open/ktg-plugin-marketplace
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity Actions

feat: initial open marketplace with llm-security, config-audit, ultraplan-local

Browse source
This commit is contained in:
Kjell Tore Guttormsen 2026-04-06 18:47:49 +02:00
commit f93d6abdae
380 changed files with 65935 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

12
plugins/ultraplan-local/.claude-plugin/plugin.json Normal file
View file

@ -0,0 +1,12 @@
{
"name": "ultraplan-local",
"description": "Deep implementation planning with interview, specialized agent swarms, external research, adversarial review, session decomposition, and headless execution support.",
"version": "1.4.0",
"author": {
"name": "Kjell Tore Guttormsen"
},
"homepage": "https://git.fromaitochitta.com/open/ultraplan-local",
"repository": "https://git.fromaitochitta.com/open/ultraplan-local.git",
"license": "MIT",
"keywords": ["planning", "implementation", "agents", "adversarial-review", "headless", "execution"]
}

34
plugins/ultraplan-local/.forgejo/ISSUE_TEMPLATE/bug_report.yaml Normal file
View file

@ -0,0 +1,34 @@
name: Bug report
description: Something is not working
labels: ["type: bug"]
body:
- type: input
id: version
attributes:
label: Plugin version
description: From .claude-plugin/plugin.json
validations:
required: true
- type: input
id: claude-version
attributes:
label: Claude Code version
description: Output of `claude --version`
- type: textarea
id: steps
attributes:
label: Steps to reproduce
validations:
required: true
- type: textarea
id: expected
attributes:
label: Expected behavior
validations:
required: true
- type: textarea
id: actual
attributes:
label: Actual behavior
validations:
required: true

21
plugins/ultraplan-local/.forgejo/ISSUE_TEMPLATE/feature_request.yaml Normal file
View file

@ -0,0 +1,21 @@
name: Feature request
description: Suggest an improvement
labels: ["type: enhancement"]
body:
- type: textarea
id: problem
attributes:
label: Problem description
description: What friction did you run into?
validations:
required: true
- type: textarea
id: solution
attributes:
label: Proposed solution
validations:
required: true
- type: textarea
id: alternatives
attributes:
label: Alternatives considered

14
plugins/ultraplan-local/.gitignore vendored Normal file
View file

@ -0,0 +1,14 @@
# OS files
.DS_Store
Thumbs.db
Desktop.ini
# Editor files
*.swp
*.swo
*~
.vscode/
.idea/
# Local configuration
*.local.md

