opencode-onboard 0.1.1 → 0.1.3

package/README.md

@@ -1,214 +1,213 @@
-<div align="center">
-
-<img src="https://raw.githubusercontent.com/CKGrafico/opencode-onboard/refs/heads/main/logo.png" alt="opencode-onboard" width="160" />
-
-# 🧰 opencode-onboard
-
-**One command to prepare any codebase for AI agent workflows.**
-
-Works with [OpenCode](https://opencode.ai), [OpenCode Ensemble](https://github.com/hueyexe/opencode-ensemble), [OpenSpec](https://github.com/fission-ai/openspec), GitHub and Azure DevOps.
-
-[![npm version](https://img.shields.io/npm/v/opencode-onboard?style=flat-square&color=black)](https://www.npmjs.com/package/opencode-onboard)
-[![npm downloads](https://img.shields.io/npm/dm/opencode-onboard?style=flat-square&color=black)](https://www.npmjs.com/package/opencode-onboard)
-[![license](https://img.shields.io/npm/l/opencode-onboard?style=flat-square&color=black)](./LICENSE)
-[![node](https://img.shields.io/node/v/opencode-onboard?style=flat-square&color=black)](https://nodejs.org)
-
-</div>
-
-## What is this?
-
-Most codebases have no `AGENTS.md`, no architecture docs agents can read, and no defined workflow for picking up tasks. Agents end up improvising, and that produces inconsistent, brittle results.
-
-**opencode-onboard** fixes that in a single interactive run. It installs a universal agent team, the skills they need, picks your AI models, and configures OpenCode, platform-aware, non-destructive, and ready the moment it finishes.
-
-<div align="center">
-<img src="https://raw.githubusercontent.com/CKGrafico/opencode-onboard/refs/heads/main/demo.gif" alt="opencode-onboard demo" width="700" />
-</div>
----
-
-## Quick start
-
-```bash
-npx opencode-onboard@latest
-```
-
-Requires **Node.js 18+**.
-
----
-
-## How it works
-
-The CLI clears the screen, shows a welcome banner, and walks you through 10 steps. The screen always shows the last 2 completed steps + the current one so you always know where you are.
-
-| Step | What happens |
-|------|-------------|
-| **1. Environment check** | Verifies Node.js ≥ 18 and pnpm are available |
-| **2. Clean AI files** | Detects existing `AGENTS.md`, `.cursorrules`, `CLAUDE.md`, `.agents/` etc. and removes them, preserves your `.agents/skills/` |
-| **3. Choose platform** | GitHub or Azure DevOps |
-| **4. Check platform CLI** | Verifies `gh` (GitHub) or `az` + `azure-devops` (Azure DevOps) |
-| **5. Copy scaffolding** | Drops agents, skills, and bootstrap docs into your project |
-| **6. Init OpenSpec** | Runs `npx @fission-ai/openspec init` silently for structured change management |
-| **7. Install skills** | Installs built-in `ob-` skills + optional additional skills provider |
-| **8. Choose models** | Fetches live model list from [models.dev](https://models.dev), lets you pick plan / build / fast models with cost indicators and canonical pricing |
-| **9. Check RTK** | Verifies `rtk` is on PATH |
-| **10. Install browser plugin** | Installs `@different-ai/opencode-browser` globally for agent browser automation |
-
-When it finishes, open OpenCode in your project and type:
-
-```
-init
-```
-
-OpenCode generates `ARCHITECTURE.md` and `DESIGN.md` from your actual codebase, then activates the full agent team.
-
----
-
-## Agents and Skills
-
-opencode-onboard draws a hard line between two concepts:
-
-### Agents, universal behaviors
-
-Agents define *how to work*. They are behavioral personas, the same for every project, every tech stack, every team. You never configure them or choose between them. All six are always installed.
-
-```
-devops-manager     reads work items, creates PRs, handles review feedback
-front-engineer     web, mobile, UI, anything visual
-back-engineer      APIs, services, data, AI, anything not UI
-infra-engineer     Terraform, pipelines, cloud infrastructure
-quality-engineer   unit, integration, e2e tests across all layers
-security-auditor   vulnerability audit, secrets, auth gaps
-```
-
-Each agent has a color in the OpenCode UI. Builder agents (`front-engineer`, `back-engineer`, `infra-engineer`) run at `temperature: 0.2` for deterministic output. `security-auditor` is read-only, edit is denied.
-
-### Skills, platform knowledge
-
-Skills define *what to know*. They provide the tech and platform-specific knowledge agents need. Agents detect and load relevant skills automatically, **you never tell an agent which skill to use**.
