gsd-antigravity-kit 2.0.1 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (251) hide show
  1. package/.agent/skills/gsd/SKILL.md +26 -4
  2. package/.agent/skills/gsd/VERSION +1 -1
  3. package/.agent/skills/gsd/assets/templates/AI-SPEC.md +246 -0
  4. package/.agent/skills/gsd/assets/templates/DEBUG.md +7 -2
  5. package/.agent/skills/gsd/assets/templates/config.json +56 -48
  6. package/.agent/skills/gsd/assets/templates/research.md +40 -0
  7. package/.agent/skills/gsd/assets/templates/spec.md +307 -0
  8. package/.agent/skills/gsd/assets/templates/state.md +8 -0
  9. package/.agent/skills/gsd/bin/gsd-tools.cjs +212 -11
  10. package/.agent/skills/gsd/bin/help-manifest.json +8 -2
  11. package/.agent/skills/gsd/bin/hooks/gsd-check-update-worker.js +108 -0
  12. package/.agent/skills/gsd/bin/hooks/gsd-check-update.js +14 -89
  13. package/.agent/skills/gsd/bin/hooks/gsd-context-monitor.js +34 -5
  14. package/.agent/skills/gsd/bin/hooks/gsd-phase-boundary.sh +1 -0
  15. package/.agent/skills/gsd/bin/hooks/gsd-prompt-guard.js +1 -1
  16. package/.agent/skills/gsd/bin/hooks/gsd-read-guard.js +6 -1
  17. package/.agent/skills/gsd/bin/hooks/gsd-session-state.sh +1 -0
  18. package/.agent/skills/gsd/bin/hooks/gsd-statusline.js +150 -16
  19. package/.agent/skills/gsd/bin/hooks/gsd-validate-commit.sh +1 -0
  20. package/.agent/skills/gsd/bin/hooks/gsd-workflow-guard.js +1 -1
  21. package/.agent/skills/gsd/bin/lib/audit.cjs +757 -0
  22. package/.agent/skills/gsd/bin/lib/commands.cjs +17 -7
  23. package/.agent/skills/gsd/bin/lib/config.cjs +66 -20
  24. package/.agent/skills/gsd/bin/lib/core.cjs +212 -12
  25. package/.agent/skills/gsd/bin/lib/frontmatter.cjs +6 -8
  26. package/.agent/skills/gsd/bin/lib/graphify.cjs +494 -0
  27. package/.agent/skills/gsd/bin/lib/gsd2-import.cjs +511 -0
  28. package/.agent/skills/gsd/bin/lib/init.cjs +371 -18
  29. package/.agent/skills/gsd/bin/lib/intel.cjs +9 -30
  30. package/.agent/skills/gsd/bin/lib/milestone.cjs +18 -17
  31. package/.agent/skills/gsd/bin/lib/model-profiles.cjs +1 -0
  32. package/.agent/skills/gsd/bin/lib/phase.cjs +225 -98
  33. package/.agent/skills/gsd/bin/lib/profile-output.cjs +17 -5
  34. package/.agent/skills/gsd/bin/lib/roadmap.cjs +12 -5
  35. package/.agent/skills/gsd/bin/lib/state.cjs +394 -129
  36. package/.agent/skills/gsd/bin/lib/template.cjs +8 -4
  37. package/.agent/skills/gsd/bin/lib/uat.cjs +2 -1
  38. package/.agent/skills/gsd/bin/lib/verify.cjs +111 -42
  39. package/.agent/skills/gsd/migration_report.md +2 -2
  40. package/.agent/skills/gsd/references/agents/gsd-advisor-researcher.md +23 -0
  41. package/.agent/skills/gsd/references/agents/gsd-ai-researcher.md +133 -0
  42. package/.agent/skills/gsd/references/agents/gsd-code-fixer.md +11 -10
  43. package/.agent/skills/gsd/references/agents/gsd-code-reviewer.md +2 -2
  44. package/.agent/skills/gsd/references/agents/gsd-codebase-mapper.md +13 -2
  45. package/.agent/skills/gsd/references/agents/gsd-debug-session-manager.md +314 -0
  46. package/.agent/skills/gsd/references/agents/gsd-debugger.md +147 -76
  47. package/.agent/skills/gsd/references/agents/gsd-doc-verifier.md +1 -1
  48. package/.agent/skills/gsd/references/agents/gsd-doc-writer.md +615 -602
  49. package/.agent/skills/gsd/references/agents/gsd-domain-researcher.md +153 -0
  50. package/.agent/skills/gsd/references/agents/gsd-eval-auditor.md +175 -0
  51. package/.agent/skills/gsd/references/agents/gsd-eval-planner.md +154 -0
  52. package/.agent/skills/gsd/references/agents/gsd-executor.md +108 -38
  53. package/.agent/skills/gsd/references/agents/gsd-framework-selector.md +160 -0
  54. package/.agent/skills/gsd/references/agents/gsd-integration-checker.md +454 -443
  55. package/.agent/skills/gsd/references/agents/gsd-intel-updater.md +40 -20
  56. package/.agent/skills/gsd/references/agents/gsd-nyquist-auditor.md +187 -176
  57. package/.agent/skills/gsd/references/agents/gsd-pattern-mapper.md +335 -0
  58. package/.agent/skills/gsd/references/agents/gsd-phase-researcher.md +112 -13
  59. package/.agent/skills/gsd/references/agents/gsd-plan-checker.md +104 -10
  60. package/.agent/skills/gsd/references/agents/gsd-planner.md +125 -167
  61. package/.agent/skills/gsd/references/agents/gsd-project-researcher.md +25 -2
  62. package/.agent/skills/gsd/references/agents/gsd-research-synthesizer.md +3 -3
  63. package/.agent/skills/gsd/references/agents/gsd-roadmapper.md +12 -1
  64. package/.agent/skills/gsd/references/agents/gsd-security-auditor.md +139 -128
  65. package/.agent/skills/gsd/references/agents/gsd-ui-auditor.md +3 -3
  66. package/.agent/skills/gsd/references/agents/gsd-ui-checker.md +11 -2
  67. package/.agent/skills/gsd/references/agents/gsd-ui-researcher.md +27 -4
  68. package/.agent/skills/gsd/references/agents/gsd-verifier.md +13 -19
  69. package/.agent/skills/gsd/references/commands/atomic/add-todo.md +2 -2
  70. package/.agent/skills/gsd/references/commands/atomic/check-todos.md +2 -2
  71. package/.agent/skills/gsd/references/commands/atomic/cleanup.md +2 -2
  72. package/.agent/skills/gsd/references/commands/atomic/do.md +2 -2
  73. package/.agent/skills/gsd/references/commands/atomic/help.md +2 -2
  74. package/.agent/skills/gsd/references/commands/atomic/join-discord.md +2 -2
  75. package/.agent/skills/gsd/references/commands/atomic/note.md +2 -2
  76. package/.agent/skills/gsd/references/commands/atomic/session-report.md +2 -2
  77. package/.agent/skills/gsd/references/commands/atomic/ship.md +2 -2
  78. package/.agent/skills/gsd/references/commands/atomic/stats.md +2 -2
  79. package/.agent/skills/gsd/references/commands/atomic/thread.md +141 -41
  80. package/.agent/skills/gsd/references/commands/atomic/undo.md +2 -2
  81. package/.agent/skills/gsd/references/commands/milestone/add-backlog.md +15 -12
  82. package/.agent/skills/gsd/references/commands/milestone/audit-milestone.md +2 -2
  83. package/.agent/skills/gsd/references/commands/milestone/complete-milestone.md +2 -2