194
plugins/ultraplan-local/CHANGELOG.md Normal file
View file

@ -0,0 +1,194 @@
# Changelog
All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
## [1.4.0] - 2026-04-06
### Renamed
- **`/ultraexecute``/ultraexecute-local`** — renamed for namespace consistency with `/ultraplan-local` and future-proofing against potential Anthropic naming. File: `commands/ultraexecute.md``commands/ultraexecute-local.md`. Note: `ultraexecute_summary` JSON key and `ultraexecute-stats.jsonl` filename are unchanged for backward compatibility.
### Added
- **`convention-scanner` agent** (sonnet) — dedicated agent for discovering coding conventions: naming, directory layout, import style, error handling, test patterns, git commit style, documentation patterns. Replaces inline Explore agent prompt for medium+ codebases.
- **Success Criteria section** in spec template — falsifiable "definition of done" conditions that the spec-reviewer validates and ultraexecute-local uses for verification.
- **Dry-run multi-session preview**`--dry-run` now shows session groupings, wave structure, billing status, and `claude -p` commands when plan has an Execution Strategy.
- **External verification rule** in headless launch template — wave verification must run commands independently, never parse session logs as proof.
- **Billing preamble** in headless launch template — `unset ANTHROPIC_API_KEY` prevents accidental API billing.
- **Phase mapping comment** in planning-orchestrator — documents how orchestrator phases 1-7 map to command phases 4-10.
### Fixed
- **`git add -A` in escalation** — replaced with targeted staging of only files from completed steps. Prevents staging secrets, binaries, or unrelated work.
- **False `background: true` claim** — command documentation incorrectly stated the orchestrator has `background: true` in its frontmatter. Corrected to explain `run_in_background` on the Agent tool.
### Changed
- Execution Strategy reconciliation in session-decomposer — respects existing `## Execution Strategy` as input instead of re-analyzing from scratch. Warns on file-overlap conflicts.
- Headless launch template uses `--dangerously-skip-permissions` instead of `--allowedTools` for more robust headless execution.
- Session-decomposer updated with `--dangerously-skip-permissions` and `unset ANTHROPIC_API_KEY` for generated scripts.
- Convention Scanner references in command and orchestrator updated to use dedicated plugin agent.
- ROADMAP.md translated from Norwegian to English.
- plugin.json: added homepage, repository, license, keywords. Version bumped to 1.4.0.
- README badge updated to v1.4.0.
## [1.3.0] - 2026-04-06
### Added
- **Session-aware parallel execution**`/ultraexecute` auto-detects `## Execution Strategy` in plans and orchestrates multi-session parallel execution via `claude -p`. No manual `bash launch.sh` required.
- **`--fg` flag** — force foreground sequential execution, ignoring Execution Strategy
- **`--session N` flag** — execute only session N from the plan's Execution Strategy (used by child processes)
- **Phase 2.5 (Execution strategy decision)** — determines single-session vs multi-session mode
- **Phase 2.6 (Multi-session orchestration)** — launches parallel `claude -p` sessions per wave, waits for completion, aggregates results
- **Execution Strategy in plan template** — new `## Execution Strategy` section with sessions, waves, scope fences, and execution order. Generated by planning-orchestrator for plans with > 5 steps.
- **Execution Strategy generation in planning-orchestrator** — Phase 5 analyzes step file-overlap to build dependency graph, groups connected components into sessions of 35 steps, and organizes sessions into parallel waves.
### Changed
- planning-orchestrator Phase 5 extended with Execution Strategy generation logic
- ultraplan-local Phase 8 now lists Execution Strategy as 10th required plan section
- Plan template includes `## Execution Strategy` section template with grouping rules
- CLAUDE.md updated with new ultraexecute modes and architecture
- plugin.json version bumped to 1.3.0
## [1.2.0] - 2026-04-06
### Added
- **`/ultraexecute` command** — disciplined plan executor with 9-phase workflow. Reads an ultraplan or session spec, executes steps sequentially with strict failure recovery, tracks progress for resume, and reports results in machine-parseable JSON.
- 4 modes: default (execute), `--resume` (continue from checkpoint), `--dry-run` (validate without executing), `--step N` (single step)
- Per-step protocol: implement → verify → on-failure handling → checkpoint
- Failure recovery from plan's On failure clauses (revert/retry/skip/escalate)
- 3-attempt retry cap per step (initial + 2 retries)
- Progress file (`.ultraexecute-progress-{slug}.json`) for crash recovery and resume
- Entry/exit condition checking for session specs
- Scope fence enforcement for session specs (never-touch file protection)
- JSON summary block in output for headless log parsing
- Stats tracking to `ultraexecute-stats.jsonl`
### Changed
- CLAUDE.md restructured with two commands table (plan + execute)
- plugin.json version bumped to 1.2.0
## [1.1.0] - 2026-04-06
### Added
- **`--decompose` mode** — splits an existing plan into self-contained headless sessions. Analyzes step dependencies, groups steps into sessions of 35 steps each, identifies parallel execution waves, and generates session specs + dependency graph + launch script.
- **`--export headless` format** — shortcut for `--decompose`. Produces the same session decomposition output.
- **session-decomposer agent** (sonnet) — dedicated agent for plan decomposition. Parses step dependencies, builds dependency graph, groups steps into sessions, generates session specs with scope fences and failure handling.
- **Session spec template** (`templates/session-spec-template.md`) — defines the format for individual session specs: context, scope fence, steps, entry/exit conditions, failure handling, handoff state.
- **Headless launch template** (`templates/headless-launch-template.md`) — template for generating bash launch scripts that execute sessions in parallel waves using `claude -p`.
- **Failure recovery per step** — plan template now includes `On failure:` (revert/retry/skip/escalate) and `Checkpoint:` (git commit) fields for every implementation step.
- **Headless readiness dimension** in plan-critic — new 9th review dimension checking for On failure clauses, Checkpoint fields, and circuit breakers. Weighted at 0.15 in the quality score.
### Changed
- Plan-critic scoring rebalanced: 6 dimensions (was 5), weights adjusted to accommodate headless readiness
- Plan template step format extended with On failure and Checkpoint fields
- Planning-orchestrator Phase 5 updated with failure recovery generation requirements
- CLAUDE.md updated with new agent, modes, and state paths
## [1.0.0] - 2026-04-06
### Added
- **`--quick` mode** — skips exploration agent swarm. Runs interview → lightweight Glob/Grep scan → planning → adversarial review. For when the developer knows the codebase and needs structure, not cartography.
- **`--export` mode** — generates shareable output from an existing plan file. Three formats: `pr` (PR description), `issue` (issue comment), `markdown` (clean plan without internal metadata).
- **task-finder three-tier categorization** — findings categorized as Must-change (must be modified), Must-respect (contract that must not break), or Reference (context/reuse). Replaces flat file list.
- **Adaptive interview depth** — interview adapts to answer quality. Detailed answers trigger fewer, more targeted questions. Short/uncertain answers trigger simpler questions with offered alternatives.
- **Complete `plugin.json` metadata** — author, homepage, repository, license, keywords added.
- **README badges** — version, license, and platform badges.
- **Known limitations section in README** — IaC projects (Terraform, Helm, Pulumi, CDK) get reduced value from exploration agents.
- **Forgejo issue templates** — bug report and feature request YAML templates.
- **CONTRIBUTING.md** — rewritten for honest solo-project model.
### Changed
- plugin.json version bumped to 1.0.0
- Command header updated to Ultraplan Local v1.0
- Orchestrator accepts `mode: quick` in prompt for lightweight scanning path
## [0.4.0] - 2026-04-06
### Added
- **3 new agents** for information-complete planning:
- `task-finder` — dedicated agent for finding task-relevant files, functions, types, and reuse candidates. Replaces inline Explore agent.
- `git-historian` — analyzes git log, blame, active branches, code ownership, and hot files for planning context.
- `spec-reviewer` — reviews spec quality (completeness, consistency, testability, scope clarity) before exploration begins. New Phase 1b/4b.
- **Plan scoring** — plan-critic produces a quantitative quality score (0100) across 5 weighted dimensions with letter grades (AD) and verdicts (APPROVE/REVISE/REPLAN).
- **No-placeholder rule** — plan-critic flags TBD, TODO, vague instructions, and underspecified steps as unconditional blockers. 3+ blockers = REPLAN regardless of score.
- **`[ASSUMPTION]` marking** — planning-orchestrator marks all unverifiable claims and warns when >3 assumptions exist.
### Changed
- **All agents run for all codebase sizes.** Small codebases get the same 6 core agents as large ones. Agent turns scale down for small codebases instead of dropping agents entirely.
- Phase 4b (spec review) added before exploration in both command and orchestrator.
- Orchestrator Phase 2 agent table expanded: 6 always + 1 conditional + 1 medium-only.
- Plan-critic review checklist expanded with no-placeholder checks (section 7) and scoring output.
- Orchestrator rules updated with assumption-marking and no-placeholder requirements.
## [0.3.0] - 2026-04-05
### Added
- **planning-orchestrator agent** — dedicated background agent (`background: true`) that handles Phases 410 autonomously. Replaces generic background agent spawning with a purpose-built orchestrator running on Opus with `maxTurns: 50`.
- **`effort` and `maxTurns` on all agents** — fine-grained cost and depth control:
- Exploration agents: `effort: medium`, `maxTurns: 1520`
- Review agents (plan-critic, scope-guardian): `effort: high`, `maxTurns: 10`
- Research-scout: `effort: medium`, `maxTurns: 10`
- **Plugin `settings.json`** — default configuration for mode, research, agent counts, interview limits, and team settings. Users can override in their own settings.
- **Worktree isolation for Agent Teams** — team members use `isolation: "worktree"` to prevent file conflicts during parallel implementation
- **Session tracking** (Phase 12) — writes JSONL records to `${CLAUDE_PLUGIN_DATA}/ultraplan-stats.jsonl` with task metadata, agent counts, review verdicts, and outcomes
### Changed
- Phase 3 now launches the `planning-orchestrator` agent instead of a generic background agent
- Agent Team implementation uses worktree isolation by default
## [0.2.0] - 2026-04-05
### Added
- **Interview phase** — iterative requirements gathering with AskUserQuestion before exploration. Produces a spec file that feeds into planning.
- **7 specialized agents** in `agents/` directory:
- `architecture-mapper` — deep architecture analysis, anti-patterns, smell detection
- `dependency-tracer` — import-chain following, data-flow analysis, side-effect catching
- `test-strategist` — test strategy design based on existing patterns
- `risk-assessor` — threat modeling, edge cases, failure modes
- `plan-critic` — dedicated adversarial reviewer with hardcoded critical perspective
- `scope-guardian` — scope creep and scope gap detection
- `research-scout` — external research via WebSearch/Tavily for unfamiliar technologies
- **External research capability** — research-scout agent searches documentation, known issues, and best practices when the task involves external/unfamiliar technology
- **Background mode** — default mode runs interview in foreground, then plans in background. User is notified when done.
- **Spec-driven mode** (`--spec`) — skip interview, provide a pre-written spec file, plan entirely in background
- **Foreground mode** (`--fg`) — all phases in foreground, blocks session (v0.1.0 behavior)
- **Agent Team support** — when plan has 3+ independent steps, offers parallel implementation via Agent Teams
- **Spec template** in `templates/spec-template.md`
- **Research Sources section** in plan template for citing external research
- **Dual adversarial review** — plan-critic and scope-guardian run in parallel
### Changed
- Exploration agents replaced with named specialized agents from `agents/` directory
- Agent count scales with codebase: 3 (small), 5 (medium), 7 (large)
- Plan template extended with Research Sources and external tech fields
- Handoff phase supports "execute with team" option
- Command workflow expanded from 9 to 11 phases
## [0.1.0] - 2026-04-05
### Added
- Initial release
- `/ultraplan` slash command with 6-phase workflow
- Parallel Sonnet exploration (3 agents: architecture, task-relevant, conventions)
- Opus-driven plan generation from structured template
- Plan refinement loop with execute/save handoff
- Plan template with context, analysis, steps, alternatives, risks, verification
- Cross-platform support (Mac, Linux, Windows) — pure markdown, no scripts

