测试套件审计员：自动化测试质量评估与风险管理工具

ln-630-test-auditor by levnikolaevich/claude-code-skills

166 周安装量

253 GitHub Stars

安装命令

npx skills add https://github.com/levnikolaevich/claude-code-skills --skill ln-630-test-auditor

🇨🇳中文介绍

Paths: File paths (shared/, references/, ../ln-*) are relative to skills repo root. If not found at CWD, locate this SKILL.md directory and go up one level for repo root. If shared/ is missing, fetch files via WebFetch from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}.

测试套件审计员 (L2 协调器)

协调跨 8 个质量类别的全面测试套件审计，使用 7 个专业工作者。发现自动化测试 (*.test.*, *.spec.*) 和手动测试 (tests/manual/**/*.sh)。

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

阶段 1：发现（自动化）

输入： 代码库根目录

使用 Glob 查找所有测试文件：
- **/*.test.* (Jest, Vitest)
- **/*.spec.* (Mocha, Jasmine)
- **/__tests__/**/* (Jest 约定)
- tests/manual/**/*.sh (手动 bash 测试脚本)
解析测试文件结构（测试名称、断言数量）
为每个文件标记 type: "automated"|"manual"
对于手动测试：检测 has_expected_dir（同级目录 expected/ 是否存在）、suite_dir、harness_sourced（是否引用了 test_harness.sh）
从 docs/tasks/kanban_board.md 自动发现团队 ID
索引代码库图（如果可用）： 如果 hex-graph MCP 服务器可用：
- index_project(path=codebase_root) — 构建/刷新代码图
- 为工作者添加 graph_indexed: true 到 contextStore（ln-634 使用 find_hotspots 进行关键路径识别）

输出： testFilesMetadata — 包含基本统计信息和 type 字段的测试文件列表

阶段 2：研究最佳实践（一次性）

目标： 一次性收集测试最佳实践上下文，与所有工作者共享

使用 MCP Ref/Context7 研究检测到的技术栈的测试最佳实践
加载 ../shared/references/risk_based_testing_guide.md
构建 contextStore，包含：
- 测试理念（端到端为主，单元测试为辅）
- 有用性分数公式（影响 × 概率）
- 反模式目录
- 框架检测模式
- 手动测试质量标准（测试框架采用、黄金文件、快速失败、配置源）

将 output_dir 添加到 contextStore：

{
  "output_dir": "docs/project/.audit/ln-630/{YYYY-MM-DD}"
}

输出： contextStore — 所有工作者共享的上下文

关键优势： 上下文一次性收集 → 传递给所有工作者 → 令牌高效

阶段 3：领域发现

mkdir -p {output_dir}   # 工作者文件在合并后清理（阶段 7）

必须阅读： 加载 shared/references/audit_coordinator_domain_mode.md。

使用共享模式检测 domain_mode 和 all_domains。此协调器保留一条本地规则：共享文件夹在覆盖率分析中保持可见，但不增加业务领域覆盖率百分比。

阶段 4：委托给工作者

必须阅读： 加载 shared/references/task_delegation_pattern.md 和 shared/references/audit_worker_core_contract.md。

阶段 4a：全局工作者（并行）

全局工作者扫描整个测试套件（不感知领域）：

| 工作者 | 类别 | 审计内容

---|---|---|---
1 | ln-631-test-business-logic-auditor | 业务逻辑焦点 | 框架/库测试（Prisma, Express, bcrypt, JWT, axios, React hooks）→ 移除
2 | ln-632-test-e2e-priority-auditor | 端到端优先级 | 端到端基线（2/端点），金字塔验证，缺失的端到端测试
3 | ln-633-test-value-auditor | 基于风险的价值 | 有用性分数 = 影响 × 概率决策：≥15 保留，10-14 审查，<10 移除
5 | ln-635-test-isolation-auditor | 隔离 + 反模式 | 隔离（6 个类别），确定性，反模式（7 种类型）
6 | ln-636-manual-test-auditor | 手动测试质量 | 测试框架采用，黄金文件，快速失败，配置源，模板合规性，幂等性
7 | ln-637-test-structure-auditor | 测试结构 | 目录布局，测试到源码的映射，扁平目录增长信号，共置一致性

按类型过滤的委托： 协调器在传递给工作者之前按 type 拆分 testFilesMetadata：

ln-631..635 仅接收 testFilesMetadata.filter(f => f.type == "automated")
ln-636 仅接收 testFilesMetadata.filter(f => f.type == "manual")
ln-637 接收所有 testFilesMetadata（两种类型 — 结构分析需要完整视图）

调用（6 个工作者并行）：

// filteredByType: ln-631..635 为自动化测试，ln-636 为手动测试，ln-637 为所有测试
FOR EACH worker IN [ln-631, ln-632, ln-633, ln-635, ln-636, ln-637]:
  Agent(description: "Test audit via " + worker,
       prompt: "Execute audit worker.

