Agent Skills: plan-review

[BLOCKING] This is a validation gate. MUST ATTENTION use AskUserQuestion to present review findings and get user confirmation. Completing without asking at least one question is a violation.

[IMPORTANT] Use TaskCreate to break ALL work into small tasks BEFORE starting — including tasks for each file read. This prevents context loss from long files. For simple tasks, AI MUST ATTENTION ask user whether to skip.

Understand Code First — HARD-GATE: Do NOT write, plan, or fix until you READ existing code.

1. Search 3+ similar patterns (grep/glob) — cite file:line evidence
2. Read existing files in target area — understand structure, base classes, conventions
3. Run python .claude/scripts/code_graph trace <file> --direction both --json when .code-graph/graph.db exists
4. Map dependencies via connections or callers_of — know what depends on your target
5. Write investigation to .ai/workspace/analysis/ for non-trivial tasks (3+ files)
6. Re-read analysis file before implementing — never work from memory alone
7. NEVER invent new patterns when existing ones work — match exactly or document deviation

BLOCKED until: - [ ] Read target files - [ ] Grep 3+ patterns - [ ] Graph trace (if graph.db exists) - [ ] Assumptions verified with evidence

Double Round-Trip Review — TWO mandatory independent rounds. NEVER combine.

Round 1: Normal review building understanding. Read all files, note issues. Round 2: MANDATORY re-read ALL files from scratch. Focus on:

• Cross-cutting concerns missed in Round 1
• Interaction bugs between changed files
• Convention drift (new code vs existing patterns)
• Missing pieces (what should exist but doesn't)

Rules: NEVER rely on Round 1 memory for Round 2. Final verdict must incorporate BOTH rounds. Report must include ## Round 2 Findings section.

Critical Purpose: Ensure quality — no flaws, no bugs, no missing updates, no stale content. Verify both code AND documentation.

External Memory: For complex or lengthy work (research, analysis, scan, review), write intermediate findings and final results to a report file in plans/reports/ — prevents context loss and serves as deliverable.

Evidence Gate: MANDATORY IMPORTANT MUST ATTENTION — every claim, finding, and recommendation requires file:line proof or traced evidence with confidence percentage (>80% to act, <80% must verify first).

OOP & DRY Enforcement: MANDATORY IMPORTANT MUST ATTENTION — flag duplicated patterns that should be extracted to a base class, generic, or helper. Classes in the same group or suffix (ex *Entity, *Dto, *Service, etc...) MUST ATTENTION inherit a common base (even if empty now — enables future shared logic and child overrides). Verify project has code linting/analyzer configured for the stack.

Quick Summary

Goal: Auto-review implementation plans for validity, correctness, and best practices. Recursive: on FAIL, fix issues directly in plan files and re-review until PASS (max 3 iterations).

Workflow:

1. Resolve Plan — Use $ARGUMENTS path or active plan from ## Plan Context
2. Read Files — plan.md + all phase-*.md files, extract requirements/steps/files/risks
3. Evaluate Checklist — Validity (summary, requirements, steps, files), Correctness (specific, paths, no conflicts), Best Practices (YAGNI/KISS/DRY, architecture), Completeness (risks, testing, success, security)
4. Score & Classify — PASS (all Required + ≥50% Recommended), WARN (all Required + <50% Recommended), FAIL (any Required fails)
5. Output Result — Status, checks passed, issues, recommendations, verdict
6. If FAIL — Fix issues in plan files directly, then re-review (loop back to step 2, max 3 iterations)

Key Rules:

• PASS: Proceed to implementation
• WARN: Proceed with caution, note gaps
• FAIL (iteration < 3): Fix plan issues directly, then re-review
• FAIL (iteration = 3): STOP - escalate to user
• Constructive: Focus on implementation-blocking issues, not pedantic details

Be skeptical. Apply critical thinking, sequential thinking. Every claim needs traced proof, confidence percentages (Idea should be more than 80%).

