wogiflow 2.24.0 → 2.25.0

package/.claude/commands/wogi-decide.md

@@ -304,6 +304,46 @@ In `config.json`:
 }
 ```
 
+## Rule-Creation Adversary (v2.25.0+ — OPTIONAL but recommended for ambiguous rules)
+
+When creating a non-trivial rule (anything beyond pure preference-setting like "always use semicolons"), spawn an adversary on a different model (default `sonnet` via `config.researchReasoningGate.tier3.adversaryModel`) to stress-test the proposed rule BEFORE it lands in `decisions.md`.
+
+```
+Spawn Agent (subagent_type: general-purpose, model: <adversaryModel>):
+
+Input:
+  Proposed rule title: <title>
+  Proposed rule body: <body>
+  User's original phrasing: <literal request>
+
+Prompt:
+  You are the rule-creation adversary.
+  1. Edge cases: name 3 situations where following this rule would produce
+     worse outcomes than NOT following it.
+  2. Interpretation: are there 2+ reasonable interpretations? If yes, list
+     them and pick the one the user most likely meant.
+  3. Scope creep: could this rule be over-applied to situations the user
+     didn't intend? Suggest scope qualifiers.
+  4. Verdict:
+     - ACCEPT   — ship as-is
+     - CLARIFY  — multiple interpretations; ask user
+     - NARROW   — over-application risk; add scope qualifiers
+     - REJECT   — edge cases dominate; more harm than good
+
+  Output JSON: {
+    "verdict", "edge_cases", "interpretations",
+    "scope_qualifiers", "suggested_revision"
+  }
+```
+
+Process:
+- **ACCEPT** → proceed with rule creation
+- **CLARIFY** → ask user to pick interpretation
+- **NARROW** → show scope qualifier; ask user to approve
+- **REJECT** → surface edge cases; require explicit override
+
+Fail-open: adversary unavailable → proceed with standard flow. User confirmation is still present.
+
 ## Files
 
 | Action | File |

package/.claude/commands/wogi-init.md

@@ -1209,3 +1209,32 @@ Say "show me the rules" or "what patterns are we using?" anytime.
 ### If user cancels mid-wizard
 - Save progress to `.workflow/state/setup-progress.json`
 - Next run can offer to resume
+
+## v2.25.0+ — Modern Config Scaffolding (MANDATORY)
+
+New projects MUST be initialized with the following modern-stack config blocks explicitly written to `.workflow/config.json` so users can see + tune them (defaults-only inheritance is fine for behavior, but visibility matters for learning):
+
+```json
+{
+  "intentGroundedReasoning": { "enabled": true },
+  "taskBoundaryReset": {
+    "enabled": true,
+    "maxRestartsPerSession": 50
+  },
+  "storyFlow": {
+    "consumerImpactAnalysis": { "enabled": true, "breakingThreshold": 5 },
+    "scopeConfidenceAudit": { "enabled": true },
+    "itemReconciliation": { "enabled": true, "minItems": 3 }
+  },
+  "longInputGate": { "enabled": true, "lineThreshold": 40 },
+  "researchReasoningGate": {
+    "enabled": true,
+    "tier2": { "enabled": true },
+    "tier3": { "enabled": true, "adversaryModel": "sonnet" }
+  }
+}
+```
+
+These capabilities (IGR, task-boundary restart, P0 story gates, long-input routing, research reasoning gate) have proven out in 2.22+ releases. New users should NOT have to manually enable them via `flow migrate-igr` or equivalent — they are active from the first session.
+
+If onboarding a workspace (multi-repo), also ensure `workspace.autoPickupChannelDispatches: true` and the 2.22.x restart-handoff settings are present.

package/.claude/commands/wogi-learn.md

@@ -275,6 +275,52 @@ In `config.json`:
 }
 ```
 
+## Promotion Adversary (v2.25.0+ — MANDATORY)
+
+Before promoting a pattern from `feedback-patterns.md` to `decisions.md`, run a **Promotion Adversary** on a different model. Rationale: same-model self-critique rubber-stamps. The adversary checks whether the N events that triggered promotion share an actual root cause (genuine recurrence) vs. superficial similarity with different underlying causes (false recurrence — common when the pattern detector just matched keywords).