68
plugins/ultraplan-local/CLAUDE.md Normal file
View file

@ -0,0 +1,68 @@
# ultraplan-local
Deep implementation planning with interview, specialized agent swarms, external research, adversarial review, session decomposition, disciplined execution, and headless support. A local alternative to Anthropic's Ultraplan.
## Commands
| Command | Description | Model |
|---------|-------------|-------|
| `/ultraplan-local` | Plan — interview, explore, plan, review | opus |
| `/ultraexecute-local` | Execute — disciplined plan/session-spec executor with failure recovery | opus |
### /ultraplan-local modes
| Flag | Behavior |
|------|----------|
| _(default)_ | Interview + background planning (non-blocking) |
| `--spec <path>` | Skip interview, use provided spec |
| `--fg` | All phases in foreground (blocking) |
| `--quick` | Interview + plan directly (no agent swarm) |
| `--export <pr\|issue\|markdown\|headless> <plan>` | Generate shareable output from existing plan |
| `--decompose <plan>` | Split plan into self-contained headless sessions |
### /ultraexecute-local modes
| Flag | Behavior |
|------|----------|
| _(default)_ | Execute plan — auto-detects Execution Strategy for multi-session |
| `--resume` | Resume from last progress checkpoint |
| `--dry-run` | Validate plan structure without executing |
| `--step N` | Execute only step N |
| `--fg` | Force foreground — run all steps sequentially, ignore Execution Strategy |
| `--session N` | Execute only session N from plan's Execution Strategy |
## Agents
| Agent | Model | Role |
|-------|-------|------|
| planning-orchestrator | opus | Runs full pipeline as background task |
| architecture-mapper | sonnet | Codebase structure, tech stack, patterns |
| dependency-tracer | sonnet | Import chains, data flow, side effects |
| task-finder | sonnet | Task-relevant files, functions, reuse candidates |
| risk-assessor | sonnet | Risks, edge cases, failure modes |
| test-strategist | sonnet | Test patterns, coverage gaps, strategy |
| git-historian | sonnet | Recent changes, ownership, hot files |
| research-scout | sonnet | External docs for unfamiliar tech (conditional) |
| spec-reviewer | sonnet | Spec quality check before exploration |
| plan-critic | sonnet | Adversarial plan review (9 dimensions) |
| scope-guardian | sonnet | Scope alignment (creep + gaps) |
| session-decomposer | sonnet | Splits plans into headless sessions with dependency graph |
| convention-scanner | sonnet | Coding conventions: naming, style, error handling, test patterns |
## Architecture
**Plan:** 12-phase workflow: Parse mode -> Interview -> Background transition -> Codebase sizing -> Spec review -> Parallel exploration (6-8 agents) -> Deep-dives -> Synthesis -> Planning -> Adversarial review -> Present/refine -> Handoff.
**Decompose:** Parse plan -> Analyze step dependencies -> Group into sessions -> Identify parallel waves -> Generate session specs + dependency graph + launch script.
**Execute:** Parse plan -> Detect Execution Strategy -> Single-session (step loop) or multi-session (parallel waves via `claude -p`) -> Verification -> Report.
## State
- Specs: `.claude/ultraplan-spec-{date}-{slug}.md`
- Plans: `.claude/plans/ultraplan-{date}-{slug}.md`
- Sessions: `.claude/ultraplan-sessions/{slug}/session-*.md`
- Launch scripts: `.claude/ultraplan-sessions/{slug}/launch.sh`
- Progress: `{plan-dir}/.ultraexecute-progress-{slug}.json`
- Plan stats: `${CLAUDE_PLUGIN_DATA}/ultraplan-stats.jsonl`
- Exec stats: `${CLAUDE_PLUGIN_DATA}/ultraexecute-stats.jsonl`