Step 1: Invoke worker:
  Skill(skill: \"" + worker + "\")

CONTEXT:
" + JSON.stringify({...contextStore, testFilesMetadata: filteredByType}),
       subagent_type: "general-purpose")

阶段 4b：领域感知工作者（按领域并行）

领域感知工作者每个领域运行一次：

| 工作者 | 类别 | 审计内容

---|---|---|---
4 | ln-634-test-coverage-auditor | 覆盖率缺口 | 每个领域关键路径的缺失测试（资金 20+, 安全 20+, 数据 15+, 核心流程 15+）

IF domain_mode == "domain-aware":
  FOR EACH domain IN all_domains:
    domain_context = {
      ...contextStore,
      domain_mode: "domain-aware",
      current_domain: { name: domain.name, path: domain.path }
    }
    Agent(description: "Test coverage " + domain.name + " via ln-634",
         prompt: "Execute audit worker.

Step 1: Invoke worker:
  Skill(skill: \"ln-634-test-coverage-auditor\")

CONTEXT:
" + JSON.stringify(domain_context),
         subagent_type: "general-purpose")
ELSE:
  // 回退：为整个代码库调用一次（全局模式）
  Agent(description: "Test coverage via ln-634",
       prompt: "Execute audit worker.

Step 1: Invoke worker:
  Skill(skill: \"ln-634-test-coverage-auditor\")

CONTEXT:
" + JSON.stringify(contextStore),
       subagent_type: "general-purpose")

阶段 4a：所有 6 个全局工作者并行运行
阶段 4b：所有 N 个领域感知调用并行运行
示例：3 个领域 → 6 个全局 + 3 个 ln-634 调用在单条消息中

领域感知工作者添加可选字段：domain, scan_path

阶段 5：聚合结果（基于文件）

必须阅读： 加载 shared/references/audit_coordinator_aggregation.md 和 shared/references/context_validation.md。

使用共享的聚合模式进行输出目录检查、返回值解析、严重性汇总、文件读取和最终报告组装。

此协调器的本地规则：

类别 1-3, 5-7 在最终报告中保持全局。
类别 4（覆盖率缺口）在 domain_mode="domain-aware" 时按领域分组。
总体分数 = 7 个工作者分数的平均值。

上下文验证（后过滤）：

对合并的发现应用规则 1, 5 和测试特定过滤器：

FOR EACH finding WHERE severity IN (HIGH, MEDIUM):
  # Rule 1: ADR/Planned Override
  IF finding matches ADR → advisory "[Planned: ADR-XXX]"

  # Rule 5: Locality/Single-Consumer
  IF "extract shared helper" suggestion AND consumer_count == 1 → advisory

  # Test-specific: Custom wrapper detection
  IF "framework test" finding (ln-631) AND test imports custom wrapper class:
    → advisory (tests custom logic, not framework)

  # Test-specific: Setup/fixture code
  IF "The Liar" finding (ln-635) AND file is conftest/fixture/setup:
    → advisory (setup code, no assertions expected)

  # Test-specific: Parameterized test
  IF "The Giant" finding (ln-635) AND test is parameterized/data-driven:
    → severity -= 1 (size from data, not complexity)

Downgraded findings → "Advisory Findings" section in report.
Recalculate scores excluding advisory findings from penalty.

