@nerviq/cli 0.0.1 → 0.9.0-beta.1

package/src/techniques.js

@@ -0,0 +1,1354 @@
+/**
+ * CLAUDEX Technique Database
+ * Curated from 1107 verified techniques, filtered to actionable setup recommendations.
+ * Each technique includes: what to check, how to fix, impact level.
+ */
+
+function hasFrontendSignals(ctx) {
+  const pkg = ctx.fileContent('package.json') || '';
+  return /react|vue|angular|next|svelte|tailwind|vite|astro/i.test(pkg) ||
+    ctx.files.some(f => /tailwind\.config|vite\.config|next\.config|svelte\.config|nuxt\.config|pages\/|components\/|app\//i.test(f));
+}
+
+const { containsEmbeddedSecret } = require('./secret-patterns');
+
+const TECHNIQUES = {
+  // ============================================================
+  // === MEMORY & CONTEXT (category: 'memory') ==================
+  // ============================================================
+
+  claudeMd: {
+    id: 1,
+    name: 'CLAUDE.md project instructions',
+    check: (ctx) => ctx.files.includes('CLAUDE.md') || ctx.files.includes('.claude/CLAUDE.md'),
+    impact: 'critical',
+    rating: 5,
+    category: 'memory',
+    fix: 'Create CLAUDE.md with project-specific instructions, build commands, and coding conventions.',
+    template: 'claude-md'
+  },
+
+  mermaidArchitecture: {
+    id: 51,
+    name: 'Mermaid architecture diagram',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return md.includes('mermaid') || md.includes('graph ') || md.includes('flowchart ');
+    },
+    impact: 'high',
+    rating: 5,
+    category: 'memory',
+    fix: 'Add a Mermaid diagram to CLAUDE.md showing project architecture. Saves 73% tokens vs prose.',
+    template: 'mermaid'
+  },
+
+  pathRules: {
+    id: 3,
+    name: 'Path-specific rules',
+    check: (ctx) => ctx.hasDir('.claude/rules') && ctx.dirFiles('.claude/rules').length > 0,
+    impact: 'medium',
+    rating: 4,
+    category: 'memory',
+    fix: 'Add rules for different file types (frontend vs backend conventions).',
+    template: 'rules'
+  },
+
+  importSyntax: {
+    id: 763,
+    name: 'CLAUDE.md uses @import for modularity',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return md.includes('@import');
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'memory',
+    fix: 'Use @import in CLAUDE.md to split instructions into focused modules (e.g. @import ./docs/coding-style.md).',
+    template: null
+  },
+
+  underlines200: {
+    id: 681,
+    name: 'CLAUDE.md under 200 lines (concise)',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return md.split('\n').length <= 200;
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'memory',
+    fix: 'Keep CLAUDE.md under 200 lines. Use @import or .claude/rules/ to split large instructions.',
+    template: null
+  },
+
+  // ============================================================
+  // === QUALITY & TESTING (category: 'quality') ================
+  // ============================================================
+
+  verificationLoop: {
+    id: 93,
+    name: 'Verification criteria in CLAUDE.md',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /\b(npm test|yarn test|pnpm test|pytest|go test|make test|npm run lint|yarn lint|npx |ruff |eslint)\b/i.test(md) ||
+        /\b(test command|lint command|build command|verify|run tests|run lint)\b/i.test(md);
+    },
+    impact: 'critical',
+    rating: 5,
+    category: 'quality',
+    fix: 'Add test/lint/build commands to CLAUDE.md so Claude can verify its own work.',
+    template: null
+  },
+
+  testCommand: {
+    id: 93001,
+    name: 'CLAUDE.md contains a test command',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /npm test|pytest|jest|vitest|cargo test|go test|mix test|rspec/.test(md);
+    },
+    impact: 'high',
+    rating: 5,
+    category: 'quality',
+    fix: 'Add an explicit test command to CLAUDE.md (e.g. "Run `npm test` before committing").',
+    template: null
+  },
+
+  lintCommand: {
+    id: 93002,
+    name: 'CLAUDE.md contains a lint command',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /eslint|prettier|ruff|black|clippy|golangci-lint|rubocop|npm run lint|yarn lint|pnpm lint|bun lint/.test(md);
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'quality',
+    fix: 'Add a lint command to CLAUDE.md so Claude auto-formats and checks code style.',
+    template: null
+  },
+
+  buildCommand: {
+    id: 93003,
+    name: 'CLAUDE.md contains a build command',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /npm run build|cargo build|go build|make|tsc|gradle build|mvn compile/.test(md);
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'quality',
+    fix: 'Add a build command to CLAUDE.md so Claude can verify compilation before committing.',
+    template: null
+  },
+
+  // ============================================================
+  // === GIT SAFETY (category: 'git') ===========================
+  // ============================================================
+
+  gitIgnoreClaudeTracked: {
+    id: 976,
+    name: '.claude/ tracked in git',
+    check: (ctx) => {
+      if (!ctx.fileContent('.gitignore')) return true; // no gitignore = ok
+      const lines = ctx.fileContent('.gitignore')
+        .split(/\r?\n/)
+        .map(line => line.trim())
+        .filter(line => line && !line.startsWith('#'));
+      const ignoresClaudeDir = lines.some(line => /^(\/|\*\*\/)?\.claude\/?$/.test(line));
+      const unignoresClaudeDir = lines.some(line => /^!(\/)?\.claude(\/|\*\*)?$/.test(line));
+      return !ignoresClaudeDir || unignoresClaudeDir;
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'git',
+    fix: 'Remove .claude/ from .gitignore (keep .claude/settings.local.json ignored).',
+    template: null
+  },
+
+  gitIgnoreEnv: {
+    id: 917,
+    name: '.gitignore blocks .env files',
+    check: (ctx) => {
+      const gitignore = ctx.fileContent('.gitignore') || '';
+      return gitignore.includes('.env');
+    },
+    impact: 'critical',
+    rating: 5,
+    category: 'git',
