hai/gstack
1
0
Fork 0
mirror of https://github.com/garrytan/gstack.git synced 2026-05-18 18:32:28 +08:00
Code Issues Packages Projects Releases Wiki Activity

chore: regenerate SKILL.md (Claude + Codex) after wave 3 merges

Browse Source 
Regenerated from merged templates + auto-trigger fix.
All generated files now include explicit trigger criteria.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Garry Tan
2026-03-22 22:53:47 -07:00
parent 96717eb796
commit 53eefc9a20
28 changed files with 108 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
SKILL.md
View File

@@ -2,6 +2,8 @@
name: gstack name: gstack
version: 1.1.0 version: 1.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /gstack in their message.
Do not auto-trigger this skill from semantic similarity alone.
Fast headless browser for QA testing and site dogfooding. Navigate pages, interact with Fast headless browser for QA testing and site dogfooding. Navigate pages, interact with
elements, verify state, diff before/after, take annotated screenshots, test responsive elements, verify state, diff before/after, take annotated screenshots, test responsive
layouts, forms, uploads, dialogs, and capture bug evidence. Use when asked to open or layouts, forms, uploads, dialogs, and capture bug evidence. Use when asked to open or
@@ -590,7 +592,7 @@ Refs are invalidated on navigation — run `snapshot` again after `goto`.
| `click <sel>` | Click element | | `click <sel>` | Click element |
| `cookie <name>=<value>` | Set cookie on current page domain | | `cookie <name>=<value>` | Set cookie on current page domain |
| `cookie-import <json>` | Import cookies from JSON file | | `cookie-import <json>` | Import cookies from JSON file |
| `cookie-import-browser [browser] [--domain d]` | Import cookies from Comet, Chrome, Arc, Brave, or Edge (opens picker, or use --domain for direct import) | | `cookie-import-browser [browser] [--domain d]` | Import cookies from installed Chromium browsers (opens picker, or use --domain for direct import) |
| `dialog-accept [text]` | Auto-accept next alert/confirm/prompt. Optional text is sent as the prompt response | | `dialog-accept [text]` | Auto-accept next alert/confirm/prompt. Optional text is sent as the prompt response |
| `dialog-dismiss` | Auto-dismiss next dialog | | `dialog-dismiss` | Auto-dismiss next dialog |
| `fill <sel> <val>` | Fill input | | `fill <sel> <val>` | Fill input |

4
autoplan/SKILL.md
View File

@@ -2,6 +2,8 @@
name: autoplan name: autoplan
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /autoplan in their message.
Do not auto-trigger this skill from semantic similarity alone.
Auto-review pipeline — reads the full CEO, design, and eng review skills from disk Auto-review pipeline — reads the full CEO, design, and eng review skills from disk
and runs them sequentially with auto-decisions using 6 decision principles. Surfaces and runs them sequentially with auto-decisions using 6 decision principles. Surfaces
taste decisions (close approaches, borderline scope, codex disagreements) at a final taste decisions (close approaches, borderline scope, codex disagreements) at a final
@@ -51,7 +53,7 @@ echo "TELEMETRY: ${_TEL:-off}"
echo "TEL_PROMPTED: $_TEL_PROMPTED" echo "TEL_PROMPTED: $_TEL_PROMPTED"
mkdir -p ~/.gstack/analytics mkdir -p ~/.gstack/analytics
echo '{"skill":"autoplan","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true echo '{"skill":"autoplan","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true
for _PF in ~/.gstack/analytics/.pending-*; do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done for _PF in $(ls ~/.gstack/analytics/.pending-* 2>/dev/null); do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done
``` ```
If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke

4
benchmark/SKILL.md
View File

@@ -2,6 +2,8 @@
name: benchmark name: benchmark
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /benchmark in their message.
Do not auto-trigger this skill from semantic similarity alone.
Performance regression detection using the browse daemon. Establishes Performance regression detection using the browse daemon. Establishes
baselines for page load times, Core Web Vitals, and resource sizes. baselines for page load times, Core Web Vitals, and resource sizes.
Compares before/after on every PR. Tracks performance trends over time. Compares before/after on every PR. Tracks performance trends over time.
@@ -44,7 +46,7 @@ echo "TELEMETRY: ${_TEL:-off}"
echo "TEL_PROMPTED: $_TEL_PROMPTED" echo "TEL_PROMPTED: $_TEL_PROMPTED"
mkdir -p ~/.gstack/analytics mkdir -p ~/.gstack/analytics
echo '{"skill":"benchmark","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true echo '{"skill":"benchmark","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true
for _PF in ~/.gstack/analytics/.pending-*; do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done for _PF in $(ls ~/.gstack/analytics/.pending-* 2>/dev/null); do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done
``` ```
If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke

2
browse/SKILL.md
View File

@@ -2,6 +2,8 @@
name: browse name: browse
version: 1.1.0 version: 1.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /browse in their message.
Do not auto-trigger this skill from semantic similarity alone.
Fast headless browser for QA testing and site dogfooding. Navigate any URL, interact with Fast headless browser for QA testing and site dogfooding. Navigate any URL, interact with
elements, verify page state, diff before/after actions, take annotated screenshots, check elements, verify page state, diff before/after actions, take annotated screenshots, check
responsive layouts, test forms and uploads, handle dialogs, and assert element states. responsive layouts, test forms and uploads, handle dialogs, and assert element states.

4
canary/SKILL.md
View File

@@ -2,6 +2,8 @@
name: canary name: canary
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /canary in their message.
Do not auto-trigger this skill from semantic similarity alone.
Post-deploy canary monitoring. Watches the live app for console errors, Post-deploy canary monitoring. Watches the live app for console errors,
performance regressions, and page failures using the browse daemon. Takes performance regressions, and page failures using the browse daemon. Takes
periodic screenshots, compares against pre-deploy baselines, and alerts periodic screenshots, compares against pre-deploy baselines, and alerts
@@ -44,7 +46,7 @@ echo "TELEMETRY: ${_TEL:-off}"
echo "TEL_PROMPTED: $_TEL_PROMPTED" echo "TEL_PROMPTED: $_TEL_PROMPTED"
mkdir -p ~/.gstack/analytics mkdir -p ~/.gstack/analytics
echo '{"skill":"canary","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true echo '{"skill":"canary","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true
for _PF in ~/.gstack/analytics/.pending-*; do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done for _PF in $(ls ~/.gstack/analytics/.pending-* 2>/dev/null); do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done
``` ```
If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke

2
careful/SKILL.md
View File

@@ -2,6 +2,8 @@
name: careful name: careful
version: 0.1.0 version: 0.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /careful in their message.
Do not auto-trigger this skill from semantic similarity alone.
Safety guardrails for destructive commands. Warns before rm -rf, DROP TABLE, Safety guardrails for destructive commands. Warns before rm -rf, DROP TABLE,
force-push, git reset --hard, kubectl delete, and similar destructive operations. force-push, git reset --hard, kubectl delete, and similar destructive operations.
User can override each warning. Use when touching prod, debugging live systems, User can override each warning. Use when touching prod, debugging live systems,

2
codex/SKILL.md
View File

@@ -2,6 +2,8 @@
name: codex name: codex
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /codex in their message.
Do not auto-trigger this skill from semantic similarity alone.
OpenAI Codex CLI wrapper — three modes. Code review: independent diff review via OpenAI Codex CLI wrapper — three modes. Code review: independent diff review via
codex review with pass/fail gate. Challenge: adversarial mode that tries to break codex review with pass/fail gate. Challenge: adversarial mode that tries to break
your code. Consult: ask codex anything with session continuity for follow-ups. your code. Consult: ask codex anything with session continuity for follow-ups.

4
cso/SKILL.md
View File

@@ -2,6 +2,8 @@
name: cso name: cso
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /cso in their message.
Do not auto-trigger this skill from semantic similarity alone.
Chief Security Officer mode. Performs OWASP Top 10 audit, STRIDE threat modeling, Chief Security Officer mode. Performs OWASP Top 10 audit, STRIDE threat modeling,
attack surface analysis, auth flow verification, secret detection, dependency CVE attack surface analysis, auth flow verification, secret detection, dependency CVE
scanning, supply chain risk assessment, and data classification review. scanning, supply chain risk assessment, and data classification review.
@@ -44,7 +46,7 @@ echo "TELEMETRY: ${_TEL:-off}"
echo "TEL_PROMPTED: $_TEL_PROMPTED" echo "TEL_PROMPTED: $_TEL_PROMPTED"
mkdir -p ~/.gstack/analytics mkdir -p ~/.gstack/analytics
echo '{"skill":"cso","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true echo '{"skill":"cso","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true
for _PF in ~/.gstack/analytics/.pending-*; do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done for _PF in $(ls ~/.gstack/analytics/.pending-* 2>/dev/null); do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done
``` ```
If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke

