Claude Code Plugins

Community-maintained marketplace

Feedback

azure-devops

@maxxentropy/claude-tools
0
0

|

Install Skill

1Download skill
2Enable skills in Claude

Open claude.ai/settings/capabilities and find the "Skills" section

3Upload to Claude

Click "Upload skill" and select the downloaded ZIP file

Note: Please verify skill by going through its instructions before using it.

SKILL.md

name azure-devops
description Integrate with Azure DevOps for work item management, pipeline monitoring, and repository operations. Use when asked about: ado, azure devops, work item, create task, create bug, query work items, pipeline, set up ado, my work items, sprint items, what did I complete. Requires: Azure CLI with devops extension, authentication via az login.

Azure DevOps Integration

Integrate with Azure DevOps for work items, pipelines, and repositories using Azure CLI and REST API.

⚠️ MANDATORY: Authentication Gate

BEFORE any Azure DevOps operation, Claude MUST run this check:

python3 ~/.claude/skills/azure-devops/scripts/check-prerequisites.py --auth-only

If output is NOT_AUTHENTICATED:

  1. STOP - Do not attempt any ADO commands
  2. Tell the user: "Azure DevOps authentication required. Please run az login in your terminal, then try again."
  3. Do NOT try workarounds, alternative auth methods, or retry
  4. Do NOT proceed with unauthenticated commands

If output is OK: Proceed with the requested operation.

This prevents wasted time on auth failures and provides clear guidance to users.

Quick Start

# 1. Check auth (MANDATORY - see above)
python3 ~/.claude/skills/azure-devops/scripts/check-prerequisites.py --auth-only

# 2. Check full prerequisites (first time setup)
python3 ~/.claude/skills/azure-devops/scripts/check-prerequisites.py

# 3. Query your active work items
python3 ~/.claude/skills/azure-devops/scripts/query-work-items.py --preset my-active

# 4. Query items you changed this week
python3 ~/.claude/skills/azure-devops/scripts/query-work-items.py --preset changed-this-week --format table

Prerequisites Check

Before any ADO operation, verify prerequisites:

python3 ~/.claude/skills/azure-devops/scripts/check-prerequisites.py

Or manually:

# 1. Check Azure CLI installation
az --version

# 2. Check DevOps extension
az extension show --name azure-devops
# If missing: az extension add --name azure-devops

# 3. Check authentication
az account show
# If not logged in: az login

# 4. Check project configuration
cat .ado/config.json 2>/dev/null || echo "NOT_CONFIGURED"

If NOT_CONFIGURED, run Configuration Wizard below

Configuration Wizard

Run when .ado/config.json doesn't exist:

Step 1: Get Organization URL

Ask user for Azure DevOps organization URL (e.g., https://dev.azure.com/org-name)

Validate access:

az devops project list --organization "URL" --output table

Step 2: Select Project

az devops project list --organization "URL" --query "[].name" --output tsv

Step 3: Save Configuration

mkdir -p .ado
echo ".ado/" >> .gitignore

Create .ado/config.json:

{
  "organization": "https://dev.azure.com/org-name",
  "project": "ProjectName",
  "configuredAt": "2024-01-15T10:30:00Z"
}

Step 4: Run Discovery (REQUIRED for work item creation)

python3 skills/azure-devops/scripts/discover-project.py --config .ado/config.json --output .ado/project-metadata.json

This step is critical! It discovers the complete field schema for all work item types, including:

  • Required fields for each type (Bug, Task, User Story, etc.)
  • Allowed values for picklist fields (State, Priority, Severity)
  • Default values
  • Custom fields specific to your organization

Query Presets

Use presets for optimized, commonly-needed queries. Presets follow Microsoft best practices (date-limiting, proper indexing) and are organized by use case.

python3 skills/azure-devops/scripts/query-work-items.py --preset PRESET_NAME [--format table]

Personal Work (my-*)

Preset Description Use Case
my-active Active items assigned to me Daily work list, standup
my-in-progress Items I'm actively working on Current focus
my-new New items assigned to me Items to pick up
my-blocked My blocked items Blockers to escalate
my-recent Items I touched in last 3 days Recent context
my-all All items assigned to me Full inventory

Sprint/Iteration (sprint-*)

