@massu/core 0.5.0 → 0.6.0

package/commands/massu-golden-path/references/phase-2.5-gap-analyzer.md

@@ -0,0 +1,156 @@
+# Phase 2.5: Gap & Enhancement Analyzer Loop
+
+> Reference doc for `/massu-golden-path`. Return to main file for overview.
+
+```
+[GOLDEN PATH -- PHASE 2.5: GAP & ENHANCEMENT ANALYSIS]
+```
+
+## Purpose
+
+After implementation (Phase 2) completes successfully, run a continuous gap and enhancement analysis loop. This phase catches everything implementation missed: incomplete features, missing edge cases, UX gaps, untested paths, accessibility issues, and enhancement opportunities.
+
+**This phase loops until a FULL PASS discovers ZERO gaps/enhancements.**
+
+---
+
+## LOOP CONTROLLER
+
+```
+iteration = 0
+MAX_ITERATIONS = 10
+
+WHILE iteration < MAX_ITERATIONS:
+  iteration += 1
+
+  result = Task(subagent_type="gap-analyzer", prompt="
+    Gap & Enhancement Analysis — Iteration {iteration}
+
+    CONTEXT:
+    - Plan file: {PLAN_PATH}
+    - Implementation is COMPLETE (Phase 2 passed)
+    - Your job: find gaps and enhancements the implementation missed
+
+    INSTRUCTIONS:
+    1. Read the plan from disk
+    2. Read CLAUDE.md and relevant patterns
+    3. Review ALL files changed in this session: git diff origin/main --name-only
+    4. Run the analysis categories below
+    5. For each gap/enhancement found: FIX IT immediately
+    6. Report GAPS_DISCOVERED as total found (even if fixed)
+
+    ANALYSIS CATEGORIES:
+
+    A. FUNCTIONAL GAPS
+    - Missing error handling (try/catch, error boundaries, toast notifications)
+    - Missing loading states (Skeleton, Spinner, disabled buttons during submit)
+    - Missing empty states ('No items found' messaging)
+    - Missing null guards on nullable fields
+    - Missing form validation (required fields, format validation)
+    - Incomplete CRUD (create exists but no edit/delete, or vice versa)
+
+    B. UX GAPS
+    - Missing success feedback after mutations (toast.success)
+    - Missing confirmation for destructive actions (AlertDialog)
+    - Missing keyboard navigation (tabIndex, onKeyDown for Enter)
+    - Missing responsive behavior (sm:/md:/lg: breakpoints)
+    - Inconsistent spacing (page-container class, gap values)
+    - Missing breadcrumbs or navigation context
+    - VR-VISUAL weighted score < 3.0 on affected routes
+
+    C. DATA INTEGRITY GAPS
+    - Optimistic updates without rollback
+    - Missing query invalidation after mutations
+    - Stale data after navigation (missing refetch)
+    - Missing pagination for large datasets
+    - Unhandled BigInt/Decimal serialization
+
+    D. SECURITY GAPS
+    - Missing protectedProcedure on mutations
+    - Missing input validation on router inputs
+    - Missing RLS policies on new tables
+    - Exposed sensitive data in client responses
+
+    E. PATTERN COMPLIANCE
+    - Run ./scripts/pattern-scanner.sh on changed files
+    - Check for pattern violations
+    - Check for hardcoded colors (should use design tokens)
+
+    F. ENHANCEMENT OPPORTUNITIES
+    - Type safety improvements (replace 'any' with proper types)
+    - Code deduplication (extract shared logic)
+    - Performance (unnecessary re-renders, missing useMemo/useCallback)
+    - Accessibility (aria-labels, alt text, focus management)
+
+    G. E2E WIRING GAPS
+    - For each data flow in changed files, verify VR-ROUNDTRIP:
+      WRITE: mutation/action reachable from UI or cron
+      STORE: data persists in a real table
+      READ: query reads from that same table
+      DISPLAY: component renders the query data (or cron logs output)
+    - Background-only features (crons, webhooks): WRITE->STORE->READ sufficient
+    - Query-only features (read views): READ->DISPLAY sufficient
+
