Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From grimoire
Discovers and lists @audit-* comment annotations in a codebase, returning structured JSON with file, line, tag, content, and context.
How this skill is triggered — by the user, by Claude, or both
Slash command
/grimoire:annotationThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Find `@audit` annotations in a codebase and return them as structured JSON.
Find @audit annotations in a codebase and return them as structured JSON.
src/ subdirectory, or whatever the user specified.uv run skills/annotation/scripts/find-annotations.py <directory> [--tag TAG] [--format json|table]
directory — path to scan (usually the project root or src/)--tag — filter to a specific tag, exact match (e.g., audit-high, audit-todo)--format — json (default) or table for human-readable outputEach annotation is returned with six fields:
| Field | Description |
|---|---|
file | Relative path from the scanned directory |
line | Line number (1-indexed) |
tag | Tag name — audit, audit-ok, audit-high, audit-todo, etc. |
content | Text after the tag on the same line |
context_type | Enclosing scope type (function, contract, trait, etc.) or unknown |
context_name | Name of the enclosing scope or unknown |
The script has two tiers of support:
unknown.context_type and context_name to the enclosing function, contract, trait, impl, or module. Falls back to grep if tree-sitter dependencies are not installed.Refer to references/annotation-format.md for the full taxonomy of supported @audit tag types.
npx claudepluginhub joranhonig/grimoireAnnotates code using @ai- prefixed markers for technical debt, security vulnerabilities, performance bottlenecks, and accessibility issues to enable AI-assisted workflows.
Runs adversarial multi-agent code audits with challenge/verify pipeline. Use for deep quality reviews, not quick PR screening (use /preview for that).
Audits files for logic errors, duplication, dead code, refactoring opportunities, and tech debt (mini) or also security, performance, compliance, and dependencies (full).