Preset Description Use Case
sprint-items All items in current sprint Sprint overview
sprint-mine My items in current sprint Personal sprint focus
sprint-not-started Sprint items not yet started Risk identification
sprint-in-progress Sprint items being worked Active work
sprint-done Completed sprint items Progress tracking
sprint-at-risk High priority, not started Sprint health
sprint-unassigned Unassigned sprint items Capacity planning

Completed (completed-*)

Preset Description Use Case
completed-today Items completed today End of day summary
completed-this-week Items completed in past 7 days Weekly summary
completed-by-me-today Items I completed today Daily standup
completed-by-me-this-week Items I completed this week WSR input

Activity (changed-*)

Preset Description Use Case
changed-today Items I changed today Daily activity
changed-this-week Items I changed this week Weekly activity
recent-activity All items changed in 24 hours Team pulse

Bugs (bugs-*)

Preset Description Use Case
bugs-mine Active bugs assigned to me Bug fixing focus
bugs-critical Critical/high severity bugs Urgent issues
bugs-new Bugs created in past 14 days New issues trend
bugs-triage New, unassigned bugs Triage meeting
bugs-recent Bugs changed in past 14 days Bug activity

Backlog (backlog-*)

Preset Description Use Case
backlog-ready Items with estimates, ready for sprint Sprint planning
backlog-unestimated Items without story points Refinement needed
backlog-stale Items not updated in 90+ days Backlog grooming

Priority (priority-*)

Preset Description Use Case
priority-critical P1 critical items Executive focus
priority-high P1-P2 high priority items Priority work
priority-mine My high priority items Personal priority

Blocked (blocked-*)

Preset Description Use Case
blocked-all All blocked items Impediment tracking
blocked-long Blocked > 3 days Escalation candidates

Created (created-*)

Preset Description Use Case
created-today Items created today New work intake
created-this-week Items created this week Weekly intake
created-by-me Items I created (30 days) My contributions

Team (team-*)

Preset Description Use Case
team-active All active items (team-wide) Team workload
team-completed-this-week Team completions this week Team progress

List All Presets

# List all presets with descriptions
python3 skills/azure-devops/scripts/query-work-items.py --list-presets

# List with use cases (verbose)
python3 skills/azure-devops/scripts/query-work-items.py --list-presets -v

Common Workflows

Daily Standup:

python3 query-work-items.py --preset my-in-progress --format table
python3 query-work-items.py --preset completed-by-me-today --format table
python3 query-work-items.py --preset my-blocked --format table

Weekly Status Report:

python3 query-work-items.py --preset completed-by-me-this-week --format table

Sprint Planning:

python3 query-work-items.py --preset backlog-ready --format table
python3 query-work-items.py --preset sprint-unassigned --format table

Bug Triage:

python3 query-work-items.py --preset bugs-triage --format table
python3 query-work-items.py --preset bugs-critical --format table

Best Practices

Avoiding Rate Limits

Azure DevOps enforces rate limits of 200 TSTUs per 5-minute sliding window. Follow these practices:

  1. Use Batch Operations: The scripts use batch API (200 items per request) instead of N+1 queries
  2. Use Presets: Optimized queries with date/range limiting
  3. Limit Results: Use --max-results to cap returned items
  4. Honor Retry-After: Scripts automatically handle rate limiting with exponential backoff

Reference: Azure DevOps Rate Limits

Query Optimization

Follow WIQL best practices:

  • Place date/range-limiting clauses early in WHERE
  • Avoid Contains operator (use Contains Words instead)
  • Minimize Or operators
  • Avoid sorting on non-core fields
  • Specify project scope instead of querying across projects
  • Keep query execution under 30 seconds

Reference: WIQL Syntax

Error Handling

The client module (ado_client.py) provides structured error types:

Error Type Meaning Action
TRANSIENT Temporary failure Auto-retry with backoff
RATE_LIMITED Hit rate limit Wait and retry (auto-handled)
AUTH_FAILED Authentication issue Run az login
NOT_FOUND Resource doesn't exist Check IDs/paths
VALIDATION Bad request Fix query/parameters
PERMISSION Access denied Check permissions

Common Operations

Load Configuration

CONFIG=$(cat .ado/config.json)
ORG=$(echo $CONFIG | jq -r '.organization')
PROJECT=$(echo $CONFIG | jq -r '.project')

