ccgx-workflow 1.0.3 → 1.0.5

package/README.md

@@ -16,7 +16,7 @@
 > `ccgx-workflow` is a deep rewrite of [`ccg-workflow`](https://www.npmjs.com/package/ccg-workflow) v3.x.
 > The original project went unmaintained after 2026-05 (the original author's
 > GitHub homepage went offline), leaving its multi-model collaboration users
-> exposed to drift. This project re-architected from v4.0 onward:
+> exposed to drift. This project re-architected from the ground up:
 > fresh-context subagent protocols, Plan-Critic-Verify quality tiers,
 > OS-level three-layer process isolation, broker tx_id anti-drift,
 > and 8 plugin patches with a one-shot repatch script.

package/dist/cli.mjs

@@ -1,16 +1,19 @@
 #!/usr/bin/env node
 import cac from 'cac';
 import ansis from 'ansis';
-import { d as diagnoseMcpConfig, i as isWindows, r as readClaudeCodeConfig, f as fixWindowsMcpConfig, w as writeClaudeCodeConfig, a as readCcgConfig, b as initI18n, c as i18n, s as showMainMenu, e as init, g as configMcp, v as version } from './shared/ccgx-workflow.BnfaZnVu.mjs';
+import { d as diagnoseMcpConfig, i as isWindows, r as readClaudeCodeConfig, f as fixWindowsMcpConfig, w as writeClaudeCodeConfig, a as readCcgConfig, b as initI18n, c as i18n, s as showMainMenu, e as init, g as configMcp, v as version } from './shared/ccgx-workflow.CZSjTyQd.mjs';
+import { execSync } from 'node:child_process';
 import 'inquirer';
 import 'ora';
-import 'node:child_process';
 import 'node:util';
 import 'node:os';
 import 'node:url';
 import 'pathe';
 import 'fs-extra';
 import 'smol-toml';
+import 'node:fs';
+import 'node:path/posix';
+import 'node:path';
 import 'i18next';
 
 async function diagnoseMcp() {
@@ -72,6 +75,177 @@ async function fixMcp() {
   }
 }
 