-
-Built-in skills (`ob-` prefix) shipped with opencode-onboard:
-
-| Skill | Purpose |
-|-------|---------|
-| `ob-userstory-gh` | Parse a GitHub Issue URL into a structured work item |
-| `ob-userstory-az` | Parse an Azure DevOps work item URL |
-| `browser-automation` | Browser control via `@different-ai/opencode-browser` |
-
-Skills live in `.agents/skills/`. Any `SKILL.md` file in a subdirectory is automatically discoverable, write your own and agents will pick them up.
-
-### Models, plan / build / fast
-
-During onboarding you pick three models:
-
-| Role | Used by | Pick |
-|------|---------|------|
-| **plan** | Main OpenCode session | Something capable with strong reasoning |
-| **build** | All builder agents | Something capable for implementation |
-| **fast** | `devops-manager` | Something fast and cheap |
-
-Models are fetched live from [models.dev](https://models.dev) (3000+ models, cached weekly). Cost tiers `[$]` `[$$]` `[$$$]` always reflect the canonical provider price, so `github-copilot/claude-opus-4.7` shows `[$$]` not `[$]`.
-
----
-
-## The pipeline
-
-When you give the lead agent a work item URL, it runs the full pipeline automatically:
-
-```
-devops-manager  →  parse work item via skill  →  structured summary
-                                ↓
-                         openspec-propose
-                    proposal + specs + tasks
-                                ↓
-                        [confirm with user]
-                                ↓
-   front-engineer  +  back-engineer  +  infra-engineer   (parallel)
-                                ↓
-                        quality-engineer
-                    tests, build, lint, acceptance
-                                ↓
-                        security-auditor
-                      vulnerabilities, secrets
-                                ↓
-devops-manager  →  screenshots  →  commit  →  push  →  PR  →  comment
-```
-
-Each agent runs in its own isolated git worktree via [OpenCode Ensemble](https://github.com/hueyexe/opencode-ensemble), with a live dashboard at `http://localhost:4747`.
-
----
-
-## What gets installed
-
-```
-your-project/
-├── AGENTS.md                        ← bootstrap mode, replaced after first "init"
-├── ARCHITECTURE.md                  ← prompt for agents to fill in from your codebase
-├── DESIGN.md                        ← prompt for agents to fill in from your codebase
-├── .opencode/
-│   └── opencode.json                ← plan model + plugins configured
-└── .agents/
-    ├── agents/
-    │   ├── devops-manager.md
-    │   ├── front-engineer.md
-    │   ├── back-engineer.md
-    │   ├── infra-engineer.md
-    │   ├── quality-engineer.md
-    │   └── security-auditor.md
-    └── skills/
-        ├── browser-automation/
-        ├── ob-userstory-gh/         ← or -az, depending on platform
-        └── ob-userstory-az/
-```
-
----
-
-## The bootstrap sequence
-
-The first time you type `init` in OpenCode after onboarding:
-
-1. OpenCode reads your codebase and writes a real `ARCHITECTURE.md`
-2. OpenCode reads your design patterns and writes a real `DESIGN.md`
-3. `AGENTS.md` is replaced by the production version
-4. Your agent team is live
-
-After this, every agent has accurate, persistent context about your project, no manual documentation required.
-
----
-
-## Prerequisites
-
-| Requirement | Notes |
-|-------------|-------|
-| **Node.js 18+** | Required |
-| **[OpenCode](https://opencode.ai)** | The agent runtime |
-| **[OpenCode Ensemble](https://github.com/hueyexe/opencode-ensemble)** | Multi-agent parallel execution |
-| **[rtk](https://github.com/rtk-ai/rtk#pre-built-binaries)** | Required for agents to run CLI commands safely |
-| **[gh CLI](https://cli.github.com)** | GitHub platform, must be authenticated |
-| **[az CLI](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli)** + azure-devops extension | Azure DevOps platform |
-
----
-
-## Development
-
-```bash
-git clone https://github.com/ckgrafico/opencode-onboard.git
-cd opencode-onboard
-pnpm install
-
-# Run the CLI locally
-node src/index.js
-
-# Run tests
-pnpm test
-
-# Watch mode
-pnpm test:watch
-```
-
-Tests are written with [Vitest](https://vitest.dev).