Work Items

Query with presets (recommended):

python3 skills/azure-devops/scripts/query-work-items.py --preset my-active --format table

Get specific work items by ID:

python3 skills/azure-devops/scripts/query-work-items.py --id 1234 1235 1236

Custom WIQL query:

python3 skills/azure-devops/scripts/query-work-items.py --wiql "SELECT [System.Id], [System.Title] FROM workitems WHERE [System.AssignedTo] = @Me"

Get work item details (CLI):

az boards work-item show --org "$ORG" --id ITEM_ID --output json

Create work item (ALWAYS check schema first!):

# BEFORE creating, check .ado/project-metadata.json for:
# 1. Valid work item types (work_item_types[].name)
# 2. Required fields (work_item_types[].requiredFields)
# 3. Allowed values (work_item_types[].picklistFields)

az boards work-item create --org "$ORG" --project "$PROJECT" \
  --type "Task" --title "Title" --assigned-to "user@email.com" \
  --output json

Update work item:

# Check fieldSummary.statesByType for valid state transitions
az boards work-item update --org "$ORG" --id ITEM_ID --state "Active" --output json

Work Item Description Formatting (CRITICAL)

Azure DevOps uses HTML for descriptions, NOT markdown!

When creating or updating work items with descriptions, ALWAYS use HTML formatting:

Setting description via CLI:

az boards work-item create --org "$ORG" --project "$PROJECT" \
  --type "Task" --title "Title" \
  --description "<h2>Problem</h2><p>Description of the issue.</p><h2>Solution</h2><p>How it was fixed.</p>" \
  --output json

Or use --fields for the description:

az boards work-item update --org "$ORG" --id ITEM_ID \
  --fields "System.Description=<h2>Summary</h2><p>Text here</p>"

HTML Formatting Reference

Element HTML Result
Heading <h2>Title</h2> Title (large)
Paragraph <p>Text</p> Paragraph with spacing
Bold <strong>text</strong> text
Italic <em>text</em> text
Line break <br> New line
Bullet list <ul><li>Item</li></ul> • Item
Numbered list <ol><li>Item</li></ol> 1. Item
Code <code>text</code> text
Code block <pre>code</pre> Code block
Link <a href="url">text</a> Clickable link

Example: Well-Formatted Description

DO NOT write this (markdown - won't render):

## Problem
- Serial port config didn't persist
- Baud rate reverted after restart

## Solution
1. Added config volume
2. Updated Program.cs

WRITE THIS (HTML - renders correctly):

<h2>Problem</h2>
<ul>
  <li>Serial port config didn't persist</li>
  <li>Baud rate reverted after restart</li>
</ul>

<h2>Solution</h2>
<ol>
  <li>Added config volume</li>
  <li>Updated Program.cs</li>
</ol>

Complete Work Item Example

DESCRIPTION=$(cat <<'EOF'
<h2>Problem</h2>
<p>Serial port configuration changes made via dashboard didn't persist after container restart.</p>
<ul>
  <li>Baud rate would revert to 9600</li>
  <li>Config was being saved to ephemeral storage</li>
</ul>

<h2>Solution</h2>
<ol>
  <li>Added <code>XTCONNECT_CONFIG_DIR</code> environment variable</li>
  <li>Updated Program.cs to load config from external directory</li>
  <li>Fixed default baud rate to 19200</li>
</ol>

<h2>Files Changed</h2>
<ul>
  <li>docker-compose.prod.yml</li>
  <li>src/XTConnect.Node/Program.cs</li>
  <li>src/XTConnect.Node/Configuration/SerialPortSettings.cs</li>
</ul>
EOF
)

az boards work-item update --org "$ORG" --id ITEM_ID \
  --fields "System.Description=$DESCRIPTION"

Pipelines

List pipelines:

az pipelines list --org "$ORG" --project "$PROJECT" --output table

Recent runs:

az pipelines runs list --org "$ORG" --project "$PROJECT" --pipeline-ids ID --top 10 --output table

Trigger pipeline:

az pipelines run --org "$ORG" --project "$PROJECT" --name "PipelineName" --branch "main"