+    fix: 'Add .env to .gitignore to prevent leaking secrets.',
+    template: null
+  },
+
+  gitIgnoreNodeModules: {
+    id: 91701,
+    name: '.gitignore blocks node_modules',
+    check: (ctx) => {
+      const hasNodeSignals = ctx.files.includes('package.json') ||
+        ctx.files.includes('tsconfig.json') ||
+        ctx.files.some(f => /package-lock\.json|pnpm-lock\.yaml|yarn\.lock|next\.config|vite\.config/i.test(f));
+      if (!hasNodeSignals) return null;
+      const gitignore = ctx.fileContent('.gitignore') || '';
+      return gitignore.includes('node_modules');
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'git',
+    fix: 'Add node_modules/ to .gitignore.',
+    template: null
+  },
+
+  noSecretsInClaude: {
+    id: 1039,
+    name: 'CLAUDE.md has no embedded API keys',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return !containsEmbeddedSecret(md);
+    },
+    impact: 'critical',
+    rating: 5,
+    category: 'git',
+    fix: 'Remove API keys from CLAUDE.md. Use environment variables or .env files instead.',
+    template: null
+  },
+
+  // ============================================================
+  // === WORKFLOW (category: 'workflow') =========================
+  // ============================================================
+
+  customCommands: {
+    id: 20,
+    name: 'Custom slash commands',
+    check: (ctx) => ctx.hasDir('.claude/commands') && ctx.dirFiles('.claude/commands').length > 0,
+    impact: 'high',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Create custom commands for repeated workflows (/test, /deploy, /review).',
+    template: 'commands'
+  },
+
+  multipleCommands: {
+    id: 20001,
+    name: '3+ slash commands for rich workflow',
+    check: (ctx) => ctx.hasDir('.claude/commands') && ctx.dirFiles('.claude/commands').length >= 3,
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Add at least 3 slash commands to cover your main workflows (test, deploy, review, etc.).',
+    template: 'commands'
+  },
+
+  deployCommand: {
+    id: 20002,
+    name: 'Has /deploy or /release command',
+    check: (ctx) => {
+      if (!ctx.hasDir('.claude/commands')) return false;
+      const files = ctx.dirFiles('.claude/commands');
+      return files.some(f => /deploy|release/i.test(f));
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Create a /deploy or /release command for one-click deployments.',
+    template: null
+  },
+
+  reviewCommand: {
+    id: 20003,
+    name: 'Has /review command',
+    check: (ctx) => {
+      if (!ctx.hasDir('.claude/commands')) return false;
+      const files = ctx.dirFiles('.claude/commands');
+      return files.some(f => /review/i.test(f));
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Create a /review command for code review workflows.',
+    template: null
+  },
+
+  skills: {
+    id: 21,
+    name: 'Custom skills',
+    check: (ctx) => ctx.hasDir('.claude/skills') && ctx.dirFiles('.claude/skills').length > 0,
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Add skills for domain-specific workflows.',
+    template: 'skills'
+  },
+
+  multipleSkills: {
+    id: 2101,
+    name: '2+ skills for specialization',
+    check: (ctx) => ctx.hasDir('.claude/skills') && ctx.dirFiles('.claude/skills').length >= 2,
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Add at least 2 skills to cover different domain areas.',
+    template: 'skills'
+  },
+
+  agents: {
+    id: 22,
+    name: 'Custom agents',
+    check: (ctx) => ctx.hasDir('.claude/agents') && ctx.dirFiles('.claude/agents').length > 0,
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Create specialized agents (security-reviewer, test-writer) in .claude/agents/.',
+    template: 'agents'
+  },
+
+  multipleAgents: {
+    id: 2201,
+    name: '2+ agents for delegation',
+    check: (ctx) => ctx.hasDir('.claude/agents') && ctx.dirFiles('.claude/agents').length >= 2,
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Add at least 2 agents for specialized tasks (e.g. security-reviewer, test-writer).',
+    template: 'agents'
+  },
+
+  multipleRules: {
+    id: 301,
+    name: '2+ rules files for granular control',
+    check: (ctx) => ctx.hasDir('.claude/rules') && ctx.dirFiles('.claude/rules').length >= 2,
+    impact: 'medium',
+    rating: 4,
+    category: 'workflow',
+    fix: 'Add path-specific rules for different parts of the codebase (frontend, backend, tests).',
+    template: 'rules'
+  },
+
+  // ============================================================
+  // === SECURITY (category: 'security') ========================
+  // ============================================================
+
+  settingsPermissions: {
+    id: 24,
+    name: 'Permission configuration',
+    check: (ctx) => {
+      // Prefer local (effective config) — any settings file with permissions passes
+      const settings = ctx.jsonFile('.claude/settings.local.json') || ctx.jsonFile('.claude/settings.json');
+      return !!(settings && settings.permissions);
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'security',
+    fix: 'Configure allow/deny permission lists for safe tool usage.',
+    template: null
+  },
+
+  permissionDeny: {
+    id: 2401,
+    name: 'Deny rules configured in permissions',
+    check: (ctx) => {
+      const settings = ctx.jsonFile('.claude/settings.local.json') || ctx.jsonFile('.claude/settings.json');
+      if (!settings || !settings.permissions) return false;
+      const deny = settings.permissions.deny;
+      return Array.isArray(deny) && deny.length > 0;
+    },
+    impact: 'high',
+    rating: 5,
+    category: 'security',
+    fix: 'Add permissions.deny rules to block dangerous operations (e.g. rm -rf, dropping databases).',
+    template: null
+  },
+
+  noBypassPermissions: {
+    id: 2402,
+    name: 'Default mode is not bypassPermissions',
+    check: (ctx) => {
+      // Check shared settings first (committed to git) — if the shared baseline
+      // is safe, a personal settings.local.json override should not fail the audit.
