| name | moai-foundation-quality |
| description | Enterprise code quality orchestrator with TRUST 5 validation, proactive analysis, and automated best practices enforcement |
| version | 2.0.0 |
| modularized | true |
| scripts_enabled | true |
| allowed-tools | Read, Write, Edit, Bash, Grep, Glob, TodoWrite, mcp__context7__resolve-library-id, mcp__context7__get-library-docs |
| last_updated | Sun Nov 30 2025 00:00:00 GMT+0000 (Coordinated Universal Time) |
| compliance_score | 90 |
| auto_trigger_keywords | foundation, quality |
| scripts | [object Object] |
| color | red |
Enterprise Code Quality Orchestrator
Enterprise-grade code quality management system that combines systematic code review, proactive improvement suggestions, and automated best practices enforcement. Provides comprehensive quality assurance through TRUST 5 framework validation with Context7 integration for real-time best practices.
Quick Reference (30 seconds)
Core Capabilities:
- TRUST 5 Validation: Testable, Readable, Unified, Secured, Trackable quality gates
- Proactive Analysis: Automated issue detection and improvement suggestions
- Best Practices Enforcement: Context7-powered real-time standards validation
- Multi-Language Support: 25+ programming languages with specialized rules
- Enterprise Integration: CI/CD pipelines, quality metrics, reporting
Key Patterns:
- Quality Gate Pipeline → Automated validation with configurable thresholds
- Proactive Scanner → Continuous analysis with improvement recommendations
- Best Practices Engine → Context7-driven standards enforcement
- Quality Metrics Dashboard → Comprehensive reporting and trend analysis
When to Use:
- Code review automation and quality gate enforcement
- Proactive code quality improvement and technical debt reduction
- Enterprise coding standards enforcement and compliance validation
- CI/CD pipeline integration with automated quality checks
Quick Access:
- TRUST 5 Framework → trust5-validation.md
- Proactive Analysis → proactive-analysis.md
- Best Practices → best-practices.md
- Integration Patterns → integration-patterns.md
Implementation Guide
Getting Started
Basic Quality Validation:
# Initialize quality orchestrator
quality_orchestrator = QualityOrchestrator(
trust5_enabled=True,
proactive_analysis=True,
best_practices_enforcement=True,
context7_integration=True
)
# Run comprehensive quality analysis
result = await quality_orchestrator.analyze_codebase(
path="src/",
languages=["python", "javascript", "typescript"],
quality_threshold=0.85
)
# Quality gate validation with TRUST 5
quality_gate = QualityGate()
validation_result = await quality_gate.validate_trust5(
codebase_path="src/",
test_coverage_threshold=0.90,
complexity_threshold=10
)
Proactive Quality Analysis:
# Initialize proactive scanner
proactive_scanner = ProactiveQualityScanner(
context7_client=context7_client,
rule_engine=BestPracticesEngine()
)
# Scan for improvement opportunities
improvements = await proactive_scanner.scan_codebase(
path="src/",
scan_types=["security", "performance", "maintainability", "testing"]
)
# Generate improvement recommendations
recommendations = await proactive_scanner.generate_recommendations(
issues=improvements,
priority="high",
auto_fix=True
)
Core Components
1. Quality Orchestration Engine
class QualityOrchestrator:
"""Enterprise quality orchestration with TRUST 5 framework"""
def __init__(self, config: QualityConfig):
self.trust5_validator = TRUST5Validator()
self.proactive_scanner = ProactiveScanner()
self.best_practices_engine = BestPracticesEngine()
self.context7_client = Context7Client()
self.metrics_collector = QualityMetricsCollector()
async def analyze_codebase(self, request: QualityAnalysisRequest) -> QualityResult:
"""Comprehensive codebase quality analysis"""
# Phase 1: TRUST 5 Validation
trust5_result = await self.trust5_validator.validate(
codebase=request.path,
thresholds=request.quality_thresholds
)
# Phase 2: Proactive Analysis
proactive_result = await self.proactive_scanner.scan(
codebase=request.path,
focus_areas=request.focus_areas
)
# Phase 3: Best Practices Check
practices_result = await self.best_practices_engine.validate(
codebase=request.path,
languages=request.languages,
context7_docs=True
)
# Phase 4: Metrics Collection
metrics = await self.metrics_collector.collect_comprehensive_metrics(
codebase=request.path,
analysis_results=[trust5_result, proactive_result, practices_result]
)
return QualityResult(
trust5_validation=trust5_result,
proactive_analysis=proactive_result,
best_practices=practices_result,
metrics=metrics,
overall_score=self._calculate_overall_quality_score([
trust5_result, proactive_result, practices_result
])
)
Detailed implementations:
- TRUST 5 Validator Implementation
- Proactive Scanner Implementation
- Best Practices Engine Implementation
Configuration and Customization
Quality Configuration:
# quality-config.yaml
quality_orchestration:
trust5_framework:
enabled: true
