docs: seed initial review rules for automated code review

felixweinberger · felixweinberger · commit 9894555ebad5 · 2026-04-09T14:02:12.000Z
diff --git a/.claude/skills/review-autolearn/SKILL.md b/.claude/skills/review-autolearn/SKILL.md
@@ -0,0 +1,190 @@
+---
+name: review-autolearn
+description: |
+  Mine human code-review comments from this repo, distill recurring catches into REVIEW.md
+  rules so reviewers (and automated review) flag them before a human has to. Uses a
+  multi-agent workflow (parallel clusterers + adversarial verify). Opens a PR with the
+  proposed additions to the Recurring Catches section.
+argument-hint: "[dry] [<days>]"
+---
+
+# /review-autolearn [dry] [<days>]
+
+Humans keep catching the same things in review. Read what they caught recently, turn the
+recurring ones into `REVIEW.md` guidance, PR it.
+
+## Arguments
+
+| Arg | Description |
+|-----|-------------|
+| (none) | 14-day window, open PR |
+| `dry` | Print proposed diff, no PR |
+| `<N>` | N-day lookback window |
+
+## Resolved variables
+
+```
+REPO   = $(gh repo view --json nameWithOwner --jq .nameWithOwner)
+TARGET = REVIEW.md
+```
+
+---
+
+## 1. Dedup — skip if already in flight
+
+```bash
+gh pr list --repo "$REPO" --state open --label review-autolearn --json number,url
+```
+
+Open PR exists → report its link and stop (unless `dry`).
+
+## 2. Harvest
+
+Three GitHub comment surfaces feed the corpus. Fetch each, then derive four files.
+
+```bash
+since=$(date -u -d "${DAYS:-14} days ago" +%F 2>/dev/null || date -u -v-${DAYS:-14}d +%F)
+RAW=/tmp/review-autolearn-raw.jsonl
+HUMAN=/tmp/review-autolearn-human.jsonl
+BOTAGREE=/tmp/review-autolearn-botagree.jsonl
+BOTPUSHBACK=/tmp/review-autolearn-botpushback.jsonl
+
+# (a) Inline review comments — pinned to diff lines
+gh api "repos/$REPO/pulls/comments?since=${since}T00:00:00Z&sort=created&direction=desc" \
+  --paginate --jq '.[] | {kind:"inline", id, in_reply_to_id,
+                          pr:(.pull_request_url|split("/")|last),
+                          author:.user.login, path:.path, body:.body, diff:.diff_hunk}' \
+  > $RAW
+
+# (b) Review submission bodies — the text on APPROVE/REQUEST_CHANGES/COMMENT
+gh api "repos/$REPO/pulls?state=all&sort=updated&direction=desc&per_page=100" --paginate \
+  --jq ".[] | select(.updated_at >= \"${since}\") | .number" \
+  | while read pr; do
+      gh api "repos/$REPO/pulls/$pr/reviews" \
+        --jq ".[] | select(.body != \"\") | select(.submitted_at >= \"${since}\")
+              | {kind:\"review\", id, in_reply_to_id:null, pr:\"$pr\",
+                 author:.user.login, path:null, body:.body, diff:null}"
+    done >> $RAW
+
+# (c) PR conversation comments — filtered to drop noise
+gh api "repos/$REPO/issues/comments?since=${since}T00:00:00Z&sort=created&direction=desc" \
+  --paginate --jq '.[] | select(.html_url | contains("/pull/"))
+                       | {kind:"convo", id, in_reply_to_id:null,
+                          pr:(.html_url|capture("/pull/(?<n>[0-9]+)").n),
+                          author:.user.login, path:null, body:.body, diff:null}' \
+  | jq -c 'select(.body | length > 40)
+         | select(.body | test("^@claude\\b"; "i") | not)
+         | select(.body | test("^(addressed|rebased|thanks|done|merged|fixed in|updated)\\b"; "i") | not)' \
+  >> $RAW
+
+# --- derive corpora ---
+
+# Human-authored, top-level (inline) + all review bodies + filtered convo
+jq -c 'select(.author // "" | endswith("[bot]") | not)
+     | select(.kind != "inline" or .in_reply_to_id == null)' $RAW > $HUMAN
+
+# Human replies to bot inline comments, split by sentiment.