豁免： 覆盖率缺口 CRITICAL 发现（ln-634），风险价值分数（ln-633）。

## 测试套件审计报告 - [DATE]

### 执行摘要
[2-3 句话：测试套件健康状况、主要问题、关键建议]

### 严重性摘要

| 严重性 | 数量 |
|----------|-------|
| 严重 | X |
| 高 | X |
| 中 | X |
| 低 | X |
| **总计** | **X** |

### 合规性分数

| 类别 | 分数 | 备注 |
|----------|-------|-------|
| 业务逻辑焦点 | X/10 | 发现 X 个框架测试 |
| 端到端关键覆盖率 | X/10 | 缺少 X 个关键路径的端到端测试 |
| 基于风险的价值 | X/10 | X 个低价值测试 |
| 覆盖率缺口 | X/10 | X 个未测试的关键路径 |
| 隔离与反模式 | X/10 | X 个隔离 + 反模式问题 |
| 手动测试质量 | X/10 | X 个手动测试质量问题 |
| 测试结构 | X/10 | X 个布局/组织问题 |
| **总体** | **X/10** | 7 个类别的平均值 |

### 领域覆盖率摘要（新增 - 如果 domain_mode="domain-aware"）

| 领域 | 关键路径 | 已测试 | 覆盖率 % | 缺口 |
|--------|---------------|--------|------------|------|
| users | 8 | 6 | 75% | 2 |
| orders | 12 | 8 | 67% | 4 |
| payments | 6 | 5 | 83% | 1 |
| **总计** | **26** | **19** | **73%** | **7** |

### 审计发现

| 严重性 | 位置 | 问题 | 原则 | 建议 | 工作量 |
|----------|----------|-------|-----------|----------------|--------|
| **严重** | routes/payment.ts:45 | 支付处理缺少端到端测试（优先级 25） | 端到端关键覆盖率 / 资金流 | 添加端到端测试：成功支付 + 折扣边缘情况 | M |
| **高** | auth.test.ts:45-52 | 测试 'bcrypt hashes password' 验证库行为 | 业务逻辑焦点 / 加密测试 | 删除 — bcrypt 已由维护者测试 | S |
| **高** | db.test.ts:78-85 | 测试 'Prisma findMany returns array' 验证 ORM | 业务逻辑焦点 / ORM 测试 | 删除 — Prisma 已测试 | S |
| **高** | user.test.ts:45 | 反模式 'The Liar' — 无断言 | 反模式 / The Liar | 添加特定断言或删除测试 | S |
| **中** | utils.test.ts:23-27 | 测试 'validateEmail' 有用性分数为 4 | 基于风险的价值 / 低优先级 | 删除 — 可能已被端到端注册测试覆盖 | S |
| **中** | order.test.ts:200-350 | 反模式 'The Giant' — 150 行 | 反模式 / The Giant | 拆分为专注的测试 | M |
| **低** | payment.test.ts | 反模式 'Happy Path Only' — 无错误测试 | 反模式 / Happy Path | 添加负面测试 | M |

### 按领域划分的覆盖率缺口（如果 domain_mode="domain-aware"）

#### 领域：users (src/users/)

| 严重性 | 类别 | 缺失的测试 | 位置 | 优先级 | 工作量 |
|----------|----------|--------------|----------|----------|--------|
| 严重 | 资金 | 端到端：processRefund() | services/user.ts:120 | 20 | M |
| 高 | 安全 | 单元：validatePermissions() | middleware/auth.ts:45 | 18 | S |

#### 领域：orders (src/orders/)

| 严重性 | 类别 | 缺失的测试 | 位置 | 优先级 | 工作量 |
|----------|----------|--------------|----------|----------|--------|
| 严重 | 资金 | 端到端：applyDiscount() | services/order.ts:45 | 25 | M |
| 高 | 数据 | 集成：orderTransaction() | repositories/order.ts:78 | 16 | M |

接收包含测试最佳实践的 contextStore
接收包含测试文件列表的 testFilesMetadata（标记有 type: "automated"|"manual"）
工作者 1-5 (ln-631..ln-635) 专注于自动化测试；工作者 6 (ln-636) 专注于手动测试；工作者 7 (ln-637) 分析所有测试文件的结构
分析时加载完整的测试文件内容
返回包含类别发现的结构化 JSON
独立运行（一个失败不会阻塞其他工作者）

协调器：仅元数据（约 1000 令牌）
工作者：需要时加载完整的测试文件内容（每个约 5000-10000 令牌）
上下文一次性收集，与所有工作者共享

两阶段委托： 全局工作者（6 个）+ 领域感知工作者（ln-634 × N 个领域）
领域发现： 从文件夹结构自动检测领域；如果 <2 个领域则回退到全局模式
并行执行： 所有工作者（全局 + 领域感知）并行运行
按领域分组的输出： 覆盖率缺口发现按领域分组（如果 domain_mode="domain-aware"）
删除 > 归档： 移除无用测试，不要注释掉
端到端基线： 每个端点需要 2 个端到端测试（正面 + 负面）
证明每个测试的合理性： 如果无法解释优先级 ≥15，则移除它
信任框架： 不要测试 Express/Prisma/bcrypt 的行为
无性能/负载测试： 标记并移除测量吞吐量/延迟/内存的测试（DevOps Epic 领域）
代码是真理： 如果测试与代码行为矛盾，则更新测试
语言保留： 使用项目的语言（英文/俄文）报告