-
----
-
-## License
-
-MIT © [ckgrafico](https://github.com/ckgrafico)
+<div align="center">
+
+<img src="https://raw.githubusercontent.com/CKGrafico/opencode-onboard/refs/heads/main/logo.png" alt="opencode-onboard" width="160" />
+
+# 🧰 opencode-onboard
+
+**One command to prepare any codebase for AI agent workflows in OpenCode.**
+
+Works with [OpenCode](https://opencode.ai), [OpenCode Ensemble](https://github.com/hueyexe/opencode-ensemble), [OpenSpec](https://github.com/fission-ai/openspec), GitHub and Azure DevOps.
+
+[![npm version](https://img.shields.io/npm/v/opencode-onboard?style=flat-square&color=black)](https://www.npmjs.com/package/opencode-onboard)
+[![npm downloads](https://img.shields.io/npm/dm/opencode-onboard?style=flat-square&color=black)](https://www.npmjs.com/package/opencode-onboard)
+[![license](https://img.shields.io/npm/l/opencode-onboard?style=flat-square&color=black)](./LICENSE)
+[![node](https://img.shields.io/node/v/opencode-onboard?style=flat-square&color=black)](https://nodejs.org)
+
+</div>
+
+## What is this?
+
+Most codebases have no `AGENTS.md`, no architecture docs agents can read, and no defined workflow for picking up tasks. Agents end up improvising, and that produces inconsistent, brittle results.
+
+**opencode-onboard** fixes that in a single interactive run. It installs a universal and agnostic agent team,but let you choose your own skills, preconfigured your AI models, and initd OpenCode with Openspec and Ensemble.
+
+<div align="center">
+<img src="https://raw.githubusercontent.com/CKGrafico/opencode-onboard/refs/heads/main/demo.gif" alt="opencode-onboard demo" width="700" />
+</div>
+
+## Quick start
+
+```bash
+npx opencode-onboard@latest
+```
+
+Requires **Node.js 18+**.
+
+---
+
+## How it works
+
+The CLI clears the screen, shows a welcome banner, and walks you through 10 steps. The screen always shows the last 2 completed steps + the current one so you always know where you are.
+
+| Step | What happens |
+|------|-------------|
+| **1. Environment check** | Verifies Node.js ≥ 18 and pnpm are available |
+| **2. Clean AI files** | Detects existing `AGENTS.md`, `.cursorrules`, `CLAUDE.md`, `.agents/` etc. and removes them, preserves your `.agents/skills/` |
+| **3. Choose platform** | GitHub or Azure DevOps |
+| **4. Check platform CLI** | Verifies `gh` (GitHub) or `az` + `azure-devops` (Azure DevOps) |
+| **5. Copy scaffolding** | Drops agents, skills, and bootstrap docs into your project |
+| **6. Init OpenSpec** | Runs `npx @fission-ai/openspec init` silently for structured change management |
+| **7. Install skills** | Installs built-in `ob-` skills + optional additional skills provider |
+| **8. Choose models** | Fetches live model list from [models.dev](https://models.dev), lets you pick plan / build / fast models with cost indicators and canonical pricing |
+| **9. Check RTK** | Verifies `rtk` is on PATH |
+| **10. Install browser plugin** | Installs `@different-ai/opencode-browser` globally for agent browser automation |
+
+When it finishes, open OpenCode in your project and type:
+
+```
+init
+```
+
+OpenCode generates `ARCHITECTURE.md` and `DESIGN.md` from your actual codebase, then activates the full agent team.
+
+---
+
+## Agents and Skills
+
+opencode-onboard draws a hard line between two concepts:
+
+### Agents, universal behaviors
+
+Agents define *how to work*. They are behavioral personas, the same for every project, every tech stack, every team. You never configure them or choose between them. All six are always installed.
+
+```
+devops-manager     reads work items, creates PRs, handles review feedback
+front-engineer     web, mobile, UI, anything visual
+back-engineer      APIs, services, data, AI, anything not UI
+infra-engineer     Terraform, pipelines, cloud infrastructure
+quality-engineer   unit, integration, e2e tests across all layers
+security-auditor   vulnerability audit, secrets, auth gaps
+```
+
+Each agent has a color in the OpenCode UI. Builder agents (`front-engineer`, `back-engineer`, `infra-engineer`) run at `temperature: 0.2` for deterministic output. `security-auditor` is read-only, edit is denied.
+
+### Skills, platform knowledge
+
+Skills define *what to know*. They provide the tech and platform-specific knowledge agents need. Agents detect and load relevant skills automatically, **you never tell an agent which skill to use**.
