jbaruch/coding-policy
General-purpose coding policy for Baruch's AI agents
93
1.82x
Quality
97%
Does it follow best practices?
Impact
93%
1.82xAverage score across 18 eval scenarios
Securityby
Advisory
Suggest reviewing before use
language-diagnostics.mdrules/
- alwaysApply:
- Yes
Language Diagnostics
Enable the Language Server
- Every project turns on the diagnostics engine appropriate to its language — pyright/pylance for Python, tsserver/tsc for TypeScript, rust-analyzer/clippy for Rust, gopls/
go vetfor Go, and the like - Enable it in-editor for the human and in-loop for the agent — Claude Code and other coding CLIs expose the language server (the
LSPtool here), so the agent reads diagnostics on the files it touches and clears them before handing work off - Configure the engine for the project's module layout so references resolve (see Resolve Modules First)
- Use whatever engine the project already has — don't introduce a second one without consensus
Findings Are Non-Dismissible Without Cause
- A diagnostic is fixed, or suppressed inline with a stated reason — never silently ignored
- The cause rides next to the suppression — a one-line comment naming why the finding is wrong or unreachable, not a bare ignore directive
- No blanket or file-wide silencing —
# type: ignore,# pyright: basic,// @ts-nocheck,//nolint:allswitch the engine off for a whole file and mask the same signal it exists to catch - Prefer a typed helper that proves the invariant once over scattered ignores
Gate It Deterministically
- CI runs the engine's headless/CLI form — pyright CLI,
tsc --noEmit,clippy,go vet— as a gate at zero findings - The language server is the editor surface; the gate runs the same engine in batch mode, before tests, alongside format/lint (see
rules/code-formatting.mdCI Integration) - "Don't ignore the warnings" enforced by an agent's or contributor's memory is not a gate — a deterministic check nobody runs does not exist (see
rules/script-delegation.md)
Resolve Modules First
- Configure the engine so imports resolve before turning strictness up — unresolved modules stop deep checking, so real bugs hide behind resolution false-positives
- Match the config to the project's module layout — pyright
executionEnvironmentswith per-rootextraPathsfor Python path-insert bundles; tscbaseUrl/paths/project references for TS workspaces - Resolution is what unlocks the real findings — null/undefined-flow crashes, could-be-null
raise/throw, Optional/nullable misuse
Adopting on a Dirty Tree
- Turning the gate on for a tree never checked is its own focused change — land the config plus the fixes in a PR separate from feature work
- The tree goes green first; wire the gate into CI only once it reports zero findings
- Sequence large adoptions: a config PR, then fix PRs grouped by finding shape, then the CI-gate PR
.tessl-plugin
evals
scenario-1
scenario-2
scenario-3
scenario-4
scenario-5
scenario-6
scenario-7
scenario-8
scenario-9
scenario-10
scenario-11
scenario-12
scenario-13
scenario-14
scenario-15
scenario-16
scenario-17
scenario-18
rules
agent-worktree-isolation.mdauthor-model-declaration.mdboy-scout.mdci-safety.mdcode-formatting.mdcommit-conventions.mdcontext-artifacts.mdcontext-writing-style.mddependency-management.mderror-handling.mdexternal-repo-contributions.mdfile-hygiene.mdlanguage-diagnostics.mdno-secrets.mdplugin-evals.mdreviewer-feedback-reading.mdrule-frontmatter.mdscript-as-black-box.mdscript-delegation.mdskill-authoring.mdstateful-artifacts.mdsync-before-work.mdtesting-standards.md
skills
adopt-fork-pr
eval-curation
install-reviewer
migrate-to-plugin