rg — Infrastructure Auditing

Brace expansion generates the full path list. rg searches all in one invocation — faster than looping. Add --stats to see aggregate counts across the entire documentation system.

Every IP should be an {attribute} reference. Matches in prose (not code block examples) indicate STD-019 violations. Filter out code blocks with: rg -v '^\s*(//|----|\[source)' <(rg -n '\b\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\b' -g '*.adoc' docs/).

Every .adoc page must have :description: in the header. Files returned by this command are non-compliant. Pipe to wc -l for a violation count.

Antora UI provides a sidebar TOC globally. Any file with :toc: creates a duplicate. This command should return zero results. Non-zero = STD-004 violation.

Audit technical debt markers across the entire codex. --stats at the end shows total count. Pair with rg -c to rank files by debt density.

--no-ignore --hidden searches EVERYTHING including gitignored and hidden files. Use this to verify no secrets leaked into the repo. Any matches in non-.age files require immediate remediation.

Strips comments () and blank lines. Shows only active configuration directives. Works for any -comment config format: sshd_config, fstab, pacman.conf, nftables.conf.

rg reads stdin when no file argument is given. Faster than grep on large log streams due to SIMD-accelerated search. --no-pager prevents journalctl from invoking less.

Counts all non-empty lines in every .adoc file. --stats at the end gives the grand total. Alternative: rg --stats '' -t adoc docs/ 2>&1 | grep 'searched' for file count only.

--passthru prints all lines (not just matches), with -r showing what the replacement would look like. This does NOT modify the file — it is a preview. Use sed -i or rg -l | xargs sed -i for actual replacement.