AI SummaryBefore creating a commit or opening a pull request, run the trace-mcp validation suite. Fix any critical or high findings before committing. OWASP Top-10 vulnerability scan across the changed scope. If the change touches untrusted data flows, add: Trace untrusted sources to sensitive sinks (SQL, she
Install
Copy this and paste it into Claude Code, Cursor, or any AI assistant:
I want to install the "trace-mcp-pre-commit" skill in my project. Please run this command in my terminal: # Install skill into your project mkdir -p .claude/skills/trace-mcp-pre-commit && curl --retry 3 --retry-delay 2 --retry-all-errors -o .claude/skills/trace-mcp-pre-commit/SKILL.md "https://raw.githubusercontent.com/nikolai-vysotskyi/trace-mcp/master/skills/trace-mcp-pre-commit/SKILL.md" Then restart Claude Code (or reload the window in Cursor) so the skill is picked up.
Description
Run trace-mcp security, quality-gate, and antipattern checks before committing or opening a PR. Activate when the agent is about to create a commit or pull request in a project indexed by trace-mcp.
trace-mcp — Pre-Commit & Pre-PR Checks
Before creating a commit or opening a pull request, run the trace-mcp validation suite. Fix any critical or high findings before committing.
When to Use
• The user asks to commit, stage, or push changes • The user asks to open a PR • The agent has finished implementing a feature or fix and is about to hand off
1. Security scan
` scan_security({ rules: ["all"] }) ` OWASP Top-10 vulnerability scan across the changed scope. If the change touches untrusted data flows, add: ` taint_analysis({}) ` Trace untrusted sources to sensitive sinks (SQL, shell, file system, HTTP).
2. Quality gates on the changed scope
` check_quality_gates({ scope: "changed" }) ` Validates complexity, coverage, duplication, and any project-configured gates on only the files you changed.
Discussion
Health Signals
My Fox Den
Community Rating
Sign in to rate this booster