+    H. SPRINT CONTRACT COMPLIANCE (if contracts exist from Phase 2A.5)
+    - Read the sprint contracts from the Phase 2A tracking table
+    - For EACH plan item with a sprint contract:
+      1. List all acceptance criteria from the contract
+      2. Verify EACH criterion with specific evidence (grep, screenshot, DOM state, network response)
+      3. Any unmet criterion = GAP (P1 severity minimum)
+    - Contract criteria are IN ADDITION TO categories A-G — both must pass
+    - Skip condition: items marked `Contract: N/A` in the tracking table
+    - If no sprint contracts were negotiated (Phase 2A.5 skipped), skip this category
+
+    FOR EACH FINDING:
+    1. Classify: GAP (must fix) or ENHANCEMENT (should fix)
+    2. Severity: P0 (broken) / P1 (incorrect) / P2 (polish)
+    3. Fix it immediately
+    4. Verify the fix
+
+    RETURN STRUCTURED RESULT:
+    ```
+    GAPS_DISCOVERED: [N]
+    ENHANCEMENTS_APPLIED: [N]
+    ITEMS_FIXED: [N]
+
+    | # | Type | Severity | Description | File | Fixed |
+    |---|------|----------|-------------|------|-------|
+    | 1 | GAP | P0 | Missing error boundary | src/app/.../page.tsx | YES |
+    ```
+  ")
+
+  gaps = parse GAPS_DISCOVERED from result
+
+  IF gaps == 0:
+    Output: "Gap analysis clean in iteration {iteration} — zero gaps found"
+    BREAK
+  ELSE:
+    Output: "Iteration {iteration}: {gaps} gaps found and fixed, re-analyzing..."
+    CONTINUE
+
+IF iteration == MAX_ITERATIONS AND gaps > 0:
+  Output: "WARNING: Gap analyzer did not converge after {MAX_ITERATIONS} iterations. {gaps} gaps remain."
+```
+
+---
+
+## RULES
+
+| Rule | Meaning |
+|------|---------|
+| **Fix during analysis** | The analyzer fixes gaps as it finds them, not just reports |
+| **Full re-pass required** | After fixes, a fresh pass must find ZERO to exit |
+| **P0 gaps block** | Any P0 gap that can't be fixed stops the golden path |
+| **Enhancements are mandatory** | Enhancements found MUST be applied (this is golden path, not quick fix) |
+| **Pattern scanner gates** | `./scripts/pattern-scanner.sh` must exit 0 after each iteration |
+| **No new files without reason** | Don't create helper files that aren't needed |
+
+---
+
+## WHEN TO SKIP
+
+This phase can be skipped ONLY if:
+- The implementation was documentation-only (no source files changed)
+- User explicitly says "skip gap analysis"
+
+Otherwise, it runs automatically as part of the golden path.

package/commands/massu-golden-path/references/phase-3-simplify.md

@@ -0,0 +1,40 @@
+# Phase 3: Simplification
+
+> Reference doc for `/massu-golden-path`. Return to main file for overview.
+
+```
+[GOLDEN PATH -- PHASE 3: SIMPLIFICATION]
+```
+
+## 3.1 Fast Gate
+
+```bash
+./scripts/pattern-scanner.sh  # Fix ALL violations before semantic analysis
+```
+
+## 3.1.5 Dead Code Detection
+
+```bash
+npx knip --no-exit-code --reporter compact 2>/dev/null | head -50
+# OR use /massu-dead-code for full analysis
+```
+
+Review output for unused exports, files, and dependencies. Remove dead code before semantic review. Skip if knip is not installed (advisory gate, not blocking).
+
+## 3.2 Parallel Semantic Review (3 Agents)
+
+Spawn IN PARALLEL (Principle #20 -- one task per agent):
+
+**Efficiency Reviewer** (haiku): Query inefficiency (findMany.length -> SQL COUNT, N+1, unbounded queries), React inefficiency (useState for derived, useEffect->setState, missing useMemo/useCallback), algorithmic inefficiency (O(n^2), repeated sort/filter).
+
+**Reuse Reviewer** (haiku): Known utilities (formatFileSize, serializeUnifiedProduct, mergeWhereWithTenant, emptyToNull, PhoneInputField, sanitizeContentHtml), component duplication against src/components/shared/ and ui/, pattern duplication across new files.