+      const shared = ctx.jsonFile('.claude/settings.json');
+      if (shared && shared.permissions) {
+        return shared.permissions.defaultMode !== 'bypassPermissions';
+      }
+      const local = ctx.jsonFile('.claude/settings.local.json');
+      if (!local || !local.permissions) return null;
+      return local.permissions.defaultMode !== 'bypassPermissions';
+    },
+    impact: 'critical',
+    rating: 5,
+    category: 'security',
+    fix: 'Do not set defaultMode to bypassPermissions. Use explicit allow rules instead.',
+    template: null
+  },
+
+  secretsProtection: {
+    id: 1096,
+    name: 'Secrets protection configured',
+    check: (ctx) => {
+      // Prefer shared settings.json (committed) over local override
+      const settings = ctx.jsonFile('.claude/settings.json') || ctx.jsonFile('.claude/settings.local.json');
+      if (!settings || !settings.permissions) return false;
+      const deny = JSON.stringify(settings.permissions.deny || []);
+      return deny.includes('.env') || deny.includes('secrets');
+    },
+    impact: 'critical',
+    rating: 5,
+    category: 'security',
+    fix: 'Add permissions.deny rules to block reading .env files and secrets directories.',
+    template: null
+  },
+
+  securityReview: {
+    id: 1031,
+    name: 'Security review command awareness',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return md.includes('security') || md.includes('/security-review');
+    },
+    impact: 'high',
+    rating: 5,
+    category: 'security',
+    fix: 'Add /security-review to your workflow. Claude Code has built-in OWASP Top 10 scanning.',
+    template: null
+  },
+
+  // ============================================================
+  // === AUTOMATION (category: 'automation') =====================
+  // ============================================================
+
+  hooks: {
+    id: 19,
+    name: 'Hooks for automation',
+    check: (ctx) => {
+      if (ctx.hasDir('.claude/hooks') && ctx.dirFiles('.claude/hooks').length > 0) return true;
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      return !!(shared.hooks && Object.keys(shared.hooks).length > 0) || !!(local.hooks && Object.keys(local.hooks).length > 0);
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'automation',
+    fix: 'Add hooks for auto-lint, auto-test, or file change tracking.',
+    template: 'hooks'
+  },
+
+  hooksInSettings: {
+    id: 8801,
+    name: 'Hooks configured in settings',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json');
+      const local = ctx.jsonFile('.claude/settings.local.json');
+      const hasSharedHooks = shared && shared.hooks && Object.keys(shared.hooks).length > 0;
+      const hasLocalHooks = local && local.hooks && Object.keys(local.hooks).length > 0;
+      return hasSharedHooks || hasLocalHooks;
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'automation',
+    fix: 'Add hooks in .claude/settings.json for automated enforcement (lint-on-save, test-on-commit).',
+    template: 'hooks'
+  },
+
+  preToolUseHook: {
+    id: 8802,
+    name: 'PreToolUse hook configured',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json');
+      const local = ctx.jsonFile('.claude/settings.local.json');
+      return !!(shared?.hooks?.PreToolUse || local?.hooks?.PreToolUse);
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'automation',
+    fix: 'Add PreToolUse hooks for validation before tool calls (e.g. block writes to protected files).',
+    template: null
+  },
+
+  postToolUseHook: {
+    id: 8803,
+    name: 'PostToolUse hook configured',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json');
+      const local = ctx.jsonFile('.claude/settings.local.json');
+      return !!(shared?.hooks?.PostToolUse || local?.hooks?.PostToolUse);
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'automation',
+    fix: 'Add PostToolUse hooks for auto-lint or auto-format after file writes.',
+    template: null
+  },
+
+  sessionStartHook: {
+    id: 8804,
+    name: 'SessionStart hook configured',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json');
+      const local = ctx.jsonFile('.claude/settings.local.json');
+      if (!(shared?.hooks || local?.hooks)) return false;
+      return !!(shared?.hooks?.SessionStart || local?.hooks?.SessionStart);
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'automation',
+    fix: 'Add a SessionStart hook for initialization tasks (log rotation, state loading, etc.).',
+    template: null
+  },
+
+  // ============================================================
+  // === DESIGN (category: 'design') ============================
+  // ============================================================
+
+  frontendDesignSkill: {
+    id: 1025,
+    name: 'Frontend design skill for anti-AI-slop',
+    check: (ctx) => {
+      if (!hasFrontendSignals(ctx)) return null;
+      const md = ctx.claudeMdContent() || '';
+      return md.includes('frontend_aesthetics') || md.includes('anti-AI-slop') || md.includes('frontend-design');
+    },
+    impact: 'medium',
+    rating: 5,
+    category: 'design',
+    fix: 'Install the official frontend-design skill for better UI output quality.',
+    template: null
+  },
+
+  tailwindMention: {
+    id: 102501,
+    name: 'Tailwind CSS configured',
+    check: (ctx) => {
+      if (!hasFrontendSignals(ctx)) return null;
+      const pkg = ctx.fileContent('package.json') || '';
+      return pkg.includes('tailwind') ||
+        ctx.files.some(f => /tailwind\.config/.test(f));
+    },
+    impact: 'low',
+    rating: 3,
+    category: 'design',
+    fix: 'Consider adding Tailwind CSS for rapid, consistent UI styling with Claude.',
+    template: null
+  },
+
+  // ============================================================
+  // === DEVOPS (category: 'devops') ============================
+  // ============================================================
+
+  dockerfile: {
+    id: 399,
+    name: 'Has Dockerfile',
+    check: (ctx) => ctx.files.some(f => /^Dockerfile/i.test(f)),
+    impact: 'medium',
+    rating: 3,
+    category: 'devops',
+    fix: 'Add a Dockerfile for containerized builds and deployments.',
