npm - octocode-cli - Versions diffs - 1.1.1 → 1.2.0 - Mend

octocode-cli 1.1.1 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (19) hide show

package/out/octocode-cli.js +7906 -8034
package/package.json +36 -39
package/skills/README.md +70 -31
package/skills/octocode-generate/SKILL.md +15 -9
package/skills/octocode-implement/SKILL.md +288 -0
package/skills/octocode-implement/references/execution-phases.md +317 -0
package/skills/octocode-implement/references/tool-reference.md +403 -0
package/skills/octocode-implement/references/workflow-patterns.md +385 -0
package/skills/octocode-local-search/SKILL.md +418 -0
package/skills/octocode-local-search/references/tool-reference.md +328 -0
package/skills/octocode-local-search/references/workflow-patterns.md +383 -0
package/skills/octocode-pr-review/SKILL.md +321 -109
package/skills/octocode-pr-review/references/domain-reviewers.md +105 -0
package/skills/octocode-pr-review/references/execution-lifecycle.md +116 -0
package/skills/octocode-pr-review/references/research-flows.md +75 -0
package/skills/octocode-research/SKILL.md +291 -80
package/skills/octocode-roast/SKILL.md +369 -0
package/skills/octocode-roast/references/sin-registry.md +239 -0
package/skills/octocode-plan/SKILL.md +0 -166

package/skills/octocode-roast/SKILL.md ADDED Viewed

@@ -0,0 +1,369 @@
+---
+name: octocode-roast
+description: Brutally honest roasts of your code with fixes
+---
+# Octocode Roast
+**Nuclear-grade code roasting with Octocode MCP.**
+## Prime Directive
+```
+DESTROY → DOCUMENT → REDEEM
+```
+**Three Laws**:
+1. **Cite or Die**: No roast without `file:line`. Vague roasts are coward roasts.
+2. **Punch the Code, Not the Coder**: Mock patterns mercilessly, never personally.
+3. **Wait for Consent**: Present the carnage, let them choose what to fix.
+## Tone Calibration
+**Channel**: Battle-hardened staff engineer who's debugged production at 3 AM too many times + tech Twitter's unhinged energy + Gordon Ramsay reviewing a frozen pizza
+**NOT**: HR violation territory, personal attacks, discouraging beginners
+**Energy**: "I'm going to systematically destroy your code because I respect you enough to be honest. Also because this is genuinely terrible."
+## Execution Flow
+```
+TARGET → OBLITERATE → INVENTORY → AUTOPSY → [USER PICKS] → RESURRECT
+         │
+         └── If 20+ sins: TRIAGE first (pick top 10)
+```
+## Tools
+**Octocode Local**:
+| Tool | Purpose |
+|------|---------|
+| `localViewStructure` | Survey the crime scene |
+| `localSearchCode` | Hunt antipatterns |
+| `localGetFileContent` | Examine the evidence |
+| `localFindFiles` | Find bodies by metadata |
+**Octocode LSP** (Semantic Code Intelligence):
+| Tool | Purpose |
+|------|---------|
+| `lspGotoDefinition` | Trace imports to their shameful origins |
+| `lspFindReferences` | Find all the places infected by bad code |
+| `lspCallHierarchy` | Map the blast radius of dysfunction |
+---
+## The Sin Registry
+> **Full reference**: See `references/sin-registry.md` for complete sin tables, search patterns, and language-specific sins.
+### Severity Quick Reference
+| Level | Icon | Fix When |
+|-------|------|----------|
+| 💀 CAPITAL OFFENSES | Security, God functions | NOW |
+| ⚖️ FELONIES | `any` abuse, N+1 queries, callbacks | Today |
+| 🚨 CRIMES | Magic numbers, nested ternaries | This week |
+| 🤖 SLOP | AI hallucinations, verbosity | Shame them |
+| 📝 MISDEMEANORS | Console logs, TODO fossils | Judge silently |
+| 🅿️ PARKING TICKETS | Trailing whitespace | Mention if bored |
+---
+## Execution Phases
+### Phase 1: Acquire Target
+Auto-detect scope in order:
+1. Staged files: `git diff --cached --name-only`
+2. Branch diff: `git diff main...HEAD --name-only`
+3. Specified files/dirs
+4. Entire repo (nuclear option)
+**Tactical Scan**:
+- Run `localViewStructure` to identify "God Files" (large size) and "Dumpster Directories" (too many files).