+
+**Pattern Compliance Reviewer** (haiku): React Query v5 (no onSuccess in useQuery), DB patterns (Object.assign->mergeWhereWithTenant, include:->3-step, BigInt Number()), UI patterns (Select value="", missing states, Suspense), security (z.string()->z.enum() for orderBy, CR-5 precedence, CRON_SECRET guard), architecture (link table scoping, SQL aggregates, client/server boundary).
+
+## 3.3 Apply ALL Findings
+
+Sort by SEVERITY (CRITICAL -> LOW). Fix ALL (CR-9). Re-run pattern scanner.
+
+```
+SIMPLIFY_GATE: PASS (N findings, N fixed, 0 remaining)
+```

package/commands/massu-golden-path/references/phase-4-commit.md

@@ -0,0 +1,94 @@
+# Phase 4: Pre-Commit Verification
+
+> Reference doc for `/massu-golden-path`. Return to main file for overview.
+
+```
+[GOLDEN PATH -- PHASE 4: PRE-COMMIT VERIFICATION]
+```
+
+## 4.1 Auto-Verification Gates (ALL must pass in SINGLE run)
+
+| Gate | Command | Expected |
+|------|---------|----------|
+| 1. Pattern Scanner | `./scripts/pattern-scanner.sh` | Exit 0 |
+| 2. Type Safety (VR-TYPE) | `NODE_OPTIONS="--max-old-space-size=8192" npx tsc --noEmit` | 0 errors |
+| 3. Build (VR-BUILD) | `npm run build` | Exit 0 |
+| 4. Lint | `npm run lint` | Exit 0 |
+| 5. Prisma Validate | `npx prisma validate` | Exit 0 |
+| 6. Secrets Staged | `git diff --cached --name-only \| grep -E '\.(env\|pem\|key\|secret)'` | 0 files |
+| 7. Credentials in Code | `grep -rn "sk-\|password.*=.*['\"]" --include="*.ts" --include="*.tsx" src/ \| grep -v "process.env" \| wc -l` | 0 |
+| 8. Schema Mismatch | Extract tables from staged routers -> query columns via MCP | All exist |
+| 9. VR-RENDER | For EACH staged component: `grep "<ComponentName" src/app/**/page.tsx` | Match found |
+| 9.5. VR-COLOR | `git diff --cached \| grep "text-red-\|bg-green-\|..."` | 0 matches |
+| 9.6. VR-COUPLING | `massu_coupling_check` or `./scripts/check-coupling.sh` | Exit 0 |
+| 10. Plan Coverage | Verify ALL plan items with VR-* proof | 100% |
+| 11. VR-PLAN-STATUS | `grep "IMPLEMENTATION STATUS" [plan]` | Match |
+| 12. Dependency Security | `npm audit --audit-level=high` | 0 high/crit |
+| 13. Test Coverage | Check test files exist for new code | WARN level |
+| 14. VR-VISUAL | `bash scripts/ui-review.sh [route]` (if UI files changed) | VR_VISUAL_STATUS: PASS |
+
+For each modified file: `massu_validate_file`, `massu_security_score`, `massu_security_heatmap`. If any file scores > 7/10 risk, flag for review.
+
+Spawn `massu-pattern-reviewer` agent for deep CR rule checks, import chain validation, semantic pattern matching.
+
+## 4.2 Database Verification (All Environments)
+
+For EACH affected table, query all configured environments via MCP:
+
+| Env | MCP Prefix | Verify |
+|-----|-----------|--------|
+| DEV | `mcp__supabase__DEV__execute_sql` | Table, columns, RLS, grants |
+| PROD | `mcp__supabase__PROD__execute_sql` | Table, columns, RLS, grants |
+
+VR-DATA: If config-driven features, query actual config values and compare to code expectations.
+
+## 4.3 Help Site Auto-Sync
+
+1. Get staged files -> pass to `massu_docs_audit`
+2. For STALE/NEW pages: update MDX, set `lastVerified`, add changelog
+3. Commit to help site repo (separate git)
+4. Return to main app repo
+
+## 4.4 Quality Scoring Gate
+
+Spawn `massu-output-scorer` (sonnet): Code Clarity, Pattern Compliance, Error Handling, UX Quality, Test Coverage (1-5 each). All >= 3: PASS. Any < 3: FAIL.
