devflow-kit 1.2.0 → 1.3.0

package/plugins/devflow-code-review/skills/consistency-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: consistency-patterns
-description: Consistency analysis patterns for code review. Detects naming convention violations, pattern deviations, unnecessary simplification, and feature truncation in diffs. Loaded by Reviewer agent when focus=consistency.
+description: This skill should be used when reviewing code for naming convention violations, pattern deviations, or inconsistent API styles.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-code-review/skills/database-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: database-patterns
-description: Database analysis patterns for code review. Detects missing indexes, slow queries, unsafe migrations, schema design issues, and connection pool misuse. Loaded by Reviewer agent when focus=database.
+description: This skill should be used when reviewing database queries, migrations, indexes, or schema changes.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-code-review/skills/dependencies-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: dependencies-patterns
-description: Dependency analysis patterns for code review. Detects known CVEs, outdated packages, license incompatibilities, and unnecessary transitive dependencies. Loaded by Reviewer agent when focus=dependencies.
+description: This skill should be used when reviewing dependency changes, lock files, or package additions.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-code-review/skills/documentation-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: documentation-patterns
-description: Documentation analysis patterns for code review. Detects doc drift from code changes, missing documentation for public APIs, stale comments, and misleading README sections. Loaded by Reviewer agent when focus=documentation.
+description: This skill should be used when reviewing for documentation drift, missing API docs, or stale comments.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-code-review/skills/performance-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: performance-patterns
-description: Performance analysis patterns for code review. Detects N+1 queries, memory leaks, unbounded allocations, I/O bottlenecks, and missing caching opportunities. Loaded by Reviewer agent when focus=performance.
+description: This skill should be used when reviewing code for N+1 queries, memory leaks, or I/O bottlenecks.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-code-review/skills/regression-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: regression-patterns
-description: Regression analysis patterns for code review. Detects lost functionality, removed exports, changed signatures, and behavioral changes that break existing consumers. Loaded by Reviewer agent when focus=regression.
+description: This skill should be used when reviewing changes that may remove exports, change signatures, or alter behavior.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-code-review/skills/review-methodology/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: review-methodology
-description: Standard review methodology providing the 6-step process and 3-category issue classification (must-fix, should-fix, nit) used by all DevFlow review agents. Ensures consistent, fair, and actionable code reviews across all focus areas. Loaded by the unified Reviewer agent.
+description: This skill should be used when performing a code review to apply the standard 6-step review process.
 user-invocable: false
 allowed-tools: Read, Grep, Glob, Bash
 ---

package/plugins/devflow-code-review/skills/security-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: security-patterns
-description: Security vulnerability analysis patterns for code review. Detects injection flaws, authentication bypasses, insecure cryptography, hardcoded secrets, and missing input sanitization. Loaded by Reviewer agent when focus=security.
+description: This skill should be used when reviewing code for injection flaws, auth bypasses, or hardcoded secrets.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-core-skills/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["skills", "quality", "patterns", "auto-activate", "enforcement", "foundation"],
+  "keywords": [
+    "skills",
+    "quality",
+    "patterns",
+    "auto-activate",
+    "enforcement",
+    "foundation"
+  ],
   "agents": [],
   "skills": [
     "core-patterns",

package/plugins/devflow-core-skills/skills/test-driven-development/SKILL.md

@@ -1,9 +1,6 @@
 ---
 name: test-driven-development
-description: >-
-  Enforce RED-GREEN-REFACTOR cycle during implementation. Write failing tests before
-  production code. Distinct from test-patterns (which reviews test quality) — this
-  skill enforces the TDD workflow during code generation.
+description: This skill should be used when implementing new features, fixing bugs, or writing new code. Enforces RED-GREEN-REFACTOR.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 activation:
@@ -94,7 +91,7 @@ See `references/rationalization-prevention.md` for extended examples with code.
 