+    template: null
+  },
+
+  dockerCompose: {
+    id: 39901,
+    name: 'Has docker-compose.yml',
+    check: (ctx) => ctx.files.some(f => /^docker-compose\.(yml|yaml)$/i.test(f)),
+    impact: 'medium',
+    rating: 3,
+    category: 'devops',
+    fix: 'Add docker-compose.yml for multi-service local development.',
+    template: null
+  },
+
+  ciPipeline: {
+    id: 260,
+    name: 'CI pipeline configured',
+    check: (ctx) => ctx.hasDir('.github/workflows') || ctx.hasDir('.circleci') ||
+      ctx.files.includes('.gitlab-ci.yml') || ctx.files.includes('Jenkinsfile') ||
+      ctx.files.includes('.travis.yml') || ctx.files.includes('bitbucket-pipelines.yml'),
+    impact: 'high',
+    rating: 4,
+    category: 'devops',
+    fix: 'Add a CI pipeline (GitHub Actions, GitLab CI, CircleCI, etc.) for automated testing and deployment.',
+    template: null
+  },
+
+  terraformFiles: {
+    id: 397,
+    name: 'Infrastructure as Code (Terraform)',
+    check: (ctx) => ctx.files.some(f => /\.tf$/.test(f)) || ctx.files.includes('main.tf'),
+    impact: 'medium',
+    rating: 3,
+    category: 'devops',
+    fix: 'Add Terraform files for infrastructure-as-code management.',
+    template: null
+  },
+
+  // ============================================================
+  // === PROJECT HYGIENE (category: 'hygiene') ==================
+  // ============================================================
+
+  readme: {
+    id: 416,
+    name: 'Has README.md',
+    check: (ctx) => ctx.files.some(f => /^readme\.md$/i.test(f)),
+    impact: 'high',
+    rating: 4,
+    category: 'hygiene',
+    fix: 'Add a README.md with project overview, setup instructions, and usage.',
+    template: null
+  },
+
+  changelog: {
+    id: 417,
+    name: 'Has CHANGELOG.md',
+    check: (ctx) => ctx.files.some(f => /^changelog\.md$/i.test(f)),
+    impact: 'low',
+    rating: 3,
+    category: 'hygiene',
+    fix: 'Add a CHANGELOG.md to track notable changes across versions.',
+    template: null
+  },
+
+  contributing: {
+    id: 418,
+    name: 'Has CONTRIBUTING.md',
+    check: (ctx) => ctx.files.some(f => /^contributing\.md$/i.test(f)),
+    impact: 'low',
+    rating: 3,
+    category: 'hygiene',
+    fix: 'Add a CONTRIBUTING.md with contribution guidelines and code standards.',
+    template: null
+  },
+
+  license: {
+    id: 434,
+    name: 'Has LICENSE file',
+    check: (ctx) => ctx.files.some(f => /^license/i.test(f)),
+    impact: 'low',
+    rating: 3,
+    category: 'hygiene',
+    fix: 'Add a LICENSE file to clarify usage rights.',
+    template: null
+  },
+
+  editorconfig: {
+    id: 5001,
+    name: 'Has .editorconfig',
+    check: (ctx) => ctx.files.includes('.editorconfig'),
+    impact: 'low',
+    rating: 3,
+    category: 'hygiene',
+    fix: 'Add .editorconfig for consistent formatting across editors and Claude.',
+    template: null
+  },
+
+  nvmrc: {
+    id: 5002,
+    name: 'Node version pinned',
+    check: (ctx) => {
+      const hasNodeSignals = ctx.files.includes('package.json') ||
+        ctx.files.includes('tsconfig.json') ||
+        ctx.files.some(f => /package-lock\.json|pnpm-lock\.yaml|yarn\.lock|next\.config|vite\.config/i.test(f));
+      if (!hasNodeSignals) return null;
+      if (ctx.files.includes('.nvmrc') || ctx.files.includes('.node-version')) return true;
+      const pkg = ctx.jsonFile('package.json');
+      return !!(pkg && pkg.engines && pkg.engines.node);
+    },
+    impact: 'low',
+    rating: 3,
+    category: 'hygiene',
+    fix: 'Add .nvmrc, .node-version, or engines.node in package.json to pin Node version.',
+    template: null
+  },
+
+  // ============================================================
+  // === PERFORMANCE (category: 'performance') ==================
+  // ============================================================
+
+  compactionAwareness: {
+    id: 568,
+    name: 'CLAUDE.md mentions /compact or compaction',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /\/compact|compaction|context.*(limit|manage|budget)/i.test(md);
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'performance',
+    fix: 'Add compaction guidance to CLAUDE.md (e.g. "Run /compact when context is heavy").',
+    template: null
+  },
+
+  contextManagement: {
+    id: 45,
+    name: 'Context management awareness',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /context.*(manage|window|limit|budget|token)/i.test(md);
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'performance',
+    fix: 'Add context management tips to CLAUDE.md to help Claude stay within token limits.',
+    template: null
+  },
+
+  // ============================================================
+  // === MCP / TOOLS (category: 'tools') ========================
+  // ============================================================
+
+  mcpServers: {
+    id: 18,
+    name: 'MCP servers configured',
+    check: (ctx) => {
+      const settings = ctx.jsonFile('.claude/settings.local.json') || ctx.jsonFile('.claude/settings.json');
+      return !!(settings && settings.mcpServers && Object.keys(settings.mcpServers).length > 0);
+    },
+    impact: 'medium',
+    rating: 3,
+    category: 'tools',
+    fix: 'Configure MCP servers for external tool integration (database, APIs, etc).',
+    template: null
+  },
+
+  multipleMcpServers: {
+    id: 1801,
+    name: '2+ MCP servers for rich tooling',
+    check: (ctx) => {
+      let count = 0;
+      const settings = ctx.jsonFile('.claude/settings.local.json') || ctx.jsonFile('.claude/settings.json');
+      if (settings && settings.mcpServers) count += Object.keys(settings.mcpServers).length;
+      const mcpJson = ctx.jsonFile('.mcp.json');
+      if (mcpJson && mcpJson.mcpServers) count += Object.keys(mcpJson.mcpServers).length;
+      return count >= 2;
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'tools',
+    fix: 'Add at least 2 MCP servers for broader tool coverage (e.g. database + search).',
+    template: null
+  },
+
+  context7Mcp: {
+    id: 110,
+    name: 'Context7 MCP for real-time docs',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      const mcp = ctx.jsonFile('.mcp.json') || {};