+function categorize(cmdLine) {
+  const cmd = cmdLine.toLowerCase();
+  if (/quasar|vite|webpack|next\b|nuxt|astro|svelte-kit|pnpm.*run.*dev|npm.*run.*dev|yarn.*run.*dev|yarn dev|pnpm dev|npm run dev/.test(cmd)) {
+    return "dev-server";
+  }
+  if (/ccg-phase-runner-launcher|ccgx-call-plugin/.test(cmd)) return "phase-runner";
+  if (/codex-companion|codex-cli|@openai\/codex|openai-codex.*codex/.test(cmd)) return "codex-cli";
+  if (/gemini-companion|@google\/gemini-cli|google-gemini.*gemini/.test(cmd)) return "gemini-cli";
+  if (/playwright|context7|contextweaver|fast-context|ace-tool/.test(cmd)) return "mcp-server";
+  return "other";
+}
+function listNodeProcessesWindows() {
+  const ps = `Get-CimInstance Win32_Process -Filter "Name='node.exe'" | ForEach-Object {
+    $cd = $_.CreationDate
+    $h = if ($cd) { ((Get-Date) - $cd).TotalHours } else { 0 }
+    $cmd = if ($_.CommandLine) { $_.CommandLine } else { '' }
+    "$($_.ProcessId)|$h|$cmd"
+  }`;
+  let out;
+  try {
+    out = execSync(`powershell -NoProfile -Command "${ps.replace(/\n\s+/g, " ")}"`, {
+      encoding: "utf-8",
+      maxBuffer: 16 * 1024 * 1024
+    });
+  } catch {
+    return [];
+  }
+  const procs = [];
+  for (const line of out.split(/\r?\n/)) {
+    const trimmed = line.trim();
+    if (!trimmed) continue;
+    const sep1 = trimmed.indexOf("|");
+    const sep2 = trimmed.indexOf("|", sep1 + 1);
+    if (sep1 < 0 || sep2 < 0) continue;
+    const pid = Number.parseInt(trimmed.slice(0, sep1), 10);
+    const ageHours = Number.parseFloat(trimmed.slice(sep1 + 1, sep2));
+    const cmdLine = trimmed.slice(sep2 + 1);
+    if (Number.isNaN(pid)) continue;
+    procs.push({
+      pid,
+      ageHours: Number.isFinite(ageHours) ? ageHours : 0,
+      cmdLine,
+      category: categorize(cmdLine)
+    });
+  }
+  return procs;
+}
+function listNodeProcessesPosix() {
+  let out;
+  try {
+    out = execSync("ps -eo pid,etime,command", { encoding: "utf-8", maxBuffer: 16 * 1024 * 1024 });
+  } catch {
+    return [];
+  }
+  const procs = [];
+  for (const line of out.split("\n").slice(1)) {
+    const m = line.match(/^\s*(\d+)\s+(\S+)\s+(.+)$/);
+    if (!m) continue;
+    const cmdLine = m[3];
+    if (!/(^|\/)node(\s|$)/.test(cmdLine)) continue;
+    const pid = Number.parseInt(m[1], 10);
+    const etime = m[2];
+    const parts = etime.split(/[-:]/).map((s) => Number.parseInt(s, 10));
+    let ageHours = 0;
+    if (parts.length === 4) ageHours = parts[0] * 24 + parts[1] + parts[2] / 60;
+    else if (parts.length === 3) ageHours = parts[0] + parts[1] / 60;
+    else if (parts.length === 2) ageHours = parts[0] / 60;
+    procs.push({
+      pid,
+      ageHours,
+      cmdLine,
+      category: categorize(cmdLine)
+    });
+  }
+  return procs;
+}
+function listNodeProcesses() {
+  return isWindows() ? listNodeProcessesWindows() : listNodeProcessesPosix();
+}
+function killProcessWindows(pid) {
+  try {
+    execSync(`powershell -NoProfile -Command "Stop-Process -Id ${pid} -Force -ErrorAction Stop"`, { stdio: "pipe" });
+    return { ok: true, method: "Stop-Process" };
+  } catch {
+  }
+  try {
+    execSync(`taskkill /F /PID ${pid}`, { stdio: "pipe" });
+    return { ok: true, method: "taskkill /F" };
+  } catch {
+  }
+  try {
+    execSync(`wmic process where "ProcessId=${pid}" delete`, { stdio: "pipe" });
+    return { ok: true, method: "wmic delete" };
+  } catch (e) {
+    return { ok: false, method: "all-failed", error: e instanceof Error ? e.message : String(e) };
+  }
+}
+function killProcessPosix(pid) {
+  try {
+    execSync(`kill -TERM ${pid}`, { stdio: "pipe" });
+    return { ok: true, method: "SIGTERM" };
+  } catch {
+  }
+  try {
+    execSync(`kill -KILL ${pid}`, { stdio: "pipe" });
+    return { ok: true, method: "SIGKILL" };