+
+## 4.5 If ANY Gate Fails
+
+**DO NOT PAUSE** -- Fix automatically, re-run ALL gates, repeat until all pass.
+
+## 4.6 Auto-Learning Protocol
+
+- For each bug fixed: `massu_memory_ingest` type="bugfix", update MEMORY.md
+- For new patterns: `massu_memory_ingest` type="pattern"
+- Add detection to `scripts/pattern-scanner.sh` if grep-able
+- Codebase-wide search: no other instances of same bad pattern (CR-9)
+- Record user corrections to `memory/corrections.md`
+
+---
+
+## Phase 4 Complete -> APPROVAL POINT #3: COMMIT
+
+See `approval-points.md` for the exact format.
+
+### Commit Format
+
+```bash
+git commit -m "$(cat <<'EOF'
+[type]: [description]
+
+[Body]
+
+Changes:
+- [Change 1]
+- [Change 2]
+
+Verified:
+- Pattern scanner: PASS | Type check: 0 errors | Build: PASS
+- DB: All environments verified
+- Help site: UP TO DATE
+
+Co-Authored-By: Claude <noreply@anthropic.com>
+EOF
+)"
+```

package/commands/massu-golden-path/references/phase-5-push.md

@@ -0,0 +1,116 @@
+# Phase 5: Push Verification & Push
+
+> Reference doc for `/massu-golden-path`. Return to main file for overview.
+
+```
+[GOLDEN PATH -- PHASE 5: PUSH VERIFICATION]
+```
+
+## 5.1 Pre-Flight
+
+```bash
+git log origin/main..HEAD --oneline  # Commits to push
+```
+
+## 5.2 Tier 1: Quick Re-Verification
+
+Run in parallel where possible:
+
+| Check | Command |
+|-------|---------|
+| Pattern Scanner | `./scripts/pattern-scanner.sh` |
+| VR-COUPLING | `./scripts/check-coupling.sh` |
+| VR-UX | `./scripts/check-ux-quality.sh` |
+| TypeScript | `NODE_OPTIONS="--max-old-space-size=8192" npx tsc --noEmit` |
+| Build | `npm run build` |
+| Prisma | `npx prisma validate` |
+| Schema Mismatch | `./scripts/check-schema-mismatches.sh` |
+
+## 5.3 Tier 2: Test Suite (CRITICAL)
+
+### 5.3.0 Regression Detection (MANDATORY FIRST)
+
+```bash
+# Establish baseline on main
+git stash && git checkout main -q
+npm run test:run 2>&1 | tee /tmp/baseline-tests.txt
+git checkout - -q && git stash pop -q
+
+# Run on current branch
+npm run test:run 2>&1 | tee /tmp/current-tests.txt
+
+# Compare: any test passing on main but failing now = REGRESSION
+# Regressions MUST be fixed before push
+```
+
+### 5.3.1-5.3.5 Test Execution
+
+Use **parallel Task agents** for independent checks:
+
+```
+Agent Group A (parallel):
+- Agent 1: npm run test:run (unit tests)
+- Agent 2: npm audit --audit-level=high
+- Agent 3: npx tsx scripts/detect-secrets.ts
+
+Agent Group B (parallel, after A):
+- Agent 1: npm run test:e2e (E2E tests)
+- Agent 2: npm run test:visual:run (visual regression)
+
+Sequential:
+- ./scripts/validate-router-contracts.sh
+- VR-RENDER: verify ALL new components rendered in pages
+```
+
+## 5.4 Tier 3: Security & Compliance
+
+| Check | Command |
+|-------|---------|
+| npm audit | `npm audit --audit-level=high` |
+| Secrets scan | `npx tsx scripts/detect-secrets.ts` |
+| Accessibility | `./scripts/verify-accessibility.sh` |
+| DB sync | Verify schema match across all environments |
+
+### VR-STORED-PROC (If migrations in push)
+
+```sql
+SELECT proname, prosrc FROM pg_proc
+JOIN pg_namespace n ON n.oid = pronamespace
+WHERE n.nspname = 'public' AND prosrc LIKE '%old_table_name%';
+-- Run on all environments. Expected: 0 rows.
