<codex_compat>
This skill was ported from Claude Code. In Codex:
- "Skill tool" means read the skill's
SKILL.md from disk.
- "TodoWrite" means create and maintain a checklist section in your response.
- "Task()" means
spawn_agent (dispatch in parallel via multi_tool_use.parallel when needed).
- Claude-specific hooks and slash commands are not available; skip those steps.
</codex_compat>
<skill_overview>
Random fixes waste time and create new bugs. Always use tools to understand root cause BEFORE attempting fixes. Symptom fixes are failure.
</skill_overview>
<rigidity_level>
MEDIUM FREEDOM - Must complete investigation phases (tools → hypothesis → test) before fixing.
Can adapt tool choice to language/context. Never skip investigation or guess at fixes.
</rigidity_level>
<quick_reference>
| Phase | Tools to Use | Output |
|---|
| 1. Investigate | Error messages, internet-researcher agent, debugger, codebase-investigator | Root cause understanding |
| 2. Hypothesize | Form theory based on evidence (not guesses) | Testable hypothesis |
| 3. Test | Validate hypothesis with minimal change | Confirms or rejects theory |
| 4. Fix | Implement proper fix for root cause | Problem solved permanently |
FORBIDDEN: Skip investigation → guess at fix → hope it works
REQUIRED: Tools → evidence → hypothesis → test → fix
Key agents:
internet-researcher - Search error messages, known bugs, solutionscodebase-investigator - Understand code structure, find related codetest-runner - Run tests without output pollution
</quick_reference>
<when_to_use>
Use for ANY technical issue:
- Test failures
- Bugs in production or development
- Unexpected behavior
- Build failures
- Integration issues
- Performance problems
ESPECIALLY when:
- "Just one quick fix" seems obvious
- Under time pressure (emergencies make guessing tempting)
- Error message is unclear
- Previous fix didn't work
</when_to_use>
<the_process>
BEFORE attempting ANY fix, gather evidence with tools:
1. Read Complete Error Messages
- Entire error message (not just first line)
- Complete stack trace (all frames)
- Line numbers, file paths, error codes
- Stack traces show exact execution path
2. Search Internet FIRST (Use internet-researcher Agent)
Dispatch internet-researcher with:
"Search for error: [exact error message]
- Check Stack Overflow solutions
- Look for GitHub issues in [library] version [X]
- Find official documentation explaining this error
- Check if this is a known bug"
What agent should find:
- Exact matches to your error
- Similar symptoms and solutions
- Known bugs in your dependency versions
- Workarounds that worked for others
3. Use Debugger to Inspect State
Claude cannot run debuggers directly. Instead:
Option A - Recommend debugger to user:
"Let's use lldb/gdb/DevTools to inspect state at error location.
Please run: [specific commands]
When breakpoint hits: [what to inspect]
Share output with me."
Option B - Add instrumentation Claude can add:
rust
1// Add logging
2println!("DEBUG: var = {:?}, state = {:?}", var, state);
3
4// Add assertions
5assert!(condition, "Expected X but got {:?}", actual);
4. Investigate Codebase (Use codebase-investigator Agent)
Dispatch codebase-investigator with:
"Error occurs in function X at line Y.
Find:
- How is X called? What are the callers?
- What does variable Z contain at this point?
- Are there similar functions that work correctly?
- What changed recently in this area?"
