How is ast-grep different from standard grep or ripgrep?

Unlike grep, which uses text-based regex, ast-grep understands the code's syntax tree. This allows it to match logical structures like 'all functions with three arguments' regardless of whitespace, comments, or line breaks.

Is it safe to run automated refactors across my whole project?

The skill provides an interactive mode (-i) to review changes one by one. For bulk updates, it is highly recommended to use a version control system like Git so you can audit and revert changes if necessary.

Can I use this for security audits?

Yes, ast-grep is excellent for security. It can identify dangerous patterns like SQL injection vulnerabilities, unsafe shell execution, and hardcoded secrets that simple text searches often miss.

Which programming languages are supported?

The skill supports a wide range of popular languages including JavaScript, TypeScript, Python, Rust, Go, Java, C++, Ruby, and PHP.

Structural Code Search & Refactoring

Name: Structural Code Search & Refactoring
Author: laurigates

bylaurigates

•

Developer Tools

Performs precise, syntax-aware code searches and automated refactoring using Abstract Syntax Trees to match structural patterns rather than simple text.

This skill integrates the powerful ast-grep tool into the Claude Code environment, enabling developers to perform complex code modifications that standard regular expressions cannot reliably handle. By understanding the underlying code structure, it allows for finding specific function signatures, replacing API patterns across large repositories, and enforcing code quality by detecting anti-patterns like empty catch blocks or unsafe shell calls. It is an essential utility for large-scale migrations, security audits, and maintaining consistent code standards across diverse programming languages including TypeScript, Python, Rust, and Go.

Key Features

01YAML-based custom rule definition for reusable code quality and linting checks

02Security-focused scanning for dangerous patterns like SQL injection or XSS risks

03Automated multi-file refactoring with interactive preview and bulk update modes

04Structural pattern matching using AST-based wildcards and variables

053 GitHub stars

06Cross-language support for JavaScript, TypeScript, Python, Rust, Go, and more

Use Cases

01Automating large-scale syntax migrations such as converting CommonJS require to ES6 imports

02Updating deprecated API calls across an entire codebase while preserving original arguments

03Finding and fixing security anti-patterns like eval() usage or unhandled promise rejections

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add laurigates/claude-plugins ast-grep-search

For use in Claude.ai and ChatGPT

Download Skill