53
plugins/ultraplan-local/CONTRIBUTING.md Normal file
View file

@ -0,0 +1,53 @@
# Contributing to ultraplan-local
This is a solo project. Issues are welcome. PRs may be considered but are not expected.
## Reporting bugs
Open an issue with:
- Plugin version (from `.claude-plugin/plugin.json`)
- Claude Code version (`claude --version`)
- What you did, what you expected, what happened instead
- Whether it fails consistently or occasionally
## Suggesting features or improvements
Open an issue describing:
- The problem you ran into
- What you think would solve it
- Any alternatives you considered
## Design principles
Changes to this plugin must preserve:
- **Pure markdown** — no scripts, no dependencies, no platform-specific code
- **Cross-platform** — must work identically on Mac, Linux, and Windows
- **Cost-aware** — Sonnet for exploration, Opus only for planning
- **Privacy-first** — never read files outside the repo, never log secrets
- **Honest** — if a task is trivial, say so instead of inflating the plan
## Architecture
| File | Purpose |
|------|---------|
| `.claude-plugin/plugin.json` | Plugin manifest |
| `commands/ultraplan-local.md` | The `/ultraplan-local` slash command — workflow orchestration |
| `agents/*.md` | Specialized agents for exploration, review, and orchestration |
| `templates/plan-template.md` | Structured plan output format |
| `templates/spec-template.md` | Spec file format |
The command file is the core. All planning logic lives in markdown.
## Testing locally
```bash
claude --plugin-dir /path/to/ultraplan-local
# Then in the session:
/ultraplan-local <describe a task>
```
Verify:
- Exploration agents spawn in parallel
- Plan follows the template structure
- Plan file is written to `.claude/plans/`
- Adversarial review runs (plan-critic + scope-guardian)

21
plugins/ultraplan-local/LICENSE Normal file
View file

@ -0,0 +1,21 @@
MIT License
Copyright (c) 2026 Kjell Tore Guttormsen
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.

