refactoring
This skill enables systematic code refactoring to enhance maintainability and structure without altering behavior, ensuring safer development.
Install this skill
Security score
The refactoring skill was audited on Feb 28, 2026 and we found 12 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 225 | fetch(`/api/users/${userId}`).then(r => r.json()).then(setUser); |
Template literal with variable interpolation in command context
| 226 | fetch(`/api/users/${userId}/posts`).then(r => r.json()).then(setPosts); |
Template literal with variable interpolation in command context
| 227 | fetch(`/api/users/${userId}/followers`).then(r => r.json()).then(setFollowers); |
Template literal with variable interpolation in command context
| 270 | fetch(`/api/users/${userId}`) |
Template literal with variable interpolation in command context
| 286 | fetch(`/api/users/${userId}/posts`).then(r => r.json()).then(setPosts); |
Template literal with variable interpolation in command context
| 304 | fetch(`/api/users/${userId}/followers`).then(r => r.json()).then(setFollowers); |
Template literal with variable interpolation in command context
| 913 | console.log(`${post.title} by ${author.name}`); // Note: Use structured logger in production |
Template literal with variable interpolation in command context
| 926 | console.log(`${post.title} by ${post.author.name}`); // Note: Use structured logger in production |
Access to .env file
| 771 | const client = new SendGridClient(process.env.SENDGRID_API_KEY!); // BAD: Non-null assertion bypasses runtime validation |
Access to .env file
| 798 | if (process.env.NODE_ENV === 'test') { |
Access to .env file
| 801 | const apiKey = process.env.SENDGRID_API_KEY; |
External URL reference
| 1284 | - Martin Fowler's Refactoring Catalog - https://refactoring.com/catalog/ |
Install this skill with one command
/learn @mgd34msu/refactoring