Repositories

List repos:

az repos list --org "$ORG" --project "$PROJECT" --output table

Scripts Reference

Script Purpose Key Features
ado_client.py REST API client Batch operations, rate limiting, retry logic
query-work-items.py Query work items Presets, batch fetch, table output, cache integration
check-prerequisites.py Verify setup CLI, extension, auth validation
discover-project.py Scan project Areas, iterations, teams, pipelines
sync_work_items.py Sync to local index Incremental/full sync, staleness detection
work_item_index.py Local index management Cache storage, search, branch mapping
work_item_context.py Context detection Branch parsing, commit parsing, auto-detection, area suggestion
area_analyzer.py Codebase analysis Component detection, architecture patterns
area_advisor.py Area recommendations Compare code vs ADO areas, anti-patterns, health scores
commit_msg_hook.py Git commit-msg hook Auto-links commits to work items from branch context

ado_client.py Features

The core client module provides:

  • Batch API: Fetches up to 200 work items per request (vs N+1 with CLI)
  • Rate Limit Handling: Monitors X-RateLimit-* headers, honors Retry-After
  • Exponential Backoff: Automatic retry with jitter for transient failures
  • Token Refresh: Automatic Azure AD token management
  • Error Classification: Structured errors for appropriate handling
from ado_client import ADOClient, ADOConfig, ADOError

config = ADOConfig.from_file(".ado/config.json")
client = ADOClient(config, verbose=True)

# Batch fetch (efficient!)
items = client.get_work_items_batch([1, 2, 3, 4, 5])

# Query with auto-batch fetch
items = client.query_work_items(
    "SELECT [System.Id] FROM workitems WHERE [System.AssignedTo] = @Me"
)

Work Item Index & Context (Local Caching)

The work item index system provides local caching to avoid constant ADO API queries and enables automatic context detection from git branches.

Quick Start

# Sync work items to local cache
python3 skills/azure-devops/scripts/sync_work_items.py

# Check current work item context (auto-detects from branch)
python3 skills/azure-devops/scripts/query-work-items.py --context

# Search cached work items (no network required)
python3 skills/azure-devops/scripts/query-work-items.py --search "auth bug"

# Get work item from cache (fast, offline)
python3 skills/azure-devops/scripts/query-work-items.py --id 1234 --cache-only

How It Works

┌─────────────────────────────────────────────────────────────────┐
│                    Work Item Context Flow                        │
├─────────────────────────────────────────────────────────────────┤
│                                                                  │
│   [Branch Name]  ─────────────────────────┐                     │
│   feature/AB#1234-fix-auth               │                     │
│                                           ▼                     │
│   [Context Detector]                  [Index Manager]           │
│   - Parse branch: AB#1234             - .ado/work-items.json    │
│   - Check commit messages             - Cached work items        │
│   - Check environment vars            - Branch mappings          │
│                                           │                     │
│                                           ▼                     │
│   [Work Item Context]                                           │
│   - ID: 1234                                                    │
│   - Title: Fix authentication bug                               │
│   - State: Active                                               │
│   - Confidence: 100%                                            │
│                                                                  │
└─────────────────────────────────────────────────────────────────┘

Syncing Work Items

The sync_work_items.py script populates the local index from ADO:

# Smart sync (incremental if recent, full if stale)
python3 skills/azure-devops/scripts/sync_work_items.py

# Force full sync
python3 skills/azure-devops/scripts/sync_work_items.py --full

# Sync specific preset only
python3 skills/azure-devops/scripts/sync_work_items.py --preset my-active

# Show sync status
python3 skills/azure-devops/scripts/sync_work_items.py --status

# List available presets
python3 skills/azure-devops/scripts/sync_work_items.py --presets

Staleness Levels:

Level Age Behavior
fresh < 1 hour Skip sync (use --full to override)
recent 1-4 hours Incremental sync
stale 4-24 hours Incremental sync
very_stale > 24 hours Full sync
never_synced N/A Full sync

Context Detection

The system automatically detects work item context from:

  1. Environment variable: ADO_WORK_ITEM_ID=1234
  2. Index mapping: Branches explicitly linked to work items
  3. Branch name parsing: Extracts AB#1234 from branch names
  4. Commit messages: Scans recent commits for work item references

Supported branch naming conventions:

feature/AB#1234-description      # Best (explicit ADO reference)
fix/AB#1234-short-desc           # Good
bugfix/1234-description          # Acceptable (inferred)
user/name/AB#1234/feature        # Supported
AB#1234                          # Minimal
1234-description                 # Least confident