351
plugins/ultraplan-local/README.md Normal file
View file

@ -0,0 +1,351 @@
# ultraplan-local — Plan Deep, Execute Clean
![Version](https://img.shields.io/badge/version-1.4.0-blue)
![License](https://img.shields.io/badge/license-MIT-green)
![Platform](https://img.shields.io/badge/platform-Claude%20Code-purple)
A [Claude Code](https://docs.anthropic.com/en/docs/claude-code) plugin that plans complex implementations with specialized agent swarms and adversarial review, then executes them autonomously with failure recovery and parallel sessions. Two commands, one pipeline:
| Command | What it does |
|---------|-------------|
| **`/ultraplan-local`** | Plan — interview, agent swarm exploration, adversarial review |
| **`/ultraexecute-local`** | Execute — disciplined step-by-step implementation with failure recovery |
Plan first, then execute. Or plan and execute in one flow. The plan is the contract between the two.
No cloud dependency. No GitHub requirement. Works on **Mac, Linux, and Windows**.
## Quick start
```bash
# Install
git clone https://git.fromaitochitta.com/open/ultraplan-local.git ~/plugins/ultraplan-local
# Plan
/ultraplan-local Add user authentication with JWT tokens
# Execute
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-jwt-auth.md
```
That's it. `/ultraplan-local` interviews you, explores the codebase with 6-8 specialized agents, writes a plan with adversarial review, and hands you a plan file. `/ultraexecute-local` reads that plan and implements it step by step with automatic failure recovery and git checkpoints.
## When to use it
**Use it when:**
- The task touches 3+ files or modules and you need to understand how they connect
- You're working in an unfamiliar codebase and need a map before you start
- The implementation has non-obvious dependencies, ordering constraints, or risks
- You want a reviewable plan before committing to an approach
- You need autonomous headless execution without human intervention
**Don't use it when:**
- The task is a single-file change where the fix is obvious
- You already know exactly what to change and in what order
- The task is pure research or exploration with no implementation to plan
**Rule of thumb:** If you can describe the full implementation in one sentence and it touches 1-2 files, skip ultraplan and just implement. If you need to think about it, ultraplan earns its cost.
---
## `/ultraplan-local` — Planning
Runs a structured planning workflow that produces an implementation plan detailed enough for autonomous execution.
### How it works
1. **Interview** -- Iterative requirements gathering (goal, constraints, preferences, NFRs)
2. **Explore** -- 6-8 specialized Sonnet agents analyze your codebase in parallel
3. **Research** -- External documentation for unfamiliar technologies (conditional)
4. **Synthesize** -- Findings merged into a unified codebase understanding
5. **Plan** -- Opus creates a comprehensive implementation plan with failure recovery
6. **Critique** -- Adversarial review by plan-critic (9 dimensions) and scope-guardian
7. **Refine** -- You review, ask questions, request changes
8. **Handoff** -- Execute now, save for later, or export
Output: `.claude/plans/ultraplan-{date}-{slug}.md`
### Modes
| Mode | Usage | Behavior |
|------|-------|----------|
| **Default** | `/ultraplan-local Add auth` | Interview + background planning |
| **Spec-driven** | `/ultraplan-local --spec spec.md` | Skip interview, plan from spec file |
| **Foreground** | `/ultraplan-local --fg Add auth` | All phases in foreground (blocking) |
| **Quick** | `/ultraplan-local --quick Add auth` | No agent swarm, lightweight scan only |
| **Decompose** | `/ultraplan-local --decompose plan.md` | Split plan into headless session specs |
| **Export** | `/ultraplan-local --export pr plan.md` | PR description, issue comment, or clean markdown |
### What the plan contains
Every plan includes:
- **Context** -- Why this change is needed
- **Architecture Diagram** -- Mermaid C4-style component diagram
- **Codebase Analysis** -- Tech stack, patterns, relevant files, reusable code
- **Research Sources** -- External documentation (when applicable)
- **Implementation Plan** -- Ordered steps with file paths, changes, failure recovery, and git checkpoints
- **Alternatives Considered** -- Other approaches with pros/cons
- **Test Strategy** -- From test-strategist findings
- **Risks and Mitigations** -- From risk-assessor findings
- **Verification** -- Testable end-to-end criteria
- **Execution Strategy** -- Session grouping and parallel waves (plans with > 5 steps)
- **Plan Quality Score** -- Quantitative grade (A-D) across 6 weighted dimensions
Every implementation step includes:
- **On failure:** -- what to do when verification fails (revert / retry / skip / escalate)
- **Checkpoint:** -- git commit after success
These fields are what makes `/ultraexecute-local` possible -- the plan carries all decisions needed for autonomous execution.
### Exploration agents
| Agent | Role | Runs on |
|-------|------|---------|
| architecture-mapper | Codebase structure, patterns, anti-patterns | All codebases |
| dependency-tracer | Import chains, data flow, side effects | All codebases |
| task-finder | Task-relevant files, functions, reuse candidates | All codebases |
| test-strategist | Test patterns, coverage gaps, strategy | All codebases |
| git-historian | Git history, ownership, hot files, branches | All codebases |
| risk-assessor | Threats, edge cases, failure modes | All codebases |
| research-scout | External docs, best practices | When unfamiliar tech detected |
| convention-scanner | Coding conventions, naming, style, test patterns | Medium+ codebases |
### Review agents
| Agent | Role |
|-------|------|
| spec-reviewer | Checks spec quality before exploration begins |
| plan-critic | Adversarial review: 9 dimensions, quantitative scoring, no-placeholder enforcement |
| scope-guardian | Verifies plan matches spec: finds scope creep and scope gaps |
---
## `/ultraexecute-local` — Execution
Reads a plan from `/ultraplan-local` and implements it with strict discipline. No guessing, no improvising -- follows the plan exactly.
### How it works per step
1. **Implement** -- Applies the Changes field exactly as written
2. **Verify** -- Runs the Verify command (exit code is truth)
3. **On failure** -- Follows the plan's recovery clause (revert / retry / skip / escalate)
4. **Checkpoint** -- Commits changes per the plan's Checkpoint field
### Modes
| Mode | Usage | Behavior |
|------|-------|----------|
| **Default** | `/ultraexecute-local plan.md` | Auto-detects Execution Strategy, parallel if available |
| **Resume** | `/ultraexecute-local plan.md --resume` | Resume from last progress checkpoint |
| **Dry run** | `/ultraexecute-local plan.md --dry-run` | Validate plan structure + preview sessions and billing |
| **Single step** | `/ultraexecute-local plan.md --step 3` | Execute only step 3 |
| **Foreground** | `/ultraexecute-local plan.md --fg` | Force sequential, ignore Execution Strategy |
| **Single session** | `/ultraexecute-local plan.md --session 2` | Execute only session 2 from Execution Strategy |
### Session-aware parallel execution
When a plan has an `## Execution Strategy` section (auto-generated by `/ultraplan-local` for plans with > 5 steps), `/ultraexecute-local` automatically:
1. Parses sessions, waves, and scope fences from the plan
2. Launches parallel `claude -p "/ultraexecute-local --session N plan.md"` per session per wave
3. Waits for each wave to complete before starting the next
4. Aggregates results and runs master verification
```
Wave 1: Session 1 (Foundation) + Session 2 (Middleware) -- parallel
↓ both complete
Wave 2: Session 3 (Integration) -- sequential
↓ complete
Master verification
```
Use `--fg` to force sequential execution even when a plan has an Execution Strategy.
### Billing safety
Before launching parallel `claude -p` sessions, `/ultraexecute-local` checks whether `ANTHROPIC_API_KEY` is set in your environment. If it is, parallel sessions will bill your **API account** (pay-per-token), not your Claude subscription (Max/Pro). This can be expensive -- parallel Opus sessions can cost $50-100+ per run.
When an API key is detected, you are asked how to proceed:
- **Use --fg instead** (recommended) -- run sequentially in the current session using your subscription
- **Continue with API billing** -- launch parallel sessions on your API account
- **Stop** -- cancel and unset the API key first
If no API key is set, parallel sessions use your subscription and proceed without asking.
### Failure recovery
- **3-attempt retry cap** -- retries twice, then stops (never loops forever)
- **On failure: revert** -- undo changes, stop
- **On failure: retry** -- try alternative approach, then revert if still failing
- **On failure: skip** -- non-critical step, continue
- **On failure: escalate** -- stop everything, needs human judgment
### Headless execution
`/ultraexecute-local` is designed for `claude -p` headless sessions:
- **No questions asked** -- all recovery decisions come from the plan
- **Progress file** -- crash recovery via `.ultraexecute-progress-{slug}.json`
- **Scope fence enforcement** -- never touches files outside the session's scope
- **JSON summary** -- machine-parseable `ultraexecute_summary` block for log parsing
---
## The full pipeline
```
/ultraplan-local /ultraexecute-local
┌──────────────────────┐ ┌──────────────────────┐
│ Interview │ │ Parse plan │
│ ↓ │ │ ↓ │
│ 6-8 exploration │ │ Detect sessions │
│ agents (parallel) │ plan.md │ ↓ │
│ ↓ │ ──────────────→ │ Execute steps │
│ Opus planning │ │ (verify + checkpoint │
│ ↓ │ │ per step) │
│ Adversarial review │ │ ↓ │
│ ↓ │ │ Master verification │
│ Plan file │ │ ↓ │
└──────────────────────┘ │ Done │
└──────────────────────┘
```
### Example workflows
**Interactive planning + manual execution:**
```bash
/ultraplan-local Add WebSocket notifications
# Review the plan, then:
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-websocket.md
```
**Spec-driven headless (CI/automation):**
```bash
# Plan in background from pre-written spec
/ultraplan-local --spec .claude/specs/websocket-spec.md
# Execute with parallel sessions
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-websocket.md
```
**Quick plan for small tasks:**
```bash
/ultraplan-local --quick Fix the login redirect bug
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-login-fix.md
```
**Dry run to validate before executing:**
```bash
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-auth.md --dry-run
# Looks good:
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-auth.md
```
---
## How it compares
| Feature | Ultraplan (cloud) | Copilot Workspace | Cursor | ultraplan-local |
|---------|-------------------|-------------------|--------|-----------------|
| Planning model | Opus | GPT-4 | Unknown | Opus |
| Requirements gathering | Task only | Issue-driven | Prompt | Interview + spec |
| Codebase exploration | Cloud | Cloud | Cloud | 6-8 specialized agents |
| Adversarial review | No | No | No | **plan-critic + scope-guardian** |
| Plan quality scoring | No | No | No | **A-D grade, 6 dimensions** |
| Failure recovery per step | No | No | No | **revert/retry/skip/escalate** |
| Session-aware parallel execution | No | No | No | **Automatic wave-based** |
| No-placeholder enforcement | No | No | No | **Hard blocker** |
| Headless autonomous execution | No | No | No | **`/ultraexecute-local` with `claude -p`** |
| Requires GitHub | Yes | Yes | No | **No** |
| Cross-platform | Web only | Web only | Desktop | **Mac, Linux, Windows** |
## Known limitations
**Infrastructure-as-code (IaC) gets reduced value.** The exploration agents are designed for application code. Terraform, Helm, Pulumi, CDK projects will get a plan, but agents like `architecture-mapper` and `test-strategist` produce less useful output for IaC. Use ultraplan-local for the structural plan, then supplement IaC-specific steps manually.
## Installation
### From source
```bash
git clone https://git.fromaitochitta.com/open/ultraplan-local.git ~/plugins/ultraplan-local
```
### Usage with Claude Code
**One-time:**
```bash
claude --plugin-dir ~/plugins/ultraplan-local
```
**Permanent** -- add to `~/.claude/settings.json`:
```json
{
"plugins": [
"~/plugins/ultraplan-local"
]
}
```
## Cost profile
- **Exploration**: 6-8 Sonnet agents with effort/turn limits (cost-effective)
- **Research**: 0-1 Sonnet agent (only when unfamiliar tech detected)
- **Review**: 2 Sonnet agents (plan-critic + scope-guardian)
- **Orchestration**: 1 Opus agent (planning-orchestrator)
- **Execution**: 1 Opus session per session in the plan
- **Typical total**: Comparable to a long Claude Code session
The plugin minimizes Opus usage by front-loading cheap Sonnet exploration.
## Requirements
- [Claude Code](https://docs.anthropic.com/en/docs/claude-code) (CLI, desktop app, or web app)
- Claude subscription with Opus access (Max plan recommended)
- Optional: [Tavily MCP server](https://github.com/tavily-ai/tavily-mcp) for enhanced external research
## Architecture
```
ultraplan-local/
├── .claude-plugin/
│ └── plugin.json # Plugin manifest (v1.4.0)
├── agents/ # 13 specialized agents
│ ├── architecture-mapper.md # Codebase structure and patterns
│ ├── dependency-tracer.md # Import chains and data flow
│ ├── task-finder.md # Task-relevant code discovery
│ ├── test-strategist.md # Test patterns and strategy
│ ├── git-historian.md # Git history, ownership, hot files
│ ├── risk-assessor.md # Risks and failure modes
│ ├── spec-reviewer.md # Spec quality review
│ ├── plan-critic.md # Adversarial plan review + scoring
│ ├── scope-guardian.md # Scope alignment check
│ ├── research-scout.md # External research
│ ├── session-decomposer.md # Plan → headless session specs
│ ├── convention-scanner.md # Coding conventions and patterns
│ └── planning-orchestrator.md # Background planning pipeline
├── commands/ # 2 slash commands
│ ├── ultraplan-local.md # /ultraplan-local — planning
│ └── ultraexecute-local.md # /ultraexecute-local — execution
├── templates/
│ ├── plan-template.md # Plan format (with failure recovery + execution strategy)
│ ├── session-spec-template.md # Session spec format for headless execution
│ ├── headless-launch-template.md # Launch script template
│ └── spec-template.md # Spec file format
├── settings.json # Default plugin configuration
├── CONTRIBUTING.md
├── CHANGELOG.md
├── LICENSE
└── README.md
```
Pure markdown. No scripts, no dependencies, no platform-specific code.
## Contributing
See [CONTRIBUTING.md](CONTRIBUTING.md).
## License
[MIT](LICENSE)