+
+```
+Spawn Agent (subagent_type: general-purpose,
+             model: config.researchReasoningGate.tier3.adversaryModel, default 'sonnet'):
+
+Input:
+  Proposed rule: <title + body>
+  Triggering events: [
+    { date, request, correction },
+    { date, request, correction },
+    { date, request, correction }
+  ]
+
+Prompt:
+  You are the rule-promotion adversary.
+  Do these N events actually share a root cause, or are they superficially
+  similar events with different underlying issues?
+
+  1. For each event: describe the root cause in your own words.
+  2. List what's common to all N root causes.
+  3. List what's different between them.
+  4. Verdict:
+     - SAME_PATTERN  — genuine recurrence; rule is well-founded
+     - MIXED         — N-1 match but one event has a different root cause
+     - DIFFERENT     — surface-similar only; no unifying pattern
+
+  Output JSON:
+  {
+    "verdict": "SAME_PATTERN" | "MIXED" | "DIFFERENT",
+    "root_causes": [...],
+    "commonalities": [...],
+    "differences": [...],
+    "suggested_rule_scope": "as_proposed" | "narrower" | "split_into_N"
+  }
+```
+
+Process the verdict:
+- **SAME_PATTERN** → proceed with promotion as-is
+- **MIXED** → ask the user: "Adversary flags event #X as different root cause. Promote rule anyway, narrow scope, or split into multiple rules?"
+- **DIFFERENT** → DO NOT auto-promote. Surface adversary output; require explicit user confirmation.
+
+Fail-open: if adversary cannot be spawned (missing API key, network), proceed with standard promotion and log a warning. The threshold check + user confirmation still apply.
+
 ## Files
 
 | Action | File |

package/.claude/commands/wogi-onboard.md

@@ -1077,3 +1077,29 @@ AskUserQuestion({
   }]
 });
 ```
+
+## v2.25.0+ — Modern Config Scaffolding (MANDATORY)
+
+When generating `.workflow/config.json` for a fresh project, include these 2.22+ capability blocks so new users inherit the current-best defaults:
+
+```json
+{
+  "intentGroundedReasoning": { "enabled": true },
+  "taskBoundaryReset": { "enabled": true, "maxRestartsPerSession": 50 },
+  "storyFlow": {
+    "consumerImpactAnalysis": { "enabled": true, "breakingThreshold": 5 },
+    "scopeConfidenceAudit": { "enabled": true },
+    "itemReconciliation": { "enabled": true, "minItems": 3 }
+  },
+  "longInputGate": { "enabled": true, "lineThreshold": 40 },
+  "researchReasoningGate": {
+    "enabled": true,
+    "tier2": { "enabled": true },
+    "tier3": { "enabled": true, "adversaryModel": "sonnet" }
+  }
+}
+```
+
+These drive IGR (Architect + Adversary + Truth Gate), task-boundary context reset via the `wogi-claude` wrapper, `/wogi-story` P0 spec gates, auto-routing of long inputs to `/wogi-extract-review`, and the research reasoning gate's assumption-surfacing + cross-model adversary. All have proven out across the 2.22.x release series; new users should not have to discover them one at a time.
+
+For multi-repo workspaces, also scaffold `workspace.autoPickupChannelDispatches: true` and leave the other `workspace.*` defaults intact — they include the 2.22.2 restart-handoff protocol.

package/.claude/commands/wogi-triage.md

@@ -356,3 +356,44 @@ Each finding is displayed using these fields from `last-review.json`:
 | File | `finding.file` + `finding.line` | "src/api.ts:45" |
 | Issue | `finding.issue` | "Raw JSON.parse without try-catch" |
 | Recommendation | `finding.recommendation` | "Use safeJsonParse from flow-utils.js" |
+
+## Anti-Deferral Enforcement (v2.25.0+ — MANDATORY)
+
+The **Review-Findings Anti-Deferral Rule** (`.workflow/state/decisions.md`, 2026-04-15) extends to `/wogi-triage` mechanically in v2.25.0+. Prevents the rubber-stamp pattern where the AI silently drops findings from "fix all" requests.
