Can I focus the analysis on a specific area?

Absolutely, you can use the --focus flag to target specific categories like security, async patterns, or code complexity.

What languages does the Code Anti-patterns skill support?

It currently supports JavaScript, TypeScript, Vue, React, and Python, using specialized structural patterns for each language.

Can this skill automatically fix the issues it finds?

Yes, the skill includes an optional --fix flag that allows it to apply automated refactors for safe, well-defined patterns identified during the scan.

Does it scan for security vulnerabilities?

Yes, it includes a dedicated security audit agent that checks for high-risk patterns like eval, innerHTML usage, and potential injection risks.

How does this differ from a standard linter like ESLint?

While linters catch syntax issues, this skill uses structural search (ast-grep) to find deeper logic anti-patterns and can contextually analyze complex relationships across files.

Code Anti-pattern Analyzer

Name: Code Anti-pattern Analyzer
Author: laurigates

bylaurigates

•

Security & Testing

Identifies structural code smells, anti-patterns, and security vulnerabilities across multiple languages using ast-grep.

The Code Anti-pattern Analyzer is a diagnostic tool for Claude Code designed to perform deep structural analysis of your codebase. By leveraging ast-grep and parallel agent delegation, it scans JavaScript, TypeScript, Vue, React, and Python files to detect high-impact issues such as async pitfalls, excessive complexity, security risks like XSS, and framework-specific anti-patterns. It provides a prioritized report with severity levels, helping developers maintain clean, performant, and secure codebases while suggesting automated fixes where possible.

Key Features

01Parallel agent execution for rapid, comprehensive codebase scanning

0210 GitHub stars

03Detection of complex code patterns like deep nesting and over-extended functions

04Framework-specific checks for React hooks and Vue reactivity patterns

05Security audit for common vulnerabilities including eval usage and XSS risks

06Multi-language structural analysis using ast-grep for JS, TS, Python, and Vue

Use Cases

01Performing a pre-release code quality audit to catch architectural smells and performance leaks

02Migrating legacy JavaScript codebases to modern TypeScript standards and patterns

03Scanning for security vulnerabilities and hardcoded secrets in local development environments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add laurigates/claude-plugins code-antipatterns

For use in Claude.ai and ChatGPT

Download Skill