+# Agreements = bot catch a human validated → learn TO flag it.
+# Pushback   = bot false positive          → learn NOT to flag it.
+jq -s '(map(select(.kind=="inline")) | map({(.id|tostring): {author,body}}) | add) as $p
+       | .[]
+       | select(.kind=="inline" and .in_reply_to_id != null)
+       | select(.author // "" | endswith("[bot]") | not)
+       | ($p[.in_reply_to_id|tostring]) as $parent
+       | select($parent.author // "" | endswith("[bot]"))
+       | . + {parent_author:$parent.author, parent_body:$parent.body}' -c $RAW \
+  > /tmp/review-autolearn-botreplies.jsonl
+
+jq -c 'select(.body | test("^(fixed|amended|done|addressed|thanks|good catch|legitimate|updated|resolved|makes sense|agreed|fair)\\b"; "i"))' \
+  /tmp/review-autolearn-botreplies.jsonl > $BOTAGREE
+jq -c 'select(.body | test("^(fixed|amended|done|addressed|thanks|good catch|legitimate|updated|resolved|makes sense|agreed|fair)\\b"; "i") | not)' \
+  /tmp/review-autolearn-botreplies.jsonl > $BOTPUSHBACK
+
+wc -l $HUMAN $BOTAGREE $BOTPUSHBACK
+```
+
+Zero in all → report "no review activity in window" and stop.
+
+## 3. Cluster + verify (Workflow)
+
+Launch the Workflow tool with this script. Pass `args = { humanFile, botAgreeFile, botPushbackFile, targetFile, repo }`.
+
+```js
+export const meta = {
+  name: 'review-autolearn',
+  description: 'Distill recurring review catches into REVIEW.md rules',
+  phases: [
+    { title: 'Cluster', detail: '6 angles over the comment corpus' },
+    { title: 'Verify',  detail: '3-vote adversarial check per candidate rule' },
+    { title: 'Synthesize' },
+  ],
+}
+
+const { humanFile, botAgreeFile, botPushbackFile, targetFile, repo } = args
+const ANGLES = [
+  { src: humanFile, focus: 'spec/protocol compliance (schema.ts mismatches, HTTP status codes, transport assumptions)' },
+  { src: humanFile, focus: 'API surface creep (unnecessary exports, speculative abstractions, parallel APIs)' },
+  { src: humanFile, focus: 'cross-SDK consistency (naming, patterns diverging from the other SDK)' },
+  { src: humanFile, focus: 'async/lifecycle correctness (race conditions, cleanup, cancellation, task lifecycle)' },
+  { src: botAgreeFile, focus: 'human-validated bot catches - each entry is a bot review comment a human accepted (parent_body is the bot finding, body is the human acknowledgment). Cluster by what the bot caught; produce rules so reviewers flag the same pattern' },
+  { src: botPushbackFile, focus: 'reviewer false positives - humans disagreeing with bot review comments (parent_body is the bot claim, body is the human rebuttal). Produce rules of the form "do NOT flag X; it is intentional/correct because Y"' },
+]
+const RULE = { type:'object', required:['rule','section','prs'],
+               properties:{ rule:{type:'string'}, section:{type:'string'},
+                            prs:{type:'array',items:{type:'string'}} } }
+const RULES = { type:'object', required:['rules'], properties:{ rules:{type:'array',items:RULE} } }
+const VERDICT = { type:'object', required:['keep','reason'],
+                  properties:{ keep:{type:'boolean'}, reason:{type:'string'} } }
+
+const verified = await pipeline(
+  ANGLES,
+  a => agent(
+    `Read ${a.src} (one JSON/line: fields include pr,author,path,body,diff,kind and for bot-reply files also parent_author,parent_body). `+
+    `Focusing ONLY on ${a.focus}: drop praise/LGTM/nit/question-only; group remaining comments by underlying pattern. `+
+    `A cluster qualifies iff >=2 distinct PRs AND mechanically detectable from a diff AND not already covered in ${targetFile} (grep it). `+
+    `Return rules[] - each <=4 lines, imperative, why-in-one-clause, cite PR#s, name the REVIEW.md section to append under. Zero is valid.`,