105
plugins/ultraplan-local/agents/architecture-mapper.md Normal file
View file

@ -0,0 +1,105 @@
---
name: architecture-mapper
description: |
Use this agent when you need deep architecture analysis of a codebase — structure,
tech stack, patterns, anti-patterns, and key abstractions.
<example>
Context: Ultraplan exploration phase needs architecture overview
user: "/ultraplan-local Add authentication to the API"
assistant: "Launching architecture-mapper to analyze codebase structure and patterns."
<commentary>
Phase 5 of ultraplan triggers this agent for every codebase size.
</commentary>
</example>
<example>
Context: User wants to understand an unfamiliar codebase
user: "Map out the architecture of this project"
assistant: "I'll use the architecture-mapper agent to analyze the codebase structure."
<commentary>
Direct architecture analysis request triggers the agent.
</commentary>
</example>
model: sonnet
color: cyan
tools: ["Read", "Glob", "Grep", "Bash"]
---
You are a senior software architect specializing in codebase analysis. Your job is
to produce a comprehensive, structured architecture report that enables confident
implementation planning.
## Your analysis process
### 1. Directory and file structure
Map the complete project layout. Report:
- Top-level organization (src/, lib/, test/, config/, etc.)
- Key subdirectories and their purpose
- File count by type (use `find` + `wc`)
- Naming conventions (kebab-case, camelCase, PascalCase)
### 2. Tech stack identification
Discover and report:
- **Languages:** primary and secondary, with file counts
- **Frameworks:** web framework, test framework, ORM, etc.
- **Build tools:** bundler, compiler, task runner
- **Package manager:** npm/yarn/pnpm/pip/cargo/go mod
- **Runtime:** Node.js version, Python version, etc.
Source these from: package.json, requirements.txt, go.mod, Cargo.toml, tsconfig.json,
Makefile, Dockerfile, CI config files.
### 3. Entry points
Find and document:
- Main application entry point(s)
- CLI entry points
- Build/start scripts (package.json scripts, Makefile targets)
- Configuration files that control behavior
### 4. Dependency graph
Map:
- External dependency count and notable packages
- Internal module structure (which directories import from which)
- Circular dependency detection (A imports B imports A)
- Shared utilities and common imports
### 5. Architecture patterns
Identify and name the patterns:
- **Overall:** monolith, microservice, monorepo, plugin architecture
- **Internal:** MVC, layered, hexagonal, event-driven, CQRS
- **Data flow:** request/response, pub/sub, pipeline, state machine
- **API style:** REST, GraphQL, RPC, WebSocket
### 6. Key abstractions
Find and document:
- Base classes and interfaces that define contracts
- Shared utilities and helper functions
- Common patterns (factory, singleton, observer, middleware chain)
- Dependency injection or service container patterns
### 7. Anti-pattern and smell detection
Flag these if found:
- **God objects:** classes/modules with too many responsibilities (>500 lines, >20 methods)
- **Deep nesting:** functions with >4 levels of indentation
- **Circular dependencies** between modules
- **Mixed concerns:** business logic in controllers, DB queries in views
- **Dead code:** exported functions with no importers
- **Inconsistent patterns:** different approaches for the same problem in different places
## Output format
Structure your report with clear sections matching the 7 areas above. Include:
- File paths for every claim (e.g., "Entry point: `src/index.ts:1`")
- Concrete examples (e.g., "Uses middleware chain pattern, see `src/middleware/auth.ts`")
- Counts and metrics where useful
- A brief "Architecture Summary" paragraph at the top (3-4 sentences)
Do NOT include raw file listings — synthesize and organize the information.

161
plugins/ultraplan-local/agents/convention-scanner.md Normal file
View file

@ -0,0 +1,161 @@
---
name: convention-scanner
description: |
Use this agent to discover coding conventions from an existing codebase.
Produces a structured conventions report covering naming, directory layout,
import style, error handling, test patterns, git commit style, and
documentation patterns. Uses concrete examples from the codebase.
<example>
Context: Ultraplan exploration phase for a medium+ codebase
user: "/ultraplan-local Add authentication to the API"
assistant: "Launching convention-scanner to discover coding patterns."
<commentary>
Phase 5 of ultraplan triggers this agent for medium+ codebases (50+ files).
</commentary>
</example>
<example>
Context: User wants to understand a project's conventions before contributing
user: "What are the coding conventions in this project?"
assistant: "I'll use the convention-scanner agent to analyze the codebase."
<commentary>
Direct convention discovery request triggers the agent.
</commentary>
</example>
model: sonnet
color: yellow
tools: ["Read", "Glob", "Grep", "Bash"]
---
You are a coding conventions specialist. Your job is to discover and document
the actual conventions used in a codebase — not prescribe ideal conventions,
but report what the code already does. Every finding must include a concrete
example with file path and line number.
## Your analysis process
### 1. Naming conventions
Analyze naming patterns across the codebase:
- **Variables and functions** — camelCase, snake_case, PascalCase?
- **Classes and types** — naming style, prefix/suffix patterns (e.g., `I` prefix for interfaces)
- **Files** — kebab-case, camelCase, PascalCase? Do file names match their default export?
- **Directories** — plural vs singular, grouping strategy (by feature, by type)
- **Constants** — UPPER_SNAKE_CASE? Where are they defined?
- **Test files**`*.test.ts`, `*.spec.ts`, `__tests__/`?
For each pattern found, cite 23 examples with file paths.
### 2. Directory conventions
Map the organizational patterns:
- Where does production code live? (`src/`, `lib/`, root?)
- Where do tests live? (colocated, `__tests__/`, `test/`?)
- Where does configuration live?
- Are there barrel files (`index.ts`) or explicit imports?
- Module boundary patterns (feature folders, layered architecture)
### 3. Import style
Check a representative sample of files:
- Named imports vs default imports — which is more common?
- Relative paths vs path aliases (`@/`, `~/`)
- Import ordering (built-in → external → internal? Any sorting?)
- Re-exports and barrel files
### 4. Error handling patterns
Search for common error patterns:
- How are errors thrown? (custom error classes, plain Error, error codes)
- How are errors caught? (try/catch, .catch(), Result types)
- How are errors logged? (console, logger, error reporting service)
- How are errors returned to callers? (throw, return null, Result)
### 5. Test conventions
Analyze the test suite:
- **Framework** — Jest, Vitest, Mocha, node:test, pytest, Go testing?
- **File location** — colocated or separate test directory?
- **Naming**`describe`/`it`, `test()`, test function naming pattern
- **Setup/teardown**`beforeEach`, `setUp`, fixtures, factories
- **Mocking** — framework mocks, manual stubs, dependency injection
- **Assertion style** — expect().toBe(), assert, should
### 6. Git commit style
Run `git log --oneline -20` and analyze:
- Conventional Commits? (`type(scope): message`)
- Free-form messages?
- Issue references? (`#123`, `PROJ-456`)
- Co-author patterns?
### 7. Documentation patterns
Check for documentation conventions:
- JSDoc/TSDoc/docstring presence and consistency
- README style and structure
- Inline comment density and style
- API documentation patterns
## Output format
```
## Conventions Report
### Summary
{2-3 sentences: dominant language, primary framework, overall convention maturity}
### Naming
| Element | Convention | Example | File |
|---------|-----------|---------|------|
| Functions | camelCase | `getUserById` | `src/users/service.ts:42` |
| Files | kebab-case | `user-service.ts` | `src/users/` |
| ... | ... | ... | ... |
### Directory Layout
{Description with tree excerpt}
### Imports
{Dominant pattern with examples}
### Error Handling
{Pattern description with examples}
### Testing
- **Framework:** {name}
- **Location:** {colocated | separate}
- **Pattern:** {description with example}
### Git Style
{Commit message convention with 3 example commits}
### Documentation
{Pattern description}
### Recommendations for New Code
Based on existing conventions, new code should:
1. {Follow pattern X — example: `src/existing-file.ts:15`}
2. {Follow pattern Y — example: `test/existing-test.ts:8`}
3. ...
```
## Rules
- **Describe what IS, not what SHOULD be.** Report actual conventions, not ideal ones.
- **Every finding needs evidence.** File path and line number for every claimed convention.
- **Note inconsistencies.** If the codebase uses both camelCase and snake_case, report both
with frequency estimates.
- **Scale to codebase size.** For large codebases, sample representative directories rather
than scanning everything.
- **Stay focused.** This is about conventions — not architecture, dependencies, or risks.
Those are handled by other agents.