Your mission

Perform automatic self-review of an implementation plan to ensure it's valid, correct, follows best practices, and identify anything needing fixes before proceeding.

Key distinction: This is AI self-review (automatic), NOT user interview like /plan-validate.

Plan Resolution

1. If $ARGUMENTS provided -> Use that path
2. Else check ## Plan Context section -> Use active plan path
3. If no plan found -> Error: "No plan to review. Run /plan first."

Workflow

Step 1: Read Plan Files

Read the plan directory:

• plan.md - Overview, phases list, frontmatter
• phase-*.md - All phase files
• Extract: requirements, implementation steps, file listings, risks

Step 2: Evaluate Against Checklist

Validity (Required - all must pass)

• [ ] Has executive summary (clear 1-2 sentence description)
• [ ] Has defined requirements section
• [ ] Has implementation steps (actionable tasks)
• [ ] Has files to create/modify listing

Correctness (Required - all must pass)

• [ ] Steps are specific and actionable (not vague)
• [ ] Implementation-Readiness Granularity Check (5-Point) — FAIL if any phase fails ANY criterion:

| # | Criterion | How to Measure | PASS | FAIL | | --- | -------------------------- | --------------------------------------------------------------------------------------------- | ------------------------------- | ---------------------------------- | | 1 | Steps name specific files | Every step includes a file path | "Modify src/auth/login.ts" | "Implement authentication" | | 2 | No planning verbs in steps | Absent: "research", "determine", "figure out", "decide", "evaluate", "explore", "investigate" | "Add validateToken() method" | "Determine the best auth approach" | | 3 | Each step ≤30 min effort | No single step is a mini-project | "Add error handler to endpoint" | "Build the entire auth module" | | 4 | Phase totals within limits | ≤5 files AND ≤3h effort | 3 files, 2h | 12 files, 8h | | 5 | No unresolved decisions | Zero open questions / TBDs in approach | All approaches decided | "TBD: which library to use" |

Tiered action on failure:

• Complexity 6-9 → Refine vague phases in-place (expand steps, split into sibling phases)
• Complexity 10+ → Create sub-plan directory {plan-dir}/sub-plans/phase-{XX}-{name}/plan.md

Worked example of FAIL → PASS: FAILS: "Phase 2: Data Layer — Set up database models, Create repositories, Implement data access patterns. Effort: 4h, Files: ~8" PASSES after split: "Phase 2A: Database Schema (1h, 3 files) — Create src/models/user.entity.ts, Create src/models/session.entity.ts, Create migrations/001-create-users-sessions.ts" + "Phase 2B: Repository Layer (1.5h, 3 files) — Create src/repos/user.repository.ts, Create src/repos/session.repository.ts, Register in src/app.module.ts"

• [ ] File paths follow project patterns
• [ ] No conflicting or duplicate steps
• [ ] Dependencies between steps are clear
• [ ] New Tech/Lib Gate: If plan introduces new packages/libraries/frameworks not in the project, verify alternatives were evaluated (top 3 compared) and user confirmed the choice. FAIL if new tech is added without evaluation.
• [ ] Test spec coverage — Every phase has ## Test Specifications section with TC mappings. "TBD" is valid for TDD-first mode.
• [ ] TC-requirement mapping — Every functional requirement maps to ≥1 TC (or explicit "TBD" with rationale)

Best Practices (Required - all must pass)

• [ ] YAGNI: No unnecessary features or over-engineering
• [ ] KISS: Simplest viable solution chosen
• [ ] DRY: No planned duplication of logic
• [ ] Architecture: Follows project patterns from .claude/docs/

Completeness (Recommended - ≥50% should pass)

• [ ] Risk assessment present with mitigations
• [ ] Testing strategy defined
• [ ] Success criteria per phase
• [ ] Security considerations addressed
• [ ] Graph dependency check: If .code-graph/graph.db exists, for each file in the plan's "files to modify" list, run python .claude/scripts/code_graph query importers_of <file> --json. Flag any importer NOT listed in the plan as "potentially missed dependent". Also run tests_for on key functions to verify test coverage is planned.