+    { phase:'Cluster', label:`cluster:${a.focus.split(' ')[0]}`, schema: RULES }).then(out => ({...out, src: a.src})),
+  out => parallel((out?.rules ?? []).map(r => () =>
+    parallel(Array.from({length:3}, () => () => agent(
+      `Adversarially verify this proposed REVIEW.md rule for ${repo}:\n${JSON.stringify(r)}\n`+
+      `REFUTE (keep=false) if: <2 distinct PRs in ${out.src} actually back it, OR ${targetFile} already covers it, `+
+      `OR it isn't mechanically detectable from a diff, OR it's too vague to act on. Default to refute when unsure.`,
+      { phase:'Verify', label:`verify:${r.section}`, schema: VERDICT })))
+    .then(votes => ({ ...r, keep: votes.filter(v => v?.keep).length >= 2 }))
+  )),
+)
+const kept = verified.flat().filter(r => r?.keep)
+if (!kept.length) return { diff: null, summary: 'nothing recurring' }
+
+phase('Synthesize')
+const diff = await agent(
+  `Produce a minimal patch for ${targetFile} appending these verified rules under the "## Recurring Catches" section. `+
+  `Slot each rule under its "### ${'{'}section${'}'}" subsection within Recurring Catches (create the subsection if absent). `+
+  `Do not modify Guiding Principles, Review Ordering, or Checklist sections. Dedupe overlaps with existing Recurring Catches entries. `+
+  `Return a unified diff only.\nRules:\n${JSON.stringify(kept,null,2)}`,
+  { label:'synthesize' })
+return { diff, rules: kept }
+```
+
+## 4. Ship
+
+`dry` → print `result.diff` + backing PR#s per rule, stop.
+
+Otherwise:
+
+```
+branch: review-autolearn/<date>
+- gh label create review-autolearn --repo "$REPO" -c FBCA04 -d "Auto-mined review conventions" 2>/dev/null || true
+- git checkout -b <branch>
+- Apply result.diff to REVIEW.md
+- Commit, push, open PR:
+  title: "docs(REVIEW.md): encode review catches from last <N>d"
+  label: review-autolearn
+  body: one bullet per rule → linking the backing PR comments
+```
+
+Do NOT auto-merge — a human signs off on guidance changes.
+
+## 5. Report
+
+`<N rules | nothing recurring> · <PR link | dry>`
diff --git a/REVIEW.md b/REVIEW.md
@@ -0,0 +1,84 @@
+# typescript-sdk Review Conventions
+
+Guidance for reviewing pull requests on this repository. The first three sections are
+stable principles; the **Recurring Catches** section is auto-maintained from past human
+review rounds and grows over time.
+
+## Guiding Principles
+
+1. **Minimalism** — The SDK should do less, not more. Protocol correctness, transport
+   lifecycle, types, and clean handler context belong in the SDK. Middleware engines,
+   registry managers, builder patterns, and content helpers belong in userland.
+2. **Burden of proof is on addition** — The default answer to "should we add this?" is
+   no. Removing something from the public API is far harder than not adding it.
+3. **Justify with concrete evidence** — Every new abstraction needs a concrete consumer
+   today. Ask for real issues, benchmarks, real-world examples; apply the same standard
+   to your own review (link spec sections, link code, show the simpler alternative).
+4. **Spec is the anchor** — The SDK implements the protocol spec. The further a feature
+   drifts from the spec, the stronger the justification needs to be.
+5. **Kill at the highest level** — If the design is wrong, don't review the
+   implementation. Lead with the highest-level concern; specific bugs are supporting
+   detail.
+6. **Decompose by default** — A PR doing multiple things should be multiple PRs unless
+   there's a strong reason to bundle.
+
+## Review Ordering
+
+1. **Design justification** — Is the overall approach sound? Is the complexity warranted?
+2. **Structural concerns** — Is the architecture right? Are abstractions justified?
+3. **Correctness** — Bugs, regressions, missing functionality.
+4. **Style and naming** — Nits, conventions, documentation.