+  } catch (e) {
+    return { ok: false, method: "all-failed", error: e instanceof Error ? e.message : String(e) };
+  }
+}
+async function killOrphans(options = {}) {
+  const dryRun = options.dryRun ?? true;
+  const minAgeHours = options.minAgeHours ?? 1;
+  console.log(ansis.cyan.bold("\n  ccgx kill-orphans"));
+  console.log(ansis.gray(`  ${dryRun ? "[DRY-RUN]" : "[KILL MODE]"} target: orphan node processes >${minAgeHours}h
+`));
+  const all = listNodeProcesses();
+  if (all.length === 0) {
+    console.log(ansis.yellow("  No node processes found (or unable to list)."));
+    return;
+  }
+  const groups = /* @__PURE__ */ new Map();
+  for (const p of all) {
+    if (!groups.has(p.category)) groups.set(p.category, []);
+    groups.get(p.category).push(p);
+  }
+  console.log(ansis.bold("  Inventory:"));
+  for (const cat of ["mcp-server", "codex-cli", "gemini-cli", "phase-runner", "dev-server", "other"]) {
+    const list = groups.get(cat) ?? [];
+    if (list.length === 0) continue;
+    const oldestH = Math.max(...list.map((p) => p.ageHours));
+    const tag = cat === "dev-server" ? ansis.green("SAFE") : cat === "other" ? ansis.gray("UNKN") : ansis.yellow("ORPH");
+    console.log(`    ${tag} ${cat.padEnd(14)} ${String(list.length).padStart(3)} processes  (oldest ${oldestH.toFixed(1)}h)`);
+  }
+  console.log();
+  const ORPHAN_CATS = ["mcp-server", "codex-cli", "gemini-cli", "phase-runner"];
+  const targets = all.filter((p) => ORPHAN_CATS.includes(p.category) && p.ageHours >= minAgeHours);
+  if (targets.length === 0) {
+    console.log(ansis.green(`  \u2713 No orphans >${minAgeHours}h to clean.`));
+    return;
+  }
+  console.log(ansis.bold(`  Targets (${targets.length}):`));
+  for (const p of targets) {
+    const cmdShort = p.cmdLine.length > 70 ? `${p.cmdLine.slice(0, 70)}...` : p.cmdLine;
+    console.log(`    PID ${String(p.pid).padStart(6)}  ${p.ageHours.toFixed(1).padStart(5)}h  ${ansis.gray(p.category.padEnd(14))} ${cmdShort}`);
+  }
+  console.log();
+  if (dryRun) {
+    console.log(ansis.gray(`  Run with --kill to actually terminate (skips dev-server / other categories).`));
+    return;
+  }
+  const killer = isWindows() ? killProcessWindows : killProcessPosix;
+  let killed = 0;
+  let failed = 0;
+  for (const p of targets) {
+    const r = killer(p.pid);
+    if (r.ok) {
+      console.log(ansis.green(`  \u2713 killed PID ${p.pid} via ${r.method}`));
+      killed += 1;
+    } else {
+      console.log(ansis.red(`  \u2717 PID ${p.pid} could not be terminated (${r.error})`));
+      failed += 1;
+    }
+  }
+  console.log();
+  console.log(ansis.bold(`  Result: ${killed} killed, ${failed} failed`));
+  if (failed > 0) {
+    console.log(ansis.yellow("  Some processes refused all kill methods (may require reboot or admin elevation)."));
+  }
+}
+
 function customizeHelp(sections) {
   sections.unshift({
     title: "",
@@ -150,6 +324,12 @@ async function setupCommands(cli) {
   cli.command("diagnose-mcp", i18n.t("cli:help.commandDescriptions.diagnoseMcp")).action(async () => {
     await diagnoseMcp();
   });
+  cli.command("kill-orphans", "\u6E05\u7406 Claude Code session \u9000\u51FA\u540E\u6B8B\u7559\u7684\u5B64\u513F node \u8FDB\u7A0B\uFF08MCP server / codex / gemini\uFF09").option("--kill", "\u5B9E\u9645\u6267\u884C kill (\u9ED8\u8BA4 dry-run)").option("--min-age-hours <N>", "\u53EA\u6E05\u7406\u8D85\u8FC7 N \u5C0F\u65F6\u7684\u8FDB\u7A0B (\u9ED8\u8BA4 1)").action(async (options) => {
+    await killOrphans({
+      dryRun: !options.kill,
+      minAgeHours: options.minAgeHours ? Number.parseFloat(options.minAgeHours) : 1
+    });
+  });
   cli.command("fix-mcp", i18n.t("cli:help.commandDescriptions.fixMcp")).action(async () => {
     await fixMcp();
   });

