Skill

auditing

Use when checking Makefiles for convention violations, missing PHONY declarations, hardcoded paths, or poor role separation between dev and deploy targets

npx claudepluginhub jugrajsingh/skillgarden --plugin makesmith

Tool Access

This skill is limited to using the following tools:

ReadGlobGrepAskUserQuestion

Preview

Analyze Makefiles against conventions and best practices.

Supporting Assets

references/nodejs.mdreferences/python.mdreferences/universal-checks.md

SKILL.md

Similar Skills

design-system

167.4k

Generates design tokens/docs from CSS/Tailwind/styled-components codebases, audits visual consistency across 10 dimensions, detects AI slop in UI.

team-skills-platform

ui-demo

167.4k

Records polished WebM UI demo videos of web apps using Playwright with cursor overlay, natural pacing, and three-phase scripting. Activates for demo, walkthrough, screen recording, or tutorial requests.

team-skills-platform

kotlin-patterns

167.4k

Delivers idiomatic Kotlin patterns for null safety, immutability, sealed classes, coroutines, Flows, extensions, DSL builders, and Gradle DSL. Use when writing, reviewing, refactoring, or designing Kotlin code.

team-skills-platform

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitFeb 18, 2026

Actions

View Source View Plugin View on GitHub View README

Audit Makefiles

Analyze Makefiles against conventions and best practices.

Checks

Read references/universal-checks.md for the full checklist. Four categories:

Conventions - .DEFAULT_GOAL, help target, self-documenting, .PHONY, private targets, section separators
Variables - No hardcoded paths/versions, SCREAMING_SNAKE naming, overridable where needed
Structure - Role separation (local vs deploy), no mixed concerns, DRY, tag-on-push, root delegates
Best Practices - Tab indentation, no shell in recipes, quiet prefix, error handling

Workflow

1. Find Makefiles

Glob: Makefile, Makefile.*, */Makefile

2. Detect Project Language

Glob: pyproject.toml, requirements.txt, uv.lock, package.json, package-lock.json, yarn.lock, pnpm-lock.yaml, go.mod, Cargo.toml

Based on detection, load the appropriate language-specific reference:

Files Found	Reference
`pyproject.toml`, `uv.lock`, `requirements.txt`	`references/python.md`
`package.json`, `package-lock.json`, `yarn.lock`	`references/nodejs.md`

Read the matching reference file for language-specific audit checks. If multiple languages detected, read all matching references.

3. Read and Analyze

For each Makefile:

Read full content
Parse targets (lines matching ^[a-zA-Z_-]+:)
Parse .PHONY declarations
Parse variables (lines matching ^[A-Z_]+ := or ^[A-Z_]+ \?=)
Check each universal convention
Check language-specific conventions from loaded reference

4. Cross-File Analysis

Check role separation between Makefile.local and Makefile.deploy
Check root Makefile delegates correctly (no inline uv run, npm, etc.)
Check consistent variable naming across files

5. Generate Report

Use the audit-report.md template. Fill in:

Each check with (pass), (fail), or (partial)
Universal findings grouped by category
Language-specific findings in separate section
Recommendations sorted by priority

6. Ask About Fixes

After presenting the report, ask via AskUserQuestion:

"Fix all issues" - Apply fixes
"Fix critical only" - Only fix high-priority items
"Report only" - No changes

Priority Classification

Priority	Criteria
High	Missing help target, no .PHONY, hardcoded secrets, bare `python`/`node` bypassing package manager
Medium	Missing self-documentation, no section separators, DRY violations, missing required targets
Low	Naming inconsistencies, missing private prefix on internal targets