2
design-consultation/SKILL.md
View File

@@ -2,6 +2,8 @@
name: design-consultation name: design-consultation
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /design-consultation in their message.
Do not auto-trigger this skill from semantic similarity alone.
Design consultation: understands your product, researches the landscape, proposes a Design consultation: understands your product, researches the landscape, proposes a
complete design system (aesthetic, typography, color, layout, spacing, motion), and complete design system (aesthetic, typography, color, layout, spacing, motion), and
generates font+color preview pages. Creates DESIGN.md as your project's design source generates font+color preview pages. Creates DESIGN.md as your project's design source

2
design-review/SKILL.md
View File

@@ -2,6 +2,8 @@
name: design-review name: design-review
version: 2.0.0 version: 2.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /design-review in their message.
Do not auto-trigger this skill from semantic similarity alone.
Designer's eye QA: finds visual inconsistency, spacing issues, hierarchy problems, Designer's eye QA: finds visual inconsistency, spacing issues, hierarchy problems,
AI slop patterns, and slow interactions — then fixes them. Iteratively fixes issues AI slop patterns, and slow interactions — then fixes them. Iteratively fixes issues
in source code, committing each fix atomically and re-verifying with before/after in source code, committing each fix atomically and re-verifying with before/after

2
document-release/SKILL.md
View File

@@ -2,6 +2,8 @@
name: document-release name: document-release
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /document-release in their message.
Do not auto-trigger this skill from semantic similarity alone.
Post-ship documentation update. Reads all project docs, cross-references the Post-ship documentation update. Reads all project docs, cross-references the
diff, updates README/ARCHITECTURE/CONTRIBUTING/CLAUDE.md to match what shipped, diff, updates README/ARCHITECTURE/CONTRIBUTING/CLAUDE.md to match what shipped,
polishes CHANGELOG voice, cleans up TODOS, and optionally bumps VERSION. Use when polishes CHANGELOG voice, cleans up TODOS, and optionally bumps VERSION. Use when

2
freeze/SKILL.md
View File

@@ -2,6 +2,8 @@
name: freeze name: freeze
version: 0.1.0 version: 0.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /freeze in their message.
Do not auto-trigger this skill from semantic similarity alone.
Restrict file edits to a specific directory for the session. Blocks Edit and Restrict file edits to a specific directory for the session. Blocks Edit and
Write outside the allowed path. Use when debugging to prevent accidentally Write outside the allowed path. Use when debugging to prevent accidentally
"fixing" unrelated code, or when you want to scope changes to one module. "fixing" unrelated code, or when you want to scope changes to one module.

2
gstack-upgrade/SKILL.md
View File

@@ -2,6 +2,8 @@
name: gstack-upgrade name: gstack-upgrade
version: 1.1.0 version: 1.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /gstack-upgrade in their message.
Do not auto-trigger this skill from semantic similarity alone.
Upgrade gstack to the latest version. Detects global vs vendored install, Upgrade gstack to the latest version. Detects global vs vendored install,
runs the upgrade, and shows what's new. Use when asked to "upgrade gstack", runs the upgrade, and shows what's new. Use when asked to "upgrade gstack",
"update gstack", or "get latest version". "update gstack", or "get latest version".

2
guard/SKILL.md
View File

@@ -2,6 +2,8 @@
name: guard name: guard
version: 0.1.0 version: 0.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /guard in their message.
Do not auto-trigger this skill from semantic similarity alone.
Full safety mode: destructive command warnings + directory-scoped edits. Full safety mode: destructive command warnings + directory-scoped edits.
Combines /careful (warns before rm -rf, DROP TABLE, force-push, etc.) with Combines /careful (warns before rm -rf, DROP TABLE, force-push, etc.) with
/freeze (blocks edits outside a specified directory). Use for maximum safety /freeze (blocks edits outside a specified directory). Use for maximum safety

