from this checklistreview-loop — quality gate applied after findings are producedtdd-enforcement — complementary: TDD catches logic errors at write time; this catches them at review timenpx claudepluginhub ataraksea/mg-plugins --plugin ai-quality-guardrailsGuides completion of development work by verifying tests, detecting environment, and presenting structured options for merge, PR, or cleanup.
Enforces test-driven development: write failing test first, then minimal code to pass. Use when implementing features or bugfixes.
Guides creation and editing of skills using test-driven development with pressure scenarios and subagents to verify agent compliance.