阶段 6：追加结果日志

必须阅读： 加载 shared/references/results_log_pattern.md

向 docs/project/.audit/results_log.md 追加一行，包含：Skill=ln-630, Metric=overall_score, Scale=0-10, 来自阶段 5 聚合的分数。计算与上一个 ln-630 行的差值。如果文件缺失则创建并添加表头。滚动窗口：最多 50 条记录。

阶段 7：清理工作者文件

rm -rf {output_dir}

删除带日期的输出目录 (docs/project/.audit/ln-630/{YYYY-MM-DD}/)。合并的报告和结果日志已经保存了所有审计数据。

通过 Glob 发现所有测试文件（自动化 + 手动）
手动测试文件在 testFilesMetadata 中标记为 type: "manual"
从测试最佳实践中收集上下文（MCP Ref/Context7）
领域发现完成（确定 domain_mode）
使用测试元数据 + 领域信息构建 contextStore
全局工作者（6 个）并行调用（ln-631, ln-632, ln-633, ln-635, ln-636, ln-637）
领域感知工作者（ln-634）按领域并行调用
所有工作者成功完成（或报告错误）
结果按领域分组聚合（如果 domain_mode="domain-aware"）
构建领域覆盖率摘要（如果 domain_mode="domain-aware"）
计算合规性分数（8 个类别）
为每个测试做出保留/移除/重构决策
识别带有优先级的缺失测试（如果适用则按领域分组）
反模式已分类
报告写入 docs/project/test_audit.md
结果日志行追加到 docs/project/.audit/results_log.md
合并后清理工作者输出目录
向用户返回摘要

阶段 8：元分析

必须阅读： 加载 shared/references/meta_analysis_protocol.md

技能类型：review-coordinator（仅工作者）。在所有阶段完成后运行。使用 review-coordinator — workers only 格式输出到聊天。

编排器生命周期： shared/references/orchestrator_pattern.md
基于风险的测试方法： shared/references/risk_based_testing_guide.md
任务委托模式： shared/references/task_delegation_pattern.md
领域模式模式： shared/references/audit_coordinator_domain_mode.md
聚合模式： shared/references/audit_coordinator_aggregation.md
必须阅读： shared/references/research_tool_fallback.md

工作者：
- ln-631-test-business-logic-auditor — 框架测试检测
- ln-632-test-e2e-priority-auditor — 端到端基线验证
- ln-633-test-value-auditor — 有用性分数计算
- ln-634-test-coverage-auditor — 覆盖率缺口识别
- ln-635-test-isolation-auditor — 隔离 + 反模式
- ln-636-manual-test-auditor — 手动测试质量
- ln-637-test-structure-auditor — 测试结构
参考：
- ../shared/references/risk_based_testing_guide.md — 基于风险的测试指南

版本： 4.0.0 最后更新： 2025-12-23

🇺🇸English

Paths: File paths (shared/, references/, ../ln-*) are relative to skills repo root. If not found at CWD, locate this SKILL.md directory and go up one level for repo root. If shared/ is missing, fetch files via WebFetch from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}.

Test Suite Auditor (L2 Coordinator)

Coordinates comprehensive test suite audit across 8 quality categories using 7 specialized workers. Discovers both automated tests (*.test.*, *.spec.*) and manual tests (tests/manual/**/*.sh).