+
+## Checklist
+
+**Protocol & spec**
+- Types match [`schema.ts`](https://github.com/modelcontextprotocol/modelcontextprotocol/blob/main/schema/draft/schema.ts) exactly (optional vs required fields)
+- Correct `McpError` codes; HTTP status codes match spec (e.g., 404 vs 410)
+- Works for both stdio and Streamable HTTP transports — no transport-specific assumptions
+- Cross-SDK consistency: check what `python-sdk` does for the same feature
+
+**API surface**
+- Every new export is intentional (see CLAUDE.md § Public API Exports); helpers users can write themselves belong in a cookbook, not the SDK
+- New abstractions have at least one concrete callsite in the PR
+- One way to do things — improving an existing API beats adding a parallel one
+
+**Correctness**
+- Async: race conditions, cleanup on cancellation, unhandled rejections, missing `await`
+- Error propagation: caught/rethrown properly, resources cleaned up on error paths
+- Type safety: no unjustified `any`, no unsafe `as` assertions
+- Backwards compat: public-interface changes, default changes, removed exports — flagged and justified
+
+**Tests & docs**
+- New behavior has vitest coverage including error paths
+- Breaking changes documented in `docs/migration.md` and `docs/migration-SKILL.md`
+
+## Recurring Catches
+
+### HTTP Transport
+
+- When validating `Mcp-Session-Id`, return **400** for a missing header and **404** for an unknown/expired session — never conflate `!sessionId || !transports[sessionId]` into one status, because the client needs to distinguish "fix your request" from "start a new session". Flag any diff that branches on session-id presence/lookup with a single 4xx. (#1707, #1770)
+
+### Error Handling
+
+- Broad `catch` blocks must not emit client-fault JSON-RPC codes (`-32700` ParseError, `-32602` InvalidParams) for server-internal failures like stream setup, task-store misses, or polling errors — map those to `-32603` InternalError so clients don't retry/reformat pointlessly. Flag any catch-all that hard-codes ParseError/InvalidParams without discriminating the thrown cause. (#1752, #1769)
+
+### Schema Compliance
+
+- When editing Zod protocol schemas in `schemas.ts`, verify unknown-key handling matches the spec `schema.ts`: if the spec type has no `additionalProperties: false`, the SDK schema must use `.passthrough()` / `.catchall(z.unknown())` rather than implicit strict — over-strict Zod (incl. `z.literal('object')` on `type`) rejects spec-valid payloads from other SDKs. Also confirm `spec.types.test.ts` still passes bidirectionally. (#1768, #1849, #1169)
+
+### Async / Lifecycle
+
+- In `close()` / shutdown paths, wrap user-supplied or chained callbacks (`onclose?.()`, cancel fns) in `try/finally` so a throw can't skip the remaining teardown (`abort()`, `_onclose()`, map clears) — otherwise the transport is left half-open. (#1735, #1763)
+- Deferred callbacks (`setTimeout`, `.finally()`, reconnect closures) must check closed/aborted state before mutating `this._*` or starting I/O — a callback scheduled pre-close can fire after close/reconnect and corrupt the new connection's state (e.g., delete the new request's `AbortController`). (#1735, #1763)
+
+### Completeness
+
+- When a PR replaces a pattern (error class, auth-flow step, catch shape), grep the package for surviving instances of the old form — partial migrations leave sibling code paths with the very bug the PR claims to fix. Flag every leftover site. (#1657, #1761, #1595)
+
+### Documentation & Changesets
+
+- Read added `.changeset/*.md` text and new inline comments against the implementation in the same diff — prose that promises behavior the code no longer ships misleads consumers and contradicts stated intent. Flag any claim the diff doesn't back. (#1718, #1838)
+
+### CI & GitHub Actions
+
+- Do **not** assert that a third-party GitHub Action or publish toolchain will fail or needs extra permissions/tokens without verifying its docs or source — `pnpm publish` delegates to the system npm CLI (so npm OIDC works), and `changesets/action` in publish mode has no PR-comment step requiring `pull-requests: write`. For diffs under `.github/workflows/`, confirm claimed behavior in the action's README/source before flagging. (#1838, #1836)