+
+Built-in skills (`ob-` prefix) shipped with opencode-onboard:
+
+| Skill | Purpose |
+|-------|---------|
+| `ob-userstory-gh` | Parse a GitHub Issue URL into a structured work item |
+| `ob-userstory-az` | Parse an Azure DevOps work item URL |
+| `browser-automation` | Browser control via `@different-ai/opencode-browser` |
+
+Skills live in `.agents/skills/`. Any `SKILL.md` file in a subdirectory is automatically discoverable, write your own and agents will pick them up.
+
+### Models, plan / build / fast
+
+During onboarding you pick three models:
+
+| Role | Used by | Pick |
+|------|---------|------|
+| **plan** | Main OpenCode session | Something capable with strong reasoning |
+| **build** | All builder agents | Something capable for implementation |
+| **fast** | `devops-manager` | Something fast and cheap |
+
+Models are fetched live from [models.dev](https://models.dev) (3000+ models, cached weekly). Cost tiers `[$]` `[$$]` `[$$$]` always reflect the canonical provider price, so `github-copilot/claude-opus-4.7` shows `[$$]` not `[$]`.
+
+---
+
+## The pipeline
+
+When you give the lead agent a work item URL, it runs the full pipeline automatically:
+
+```
+devops-manager  →  parse work item via skill  →  structured summary
+                                ↓
+                         openspec-propose
+                    proposal + specs + tasks
+                                ↓
+                        [confirm with user]
+                                ↓
+   front-engineer  +  back-engineer  +  infra-engineer   (parallel)
+                                ↓
+                        quality-engineer
+                    tests, build, lint, acceptance
+                                ↓
+                        security-auditor
+                      vulnerabilities, secrets
+                                ↓
+devops-manager  →  screenshots  →  commit  →  push  →  PR  →  comment
+```
+
+Each agent runs in its own isolated git worktree via [OpenCode Ensemble](https://github.com/hueyexe/opencode-ensemble), with a live dashboard at `http://localhost:4747`.
+
+---
+
+## What gets installed
+
+```
+your-project/
+├── AGENTS.md                        ← bootstrap mode, replaced after first "init"
+├── ARCHITECTURE.md                  ← prompt for agents to fill in from your codebase
+├── DESIGN.md                        ← prompt for agents to fill in from your codebase
+├── .opencode/
+│   └── opencode.json                ← plan model + plugins configured
+└── .agents/
+    ├── agents/
+    │   ├── devops-manager.md
+    │   ├── front-engineer.md
+    │   ├── back-engineer.md
+    │   ├── infra-engineer.md
+    │   ├── quality-engineer.md
+    │   └── security-auditor.md
+    └── skills/
+        ├── browser-automation/
+        ├── ob-userstory-gh/         ← or -az, depending on platform
+        └── ob-userstory-az/
+```
+
+---
+
+## The bootstrap sequence
+
+The first time you type `init` in OpenCode after onboarding:
+
+1. OpenCode reads your codebase and writes a real `ARCHITECTURE.md`
+2. OpenCode reads your design patterns and writes a real `DESIGN.md`
+3. `AGENTS.md` is replaced by the production version
+4. Your agent team is live
+
+After this, every agent has accurate, persistent context about your project, no manual documentation required.
+
+---
+
+## Prerequisites
+
+| Requirement | Notes |
+|-------------|-------|
+| **Node.js 18+** | Required |
+| **[OpenCode](https://opencode.ai)** | The agent runtime |
+| **[OpenCode Ensemble](https://github.com/hueyexe/opencode-ensemble)** | Multi-agent parallel execution |
+| **[rtk](https://github.com/rtk-ai/rtk#pre-built-binaries)** | Required for agents to run CLI commands safely |
+| **[gh CLI](https://cli.github.com)** | GitHub platform, must be authenticated |
+| **[az CLI](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli)** + azure-devops extension | Azure DevOps platform |
+
+---
+
+## Development
+
+```bash
+git clone https://github.com/ckgrafico/opencode-onboard.git
+cd opencode-onboard
+pnpm install
+
+# Run the CLI locally
+node src/index.js
+
+# Run tests
+pnpm test
+
+# Watch mode
+pnpm test:watch
+```
+
+Tests are written with [Vitest](https://vitest.dev).
+
+---
+
+## License
+
+MIT © [ckgrafico](https://github.com/ckgrafico)

package/content/AGENTS.md

@@ -61,7 +61,7 @@ The output must be a real, populated `ARCHITECTURE.md` covering all sections the
 
 ### Step 4, Rewrite this file
 
-Replace the entire contents of `AGENTS.md` with the real agent guidance template located at `.agents/agents/.bootstrap/AGENTS.template.md`.
+Replace the entire contents of this file (`AGENTS.md`) with everything below the line `<!-- AGENTS-TEMPLATE-START -->` in this same file. Delete the bootstrap section and the template marker — the file should contain only the template content when done.