Check current context:

python3 skills/azure-devops/scripts/query-work-items.py --context

# Output:
# Work Item: AB#1234
#   Title: Fix authentication bug
#   State: Active
#   Type: Bug
#   Assigned: user@example.com
#   Source: branch_name
#   Confidence: 100%
#   Branch: feature/AB#1234-fix-auth

Manually set context:

python3 skills/azure-devops/scripts/work_item_context.py --set 1234

Suggest branch name for work item:

python3 skills/azure-devops/scripts/work_item_context.py --suggest-branch 1234
# Output: feature/AB#1234-fix-authentication-bug

Context-Aware Work Item Creation

When you're on a branch like feature/AB#1234-fix-auth but the work item doesn't exist, the system will offer to create it:

# Check if detected work item exists
python3 skills/azure-devops/scripts/work_item_context.py --check

# Output if item doesn't exist:
# Work Item: AB#1234
#   Status: DOES NOT EXIST
#
#   Work item AB#1234 not found. Create it?
#     Suggested title: Fix Auth
#     Suggested type: Bug
#
#   To create, run:
#     python3 work_item_context.py --create-from-branch

Create from branch context (with confirmation):

python3 skills/azure-devops/scripts/work_item_context.py --create-from-branch

# Output:
# Work item AB#1234 does not exist.
#
# Create new work item?
#   Title: Fix Auth
#   Type: Bug
#   Branch: fix/AB#1234-fix-auth
#
# Create? [y/N]: y
# Creating Bug: Fix Auth...
# Created work item AB#1234
# Linked to branch: fix/AB#1234-fix-auth

Override title or type:

python3 skills/azure-devops/scripts/work_item_context.py --create-from-branch \
  --title "Fix authentication token refresh" \
  --type "Task"

Skip confirmation (for automation):

python3 skills/azure-devops/scripts/work_item_context.py --create-from-branch --yes

Type inference from branch prefix:

Branch Prefix Inferred Type
fix/, bugfix/, hotfix/ Bug
feature/ User Story
Other Task

Cache-First Query Mode

The query script now supports cache-first lookups:

# Get by ID - checks cache first, fetches missing from ADO
python3 skills/azure-devops/scripts/query-work-items.py --id 1234 1235 1236

# Get by ID - cache only (no network, fast)
python3 skills/azure-devops/scripts/query-work-items.py --id 1234 --cache-only

# Search cached items by title/tags
python3 skills/azure-devops/scripts/query-work-items.py --search "auth"

# Update index after query
python3 skills/azure-devops/scripts/query-work-items.py --preset my-active --update-index

Index File Structure

The index is stored in .ado/work-items.json:

{
  "version": "1.0",
  "last_sync": "2024-01-15T10:30:00Z",
  "organization": "https://dev.azure.com/org-name",
  "project": "ProjectName",
  "work_items": {
    "1234": {
      "id": 1234,
      "title": "Fix authentication bug",
      "state": "Active",
      "work_item_type": "Bug",
      "assigned_to": "user@example.com",
      "tags": ["security", "P1"],
      "last_fetched": "2024-01-15T10:30:00Z"
    }
  },
  "branch_mappings": {
    "feature/AB#1234-fix-auth": {
      "work_item_id": 1234,
      "created_at": "2024-01-15T09:00:00Z",
      "commits": ["abc123", "def456"]
    }
  }
}

Workflow Integration

Recommended workflow when starting work:

# 1. Sync your work items (do this periodically)
python3 skills/azure-devops/scripts/sync_work_items.py

# 2. Search for relevant work item
python3 skills/azure-devops/scripts/query-work-items.py --search "auth bug" --format table

# 3. Create branch with work item reference
git checkout -b feature/AB#1234-fix-auth-bug

# 4. Verify context is detected
python3 skills/azure-devops/scripts/query-work-items.py --context

When committing:

# Include AB#1234 in commit message for automatic linking
git commit -m "Fix token refresh logic AB#1234"

# ADO will automatically link the commit to work item 1234

Work Item Field Schema

CRITICAL: Before creating or updating work items, ALWAYS read .ado/project-metadata.json

The metadata file contains the complete field schema for your project:

Structure

{
  "work_item_types": [
    {
      "name": "Bug",
      "requiredFields": ["System.Title", "System.State", ...],
      "picklistFields": {
        "System.State": ["New", "Active", "Resolved", "Closed"],
        "Microsoft.VSTS.Common.Priority": ["1", "2", "3", "4"],
        "Microsoft.VSTS.Common.Severity": ["1 - Critical", "2 - High", "3 - Medium", "4 - Low"]
      },
      "fields": [
        {
          "referenceName": "System.Title",
          "name": "Title",
          "alwaysRequired": true,
          "defaultValue": null
        },
        {
          "referenceName": "System.State",
          "name": "State",
          "alwaysRequired": true,
          "defaultValue": "New",
          "allowedValues": ["New", "Active", "Resolved", "Closed"]
        }
      ]
    }
  ],
  "fieldSummary": {
    "statesByType": {
      "Bug": ["New", "Active", "Resolved", "Closed"],
      "Task": ["New", "Active", "Closed"],
      "User Story": ["New", "Active", "Resolved", "Closed"]
    },
    "priorityValues": ["1", "2", "3", "4"],
    "severityValues": ["1 - Critical", "2 - High", "3 - Medium", "4 - Low"]
  }
}

How to Use

  1. Before creating a work item:

    # Check what fields are required for a Bug
cat .ado/project-metadata.json | jq '.work_item_types[] | select(.name=="Bug") | .requiredFields'

  2. Get valid state values:

    cat .ado/project-metadata.json | jq '.fieldSummary.statesByType'

  3. Get allowed priority values:

    cat .ado/project-metadata.json | jq '.fieldSummary.priorityValues'

Refresh Schema

If fields change (new custom fields, process template updates), re-run discovery:

python3 skills/azure-devops/scripts/discover-project.py --config .ado/config.json --output .ado/project-metadata.json

Area Management & Suggestions

The area management system helps you organize work items by automatically suggesting appropriate area paths based on code context, and analyzing your ADO area structure for improvements.

Area Suggestion (Automatic)

When detecting work item context or creating work items, the system automatically suggests an area path based on:

  1. Changed files (highest priority) - Analyzes git diff to identify which component you're working in
  2. Current directory - Infers component from your location in the codebase
  3. Branch name - Extracts component hints from branch naming patterns

See suggested area in context detection:

python3 skills/azure-devops/scripts/work_item_context.py

# Output:
# Work Item: AB#1234
#   Title: Fix authentication bug
#   State: Active
#   Source: branch_name
#   Suggested Area: ProjectName\Platform\Authentication

Create work item with auto-suggested area:

python3 skills/azure-devops/scripts/work_item_context.py --create-from-branch

# Output:
# Create new work item?
#   Title: Fix Auth Token
#   Type: Bug
#   Area: ProjectName\Platform\Authentication
#   Branch: fix/AB#1234-auth-token
#
# Create? [y/N]:

Override area path:

python3 skills/azure-devops/scripts/work_item_context.py --create-from-branch \
  --area "ProjectName\Core\Security"

Area Structure Analysis

Analyze your codebase to understand its component structure:

python3 skills/azure-devops/scripts/area_analyzer.py --path /path/to/repo

# Output:
# Codebase Analysis Results
# =========================
#
# Detected Architecture: Clean Architecture
#   Confidence: 85%
#
# Components Detected:
#   - Authentication (Platform) - 12 files, confidence: 90%
#   - Orders (Core) - 45 files, confidence: 95%
#   - Notifications (Integrations) - 8 files, confidence: 75%
#   - Web Dashboard (Clients) - 120 files, confidence: 98%
#
# Suggested Area Structure:
#   ProjectName
#   ├── Platform
#   │   ├── Authentication
#   │   └── Infrastructure
#   ├── Core
#   │   ├── Orders
#   │   └── Inventory
#   ├── Integrations
#   │   └── Notifications
#   └── Clients
#       └── Web

JSON output for automation:

python3 skills/azure-devops/scripts/area_analyzer.py --path /path/to/repo --json

Area Advisory (Best Practices)

