Stats
Actions
Tags
From code-audit-suite
This skill should be used when the user asks to "check architecture", "Architektur prüfen", "find circular dependencies", "zirkuläre Abhängigkeiten", "run dependency-cruiser", "enforce layer/import rules", "module boundaries", "Abhängigkeitsgraph", or wants to validate the dependency structure of a JS/TS codebase. Runs dependency-cruiser in Docker and drives violations to zero, processed directly in Claude Code.
How this skill is triggered — by the user, by Claude, or both
Slash command
/code-audit-suite:architecture-analysisThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Enforce the **intended dependency structure** of a JS/TS codebase — circular
Enforce the intended dependency structure of a JS/TS codebase — circular dependencies, orphan modules, and declared layer/import boundaries (e.g. "the UI layer must not import from the data layer directly"). This is structural analysis SonarQube does not do for JS/TS.
Scope / no double coverage: this skill targets JS/TS via
dependency-cruiser. JVM/architecture-level analysis is intentionally not
duplicated here — SonarQube Server's built-in Architecture feature (the
former Structure101 engine, acquired by Sonar) already covers that, so use the
sonarqube-quality skill for JVM architecture.
~/.claude/skills/architecture-analysis/scripts/scan.sh [TARGET_DIR]
.dependency-cruiser.{cjs,js,json}, the scan uses a
bundled default ruleset (no-circular = error, no-orphans = warn) mounted
read-only into the container — it is never written into your repo.RESULT: PASS.The bundled default ruleset is only a starting point. To enforce real layering,
create your own .dependency-cruiser.cjs in the project root (it is used instead
of the default when present), e.g.:
{ name: 'ui-not-to-db', severity: 'error',
from: { path: '^src/ui' },
to: { path: '^src/data' } }
Add forbidden/allowed/required rules; dependency-cruiser fails the run on
any error-severity match.
depcruise-npm Docker volume; the first run
downloads dependency-cruiser + typescript, later runs are fast.src, lib, app, source,
packages); falls back to the whole project.DEPCRUISE_OUTPUT_TYPE=dot (or mermaid/json). This is
review-only, printed in addition to the gate — the pass/fail verdict is ALWAYS
derived from an internal err-long run (the graph reporters exit 0 even when there
are violations, so they must never be the gate signal).scripts/scan.sh — runs dependency-cruiser against a JS/TS project (source
tree mounted read-only); uses a bundled read-only default ruleset (never written
into the repo) unless the project ships its own; exit 1 on violations. Skips
cleanly when there is no real JS/TS source.scripts/default.dependency-cruiser.cjs — the bundled default ruleset.npx claudepluginhub mguttmann/code-audit-suite --plugin code-audit-suiteGuides test-driven development for Django applications using pytest-django, factory_boy, and Django REST Framework. Covers red-green-refactor workflow, conftest fixtures, and coverage reporting.