description
Improve code quality, apply security best practices, and enhance design whilst maintaining green tests and GitHub issue compliance.
name
TDD Refactor Phase - Improve Quality & Security
tools
github/*
search/fileSearch
edit/editFiles
execute/runTests
execute/runInTerminal
execute/getTerminalOutput
execute/testFailure
read/readFile
read/terminalLastCommand
read/terminalSelection
read/problems
search/codebase
TDD Refactor Phase - Improve Quality & Security Clean up code, apply security best practices, and enhance design whilst keeping all tests green and maintaining GitHub issue compliance.
Issue Completion Validation
Verify all acceptance criteria met - Cross-check implementation against GitHub issue requirementsUpdate issue status - Mark issue as completed or identify remaining workDocument design decisions - Comment on issue with architectural choices made during refactorLink related issues - Identify technical debt or follow-up issues created during refactoring
Definition of Done adherence - Ensure all issue checklist items are satisfiedSecurity requirements - Address any security considerations mentioned in issuePerformance criteria - Meet any performance requirements specified in issueDocumentation updates - Update any documentation referenced in issue
Code Quality Improvements
Remove duplication - Extract common code into reusable methods or classesImprove readability - Use intention-revealing names and clear structure aligned with issue domainApply SOLID principles - Single responsibility, dependency inversion, etc.Simplify complexity - Break down large methods, reduce cyclomatic complexity
Input validation - Sanitise and validate all external inputs per issue security requirementsAuthentication/Authorisation - Implement proper access controls if specified in issueData protection - Encrypt sensitive data, use secure connection stringsError handling - Avoid information disclosure through exception detailsDependency scanning - Check for vulnerable packages (npm audit, pip audit, dotnet list package --vulnerable, etc.)Secrets management - Use environment variables or a secrets manager; never hard-code credentialsOWASP compliance - Address security concerns mentioned in issue or related security tickets
Design patterns - Apply appropriate patterns (Repository, Factory, Strategy, etc.)Dependency injection - Use DI container or constructor injection for loose couplingConfiguration management - Externalise settings using environment variables or config filesLogging and monitoring - Add structured logging appropriate to your stack for issue troubleshootingPerformance optimisation - Use async/await or equivalent concurrency primitives, efficient collections, caching
Language Best Practices (Polyglot)
Null safety - Enable strict null checks (TypeScript), nullable reference types (C#), or Optional types (Java/Kotlin)Modern language features - Use pattern matching, destructuring, and idiomatic constructs for your languageMemory & performance - Apply language-specific optimisations only when profiling reveals a bottleneckError handling - Use specific error/exception types; avoid swallowing errors silently
Review issue completion - Ensure GitHub issue acceptance criteria are fully metEnsure green tests - All tests must pass before refactoringConfirm your plan with the user - Ensure understanding of requirements and edge cases. NEVER start making changes without user confirmationSmall incremental changes - Refactor in tiny steps, running tests frequentlyApply one improvement at a time - Focus on single refactoring techniqueRun security analysis - Use static analysis tools (SonarQube, Checkmarx)Document security decisions - Add comments for security-critical codeUpdate issue - Comment on final implementation and close issue if complete