2
investigate/SKILL.md
View File

@@ -2,6 +2,8 @@
name: investigate name: investigate
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /investigate in their message.
Do not auto-trigger this skill from semantic similarity alone.
Systematic debugging with root cause investigation. Four phases: investigate, Systematic debugging with root cause investigation. Four phases: investigate,
analyze, hypothesize, implement. Iron Law: no fixes without root cause. analyze, hypothesize, implement. Iron Law: no fixes without root cause.
Use when asked to "debug this", "fix this bug", "why is this broken", Use when asked to "debug this", "fix this bug", "why is this broken",

4
land-and-deploy/SKILL.md
View File

@@ -2,6 +2,8 @@
name: land-and-deploy name: land-and-deploy
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /land-and-deploy in their message.
Do not auto-trigger this skill from semantic similarity alone.
Land and deploy workflow. Merges the PR, waits for CI and deploy, Land and deploy workflow. Merges the PR, waits for CI and deploy,
verifies production health via canary checks. Takes over after /ship verifies production health via canary checks. Takes over after /ship
creates the PR. Use when: "merge", "land", "deploy", "merge and verify", creates the PR. Use when: "merge", "land", "deploy", "merge and verify",
@@ -43,7 +45,7 @@ echo "TELEMETRY: ${_TEL:-off}"
echo "TEL_PROMPTED: $_TEL_PROMPTED" echo "TEL_PROMPTED: $_TEL_PROMPTED"
mkdir -p ~/.gstack/analytics mkdir -p ~/.gstack/analytics
echo '{"skill":"land-and-deploy","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true echo '{"skill":"land-and-deploy","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true
for _PF in ~/.gstack/analytics/.pending-*; do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done for _PF in $(ls ~/.gstack/analytics/.pending-* 2>/dev/null); do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done
``` ```
If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke

14
office-hours/SKILL.md
View File

@@ -2,6 +2,8 @@
name: office-hours name: office-hours
version: 2.0.0 version: 2.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /office-hours in their message.
Do not auto-trigger this skill from semantic similarity alone.
YC Office Hours — two modes. Startup mode: six forcing questions that expose YC Office Hours — two modes. Startup mode: six forcing questions that expose
demand reality, status quo, desperate specificity, narrowest wedge, observation, demand reality, status quo, desperate specificity, narrowest wedge, observation,
and future-fit. Builder mode: design thinking brainstorming for side projects, and future-fit. Builder mode: design thinking brainstorming for side projects,
@@ -626,7 +628,8 @@ Before proposing solutions, challenge the premises:
1. **Is this the right problem?** Could a different framing yield a dramatically simpler or more impactful solution? 1. **Is this the right problem?** Could a different framing yield a dramatically simpler or more impactful solution?
2. **What happens if we do nothing?** Real pain point or hypothetical one? 2. **What happens if we do nothing?** Real pain point or hypothetical one?
3. **What existing code already partially solves this?** Map existing patterns, utilities, and flows that could be reused. 3. **What existing code already partially solves this?** Map existing patterns, utilities, and flows that could be reused.
4. **Startup mode only:** Synthesize the diagnostic evidence from Phase 2A. Does it support this direction? Where are the gaps? 4. **If the deliverable is a new artifact** (CLI binary, library, package, container image, mobile app): **how will users get it?** Code without distribution is code nobody can use. The design must include a distribution channel (GitHub Releases, package manager, container registry, app store) and CI/CD pipeline — or explicitly defer it.
5. **Startup mode only:** Synthesize the diagnostic evidence from Phase 2A. Does it support this direction? Where are the gaps?
Output premises as clear statements the user must agree with before proceeding: Output premises as clear statements the user must agree with before proceeding:
``` ```
@@ -931,6 +934,11 @@ Supersedes: {prior filename — omit this line if first design on this branch}
## Success Criteria ## Success Criteria
{measurable criteria from Phase 2A} {measurable criteria from Phase 2A}
## Distribution Plan
{how users get the deliverable — binary download, package manager, container image, web service, etc.}
{CI/CD pipeline for building and publishing — GitHub Actions, manual release, auto-deploy on merge?}
{omit this section if the deliverable is a web service with existing deployment pipeline}
## Dependencies ## Dependencies
{blockers, prerequisites, related work} {blockers, prerequisites, related work}
@@ -983,6 +991,10 @@ Supersedes: {prior filename — omit this line if first design on this branch}
## Success Criteria ## Success Criteria
{what "done" looks like} {what "done" looks like}
## Distribution Plan
{how users get the deliverable — binary download, package manager, container image, web service, etc.}
{CI/CD pipeline for building and publishing — or "existing deployment pipeline covers this"}
## Next Steps ## Next Steps
{concrete build tasks — what to implement first, second, third} {concrete build tasks — what to implement first, second, third}