 ## Process Enforcement
 
-When implementing any feature under ambient BUILD/STANDARD:
+When implementing any feature under ambient BUILD/GUIDED:
 
 1. **Identify the first behavior** — What is the simplest thing this feature must do?
 2. **Write the test** — Describe that behavior as a failing test
@@ -133,7 +130,7 @@ When skipping TDD, never rationalize. State clearly: "Skipping TDD because: [spe
 
 ## Integration with Ambient Mode
 
-- **BUILD/STANDARD** → TDD enforced. Every new function/method gets test-first treatment.
+- **BUILD/GUIDED** → TDD enforced. Every new function/method gets test-first treatment.
 - **BUILD/QUICK** → TDD skipped (trivial single-file edit).
-- **BUILD/ESCALATE** → TDD mentioned in nudge toward `/implement`.
-- **DEBUG/STANDARD** → TDD applies to the fix: write a test that reproduces the bug first, then fix.
+- **BUILD/ELEVATE** → TDD mentioned in nudge toward `/implement`.
+- **DEBUG/GUIDED** → TDD applies to the fix: write a test that reproduces the bug first, then fix.

package/plugins/devflow-debug/.claude-plugin/plugin.json

@@ -5,12 +5,19 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["debugging", "hypotheses", "investigation", "agent-teams"],
-  "agents": ["git"],
+  "keywords": [
+    "debugging",
+    "hypotheses",
+    "investigation",
+    "agent-teams"
+  ],
+  "agents": [
+    "git"
+  ],
   "skills": [
     "agent-teams",
     "git-safety"

package/plugins/devflow-frontend-design/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["design", "typography", "color", "css"],
+  "keywords": [
+    "design",
+    "typography",
+    "color",
+    "css"
+  ],
   "agents": [],
-  "skills": ["frontend-design"]
+  "skills": [
+    "frontend-design"
+  ]
 }

package/plugins/devflow-go/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["go", "golang", "concurrency", "errors"],
+  "keywords": [
+    "go",
+    "golang",
+    "concurrency",
+    "errors"
+  ],
   "agents": [],
-  "skills": ["go"]
+  "skills": [
+    "go"
+  ]
 }

package/plugins/devflow-implement/.claude-plugin/plugin.json

@@ -5,12 +5,28 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["implementation", "coding", "workflow", "agents", "agentic", "pr"],
-  "agents": ["git", "skimmer", "synthesizer", "coder", "simplifier", "scrutinizer", "shepherd", "validator"],
+  "keywords": [
+    "implementation",
+    "coding",
+    "workflow",
+    "agents",
+    "agentic",
+    "pr"
+  ],
+  "agents": [
+    "git",
+    "skimmer",
+    "synthesizer",
+    "coder",
+    "simplifier",
+    "scrutinizer",
+    "shepherd",
+    "validator"
+  ],
   "skills": [
     "agent-teams",
     "implementation-patterns",

package/plugins/devflow-implement/skills/self-review/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: self-review
-description: Self-review framework evaluating implementation quality against 9 pillars (correctness, completeness, security, performance, maintainability, testing, documentation, error handling, simplicity). Fixes P0/P1 issues immediately rather than reporting them. Used by the Scrutinizer agent as a quality gate.
+description: This skill should be used when evaluating implementation quality before submission, checking correctness, security, and simplicity.
 user-invocable: false
 allowed-tools: Read, Grep, Glob, Edit, Write, Bash
 ---

package/plugins/devflow-java/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["java", "records", "sealed-classes", "composition"],
+  "keywords": [
+    "java",
+    "records",
+    "sealed-classes",
+    "composition"
+  ],
   "agents": [],
-  "skills": ["java"]
+  "skills": [
+    "java"
+  ]
 }

package/plugins/devflow-python/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["python", "type-hints", "dataclasses", "async"],
+  "keywords": [
+    "python",
+    "type-hints",
+    "dataclasses",
+    "async"
+  ],
   "agents": [],
-  "skills": ["python"]
+  "skills": [
+    "python"
+  ]
 }

package/plugins/devflow-react/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["react", "hooks", "state", "components"],
+  "keywords": [
+    "react",
+    "hooks",
+    "state",
+    "components"
+  ],
   "agents": [],
-  "skills": ["react"]
+  "skills": [
+    "react"
+  ]
 }

package/plugins/devflow-resolve/.claude-plugin/plugin.json

@@ -5,12 +5,22 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["issues", "fixes", "tech-debt", "resolution", "review"],
-  "agents": ["git", "resolver", "simplifier"],
+  "keywords": [
+    "issues",
+    "fixes",
+    "tech-debt",
+    "resolution",
+    "review"
+  ],
+  "agents": [
+    "git",
+    "resolver",
+    "simplifier"
+  ],
   "skills": [
     "implementation-patterns",
     "security-patterns",