+      const all = { ...(shared.mcpServers || {}), ...(local.mcpServers || {}), ...(mcp.mcpServers || {}) };
+      if (Object.keys(all).length === 0) return false;
+      return Object.keys(all).some(k => /context7/i.test(k));
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'tools',
+    fix: 'Add Context7 MCP server for real-time documentation lookup (always up-to-date library docs).',
+    template: null
+  },
+
+  // ============================================================
+  // === PROMPTING (category: 'prompting') ======================
+  // ============================================================
+
+  xmlTags: {
+    id: 96,
+    name: 'XML tags for structured prompts',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      // Give credit for XML tags OR well-structured markdown with clear sections
+      const hasXml = md.includes('<constraints') || md.includes('<rules') ||
+        md.includes('<validation') || md.includes('<instructions');
+      const hasStructuredMd = (md.includes('## Rules') || md.includes('## Constraints') ||
+        md.includes('## Do not') || md.includes('## Never') || md.includes('## Important')) &&
+        md.split('\n').length > 20;
+      return hasXml || hasStructuredMd;
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'prompting',
+    fix: 'Add clear rules sections to CLAUDE.md. XML tags (<constraints>) are optional but improve clarity.',
+    template: null
+  },
+
+  fewShotExamples: {
+    id: 9,
+    name: 'CLAUDE.md contains code examples',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return (md.match(/```/g) || []).length >= 2;
+    },
+    impact: 'high',
+    rating: 5,
+    category: 'prompting',
+    fix: 'Add code examples (few-shot) in CLAUDE.md to show preferred patterns and conventions.',
+    template: null
+  },
+
+  roleDefinition: {
+    id: 10,
+    name: 'CLAUDE.md defines a role or persona',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /^you are a |^your role is|^act as a |persona:|behave as a /im.test(md);
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'prompting',
+    fix: 'Define a role or persona in CLAUDE.md (e.g. "You are a senior backend engineer...").',
+    template: null
+  },
+
+  constraintBlocks: {
+    id: 9601,
+    name: 'XML constraint blocks in CLAUDE.md',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /<constraints|<rules|<requirements|<boundaries/i.test(md);
+    },
+    impact: 'high',
+    rating: 5,
+    category: 'prompting',
+    fix: 'Wrap critical rules in <constraints> XML blocks for 40% better adherence.',
+    template: null
+  },
+
+  // ============================================================
+  // === FEATURES (category: 'features') ========================
+  // ============================================================
+
+  channelsAwareness: {
+    id: 1102,
+    name: 'Claude Code Channels awareness',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      const settings = ctx.jsonFile('.claude/settings.local.json') || ctx.jsonFile('.claude/settings.json');
+      const settingsStr = JSON.stringify(settings || {});
+      return /\bchannels?\b.*\b(telegram|discord|imessage|slack|bridge)\b|\b(telegram|discord|imessage|slack|bridge)\b.*\bchannels?\b/i.test(md) || settingsStr.includes('channels');
+    },
+    impact: 'low',
+    rating: 3,
+    category: 'features',
+    fix: 'Claude Code Channels (v2.1.80+) bridges Telegram/Discord/iMessage to your session.',
+    template: null
+  },
+
+  // ============================================================
+  // === QUALITY CHECKS FOR VETERANS (category: 'quality-deep')
+  // These check HOW GOOD your config is, not just IF it exists.
+  // ============================================================
+
+  claudeMdFreshness: {
+    id: 2001,
+    name: 'CLAUDE.md mentions current Claude features',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      if (md.length < 50) return false; // too short to evaluate
+      // Check for awareness of features from 2025+
+      const modernFeatures = ['hook', 'skill', 'agent', 'subagent', 'mcp', 'compact', '/clear', 'extended thinking', 'tool_use', 'worktree'];
+      const found = modernFeatures.filter(f => md.toLowerCase().includes(f));
+      return found.length >= 2; // knows at least 2 modern features
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'quality-deep',
+    fix: 'Your CLAUDE.md may be outdated. Modern Claude Code supports hooks, skills, agents, MCP, worktrees, and extended thinking. Mention the ones you use.',
+    template: null
+  },
+
+  // claudeMdNotOverlong removed — duplicate of underlines200 (id 681)
+
+  claudeMdNotOverlong: {
+    id: 2002,
+    name: 'CLAUDE.md is concise (under 200 lines)',
+    check: (ctx) => {
+      // Defer to underlines200 — this check always returns null (skipped)
+      return null;
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'quality-deep',
+    fix: 'CLAUDE.md over 200 lines wastes tokens every session. Move detailed docs to .claude/rules/ or skills. Keep CLAUDE.md lean.',
+    template: null
+  },
+
+  claudeMdNoContradictions: {
+    id: 2003,
+    name: 'CLAUDE.md has no obvious contradictions',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent();
+      if (!md || md.length < 50) return false; // no CLAUDE.md or too short = not passing
+      // Check for common contradictions
+      // Check for contradictions on the SAME topic (same line or adjacent sentence)
+      const lines = md.split('\n');
+      let hasContradiction = false;
+      for (const line of lines) {
+        if (/\balways\b.*\bnever\b|\bnever\b.*\balways\b/i.test(line)) {
+          hasContradiction = true;
+          break;
+        }
+      }
+      const hasBothStyles = /\buse tabs\b/i.test(md) && /\buse spaces\b/i.test(md);
+      return !hasContradiction && !hasBothStyles;
+    },
+    impact: 'high',
+    rating: 4,
+    category: 'quality-deep',
+    fix: 'CLAUDE.md may contain contradictory instructions. Review for conflicting rules (e.g., "always X" and "never X" about the same topic).',
+    template: null
+  },
+
