⚠️ This post links to an external website. ⚠️
A zero-dependency Claude Code plugin that runs 7 analyzers on any codebase — secrets, security, dependencies, structure, tests, and more.
We run code audits for founders raising rounds, investors evaluating acquisitions, and teams inheriting codebases they didn’t write. Every engagement starts the same way — scan for secrets, check dependencies, look at the test coverage, see how bad the import graph is. Same checklist, every time.
The manual part of an audit is the architecture review, the design judgment, the “should this codebase support what’s planned next” question. But that first pass — the structural scan — is mechanical. We kept doing it by hand anyway, until we stopped.
We automated it, used it internally for months, and just open-sourced it as a Claude Code plugin. It’s called
code-audit— 7 analyzers, zero dependencies. Yes, we’re using AI to audit AI-generated code. That’s the kind of year it is.
continue reading on variantsystems.io
If this post was enjoyable or useful for you, please share it! If you have comments, questions, or feedback, you can email my personal email. To get new posts, subscribe use the RSS feed.