package/dist/index.mjs

@@ -1,5 +1,5 @@
-import { h as collectSkills } from './shared/ccgx-workflow.BnfaZnVu.mjs';
-export { j as changeLanguage, F as checkForUpdates, H as collectInvocableSkills, G as compareVersions, l as createDefaultConfig, m as createDefaultRouting, I as generateCommandContent, n as getCcgDir, o as getConfigPath, D as getCurrentVersion, E as getLatestVersion, q as getWorkflowById, p as getWorkflowConfigs, c as i18n, e as init, b as initI18n, x as installAceTool, y as installAceToolRs, J as installSkillCommands, t as installWorkflows, B as migrateToV1_4_0, C as needsMigration, K as parseFrontmatter, a as readCcgConfig, s as showMainMenu, A as uninstallAceTool, z as uninstallWorkflows, u as update, k as writeCcgConfig } from './shared/ccgx-workflow.BnfaZnVu.mjs';
+import { h as collectSkills } from './shared/ccgx-workflow.CZSjTyQd.mjs';
+export { j as changeLanguage, F as checkForUpdates, H as collectInvocableSkills, G as compareVersions, l as createDefaultConfig, m as createDefaultRouting, I as generateCommandContent, n as getCcgDir, o as getConfigPath, D as getCurrentVersion, E as getLatestVersion, q as getWorkflowById, p as getWorkflowConfigs, c as i18n, e as init, b as initI18n, x as installAceTool, y as installAceToolRs, J as installSkillCommands, t as installWorkflows, B as migrateToV1_4_0, C as needsMigration, K as parseFrontmatter, a as readCcgConfig, s as showMainMenu, A as uninstallAceTool, z as uninstallWorkflows, u as update, k as writeCcgConfig } from './shared/ccgx-workflow.CZSjTyQd.mjs';
 import { existsSync, readFileSync, mkdirSync, writeFileSync, statSync, readdirSync } from 'node:fs';
 import { join, dirname } from 'node:path';
 import { homedir } from 'node:os';
@@ -12,6 +12,7 @@ import 'node:url';
 import 'pathe';
 import 'fs-extra';
 import 'smol-toml';
+import 'node:path/posix';
 import 'i18next';
 
 function phaseDir(workdir, phase) {

package/dist/shared/{ccgx-workflow.BnfaZnVu.mjs → ccgx-workflow.CZSjTyQd.mjs}

@@ -8,9 +8,12 @@ import { fileURLToPath } from 'node:url';
 import { join, dirname, relative, sep, basename } from 'pathe';
 import fs from 'fs-extra';
 import { parse, stringify } from 'smol-toml';
+import { existsSync, readFileSync } from 'node:fs';
+import { join as join$2 } from 'node:path/posix';
+import { join as join$1 } from 'node:path';
 import i18next from 'i18next';
 
-const version = "1.0.3";
+const version = "1.0.5";
 
 function cmd(id, order, category, name, nameEn, description, descriptionEn, cmdOverride) {
   return {
@@ -291,6 +294,61 @@ function getMcpCommand(command) {
   return [command];
 }
 