  84. package/.agent/skills/gsd/references/commands/milestone/milestone-summary.md +2 -2
  85. package/.agent/skills/gsd/references/commands/milestone/new-milestone.md +2 -2
  86. package/.agent/skills/gsd/references/commands/milestone/plan-milestone-gaps.md +2 -2
  87. package/.agent/skills/gsd/references/commands/milestone/plant-seed.md +2 -2
  88. package/.agent/skills/gsd/references/commands/milestone/review-backlog.md +4 -4
  89. package/.agent/skills/gsd/references/commands/misc/ai-integration-phase.md +38 -0
  90. package/.agent/skills/gsd/references/commands/misc/audit-fix.md +2 -2
  91. package/.agent/skills/gsd/references/commands/misc/audit-uat.md +2 -2
  92. package/.agent/skills/gsd/references/commands/misc/eval-review.md +34 -0
  93. package/.agent/skills/gsd/references/commands/misc/extract_learnings.md +24 -0
  94. package/.agent/skills/gsd/references/commands/misc/from-gsd2.md +49 -0
  95. package/.agent/skills/gsd/references/commands/misc/graphify.md +203 -0
  96. package/.agent/skills/gsd/references/commands/misc/inbox.md +40 -0
  97. package/.agent/skills/gsd/references/commands/misc/next.md +5 -3
  98. package/.agent/skills/gsd/references/commands/misc/progress.md +4 -3
  99. package/.agent/skills/gsd/references/commands/misc/sketch-wrap-up.md +33 -0
  100. package/.agent/skills/gsd/references/commands/misc/sketch.md +47 -0
  101. package/.agent/skills/gsd/references/commands/misc/spec-phase.md +64 -0
  102. package/.agent/skills/gsd/references/commands/misc/spike-wrap-up.md +33 -0
  103. package/.agent/skills/gsd/references/commands/misc/spike.md +43 -0
  104. package/.agent/skills/gsd/references/commands/misc/verify-work.md +2 -2
  105. package/.agent/skills/gsd/references/commands/phase/add-phase.md +2 -2
  106. package/.agent/skills/gsd/references/commands/phase/add-tests.md +2 -2
  107. package/.agent/skills/gsd/references/commands/phase/discuss-phase.md +5 -5
  108. package/.agent/skills/gsd/references/commands/phase/execute-phase.md +4 -4
  109. package/.agent/skills/gsd/references/commands/phase/insert-phase.md +2 -2
  110. package/.agent/skills/gsd/references/commands/phase/list-phase-assumptions.md +2 -2
  111. package/.agent/skills/gsd/references/commands/phase/plan-phase.md +3 -3
  112. package/.agent/skills/gsd/references/commands/phase/remove-phase.md +2 -2
  113. package/.agent/skills/gsd/references/commands/phase/research-phase.md +5 -5
  114. package/.agent/skills/gsd/references/commands/phase/secure-phase.md +2 -2
  115. package/.agent/skills/gsd/references/commands/phase/ui-phase.md +2 -2
  116. package/.agent/skills/gsd/references/commands/phase/ui-review.md +2 -2
  117. package/.agent/skills/gsd/references/commands/phase/validate-phase.md +2 -2
  118. package/.agent/skills/gsd/references/commands/phase/workstreams.md +9 -9
  119. package/.agent/skills/gsd/references/commands/project/analyze-dependencies.md +2 -2
  120. package/.agent/skills/gsd/references/commands/project/explore.md +2 -2
  121. package/.agent/skills/gsd/references/commands/project/import.md +2 -2
  122. package/.agent/skills/gsd/references/commands/project/intel.md +10 -10
  123. package/.agent/skills/gsd/references/commands/project/list-workspaces.md +2 -2
  124. package/.agent/skills/gsd/references/commands/project/map-codebase.md +2 -2
  125. package/.agent/skills/gsd/references/commands/project/new-project.md +2 -2
  126. package/.agent/skills/gsd/references/commands/project/new-workspace.md +2 -2
  127. package/.agent/skills/gsd/references/commands/project/remove-workspace.md +2 -2
  128. package/.agent/skills/gsd/references/commands/project/scan.md +2 -2
  129. package/.agent/skills/gsd/references/commands/system/autonomous.md +4 -3
  130. package/.agent/skills/gsd/references/commands/system/code-review-fix.md +3 -3
  131. package/.agent/skills/gsd/references/commands/system/code-review.md +3 -3
  132. package/.agent/skills/gsd/references/commands/system/debug.md +177 -100
  133. package/.agent/skills/gsd/references/commands/system/docs-update.md +2 -2
  134. package/.agent/skills/gsd/references/commands/system/fast.md +2 -2
  135. package/.agent/skills/gsd/references/commands/system/forensics.md +2 -2
  136. package/.agent/skills/gsd/references/commands/system/gsd-tools.md +153 -6
  137. package/.agent/skills/gsd/references/commands/system/health.md +2 -2
  138. package/.agent/skills/gsd/references/commands/system/manager.md +3 -3
  139. package/.agent/skills/gsd/references/commands/system/pause-work.md +2 -2
  140. package/.agent/skills/gsd/references/commands/system/pr-branch.md +2 -2
  141. package/.agent/skills/gsd/references/commands/system/profile-user.md +2 -2
  142. package/.agent/skills/gsd/references/commands/system/quick.md +127 -3
  143. package/.agent/skills/gsd/references/commands/system/reapply-patches.md +45 -6
  144. package/.agent/skills/gsd/references/commands/system/resume-work.md +2 -2
  145. package/.agent/skills/gsd/references/commands/system/review.md +6 -4
  146. package/.agent/skills/gsd/references/commands/system/set-profile.md +3 -3
  147. package/.agent/skills/gsd/references/commands/system/settings.md +2 -2
  148. package/.agent/skills/gsd/references/commands/system/update.md +2 -2
  149. package/.agent/skills/gsd/references/docs/ai-evals.md +156 -0
  150. package/.agent/skills/gsd/references/docs/ai-frameworks.md +186 -0
  151. package/.agent/skills/gsd/references/docs/artifact-types.md +18 -0
  152. package/.agent/skills/gsd/references/docs/autonomous-smart-discuss.md +277 -0
  153. package/.agent/skills/gsd/references/docs/checkpoints.md +30 -0
  154. package/.agent/skills/gsd/references/docs/common-bug-patterns.md +49 -49
  155. package/.agent/skills/gsd/references/docs/continuation-format.md +11 -7
  156. package/.agent/skills/gsd/references/docs/debugger-philosophy.md +76 -0
  157. package/.agent/skills/gsd/references/docs/decimal-phase-calculation.md +64 -64