Step 3: Score and Classify

| Status | Criteria | Action | | -------- | ----------------------------------- | --------------------------------- | | PASS | All Required pass, ≥50% Recommended | Proceed to implementation | | WARN | All Required pass, <50% Recommended | Proceed with caution, note gaps | | FAIL | Any Required check fails | STOP - must fix before proceeding |

Step 4: Output Result

## Plan Review Result

**Status:** PASS | WARN | FAIL
**Reviewed:** {plan-path}
**Date:** {current-date}

### Summary

{1-2 sentence summary of plan quality}

### Checks Passed ({X}/{Y})

#### Required ({X}/{Y})

- ✅ Check 1
- ✅ Check 2
- ❌ Check 3 (if failed)

#### Recommended ({X}/{Y})

- ✅ Check 1
- ⚠️ Check 2 (missing)

### Issues Found

- ❌ FAIL: {critical issue requiring fix}
- ⚠️ WARN: {minor issue, can proceed}

### Recommendations

1. {specific fix 1}
2. {specific fix 2}

### Verdict

{PROCEED | REVISE_FIRST | BLOCKED}

Graph-Assisted Investigation — MANDATORY when .code-graph/graph.db exists.

HARD-GATE: MUST ATTENTION run at least ONE graph command on key files before concluding any investigation.

Pattern: Grep finds files → trace --direction both reveals full system flow → Grep verifies details

| Task | Minimum Graph Action | | ------------------- | -------------------------------------------- | | Investigation/Scout | trace --direction both on 2-3 entry files | | Fix/Debug | callers_of on buggy function + tests_for | | Feature/Enhancement | connections on files to be modified | | Code Review | tests_for on changed functions | | Blast Radius | trace --direction downstream |

CLI: python .claude/scripts/code_graph {command} --json. Use --node-mode file first (10-30x less noise), then --node-mode function for detail.

Graph-Trace for Plan Coverage

When graph DB is available, verify the plan covers all affected files:

• For each file in the plan's "files to modify" list, run python .claude/scripts/code_graph trace <file> --direction downstream --json
• Flag any downstream file NOT listed in the plan as "potentially missed"
• This catches cross-service impact (MESSAGE_BUS consumers, event handlers) that the plan author may have overlooked

Deep Multi-Round Review (MANDATORY)

Replaces: double-round-trip for plan reviews. Plans need deeper verification than code reviews.

Step 0: Self-Analysis (Before EACH Round)

1. Detect plan type from keywords: Code/Feature, Documentation, Refactor, Infrastructure, Mixed
2. State top 3 concerns specific to THIS plan (not generic)
3. Check complexity from frontmatter SP: ≤3 → 2 rounds min, 4-8 → 3 rounds, >8 → 3 rounds + code-proof mandatory

Round 1: Structural Validation (Checklist)

Standard checklist from Step 2 above. Score PASS/WARN/FAIL per category. CRITICAL: Even if all checks PASS, do NOT declare final verdict. Proceed to Round 2.

Round 2: Deep Trace (Code Proof)

Re-read ALL plan files from scratch. For EACH phase:

• Precondition trace: Read actual handler code. Verify execution order satisfies preconditions. Cite handler line numbers.
• Data dependency trace: What must exist before this step? Is there a wait/sync mechanism?
• Failure mode analysis: What causes 400/403/404/409? Does the plan handle it?
• Cross-cutting check: Stale content? Inconsistent numbers? Missing scope (dual product scope)?

Round 3: Adversarial Simulation

Pretend you are implementing RIGHT NOW. For each phase:

1. "I open the file. Does the class/method exist as described?"
2. "I write the code. What imports/DI do I need? Does the plan mention them?"
3. "I run it. What fails first? Timing issue? Missing wait?"
4. "I run it again (restart). Duplicates? Idempotency?"
5. "I run in staging. All product scopes? All environments?"

