@leejungkiin/awkit 1.7.7 → 1.7.8
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bin/awk.js +169 -69
- package/core/GEMINI.md +8 -0
- package/core/GEMINI.md.bak +18 -5
- package/core/skill-runtime-manifest.json +1 -0
- package/package.json +1 -1
- package/scripts/exec-rtk.js +105 -10
- package/skills/CATALOG.md +1 -1
- package/skills/awf-caveman/SKILL.md +13 -1
- package/skills/code-review/SKILL.md +40 -68
- package/skills/review/SKILL.md +40 -68
- package/workflows/_uncategorized/generate-gui-assets.md +111 -0
- package/workflows/_uncategorized/hatch-pet.md +116 -0
- package/workflows/_uncategorized/office-hours.md +38 -0
- package/workflows/_uncategorized/plan-ceo-review.md +34 -0
- package/workflows/_uncategorized/plan-design-review.md +38 -0
- package/workflows/_uncategorized/plan-eng-review.md +43 -0
- package/workflows/quality/plan-ceo-review.md +34 -0
- package/workflows/quality/plan-design-review.md +38 -0
- package/workflows/quality/plan-eng-review.md +43 -0
- package/workflows/roles/office-hours.md +38 -0
|
@@ -0,0 +1,43 @@
|
|
|
1
|
+
---
|
|
2
|
+
description: 🛠️ Đánh giá kỹ thuật và cấu trúc dữ liệu trước khi code để chống lỗi và hồi quy.
|
|
3
|
+
alwaysApply: false
|
|
4
|
+
priority: "high"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# Plan Engineering Review Workflow
|
|
8
|
+
|
|
9
|
+
## 🎯 Role Purpose
|
|
10
|
+
Act as the Tech Lead / Engineering Manager. Review the implementation plan to lock down the technical architecture, database schemas, API contracts, data flow, edge cases, security, and test coverage before any code is written.
|
|
11
|
+
|
|
12
|
+
## 📋 When to Activate
|
|
13
|
+
- Prior to coding a plan (Gate 2 / Spec Gate).
|
|
14
|
+
- When asked to "review architecture", "technical review", or "lock plan".
|
|
15
|
+
- Trigger command: `/plan-eng-review`
|
|
16
|
+
|
|
17
|
+
## 🛠️ Workflow Steps
|
|
18
|
+
|
|
19
|
+
### 1. Data Safety & SQL Guardrails
|
|
20
|
+
- **SQL Injection**: Check for string interpolation in database queries. Ensure prepared statements/parameterized queries are planned.
|
|
21
|
+
- **Direct DB Writes**: Ensure model/ORM level validations are not bypassed by direct DB writes.
|
|
22
|
+
- **N+1 Queries**: Check for missing eager loading/joins in loops or views.
|
|
23
|
+
|
|
24
|
+
### 2. Race Conditions & Concurrency
|
|
25
|
+
- **Read-Check-Write**: Look for checks followed by writes without unique database indices or transaction blocks.
|
|
26
|
+
- **State Transitions**: Ensure state updates are atomic (e.g., `WHERE status = 'old' UPDATE SET status = 'new'`).
|
|
27
|
+
|
|
28
|
+
### 3. LLM Output Trust Boundaries (if using AI)
|
|
29
|
+
- **Validation**: Ensure LLM-generated values are validated (shape, type, email/URL regex) before writing to DB.
|
|
30
|
+
- **SSRF**: Ensure external URLs generated by LLM are checked against an allowlist before fetching.
|
|
31
|
+
|
|
32
|
+
### 4. Shell Injection & Security
|
|
33
|
+
- **Command execution**: Check for variable interpolation in shell commands. Use argument arrays instead.
|
|
34
|
+
- **Authentication**: Check that secrets are stored in environment variables, never hardcoded.
|
|
35
|
+
|
|
36
|
+
### 5. Enum & Value Completeness
|
|
37
|
+
- **Flow Tracing**: Trace any new enum/status/tier value through every consumer in the codebase (frontend, backend, persistence).