 
 ---
 
@@ -88,3 +88,238 @@ You're ready to work.
 - Do NOT create branches or PRs
 - Do NOT modify any project source files
 - Only read source files for analysis, write only to ARCHITECTURE.md, DESIGN.md, AGENTS.md, and openspec/
+
+<!-- AGENTS-TEMPLATE-START -->
+# AGENTS.md
+
+This file provides guidance to AI agents when working in this repository.
+
+*Agent-agnostic, works with OpenCode, Claude Code, Codex, Gemini, etc.*
+
+## Project Overview
+
+This is the agent orchestration layer for your project. It provides:
+- Universal agent team for development workflow
+- OpenSpec change management
+- Skills for platform-specific knowledge
+
+## I Am the Lead, Full Workflow Ownership
+
+When the user provides a work item URL, says "implement the plan", or "I've added comments to the PR", **I own the full lifecycle**. I load the appropriate skill and use ensemble tools (`team_create`, `team_spawn`, etc.) to coordinate the agent team.
+
+Trigger patterns:
+- `work on this <azure-devops-url>` → spawn `devops-manager` in read mode → propose OpenSpec → implement → ship
+- `work on this <github-url>` → spawn `devops-manager` in read mode → propose OpenSpec → implement → ship
+- `implement the plan` → load skill `openspec-apply-change` → implement → ship
+- `I've added comments to the PR` → spawn `devops-manager` in feedback mode → fix → update PR
+
+**Never delegate without a plan. Never write implementation code directly, always spawn specialists.**
+
+## Multi-Agent Execution, opencode-ensemble
+
+Parallel execution uses the `opencode-ensemble` plugin (`team_create`, `team_spawn`, etc.).
+Works on **all platforms** (Windows, macOS, Linux) via OpenCode's built-in worktree support.
+
+| Tool | What it does |
+|------|-------------|
+| `team_create` | Create a team (caller becomes lead) |
+| `team_spawn` | Start a teammate asynchronously |
+| `team_shutdown` | Stop a teammate, preserve their branch |
+| `team_merge` | Merge a teammate's branch into working dir |
+| `team_cleanup` | Tear down the team |
+| `team_results` | Retrieve full message from a teammate |
+| `team_message` | Send a direct message to a teammate |
+| `team_broadcast` | Message all teammates |
+| `team_tasks_add` | Add tasks to shared board |
+| `team_tasks_complete` | Mark task done |
+
+**Dashboard**: Monitor running agents at **http://localhost:4747/**
+
+---
+
+## Pipeline
+
+```
+devops-manager (read mode)
+  → parse work item via skill → structured summary
+        ↓
+  openspec-propose
+  → proposal.md + specs + tasks
+        ↓
+  [confirm with user]
+        ↓
+front-engineer + back-engineer + infra-engineer  ← parallel, only spawn what the task needs
+        ↓
+quality-engineer
+  → tests, build, lint, acceptance criteria
+        ↓
+security-auditor
+  → vulnerability audit, secrets, auth gaps
+        ↓
+devops-manager (ship mode)
+  → screenshots → commit → push → PR → post comment
+```
+
+### Phase 1, Parse & Propose
+
+```
+1. team_spawn devops-manager (read mode) → fetch work item via skill, output summary
+2. Load skill: openspec-propose → generate proposal.md, specs/, tasks.md
+   - team_create → spawn design + specs in parallel → merge → write tasks.md
+3. Show summary, confirm with user before implementing
+```
+
+### Phase 2, Implement
+
+```
+1. Load skill: openspec-apply-change → get apply instructions
+2. Create feature branch: feature/{id}-{slug}
+3. team_create "<change-name>"
+4. Announce: "Team running. Monitor at http://localhost:4747/"
+5. Spawn only what the task needs (in parallel):
+   team_spawn name:front   agent:front-engineer  → UI tasks
+   team_spawn name:back    agent:back-engineer   → backend tasks
+   team_spawn name:infra   agent:infra-engineer  → infra tasks
+6. Wait for all → team_results → team_shutdown + team_merge
+```
+
+### Phase 3, Quality
+
+```
+7. team_spawn name:quality agent:quality-engineer → tests, build, lint
+8. Wait → team_results → fix any blockers → team_shutdown
+```
+
+### Phase 4, Security
+
+```
+9. team_spawn name:security agent:security-auditor → audit full change
+10. Wait → team_results → fix Critical findings → team_shutdown
+```
+
+### Phase 5, Ship
+
+```
+11. team_spawn name:devops agent:devops-manager (ship mode)
+    → screenshots → commit & push → create PR → post comment
+12. Wait → team_results → report PR URL to user
+13. team_cleanup
+```
+
+### Phase 6, PR Feedback Loop
+
+```
+When user says "I've added comments to the PR":
+1. team_spawn devops-manager (feedback mode) → read & classify comments
+2. Wait → team_results → spawn front/back/infra for code-change items (parallel)
+3. Wait → team_results → spawn quality-engineer → verify fixes
+4. Wait → team_results → spawn devops-manager (ship mode) → push & update PR
+5. team_cleanup
+```
+
+---
+
+## Agents
+
+All agents are universal, no project-specific knowledge. Platform and tech knowledge comes from skills.