+const VENDOR_MARKETPLACE_KEYS = {
+  codex: "codex@openai-codex",
+  gemini: "gemini@google-gemini"
+};
+function discoverCompanion(vendor, homeDir = homedir()) {
+  const ssotPath = join$1(homeDir, ".claude", "plugins", "installed_plugins.json");
+  if (!existsSync(ssotPath)) return null;
+  let raw;
+  try {
+    raw = JSON.parse(readFileSync(ssotPath, "utf-8"));
+  } catch {
+    return null;
+  }
+  const key = VENDOR_MARKETPLACE_KEYS[vendor];
+  const instances = raw?.plugins?.[key];
+  if (!Array.isArray(instances) || instances.length === 0) return null;
+  const inst = instances[0];
+  const installPath = inst?.installPath;
+  if (typeof installPath !== "string" || !installPath) return null;
+  const companionPath = join$1(installPath, "scripts", `${vendor}-companion.mjs`);
+  if (!existsSync(companionPath)) return null;
+  const version = typeof inst?.version === "string" ? inst.version : "unknown";
+  return { vendor, installPath, companionPath, version };
+}
+function shellQuotePosix(s) {
+  return `'${s.replace(/'/g, "'\\''")}'`;
+}
+function defaultHelperPath(homeDir) {
+  const normalized = homeDir.replace(/\\/g, "/");
+  return join$2(normalized, ".claude", ".ccg", "scripts", "ccgx-call-plugin.mjs");
+}
+function buildBashCommand(_loc, options = {}) {
+  const jsonOutput = options.jsonOutput ?? true;
+  const homeDir = options.homeDir ?? homedir();
+  const helperPath = options.helperPath ?? defaultHelperPath(homeDir);
+  const quotedHelper = shellQuotePosix(helperPath);
+  const vendor = _loc.vendor;
+  const jsonFlag = jsonOutput ? " --json" : "";
+  return `node ${quotedHelper} ${vendor}${jsonFlag}`;
+}
+function buildPluginMissingFallback(vendor) {
+  const key = VENDOR_MARKETPLACE_KEYS[vendor];
+  return [
+    `# CCG: ${vendor} plugin (${key}) not installed at CCG install time.`,
+    `# Install with: claude plugin install ${key}`,
+    `# Then re-run: npx ccgx-workflow init --skip-prompt --skip-mcp`,
+    `echo 'CCG: ${vendor} plugin not available' >&2 && exit 1`
+  ].join("\n");
+}
+function resolvePluginBashCommand(vendor, options = {}, homeDir) {
+  const loc = discoverCompanion(vendor, homeDir);
+  if (!loc) return buildPluginMissingFallback(vendor);
+  return buildBashCommand(loc, { ...options, homeDir: options.homeDir });
+}
+
 const __filename$2 = fileURLToPath(import.meta.url);
 const __dirname$2 = dirname(__filename$2);
 function findPackageRoot$1(startDir) {
@@ -356,6 +414,18 @@ function injectConfigVariables(content, config) {
   }
   const liteModeFlag = config.liteMode ? "--lite " : "";
   processed = processed.replace(/\{\{LITE_MODE_FLAG\}\}/g, liteModeFlag);
+  if (processed.includes("{{CODEX_BASH_TASK}}")) {
+    processed = processed.replace(/\{\{CODEX_BASH_TASK\}\}/g, resolvePluginBashCommand("codex"));
+  }
+  if (processed.includes("{{CODEX_BASH_TASK_TEXT}}")) {
+    processed = processed.replace(/\{\{CODEX_BASH_TASK_TEXT\}\}/g, resolvePluginBashCommand("codex", { jsonOutput: false }));
+  }
+  if (processed.includes("{{GEMINI_BASH_TASK}}")) {
+    processed = processed.replace(/\{\{GEMINI_BASH_TASK\}\}/g, resolvePluginBashCommand("gemini"));
+  }
+  if (processed.includes("{{GEMINI_BASH_TASK_TEXT}}")) {
+    processed = processed.replace(/\{\{GEMINI_BASH_TASK_TEXT\}\}/g, resolvePluginBashCommand("gemini", { jsonOutput: false }));
+  }
   const mcpProvider = config.mcpProvider || "ace-tool";
   if (mcpProvider === "skip") {
     processed = processed.replace(/,\s*\{\{MCP_SEARCH_TOOL\}\}/g, "");
@@ -1282,6 +1352,14 @@ async function installShim(ctx) {
         await fs.chmod(destLauncher, 493);
       }
     }
+    const srcCallPlugin = join(ctx.templateDir, "scripts", "ccgx-call-plugin.mjs");
+    if (await fs.pathExists(srcCallPlugin)) {
+      const destCallPlugin = join(scriptDir, "ccgx-call-plugin.mjs");
+      await fs.copy(srcCallPlugin, destCallPlugin, { overwrite: true });
+      if (process.platform !== "win32") {
+        await fs.chmod(destCallPlugin, 493);
+      }
+    }
     if (process.platform === "win32") {
       const cmdMjs = destMjs.replace(/\//g, "\\");
       const cmdPath = join(binDir, "codeagent-wrapper.cmd");