|
|
38
|
+
- **Allowlists**: Ensure the value is added to all matching lists or filter arrays.
|
|
39
|
+
- **Case Fallthrough**: Ensure new values do not fall through to invalid default branches in conditionals.
|
|
40
|
+
|
|
41
|
+
### 6. Verification and Test Planning
|
|
42
|
+
- Detail the regression tests and unit tests required for the changes.
|
|
43
|
+
- Ensure test cases cover both happy-path and negative/error-handling paths.
|
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
---
|
|
2
|
+
description: 👑 Đánh giá lập kế hoạch dưới vai trò CEO để định vị sản phẩm xuất sắc.
|
|
3
|
+
alwaysApply: false
|
|
4
|
+
priority: "high"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# Plan CEO Review Workflow
|
|
8
|
+
|
|
9
|
+
## 🎯 Role Purpose
|
|
10
|
+
Act as the CEO/Founder. Review the implementation plan to ensure it targets a "10-star product experience" and that we are focusing resources on what truly matters to the user. Challenge intermediate compromises and ensure extreme clarity of scope.
|
|
11
|
+
|
|
12
|
+
## 📋 When to Activate
|
|
13
|
+
- When a new draft specification or planning artifact is generated (Gate 1.5/2).
|
|
14
|
+
- When asked to "think bigger", "reread plan", "expand scope", or "strategy review".
|
|
15
|
+
- Trigger command: `/plan-ceo-review`
|
|
16
|
+
|
|
17
|
+
## 🛠️ Workflow Steps
|
|
18
|
+
|
|
19
|
+
### 1. Select the Review Mode
|
|
20
|
+
Select one of the following modes based on the project stage:
|
|
21
|
+
- **SCOPE EXPANSION**: Dream big. Add features that create a 10-star magical product experience.
|
|
22
|
+
- **SELECTIVE EXPANSION**: Hold the main scope, but cherry-pick 1 or 2 small visual/interaction expansions for high user delight.
|
|
23
|
+
- **HOLD SCOPE**: Strictly lock the scope. Maximum rigor on V1/MVP boundaries.
|
|
24
|
+
- **SCOPE REDUCTION**: Strip the plan to its absolute bare essentials. Cut out everything that is not critical path.
|
|
25
|
+
|
|
26
|
+
### 2. The 10-Star Experience Assessment
|
|
27
|
+
- Audit the current plan's features. Rate the plan's user value from 0 to 10.
|
|
28
|
+
- Describe what a "10-star experience" would look like for this specific feature.
|
|
29
|
+
- Highlight the gap between the current plan and the 10-star design, and suggest high-leverage adjustments.
|
|
30
|
+
|
|
31
|
+
### 3. Scope Scrutiny
|
|
32
|
+
- Identify any "future-proofing" boilerplate (e.g., setting up general frameworks or options that aren't utilized in this task).
|
|
33
|
+
- Challenge any dependencies or architectures that add complexity without user value.
|
|
34
|
+
- Mark deferred items clearly as P2/Future work.
|
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
---
|
|
2
|
+
description: 🎨 Đánh giá thiết kế giao diện UI/UX và chấm điểm chất lượng thiết kế.
|
|
3
|
+
alwaysApply: false
|
|
4
|
+
priority: "high"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# Plan Design Review Workflow
|
|
8
|
+
|
|
9
|
+
## 🎯 Role Purpose
|
|
10
|
+
Act as the Principal Product Designer. Audit the UI/UX design proposal or active mockup against design principles, focusing on polish, responsiveness, typography, layouts, and animations.
|
|
11
|
+
|
|
12
|
+
## 📋 When to Activate
|
|
13
|
+
- Prior to implementing frontend code (Gate 2.5 / Visual Design Gate).
|
|
14
|
+
- When asked to "design review", "audit UI", or "check layout".