Get recommendations for improving your ADO area structure:

python3 skills/azure-devops/scripts/area_advisor.py

# Output:
# Area Advisory Report
# ====================
#
# Health Score: 65/100
#
# Anti-Patterns Detected:
#   ⚠ TEAM_NAMED: Areas named after teams instead of domains
#     - ProjectName\Team Alpha → Consider: ProjectName\Core\Authentication
#     - ProjectName\Team Beta → Consider: ProjectName\Integrations
#
#   ⚠ TOO_FLAT: Missing hierarchical organization
#     - 15 areas at root level, recommend max 5-6 categories
#
#   ⚠ TECH_BASED: Areas based on technology rather than business domain
#     - ProjectName\API → Consider: ProjectName\Core\{DomainName}
#
# Gap Analysis:
#   Components in code but not in ADO areas:
#     - Notifications (src/Notifications/)
#     - Reporting (src/Reporting/)
#
#   ADO areas with no matching code:
#     - ProjectName\Legacy (consider removing or archiving)
#
# Recommendations:
#   1. Create domain-based top-level categories (Platform, Core, Clients)
#   2. Rename team-based areas to reflect business capabilities
#   3. Add missing component areas: Notifications, Reporting
#   4. Archive or remove unused areas: Legacy

Area Best Practices

The system evaluates areas against these best practices:

Practice Anti-Pattern Recommendation
Domain-based naming Team-named areas (Team Alpha) Use business domains (Orders, Authentication)
Product-aligned Tech-based areas (API, Database) Align with product components
Balanced hierarchy Too flat (>10 root areas) or too deep (>4 levels) Use 3-4 levels max
Clear ownership Orphaned/unused areas Remove or consolidate unused areas
Consistent naming Mixed conventions (user-auth vs UserAuth) Use consistent PascalCase

Category Mappings

The system automatically categorizes components:

Keywords Category Purpose
auth, identity, security, infrastructure Platform Cross-cutting concerns
domain, orders, inventory, catalog Core Business logic
gateway, connector, external, api Integrations External systems
web, mobile, desktop, cli Clients User interfaces
devops, deployment, ops Operations DevOps & tooling

Complete Area Workflow

# 1. Analyze your codebase structure
python3 skills/azure-devops/scripts/area_analyzer.py --path . --json > .ado/codebase-analysis.json

# 2. Get recommendations for ADO areas
python3 skills/azure-devops/scripts/area_advisor.py > .ado/area-recommendations.md

# 3. Review recommendations and create areas in ADO (manual step)
# Use Azure DevOps web UI or CLI to create suggested areas

# 4. Work items will now auto-suggest areas based on code context
python3 skills/azure-devops/scripts/work_item_context.py --create-from-branch

Git Hooks Integration

Automate ADO work item linking and enforce code quality with git hooks using the pre-commit framework.

Quick Setup

# 1. Install pre-commit
pip install pre-commit
# Or: brew install pre-commit

# 2. Install hooks (from repo root with .pre-commit-config.yaml)
pre-commit install
pre-commit install --hook-type commit-msg

# 3. (Optional) Run against all files to verify setup
pre-commit run --all-files

What the Hooks Do

Hook Stage Purpose
ado-work-item-link commit-msg Auto-appends AB#1234 to commits based on branch name
gitleaks pre-commit Detects secrets/credentials before they're committed
check-added-large-files pre-commit Prevents commits with files > 1MB
check-merge-conflict pre-commit Catches forgotten merge conflict markers
no-commit-to-branch pre-commit Prevents direct commits to main/master
trailing-whitespace pre-commit Auto-removes trailing whitespace
end-of-file-fixer pre-commit Ensures files end with newline

Automatic Work Item Linking

The ado-work-item-link hook automatically links commits to work items:

How it works:

  1. Checks if commit message already contains AB#1234
  2. If not, extracts work item ID from branch name
  3. Auto-appends reference to commit message

Supported branch formats:

feature/AB#1234-description     → Appends AB#1234
fix/AB#1234-short-desc          → Appends AB#1234
bugfix/1234-description         → Appends AB#1234
user/name/AB#1234/feature       → Appends AB#1234

Exempt branches (no work item required):

  • main, master, develop, release
  • Branches starting with release/, hotfix/, dependabot/, renovate/

Example output:

$ git commit -m "Fix token refresh logic"
✓ Auto-linked to AB#1234 (from branch: feature/AB#1234-auth-fix)