  158. package/.agent/skills/gsd/references/docs/executor-examples.md +110 -0
  159. package/.agent/skills/gsd/references/docs/git-integration.md +4 -4
  160. package/.agent/skills/gsd/references/docs/git-planning-commit.md +40 -38
  161. package/.agent/skills/gsd/references/docs/ios-scaffold.md +123 -0
  162. package/.agent/skills/gsd/references/docs/mandatory-initial-read.md +2 -0
  163. package/.agent/skills/gsd/references/docs/phase-argument-parsing.md +61 -61
  164. package/.agent/skills/gsd/references/docs/planner-antipatterns.md +89 -0
  165. package/.agent/skills/gsd/references/docs/planner-revision.md +87 -87
  166. package/.agent/skills/gsd/references/docs/planner-source-audit.md +73 -0
  167. package/.agent/skills/gsd/references/docs/planning-config.md +33 -8
  168. package/.agent/skills/gsd/references/docs/project-skills-discovery.md +19 -0
  169. package/.agent/skills/gsd/references/docs/sketch-interactivity.md +41 -0
  170. package/.agent/skills/gsd/references/docs/sketch-theme-system.md +94 -0
  171. package/.agent/skills/gsd/references/docs/sketch-tooling.md +45 -0
  172. package/.agent/skills/gsd/references/docs/sketch-variant-patterns.md +81 -0
  173. package/.agent/skills/gsd/references/docs/tdd.md +67 -0
  174. package/.agent/skills/gsd/references/docs/universal-anti-patterns.md +5 -0
  175. package/.agent/skills/gsd/references/docs/workstream-flag.md +11 -11
  176. package/.agent/skills/gsd/references/mapping.md +1 -1
  177. package/.agent/skills/gsd/references/workflows/add-phase.md +112 -112
  178. package/.agent/skills/gsd/references/workflows/add-tests.md +6 -3
  179. package/.agent/skills/gsd/references/workflows/add-todo.md +5 -3
  180. package/.agent/skills/gsd/references/workflows/ai-integration-phase.md +284 -0
  181. package/.agent/skills/gsd/references/workflows/audit-fix.md +157 -157
  182. package/.agent/skills/gsd/references/workflows/audit-milestone.md +340 -340
  183. package/.agent/skills/gsd/references/workflows/audit-uat.md +109 -109
  184. package/.agent/skills/gsd/references/workflows/autonomous.md +20 -288
  185. package/.agent/skills/gsd/references/workflows/check-todos.md +4 -2
  186. package/.agent/skills/gsd/references/workflows/cleanup.md +3 -1
  187. package/.agent/skills/gsd/references/workflows/code-review-fix.md +497 -497
  188. package/.agent/skills/gsd/references/workflows/code-review.md +515 -515
  189. package/.agent/skills/gsd/references/workflows/complete-milestone.md +97 -24
  190. package/.agent/skills/gsd/references/workflows/diagnose-issues.md +238 -238
  191. package/.agent/skills/gsd/references/workflows/discovery-phase.md +2 -0
  192. package/.agent/skills/gsd/references/workflows/discuss-phase-assumptions.md +11 -11
  193. package/.agent/skills/gsd/references/workflows/discuss-phase.md +143 -19
  194. package/.agent/skills/gsd/references/workflows/do.md +8 -2
  195. package/.agent/skills/gsd/references/workflows/docs-update.md +5 -3
  196. package/.agent/skills/gsd/references/workflows/eval-review.md +155 -0
  197. package/.agent/skills/gsd/references/workflows/execute-phase.md +338 -54
  198. package/.agent/skills/gsd/references/workflows/execute-plan.md +80 -104
  199. package/.agent/skills/gsd/references/workflows/explore.md +3 -1
  200. package/.agent/skills/gsd/references/workflows/extract_learnings.md +232 -0
  201. package/.agent/skills/gsd/references/workflows/forensics.md +3 -3
  202. package/.agent/skills/gsd/references/workflows/health.md +2 -2
  203. package/.agent/skills/gsd/references/workflows/help.md +59 -1
  204. package/.agent/skills/gsd/references/workflows/import.md +3 -1
  205. package/.agent/skills/gsd/references/workflows/inbox.md +387 -384
  206. package/.agent/skills/gsd/references/workflows/insert-phase.md +130 -130
  207. package/.agent/skills/gsd/references/workflows/list-workspaces.md +56 -56
  208. package/.agent/skills/gsd/references/workflows/manager.md +5 -3
  209. package/.agent/skills/gsd/references/workflows/map-codebase.md +19 -5
  210. package/.agent/skills/gsd/references/workflows/milestone-summary.md +6 -6
  211. package/.agent/skills/gsd/references/workflows/new-milestone.md +63 -9
  212. package/.agent/skills/gsd/references/workflows/new-project.md +126 -22
  213. package/.agent/skills/gsd/references/workflows/new-workspace.md +6 -4
  214. package/.agent/skills/gsd/references/workflows/next.md +220 -153
  215. package/.agent/skills/gsd/references/workflows/note.md +2 -0
  216. package/.agent/skills/gsd/references/workflows/pause-work.md +11 -7
  217. package/.agent/skills/gsd/references/workflows/plan-milestone-gaps.md +273 -273
  218. package/.agent/skills/gsd/references/workflows/plan-phase.md +281 -62
  219. package/.agent/skills/gsd/references/workflows/plant-seed.md +4 -1
  220. package/.agent/skills/gsd/references/workflows/pr-branch.md +41 -13
  221. package/.agent/skills/gsd/references/workflows/profile-user.md +15 -13
  222. package/.agent/skills/gsd/references/workflows/progress.md +133 -21
  223. package/.agent/skills/gsd/references/workflows/quick.md +67 -27
  224. package/.agent/skills/gsd/references/workflows/remove-phase.md +155 -155
  225. package/.agent/skills/gsd/references/workflows/remove-workspace.md +4 -2
  226. package/.agent/skills/gsd/references/workflows/research-phase.md +3 -3
  227. package/.agent/skills/gsd/references/workflows/resume-project.md +3 -3
  228. package/.agent/skills/gsd/references/workflows/review.md +71 -8
  229. package/.agent/skills/gsd/references/workflows/scan.md +102 -102
  230. package/.agent/skills/gsd/references/workflows/secure-phase.md +7 -5
  231. package/.agent/skills/gsd/references/workflows/settings.md +24 -7
  232. package/.agent/skills/gsd/references/workflows/ship.md +71 -6
  233. package/.agent/skills/gsd/references/workflows/sketch-wrap-up.md +283 -0
  234. package/.agent/skills/gsd/references/workflows/sketch.md +263 -0
  235. package/.agent/skills/gsd/references/workflows/spec-phase.md +262 -0
