igmarin/rails-agent-skills
Curated library of 28 public AI agent skills for Ruby on Rails development. Organized by category: testing, code-quality, engines, infrastructure, api, and context. Covers code review, architecture, security, testing (RSpec), engines, Hotwire, and TDD automation. Shared Ruby skills (YARD docs, DDD, service objects) have moved to ruby-core-skills. Repository agents remain documented in GitHub but are intentionally excluded from the Tessl tile.
93
95%
Does it follow best practices?
Impact
93%
1.78xAverage score across 28 eval scenarios
Passed
No known issues
EXAMPLES.mdskills/code-quality/review-architecture/
Rails Architecture Review — Examples
High-Severity: Controller Doing Too Much
# Bad: multi-step domain workflow in controller
class OrdersController < ApplicationController
def create
order = Order.new(order_params)
Inventory.check!(order.line_items)
Pricing.apply_promotions!(order)
order.save!
NotifyWarehouseJob.perform_later(order.id)
redirect_to order
end
endFinding:
- Severity: High
- Affected file:
app/controllers/orders_controller.rb—#create - Risk: Controller runs a multi-step domain workflow. Any step failure leaves partial state; logic is untestable without HTTP. Adding a new caller (background job, API) requires duplicating the workflow.
- Improvement: Extract to
Orders::CreateOrder.call(params). Controller calls it and handles response/redirect only.
High-Severity: Business Logic in Callbacks
# Bad: concern mixing audit, notifications, and external API in callbacks
module Auditable
extend ActiveSupport::Concern
included do
after_create :log_creation
end
def log_creation
AuditLog.create!(...)
Slack.notify("#audit", ...)
UserMailer.admin_alert(...).deliver_later
end
endFinding:
- Severity: High
- Affected file:
app/models/concerns/auditable.rb - Risk:
after_createtriggers Slack and email — invisible side effects on every save. Any model that includesAuditableinherits this blast. Tests require stubbing external services just to save a record. - Improvement: Remove from callback. Call
AuditService.record(record)explicitly in the service layer. KeepAuditLog.create!only in the concern if needed; move Slack/mailer to the caller.
Medium-Severity: Concern Mixing Unrelated Responsibilities
A concern that handles auditing AND sends Slack messages AND sends emails is three concerns, not one. Each responsibility should be extractable independently.
Finding:
- Severity: Medium
- Affected file:
app/models/concerns/auditable.rb - Risk: Can't add auditing without also pulling in Slack/email. Reuse is blocked.
- Improvement: Split into
Auditable(database log only) and move notifications to an explicitAuditNotifierservice called from the service layer.
Output Format Reference
Every finding must include all four fields:
**Severity:** High | Medium
**Affected file:** app/path/to/file.rb — ClassName#method
**Risk:** what goes wrong if left unaddressed
**Improvement:** the smallest credible refactoragents
docs
evals
scenario-1
scenario-2
scenario-3
scenario-4
scenario-5
scenario-6
scenario-7
scenario-8
scenario-9
scenario-10
scenario-11
scenario-12
scenario-13
scenario-14
scenario-15
scenario-16
scenario-17
scenario-18
scenario-19
scenario-20
scenario-21
scenario-22
scenario-23
scenario-24
scenario-25
scenario-26
scenario-27
scenario-28
skills
api
generate-api-collection
implement-graphql
code-quality
apply-code-conventions
apply-stack-conventions
assets
snippets
code-review
refactor-code
review-architecture
security-check
context
load-context
setup-environment
engines
create-engine
create-engine-installer
document-engine
extract-engine
release-engine
review-engine
test-engine
upgrade-engine
infrastructure
implement-background-job
implement-hotwire
optimize-performance
review-migration
seed-database
version-api
testing
plan-tests
test-service
write-tests