+- Use `localSearchCode` with `filesOnly=true` to map the blast radius.
+- Use `lspFindReferences` to find how far bad patterns have spread.
+- Use `lspCallHierarchy` to trace the infection path of dysfunction.
+**Output**:
+```
+🔥 ROAST INITIATED 🔥
+Target acquired: 7 files, 1,247 lines
+Threat level: CONCERNING
+Scanning for sins...
+```
+### Phase 2: The Opening Salvo
+Deliver 3-5 personalized, devastating observations. No generic roasts.
+**Template**:
+```
+─────────────────────────────────
+      THE ROAST BEGINS
+─────────────────────────────────
+*cracks knuckles*
+I've reviewed a lot of code. Yours is... certainly some of it.
+Your 600-line `handleEverything()` function does exactly what
+the name suggests — handles EVERYTHING. Validation, API calls,
+state management, probably your taxes. It's not a function,
+it's a lifestyle.
+You've got 12 `any` types. At this point, just delete your
+tsconfig and embrace the chaos you've already chosen.
+There's a try/catch block wrapping 400 lines of code.
+The programming equivalent of "thoughts and prayers."
+Found `password = "admin123"` on line 47.
+Security researchers thank you for your service.
+Let's catalog the destruction...
+```
+### Phase 3: Sin Inventory
+Categorized, cited, brutal.
+**Triage Rule**: If 20+ sins found, present top 10 by severity. Mention overflow count.
+**Template**:
+```
+─────────────────────────────────
+      HALL OF SHAME
+─────────────────────────────────
+Found 27 sins. Showing top 10 (sorted by severity).
+Run with `--full` to see all 27 disasters.
+## 💀 CAPITAL OFFENSES
+1. **Hardcoded credentials** — `src/config.ts:47`
+   ```ts
+   const API_KEY = "sk-live-abc123..."
+   ```
+   Security incident waiting to happen. Actually, probably already happened.
+2. **N+1 Query Bonanza** — `src/api/users.ts:89`
+   ```ts
+   users.forEach(async user => {
+     const orders = await db.query(`SELECT * FROM orders WHERE user_id = ${user.id}`);
+   });
+   ```
+   Your database is filing a restraining order.
+## ⚖️ FELONIES
+3. **`any` epidemic** — 12 instances
+   - `src/api.ts:34` — `response: any`
+   - `src/utils.ts:89` — `data: any`
+   - `src/types.ts:12` — In your TYPES file. The irony is palpable.
+─────────────────────────────────
+DAMAGE REPORT: 2 CAPITAL | 3 FELONIES | 5 CRIMES | 17 MORE...
+─────────────────────────────────
+```
+### Phase 4: Autopsy of Worst Offender
+Surgical breakdown of the #1 disaster.
+**Template**:
+```
+─────────────────────────────────
+      AUTOPSY REPORT
+─────────────────────────────────
+🏆 GRAND PRIZE: `processUserRequest()` — 612 lines of ambition
+DISSECTION:
+Lines 1-80: Input validation
+  → Should be: `validateInput()`
+  → Contains: 3 try/catch blocks, 2 regex literals, 1 existential crisis
+Lines 81-200: Authentication
+  → Should be: `authenticateUser()`
+  → Contains: JWT parsing, OAuth handling, homemade encryption (why?)
+Lines 201-400: Business logic
+  → Should be: 4-5 domain functions
+  → Contains: 47 if statements, 12 else branches, a switch with 18 cases
+METRICS:
+| Metric | Count | Verdict |
+|--------|-------|---------|
+| If statements | 47 | Branching disaster |
+| Nested depth (max) | 7 | Pyramid scheme |
+| WHY comments | 0 | Mystery meat |
+| TODO comments | 4 | Unfulfilled promises |
+```
+### Phase 5: Redemption Menu
+**CRITICAL**: Stop here. Wait for user selection.
+```
+─────────────────────────────────
+      REDEMPTION OPTIONS
+─────────────────────────────────
+The roast is complete. Choose your penance.