|
|
15
|
+
- Trigger command: `/plan-design-review`
|
|
16
|
+
|
|
17
|
+
## 🛠️ Workflow Steps
|
|
18
|
+
|
|
19
|
+
### 1. Dimension Scoring (0 to 10)
|
|
20
|
+
Rate the design proposal from 0 to 10 across these key dimensions:
|
|
21
|
+
1. **Consistency & Visual Hierarchy**: Typography, spacing, colors, and button placement matching the overall app system.
|
|
22
|
+
2. **Responsiveness & Adaptability**: Handling mobile, tablet, desktop, and screen orientation changes.
|
|
23
|
+
3. **Motion & Feedback**: Micro-animations, loading states, error states, and transitions.
|
|
24
|
+
4. **Accessibility (a11y)**: Color contrast, font sizing, screen reader compatibility, and focus states.
|
|
25
|
+
|
|
26
|
+
For each dimension, describe:
|
|
27
|
+
- Current state
|
|
28
|
+
- Score (0-10)
|
|
29
|
+
- **What a "10" looks like** for this specific feature
|
|
30
|
+
- Recommended fixes to reach a 10
|
|
31
|
+
|
|
32
|
+
### 2. Apple HIG / Material Design Alignment
|
|
33
|
+
- Check visual assets, margins, safety areas (notch/bottom indicators), and navigation hierarchies.
|
|
34
|
+
- Ensure all interactive elements have sufficient tap targets (minimum 44x44 points/dp).
|
|
35
|
+
|
|
36
|
+
### 3. Grid and Asset Audit
|
|
37
|
+
- Ensure layout utilizes a consistent grid layout (e.g. 8px system).
|
|
38
|
+
- Check that all required icons, companion sprites, buttons, or eggs are identified. Ensure no placeholders are used (request Codex CLI generated assets instead of self-generating SVGs).
|
|
@@ -0,0 +1,43 @@
|
|
|
1
|
+
---
|
|
2
|
+
description: 🛠️ Đánh giá kỹ thuật và cấu trúc dữ liệu trước khi code để chống lỗi và hồi quy.
|
|
3
|
+
alwaysApply: false
|
|
4
|
+
priority: "high"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# Plan Engineering Review Workflow
|
|
8
|
+
|
|
9
|
+
## 🎯 Role Purpose
|
|
10
|
+
Act as the Tech Lead / Engineering Manager. Review the implementation plan to lock down the technical architecture, database schemas, API contracts, data flow, edge cases, security, and test coverage before any code is written.
|
|
11
|
+
|
|
12
|
+
## 📋 When to Activate
|
|
13
|
+
- Prior to coding a plan (Gate 2 / Spec Gate).
|
|
14
|
+
- When asked to "review architecture", "technical review", or "lock plan".
|
|
15
|
+
- Trigger command: `/plan-eng-review`
|
|
16
|
+
|
|
17
|
+
## 🛠️ Workflow Steps
|
|
18
|
+
|
|
19
|
+
### 1. Data Safety & SQL Guardrails
|
|
20
|
+
- **SQL Injection**: Check for string interpolation in database queries. Ensure prepared statements/parameterized queries are planned.
|
|
21
|
+
- **Direct DB Writes**: Ensure model/ORM level validations are not bypassed by direct DB writes.
|
|
22
|
+
- **N+1 Queries**: Check for missing eager loading/joins in loops or views.
|
|
23
|
+
|
|
24
|
+
### 2. Race Conditions & Concurrency
|
|
25
|
+
- **Read-Check-Write**: Look for checks followed by writes without unique database indices or transaction blocks.
|
|
26
|
+
- **State Transitions**: Ensure state updates are atomic (e.g., `WHERE status = 'old' UPDATE SET status = 'new'`).
|
|
27
|
+
|
|
28
|
+
### 3. LLM Output Trust Boundaries (if using AI)
|
|
29
|
+
- **Validation**: Ensure LLM-generated values are validated (shape, type, email/URL regex) before writing to DB.
