What are the TRUST 4 principles?

TRUST 4 stands for Test First, Readable, Unified, and Secured, providing a holistic framework to ensure code is verified, maintainable, consistent, and safe.

Does it support security compliance?

Yes, it includes validation methods for OWASP Top 10 compliance, ensuring vulnerabilities like broken access control and cryptographic failures are addressed early.

What test coverage does this skill require?

The skill mandates a minimum of 85% unit test coverage and 80% branch coverage to satisfy enterprise-level quality gates.

Can this be used for architectural governance?

Absolutely. The Unified (U) principle enforces consistent project structures, error handling patterns, and logging standards across the entire repository.

How does it measure code readability?

It utilizes metrics such as cyclomatic complexity (target ≤ 10), function length limits, and strict naming convention audits to ensure long-term clarity.

MoAI TRUST Enterprise Quality Framework

Name: MoAI TRUST Enterprise Quality Framework
Author: dolsoon

bydolsoon

0•

Security & Testing

Enforces the TRUST 4 principles—Test First, Readable, Unified, and Secured—to ensure production-grade software quality and enterprise governance.

The moai-foundation-trust skill implements a comprehensive quality framework designed for enterprise-grade software development. Built on the TRUST 4 methodology, it provides automated guidance for Test-driven development (TDD), code readability audits, architectural consistency, and security-by-design. By mandating specific metrics—such as 85% test coverage, cyclomatic complexity limits, and OWASP Top 10 compliance—it serves as a foundational governance tool that ensures every line of code is maintainable, secure, and unified across large-scale projects.

Key Features

01Unified architectural patterns for consistent error handling and logging

020 GitHub stars

03Security-by-design validation aligned with 2025 OWASP Top 10 standards

04Readability scoring based on cyclomatic complexity and naming conventions

05Enterprise-grade quality gates with 50+ software standard references

06Automated TDD cycle enforcement with mandatory coverage gates (≥85%)

Use Cases

01Standardizing codebase architecture and naming conventions across distributed teams

02Enforcing strict TDD workflows and test coverage requirements in CI/CD pipelines

03Auditing legacy or new code for enterprise security compliance and readability

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add dolsoon/my-awesome-project moai-foundation-trust

For use in Claude.ai and ChatGPT

Download Skill