+```
+
+### VR-RLS-AUDIT (CR-33)
+
+```sql
+SELECT c.relname FROM pg_class c
+JOIN pg_namespace n ON c.relnamespace = n.oid
+WHERE n.nspname = 'public' AND c.relkind = 'r' AND c.relrowsecurity = false;
+-- Run on all environments. Expected: 0 rows.
+```
+
+### VR-DATA (Config-Code Alignment)
+
+If push includes config-driven features, verify config keys match code expectations.
+
+### Compliance Audit Trail
+
+Generate: `massu_audit_log`, `massu_audit_report`, `massu_validation_report`.
+
+## 5.5 Tier 4: Final Gate
+
+All tiers must pass:
+
+| Tier | Status |
+|------|--------|
+| Tier 1: Quick Checks | PASS/FAIL |
+| Tier 2: Test Suite + Regression | PASS/FAIL |
+| Tier 3: Security & Compliance | PASS/FAIL |
+
+---
+
+## Phase 5 Gate -> APPROVAL POINT #4: PUSH
+
+See `approval-points.md` for the exact format.
+
+After approval: `git push origin [branch]`, then monitor CI with `./scripts/ci-status.sh --wait --max-wait 300`. If CI fails, auto-run `/massu-ci-fix` protocol.

package/commands/massu-golden-path/references/phase-5.5-production-verify.md

@@ -0,0 +1,170 @@
+# Phase 5.5: Production Verification
+
+> Reference doc for `/massu-golden-path`. Return to main file for overview.
+
+```
+[GOLDEN PATH -- PHASE 5.5: PRODUCTION VERIFICATION]
+```
+
+**Core Principle**: A feature is NOT complete until it is verified working in production with real data. "Deployed" and "working" are two completely different things.
+
+---
+
+## 5.5.1 Wait for Deployment
+
+After push and CI success, verify the deployment landed:
+
+```bash
+# Check Vercel deployment status via MCP
+# list_deployments — confirm latest is READY state
+# get_runtime_logs — check for startup errors
+```
+
+If deployment failed or errored: diagnose, fix, and re-push (loop back to Phase 5).
+
+---
+
+## 5.5.2 Auto-Detect Changed Routes
+
+Before categorizing, auto-detect which production routes were affected:
+
+```bash
+# Extract changed app routes from git diff
+git diff origin/main --name-only -- 'src/app/' | grep -E 'page\.tsx|route\.ts' | \
+  sed 's|src/app/||; s|/page\.tsx||; s|/route\.ts||; s|\[([^]]*)\]|:$1|g'
+
+# Extract changed routers (for API verification)
+git diff origin/main --name-only -- 'src/server/api/routers/' | \
+  sed 's|src/server/api/routers/||; s|\.ts||'
+
+# Extract changed cron jobs
+git diff origin/main --name-only -- 'src/app/api/cron/'
+```
+
+Each detected route becomes a verification target. UI routes get Playwright checks, API routers get data-flow checks, crons get deferred verification entries.
