/knowzcode:audit
The audit command performs read-only quality analysis on your existing codebase without making changes. It evaluates spec completeness, architecture health, OWASP security patterns, and integration consistency. Use it to assess the current state of your project or validate before a release.
How it works
Run /knowzcode:audit with an optional focus area (security, architecture, specs, or all). The framework dispatches the appropriate agents to analyze your codebase. Security audit checks for OWASP Top 10 patterns. Architecture audit evaluates pattern consistency and dependency health. Spec audit verifies that existing specifications match the implementation. Results include specific findings with severity levels, file locations, and recommended fixes.
Audit report showing findings across security, architecture, and specs
Screenshot coming soon
Why it matters
Quality drift happens gradually. Individual changes pass review, but over time the codebase accumulates inconsistencies, security patterns get bypassed, and specifications drift from implementation. The audit command provides a periodic health check that catches these gradual degradations. Run it before releases, during sprint planning, or whenever you want an honest assessment of codebase health.
Quality trend over time showing periodic audit results
Screenshot coming soon
Related Features
Quality Audit
A reviewer agent audits implementation against the original design for Architecture, Reliability, and Code quality.
Security Officer
Deep security scanning, threat modeling, vulnerability detection, and gate authority.
/knowzcode:status
Check framework health, see what is in progress, verify setup.