2
plan-ceo-review/SKILL.md
View File

@@ -2,6 +2,8 @@
name: plan-ceo-review name: plan-ceo-review
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /plan-ceo-review in their message.
Do not auto-trigger this skill from semantic similarity alone.
CEO/founder-mode plan review. Rethink the problem, find the 10-star product, CEO/founder-mode plan review. Rethink the problem, find the 10-star product,
challenge premises, expand scope when it creates a better product. Four modes: challenge premises, expand scope when it creates a better product. Four modes:
SCOPE EXPANSION (dream big), SELECTIVE EXPANSION (hold scope + cherry-pick SCOPE EXPANSION (dream big), SELECTIVE EXPANSION (hold scope + cherry-pick

2
plan-design-review/SKILL.md
View File

@@ -2,6 +2,8 @@
name: plan-design-review name: plan-design-review
version: 2.0.0 version: 2.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /plan-design-review in their message.
Do not auto-trigger this skill from semantic similarity alone.
Designer's eye plan review — interactive, like CEO and Eng review. Designer's eye plan review — interactive, like CEO and Eng review.
Rates each design dimension 0-10, explains what would make it a 10, Rates each design dimension 0-10, explains what would make it a 10,
then fixes the plan to get there. Works in plan mode. For live site then fixes the plan to get there. Works in plan mode. For live site

9
plan-eng-review/SKILL.md
View File

@@ -2,6 +2,8 @@
name: plan-eng-review name: plan-eng-review
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /plan-eng-review in their message.
Do not auto-trigger this skill from semantic similarity alone.
Eng manager-mode plan review. Lock in the execution plan — architecture, Eng manager-mode plan review. Lock in the execution plan — architecture,
data flow, diagrams, edge cases, test coverage, performance. Walks through data flow, diagrams, edge cases, test coverage, performance. Walks through
issues interactively with opinionated recommendations. Use when asked to issues interactively with opinionated recommendations. Use when asked to
@@ -418,6 +420,12 @@ Before reviewing anything, answer these questions:
5. **Completeness check:** Is the plan doing the complete version or a shortcut? With AI-assisted coding, the cost of completeness (100% test coverage, full edge case handling, complete error paths) is 10-100x cheaper than with a human team. If the plan proposes a shortcut that saves human-hours but only saves minutes with CC+gstack, recommend the complete version. Boil the lake. 5. **Completeness check:** Is the plan doing the complete version or a shortcut? With AI-assisted coding, the cost of completeness (100% test coverage, full edge case handling, complete error paths) is 10-100x cheaper than with a human team. If the plan proposes a shortcut that saves human-hours but only saves minutes with CC+gstack, recommend the complete version. Boil the lake.
6. **Distribution check:** If the plan introduces a new artifact type (CLI binary, library package, container image, mobile app), does it include the build/publish pipeline? Code without distribution is code nobody can use. Check:
- Is there a CI/CD workflow for building and publishing the artifact?
- Are target platforms defined (linux/darwin/windows, amd64/arm64)?
- How will users download or install it (GitHub Releases, package manager, container registry)?
If the plan defers distribution, flag it explicitly in the "NOT in scope" section — don't let it silently drop.
If the complexity check triggers (8+ files or 2+ new classes/services), proactively recommend scope reduction via AskUserQuestion — explain what's overbuilt, propose a minimal version that achieves the core goal, and ask whether to reduce or proceed as-is. If the complexity check does not trigger, present your Step 0 findings and proceed directly to Section 1. If the complexity check triggers (8+ files or 2+ new classes/services), proactively recommend scope reduction via AskUserQuestion — explain what's overbuilt, propose a minimal version that achieves the core goal, and ask whether to reduce or proceed as-is. If the complexity check does not trigger, present your Step 0 findings and proceed directly to Section 1.
Always work through the full interactive review: one section at a time (Architecture → Code Quality → Tests → Performance) with at most 8 top issues per section. Always work through the full interactive review: one section at a time (Architecture → Code Quality → Tests → Performance) with at most 8 top issues per section.
@@ -435,6 +443,7 @@ Evaluate:
* Security architecture (auth, data access, API boundaries). * Security architecture (auth, data access, API boundaries).
* Whether key flows deserve ASCII diagrams in the plan or in code comments. * Whether key flows deserve ASCII diagrams in the plan or in code comments.
* For each new codepath or integration point, describe one realistic production failure scenario and whether the plan accounts for it. * For each new codepath or integration point, describe one realistic production failure scenario and whether the plan accounts for it.
* **Distribution architecture:** If this introduces a new artifact (binary, package, container), how does it get built, published, and updated? Is the CI/CD pipeline part of the plan or deferred?
**STOP.** For each issue found in this section, call AskUserQuestion individually. One issue per call. Present options, state your recommendation, explain WHY. Do NOT batch multiple issues into one AskUserQuestion. Only proceed to the next section after ALL issues in this section are resolved. **STOP.** For each issue found in this section, call AskUserQuestion individually. One issue per call. Present options, state your recommendation, explain WHY. Do NOT batch multiple issues into one AskUserQuestion. Only proceed to the next section after ALL issues in this section are resolved.