Type-specific adversarial checks (from deep-plan-review-protocol):

• Code: preconditions, date/timezone, UoW boundaries, cross-service sync, dual scope, idempotency
• Docs: section references, count drift, bidirectional cross-refs, stale dates/paths
• Refactor: callers updated, breaking changes, test coverage, backward compat
• Infra: port conflicts, env vars, secrets, rollback, monitoring

Verdict Rules

• Round 1 PASS alone → NEVER exit — proceed to Round 2
• Round 1+2 PASS → proceed to Round 3 (mandatory for SP>3)
• Round 1+2+3 all PASS → FINAL PASS
• Any round FAIL → fix + restart from Round 1 (max 3 full cycles)

Report must include ## Round 2 Findings and ## Round 3 Findings sections.

Recursive Fix-and-Review Protocol (CRITICAL)

When the review results in FAIL, plan-review fixes the issues and spawns a fresh-context sub-agent for re-review — eliminating AI confirmation bias from the fix process.

Fresh-Context Review — Eliminate AI confirmation bias. Spawn code-reviewer sub-agent for re-review iterations — zero memory of prior fixes.

When: After fixing review findings. NOT for initial review (needs intent context).

How: Agent(subagent_type: "code-reviewer") with self-contained prompt: git diff scope + docs/project-reference/code-review-rules.md + checklist summary. Prompt MUST NOT reference prior findings. Report to plans/reports/review-iteration-{N}-{date}.md.

Result: PASS → proceed | FAIL (iteration < 3) → fix ALL issues, spawn NEW agent | FAIL (iteration 3) → escalate to user | Issue count increased → STOP, escalate

Max 3 iterations. Track [Re-Review {N}/3] tasks per iteration.

Flow

┌──────────────────────────────────┐
│  Round 1: Structural Checklist   │
│  Round 2: Deep Code-Proof Trace  │
│  Round 3: Adversarial Simulation │
│  Output: PASS / WARN / FAIL      │
└──────────────┬───────────────────┘
               │
        ┌──────▼──────┐
        │ PASS/WARN?  │──YES──→ Proceed to next workflow step
        └──────┬──────┘
               │ FAIL
        ┌──────▼──────────────────────────────────┐
        │  FIX: Modify plan files to resolve       │
        │  all FAIL issues (edit plan.md/phase-*)  │
        └──────┬──────────────────────────────────┘
               │
        ┌──────▼──────────────────────────────────┐
        │  FRESH-CONTEXT RE-REVIEW:               │
        │  Spawn code-reviewer sub-agent to       │
        │  review plan files with fresh eyes      │
        │  (zero memory of prior fixes)           │
        └──────┬──────────────────────────────────┘
               │
               └──→ Loop until PASS/WARN (max 3 iterations)

Plan-Specific Sub-Agent Prompt

When spawning the re-review sub-agent for plan files, use this prompt template:

Agent({
  description: "Fresh-context plan re-review iteration N/3",
  subagent_type: "code-reviewer",
  prompt: "## Task\nReview the implementation plan at {plan-path} for validity, correctness, and best practices.\nYou are reviewing with completely fresh eyes — no knowledge of prior fixes.\n\n## Files to Read\n- {plan-path}/plan.md — overview and phase list\n- {plan-path}/phase-*.md — all phase files\n\n## Checklist\n1. Validity: Has summary, requirements, steps, file listings\n2. Correctness: Steps are specific (file paths, not vague), no planning verbs, each step <=30min, <=5 files per phase, no unresolved TBDs\n3. Best Practices: YAGNI, KISS, DRY, follows project patterns\n4. Completeness: Risks, testing strategy, success criteria, security\n5. Test Specs: Every phase has TC-{FEAT}-{NNN} mappings\n\n## Output\n- Status: PASS / WARN / FAIL\n- Issues: [list with specific plan section references]\n- Recommendations: [specific fixes]"
})