package/plugins/devflow-resolve/skills/security-patterns/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: security-patterns
-description: Security vulnerability analysis patterns for code review. Detects injection flaws, authentication bypasses, insecure cryptography, hardcoded secrets, and missing input sanitization. Loaded by Reviewer agent when focus=security.
+description: This skill should be used when reviewing code for injection flaws, auth bypasses, or hardcoded secrets.
 user-invocable: false
 allowed-tools: Read, Grep, Glob
 ---

package/plugins/devflow-rust/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["rust", "ownership", "borrowing", "type-safety"],
+  "keywords": [
+    "rust",
+    "ownership",
+    "borrowing",
+    "type-safety"
+  ],
   "agents": [],
-  "skills": ["rust"]
+  "skills": [
+    "rust"
+  ]
 }

package/plugins/devflow-self-review/.claude-plugin/plugin.json

@@ -1,7 +1,14 @@
 {
   "name": "devflow-self-review",
   "description": "Self-review workflow: Simplifier + Scrutinizer for code quality",
-  "version": "1.2.0",
-  "agents": ["simplifier", "scrutinizer", "validator"],
-  "skills": ["self-review", "core-patterns"]
+  "version": "1.3.0",
+  "agents": [
+    "simplifier",
+    "scrutinizer",
+    "validator"
+  ],
+  "skills": [
+    "self-review",
+    "core-patterns"
+  ]
 }

package/plugins/devflow-self-review/skills/self-review/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: self-review
-description: Self-review framework evaluating implementation quality against 9 pillars (correctness, completeness, security, performance, maintainability, testing, documentation, error handling, simplicity). Fixes P0/P1 issues immediately rather than reporting them. Used by the Scrutinizer agent as a quality gate.
+description: This skill should be used when evaluating implementation quality before submission, checking correctness, security, and simplicity.
 user-invocable: false
 allowed-tools: Read, Grep, Glob, Edit, Write, Bash
 ---

package/plugins/devflow-specify/.claude-plugin/plugin.json

@@ -5,11 +5,22 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["specification", "requirements", "planning", "issues", "github"],
-  "agents": ["skimmer", "synthesizer"],
-  "skills": ["agent-teams"]
+  "keywords": [
+    "specification",
+    "requirements",
+    "planning",
+    "issues",
+    "github"
+  ],
+  "agents": [
+    "skimmer",
+    "synthesizer"
+  ],
+  "skills": [
+    "agent-teams"
+  ]
 }

package/plugins/devflow-typescript/.claude-plugin/plugin.json

@@ -5,11 +5,18 @@
     "name": "DevFlow Contributors",
     "email": "dean@keren.dev"
   },
-  "version": "1.2.0",
+  "version": "1.3.0",
   "homepage": "https://github.com/dean0x/devflow",
   "repository": "https://github.com/dean0x/devflow",
   "license": "MIT",
-  "keywords": ["typescript", "types", "generics", "type-safety"],
+  "keywords": [
+    "typescript",
+    "types",
+    "generics",
+    "type-safety"
+  ],
   "agents": [],
-  "skills": ["typescript"]
+  "skills": [
+    "typescript"
+  ]
 }

package/scripts/hooks/{ambient-prompt.sh → ambient-prompt}

@@ -5,7 +5,7 @@
 # relevant skill loading via the ambient-router skill.
 # Zero file I/O beyond stdin — static injection only.
 
-set -euo pipefail
+set -e
 
 # jq is required to parse hook input JSON — silently no-op if missing
 if ! command -v jq &>/dev/null; then exit 0; fi
@@ -33,12 +33,12 @@ fi
 # Inject classification preamble
 PREAMBLE="AMBIENT MODE ACTIVE: Before responding, silently classify this prompt:
 Intent: BUILD | DEBUG | REVIEW | PLAN | EXPLORE | CHAT
-Depth: QUICK (no overhead) | STANDARD (load skills) | ESCALATE (suggest /command)
+Depth: QUICK (no overhead) | GUIDED (load skills) | ELEVATE (suggest /command)
 
-If STANDARD+: Read the ambient-router skill for classification details and skill selection matrix. For BUILD tasks, also load test-driven-development skill and enforce RED-GREEN-REFACTOR.
+If GUIDED+: Use the ambient-router skill already in your session context for classification details and skill selection matrix. Then Read the selected skills from ~/.claude/skills/<name>/SKILL.md and apply their patterns. For BUILD tasks, also load test-driven-development skill and enforce RED-GREEN-REFACTOR.
 