+
+| Agent | File | Role |
+|-------|------|------|
+| `devops-manager` | .agents/agents/devops-manager.md | Reads work items, creates PRs, handles review feedback |
+| `front-engineer` | .agents/agents/front-engineer.md | Web, mobile, UI implementation |
+| `back-engineer` | .agents/agents/back-engineer.md | APIs, services, data, AI implementation |
+| `infra-engineer` | .agents/agents/infra-engineer.md | Terraform, pipelines, cloud infrastructure |
+| `quality-engineer` | .agents/agents/quality-engineer.md | Unit, integration, e2e tests across all layers |
+| `security-auditor` | .agents/agents/security-auditor.md | Vulnerability audit, secrets, auth gaps |
+
+## Skills
+
+Skills provide platform and tech-specific knowledge. Agents detect and load them automatically, the user never specifies which skill to use.
+
+Skills are located in `.agents/skills/`. Each skill has a `SKILL.md` with a description the agent reads to determine relevance.
+
+| Skill | Purpose |
+|-------|---------|
+| `ob-userstory-az` | Parse Azure DevOps work item URL |
+| `ob-userstory-gh` | Parse GitHub Issue URL |
+| `ob-pullrequest-az` | Create PR on Azure DevOps |
+| `ob-pullrequest-gh` | Create PR on GitHub |
+| `openspec-propose` | Propose change artifacts (proposal, specs, tasks) |
+| `openspec-apply-change` | Implement change with agent team |
+| `openspec-archive-change` | Archive completed change |
+
+---
+
+## Branch Naming
+
+Format: `feature/{issue-id}-{slug}`
+Example: `feature/42-add-user-auth`
+
+---
+
+## Project Structure
+
+```
+[project-root]/
+├── .agents/
+│   ├── agents/        # Agent definitions (universal, no project knowledge)
+│   └── skills/        # Skills (platform/tech specific knowledge)
+├── openspec/
+│   ├── specs/
+│   └── changes/
+│       └── {change}/
+│           └── images/
+├── AGENTS.md
+├── ARCHITECTURE.md
+└── DESIGN.md
+```
+
+---
+
+## Guardrails
+
+### Git Operations
+
+Agents CAN:
+- ✅ Commit to feature branches
+- ✅ Push to feature branches
+
+Agents CANNOT:
+- ❌ Commit or push to `main`, FORBIDDEN
+- ❌ Force push, FORBIDDEN
+- ❌ Merge PRs, human-only
+- ❌ Create or delete branches other than `feature/*`
+
+### Platform CLI
+
+ALL platform interactions via CLI only. Browser MCP FORBIDDEN for any DevOps or GitHub operation.
+
+| Operation | Azure DevOps | GitHub |
+|-----------|-------------|--------|
+| Read issue | `az boards work-item show --id <id>` | `gh issue view <number>` |
+| Read PR threads | `az devops invoke ...` | `gh pr view <number> --comments` |
+| Create PR | `az repos pr create ...` | `gh pr create ...` |
+
+Browser MCP tools permitted only for screenshots of **local running app** on `localhost` URLs.
+
+### Security
+
+Agents CANNOT:
+- ❌ Access `.env` or config files with secrets
+- ❌ Log or output credentials, API keys, or tokens
+- ❌ Commit secrets to git
+
+### Scope
+
+- Max 10 files per change
+- No architecture changes without human approval
+- No pipeline modifications without human approval
+
+---
+
+## Communication Style
+
+Terse. Technical substance exact. Only fluff die.
+Drop: articles, filler, pleasantries, hedging.
+Fragments OK. Short synonyms. Code unchanged.
+Pattern: [thing] [action] [reason]. [next step].