+  hooksAreSpecific: {
+    id: 2004,
+    name: 'Hooks use specific matchers (not catch-all)',
+    check: (ctx) => {
+      const settings = ctx.jsonFile('.claude/settings.local.json') || ctx.jsonFile('.claude/settings.json');
+      if (!settings || !settings.hooks) return null; // no hooks = not applicable
+      const hookStr = JSON.stringify(settings.hooks);
+      // Check that hooks have matchers, not just catch-all
+      return hookStr.includes('matcher');
+    },
+    impact: 'medium',
+    rating: 3,
+    category: 'quality-deep',
+    fix: 'Hooks without matchers run on every tool call. Use matchers like "Write|Edit" or "Bash" to target specific tools.',
+    template: null
+  },
+
+  // permissionsNotBypassed removed - duplicate of noBypassPermissions (#24)
+
+  commandsUseArguments: {
+    id: 2006,
+    name: 'Commands use $ARGUMENTS for flexibility',
+    check: (ctx) => {
+      if (!ctx.hasDir('.claude/commands')) return null; // not applicable
+      const files = ctx.dirFiles('.claude/commands');
+      if (files.length === 0) return null;
+      // Check if at least one command uses $ARGUMENTS
+      for (const f of files) {
+        const content = ctx.fileContent(`.claude/commands/${f}`) || '';
+        if (content.includes('$ARGUMENTS') || content.includes('$arguments')) return true;
+      }
+      return false;
+    },
+    impact: 'medium',
+    rating: 3,
+    category: 'quality-deep',
+    fix: 'Commands without $ARGUMENTS are static. Use $ARGUMENTS to make them flexible: "Fix the issue: $ARGUMENTS"',
+    template: null
+  },
+
+  agentsHaveMaxTurns: {
+    id: 2007,
+    name: 'Agents have maxTurns limit',
+    check: (ctx) => {
+      if (!ctx.hasDir('.claude/agents')) return null;
+      const files = ctx.dirFiles('.claude/agents');
+      if (files.length === 0) return null;
+      for (const f of files) {
+        const content = ctx.fileContent(`.claude/agents/${f}`) || '';
+        if (!content.includes('maxTurns')) return false;
+      }
+      return true;
+    },
+    impact: 'medium',
+    rating: 3,
+    category: 'quality-deep',
+    fix: 'Agents without maxTurns can run indefinitely. Add "maxTurns: 50" to agent frontmatter.',
+    template: null
+  },
+
+  securityReviewInWorkflow: {
+    id: 2008,
+    name: '/security-review command or workflow',
+    check: (ctx) => {
+      const hasCommand = ctx.hasDir('.claude/commands') &&
+        (ctx.dirFiles('.claude/commands') || []).some(f => f.includes('security') || f.includes('review'));
+      const md = ctx.claudeMdContent() || '';
+      const hasExplicitRef = /\/security-review|security review command|security workflow/i.test(md);
+      return hasCommand || hasExplicitRef;
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'quality-deep',
+    fix: 'Claude Code has built-in /security-review (OWASP Top 10). Add it to your workflow or create a /security command.',
+    template: null
+  },
+
+  // --- New checks: testing depth ---
+  testCoverage: {
+    id: 2010,
+    name: 'Test coverage or strategy mentioned',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /coverage|test.*strateg|e2e|integration test|unit test/i.test(md);
+    },
+    impact: 'medium', rating: 3, category: 'quality',
+    fix: 'Mention your testing strategy in CLAUDE.md (unit, integration, E2E, coverage targets).',
+    template: null
+  },
+
+  // --- New checks: agent depth ---
+  agentHasAllowedTools: {
+    id: 2011,
+    name: 'At least one agent restricts tools',
+    check: (ctx) => {
+      if (!ctx.hasDir('.claude/agents')) return null;
+      const files = ctx.dirFiles('.claude/agents');
+      if (files.length === 0) return null;
+      for (const f of files) {
+        const content = ctx.fileContent(`.claude/agents/${f}`) || '';
+        if (/tools:\s*\[/.test(content)) return true;
+      }
+      return false;
+    },
+    impact: 'medium', rating: 3, category: 'workflow',
+    fix: 'Add a tools restriction to agent frontmatter (e.g. tools: [Read, Grep]) for safer delegation.',
+    template: null
+  },
+
+  // --- New checks: memory / auto-memory ---
+  autoMemoryAwareness: {
+    id: 2012,
+    name: 'Auto-memory or memory management mentioned',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /auto.?memory|memory.*manage|remember|persistent.*context/i.test(md);
+    },
+    impact: 'low', rating: 3, category: 'memory',
+    fix: 'Claude Code supports auto-memory for cross-session learning. Mention your memory strategy if relevant.',
+    template: null
+  },
+
+  // --- New checks: sandbox / security depth ---
+  sandboxAwareness: {
+    id: 2013,
+    name: 'Sandbox or isolation mentioned',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      const settings = ctx.jsonFile('.claude/settings.json') || {};
+      return /sandbox|isolat/i.test(md) || !!settings.sandbox;
+    },
+    impact: 'medium', rating: 3, category: 'security',
+    fix: 'Claude Code supports sandboxed command execution. Consider enabling it for untrusted operations.',
+    template: null
+  },
+
+  denyRulesDepth: {
+    id: 2014,
+    name: 'Deny rules cover 3+ patterns',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json');
+      const local = ctx.jsonFile('.claude/settings.local.json');
+      const deny = (shared?.permissions?.deny || []).concat(local?.permissions?.deny || []);
+      return deny.length >= 3;
+    },
+    impact: 'high', rating: 4, category: 'security',
+    fix: 'Add at least 3 deny rules: rm -rf, force-push, and .env reads. More patterns = safer Claude.',
+    template: null
+  },
+
+  // --- New checks: git depth ---
+  gitAttributionDecision: {
+    id: 2015,
+    name: 'Git attribution configured',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      return shared.attribution !== undefined || local.attribution !== undefined ||
+             shared.includeCoAuthoredBy !== undefined || local.includeCoAuthoredBy !== undefined;
+    },
+    impact: 'low', rating: 3, category: 'git',
+    fix: 'Decide on git attribution: set attribution.commit or includeCoAuthoredBy in settings.',
+    template: null
+  },
+
+  // --- New checks: performance ---