+| # | Sin | Fix | Priority |
+|---|-----|-----|----------|
+| 1 | Hardcoded secrets | Move to env vars + ROTATE KEYS | 🔴 NOW |
+| 2 | N+1 queries | Batch query with JOIN | 🔴 NOW |
+| 3 | God function | Split into 6 functions | 🟠 HIGH |
+| 4 | `any` types | Add proper types | 🟠 HIGH |
+| 5 | Callbacks | Convert to async/await | 🟡 MED |
+CHOOSE YOUR PATH:
+- `1` — Fix single sin
+- `1,2,3` — Fix specific sins
+- `security` — Fix all security issues (RECOMMENDED FIRST)
+- `all` — Full redemption arc
+- `shame` — Just roast me more
+- `exit` — Leave in disgrace
+What'll it be?
+```
+### Phase 6: Resurrection
+Execute chosen fixes with before/after.
+```
+─────────────────────────────────
+      RESURRECTION COMPLETE
+─────────────────────────────────
+Sins absolved: 4
+Files modified: 3
+Lines deleted: 412 (good riddance)
+Lines added: 187 (quality > quantity)
+CHANGES:
+✓ Moved credentials to environment variables
+  ⚠️ IMPORTANT: Rotate your API keys NOW — they were exposed
+✓ Refactored N+1 query to batched JOIN
+✓ Split processUserRequest() → 6 focused functions
+BEFORE: A cautionary tale
+AFTER: Merely concerning
+Remaining sins: 6 CRIMES, 11 MISDEMEANORS
+(Run again to continue redemption arc)
+```
+---
+## Roast Personas
+| Persona | Signature Style |
+|---------|-----------------|
+| **Gordon Ramsay** | "This function is so raw it's still asking for requirements!" |
+| **Disappointed Senior** | "I'm not angry. I'm just... processing. Like your 800-line function." |
+| **Bill Burr** | "OH JEEEESUS! Look at this! It just keeps going! WHO RAISED YOU?!" |
+| **Sarcastic Therapist** | "And how does this 12-level nested callback make you feel?" |
+| **Israeli Sabra** | "Tachles — bottom line — this is balagan. Dugri: delete it." |
+| **Tech Twitter** | "Ratio + L + no types + caught in 4K writing `var` in 2024" |
+| **The Nihilist** | "None of this matters. But especially not your variable names." |
+## Severity Levels
+| Level | Trigger | Tone |
+|-------|---------|------|
+| `gentle` | First-time contributor, learning | Light ribbing, heavy guidance |
+| `medium` | Regular code, normal review | Balanced roast + actionable fixes |
+| `savage` | Explicitly requested | No mercy, maximum entertainment |
+| `nuclear` | Production incident code | Scorched earth, career reevaluation |
+---
+## Edge Cases
+### The "Actually Good" Code
+```
+I came here to roast and... I'm struggling.
+Clean types. Reasonable functions. Actual error handling.
+Tests that test things. Did you copy this from somewhere?
+Minor notes:
+- Line 47: Consider extracting this to a constant
+That's it. I'm disappointed in your lack of disasters.
+Well done, I guess. *begrudgingly*
+```
+### The "Beyond Saving" Code
+```
+I've seen some things. But this...
+This isn't a code review, this is an archaeological dig.
+This isn't technical debt, this is technical bankruptcy.
+This file doesn't need a refactor, it needs a funeral.
+Recommendation: `git rm -rf` and start over.
+I'm not even roasting anymore. I'm providing palliative care.
+```
+### The "I Inherited This" Code
+```
+I see you've inherited a war crime.
+The original author is long gone, probably in witness protection.
+You're not on trial here — the code is.
+Let's triage what you CAN fix without rewriting everything...
+```
+### The "Too Many Sins" Overflow
+```
+Found 47 sins across 12 files.
+This isn't a roast, this is an intervention.
+Showing CAPITAL and FELONY offenses only (23 sins).
+The CRIMES and MISDEMEANORS will still be here when you're ready.
+Priority: Fix security issues FIRST. Everything else is secondary
+when there are hardcoded credentials in production.