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ccgx-workflow",
-  "version": "1.0.3",
+  "version": "1.0.5",
   "description": "Multi-model orchestration for Claude Code. Codex + Gemini parallel collaboration with fresh-context subagent protocols, OS-level process isolation, and Plan-Critic-Verify quality tiers. Successor to ccg-workflow.",
   "type": "module",
   "packageManager": "pnpm@10.17.1",

package/templates/commands/agents/code-fixer.md

@@ -5,7 +5,7 @@ tools: Read, Write, Edit, Bash, Glob, Grep
 color: orange
 ---
 
-你是 **Code Fixer**——CCG v4.0 `/ccg:review --fix` 闭环修复链路的专职修复 agent。你的任务**不**是探索代码或讨论方案，而是**严格按 REVIEW.md 的 finding 逐项应用机械化修复**，并在工程级保护下提交原子 commit。
+你是 **Code Fixer**——CCG `/ccg:review --fix` 闭环修复链路的专职修复 agent。你的任务**不**是探索代码或讨论方案，而是**严格按 REVIEW.md 的 finding 逐项应用机械化修复**，并在工程级保护下提交原子 commit。
 
 主线 spawn 你时已经把 base SHA / phase 编号 / REVIEW.md 路径喂给你。**你必须先建 worktree 隔离再动代码**——这不是建议而是契约。
 

package/templates/commands/agents/codebase-mapper.md

@@ -5,7 +5,7 @@ tools: Read, Bash, Grep, Glob, Write
 color: cyan
 ---
 
-你是 **代码库映射师 (Codebase Mapper)**——CCG v4.0 借鉴 GSD `gsd-codebase-mapper` 的廉价 codebase 摘要机制。**调用方不会读你的扫描中间产物**：你直接把分析写到 `.context/codebase/` 下的目标文件，调用方只接收一行确认 + 文件路径。
+你是 **代码库映射师 (Codebase Mapper)**——CCG 借鉴 GSD `gsd-codebase-mapper` 的廉价 codebase 摘要机制。**调用方不会读你的扫描中间产物**：你直接把分析写到 `.context/codebase/` 下的目标文件，调用方只接收一行确认 + 文件路径。
 
 主线 spawn 你时通常采用**4 路并行**（tech / arch / quality / concerns 各一个 instance），让 plan/execute/init 启动前有一份廉价的 codebase 全貌索引，主线不必每次重新探索。
 

package/templates/commands/agents/debug-session-manager.md

@@ -5,7 +5,7 @@ tools: Read, Write, Edit, Bash, Grep, Glob, Task, AskUserQuestion
 color: orange
 ---
 
-你是 **Debug Session Manager**——CCG v4.0 `/ccg:debug` 重写的核心子 agent。主线（debug.md）把整个多轮调试循环托付给你，你内部 spawn `debugger` subagent 反复构造 / 验证 hypothesis，最终返回主线一条**严格 ≤ 200 token** 的紧凑结构化摘要。
+你是 **Debug Session Manager**——CCG `/ccg:debug` 重写的核心子 agent。主线（debug.md）把整个多轮调试循环托付给你，你内部 spawn `debugger` subagent 反复构造 / 验证 hypothesis，最终返回主线一条**严格 ≤ 200 token** 的紧凑结构化摘要。
 
 主线**不会读你的 transcript**——你的所有中间产出都不会污染主线 context。所以摘要必须自包含、机器可解析。
 

package/templates/commands/agents/debugger.md

@@ -5,7 +5,7 @@ tools: Read, Bash, Grep, Glob, WebSearch
 color: orange
 ---
 
-你是 **Debugger**——CCG v4.0 `/ccg:debug` 链路里负责"提出 hypothesis + 给可证伪测试方案"的最底层 agent。你**不**直接修改代码、**不**应用 fix、**不**写 session 文件——这些是 `debug-session-manager` 的活。你的输出**只**是结构化的下一个 hypothesis 建议。
+你是 **Debugger**——CCG `/ccg:debug` 链路里负责"提出 hypothesis + 给可证伪测试方案"的最底层 agent。你**不**直接修改代码、**不**应用 fix、**不**写 session 文件——这些是 `debug-session-manager` 的活。你的输出**只**是结构化的下一个 hypothesis 建议。
 