+  effortLevelConfigured: {
+    id: 2016,
+    name: 'Effort level or thinking configuration',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      return /effort|thinking/i.test(md) || shared.effortLevel || local.effortLevel ||
+             shared.alwaysThinkingEnabled !== undefined || local.alwaysThinkingEnabled !== undefined;
+    },
+    impact: 'low', rating: 3, category: 'performance',
+    fix: 'Configure effortLevel or mention thinking strategy in CLAUDE.md for task-appropriate reasoning depth.',
+    template: null
+  },
+
+  // --- New checks: workflow depth ---
+  hasSnapshotHistory: {
+    id: 2017,
+    name: 'Audit snapshot history exists',
+    check: (ctx) => {
+      return !!ctx.fileContent('.claude/claudex-setup/snapshots/index.json');
+    },
+    impact: 'low', rating: 3, category: 'workflow',
+    fix: 'Run `npx nerviq --snapshot` to start tracking your setup score over time.',
+    template: null
+  },
+
+  worktreeAwareness: {
+    id: 2018,
+    name: 'Worktree or parallel sessions mentioned',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      return /worktree|parallel.*session/i.test(md) || !!shared.worktree;
+    },
+    impact: 'low', rating: 3, category: 'features',
+    fix: 'Claude Code supports git worktrees for parallel isolated sessions. Mention if relevant.',
+    template: null
+  },
+
+  // --- New checks: prompting depth ---
+  negativeInstructions: {
+    id: 2019,
+    name: 'CLAUDE.md includes "do not" instructions',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /do not|don't|never|avoid|must not/i.test(md);
+    },
+    impact: 'medium', rating: 4, category: 'prompting',
+    fix: 'Add explicit "do not" rules to CLAUDE.md. Negative constraints reduce common mistakes.',
+    template: null
+  },
+
+  outputStyleGuidance: {
+    id: 2020,
+    name: 'CLAUDE.md includes output or style guidance',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /coding style|naming convention|code style|style guide|formatting rules|\bprefer\b.*\b(single|double|tabs|spaces|camel|snake|kebab|named|default|const|let|arrow|function)\b/i.test(md);
+    },
+    impact: 'medium', rating: 3, category: 'prompting',
+    fix: 'Add coding style and naming conventions to CLAUDE.md so Claude matches your project patterns.',
+    template: null
+  },
+
+  // --- New checks: devops depth ---
+  githubActionsOrCI: {
+    id: 2021,
+    name: 'GitHub Actions or CI configured',
+    check: (ctx) => {
+      return ctx.hasDir('.github/workflows') || !!ctx.fileContent('.circleci/config.yml') ||
+             !!ctx.fileContent('.gitlab-ci.yml') || !!ctx.fileContent('Jenkinsfile') ||
+             !!ctx.fileContent('.travis.yml') || !!ctx.fileContent('bitbucket-pipelines.yml');
+    },
+    impact: 'medium', rating: 3, category: 'devops',
+    fix: 'Add CI pipeline for automated testing. Claude Code has a GitHub Action for audit gates.',
+    template: null
+  },
+
+  // --- New checks: depth round 2 ---
+  projectDescriptionInClaudeMd: {
+    id: 2022,
+    name: 'CLAUDE.md describes what the project does',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /what.*does|overview|purpose|about|description|project.*is/i.test(md) && md.length > 100;
+    },
+    impact: 'high', rating: 4, category: 'memory',
+    fix: 'Start CLAUDE.md with a clear project description. Claude needs to know what your project does.',
+    template: null
+  },
+
+  directoryStructureInClaudeMd: {
+    id: 2023,
+    name: 'CLAUDE.md documents directory structure',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent() || '';
+      return /src\/|app\/|lib\/|structure|director|folder/i.test(md);
+    },
+    impact: 'medium', rating: 4, category: 'memory',
+    fix: 'Document your directory structure in CLAUDE.md so Claude navigates your codebase efficiently.',
+    template: null
+  },
+
+  multipleHookTypes: {
+    id: 2024,
+    name: '2+ hook event types configured',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      const hooks = { ...(shared.hooks || {}), ...(local.hooks || {}) };
+      return Object.keys(hooks).length >= 2;
+    },
+    impact: 'medium', rating: 3, category: 'automation',
+    fix: 'Add at least 2 hook types (e.g. PostToolUse for linting + SessionStart for initialization).',
+    template: null
+  },
+
+  stopFailureHook: {
+    id: 2025,
+    name: 'StopFailure or error handling hook',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      return !!(shared.hooks?.StopFailure || shared.hooks?.Stop || local.hooks?.StopFailure || local.hooks?.Stop);
+    },
+    impact: 'low', rating: 3, category: 'automation',
+    fix: 'Add a StopFailure hook to log errors for debugging. Helps track why Claude stops unexpectedly.',
+    template: null
+  },
+
+  skillUsesPaths: {
+    id: 2026,
+    name: 'At least one skill uses paths for scoping',
+    check: (ctx) => {
+      if (!ctx.hasDir('.claude/skills')) return null;
+      const entries = ctx.dirFiles('.claude/skills');
+      if (entries.length === 0) return null;
+      for (const entry of entries) {
+        // Skills can be files or dirs with SKILL.md inside
+        const direct = ctx.fileContent(`.claude/skills/${entry}`) || '';
+        if (/paths:/i.test(direct)) return true;
+        const nested = ctx.fileContent(`.claude/skills/${entry}/SKILL.md`) || '';
+        if (/paths:/i.test(nested)) return true;
+      }
+      return false;
+    },
+    impact: 'low', rating: 3, category: 'workflow',
+    fix: 'Add paths to skill frontmatter to scope when skills activate (e.g. paths: ["src/**/*.ts"]).',
+    template: null
+  },
+
+  mcpHasEnvConfig: {
+    id: 2027,
+    name: 'MCP servers have environment configuration',
+    check: (ctx) => {
+      const shared = ctx.jsonFile('.claude/settings.json') || {};
+      const local = ctx.jsonFile('.claude/settings.local.json') || {};
+      const mcp = ctx.jsonFile('.mcp.json') || {};
+      const allServers = { ...(shared.mcpServers || {}), ...(local.mcpServers || {}), ...(mcp.mcpServers || {}) };
+      if (Object.keys(allServers).length === 0) return null;
+      return Object.values(allServers).some(s => s.env && Object.keys(s.env).length > 0);