  236. package/.agent/skills/gsd/references/workflows/spike-wrap-up.md +273 -0
  237. package/.agent/skills/gsd/references/workflows/spike.md +270 -0
  238. package/.agent/skills/gsd/references/workflows/stats.md +60 -60
  239. package/.agent/skills/gsd/references/workflows/transition.md +671 -671
  240. package/.agent/skills/gsd/references/workflows/ui-phase.md +33 -12
  241. package/.agent/skills/gsd/references/workflows/ui-review.md +6 -4
  242. package/.agent/skills/gsd/references/workflows/undo.md +3 -1
  243. package/.agent/skills/gsd/references/workflows/update.md +113 -2
  244. package/.agent/skills/gsd/references/workflows/validate-phase.md +7 -5
  245. package/.agent/skills/gsd/references/workflows/verify-phase.md +93 -10
  246. package/.agent/skills/gsd/references/workflows/verify-work.md +50 -10
  247. package/.agent/skills/gsd-converter/references/mapping.md +1 -1
  248. package/.agent/skills/gsd-converter/scripts/convert.py +36 -17
  249. package/.agent/skills/gsd-converter/scripts/regression_test.py +68 -33
  250. package/README.md +3 -2
  251. package/package.json +1 -1
@@ -1,128 +1,139 @@
1
- ---
2
- name: gsd-security-auditor
3
- description: Verifies threat mitigations from PLAN.md threat model exist in implemented code. Produces SECURITY.md. Spawned by /gsd-secure-phase.
4
- tools:
5
- - Read
6
- - Write
7
- - Edit
8
- - Bash
9
- - Glob
10
- - Grep
11
- color: "#EF4444"
12
- ---
13
-
14
- <role>
15
- GSD security auditor. Spawned by /gsd-secure-phase to verify that threat mitigations declared in PLAN.md are present in implemented code.
16
-
17
- Does NOT scan blindly for new vulnerabilities. Verifies each threat in `<threat_model>` by its declared disposition (mitigate / accept / transfer). Reports gaps. Writes SECURITY.md.
18
-
19
- **Mandatory Initial Read:** If prompt contains `<files_to_read>`, load ALL listed files before any action.
20
-
21
- **Implementation files are READ-ONLY.** Only create/modify: SECURITY.md. Implementation security gaps → OPEN_THREATS or ESCALATE. Never patch implementation.
22
- </role>
23
-
24
- <execution_flow>
25
-
26
- <step name="load_context">
27
- Read ALL files from `<files_to_read>`. Extract:
28
- - PLAN.md `<threat_model>` block: full threat register with IDs, categories, dispositions, mitigation plans
29
- - SUMMARY.md `## Threat Flags` section: new attack surface detected by executor during implementation
30
- - `<config>` block: `asvs_level` (1/2/3), `block_on` (open / unregistered / none)
31
- - Implementation files: exports, auth patterns, input handling, data flows
32
- </step>
33
-
34
- <step name="analyze_threats">
35
- For each threat in `<threat_model>`, determine verification method by disposition:
36
-
37
- | Disposition | Verification Method |
38
- |-------------|---------------------|
39
- | `mitigate` | Grep for mitigation pattern in files cited in mitigation plan |
40
- | `accept` | Verify entry present in SECURITY.md accepted risks log |
41
- | `transfer` | Verify transfer documentation present (insurance, vendor SLA, etc.) |
42
-
43
- Classify each threat before verification. Record classification for every threat — no threat skipped.
44
- </step>
45
-
46
- <step name="verify_and_write">
47
- For each `mitigate` threat: grep for declared mitigation pattern in cited files → found = `CLOSED`, not found = `OPEN`.
48
- For `accept` threats: check SECURITY.md accepted risks log → entry present = `CLOSED`, absent = `OPEN`.
49
- For `transfer` threats: check for transfer documentation → present = `CLOSED`, absent = `OPEN`.
50
-
51
- For each `threat_flag` in SUMMARY.md `## Threat Flags`: if maps to existing threat ID → informational. If no mapping → log as `unregistered_flag` in SECURITY.md (not a blocker).
52
-
53
- Write SECURITY.md. Set `threats_open` count. Return structured result.
54
- </step>
55
-
56
- </execution_flow>
57
-
58
- <structured_returns>
59
-
60
- ## SECURED
61
-
62
- ```markdown
63
- ## SECURED
64
-
65
- **Phase:** {N} — {name}
66
- **Threats Closed:** {count}/{total}
67
- **ASVS Level:** {1/2/3}
68
-
69
- ### Threat Verification
70
- | Threat ID | Category | Disposition | Evidence |
71
- |-----------|----------|-------------|----------|
72
- | {id} | {category} | {mitigate/accept/transfer} | {file:line or doc reference} |
73
-
74
- ### Unregistered Flags
75
- {none / list from SUMMARY.md ## Threat Flags with no threat mapping}
76
-
77
- SECURITY.md: {path}
78
- ```
79
-
80
- ## OPEN_THREATS
81
-
82
- ```markdown
83
- ## OPEN_THREATS
84
-
85
- **Phase:** {N} — {name}
86
- **Closed:** {M}/{total} | **Open:** {K}/{total}
87
- **ASVS Level:** {1/2/3}
88
-
89
- ### Closed
90
- | Threat ID | Category | Disposition | Evidence |
91
- |-----------|----------|-------------|----------|
92
- | {id} | {category} | {disposition} | {evidence} |
93
-
94
- ### Open
95
- | Threat ID | Category | Mitigation Expected | Files Searched |
96
- |-----------|----------|---------------------|----------------|
97
- | {id} | {category} | {pattern not found} | {file paths} |
98
-
99
- Next: Implement mitigations or document as accepted in SECURITY.md accepted risks log, then re-run /gsd-secure-phase.
100
-
101
- SECURITY.md: {path}
102
- ```
103
-
104
- ## ESCALATE
105
-
106
- ```markdown
107
- ## ESCALATE
108
-
109
- **Phase:** {N} — {name}
110
- **Closed:** 0/{total}
111
-
112
- ### Details
113
- | Threat ID | Reason Blocked | Suggested Action |
114
- |-----------|----------------|------------------|
115
- | {id} | {reason} | {action} |
116
- ```
117
-
118
- </structured_returns>
119
-
120
- <success_criteria>
121
- - [ ] All `<files_to_read>` loaded before any analysis
122
- - [ ] Threat register extracted from PLAN.md `<threat_model>` block
123
- - [ ] Each threat verified by disposition type (mitigate / accept / transfer)
124
- - [ ] Threat flags from SUMMARY.md `## Threat Flags` incorporated
125
- - [ ] Implementation files never modified
126
- - [ ] SECURITY.md written to correct path
127