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "opencode-onboard",
-  "version": "0.1.1",
+  "version": "0.1.3",
   "description": "Prepare any brownfield codebase for AI agent workflows using OpenCode, OpenSpec, and ensemble orchestration.",
   "keywords": [
     "opencode",

package/src/index.js

@@ -49,10 +49,9 @@ if (process.stdin.isTTY) {
       resolve()
     })
   })
-}
-})
+}
 
-try {
+try {
   // 1. Check Node + pnpm
   await checkEnv()
 

package/content/.agents/agents/.bootstrap/AGENTS.template.md

@@ -1,234 +0,0 @@
-# AGENTS.md
-
-This file provides guidance to AI agents when working in this repository.
-
-*Agent-agnostic, works with OpenCode, Claude Code, Codex, Gemini, etc.*
-
-## Project Overview
-
-This is the agent orchestration layer for your project. It provides:
-- Universal agent team for development workflow
-- OpenSpec change management
-- Skills for platform-specific knowledge
-
-## I Am the Lead, Full Workflow Ownership
-
-When the user provides a work item URL, says "implement the plan", or "I've added comments to the PR", **I own the full lifecycle**. I load the appropriate skill and use ensemble tools (`team_create`, `team_spawn`, etc.) to coordinate the agent team.
-
-Trigger patterns:
-- `work on this <azure-devops-url>` → spawn `devops-manager` in read mode → propose OpenSpec → implement → ship
-- `work on this <github-url>` → spawn `devops-manager` in read mode → propose OpenSpec → implement → ship
-- `implement the plan` → load skill `openspec-apply-change` → implement → ship
-- `I've added comments to the PR` → spawn `devops-manager` in feedback mode → fix → update PR
-
-**Never delegate without a plan. Never write implementation code directly, always spawn specialists.**
-
-## Multi-Agent Execution, opencode-ensemble
-
-Parallel execution uses the `opencode-ensemble` plugin (`team_create`, `team_spawn`, etc.).
-Works on **all platforms** (Windows, macOS, Linux) via OpenCode's built-in worktree support.
-
-| Tool | What it does |
-|------|-------------|
-| `team_create` | Create a team (caller becomes lead) |
-| `team_spawn` | Start a teammate asynchronously |
-| `team_shutdown` | Stop a teammate, preserve their branch |
-| `team_merge` | Merge a teammate's branch into working dir |
-| `team_cleanup` | Tear down the team |
-| `team_results` | Retrieve full message from a teammate |
-| `team_message` | Send a direct message to a teammate |
-| `team_broadcast` | Message all teammates |
-| `team_tasks_add` | Add tasks to shared board |
-| `team_tasks_complete` | Mark task done |
-
-**Dashboard**: Monitor running agents at **http://localhost:4747/**
-
----
-
-## Pipeline
-
-```
-devops-manager (read mode)
-  → parse work item via skill → structured summary
-        ↓
-  openspec-propose
-  → proposal.md + specs + tasks
-        ↓
-  [confirm with user]
-        ↓
-front-engineer + back-engineer + infra-engineer  ← parallel, only spawn what the task needs
-        ↓
-quality-engineer
-  → tests, build, lint, acceptance criteria
-        ↓
-security-auditor
-  → vulnerability audit, secrets, auth gaps
-        ↓
-devops-manager (ship mode)
-  → screenshots → commit → push → PR → post comment
-```
-
-### Phase 1, Parse & Propose
-
-```
-1. team_spawn devops-manager (read mode) → fetch work item via skill, output summary
-2. Load skill: openspec-propose → generate proposal.md, specs/, tasks.md
-   - team_create → spawn design + specs in parallel → merge → write tasks.md
-3. Show summary, confirm with user before implementing
-```
-
-### Phase 2, Implement
-
-```
-1. Load skill: openspec-apply-change → get apply instructions
-2. Create feature branch: feature/{id}-{slug}
-3. team_create "<change-name>"
-4. Announce: "Team running. Monitor at http://localhost:4747/"
-5. Spawn only what the task needs (in parallel):
-   team_spawn name:front   agent:front-engineer  → UI tasks
-   team_spawn name:back    agent:back-engineer   → backend tasks
-   team_spawn name:infra   agent:infra-engineer  → infra tasks
-6. Wait for all → team_results → team_shutdown + team_merge
-```
-
-### Phase 3, Quality
-
-```
-7. team_spawn name:quality agent:quality-engineer → tests, build, lint
-8. Wait → team_results → fix any blockers → team_shutdown
-```
-
-### Phase 4, Security
-
-```
-9. team_spawn name:security agent:security-auditor → audit full change
-10. Wait → team_results → fix Critical findings → team_shutdown
-```
-
-### Phase 5, Ship
-
-```
-11. team_spawn name:devops agent:devops-manager (ship mode)
-    → screenshots → commit & push → create PR → post comment
-12. Wait → team_results → report PR URL to user
-13. team_cleanup
-```
-
-### Phase 6, PR Feedback Loop
-
-```
-When user says "I've added comments to the PR":
-1. team_spawn devops-manager (feedback mode) → read & classify comments
-2. Wait → team_results → spawn front/back/infra for code-change items (parallel)
-3. Wait → team_results → spawn quality-engineer → verify fixes
-4. Wait → team_results → spawn devops-manager (ship mode) → push & update PR
-5. team_cleanup
-```
-
----
-
-## Agents
-
-All agents are universal, no project-specific knowledge. Platform and tech knowledge comes from skills.