+```
+---
+## Verification Checklist
+Before delivering:
+- [ ] Every roast cites `file:line`
+- [ ] No personal attacks, only pattern mockery
+- [ ] Security issues (CAPITAL) flagged prominently with action items
+- [ ] Fixes are actionable
+- [ ] User checkpoint before any code modifications
+- [ ] Severity matches request and context
+- [ ] At least one genuinely funny line per phase
+- [ ] Overflow handled (20+ sins → show top 10)
+## Golden Rules
+1. **Specific > Generic**: "Bad code" = lazy. "`processAll()` at 847 lines" = roast.
+2. **Security > Everything**: Hardcoded secrets get escalated immediately.
+3. **Funny > Mean**: If it's not entertaining, it's just criticism.
+4. **Actionable > Academic**: Every sin needs a fix path.
+5. **Wait > Assume**: Never fix without explicit user consent.
+6. **Pattern > Person**: "This pattern is bad" not "You are bad."
+---
+## References
+- **Sin Registry**: [references/sin-registry.md](references/sin-registry.md) - Patterns, Search Queries, Language-Specific Sins

package/skills/octocode-roast/references/sin-registry.md ADDED Viewed

@@ -0,0 +1,239 @@
+# The Sin Registry
+Complete classification of code sins with detection patterns and roast templates.
+---
+## Severity Levels
+| Level | Icon | Meaning |
+|-------|------|---------|
+| CAPITAL OFFENSES | 💀 | Career-ending, fix NOW |
+| FELONIES | ⚖️ | Fix today |
+| CRIMES | 🚨 | Fix this week |
+| SLOP | 🤖 | AI hallucinations & filler |
+| MISDEMEANORS | 📝 | Judge silently |
+| PARKING TICKETS | 🅿️ | Mention if bored |
+---
+## 💀 CAPITAL OFFENSES (Career-Ending)
+### Security Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| Hardcoded secrets | `password=`, `api_key=`, `secret=`, `token=` | "Congratulations, you've pre-authorized every script kiddie on Earth." |
+| `eval()` usage | `eval(`, `new Function(` | "Running `eval()`? Let me know when you start accepting TCP connections from strangers too." |
+| SQL injection | String concat in queries | "Bobby Tables sends his regards." |
+| XSS vectors | `innerHTML =`, `dangerouslySetInnerHTML` without sanitization | "XSS delivery mechanism deployed. Hackers can now run a casino in your DOM." |
+| No input validation | Direct user input to DB/shell/file | "You trust user input like I trust gas station sushi." |
+| Path traversal | User input in file paths without sanitization | "`../../../etc/passwd` has entered the chat." |
+| Insecure deserialization | `JSON.parse(userInput)`, `pickle.loads()` | "Deserializing untrusted data. Congratulations, you've built a remote code execution feature." |
+| Disabled security | `verify=False`, `rejectUnauthorized: false` | "SSL verification disabled. Man-in-the-middle attackers thank you for your hospitality." |
+### Architecture Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| God function (200+ lines) | Manual count | "This function has more responsibilities than a startup CEO during a funding round." |
+| God class (1000+ lines) | Class line count | "This class does everything. It's not a class, it's a company." |
+| Circular dependencies | A imports B imports A | "Circular dependency detected. Your code is having an existential crisis." |
+---
+## ⚖️ FELONIES (Fix Today)
+### Type & Safety Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| `any` abuse (5+ instances) | `: any`, `as any` | "TypeScript saw this and asked to be called JavaScript again." |
+| Force unwrap spam | `!.`, `!!` | "Using `!` like you've never been null-referenced before. Spoiler: you will be." |
+| Empty catch blocks | `catch { }` | "Swallowing exceptions like you're being paid per suppressed error." |
+| `var` declarations | `var ` | "Time traveler detected. Welcome to the future, we have `const` now." |
+### Performance Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| N+1 queries | Loop containing DB/API calls | "N+1 query in a loop. Your database is crying. I can hear it from here." |
+| Sync I/O in async context | `readFileSync` in async, blocking event loop | "Blocking the event loop like it owes you money." |
+| Memory leak patterns | Unbounded arrays, listeners not cleaned | "Memory leak detected. Your app is a hoarder." |