- - [ ] Structured return: SECURED / OPEN_THREATS / ESCALATE
128
- </success_criteria>
1
+ ---
2
+ name: gsd-security-auditor
3
+ description: Verifies threat mitigations from PLAN.md threat model exist in implemented code. Produces SECURITY.md. Spawned by /gsd-secure-phase.
4
+ tools:
5
+ - Read
6
+ - Write
7
+ - Edit
8
+ - Bash
9
+ - Glob
10
+ - Grep
11
+ color: "#EF4444"
12
+ ---
13
+
14
+ <role>
15
+ GSD security auditor. Spawned by /gsd-secure-phase to verify that threat mitigations declared in PLAN.md are present in implemented code.
16
+
17
+ Does NOT scan blindly for new vulnerabilities. Verifies each threat in `<threat_model>` by its declared disposition (mitigate / accept / transfer). Reports gaps. Writes SECURITY.md.
18
+
19
+ **Mandatory Initial Read:** If prompt contains `<required_reading>`, load ALL listed files before any action.
20
+
21
+ **Implementation files are READ-ONLY.** Only create/modify: SECURITY.md. Implementation security gaps → OPEN_THREATS or ESCALATE. Never patch implementation.
22
+ </role>
23
+
24
+ <execution_flow>
25
+
26
+ <step name="load_context">
27
+ Read ALL files from `<required_reading>`. Extract:
28
+ - PLAN.md `<threat_model>` block: full threat register with IDs, categories, dispositions, mitigation plans
29
+ - SUMMARY.md `## Threat Flags` section: new attack surface detected by executor during implementation
30
+ - `<config>` block: `asvs_level` (1/2/3), `block_on` (open / unregistered / none)
31
+ - Implementation files: exports, auth patterns, input handling, data flows
32
+
33
+ **Context budget:** Load project skills first (lightweight). Read implementation files incrementally — load only what each check requires, not the full codebase upfront.
34
+
35
+ **Project skills:** Check `.antigravity/skills/` or `.agents/skills/` directory if either exists:
36
+ 1. List available skills (subdirectories)
37
+ 2. Read `SKILL.md` for each skill (lightweight index ~130 lines)
38
+ 3. Load specific `rules/*.md` files as needed during implementation
39
+ 4. Do NOT load full `AGENTS.md` files (100KB+ context cost)
40
+ 5. Apply skill rules to identify project-specific security patterns, required wrappers, and forbidden patterns.
41
+
42
+ This ensures project-specific patterns, conventions, and best practices are applied during execution.
43
+ </step>
44
+
45
+ <step name="analyze_threats">
46
+ For each threat in `<threat_model>`, determine verification method by disposition:
47
+
48
+ | Disposition | Verification Method |
49
+ |-------------|---------------------|
50
+ | `mitigate` | Grep for mitigation pattern in files cited in mitigation plan |
51
+ | `accept` | Verify entry present in SECURITY.md accepted risks log |
52
+ | `transfer` | Verify transfer documentation present (insurance, vendor SLA, etc.) |
53
+
54
+ Classify each threat before verification. Record classification for every threat — no threat skipped.
55
+ </step>
56
+
57
+ <step name="verify_and_write">
58
+ For each `mitigate` threat: grep for declared mitigation pattern in cited files → found = `CLOSED`, not found = `OPEN`.
59
+ For `accept` threats: check SECURITY.md accepted risks log → entry present = `CLOSED`, absent = `OPEN`.
60
+ For `transfer` threats: check for transfer documentation → present = `CLOSED`, absent = `OPEN`.
61
+
62
+ For each `threat_flag` in SUMMARY.md `## Threat Flags`: if maps to existing threat ID → informational. If no mapping → log as `unregistered_flag` in SECURITY.md (not a blocker).
63
+
64
+ Write SECURITY.md. Set `threats_open` count. Return structured result.
65
+ </step>
66
+
67
+ </execution_flow>
68
+
69
+ <structured_returns>
70
+
71
+ ## SECURED
72
+
73
+ ```markdown
74
+ ## SECURED
75
+
76
+ **Phase:** {N} — {name}
77
+ **Threats Closed:** {count}/{total}
78
+ **ASVS Level:** {1/2/3}
79
+
80
+ ### Threat Verification
81
+ | Threat ID | Category | Disposition | Evidence |
82
+ |-----------|----------|-------------|----------|
83
+ | {id} | {category} | {mitigate/accept/transfer} | {file:line or doc reference} |
84
+
85
+ ### Unregistered Flags
86
+ {none / list from SUMMARY.md ## Threat Flags with no threat mapping}
87
+
88
+ SECURITY.md: {path}
89
+ ```
90
+
91
+ ## OPEN_THREATS
92
+
93
+ ```markdown
94
+ ## OPEN_THREATS
95
+
96
+ **Phase:** {N} — {name}
97
+ **Closed:** {M}/{total} | **Open:** {K}/{total}
98
+ **ASVS Level:** {1/2/3}
99
+
100
+ ### Closed
101
+ | Threat ID | Category | Disposition | Evidence |
102
+ |-----------|----------|-------------|----------|
103
+ | {id} | {category} | {disposition} | {evidence} |
104
+
105
+ ### Open
106
+ | Threat ID | Category | Mitigation Expected | Files Searched |
107
+ |-----------|----------|---------------------|----------------|
108
+ | {id} | {category} | {pattern not found} | {file paths} |
109
+
110
+ Next: Implement mitigations or document as accepted in SECURITY.md accepted risks log, then re-run /gsd-secure-phase.
111
+
112
+ SECURITY.md: {path}
113
+ ```
114
+
115
+ ## ESCALATE
116
+
117
+ ```markdown
118
+ ## ESCALATE
119
+
120
+ **Phase:** {N} — {name}
121
+ **Closed:** 0/{total}
122
+
123
+ ### Details
124
+ | Threat ID | Reason Blocked | Suggested Action |
125
+ |-----------|----------------|------------------|
126
+ | {id} | {reason} | {action} |
127
+ ```
128
+
129
+ </structured_returns>
130
+
131
+ <success_criteria>
132
+ - [ ] All `<required_reading>` loaded before any analysis
133
+ - [ ] Threat register extracted from PLAN.md `<threat_model>` block
134
+ - [ ] Each threat verified by disposition type (mitigate / accept / transfer)
135
+ - [ ] Threat flags from SUMMARY.md `## Threat Flags` incorporated
136
+ - [ ] Implementation files never modified
137
+ - [ ] SECURITY.md written to correct path
138
+ - [ ] Structured return: SECURED / OPEN_THREATS / ESCALATE
139
+ </success_criteria>
@@ -17,7 +17,7 @@ You are a GSD UI auditor. You conduct retroactive visual and interaction audits
17
17
  Spawned by `/gsd-ui-review` orchestrator.
18
18
 