+
+**Enforcement rules**:
+
+1. **"Defer" / "skip" requires explicit user confirmation with a reason.** When the AI or user proposes to defer a finding, the triage flow MUST prompt:
+   ```
+   Defer finding wf-review-XXXX?
+     Severity: HIGH
+     Reason required: [user input]
+     [Confirm defer] [Cancel — fix now]
+   ```
+   Auto-defer without reason is FORBIDDEN.
+
+2. **"Fix all" / "Option 1" / equivalent means fix ALL.** If the user requests bulk processing:
+   - Ship a fix for every finding with evidence-tier ≥ 1
+   - If any finding is too large, STOP and ask: "Finding X requires ~Y minutes of work. Ship now, split to its own release, or defer (needs reason)?"
+   - Never silently convert a finding to "deferred" in commit messages or release notes
+
+3. **Commit/release consistency check.** Before finalizing, scan the commit message / release notes against the findings list. If the message claims "fixes F1, F2, F3, M1" but M1 isn't in the diff, BLOCK with:
+   ```
+   Commit message claims M1 is fixed, but M1 does not appear in the diff.
+   Options: [Fix M1 now] [Remove M1 from message] [Acknowledge + proceed]
+   ```
+
+4. **Triage output includes a Deferral Audit Trail**:
+   ```
+   ━━━ TRIAGE SUMMARY ━━━
+   Fixed: 12
+   Deferred (with reasons): 2
+     • M3 — "requires restructure, tracked as wf-XXXXXXXX" (user-confirmed)
+     • L5 — "out of scope for current release" (user-confirmed)
+   Silently dropped: 0 ← MUST be 0
+   ━━━━━━━━━━━━━━━━━━━━━━
+   ```
+
+Historical incident (v2.17.4 release, 2026-04-15): commit message claimed "fix all findings" but M1 and M3 were silently dropped. The v2.25.0+ mechanical enforcement makes that failure mode architecturally impossible — the flow stops and asks rather than letting the AI make an autonomous defer decision.
+
+Skip only if `config.triage.antiDeferralEnforcement.enabled` is explicitly `false` (default: true).

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "wogiflow",
-  "version": "2.24.0",
+  "version": "2.25.0",
   "description": "AI-powered development workflow management system with multi-model support",
   "main": "lib/index.js",
   "bin": {
@@ -10,7 +10,7 @@
   },
   "scripts": {
     "flow": "./scripts/flow",
-    "test": "NODE_ENV=test node --test tests/auto-compact-prompt.test.js tests/flow-paths.test.js tests/flow-io.test.js tests/flow-config-loader.test.js tests/flow-damage-control.test.js tests/flow-output.test.js tests/flow-constants.test.js tests/flow-session-state.test.js tests/flow-hooks-integration.test.js tests/flow-utils.test.js tests/flow-security.test.js tests/flow-memory-db.test.js tests/flow-durable-session.test.js tests/flow-skill-matcher.test.js tests/flow-bridge.test.js tests/flow-proactive-compact.test.js tests/flow-cascade-completion.test.js tests/flow-capture-gate.test.js tests/flow-correction-detector-hybrid.test.js tests/flow-promote.test.js tests/flow-archive-runs.test.js tests/flow-memory.test.js tests/flow-hooks-pre-tool-helpers.test.js tests/flow-hooks-bugfix-scope-gate.test.js tests/flow-hooks-routing-gate.test.js tests/flow-hooks-phase-read-gate.test.js tests/flow-hooks-commit-log-gate.test.js tests/flow-hooks-deploy-gate.test.js tests/flow-hooks-todowrite-gate.test.js tests/flow-hooks-git-safety-gate.test.js tests/flow-hooks-scope-mutation-gate.test.js tests/flow-hooks-strike-gate.test.js tests/flow-hooks-component-check.test.js