thresholds:
overall: 0.85
testable: 0.90
readable: 0.80
unified: 0.85
secured: 0.90
trackable: 0.80
proactive_analysis:
enabled: true
scan_frequency: "daily"
focus_areas:
- "performance"
- "security"
- "maintainability"
- "technical_debt"
auto_fix:
enabled: true
severity_threshold: "medium"
confirmation_required: true
best_practices:
enabled: true
context7_integration: true
auto_update_standards: true
compliance_target: 0.85
language_rules:
python:
style_guide: "pep8"
formatter: "black"
linter: "ruff"
type_checker: "mypy"
javascript:
style_guide: "airbnb"
formatter: "prettier"
linter: "eslint"
typescript:
style_guide: "google"
formatter: "prettier"
linter: "eslint"
reporting:
enabled: true
metrics_retention_days: 90
trend_analysis: true
executive_dashboard: true
notifications:
quality_degradation: true
security_vulnerabilities: true
technical_debt_increase: true
Integration Examples:
See Integration Patterns for:
- CI/CD Pipeline Integration
- GitHub Actions Integration
- Quality-as-Service REST API
- Cross-Project Benchmarking
Advanced Patterns
1. Custom Quality Rules
class CustomQualityRule:
"""Define custom quality validation rules"""
def __init__(self, name: str, validator: Callable, severity: str = "medium"):
self.name = name
self.validator = validator
self.severity = severity
async def validate(self, codebase: str) -> RuleResult:
"""Execute custom rule validation"""
try:
result = await self.validator(codebase)
return RuleResult(
rule_name=self.name,
passed=result.passed,
severity=self.severity,
details=result.details,
recommendations=result.recommendations
)
except Exception as e:
return RuleResult(
rule_name=self.name,
passed=False,
severity="error",
details={"error": str(e)},
recommendations=["Fix rule implementation"]
)
See Best Practices - Custom Rules for complete examples.
2. Machine Learning Quality Prediction
ML-powered quality issue prediction using code feature extraction and predictive models.
See Proactive Analysis - ML Prediction for implementation details.
3. Real-time Quality Monitoring
Continuous quality monitoring with automated alerting for quality degradation and security vulnerabilities.
See Proactive Analysis - Real-time Monitoring for implementation details.
4. Cross-Project Quality Benchmarking
Compare project quality metrics against similar projects in your industry.
See Integration Patterns - Benchmarking for implementation details.
Module Reference
Core Modules
- TRUST 5 Validation - Comprehensive quality framework validation
- Proactive Analysis - Automated issue detection and improvements
- Best Practices - Context7-powered standards enforcement
- Integration Patterns - CI/CD and enterprise integrations
Key Components by Module
TRUST 5 Validation:
TRUST5Validator- Five-pillar quality validationTestableValidator- Test coverage and qualitySecuredValidator- Security and OWASP compliance- Quality gate pipeline integration
Proactive Analysis:
ProactiveQualityScanner- Automated issue detectionQualityPredictionEngine- ML-powered predictionsRealTimeQualityMonitor- Continuous monitoring- Performance and maintainability analysis
Best Practices:
BestPracticesEngine- Standards validation- Context7 integration for latest docs
- Custom quality rules
- Language-specific validators
Integration Patterns:
- CI/CD pipeline integration
- GitHub Actions workflows
- Quality-as-Service REST API
- Cross-project benchmarking
Context7 Library Mappings
Essential library mappings for quality analysis tools and frameworks.
See Best Practices - Library Mappings for complete list.
Works Well With
Agents:
- core-planner - Quality requirements planning
- workflow-tdd - TDD implementation validation
- security-expert - Security vulnerability analysis
- code-backend - Backend code quality
- code-frontend - Frontend code quality
Skills:
- moai-foundation-core - TRUST 5 framework reference
- moai-tdd-implementation - TDD workflow validation
- moai-security-owasp - Security compliance
- moai-context7-integration - Context7 best practices
- moai-performance-optimization - Performance analysis
Commands:
/moai:2-run- TDD validation integration/moai:3-sync- Documentation quality checks/moai:9-feedback- Quality improvement feedback
Quick Reference Summary
Core Capabilities: TRUST 5 validation, proactive scanning, Context7-powered best practices, multi-language support, enterprise integration
Key Classes: QualityOrchestrator, TRUST5Validator, ProactiveQualityScanner, BestPracticesEngine, QualityMetricsCollector
Essential Methods: analyze_codebase(), validate_trust5(), scan_for_issues(), validate_best_practices(), generate_quality_report()
Integration Ready: CI/CD pipelines, GitHub Actions, REST APIs, real-time monitoring, cross-project benchmarking
Enterprise Features: Custom rules, ML prediction, real-time monitoring, benchmarking, comprehensive reporting
Quality Standards: OWASP compliance, TRUST 5 framework, Context7 integration, automated improvement recommendations