Cross-language Code Hygiene

Repository-wide hygiene practices for polyglot or language-independent work.

Select one bounded recipe. Start in audit mode; authorize fixes only after reviewing the candidate evidence.

Recipes

Lint warning baseline and budget

development

Bounded audit or remediation to turn an existing warning backlog into a measured, non-growing budget.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagelintwarningsbaseline

Dead code and unused symbol removal

development

Bounded audit or remediation to remove unreachable code and unused symbols without deleting runtime-discovered behavior.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagedead-codeunusedreachability

Duplicated logic consolidation

development

Bounded audit or remediation to consolidate behaviorally equivalent logic while preserving each caller's contract.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languageduplicationrefactorcontracts

Complexity and long-function reduction

development

Bounded audit or remediation to reduce hard-to-review control flow without changing behavior.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagecomplexitycontrol-flowrefactor

Deterministic test and flake remediation

development

Bounded audit or remediation to remove nondeterminism from a reproducibly flaky test.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagetestsflakydeterminism

Test isolation and fixture hygiene

development

Bounded audit or remediation to eliminate order-dependent fixtures and leaked test state.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagetestsfixturesisolation

Deprecated API migration

development

Bounded audit or remediation to replace deprecated APIs using the repository's supported runtime versions.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagedeprecationcompatibilitymigration

Configuration validation and default hygiene

development

Bounded audit or remediation to make invalid configuration fail clearly and defaults behave consistently.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languageconfigurationvalidationdefaults

Structured logging and cardinality hygiene

development

Bounded audit or remediation to make logs structured, actionable, and bounded without exposing sensitive data.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languageloggingobservabilitycardinality

Feature flag and experiment cleanup

development

Bounded audit or remediation to remove stale feature-flag branches after rollout state is proven.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagefeature-flagsexperimentsdead-code

TODO, FIXME, and suppression debt

development

Bounded audit or remediation to turn stale annotations and diagnostic suppressions into owned, reviewable work.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagetodofixmesuppressions

Time, date, timezone, and clock hygiene

development

Bounded audit or remediation to make temporal logic explicit, testable, and timezone-safe.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagetimetimezoneclock

Serialization schema and versioning hygiene

development

Bounded audit or remediation to make serialized contracts explicit and backward-compatible.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languageserializationschemaversioning

Regular-expression correctness and complexity hygiene

development

Bounded audit or remediation to make complex regular expressions bounded, readable, and behaviorally tested.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languageregexcomplexityparsing

Unicode, locale, and normalization hygiene

development

Bounded audit or remediation to make text comparison and normalization semantics intentional.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languageunicodelocalenormalization

Dependency manifest and lockfile hygiene

development

Bounded audit or remediation to align declared, resolved, direct, optional, and unused dependencies without upgrading them.

author security-recipes.ai contributorsteam Security Engineeringmodel used gpt-5-codexupdated 2026-07-12
code-hygienecross-languagedependencieslockfilesmanifests