qa-code-quality
Production code quality: 5 skills (sonarqube-quality-perspective, codeclimate-config, lizard-complexity, madge-deps, knip-dead-code) and 1 agent (code-quality-critic). Production-only scope; test-code hygiene is owned by qa-test-review.
Install this plugin
/plugin install qa-code-quality@testland-qaPart of role bundles: qa-role-sdet, qa-role-leadership
qa-code-quality
Production code quality wrappers + a synthesizing critic. Five skills covering SonarQube (Reliability+Maintainability lens - qa-sast covers the Security lens), Qlty (formerly Code Climate), Lizard (cyclomatic complexity, language-agnostic), Madge (JS/TS module graph + circular deps), and Knip (dead code) - plus a critic agent (code-quality-critic) that dedupes and prioritizes findings across all five tools.
Scoped to production code only. Test-code hygiene (AAA structure, assertion quality, mocking anti-patterns) is owned by qa-test-review. Each skill includes the production-only scoping config (e.g., sonar.exclusions, lizard -x"./tests/*", Madge excludeRegExp).
Components
| Type | Name | Description |
|---|---|---|
| Skill | sonarqube-quality-perspective | SonarQube/SonarCloud Reliability + Maintainability lens; Sonar Way Quality Gate enforcement; PR decoration |
| Skill | codeclimate-config | Both legacy .codeclimate.yml (Code Climate Velocity / GitHub App) and new .qlty/qlty.toml (Qlty CLI) |
| Skill | lizard-complexity | Per-function CCN + NLOC + parameter-count thresholds; 30+ languages; CSV/XML/HTML output |
| Skill | madge-deps | JS/TS module-graph analysis; circular-dep detection; orphan/leaf finding; SVG visualization |
| Skill | knip-dead-code | Unused files / dependencies / exports / types / enum members; framework plugins (Next.js, Remix, Astro, etc.) |
| Agent | code-quality-critic | Adversarial reviewer that dedupes overlapping findings across all 5 tools; net-new-vs-inherited classification; refuses to ✅ on net debt increase |
Install
/plugin marketplace add testland/qa
/plugin install qa-code-quality@testland-qaSkills
codeclimate-config
Configure Code Climate Quality (now Qlty) for repository-wide quality gates - duplication, complexity, similar-code, exclude_patterns. Covers both legacy `.codeclimate.yml` (Code Climate Velocity / GitHub integration) and the new `.qlty/qlty.toml` per the Qlty platform migration.
knip-dead-code
Run Knip against a JS/TS project to detect unused files, unused dependencies, unused exports, and unused class/enum members. Scoped to production code; tests are entry-point-aware via Knip's framework plugins.
lizard-complexity
Run Lizard against production source to enforce per-function cyclomatic complexity (CCN), NLOC, and parameter-count thresholds - language-agnostic (30+ languages). Scoped to production code via `-x"./tests/*"`; test complexity is owned by qa-test-review.
madge-deps
Run Madge against a JS/TS production source tree to detect circular dependencies, find orphan modules, and visualize the module graph. Scoped to production code via `excludeRegExp` for test files.
sonarqube-quality-perspective
Run SonarQube/SonarCloud against production code to surface Code Smells, Bugs, and Maintainability ratings - the quality lens (cross-ref qa-sast for the Vulnerability/Hotspot lens). Production-only scope via sonar.exclusions; test code is owned by qa-test-review.