Purpose & Scope

L2 Coordinator that delegates to L3 specialized audit workers
Audits all tests against 8 quality categories (via 7 workers)
Calculates Usefulness Score for each test (Keep/Remove/Refactor)
Identifies missing tests for critical business logic
Detects anti-patterns and isolation issues
Aggregates results into unified report
Write report to docs/project/test_audit.md (file-based, no task creation)
Manual invocation by user; not part of Story pipeline

Core Philosophy

"Write tests. Not too many. Mostly integration." — Kent Beck "Test based on risk, not coverage." — ISO 29119

Key Principles:

Test business logic, not frameworks — bcrypt/Prisma/Express already tested
No performance/load/stress tests — Tests infrastructure, not code correctness (use k6/JMeter separately)
Risk-based prioritization — Priority ≥15 or remove
E2E for critical paths only — Money/Security/Data (Priority ≥20)
Usefulness over quantity — One useful test > 10 useless tests
Every test must justify existence — Impact × Probability ≥15

Workflow

Phase 1: Discovery (Automated)

Inputs: Codebase root directory

Actions:

Find all test files using Glob:
- **/*.test.* (Jest, Vitest)
- **/*.spec.* (Mocha, Jasmine)
- **/__tests__/**/* (Jest convention)
- tests/manual/**/*.sh (manual bash test scripts)
Parse test file structure (test names, assertions count)
Tag each file with type: "automated"|"manual"
For manual tests: detect has_expected_dir (sibling expected/ exists), suite_dir, harness_sourced (sources test_harness.sh)

Output: testFilesMetadata — list of test files with basic stats and type field

Phase 2: Research Best Practices (ONCE)

Goal: Gather testing best practices context ONCE, share with all workers

Actions:

Use MCP Ref/Context7 to research testing best practices for detected tech stack
Load ../shared/references/risk_based_testing_guide.md
Build contextStore with:
- Testing philosophy (E2E primary, Unit supplementary)
- Usefulness Score formulas (Impact × Probability)
- Anti-patterns catalog
- Framework detection patterns
- Manual test quality criteria (harness adoption, golden files, fail-fast, config sourcing)

Add output_dir to contextStore:

{
  "output_dir": "docs/project/.audit/ln-630/{YYYY-MM-DD}"
}

Output: contextStore — shared context for all workers

Key Benefit: Context gathered ONCE → passed to all workers → token-efficient

Phase 3: Domain Discovery

mkdir -p {output_dir}   # Worker files cleaned up after consolidation (Phase 7)

MANDATORY READ: Load shared/references/audit_coordinator_domain_mode.md.

Detect domain_mode and all_domains with the shared pattern. This coordinator keeps one local rule: shared folders remain visible in coverage analysis, but do not inflate business-domain coverage percentages.

Phase 4: Delegate to Workers

MANDATORY READ: Load shared/references/task_delegation_pattern.md and shared/references/audit_worker_core_contract.md.

Phase 4a: Global Workers (PARALLEL)

Global workers scan entire test suite (not domain-aware):

| Worker | Category | What It Audits

---|---|---|---
1 | ln-631-test-business-logic-auditor | Business Logic Focus | Framework/Library tests (Prisma, Express, bcrypt, JWT, axios, React hooks) → REMOVE
2 | ln-632-test-e2e-priority-auditor | E2E Priority | E2E baseline (2/endpoint), Pyramid validation, Missing E2E tests
3 | ln-633-test-value-auditor | Risk-Based Value | Usefulness Score = Impact × ProbabilityDecisions: ≥15 KEEP, 10-14 REVIEW, <10 REMOVE
5 | ln-635-test-isolation-auditor | Isolation + Anti-Patterns | Isolation (6 categories), Determinism, Anti-Patterns (7 types)
6 | ln-636-manual-test-auditor | Manual Test Quality | Harness adoption, golden files, fail-fast, config sourcing, template compliance, idempotency
7 | ln-637-test-structure-auditor | Test Structure | Directory layout, test-to-source mapping, flat directory growth signals, co-location consistency

Type-filtered delegation: Coordinator splits testFilesMetadata by type before passing to workers:

ln-631..635 receive testFilesMetadata.filter(f => f.type == "automated") only
ln-636 receives testFilesMetadata.filter(f => f.type == "manual") only
ln-637 receives ALL testFilesMetadata (both types — structure analysis requires full picture)

Invocation (6 workers in PARALLEL):

// filteredByType: automated for ln-631..635, manual for ln-636, ALL for ln-637
FOR EACH worker IN [ln-631, ln-632, ln-633, ln-635, ln-636, ln-637]:
  Agent(description: "Test audit via " + worker,
       prompt: "Execute audit worker.