tests/flow-hooks-scope-gate.test.js tests/flow-hooks-implementation-gate.test.js tests/flow-hooks-research-gate.test.js tests/flow-hooks-loop-check.test.js tests/flow-hooks-manager-boundary-gate.test.js tests/flow-hooks-phase-gate.test.js tests/flow-hooks-pre-tool-orchestrator.test.js tests/flow-hooks-observation-capture.test.js tests/flow-hooks-task-gate.test.js tests/flow-durable-session-suspension.test.js tests/flow-health-mcp-scopes.test.js tests/flow-lean-config.test.js tests/flow-workspace-autopickup.test.js tests/flow-worker-boundary-gate.test.js tests/flow-worker-question-classifier.test.js tests/flow-completion-truth-gate-contradictions.test.js tests/flow-structure-sensor.test.js tests/flow-workspace-dispatch-tracking.test.js tests/flow-story-gates.test.js tests/flow-workspace-restart-handoff.test.js tests/flow-wogi-claude-wrapper.test.js tests/flow-wave1-integrations.test.js tests/flow-wave2-integrations.test.js && NODE_ENV=test node tests/run-quality-gates.test.js",
+    "test": "NODE_ENV=test node --test tests/auto-compact-prompt.test.js tests/flow-paths.test.js tests/flow-io.test.js tests/flow-config-loader.test.js tests/flow-damage-control.test.js tests/flow-output.test.js tests/flow-constants.test.js tests/flow-session-state.test.js tests/flow-hooks-integration.test.js tests/flow-utils.test.js tests/flow-security.test.js tests/flow-memory-db.test.js tests/flow-durable-session.test.js tests/flow-skill-matcher.test.js tests/flow-bridge.test.js tests/flow-proactive-compact.test.js tests/flow-cascade-completion.test.js tests/flow-capture-gate.test.js tests/flow-correction-detector-hybrid.test.js tests/flow-promote.test.js tests/flow-archive-runs.test.js tests/flow-memory.test.js tests/flow-hooks-pre-tool-helpers.test.js tests/flow-hooks-bugfix-scope-gate.test.js tests/flow-hooks-routing-gate.test.js tests/flow-hooks-phase-read-gate.test.js tests/flow-hooks-commit-log-gate.test.js tests/flow-hooks-deploy-gate.test.js tests/flow-hooks-todowrite-gate.test.js tests/flow-hooks-git-safety-gate.test.js tests/flow-hooks-scope-mutation-gate.test.js tests/flow-hooks-strike-gate.test.js tests/flow-hooks-component-check.test.js tests/flow-hooks-scope-gate.test.js tests/flow-hooks-implementation-gate.test.js tests/flow-hooks-research-gate.test.js tests/flow-hooks-loop-check.test.js tests/flow-hooks-manager-boundary-gate.test.js tests/flow-hooks-phase-gate.test.js tests/flow-hooks-pre-tool-orchestrator.test.js tests/flow-hooks-observation-capture.test.js tests/flow-hooks-task-gate.test.js tests/flow-durable-session-suspension.test.js tests/flow-health-mcp-scopes.test.js tests/flow-lean-config.test.js tests/flow-workspace-autopickup.test.js tests/flow-worker-boundary-gate.test.js tests/flow-worker-question-classifier.test.js tests/flow-completion-truth-gate-contradictions.test.js tests/flow-structure-sensor.test.js tests/flow-workspace-dispatch-tracking.test.js tests/flow-story-gates.test.js tests/flow-workspace-restart-handoff.test.js tests/flow-wogi-claude-wrapper.test.js tests/flow-wave1-integrations.test.js tests/flow-wave2-integrations.test.js tests/flow-wave3-integrations.test.js && NODE_ENV=test node tests/run-quality-gates.test.js",
     "test:syntax": "find scripts/ lib/ -name '*.js' -not -path '*/node_modules/*' -exec node --check {} +",
     "lint": "eslint scripts/ lib/ tests/",
     "lint:ci": "eslint scripts/ lib/ tests/ --max-warnings 0",