+
+---
+
+## 5.5.3 Categorize Verifications
+
+Review ALL plan items and changed files. Categorize each into:
+
+| Category | Timing | Examples |
+|----------|--------|---------|
+| **Immediate** | Verify now | UI pages, API endpoints, DB schema+data, feature flags, env vars |
+| **Deferred** | Verify later | Cron jobs (wait for cycle), webhooks (wait for trigger), external API syncs, email delivery |
+
+Build a verification matrix:
+
+```markdown
+| # | Feature/Change | Category | Method | Expected Result | Status |
+|---|----------------|----------|--------|-----------------|--------|
+| PV-001 | [desc] | Immediate | Playwright | Page loads, data visible | PENDING |
+| PV-002 | [desc] | Immediate | DB query (PROD) | Row count > 0 | PENDING |
+| DV-001 | [desc] | Deferred | DB query after cron | New rows after deploy | PENDING |
+```
+
+---
+
+## 5.5.4 Run Immediate Verifications
+
+For each immediate item, verify with proof:
+
+### UI Changes
+Use Playwright MCP against production URL:
+1. `browser_navigate` to production page
+2. `browser_snapshot` — verify renders correctly
+3. `browser_console_messages` — check for JS errors
+4. `browser_click` / `browser_fill_form` — test interactions
+5. Verify data displays (not empty, not placeholder, not "undefined")
+
+### API/tRPC Changes
+- Hit production endpoints or navigate to pages that use them
+- Verify data loads and mutations work
+
+### Database Changes
+Query PROD (`mcp__supabase__PROD__execute_sql`):
+```sql
+-- Verify data flows, not just schema
+SELECT COUNT(*), MAX(created_at) FROM [table]
+WHERE created_at > '[deploy_timestamp]';
+```
+
+### Feature Flags / Config
+```sql
+-- Verify flags are set correctly
+SELECT key, enabled FROM feature_flags WHERE key IN ('[flags]');
+```
+
+### Integration Chains
+Trace the full chain: trigger -> process -> store -> display
+
+```markdown
+| Step | System | Verification | Status |
+|------|--------|-------------|--------|
+| Trigger | [source] | [how verified] | PASS/FAIL |
+| Process | [handler] | [how verified] | PASS/FAIL |
+| Store | [database] | [query result] | PASS/FAIL |
+| Display | [UI page] | [screenshot] | PASS/FAIL |
+```
+
+---
+
+## 5.5.5 Generate Deferred Checklist
+
+For items that can't be verified immediately, write to `session-state/deferred-verifications.md`:
+
+```markdown
+# Deferred Production Verifications
+
+**Generated**: [YYYY-MM-DD HH:MM PST]
+**Deploy Commit**: [hash]
+**Feature**: [name]
+
+## Pending
+
+### DV-001: [Description]
+- **Type**: Cron / Webhook / External API / Background Job
+- **Expected By**: [YYYY-MM-DD HH:MM PST]
+- **Query**:
+  ```sql
+  SELECT COUNT(*) FROM [table] WHERE [condition] AND created_at > '[deploy_time]';
+  ```
+- **Expected Result**: [specific condition]
+- **Status**: PENDING
+```
+
+These are surfaced by `/massu-bearings` in the next session and verified by `/massu-production-verify --deferred`.
+
+---
+
+## 5.5.6 Phase 5.5 Gate
+
+| Condition | Result |
+|-----------|--------|
+| All immediate verifications PASS, no deferred items | **PRODUCTION VERIFIED** — proceed to Phase 6 |
+| All immediate verifications PASS, deferred items exist | **VERIFIED + DEFERRED** — proceed to Phase 6, deferred items tracked |
+| Any immediate verification FAILS | **BLOCKED** — diagnose, fix, re-push, re-verify |
+
+**If BLOCKED**: Loop back. Fix the issue, commit, push (Phase 5 again), then re-run Phase 5.5.
+
+---
+
+## 5.5.7 Report Format
+
+```
+PHASE 5.5: PRODUCTION VERIFICATION
+--------------------------------------------------------------------------
+Deploy: [hash] — READY on Vercel
+Production URL: [url]
+
+Immediate Verifications: [X]/[Y] PASSED
+  PV-001: [feature] — PASS (proof: [detail])
+  PV-002: [feature] — PASS (proof: [detail])
+
+Deferred Verifications: [N] pending
+  DV-001: [feature] — check after [time] (saved to deferred-verifications.md)
+
+Status: VERIFIED / VERIFIED + DEFERRED / BLOCKED
+--------------------------------------------------------------------------
+```

package/commands/massu-golden-path/references/phase-6-completion.md

@@ -0,0 +1,113 @@
+# Phase 6: Completion
+
+> Reference doc for `/massu-golden-path`. Return to main file for overview.