Iteration Rules

1. Max 3 iterations — if issues persist after 3 review-fix cycles, STOP and escalate to user via AskUserQuestion
2. Track iteration count — log "Plan review iteration N/3" at the start of each cycle
3. PASS/WARN = exit — when all Required checks pass, proceed (WARN is acceptable)
4. Diminishing scope — each iteration should find FEWER issues. If iteration N finds MORE than N-1, STOP and escalate
5. Fix scope — only fix issues flagged as FAIL (Required check failures). Do NOT rewrite the plan.
6. Fix approach:
   • Vague steps → expand with specific file paths, concrete actions
   • Missing sections → add them (risks, testing strategy, success criteria)
   • Conflicting steps → resolve conflicts, document rationale
   • Over-engineering → simplify, remove unnecessary complexity
   • Missing TC mappings → add TC references or "TBD" with rationale
7. After each fix — re-read the modified plan files before re-reviewing (don't review stale content)

Next Steps

• If PASS: Announce "Plan review complete. Proceeding with next workflow step."
• If WARN: Announce "Plan review complete with warnings. Proceeding - consider addressing gaps."
• If FAIL (iteration < 3): Fix the issues directly in plan files, then re-review (recursive).
• If FAIL (iteration = 3): List remaining issues. STOP. Ask user to fix or regenerate plan via AskUserQuestion.

IMPORTANT Task Planning Notes (MUST ATTENTION FOLLOW)

• Always plan and break work into many small todo tasks using TaskCreate
• Always add a final review todo task to verify work quality and identify fixes/enhancements
• MANDATORY FINAL TASKS: After creating all planning todo tasks, ALWAYS add these two final tasks:
  1. Task: "Run /plan-validate" — Trigger /plan-validate skill to interview the user with critical questions and validate plan assumptions
  2. Task: "Run /plan-review" — Trigger /plan-review skill to auto-review plan for validity, correctness, and best practices

Important Notes

• Be constructive, not pedantic - focus on issues that would cause implementation problems
• WARN is acceptable for missing optional sections
• FAIL only for genuinely missing required content
• NEVER do a quick review — even "simple" plans had 13 bugs in real testing. Always run all 3 rounds.

Skill Interconnection (Standalone: MUST ATTENTION ask user via AskUserQuestion. Skip if inside workflow.)

MANDATORY IMPORTANT MUST ATTENTION — NO EXCEPTIONS after completing this skill, you MUST ATTENTION use AskUserQuestion to present these options. Do NOT skip because the task seems "simple" or "obvious" — the user decides:

• "Proceed with full workflow (Recommended)" — I'll detect the best workflow to continue from here (plan reviewed). This ensures validation, implementation, testing, and docs steps aren't skipped.
• "/plan-validate" — Interview user to confirm plan assumptions
• "/cook" or "/code" — If plan is approved and ready for implementation
• "Skip, continue manually" — user decides

Closing Reminders

MANDATORY IMPORTANT MUST ATTENTION break work into small todo tasks using TaskCreate BEFORE starting. MANDATORY IMPORTANT MUST ATTENTION validate decisions with user via AskUserQuestion — never auto-decide. MANDATORY IMPORTANT MUST ATTENTION add a final review todo task to verify work quality. MANDATORY IMPORTANT MUST ATTENTION READ the following files before starting:

• IMPORTANT MUST ATTENTION search 3+ existing patterns and read code BEFORE any modification. Run graph trace when graph.db exists. <!-- /SYNC:understand-code-first:reminder --> <!-- SYNC:double-round-trip-review:reminder -->
• IMPORTANT MUST ATTENTION execute THREE review rounds per deep-plan-review-protocol. R1=checklist, R2=code-proof, R3=adversarial simulation. Never PASS after R1 alone. <!-- /SYNC:double-round-trip-review:reminder --> <!-- SYNC:graph-assisted-investigation:reminder -->
• IMPORTANT MUST ATTENTION run at least ONE graph command on key files when graph.db exists. Pattern: grep → graph trace → grep verify. <!-- /SYNC:graph-assisted-investigation:reminder -->