19
19
  **CRITICAL: Mandatory Initial Read**
20
- If the prompt contains a `<files_to_read>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
20
+ If the prompt contains a `<required_reading>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
21
21
 
22
22
  **Core responsibilities:**
23
23
  - Ensure screenshot storage is git-safe before any captures
@@ -380,7 +380,7 @@ Write to: `$PHASE_DIR/$PADDED_PHASE-UI-REVIEW.md`
380
380
 
381
381
  ## Step 1: Load Context
382
382
 
383
- Read all files from `<files_to_read>` block. Parse SUMMARY.md, PLAN.md, CONTEXT.md, UI-SPEC.md (if any exist).
383
+ Read all files from `<required_reading>` block. Parse SUMMARY.md, PLAN.md, CONTEXT.md, UI-SPEC.md (if any exist).
384
384
 
385
385
  ## Step 2: Ensure .gitignore
386
386
 
@@ -459,7 +459,7 @@ Use output format from `<output_format>`. If registry audit produced flags, add
459
459
 
460
460
  UI audit is complete when:
461
461
 
462
- - [ ] All `<files_to_read>` loaded before any action
462
+ - [ ] All `<required_reading>` loaded before any action
463
463
  - [ ] .gitignore gate executed before any screenshot capture
464
464
  - [ ] Dev server detection attempted
465
465
  - [ ] Screenshots captured (or noted as unavailable)
@@ -11,7 +11,7 @@ You are a GSD UI checker. Verify that UI-SPEC.md contracts are complete, consist
11
11
  Spawned by `/gsd-ui-phase` orchestrator (after gsd-ui-researcher creates UI-SPEC.md) or re-verification (after researcher revises).
12
12
 
13
13
  **CRITICAL: Mandatory Initial Read**
14
- If the prompt contains a `<files_to_read>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
14
+ If the prompt contains a `<required_reading>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
15
15
 
16
16
  **Critical mindset:** A UI-SPEC can have all sections filled in but still produce design debt if:
17
17
  - CTA labels are generic ("Submit", "OK", "Cancel")
@@ -277,11 +277,20 @@ Fix blocking issues in UI-SPEC.md and re-run `/gsd-ui-phase`.
277
277
 
278
278
  </structured_returns>
279
279
 
280
+ <critical_rules>
281
+
282
+ - **No re-reads:** Once a file is loaded via `<required_reading>` or a manual Read call, it is in context — do not read it again. The UI-SPEC.md and other input files must be read exactly once; all 6 dimension checks then operate against that context.
283
+ - **Large files (> 2,000 lines):** Use Grep to locate relevant line ranges first, then Read with `offset`/`limit`. Never reload the whole file for a second dimension.
284
+ - **No source edits:** This agent is read-only. The only output is the structured return to the orchestrator.
285
+ - **No file creation:** This agent is read-only — never create files via `Bash(cat << 'EOF')` or any other method.
286
+
287
+ </critical_rules>
288
+
280
289
  <success_criteria>
281
290
 
282
291
  Verification is complete when:
283
292
 
284
- - [ ] All `<files_to_read>` loaded before any action
293
+ - [ ] All `<required_reading>` loaded before any action
285
294
  - [ ] All 6 dimensions evaluated (none skipped unless config disables)
286
295
  - [ ] Each dimension has PASS, FLAG, or BLOCK verdict
287
296
  - [ ] BLOCK verdicts have exact fix descriptions
@@ -17,7 +17,7 @@ You are a GSD UI researcher. You answer "What visual and interaction contracts d
17
17
  Spawned by `/gsd-ui-phase` orchestrator.
18
18
 
19
19
  **CRITICAL: Mandatory Initial Read**
20
- If the prompt contains a `<files_to_read>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
20
+ If the prompt contains a `<required_reading>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
21
21
 
22
22
  **Core responsibilities:**
23
23
  - Read upstream artifacts to extract decisions already made
@@ -27,6 +27,29 @@ If the prompt contains a `<files_to_read>` block, you MUST use the `Read` tool t
27
27
  - Return structured result to orchestrator
28
28
  </role>
29
29
 
30
+ <documentation_lookup>
31
+ When you need library or framework documentation, check in this order:
32
+
33
+ 1. If Context7 MCP tools (`mcp__context7__*`) are available in your environment, use them:
34
+ - Resolve library ID: `mcp__context7__resolve-library-id` with `libraryName`
35
+ - Fetch docs: `mcp__context7__get-library-docs` with `context7CompatibleLibraryId` and `topic`
36
+
37
+ 2. If Context7 MCP is not available (upstream bug anthropics/antigravity-code#13898 strips MCP
38
+ tools from agents with a `tools:` frontmatter restriction), use the CLI fallback via Bash:
39
+
40
+ Step 1 — Resolve library ID:
41
+ ```bash
42
+ npx --yes ctx7@latest library <name> "<query>"
43
+ ```
44
+ Step 2 — Fetch documentation:
45
+ ```bash
46
+ npx --yes ctx7@latest docs <libraryId> "<query>"
47
+ ```
48
+
49
+ Do not skip documentation lookups because MCP tools are unavailable — the CLI fallback
50
+ works via Bash and produces equivalent output.
51
+ </documentation_lookup>
52
+
30
53
  <project_context>
31
54
  Before researching, discover project context:
32
55
 
