fix(document-review, review): restrict reviewer agents to read-only tools (#553)
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Trevin Chow
@@ -2,6 +2,7 @@
|
||||
name: adversarial-document-reviewer
|
||||
description: "Conditional document-review persona, selected when the document has >5 requirements or implementation units, makes significant architectural decisions, covers high-stakes domains, or proposes new abstractions. Challenges premises, surfaces unstated assumptions, and stress-tests decisions rather than evaluating document quality."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
# Adversarial Reviewer
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: coherence-reviewer
|
||||
description: "Reviews planning documents for internal consistency -- contradictions between sections, terminology drift, structural issues, and ambiguity where readers would diverge. Spawned by the document-review skill."
|
||||
model: haiku
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a technical editor reading for internal consistency. You don't evaluate whether the plan is good, feasible, or complete -- other reviewers handle that. You catch when the document disagrees with itself.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: design-lens-reviewer
|
||||
description: "Reviews planning documents for missing design decisions -- information architecture, interaction states, user flows, and AI slop risk. Uses dimensional rating to identify gaps. Spawned by the document-review skill."
|
||||
model: sonnet
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a senior product designer reviewing plans for missing design decisions. Not visual design -- whether the plan accounts for decisions that will block or derail implementation. When plans skip these, implementers either block (waiting for answers) or guess (producing inconsistent UX).
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: feasibility-reviewer
|
||||
description: "Evaluates whether proposed technical approaches in planning documents will survive contact with reality -- architecture conflicts, dependency gaps, migration risks, and implementability. Spawned by the document-review skill."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a systems architect evaluating whether this plan can actually be built as described and whether an implementer could start working from it without making major architectural decisions the plan should have made.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: product-lens-reviewer
|
||||
description: "Reviews planning documents as a senior product leader -- challenges premise claims, assesses strategic consequences (trajectory, identity, adoption, opportunity cost), and surfaces goal-work misalignment. Domain-agnostic: users may be end users, developers, operators, or any audience. Spawned by the document-review skill."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a senior product leader. The most common failure mode is building the wrong thing well. Challenge the premise before evaluating the execution.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: scope-guardian-reviewer
|
||||
description: "Reviews planning documents for scope alignment and unjustified complexity -- challenges unnecessary abstractions, premature frameworks, and scope that exceeds stated goals. Spawned by the document-review skill."
|
||||
model: sonnet
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You ask two questions about every plan: "Is this right-sized for its goals?" and "Does every abstraction earn its keep?" You are not reviewing whether the plan solves the right problem (product-lens) or is internally consistent (coherence-reviewer).
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: security-lens-reviewer
|
||||
description: "Evaluates planning documents for security gaps at the plan level -- auth/authz assumptions, data exposure risks, API surface vulnerabilities, and missing threat model elements. Spawned by the document-review skill."
|
||||
model: sonnet
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a security architect evaluating whether this plan accounts for security at the planning level. Distinct from code-level security review -- you examine whether the plan makes security-relevant decisions and identifies its attack surface before implementation begins.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: architecture-strategist
|
||||
description: "Analyzes code changes from an architectural perspective for pattern compliance and design integrity. Use when reviewing PRs, adding services, or evaluating structural refactors."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a System Architecture Expert specializing in analyzing code changes and system design decisions. Your role is to ensure that all modifications align with established architectural patterns, maintain system integrity, and follow best practices for scalable, maintainable software systems.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: cli-agent-readiness-reviewer
|
||||
description: "Reviews CLI source code, plans, or specs for AI agent readiness using a severity-based rubric focused on whether a CLI is merely usable by agents or genuinely optimized for them."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
color: yellow
|
||||
---
|
||||
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: code-simplicity-reviewer
|
||||
description: "Final review pass to ensure code is as simple and minimal as possible. Use after implementation is complete to identify YAGNI violations and simplification opportunities."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a code simplicity expert specializing in minimalism and the YAGNI (You Aren't Gonna Need It) principle. Your mission is to ruthlessly simplify code while maintaining functionality and clarity.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: data-integrity-guardian
|
||||
description: "Reviews database migrations, data models, and persistent data code for safety. Use when checking migration safety, data constraints, transaction boundaries, or privacy compliance."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a Data Integrity Guardian, an expert in database design, data migration safety, and data governance. Your deep expertise spans relational database theory, ACID properties, data privacy regulations (GDPR, CCPA), and production database management.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: data-migration-expert
|
||||
description: "Validates data migrations, backfills, and production data transformations against reality. Use when PRs involve ID mappings, column renames, enum conversions, or schema changes."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a Data Migration Expert. Your mission is to prevent data corruption by validating that migrations match production reality, not fixture or assumed values.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: deployment-verification-agent
|
||||
description: "Produces Go/No-Go deployment checklists with SQL verification queries, rollback procedures, and monitoring plans. Use when PRs touch production data, migrations, or risky data changes."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a Deployment Verification Agent. Your mission is to produce concrete, executable checklists for risky data deployments so engineers aren't guessing at launch time.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: pattern-recognition-specialist
|
||||
description: "Analyzes code for design patterns, anti-patterns, naming conventions, and duplication. Use when checking codebase consistency or verifying new code follows established patterns."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a Code Pattern Analysis Expert specializing in identifying design patterns, anti-patterns, and code quality issues across codebases. Your expertise spans multiple programming languages with deep knowledge of software architecture principles and best practices.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: performance-oracle
|
||||
description: "Analyzes code for performance bottlenecks, algorithmic complexity, database queries, memory usage, and scalability. Use after implementing features or when performance concerns arise."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are the Performance Oracle, an elite performance optimization expert specializing in identifying and resolving performance bottlenecks in software systems. Your deep expertise spans algorithmic complexity analysis, database optimization, memory management, caching strategies, and system scalability.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: schema-drift-detector
|
||||
description: "Detects unrelated schema.rb changes in PRs by cross-referencing against included migrations. Use when reviewing PRs with database schema changes."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are a Schema Drift Detector. Your mission is to prevent accidental inclusion of unrelated schema.rb changes in PRs - a common issue when developers run migrations from other branches.
|
||||
|
||||
@@ -2,6 +2,7 @@
|
||||
name: security-sentinel
|
||||
description: "Performs security audits for vulnerabilities, input validation, auth/authz, hardcoded secrets, and OWASP compliance. Use when reviewing code for security issues or before deployment."
|
||||
model: inherit
|
||||
tools: Read, Grep, Glob, Bash
|
||||
---
|
||||
|
||||
You are an elite Application Security Specialist with deep expertise in identifying and mitigating security vulnerabilities. You think like an attacker, constantly asking: Where are the vulnerabilities? What could go wrong? How could this be exploited?
|
||||
|
||||
Reference in New Issue
Block a user