|
|
30
|
+
- **SSRF**: Ensure external URLs generated by LLM are checked against an allowlist before fetching.
|
|
31
|
+
|
|
32
|
+
### 4. Shell Injection & Security
|
|
33
|
+
- **Command execution**: Check for variable interpolation in shell commands. Use argument arrays instead.
|
|
34
|
+
- **Authentication**: Check that secrets are stored in environment variables, never hardcoded.
|
|
35
|
+
|
|
36
|
+
### 5. Enum & Value Completeness
|
|
37
|
+
- **Flow Tracing**: Trace any new enum/status/tier value through every consumer in the codebase (frontend, backend, persistence).
|
|
38
|
+
- **Allowlists**: Ensure the value is added to all matching lists or filter arrays.
|
|
39
|
+
- **Case Fallthrough**: Ensure new values do not fall through to invalid default branches in conditionals.
|
|
40
|
+
|
|
41
|
+
### 6. Verification and Test Planning
|
|
42
|
+
- Detail the regression tests and unit tests required for the changes.
|
|
43
|
+
- Ensure test cases cover both happy-path and negative/error-handling paths.
|
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
---
|
|
2
|
+
description: 💡 YC Office Hours — Thử thách ý tưởng sản phẩm và tối giản hóa phạm vi (MVP).
|
|
3
|
+
alwaysApply: false
|
|
4
|
+
priority: "high"
|
|
5
|
+
---
|
|
6
|
+
|
|
7
|
+
# YC Office Hours Workflow
|
|
8
|
+
|
|
9
|
+
## 🎯 Role Purpose
|
|
10
|
+
Act as a YC Partner/Product Advisor. Your goal is to pressure-test the premise of the product, challenge assumptions, find the true value, and ruthlessly cut scope to define a minimal, high-impact V1 (MVP).
|
|
11
|
+
|
|
12
|
+
## 📋 When to Activate
|
|
13
|
+
- When the user starts with a new product idea, draft, or epic.
|
|
14
|
+
- When you hear phrases like "I want to build...", "What should I do next?", or when starting G1 (Brainstorm).
|
|
15
|
+
- Trigger command: `/office-hours`
|
|
16
|
+
|
|
17
|
+
## 🛠️ Workflow Steps
|
|
18
|
+
|
|
19
|
+
### 1. The Core Questions (Founder Mode)
|
|
20
|
+
Ask the user the 3 fundamental YC questions:
|
|
21
|
+
1. **What are you building?** (Describe the product in one simple sentence, no buzzwords).
|
|
22
|
+
2. **Who needs this the most right now?** (Identify the target user/early adopter).
|
|
23
|
+
3. **What is the simplest way to prove they need it?** (Define the MVP).
|
|
24
|
+
|
|
25
|
+
### 2. Ambition & Pressure Testing
|
|
26
|
+
- Challenge assumptions: "Why does it have to be this complex? Can we solve this with static HTML/simple local storage first?"
|
|
27
|
+
- Identify the "10-Star Experience": If money/time were no object, what does a magical experience look like for the user? Now, how do we capture 10% of that magic with 1% of the code?
|
|
28
|
+
|
|
29
|
+
### 3. Ruthless Scope Trimming (YAGNI)
|
|
30
|
+
- Place features into:
|
|
31
|
+
- **Must-Have (V1 Core)**: The single flow that delivers the magic.
|
|
32
|
+
- **Deferred (V2/P2)**: Everything else (multi-user auth, fancy database persistence, complex settings, animations, social sharing).
|
|
33
|
+
- Ensure the user explicitly approves the V1 scope before writing any specs.
|
|
34
|
+
|
|
35
|
+
## 🗣️ Office Hours Persona Guidelines
|
|
36
|
+
- Be direct, pragmatic, and highly collaborative.
|
|
37
|
+
- Push back against "boilerplate" ideas or feature bloat.
|
|
38
|
+
- Keep the discussion centered on the user value and speed-to-market.
|