Step 1: Invoke worker:
  Skill(skill: \"" + worker + "\")

CONTEXT:
" + JSON.stringify({...contextStore, testFilesMetadata: filteredByType}),
       subagent_type: "general-purpose")

Phase 4b: Domain-Aware Worker (PARALLEL per domain)

Domain-aware worker runs once per domain:

| Worker | Category | What It Audits

---|---|---|---
4 | ln-634-test-coverage-auditor | Coverage Gaps | Missing tests for critical paths per domain (Money 20+, Security 20+, Data 15+, Core Flows 15+)

Invocation:

IF domain_mode == "domain-aware":
  FOR EACH domain IN all_domains:
    domain_context = {
      ...contextStore,
      domain_mode: "domain-aware",
      current_domain: { name: domain.name, path: domain.path }
    }
    Agent(description: "Test coverage " + domain.name + " via ln-634",
         prompt: "Execute audit worker.

Step 1: Invoke worker:
  Skill(skill: \"ln-634-test-coverage-auditor\")

CONTEXT:
" + JSON.stringify(domain_context),
         subagent_type: "general-purpose")
ELSE:
  // Fallback: invoke once for entire codebase (global mode)
  Agent(description: "Test coverage via ln-634",
       prompt: "Execute audit worker.

Step 1: Invoke worker:
  Skill(skill: \"ln-634-test-coverage-auditor\")

CONTEXT:
" + JSON.stringify(contextStore),
       subagent_type: "general-purpose")

Parallelism strategy:

Phase 4a: All 6 global workers run in PARALLEL
Phase 4b: All N domain-aware invocations run in PARALLEL
Example: 3 domains → 6 global + 3 ln-634 invocations in single message

Domain-aware workers add optional fields: domain, scan_path

Phase 5: Aggregate Results (File-Based)

MANDATORY READ: Load shared/references/audit_coordinator_aggregation.md and shared/references/context_validation.md.

Use the shared aggregation pattern for output directory checks, return-value parsing, severity rollups, file reads, and final report assembly.

Local rules for this coordinator:

Categories 1-3, 5-7 stay global in the final report.
Category 4 (Coverage Gaps) is grouped per domain when domain_mode="domain-aware".
Overall score = average of 7 worker scores.

Context Validation (Post-Filter):

Apply Rules 1, 5 + test-specific filters to merged findings:

FOR EACH finding WHERE severity IN (HIGH, MEDIUM):
  # Rule 1: ADR/Planned Override
  IF finding matches ADR → advisory "[Planned: ADR-XXX]"

  # Rule 5: Locality/Single-Consumer
  IF "extract shared helper" suggestion AND consumer_count == 1 → advisory

  # Test-specific: Custom wrapper detection
  IF "framework test" finding (ln-631) AND test imports custom wrapper class:
    → advisory (tests custom logic, not framework)

  # Test-specific: Setup/fixture code
  IF "The Liar" finding (ln-635) AND file is conftest/fixture/setup:
    → advisory (setup code, no assertions expected)

  # Test-specific: Parameterized test
  IF "The Giant" finding (ln-635) AND test is parameterized/data-driven:
    → severity -= 1 (size from data, not complexity)

Downgraded findings → "Advisory Findings" section in report.
Recalculate scores excluding advisory findings from penalty.

Exempt: Coverage gap CRITICAL findings (ln-634), risk-value scores (ln-633).

Output Format

## Test Suite Audit Report - [DATE]

### Executive Summary
[2-3 sentences: test suite health, major issues, key recommendations]

### Severity Summary

| Severity | Count |
|----------|-------|
| Critical | X |
| High | X |
| Medium | X |
| Low | X |
| **Total** | **X** |

### Compliance Score

| Category | Score | Notes |
|----------|-------|-------|
| Business Logic Focus | X/10 | X framework tests found |
| E2E Critical Coverage | X/10 | X critical paths missing E2E |
| Risk-Based Value | X/10 | X low-value tests |
| Coverage Gaps | X/10 | X critical paths untested |
| Isolation & Anti-Patterns | X/10 | X isolation + anti-pattern issues |
| Manual Test Quality | X/10 | X manual test quality issues |
| Test Structure | X/10 | X layout/organization issues |
| **Overall** | **X/10** | Average of 7 categories |

### Domain Coverage Summary (NEW - if domain_mode="domain-aware")

| Domain | Critical Paths | Tested | Coverage % | Gaps |
|--------|---------------|--------|------------|------|
| users | 8 | 6 | 75% | 2 |
| orders | 12 | 8 | 67% | 4 |
| payments | 6 | 5 | 83% | 1 |
| **Total** | **26** | **19** | **73%** | **7** |