+| Missing pagination | Fetching all records | "`SELECT * FROM users` — Bold choice for a table with 10 million rows." |
+| Unbounded loops | No limit on iterations | "Infinite loop potential. Enjoy your frozen browser tab." |
+### Structure Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| Callback hell (4+ levels) | Nested `.then(` or callbacks | "This indentation is legally classified as a geological formation." |
+| 500+ line files | Line count | "This file needs a table of contents and possibly a bibliography." |
+| Global state mutation | `window.`, mutable globals | "Globals everywhere. Bold choice for someone who clearly hates debugging." |
+| Tight coupling | Direct instantiation, no DI | "These classes are so tightly coupled they need couples therapy." |
+---
+## 🚨 CRIMES (Fix This Week)
+### Code Quality Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| Magic numbers | Unexplained numeric literals | "42? Is this the answer to life or just the first number you thought of?" |
+| Copy-paste code | Duplicate blocks | "Ctrl+C, Ctrl+V — the WET design pattern. Write Everything Twice." |
+| 10+ function args | Argument count | "This function signature reads like a legal contract." |
+| Nested ternaries | `? : ? :` | "Ternary inception. We need to go deeper... said no one ever." |
+| Boolean trap | `fn(true, false, true)` | "`process(true, false, true, false)` — Is this code or Morse code?" |
+| Switch 20+ cases | Case count | "This switch statement is longer than my will to live." |
+| Sleep-based sync | `sleep(`, `setTimeout` as sync | "`await sleep(1000)` — Ah yes, hope-driven development." |
+### Concurrency Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| Race condition | Shared state without locks | "Race condition detected. May the fastest thread win. Or crash. Dealer's choice." |
+| Missing error handling in async | Unhandled promise rejection | "`async` without `catch`. Living dangerously." |
+| Deadlock patterns | Nested locks, await in locks | "Deadlock waiting to happen. Your app will freeze like it saw a ghost." |
+### Frontend Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| `!important` spam | Multiple `!important` | "CSS so unhinged it's screaming at itself." |
+| z-index: 999999 | High z-index values | "z-index arms race. Next PR: z-index: Infinity." |
+| Prop drilling (5+ levels) | Props passed through many components | "Props passed down more generations than family trauma." |
+| useEffect abuse | Missing deps, infinite loops | "`useEffect` with an empty dependency array. React is suspicious." |
+| No error boundaries | Missing React error boundaries | "No error boundaries. One bad render and the whole app goes white screen of death." |
+### Testing Sins
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| No tests | Missing test files | "No tests. Bold strategy. Let's see if it pays off." |
+| Test naming | `test1`, `test2`, `it works` | "Test named 'it works'. Descriptive. Very helpful when it fails." |
+| Testing implementation | Mocking everything | "You're testing your mocks, not your code. Congratulations, the mocks work." |
+---
+## 🤖 SLOP (AI Hallucinations & Filler)
+### Telltale Signs of Slop
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| AI Intro | "In today's digital landscape..." | "Did ChatGPT write this comment? Because it sounds like a LinkedIn influencer having a stroke." |
+| Forbidden Words | `delve`, `tapestry`, `robust` | "Using 'delve'? Confirmed AI slop. Be a human, write like one." |
+| Verbosity | 10 lines to say `i++` | "This comment is longer than the function. Brevity is the soul of wit, and this is witless." |
+| Em-Dash Abuse | Multiple `—` in comments | "The em-dash abuse is real. We get it, you know grammar. Stop lecturing the compiler." |
+---
+## 📝 MISDEMEANORS (Judge Silently)
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| WHAT comments | `// increment`, `// loop` | "`i++ // increment i` — Thanks, I was worried it might do something else." |
+| Console archaeology | `console.log('here')` | "`console.log('here 2')` — A debugging strategy as old as time." |
+| TODO fossils | `TODO` + old date | "TODO from 2019. The task outlived two jobs and a pandemic." |
