# Nuxt + Go-Zero Quality Audit Skill — 30 Checks from 250 Real Bugs

> Production-tested quality check skill for Nuxt SSR + Go-Zero + MySQL projects. 30 automated checks across 7 dimensions (security, race conditions, transactions, frontend SSR, dependencies, API contracts, ops) — distilled from 10 rounds of Codex audit that found ~250 real issues in a live SaaS product.

## Install

Copy the content below into your project:

# TokRepo 技术质量检测

TokRepo 项目定期质量检测 skill。基于 10 轮 Codex 审计发现的 ~250 个问题提炼的检查清单。

## 触发方式
```
/tokrepo-quality-check           # 全量检测
/tokrepo-quality-check security  # 只跑安全检测
/tokrepo-quality-check deps      # 只跑依赖检测
/tokrepo-quality-check race      # 只跑并发安全检测
/tokrepo-quality-check frontend  # 只跑前端检测
```

## 项目信息
- 路径: `<project_root>/`
- 后端: Go-Zero + GORM, `backend/`
- 前端: Nuxt 4 SSR, `frontend-nuxt/`
- CLI: `cli/bin/tokrepo.js`
- MCP: `mcp-server/bin/server.js`

## 执行流程

收到 `/tokrepo-quality-check [scope]` 后：

1. 读取 `references/checklist.md` 获取完整检查清单
2. 根据 scope 参数决定执行哪些检查组（默认全部）
3. 逐项执行检查，用 Grep/Read/Bash 验证
4. 输出报告，格式见下方

## 报告格式

```
## TokRepo 质量检测报告 — {date}

### 总览
| 检查组 | 通过 | 失败 | 跳过 |
|--------|------|------|------|
| ...    | ...  | ...  | ...  |

### 失败项详情
#### [{severity}] {check_id}: {description}
- 文件: {file_path}:{line}
- 现状: {what_was_found}
- 应该: {what_is_expected}
- 修复: {how_to_fix}

### 通过项（折叠）
- [PASS] SEC-01: ...
- [PASS] SEC-02: ...
```

## 严重级别
- CRITICAL: 可被外部利用的安全漏洞
- HIGH: 数据一致性/可靠性风险
- MEDIUM: 性能/可维护性问题
- LOW: 代码质量/规范问题


---
Source: https://tokrepo.com/en/workflows/1160be91-1472-4f31-a0db-d30902b69767
Author: henuwangkai