-
-| Agent | File | Role |
-|-------|------|------|
-| `devops-manager` | .agents/agents/devops-manager.md | Reads work items, creates PRs, handles review feedback |
-| `front-engineer` | .agents/agents/front-engineer.md | Web, mobile, UI implementation |
-| `back-engineer` | .agents/agents/back-engineer.md | APIs, services, data, AI implementation |
-| `infra-engineer` | .agents/agents/infra-engineer.md | Terraform, pipelines, cloud infrastructure |
-| `quality-engineer` | .agents/agents/quality-engineer.md | Unit, integration, e2e tests across all layers |
-| `security-auditor` | .agents/agents/security-auditor.md | Vulnerability audit, secrets, auth gaps |
-
-## Skills
-
-Skills provide platform and tech-specific knowledge. Agents detect and load them automatically, the user never specifies which skill to use.
-
-Skills are located in `.agents/skills/`. Each skill has a `SKILL.md` with a description the agent reads to determine relevance.
-
-| Skill | Purpose |
-|-------|---------|
-| `ob-userstory-az` | Parse Azure DevOps work item URL |
-| `ob-userstory-gh` | Parse GitHub Issue URL |
-| `ob-pullrequest-az` | Create PR on Azure DevOps |
-| `ob-pullrequest-gh` | Create PR on GitHub |
-| `openspec-propose` | Propose change artifacts (proposal, specs, tasks) |
-| `openspec-apply-change` | Implement change with agent team |
-| `openspec-archive-change` | Archive completed change |
-
----
-
-## Branch Naming
-
-Format: `feature/{issue-id}-{slug}`
-Example: `feature/42-add-user-auth`
-
----
-
-## Project Structure
-
-```
-[project-root]/
-└── Copilots/              ← THIS FOLDER (agent orchestration)
-    ├── .opencode/
-    │   ├── agents/        # Agent definitions (universal, no project knowledge)
-    │   └── skills/        # Skills (platform/tech specific knowledge)
-    ├── openspec/
-    │   ├── specs/
-    │   └── changes/
-    │       └── {change}/
-    │           └── images/
-    ├── AGENTS.md
-    ├── ARCHITECTURE.md
-    └── DESIGN.md
-```
-
----
-
-## Guardrails
-
-### Git Operations
-
-Agents CAN:
-- ✅ Commit to feature branches
-- ✅ Push to feature branches
-
-Agents CANNOT:
-- ❌ Commit or push to `main`, FORBIDDEN
-- ❌ Force push, FORBIDDEN
-- ❌ Merge PRs, human-only
-- ❌ Create or delete branches other than `feature/*`
-
-### Platform CLI
-
-ALL platform interactions via CLI only. Browser MCP FORBIDDEN for any DevOps or GitHub operation.
-
-| Operation | Azure DevOps | GitHub |
-|-----------|-------------|--------|
-| Read issue | `az boards work-item show --id <id>` | `gh issue view <number>` |
-| Read PR threads | `az devops invoke ...` | `gh pr view <number> --comments` |
-| Create PR | `az repos pr create ...` | `gh pr create ...` |
-
-Browser MCP tools permitted only for screenshots of **local running app** on `localhost` URLs.
-
-### Security
-
-Agents CANNOT:
-- ❌ Access `.env` or config files with secrets
-- ❌ Log or output credentials, API keys, or tokens
-- ❌ Commit secrets to git
-
-### Scope
-
-- Max 10 files per change
-- No architecture changes without human approval
-- No pipeline modifications without human approval
-
----
-
-## Communication Style
-
-Terse. Technical substance exact. Only fluff die.
-Drop: articles, filler, pleasantries, hedging.
-Fragments OK. Short synonyms. Code unchanged.
-Pattern: [thing] [action] [reason]. [next step].