### Audit Findings

| Severity | Location | Issue | Principle | Recommendation | Effort |
|----------|----------|-------|-----------|----------------|--------|
| **CRITICAL** | routes/payment.ts:45 | Missing E2E for payment processing (Priority 25) | E2E Critical Coverage / Money Flow | Add E2E: successful payment + discount edge cases | M |
| **HIGH** | auth.test.ts:45-52 | Test 'bcrypt hashes password' validates library behavior | Business Logic Focus / Crypto Testing | Delete — bcrypt already tested by maintainers | S |
| **HIGH** | db.test.ts:78-85 | Test 'Prisma findMany returns array' validates ORM | Business Logic Focus / ORM Testing | Delete — Prisma already tested | S |
| **HIGH** | user.test.ts:45 | Anti-pattern 'The Liar' — no assertions | Anti-Patterns / The Liar | Add specific assertions or delete test | S |
| **MEDIUM** | utils.test.ts:23-27 | Test 'validateEmail' has Usefulness Score 4 | Risk-Based Value / Low Priority | Delete — likely covered by E2E registration | S |
| **MEDIUM** | order.test.ts:200-350 | Anti-pattern 'The Giant' — 150 lines | Anti-Patterns / The Giant | Split into focused tests | M |
| **LOW** | payment.test.ts | Anti-pattern 'Happy Path Only' — no error tests | Anti-Patterns / Happy Path | Add negative tests | M |

### Coverage Gaps by Domain (if domain_mode="domain-aware")

#### Domain: users (src/users/)

| Severity | Category | Missing Test | Location | Priority | Effort |
|----------|----------|--------------|----------|----------|--------|
| CRITICAL | Money | E2E: processRefund() | services/user.ts:120 | 20 | M |
| HIGH | Security | Unit: validatePermissions() | middleware/auth.ts:45 | 18 | S |

#### Domain: orders (src/orders/)

| Severity | Category | Missing Test | Location | Priority | Effort |
|----------|----------|--------------|----------|----------|--------|
| CRITICAL | Money | E2E: applyDiscount() | services/order.ts:45 | 25 | M |
| HIGH | Data | Integration: orderTransaction() | repositories/order.ts:78 | 16 | M |

Worker Architecture

Each worker:

Receives contextStore with testing best practices
Receives testFilesMetadata with test file list (tagged with type: "automated"|"manual")
Workers 1-5 (ln-631..ln-635) focus on automated tests; worker 6 (ln-636) focuses on manual tests; worker 7 (ln-637) analyzes all test files for structure
Loads full test file contents when analyzing
Returns structured JSON with category findings
Operates independently (failure in one doesn't block others)

Token Efficiency:

Coordinator: metadata only (~1000 tokens)
Workers: full test file contents when needed (~5000-10000 tokens each)
Context gathered ONCE, shared with all workers

Critical Rules

Two-stage delegation: Global workers (6) + Domain-aware worker (ln-634 × N domains)
Domain discovery: Auto-detect domains from folder structure; fallback to global mode if <2 domains
Parallel execution: All workers (global + domain-aware) run in PARALLEL
Domain-grouped output: Coverage Gaps findings grouped by domain (if domain_mode="domain-aware")
Delete > Archive: Remove useless tests, don't comment out
E2E baseline: Every endpoint needs 2 E2E (positive + negative)
Justify each test: If can't explain Priority ≥15, remove it
Trust frameworks: Don't test Express/Prisma/bcrypt behavior
No performance/load tests: Flag and REMOVE tests measuring throughput/latency/memory (DevOps Epic territory)
Code is truth: If test contradicts code behavior, update test
Language preservation: Report in project's language (EN/RU)

Phase 6: Append Results Log

MANDATORY READ: Load shared/references/results_log_pattern.md

Append one row to docs/project/.audit/results_log.md with: Skill=ln-630, Metric=overall_score, Scale=0-10, Score from Phase 5 aggregation. Calculate Delta vs previous ln-630 row. Create file with header if missing. Rolling window: max 50 entries.

Phase 7: Cleanup Worker Files

rm -rf {output_dir}

Delete the dated output directory (docs/project/.audit/ln-630/{YYYY-MM-DD}/). The consolidated report and results log already preserve all audit data.