+    },
+    impact: 'low', rating: 3, category: 'tools',
+    fix: 'Configure environment variables for MCP servers that need authentication (e.g. GITHUB_TOKEN).',
+    template: null
+  },
+
+  gitIgnoreClaudeLocal: {
+    id: 2028,
+    name: '.gitignore excludes settings.local.json',
+    check: (ctx) => {
+      const gitignore = ctx.fileContent('.gitignore') || '';
+      return /settings\.local\.json|settings\.local/i.test(gitignore);
+    },
+    impact: 'medium', rating: 4, category: 'git',
+    fix: 'Add .claude/settings.local.json to .gitignore. Personal overrides should not be committed.',
+    template: null
+  },
+
+  envExampleExists: {
+    id: 2029,
+    name: '.env.example or .env.template exists',
+    check: (ctx) => {
+      return !!(ctx.fileContent('.env.example') || ctx.fileContent('.env.template') || ctx.fileContent('.env.sample'));
+    },
+    impact: 'low', rating: 3, category: 'hygiene',
+    fix: 'Add .env.example so new developers know which environment variables are needed.',
+    template: null
+  },
+
+  packageJsonHasScripts: {
+    id: 2030,
+    name: 'package.json has dev/test/build scripts',
+    check: (ctx) => {
+      const pkg = ctx.jsonFile('package.json');
+      if (!pkg) return null;
+      const scripts = pkg.scripts || {};
+      const has = (k) => !!scripts[k];
+      return has('test') || has('dev') || has('build') || has('start');
+    },
+    impact: 'medium', rating: 3, category: 'hygiene',
+    fix: 'Add scripts to package.json (test, dev, build). Claude uses these for verification.',
+    template: null
+  },
+
+  typeCheckingConfigured: {
+    id: 2031,
+    name: 'Type checking configured (TypeScript or similar)',
+    check: (ctx) => {
+      return !!(ctx.fileContent('tsconfig.json') || ctx.fileContent('jsconfig.json') ||
+        ctx.fileContent('pyrightconfig.json') || ctx.fileContent('mypy.ini'));
+    },
+    impact: 'medium', rating: 3, category: 'quality',
+    fix: 'Add type checking configuration. Type-safe code produces fewer Claude errors.',
+    template: null
+  },
+
+  noDeprecatedPatterns: {
+    id: 2009,
+    name: 'No deprecated patterns detected',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent();
+      if (!md) return false; // no CLAUDE.md = not passing
+      // Check for patterns deprecated in Claude 4.x
+      const deprecatedPatterns = [
+        /\bprefill\b/i, // deprecated API pattern in 4.6
+        /\bclaude-3-opus\b/i, /\bclaude-3-sonnet\b/i, /\bclaude-3-haiku\b/i, // old model names
+        /\bhuman_prompt\b/i, /\bassistant_prompt\b/i, // old API format
+      ];
+      return !deprecatedPatterns.some(p => p.test(md));
+    },
+    impact: 'medium',
+    rating: 3,
+    category: 'quality-deep',
+    fix: 'CLAUDE.md references deprecated patterns (old model names or API formats). Update to current Claude 4.x conventions.',
+    template: null
+  },
+
+  claudeMdQuality: {
+    id: 102502,
+    name: 'CLAUDE.md has substantive content',
+    check: (ctx) => {
+      const md = ctx.claudeMdContent();
+      if (!md) return null;
+      const lines = md.split('\n').filter(l => l.trim());
+      const sections = (md.match(/^##\s/gm) || []).length;
+      const hasCommand = /\b(npm|yarn|pnpm|pytest|go |make |ruff |cargo |dotnet )\b/i.test(md);
+      return lines.length >= 15 && sections >= 2 && hasCommand;
+    },
+    impact: 'medium',
+    rating: 4,
+    category: 'quality-deep',
+    fix: 'CLAUDE.md exists but lacks substance. Add at least 2 sections (## headings) and include your test/build/lint commands.',
+    template: null
+  },
+};
+
+// Stack detection
+const STACKS = {
+  react: { files: ['package.json'], content: { 'package.json': 'react' }, label: 'React' },
+  vue: { files: ['package.json'], content: { 'package.json': 'vue' }, label: 'Vue' },
+  angular: { files: ['angular.json'], content: {}, label: 'Angular' },
+  nextjs: { files: ['next.config'], content: {}, label: 'Next.js' },
+  python: { files: ['requirements.txt', 'setup.py', 'pyproject.toml', 'Pipfile'], content: {}, label: 'Python' },
+  django: { files: ['manage.py'], content: {}, label: 'Django' },
+  fastapi: { files: ['requirements.txt'], content: { 'requirements.txt': 'fastapi' }, label: 'FastAPI' },
+  node: { files: ['package.json'], content: {}, label: 'Node.js' },
+  typescript: { files: ['tsconfig.json'], content: {}, label: 'TypeScript' },
+  rust: { files: ['Cargo.toml'], content: {}, label: 'Rust' },
+  go: { files: ['go.mod'], content: {}, label: 'Go' },
+  docker: { files: ['Dockerfile', 'docker-compose.yml', 'docker-compose.yaml'], content: {}, label: 'Docker' },
+  svelte: { files: ['svelte.config.js'], content: {}, label: 'Svelte' },
+  flutter: { files: ['pubspec.yaml'], content: {}, label: 'Flutter' },
+  ruby: { files: ['Gemfile'], content: {}, label: 'Ruby' },
+  java: { files: ['pom.xml'], content: {}, label: 'Java' },
+  kotlin: { files: ['build.gradle.kts'], content: {}, label: 'Kotlin' },
+  swift: { files: ['Package.swift'], content: {}, label: 'Swift' },
+  terraform: { files: ['main.tf', 'terraform'], content: {}, label: 'Terraform' },
+  kubernetes: { files: ['k8s', 'kubernetes', 'helm'], content: {}, label: 'Kubernetes' },
+  cpp: { files: ['CMakeLists.txt', 'Makefile', '.clang-format'], content: {}, label: 'C++' },
+  bazel: { files: ['BUILD', 'WORKSPACE', 'BUILD.bazel', 'WORKSPACE.bazel'], content: {}, label: 'Bazel' },
+  deno: { files: ['deno.json', 'deno.jsonc', 'deno.lock'], content: {}, label: 'Deno' },
+  bun: { files: ['bun.lockb', 'bunfig.toml'], content: {}, label: 'Bun' },
+  elixir: { files: ['mix.exs'], content: {}, label: 'Elixir' },
+  astro: { files: ['astro.config.mjs', 'astro.config.ts'], content: {}, label: 'Astro' },
+  remix: { files: ['remix.config.js', 'remix.config.ts'], content: {}, label: 'Remix' },
+  nestjs: { files: ['nest-cli.json'], content: {}, label: 'NestJS' },
+  laravel: { files: ['artisan'], content: {}, label: 'Laravel' },
+  dotnet: { files: ['global.json', 'Directory.Build.props'], content: {}, label: '.NET' },
+};
+
+module.exports = { TECHNIQUES, STACKS, containsEmbeddedSecret };