$ git log -1 --oneline
a1b2c3d Fix token refresh logic

AB#1234

Secret Detection

The gitleaks hook scans for accidentally committed secrets:

  • API keys, tokens, passwords
  • AWS, Azure, GCP credentials
  • Private keys, certificates
  • Connection strings

Configuration: Customize detection in .gitleaks.toml:

# Allowlist specific paths
[allowlist]
paths = [
    '''test[s]?/fixtures/''',
    '''\.test\.(ts|js)$''',
]

# Allowlist specific patterns
[[rules]]
id = "example-values"
regex = '''(?i)example[-_]?(api[-_]?key|password)'''
allowlist = { regexTarget = "match" }

Skipping Hooks (Use Sparingly)

# Skip all hooks for a single commit
git commit --no-verify -m "WIP: work in progress"

# Skip specific hook
SKIP=gitleaks git commit -m "Add test fixtures with fake creds"

Enabling Optional Hooks

The .pre-commit-config.yaml includes commented-out hooks for:

.NET projects:

# Uncomment in .pre-commit-config.yaml
- id: dotnet-format
  entry: dotnet format --verify-no-changes
- id: dotnet-build
  stages: [pre-push]  # Only on push, not every commit

Python projects:

- repo: https://github.com/psf/black
  hooks:
    - id: black

JavaScript/TypeScript:

- repo: https://github.com/pre-commit/mirrors-eslint
  hooks:
    - id: eslint

Troubleshooting

Hook not running:

# Verify hooks are installed
ls -la .git/hooks/
# Should show pre-commit and commit-msg symlinks

# Reinstall if needed
pre-commit install --hook-type commit-msg
pre-commit install

Gitleaks false positive:

# Run gitleaks manually to see details
gitleaks detect --source . --verbose

# Add to .gitleaks.toml allowlist if truly false positive

Work item hook not detecting branch:

# Check branch name format
git branch --show-current

# Test the hook directly
python3 skills/azure-devops/scripts/commit_msg_hook.py .git/COMMIT_EDITMSG

Scripts Reference

Script Purpose
commit_msg_hook.py Git commit-msg hook for auto-linking work items

WIQL Quick Reference

-- My active items (optimized)
SELECT [System.Id], [System.Title] FROM workitems
WHERE [System.AssignedTo] = @Me
  AND [System.State] NOT IN ('Closed', 'Done', 'Removed')
ORDER BY [Microsoft.VSTS.Common.Priority] ASC

-- Items changed this week (date-limited)
SELECT [System.Id], [System.Title] FROM workitems
WHERE [System.ChangedDate] >= @Today - 7
  AND [System.AssignedTo] = @Me
ORDER BY [System.ChangedDate] DESC

-- Items in area path
SELECT [System.Id], [System.Title] FROM workitems
WHERE [System.AreaPath] UNDER 'Project\Area'
  AND [System.State] <> 'Removed'

Date macros: @Today, @Today - 7, @StartOfWeek, @StartOfMonth, @CurrentIteration

Important constraints:

  • Max 32,000 characters per WIQL query
  • CLI query returns max 1,000 items (use REST API for more)
  • Query timeout is 30 seconds

Configuration Files

.ado/config.json

{
  "organization": "https://dev.azure.com/org-name",
  "project": "ProjectName",
  "configuredAt": "2024-01-15T10:30:00Z"
}

.ado/project-metadata.json

Generated by discover-project.py with:

  • Areas (hierarchy)
  • Iterations (with dates)
  • Teams
  • Work item types
  • Pipelines
  • Repositories

Troubleshooting

Authentication Errors

# Re-authenticate
az login

# Check current account
az account show

# If using service principal, ensure it has Azure DevOps permissions

Rate Limiting (HTTP 429)

If you see TF400733: Request was blocked:

  1. Wait 5 minutes for the sliding window to reset
  2. Use presets with date limiting instead of broad queries
  3. Reduce --max-results parameter
  4. Use batch operations (default in scripts)

Query Timeout (VS402335)

If query times out after 30 seconds:

  1. Add date range limits to narrow results
  2. Remove expensive operators (Contains, Ever, Or)
  3. Specify project scope
  4. Sort by System.Id instead of custom fields

Extension Missing

az extension add --name azure-devops
az extension update --name azure-devops  # Update if outdated

References