 > 移植参考：GSD `gsd-debugger`（02-subagent-matrix.md Section 2.3）。CCG 工程契约见 `src/utils/debug-session.ts:makeHypothesis()`。
 

package/templates/commands/agents/interface-auditor.md

@@ -5,7 +5,7 @@ tools: Read, Glob, Grep, Bash
 color: cyan
 ---
 
-你是 **接口审计专员 (Interface Auditor)**——CCG v4.3 Phase 27 引入的跨 phase verifier specialist。每个 phase commit 后由主线 spawn 一次（在 quality-router triple/debate 的 verify wave 内并行），审视本次 commit 引入的代码改动是否违反 5 类**真实事故型**风险。
+你是 **接口审计专员 (Interface Auditor)**——跨 phase verifier specialist。每个 phase commit 后由主线 spawn 一次（在 quality-router triple/debate 的 verify wave 内并行），审视本次 commit 引入的代码改动是否违反 5 类**真实事故型**风险。
 
 ## 你必须诚实的五条铁则
 
@@ -35,7 +35,7 @@ phase_files: [<本 phase 修改/新增的相对路径>]
 
 ### 1. SSoT 违反（critical）
 
-**目的**：检测重复 type / 重复实现（v4.2 P22 重新引入 `planVerifyWave` 重复同型事故）。
+**目的**：检测重复 type / 重复实现（曾出现过 `planVerifyWave` 重复定义的同型事故）。
 
 **怎么做**：
 1. `git show <commit_hash> --name-only` 拿到本 phase 修改文件
@@ -51,7 +51,7 @@ phase_files: [<本 phase 修改/新增的相对路径>]
 
 ### 2. 半成品 export（major）
 
-**目的**：检测有 export 但全仓库无 import consumer（v4.1 P19 `paths:` 字段无 consumer 同型事故）。
+**目的**：检测有 export 但全仓库无 import consumer（曾出现过 `paths:` 字段无 consumer 的同型事故）。
 
 **怎么做**：
 1. 本 phase commit 文件中 grep `^export\s+(?:async\s+)?(?:function|const|class|interface|type)\s+(\w+)` → 候选导出名
@@ -66,7 +66,7 @@ phase_files: [<本 phase 修改/新增的相对路径>]
 
 ### 3. Magic string vs ground truth（critical）
 
-**目的**：检测代码里硬编码的 `subagent_type` / plugin 名 / hook event 是否跟 ground truth latest.json 实际值一致（v4.4.1 hotfix 校正：v4.0–4.4.0 全仓 `codex:rescue` / `gemini:rescue` 单前缀同型事故 — Agent subagent_type 真名是 `codex:codex-rescue` / `gemini:gemini-rescue` 双前缀；单前缀是 Skill 名，命名空间不同）。
+**目的**：检测代码里硬编码的 `subagent_type` / plugin 名 / hook event 是否跟 ground truth latest.json 实际值一致（曾出现过全仓 `codex:rescue` / `gemini:rescue` 单前缀的同型事故 — Agent subagent_type 真名是 `codex:codex-rescue` / `gemini:gemini-rescue` 双前缀；单前缀是 Skill 名，命名空间不同）。
 