 If QUICK: Respond normally without stating classification.
-Only state classification aloud for STANDARD/ESCALATE."
+Only state classification aloud for GUIDED/ELEVATE."
 
 jq -n --arg ctx "$PREAMBLE" '{
   "hookSpecificOutput": {

package/scripts/hooks/{background-memory-update.sh → background-memory-update}

@@ -1,11 +1,11 @@
 #!/bin/bash
 
 # Background Working Memory Updater
-# Called by stop-update-memory.sh as a detached background process.
+# Called by stop-update-memory as a detached background process.
 # Resumes the parent session headlessly to update .memory/WORKING-MEMORY.md.
 # On failure: logs error, does nothing (no fallback).
 
-set -euo pipefail
+set -e
 
 CWD="$1"
 SESSION_ID="$2"
@@ -29,7 +29,7 @@ rotate_log() {
 
 # --- Stale Lock Recovery ---
 
-# Portable mtime in epoch seconds (same pattern as stop-update-memory.sh:35-39)
+# Portable mtime in epoch seconds (same pattern as stop-update-memory:35-39)
 get_mtime() {
   if stat --version &>/dev/null 2>&1; then
     stat -c %Y "$1"

package/scripts/hooks/{ensure-memory-gitignore.sh → ensure-memory-gitignore}

@@ -1,7 +1,7 @@
 #!/bin/bash
 # Ensures .memory/ exists and .gitignore entries are configured.
 # Called from stop and pre-compact hooks. Idempotent, ~1μs after first run.
-# Usage: source ensure-memory-gitignore.sh "$CWD"
+# Usage: source ensure-memory-gitignore "$CWD"
 
 _MEMORY_DIR="$1/.memory"
 

package/scripts/hooks/{pre-compact-memory.sh → pre-compact-memory}

@@ -6,7 +6,7 @@
 # has something to inject after compaction.
 # PreCompact hooks cannot block compaction — this is informational only.
 
-set -euo pipefail
+set -e
 
 # jq is required to parse hook input JSON — silently no-op if missing
 if ! command -v jq &>/dev/null; then exit 0; fi
@@ -19,7 +19,7 @@ if [ -z "$CWD" ]; then
 fi
 
 # Auto-create .memory/ and ensure .gitignore entries (idempotent after first run)
-source "$(cd "$(dirname "$0")" && pwd)/ensure-memory-gitignore.sh" "$CWD" || exit 0
+source "$(cd "$(dirname "$0")" && pwd)/ensure-memory-gitignore" "$CWD" || exit 0
 
 BACKUP_FILE="$CWD/.memory/backup.json"
 

package/scripts/hooks/run-hook

@@ -0,0 +1,23 @@
+: << 'CMDBLOCK'
+@echo off
+setlocal enabledelayedexpansion
+set "SCRIPT_DIR=%~dp0"
+set "HOOK_NAME=%~1"
+shift
+REM Try standard Git for Windows locations, then PATH
+set "BASH_EXE="
+if exist "C:\Program Files\Git\bin\bash.exe" set "BASH_EXE=C:\Program Files\Git\bin\bash.exe"
+if not defined BASH_EXE if exist "C:\Program Files (x86)\Git\bin\bash.exe" set "BASH_EXE=C:\Program Files (x86)\Git\bin\bash.exe"
+if not defined BASH_EXE (
+    where bash >nul 2>&1 && set "BASH_EXE=bash"
+)
+if defined BASH_EXE (
+    "%BASH_EXE%" "%SCRIPT_DIR%%HOOK_NAME%" %* & exit /b !errorlevel!
+)
+echo Warning: bash not found, DevFlow hooks require bash >&2
+exit /b 0
+CMDBLOCK
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+HOOK_NAME="$1"
+shift
+exec bash "$SCRIPT_DIR/${HOOK_NAME}" "$@"