2
qa-only/SKILL.md
View File

@@ -2,6 +2,8 @@
name: qa-only name: qa-only
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /qa-only in their message.
Do not auto-trigger this skill from semantic similarity alone.
Report-only QA testing. Systematically tests a web application and produces a Report-only QA testing. Systematically tests a web application and produces a
structured report with health score, screenshots, and repro steps — but never structured report with health score, screenshots, and repro steps — but never
fixes anything. Use when asked to "just report bugs", "qa report only", or fixes anything. Use when asked to "just report bugs", "qa report only", or

2
qa/SKILL.md
View File

@@ -2,6 +2,8 @@
name: qa name: qa
version: 2.0.0 version: 2.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /qa in their message.
Do not auto-trigger this skill from semantic similarity alone.
Systematically QA test a web application and fix bugs found. Runs QA testing, Systematically QA test a web application and fix bugs found. Runs QA testing,
then iteratively fixes bugs in source code, committing each fix atomically and then iteratively fixes bugs in source code, committing each fix atomically and
re-verifying. Use when asked to "qa", "QA", "test this site", "find bugs", re-verifying. Use when asked to "qa", "QA", "test this site", "find bugs",

2
retro/SKILL.md
View File

@@ -2,6 +2,8 @@
name: retro name: retro
version: 2.0.0 version: 2.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /retro in their message.
Do not auto-trigger this skill from semantic similarity alone.
Weekly engineering retrospective. Analyzes commit history, work patterns, Weekly engineering retrospective. Analyzes commit history, work patterns,
and code quality metrics with persistent history and trend tracking. and code quality metrics with persistent history and trend tracking.
Team-aware: breaks down per-person contributions with praise and growth areas. Team-aware: breaks down per-person contributions with praise and growth areas.

2
review/SKILL.md
View File

@@ -2,6 +2,8 @@
name: review name: review
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /review in their message.
Do not auto-trigger this skill from semantic similarity alone.
Pre-landing PR review. Analyzes diff against the base branch for SQL safety, LLM trust Pre-landing PR review. Analyzes diff against the base branch for SQL safety, LLM trust
boundary violations, conditional side effects, and other structural issues. Use when boundary violations, conditional side effects, and other structural issues. Use when
asked to "review this PR", "code review", "pre-landing review", or "check my diff". asked to "review this PR", "code review", "pre-landing review", or "check my diff".

2
setup-browser-cookies/SKILL.md
View File

@@ -2,6 +2,8 @@
name: setup-browser-cookies name: setup-browser-cookies
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /setup-browser-cookies in their message.
Do not auto-trigger this skill from semantic similarity alone.
Import cookies from your real Chromium browser into the headless browse session. Import cookies from your real Chromium browser into the headless browse session.
Opens an interactive picker UI where you select which cookie domains to import. Opens an interactive picker UI where you select which cookie domains to import.
Use before QA testing authenticated pages. Use when asked to "import cookies", Use before QA testing authenticated pages. Use when asked to "import cookies",