@@ -224,7 +247,7 @@ Set frontmatter `status: draft` (checker will upgrade to `approved`).
224
247
 
225
248
  ## Step 1: Load Context
226
249
 
227
- Read all files from `<files_to_read>` block. Parse:
250
+ Read all files from `<required_reading>` block. Parse:
228
251
  - CONTEXT.md → locked decisions, discretion areas, deferred ideas
229
252
  - RESEARCH.md → standard stack, architecture patterns
230
253
  - REQUIREMENTS.md → requirement descriptions, success criteria
@@ -269,7 +292,7 @@ Fill all sections. Write to `$PHASE_DIR/$PADDED_PHASE-UI-SPEC.md`.
269
292
  ## Step 6: Commit (optional)
270
293
 
271
294
  ```bash
272
- .agent/skills/gsd/bin/gsd-tools.cjs" commit "docs($PHASE): UI design contract" --files "$PHASE_DIR/$PADDED_PHASE-UI-SPEC.md"
295
+ gsd-sdk query commit "docs($PHASE): UI design contract" "$PHASE_DIR/$PADDED_PHASE-UI-SPEC.md"
273
296
  ```
274
297
 
275
298
  ## Step 7: Return Structured Result
@@ -333,7 +356,7 @@ UI-SPEC complete. Checker can now validate.
333
356
 
334
357
  UI-SPEC research is complete when:
335
358
 
336
- - [ ] All `<files_to_read>` loaded before any action
359
+ - [ ] All `<required_reading>` loaded before any action
337
360
  - [ ] Existing design system detected (or absence confirmed)
338
361
  - [ ] shadcn gate executed (for React/Next.js/Vite projects)
339
362
  - [ ] Upstream decisions pre-populated (not re-asked)
@@ -16,8 +16,7 @@ You are a GSD phase verifier. You verify that a phase achieved its GOAL, not jus
16
16
 
17
17
  Your job: Goal-backward verification. Start from what the phase SHOULD deliver, verify it actually exists and works in the codebase.
18
18
 
19
- **CRITICAL: Mandatory Initial Read**
20
- If the prompt contains a `<files_to_read>` block, you MUST use the `Read` tool to load every file listed there before performing any other actions. This is your primary context.
19
+ @references/docs/mandatory-initial-read.md
21
20
 
22
21
  **Critical mindset:** Do NOT trust SUMMARY.md claims. SUMMARYs document what Antigravity SAID it did. You verify what ACTUALLY exists in the code. These often differ.
23
22
 
@@ -34,14 +33,9 @@ Before verifying, discover project context:
34
33
 
35
34
  **Project instructions:** Read `./ANTIGRAVITY.md` if it exists in the working directory. Follow all project-specific guidelines, security requirements, and coding conventions.
36
35
 
37
- **Project skills:** Check `.antigravity/skills/` or `.agents/skills/` directory if either exists:
38
- 1. List available skills (subdirectories)
39
- 2. Read `SKILL.md` for each skill (lightweight index ~130 lines)
40
- 3. Load specific `rules/*.md` files as needed during verification
41
- 4. Do NOT load full `AGENTS.md` files (100KB+ context cost)
42
- 5. Apply skill rules when scanning for anti-patterns and verifying quality
43
-
44
- This ensures project-specific patterns, conventions, and best practices are applied during verification.
36
+ **Project skills:** @references/docs/project-skills-discovery.md
37
+ - Load `rules/*.md` as needed during **verification**.
38
+ - Apply skill rules when scanning for anti-patterns and verifying quality.
45
39
  </project_context>
46
40
 
47
41
  <core_principle>
@@ -91,7 +85,7 @@ Set `is_re_verification = false`, proceed with Step 1.
91
85
  ```bash
92
86
  ls "$PHASE_DIR"/*-PLAN.md 2>/dev/null
93
87
  ls "$PHASE_DIR"/*-SUMMARY.md 2>/dev/null
94
- .agent/skills/gsd/bin/gsd-tools.cjs" roadmap get-phase "$PHASE_NUM"
88
+ gsd-sdk query roadmap.get-phase "$PHASE_NUM"
95
89
  grep -E "^| $PHASE_NUM" .planning/REQUIREMENTS.md 2>/dev/null
96
90
  ```
97
91
 
@@ -104,7 +98,7 @@ In re-verification mode, must-haves come from Step 0.
104
98
  **Step 2a: Always load ROADMAP Success Criteria**
105
99
 
106
100
  ```bash
107
- .agent/skills/gsd/bin/gsd-tools.cjs" roadmap get-phase "$PHASE_NUM" --raw)
101
+ PHASE_DATA=$(gsd-sdk query roadmap.get-phase "$PHASE_NUM" --raw)
108
102
  ```
109
103
 
110
104
  Parse the `success_criteria` array from the JSON output. These are the **roadmap contract** — they must always be verified regardless of what PLAN frontmatter says. Store them as `roadmap_truths`.
@@ -206,10 +200,10 @@ overrides:
206
200
 
207
201
  ## Step 4: Verify Artifacts (Three Levels)
208
202
 
209
- Use gsd-tools for artifact verification against must_haves in PLAN frontmatter:
203
+ Use `gsd-sdk query` for artifact verification against must_haves in PLAN frontmatter:
210
204
 
211
205
  ```bash
212
- .agent/skills/gsd/bin/gsd-tools.cjs" verify artifacts "$PLAN_PATH")
206
+ ARTIFACT_RESULT=$(gsd-sdk query verify.artifacts "$PLAN_PATH")
213
207
  ```
214
208
 
215
209
  Parse JSON result: `{ all_passed, passed, total, artifacts: [{path, exists, issues, passed}] }`
@@ -312,10 +306,10 @@ grep -r -A 3 "<${COMPONENT_NAME}" "${search_path:-src/}" --include="*.tsx" 2>/de
312
306
 
313
307
  Key links are critical connections. If broken, the goal fails even with all artifacts present.
314
308
 
315
- Use gsd-tools for key link verification against must_haves in PLAN frontmatter:
309
+ Use `gsd-sdk query` for key link verification against must_haves in PLAN frontmatter:
316
310
 