 **怎么做**：
 1. Read ground_truth_path（若不存在 → skip 本检查 + info finding）
@@ -99,7 +99,32 @@ phase_files: [<本 phase 修改/新增的相对路径>]
 [{severity: info, category: commit-diff-drift, message: "subject says 'add foo' but git stat 无新建 foo 路径文件 (best-effort 检测，可能误报)"}]
 ```
 
-### 5. Mock 与 ground truth schema 偏差（info/major）
+### 5. Inline plugin Bash 命令拼接（critical，1.0.4 新增）
+
+**目的**：检测模板里有没有手写 inline plugin companion 调用命令——绕过 install-time codegen 占位符（`{{CODEX_BASH_TASK}}` / `{{GEMINI_BASH_TASK}}` / `{{CODEX_BASH_TASK_TEXT}}` / `{{GEMINI_BASH_TASK_TEXT}}`），重新引入"flag 漂移 + 路径 glob hack"的同型风险。
+
+**为什么这是 critical**：
+
+- inline 拼接给 LLM 自由发挥空间——LLM 看到 inline 命令示例后会**编造**未在示例中出现的 flag（历史曾出现 195 处接口名漂移事故）
+- 用 glob + `head` 解析 plugin 路径在多版本 cache 下行为不可预测（installed_plugins.json 才是 SSoT）
+- 跳过 install-time codegen 意味着 plugin 未装时模板**静默坏掉**而不是给出清晰错误
+
+**怎么做**：
+1. 本 phase commit 影响的 `.md` 文件中（仅扫 `templates/commands/**.md`）grep：
+   - `node\s+["'`].*?-companion\.mjs.*?\btask\b.*?-p\b` — inline 命令模式
+   - `\$\(ls\s+.*-companion\.mjs.*head\s+-1\)` — glob hack 模式
+   - `buildPluginBashCommand\s*\(` — TS-helper 伪代码模式（codex 审计提到的"helper opts 漂移"风险）
+2. 命中即 critical，除非该出现位置是：
+   - 1.0.4+ CHANGELOG / migration doc 的"反例对照"段落
+   - `agents/interface-auditor.md` 自身（本 rule 说明）
+   - 测试 fixture（`__tests__/`、`fixtures/`、`*.test.*`）
+
+**critical 例子**：
+```
+[{severity: critical, category: inline-plugin-bash, message: "review.md line N: inline plugin companion 命令拼接 — 应改用 {{CODEX_BASH_TASK}} install-time codegen 占位符"}]
+```
+
+### 6. Mock 与 ground truth schema 偏差（info/major）
 
 **目的**：测试 mock 数据跟真实 schema 不一致（与 P28 fixtures 协作；本 agent 仅做轻量提示）。
 
@@ -123,14 +148,15 @@ phase_files: [<本 phase 修改/新增的相对路径>]
 2. `git show <commit_hash> --name-only` → phase_files 验证；若 prompt 给的列表跟 git 不一致以 git 为准
 3. 过滤掉非 `.ts` / `.md` / `package.json` 的文件（图片、bin 等不审）
 
-### Step 2: 五项检查并行思考
-对每个 phase 修改文件分别跑 5 项检查的 grep。每条命中产出一个 Finding 候选。
+### Step 2: 六项检查并行思考
+对每个 phase 修改文件分别跑 6 项检查的 grep。每条命中产出一个 Finding 候选。
 
 ### Step 3: 假阳性过滤
 - SSoT 违反：排除测试文件、type union 同名、re-export
 - 半成品：排除 default export、type-only re-export 到 index.ts
 - magic string：排除 CCG 自家 agent 名（白名单）
 - commit drift：用模糊匹配，命中率不高时降级 info
+- inline-plugin-bash：排除 CHANGELOG/migration 反例段、interface-auditor.md 自身说明、测试 fixture
 - mock drift：纯 best-effort，全部标 info severity
 
 ### Step 4: 输出 ≤200 token 摘要
@@ -139,7 +165,7 @@ phase_files: [<本 phase 修改/新增的相对路径>]
 
 ```
 STATUS: complete | error
-FINDINGS: [{severity: critical|major|info, category: ssot-violation|leftover|magic-string-mismatch|commit-diff-drift|mock-drift, message: "<具体证据 + 文件路径 + 行号>"}, ...]
+FINDINGS: [{severity: critical|major|info, category: ssot-violation|leftover|magic-string-mismatch|commit-diff-drift|inline-plugin-bash|mock-drift, message: "<具体证据 + 文件路径 + 行号>"}, ...]
 NOTES: <≤80 字一行总结>
 ```