4
setup-deploy/SKILL.md
View File

@@ -2,6 +2,8 @@
name: setup-deploy name: setup-deploy
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /setup-deploy in their message.
Do not auto-trigger this skill from semantic similarity alone.
Configure deployment settings for /land-and-deploy. Detects your deploy Configure deployment settings for /land-and-deploy. Detects your deploy
platform (Fly.io, Render, Vercel, Netlify, Heroku, GitHub Actions, custom), platform (Fly.io, Render, Vercel, Netlify, Heroku, GitHub Actions, custom),
production URL, health check endpoints, and deploy status commands. Writes production URL, health check endpoints, and deploy status commands. Writes
@@ -47,7 +49,7 @@ echo "TELEMETRY: ${_TEL:-off}"
echo "TEL_PROMPTED: $_TEL_PROMPTED" echo "TEL_PROMPTED: $_TEL_PROMPTED"
mkdir -p ~/.gstack/analytics mkdir -p ~/.gstack/analytics
echo '{"skill":"setup-deploy","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true echo '{"skill":"setup-deploy","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true
for _PF in ~/.gstack/analytics/.pending-*; do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done for _PF in $(ls ~/.gstack/analytics/.pending-* 2>/dev/null); do [ -f "$_PF" ] && ~/.claude/skills/gstack/bin/gstack-telemetry-log --event-type skill_run --skill _pending_finalize --outcome unknown --session-id "$_SESSION_ID" 2>/dev/null || true; break; done
``` ```
If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke If `PROACTIVE` is `"false"`, do not proactively suggest gstack skills — only invoke

29
ship/SKILL.md
View File

@@ -2,6 +2,8 @@
name: ship name: ship
version: 1.0.0 version: 1.0.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /ship in their message.
Do not auto-trigger this skill from semantic similarity alone.
Ship workflow: detect + merge base branch, run tests, review diff, bump VERSION, update CHANGELOG, commit, push, create PR. Use when asked to "ship", "deploy", "push to main", "create a PR", or "merge and push". Ship workflow: detect + merge base branch, run tests, review diff, bump VERSION, update CHANGELOG, commit, push, create PR. Use when asked to "ship", "deploy", "push to main", "create a PR", or "merge and push".
Proactively suggest when the user says code is ready or asks about deploying. Proactively suggest when the user says code is ready or asks about deploying.
allowed-tools: allowed-tools:
@@ -418,6 +420,33 @@ If the Eng Review is NOT "CLEAR":
--- ---
## Step 1.5: Distribution Pipeline Check
If the diff introduces a new standalone artifact (CLI binary, library package, tool) — not a web
service with existing deployment — verify that a distribution pipeline exists.
1. Check if the diff adds a new `cmd/` directory, `main.go`, or `bin/` entry point:
```bash
git diff origin/<base> --name-only | grep -E '(cmd/.*/main\.go|bin/|Cargo\.toml|setup\.py|package\.json)' | head -5
```
2. If new artifact detected, check for a release workflow:
```bash
ls .github/workflows/ 2>/dev/null | grep -iE 'release|publish|dist'
```
3. **If no release pipeline exists and a new artifact was added:** Use AskUserQuestion:
- "This PR adds a new binary/tool but there's no CI/CD pipeline to build and publish it.
Users won't be able to download the artifact after merge."
- A) Add a release workflow now (GitHub Actions cross-platform build + GitHub Releases)
- B) Defer — add to TODOS.md
- C) Not needed — this is internal/web-only, existing deployment covers it
4. **If release pipeline exists:** Continue silently.
5. **If no new artifact detected:** Skip silently.
---
## Step 2: Merge the base branch (BEFORE tests) ## Step 2: Merge the base branch (BEFORE tests)
Fetch and merge the base branch into the feature branch so tests run against the merged state: Fetch and merge the base branch into the feature branch so tests run against the merged state:

2
unfreeze/SKILL.md
View File

@@ -2,6 +2,8 @@
name: unfreeze name: unfreeze
version: 0.1.0 version: 0.1.0
description: | description: |
MANUAL TRIGGER ONLY: only run this skill when the user explicitly types /unfreeze in their message.
Do not auto-trigger this skill from semantic similarity alone.
Clear the freeze boundary set by /freeze, allowing edits to all directories Clear the freeze boundary set by /freeze, allowing edits to all directories
again. Use when you want to widen edit scope without ending the session. again. Use when you want to widen edit scope without ending the session.
Use when asked to "unfreeze", "unlock edits", "remove freeze", or Use when asked to "unfreeze", "unlock edits", "remove freeze", or