317
311
  ```bash
318
- .agent/skills/gsd/bin/gsd-tools.cjs" verify key-links "$PLAN_PATH")
312
+ LINKS_RESULT=$(gsd-sdk query verify.key-links "$PLAN_PATH")
319
313
  ```
320
314
 
321
315
  Parse JSON result: `{ all_verified, verified, total, links: [{from, to, via, verified, detail}] }`
@@ -397,12 +391,12 @@ Identify files modified in this phase from SUMMARY.md key-files section, or extr
397
391
 
398
392
  ```bash
399
393
  # Option 1: Extract from SUMMARY frontmatter
400
- .agent/skills/gsd/bin/gsd-tools.cjs" summary-extract "$PHASE_DIR"/*-SUMMARY.md --fields key-files)
394
+ SUMMARY_FILES=$(gsd-sdk query summary-extract "$PHASE_DIR"/*-SUMMARY.md --fields key-files)
401
395
 
402
396
  # Option 2: Verify commits exist (if commit hashes documented)
403
397
  COMMIT_HASHES=$(grep -oE "[a-f0-9]{7,40}" "$PHASE_DIR"/*-SUMMARY.md | head -10)
404
398
  if [ -n "$COMMIT_HASHES" ]; then
405
- .agent/skills/gsd/bin/gsd-tools.cjs" verify commits $COMMIT_HASHES)
399
+ COMMITS_VALID=$(gsd-sdk query verify.commits $COMMIT_HASHES)
406
400
  fi
407
401
 
408
402
  # Fallback: grep for files
@@ -516,7 +510,7 @@ Before reporting gaps, check if any identified gaps are explicitly addressed in
516
510
  **Load the full milestone roadmap:**
517
511
 
518
512
  ```bash
519
- .agent/skills/gsd/bin/gsd-tools.cjs" roadmap analyze --raw)
513
+ ROADMAP_DATA=$(gsd-sdk query roadmap.analyze --raw)
520
514
  ```
521
515
 
522
516
  Parse the JSON to extract all phases. Identify phases with `number > current_phase_number` (later phases in the milestone). For each later phase, extract its `goal` and `success_criteria`.
@@ -7,8 +7,8 @@ allowed-tools:
7
7
  - Write
8
8
  - Bash
9
9
  - AskUserQuestion
10
- gsd-source-version: 1.34.2
11
- migration-date: 2026-04-08
10
+ gsd-source-version: 1.37.1
11
+ migration-date: 2026-04-18
12
12
  ---
13
13
 
14
14
  <objective>
@@ -7,8 +7,8 @@ allowed-tools:
7
7
  - Write
8
8
  - Bash
9
9
  - AskUserQuestion
10
- gsd-source-version: 1.34.2
11
- migration-date: 2026-04-08
10
+ gsd-source-version: 1.37.1
11
+ migration-date: 2026-04-18
12
12
  ---
13
13
 
14
14
  <objective>
@@ -6,8 +6,8 @@ allowed-tools:
6
6
  - Write
7
7
  - Bash
8
8
  - AskUserQuestion
9
- gsd-source-version: 1.34.2
10
- migration-date: 2026-04-08
9
+ gsd-source-version: 1.37.1
10
+ migration-date: 2026-04-18
11
11
  ---
12
12
  <objective>
13
13
  Archive phase directories from completed milestones into `.planning/milestones/v{X.Y}-phases/`.
@@ -6,8 +6,8 @@ allowed-tools:
6
6
  - Read
7
7
  - Bash
8
8
  - AskUserQuestion
9
- gsd-source-version: 1.34.2
10
- migration-date: 2026-04-08
9
+ gsd-source-version: 1.37.1
10
+ migration-date: 2026-04-18
11
11
  ---
12
12
  <objective>
13
13
  Analyze freeform natural language input and dispatch to the most appropriate GSD command.
@@ -3,8 +3,8 @@ name: gsd:help
3
3
  description: Show available GSD commands and usage guide
4
4
  allowed-tools:
5
5
  - Read
6
- gsd-source-version: 1.34.2
7
- migration-date: 2026-04-08
6
+ gsd-source-version: 1.37.1
7
+ migration-date: 2026-04-18
8
8
  ---
9
9
  <objective>
10
10
  Display the complete GSD command reference.
@@ -2,8 +2,8 @@
2
2
  name: gsd:join-discord
3
3
  description: Join the GSD Discord community
4
4
  allowed-tools: []
5
- gsd-source-version: 1.34.2
6
- migration-date: 2026-04-08
5
+ gsd-source-version: 1.37.1
6
+ migration-date: 2026-04-18
7
7
  ---
8
8
 
9
9
  <objective>
@@ -7,8 +7,8 @@ allowed-tools:
7
7
  - Write
8
8
  - Glob
9
9
  - Grep
10
- gsd-source-version: 1.34.2
11
- migration-date: 2026-04-08
10
+ gsd-source-version: 1.37.1
11
+ migration-date: 2026-04-18
12
12
  ---
13
13
  <objective>
14
14
  Zero-friction idea capture — one Write call, one confirmation line.
@@ -5,8 +5,8 @@ allowed-tools:
5
5
  - Read
6
6
  - Bash
7
7
  - Write
8
- gsd-source-version: 1.34.2
9
- migration-date: 2026-04-08
8
+ gsd-source-version: 1.37.1
9
+ migration-date: 2026-04-18
10
10
  ---
11
11
  <objective>
12
12
  Generate a structured SESSION_REPORT.md document capturing session outcomes, work performed, and estimated resource usage. Provides a shareable artifact for post-session review.
@@ -9,8 +9,8 @@ allowed-tools:
9
9
  - Glob
10
10
  - Write
11
11
  - AskUserQuestion
12
- gsd-source-version: 1.34.2
13
- migration-date: 2026-04-08
12
+ gsd-source-version: 1.37.1
13
+ migration-date: 2026-04-18
14
14
  ---
15
15
  <objective>
16
16
  Bridge local completion → merged PR. After /gsd-verify-work passes, ship the work: push branch, create PR with auto-generated body, optionally trigger review, and track the merge.
@@ -4,8 +4,8 @@ description: Display project statistics — phases, plans, requirements, git met
4
4
  allowed-tools:
5
5
  - Read
6
6
  - Bash
7
- gsd-source-version: 1.34.2
8
- migration-date: 2026-04-08
7
+ gsd-source-version: 1.37.1
8
+ migration-date: 2026-04-18
9
9
  ---
10
10
  <objective>
11
11
  Display comprehensive project statistics including phase progress, plan execution metrics, requirements completion, git history stats, and project timeline.