Quality & Team

Refactoring

Foundational

Refactoring improves the structure of code without changing what it does. You make it clearer, simpler, and easier to change, while the behaviour stays exactly the same. Done in small steps and protected by tests, it keeps a codebase healthy. Done as a large, risky rewrite, or mixed into feature changes, it causes outages and diffs nobody can review.

The key idea, especially for newer engineers: refactoring must not change behaviour. If behaviour changes, that is a feature or a fix, not a refactor. Mixing the two makes both impossible to review and dangerous to ship. Tests are what make refactoring safe. They prove the behaviour stayed the same.

Healthy teams refactor a little, often, improving code as they work in it, rather than letting it decay until only a frightening rewrite will do. This is how technical debt gets paid down in practice (see Technical Debt).

Refactor safely

AlwaysKeep behaviour identical when refactoring. If you are changing what the code does, that is a separate change, not a refactor.
DoRefactor with tests protecting you. Have (or add) tests that capture the current behaviour first, so you can prove nothing changed (see Testing Strategy).
DoWork in small, reversible steps and commit or integrate often, so any mistake is easy to spot and undo (see Trunk-Based Development).
DoImprove as you go. Clean up the area you are already working in, rather than waiting for permission or a big project.
ConsiderUsing the IDE's automated refactorings (rename, extract method) for mechanical changes. They are safer than hand-editing.

Keep it reviewable and bounded

DoKeep refactoring separate from feature and bugfix changes, ideally in different commits or PRs, so reviewers can see that behaviour did not change (see Code Review).
AvoidMixing a large refactor into a feature change. The diff becomes impossible to review, and a behaviour change can hide in the noise.
AvoidRewriting large areas all at once. Prefer small, continuous improvement (expand/contract, strangler-style) that is always shippable.
NeverWeaken or remove a security, validation, or compliance control in the name of "cleaning up". That is a behaviour change, and a dangerous one (see Technical Debt).

Refactor and feature in one PR

// one 900-line PR: renames everything, restructures 5 files,
// AND changes the screening threshold from 80 to 70

Nobody can tell the safe renames from the real behaviour change hidden among them. The threshold change, a real risk decision, ships unreviewed inside the refactoring noise.

Separate, tested, small

PR 1: extract + rename (no behaviour change; tests still green)
PR 2: change screening threshold 80 -> 70 (reviewed on its own, with rationale)

Each PR is easy to review. One proves the change is structure-only; the other puts the real decision under proper review.

Self-review checklist

AskDid behaviour stay exactly the same — and do tests prove it?
AskIs this refactor separate from any feature/bugfix so a reviewer can see it's structure-only?
AskAre my steps small enough to undo easily if something breaks?
AskHave I accidentally changed any validation, security, or compliance behaviour?

Why it matters: Continuous, safe refactoring keeps a codebase easy to change, instead of slowly turning into something everyone is afraid to touch. Keeping behaviour identical, relying on tests, and separating refactors from feature changes lets us improve the code all the time, without the outages and unreviewable diffs that give refactoring a bad name.