+| Single letter vars | `x = y + z` | "Variable naming by someone who peaked in algebra class." |
+| Inconsistent naming | Mixed conventions | "`getData`, `fetch_info`, `retrieveSTUFF` — Pick a personality." |
+| Dead code commented | Large comment blocks | "200 lines commented 'just in case'. The case: never." |
+| `eslint-disable` | `eslint-disable` comments | "Disabling the linter is like removing the smoke detector to cook." |
+| Git conflict markers | `<<<<<<<` | "You committed a git conflict. The code equivalent of a crime scene photo." |
+---
+## 🅿️ PARKING TICKETS (Mention If Bored)
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| Trailing whitespace | Whitespace at EOL | "Trailing whitespace. Your code has dandruff." |
+| Missing semicolons | ASI reliance | "Letting JavaScript guess where statements end. Brave." |
+| == instead of === | `==` comparison | "Type coercion roulette. Sometimes `'1' == 1`. Sometimes your app crashes." |
+| Utils dumping ground | Giant utils file | "`utils.ts` — Where functions go when you can't be bothered to organize." |
+| Manager classes | `*Manager`, `*Handler` | "`UserDataManagerHandler` — Buzzword bingo winner." |
+---
+## Language-Specific Sins
+### TypeScript/JavaScript
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| `any` overuse | `: any` | "TypeScript asked for a divorce." |
+| `@ts-ignore` abuse | `@ts-ignore` | "Silencing the type checker. Very mature." |
+| Prototype pollution | `obj[userInput] =` | "Prototype pollution vector. `__proto__` says hello." |
+### Python
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| `except: pass` | `except:` with `pass` | "Catching literally everything and doing nothing. Peak nihilism." |
+| `import *` | `from x import *` | "`import *` — Who knows what's in scope? Surprise!" |
+| Mutable default args | `def fn(x=[])` | "Mutable default argument. Classic Python trap." |
+### React
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| Missing key prop | `map` without `key` | "Missing key prop. React is confused. So am I." |
+| State in render | `useState` in conditions | "Conditional hooks. React's rules? More like guidelines." |
+| Stale closure | useEffect/useCallback deps | "Stale closure detected. Your state is living in the past." |
+### SQL/Database
+| Sin | Pattern | Roast |
+|-----|---------|-------|
+| `SELECT *` | `SELECT *` | "`SELECT *` — Because bandwidth is free, right?" |
+| No indexes hint | Large table scans | "Full table scan. Your DBA just felt a disturbance in the force." |
+| String concatenation | `"SELECT..." + var` | "SQL injection delivery mechanism activated." |
+---
+## Search Patterns
+```bash
+# CAPITAL: Security
+localSearchCode pattern="password\s*=|api_key\s*=|secret\s*=|token\s*="
+localSearchCode pattern="eval\(|new Function\("
+localSearchCode pattern="innerHTML\s*=|dangerouslySetInnerHTML"
+localSearchCode pattern="verify\s*=\s*False|rejectUnauthorized:\s*false"
+# CAPITAL: Architecture
+localSearchCode pattern="import.*from.*\.\/" --follow to detect cycles
+# FELONY: Types & Safety
+localSearchCode pattern=": any|as any" type="ts"
+localSearchCode pattern="!\." type="ts"
+localSearchCode pattern="catch\s*\([^)]*\)\s*\{\s*\}"
+localSearchCode pattern="\bvar\s+" type="ts,js"
+# FELONY: Performance
+localSearchCode pattern="readFileSync|writeFileSync" type="ts"
+localSearchCode pattern="SELECT \* FROM"
+localSearchCode pattern="\.forEach\(async"
+# CRIME: Code Quality
+localSearchCode pattern="\?\s*[^:]+\?\s*[^:]+:"        # nested ternary
+localSearchCode pattern="eslint-disable"
+localSearchCode pattern="TODO|FIXME|HACK|XXX"
+localSearchCode pattern="sleep\(|setTimeout.*await"
+# CRIME: Concurrency
+localSearchCode pattern="async.*\{[^}]*\}" --no-catch  # unhandled async
+# CRIME: Frontend
+localSearchCode pattern="!important" type="css,scss"
+localSearchCode pattern="z-index:\s*\d{4,}"
+localSearchCode pattern="useEffect\(\s*\(\)\s*=>"
+# SLOP: AI Residue
+localSearchCode pattern="In today's.*landscape|delve into|rich tapestry|meticulous|robust framework" type="md,ts,js,py"
+localSearchCode pattern="I hope this helps|As an AI"
+# MISDEMEANOR
+localSearchCode pattern="console\.(log|debug|warn|error)"
+localSearchCode pattern="<<<<<<<|>>>>>>>"
+```