Based on evidence (not guesses):
- State what you know (from investigation)
- Propose theory explaining the evidence
- Make prediction that tests the theory
Example:
Known: Error "null pointer" at auth.rs:45 when email is empty
Theory: Empty email bypasses validation, passes null to login()
Prediction: Adding validation before login() will prevent error
Test: Add validation, verify error doesn't occur with empty email
NEVER:
- Guess without evidence
- Propose fix without hypothesis
- Skip to "try this and see"
Phase 3: Test Hypothesis
Minimal change to validate theory:
- Make smallest change that tests hypothesis
- Run test/reproduction case
- Observe result
If confirmed: Proceed to Phase 4
If rejected: Return to Phase 1 with new information
Phase 4: Implement Fix
After understanding root cause:
- Write test reproducing bug (RED phase - use test-driven-development skill)
- Implement proper fix addressing root cause
- Verify test passes (GREEN phase)
- Run full test suite (regression check)
- Commit fix
The fix should:
- Address root cause (not symptom)
- Be minimal and focused
- Include test preventing regression
</the_process>
<examples>
<example>
<scenario>Developer encounters test failure, immediately tries "obvious" fix without investigation</scenario>
<code>
Test error:
```
FAIL: test_login_expired_token
AssertionError: Expected Err(TokenExpired), got Ok(User)
```
Developer thinks: "Obviously the token expiration check is wrong"
Makes change without investigation:
rust
1// "Fix" - just check if token is expired
2if token.expires_at < now() {
3 return Err(AuthError::TokenExpired);
4}
Commits without testing other cases.
</code>
<why_it_fails>
No investigation:
- Didn't read error completely
- Didn't check what
expires_at contains
- Didn't debug to see token state
- Didn't search for similar issues
What actually happened: Token expires_at was being parsed incorrectly, always showing future date. The "fix" adds dead code that never runs.
Result: Bug not fixed, new dead code added, time wasted.
</why_it_fails>
<correction>
**Phase 1 - Investigate with tools:**
bash
1# 1. Read complete error
2FAIL: test_login_expired_token at line 45
3Expected: Err(TokenExpired)
4Got: Ok(User { id: 123 })
5Token: { expires_at: "2099-01-01", ... }
Dispatch internet-researcher:
"Search for: token expiration always showing future date
- Check date parsing bugs
- Look for timezone issues
- Find JWT expiration handling"
Add instrumentation:
rust
1println!("DEBUG: expires_at = {:?}, now = {:?}, expired = {:?}",
2 token.expires_at, now(), token.expires_at < now());
Run test again:
DEBUG: expires_at = 2099-01-01T00:00:00Z, now = 2024-01-15T10:30:00Z, expired = false
Phase 2 - Hypothesis:
"Token expires_at is being set to 2099, not actual expiration. Problem is in token creation, not validation."
Phase 3 - Test:
Check token creation code:
rust
1// Found the bug!
2fn create_token() -> Token {
3 Token {
4 expires_at: "2099-01-01".parse()?, // HARDCODED!
5 ...
6 }
7}
Phase 4 - Fix root cause:
rust
1fn create_token(duration: Duration) -> Token {
2 Token {
3 expires_at: now() + duration, // Correct
4 ...
5 }
6}
Result: Root cause fixed, test passes, no dead code.
</correction>
</example>
<example>
<scenario>Developer skips internet search, reinvents solution to known problem</scenario>
<code>
Error:
```
error: linking with `cc` failed: exit status: 1
ld: symbol(s) not found for architecture arm64
```
Developer thinks: "Must be a linking issue, I'll add flags"
Spends 2 hours trying different linker flags:
toml
1[target.aarch64-apple-darwin]
2rustflags = ["-C", "link-arg=-undefined dynamic_lookup"]
3# Doesn't work, tries more flags...
</code>
<why_it_fails>
Skipped internet search:
- This is a common error with known solutions
- Stack Overflow has exact fix
- Official docs explain the issue
- Wasted 2 hours reinventing solution
Why it happens: Impatience, thinking "I can figure this out faster"
</why_it_fails>
<correction>
**Dispatch internet-researcher FIRST:**
"Search for: 'symbol not found for architecture arm64' Rust linking
- Check Stack Overflow solutions
- Look for Xcode/macOS specific fixes
- Find Cargo configuration for Apple Silicon"
Agent returns (30 seconds):
Found on Stack Overflow (2.4k upvotes):
This occurs when Xcode Command Line Tools aren't installed or outdated.
Solution:
xcode-select --install
Or update existing:
softwareupdate --all --install --force
Apply solution:
bash
1xcode-select --install
2# Wait for installation
3cargo build
4# Success!
