All playbooks

Agencies, freelancers, and engineering teams using GitHub

GitHub issue roadmap from a codebase audit playbook

An audit report is only useful if it changes the work queue. This playbook converts findings into GitHub issues that can be planned, assigned, verified, and closed.

Step 1

Collapse duplicate findings

Avoid flooding the issue tracker. Merge repeated symptoms into one issue when the fix is shared.

  • Group findings by root cause and affected module
  • Keep separate issues for separate owners or release windows
  • Suppress low-impact cleanup until it blocks real work
  • Preserve examples as evidence inside the issue body

Step 2

Write issues with acceptance criteria

A good cleanup issue is reviewable. It says why the work matters and how the team will know it is done.

  • Problem, impact, affected files, and suggested approach
  • Acceptance criteria in testable language
  • Verification commands or manual checks
  • Risk label and target milestone

Step 3

Build planning views

Project views help debt compete with roadmap work when the fields describe real tradeoffs.

  • Priority, risk type, effort, owner, milestone, and target date
  • Roadmap view for 30/60/90-day sequencing
  • Blocked view for access, product, or migration dependencies
  • Closed view tied to audit score movement

Step 4

Close the loop with re-audits

Every accepted fix should reduce a finding, reduce a hotspot, or document why the risk is accepted.

  • Open small pull requests tied to one issue
  • Re-run the audit after merge
  • Record score or finding deltas
  • Create follow-up issues only when evidence changes

Run this playbook on a real repository

CodeTruss builds the architecture map, health scores, ranked findings, report, GitHub issues, and opt-in fix PRs from the repository itself.