+
+## 6.1 Final Report
+
+```
+===============================================================================
+GOLDEN PATH COMPLETE
+===============================================================================
+
+SUMMARY:
+--------------------------------------------------------------------------
+Phase 0: Requirements & Context    D1-D10 resolved
+Phase 1: Plan Creation & Audit     [N] items, [M] audit passes
+Phase 2: Implementation            [N] audit loops, 3 reviewers passed
+Phase 2A.5: Sprint Contracts       [N] contracts negotiated, [M] criteria total
+Phase 2C.2: QA Evaluator           [N] sprints evaluated, [M] bugs caught / SKIPPED (no UI)
+Phase 2G: Browser Verification     [N] pages tested, [M] issues fixed / SKIPPED
+Phase 2.5: Gap & Enhancement       [N] iterations, [M] gaps fixed, [K] enhancements
+Phase 3: Simplification            [N] findings fixed
+Phase 4: Pre-Commit Verification   13 gates passed
+Phase 5: Push Verification         3 tiers passed, 0 regressions
+Phase 5.5: Production Verification [N]/[M] immediate PASS, [K] deferred pending
+--------------------------------------------------------------------------
+
+DELIVERABLES:
+  Plan: [plan path]
+  Commit: [hash]
+  Branch: [branch]
+  Pushed: YES
+  Production: [VERIFIED / VERIFIED + DEFERRED / BLOCKED]
+  Files changed: [N]
+
+===============================================================================
+```
+
+## 6.2 Plan Document Update (MANDATORY)
+
+Add to TOP of plan document:
+
+```markdown
+# IMPLEMENTATION STATUS
+
+**Plan**: [Name]
+**Status**: COMPLETE -- PRODUCTION VERIFIED / COMPLETE -- PENDING DEFERRED VERIFICATION
+**Last Updated**: [YYYY-MM-DD HH:MM]
+**Push Commit**: [hash]
+**Production Verified**: [YYYY-MM-DD HH:MM] / PENDING (deferred items in session-state/deferred-verifications.md)
+**Completed By**: Claude Code (Massu Golden Path)
+
+## Task Completion Summary
+| # | Task/Phase | Status | Verification | Date |
+|---|------------|--------|--------------|------|
+| 1 | [description] | 100% COMPLETE | VR-BUILD: Pass | [date] |
+```
+
+## 6.2.1 Sprint Contract Results (if Phase 2A.5 was executed)
+
+Add after Task Completion Summary:
+
+```markdown
+## Sprint Contract Results
+| Item | Criteria Count | Met | Unmet | Renegotiated | Final Status |
+|------|---------------|-----|-------|--------------|--------------|
+| P-XXX | N | N | 0 | 0 | FULFILLED |
+
+**Contracts Fulfilled**: N/N (100%)
+**Criteria Met**: N/N total acceptance criteria
+**Renegotiations**: N (with reasons documented in tracking table)
+```
+
+Skip this section if no sprint contracts were negotiated (Phase 2A.5 skipped).
+
+## 6.2.2 QA Evaluator Summary (if Phase 2C.2 was executed)
+
+Add after Sprint Contract Results:
+
+```markdown
+## QA Evaluator Summary
+| Sprint | Product Depth | Functionality | Visual Design | Code Quality | Bugs Found | Verdict |
+|--------|--------------|---------------|---------------|-------------|------------|---------|
+| 1 | 4 | 3 | 4 | 4 | 2 | PASS |
+
+**Sprints Evaluated**: N
+**Total Bugs Caught by QA**: N (N fixed before merge)
+**Average Scores**: PD=X.X FN=X.X VD=X.X CQ=X.X
+**QA Gate Failures**: N (required re-implementation)
+```
+
+Skip this section if the plan had no UI files (QA evaluator not triggered).
+
+## 6.3 Auto-Learning Protocol (MANDATORY)
+
+1. Review ALL fixes: `git diff origin/main..HEAD`
+2. For each fix: verify ingested into limn memory (`massu_memory_ingest`)
+3. For each fix: verify MEMORY.md updated
+4. For each new pattern: verify recorded
+5. For each failed approach: verify recorded as `failed_attempt`
+6. Record user corrections to `memory/corrections.md`
+7. Consider new CR rule if a class of bug was found
+
+## 6.4 Quality & Observability Report
+
+Generate: `massu_quality_score`, `massu_quality_trend`, `massu_quality_report`, `massu_prompt_effectiveness`, `massu_session_stats`, `massu_prompt_analysis`, `massu_tool_patterns`.
+
+## 6.5 Feature Registration (CR-32)
+
+Call `massu_sentinel_register` with feature name, file list, domain, test status.
+
+## 6.6 Update Session State
+
+Update `session-state/CURRENT.md` with completion status.