Definition of Done

All test files discovered via Glob (automated + manual)
Manual test files tagged with type: "manual" in testFilesMetadata
Context gathered from testing best practices (MCP Ref/Context7)
Domain discovery completed (domain_mode determined)
contextStore built with test metadata + domain info
Global workers (6) invoked in PARALLEL (ln-631, ln-632, ln-633, ln-635, ln-636, ln-637)
Domain-aware worker (ln-634) invoked per domain in PARALLEL
All workers completed successfully (or reported errors)
Results aggregated with domain grouping (if domain_mode="domain-aware")
Domain Coverage Summary built (if domain_mode="domain-aware")
Compliance scores calculated (8 categories)
Keep/Remove/Refactor decisions for each test
Missing tests identified with Priority (grouped by domain if applicable)
Anti-patterns catalogued
Report written to docs/project/test_audit.md
Results log row appended to docs/project/.audit/results_log.md
Worker output directory cleaned up after consolidation
Summary returned to user

Phase 8: Meta-Analysis

MANDATORY READ: Load shared/references/meta_analysis_protocol.md

Skill type: review-coordinator (workers only). Run after all phases complete. Output to chat using the review-coordinator — workers only format.

Reference Files

Orchestrator lifecycle: shared/references/orchestrator_pattern.md
Risk-based testing methodology: shared/references/risk_based_testing_guide.md
Task delegation pattern: shared/references/task_delegation_pattern.md
Domain mode pattern: shared/references/audit_coordinator_domain_mode.md
Aggregation pattern: shared/references/audit_coordinator_aggregation.md
MANDATORY READ: shared/references/research_tool_fallback.md

Related Skills

Workers:
- ln-631-test-business-logic-auditor — Framework tests detection
- ln-632-test-e2e-priority-auditor — E2E baseline validation
- ln-633-test-value-auditor — Usefulness Score calculation
- ln-634-test-coverage-auditor — Coverage gaps identification
- ln-635-test-isolation-auditor — Isolation + Anti-Patterns
- ln-636-manual-test-auditor — Manual Test Quality
- ln-637-test-structure-auditor — Test Structure
Reference:
- ../shared/references/risk_based_testing_guide.md — Risk-Based Testing Guide

Version: 4.0.0 Last Updated: 2025-12-23

Weekly Installs

166

Repository

levnikolaevich/…e-skills

GitHub Stars

253

First Seen

Jan 24, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykWarn

Installed on

claude-code153

cursor149

codex148

opencode147

gemini-cli147

github-copilot142

通过 LiteLLM 代理让 Claude Code 对接 GitHub Copilot 运行 | 高级变通方案指南

33,600 周安装

Auto-discover Team ID from docs/tasks/kanban_board.md

Index codebase graph (if available): IF hex-graph MCP server is available:

index_project(path=codebase_root) — builds/refreshes code graph
Add graph_indexed: true to contextStore for workers (ln-634 uses find_hotspots for critical path identification)

测试套件审计员：自动化测试质量评估与风险管理工具

🇨🇳中文介绍

测试套件审计员 (L2 协调器)

相关 Skills

目的与范围

核心理念

工作流程

阶段 1：发现（自动化）

阶段 2：研究最佳实践（一次性）

阶段 3：领域发现

阶段 4：委托给工作者

阶段 4a：全局工作者（并行）

| 工作者 | 类别 | 审计内容

阶段 4b：领域感知工作者（按领域并行）

| 工作者 | 类别 | 审计内容

阶段 5：聚合结果（基于文件）

输出格式

工作者架构

关键规则

阶段 6：追加结果日志

阶段 7：清理工作者文件

完成定义

阶段 8：元分析

参考文件

相关技能

🇺🇸English

Test Suite Auditor (L2 Coordinator)

Purpose & Scope

Core Philosophy

Workflow

Phase 1: Discovery (Automated)

Phase 2: Research Best Practices (ONCE)

Phase 3: Domain Discovery

Phase 4: Delegate to Workers

Phase 4a: Global Workers (PARALLEL)

| Worker | Category | What It Audits

Phase 4b: Domain-Aware Worker (PARALLEL per domain)

| Worker | Category | What It Audits

Phase 5: Aggregate Results (File-Based)

Output Format

Worker Architecture

Critical Rules

Phase 6: Append Results Log

Phase 7: Cleanup Worker Files

Definition of Done

Phase 8: Meta-Analysis

Reference Files

Related Skills

最新 Skills