Result: Fixed in 5 minutes, not 2 hours.
</correction>
</example>
<example>
<scenario>Developer fixes symptom without understanding root cause, bug returns different way</scenario>
<code>
Bug: Users can delete other users' posts
Developer notices: DELETE /posts/:id doesn't check ownership
"Fix":
python
1@app.delete("/posts/{post_id}")
2def delete_post(post_id: int, user: User):
3 post = get_post(post_id)
4 if post.author_id != user.id:
5 raise Forbidden()
6 delete(post)
Bug "fixed"... but bug report comes back: "Users can edit other users' posts"
</code>
<why_it_fails>
Symptom fix:
- Fixed DELETE endpoint
- Didn't investigate root cause
- Didn't check other endpoints
Root cause: No authorization middleware checking ownership across ALL endpoints.
Result: Whack-a-mole fixing symptoms, not the underlying issue.
</why_it_fails>
<correction>
**Phase 1 - Investigate with codebase-investigator:**
"User can delete other users' posts. Investigate:
- What authorization exists across all post endpoints?
- Is there a pattern for ownership checks?
- Which other endpoints access posts?
- Is there middleware handling this?"
Agent reports:
Found:
- DELETE /posts/:id - NO ownership check
- PUT /posts/:id - NO ownership check
- GET /posts/:id - NO ownership check (allows viewing private posts!)
- No authorization middleware found
- Similar pattern in comments, likes endpoints
Phase 2 - Hypothesis:
"Missing authorization layer. Need middleware checking resource ownership across ALL endpoints."
Phase 4 - Fix root cause:
python
1# Add authorization middleware
2class OwnershipMiddleware:
3 def check_ownership(self, resource, user):
4 if resource.author_id != user.id:
5 raise Forbidden()
6
7# Apply to all endpoints
8@app.delete("/posts/{post_id}")
9@require_ownership(Post)
10def delete_post(...):
11 ...
12
13@app.put("/posts/{post_id}")
14@require_ownership(Post)
15def update_post(...):
16 ...
Result: Root cause fixed, ALL endpoints secured, not just one symptom.
</correction>
</example>
</examples>
<critical_rules>
Rules That Have No Exceptions
-
Tools before fixes → Never guess without investigation
- Use internet-researcher for errors
- Use debugger or instrumentation for state
- Use codebase-investigator for context
-
Evidence-based hypotheses → Not guesses or hunches
- State what tools revealed
- Propose theory explaining evidence
- Make testable prediction
-
Test hypothesis before fixing → Minimal change to validate
- Smallest change that tests theory
- Observe result
- If wrong, return to investigation
-
Fix root cause, not symptom → One fix, many symptoms prevented
- Understand why problem occurred
- Fix the underlying issue
- Don't play whack-a-mole
Common Excuses
All of these mean: Stop, use tools to investigate:
- "The fix is obvious"
- "I know what this is"
- "Just a quick try"
- "No time for debugging"
- "Error message is clear enough"
- "Internet search will take too long"
</critical_rules>
<verification_checklist>
Before proposing any fix:
Before committing fix:
</verification_checklist>
<integration>
This skill calls:
- internet-researcher (search errors, known bugs, solutions)
- codebase-investigator (understand code structure, find related code)
- test-driven-development (write test for bug, implement fix)
- test-runner (run tests without output pollution)
This skill is called by:
- fixing-bugs (complete bug fix workflow)
- root-cause-tracing (deep debugging for complex issues)
- Any skill when encountering unexpected behavior
Agents used:
- hyperpowers:internet-researcher (search for error solutions)
- hyperpowers:codebase-investigator (understand codebase context)
- hyperpowers:test-runner (run tests, return summary only)
</integration>
<resources>
Detailed guides:
When stuck:
- Error unclear → Dispatch internet-researcher with exact error text
- Don't understand code flow → Dispatch codebase-investigator
- Need to inspect runtime state → Recommend debugger to user or add instrumentation
- Tempted to guess → Stop, use tools to gather evidence first
</resources>