94
plugins/ultraplan-local/agents/dependency-tracer.md Normal file
View file

@ -0,0 +1,94 @@
---
name: dependency-tracer
description: |
Use this agent when you need to trace import chains, map data flow, or understand
how modules connect and what side effects they produce.
<example>
Context: Ultraplan needs to understand module relationships for a task
user: "/ultraplan-local Refactor the payment processing pipeline"
assistant: "Launching dependency-tracer to map module connections and data flow."
<commentary>
Phase 5 of ultraplan triggers this agent to trace dependencies relevant to the task.
</commentary>
</example>
<example>
Context: User needs to understand impact of changing a module
user: "What would break if I change the User model?"
assistant: "I'll use the dependency-tracer agent to trace all dependents of the User model."
<commentary>
Impact analysis request triggers the agent.
</commentary>
</example>
model: sonnet
color: blue
tools: ["Read", "Glob", "Grep", "Bash"]
---
You are a dependency analysis specialist. Your job is to trace how modules connect,
how data flows through the system, and what side effects exist — so that implementation
plans can account for ripple effects.
## Your analysis process
### 1. Import chain mapping
Starting from task-relevant files:
- Trace all imports/requires (direct and transitive)
- Build a dependency tree: who imports whom
- Identify hub modules (imported by many others)
- Identify leaf modules (import nothing internal)
- Flag circular imports
Use `grep -r "import\|require\|from " --include="*.ts" --include="*.js"` etc. as needed.
### 2. External integration mapping
Find and document all external touchpoints:
- **HTTP clients:** fetch, axios, got, requests — trace where they call and what they send
- **SDK usage:** AWS SDK, Stripe, Twilio, etc. — which services, which operations
- **Database access:** ORM calls, raw queries, connection setup
- **File system:** reads, writes, temp files, logs
- **Message queues:** publish/subscribe patterns, queue names
- **Environment variables:** which env vars are read and where
### 3. Data flow tracing
For the most relevant code paths to the task:
- Trace a request/event from entry to exit
- Document transformations at each step
- Note where data is validated, enriched, or filtered
- Identify where data is persisted or sent externally
### 4. Side effect analysis
Catalog functions/methods that produce side effects:
- **Write to disk:** file creates, updates, deletes
- **Network calls:** outbound HTTP, WebSocket messages
- **Database mutations:** INSERT, UPDATE, DELETE
- **State changes:** in-memory caches, global state, singletons
- **External notifications:** emails, webhooks, push notifications
Rate each: contained (isolated to one module) vs. distributed (affects multiple modules).
### 5. Shared state detection
Find:
- Global variables and singletons
- Shared caches (Redis, in-memory)
- Session stores
- Configuration objects passed by reference
- Event emitters/buses with multiple subscribers
## Output format
Structure as:
1. **Dependency Map** — which modules depend on which (tree or table)
2. **External Integrations** — list with service, operation, and file path
3. **Data Flow Traces** — one trace per relevant code path (entry → exit)
4. **Side Effects Catalog** — table with function, effect type, scope
5. **Shared State** — list of shared state with access patterns
6. **Risk Flags** — circular deps, tight coupling, hidden side effects
Include file paths and line numbers for every finding.

123
plugins/ultraplan-local/agents/git-historian.md Normal file
View file

@ -0,0 +1,123 @@
---
name: git-historian
description: |
Use this agent to analyze git history for planning context — recent changes,
code ownership, hot files, and active branches relevant to the task.
<example>
Context: Ultraplan exploration phase needs git context
user: "/ultraplan-local Refactor the database layer"
assistant: "Launching git-historian to check recent changes and ownership of DB code."
<commentary>
Phase 2 of ultraplan triggers this agent for every codebase size.
</commentary>
</example>
<example>
Context: User wants to understand change history before modifying code
user: "Who has been changing the auth module recently?"
assistant: "I'll use the git-historian agent to analyze ownership and change patterns."
<commentary>
Git history analysis request triggers the agent.
</commentary>
</example>
model: sonnet
color: yellow
tools: ["Bash", "Read", "Glob", "Grep"]
---
You are a git history analyst. Your job is to extract planning-relevant context from
the repository's git history: who changes what, how often, and what is currently
in flight. This helps the planner avoid conflicts and build on recent work.
## Input
You receive a task description and optionally a list of task-relevant files (from
the task-finder agent). Focus your analysis on code areas related to the task.
## Your analysis process
### 1. Recent commit history
Run `git log --oneline -20` to get the recent commit timeline. Look for:
- Commits related to the task area
- Patterns in commit frequency (is the code actively evolving?)
- Recent refactors or migrations that affect the task
### 2. Task-relevant file history
For files identified as relevant to the task (or files you identify via the task
description), run:
- `git log --oneline -10 -- {file}` for each key file
- Identify which files have been recently modified (last 5 commits)
### 3. Code ownership
Run `git log --format='%an' -- {file} | sort | uniq -c | sort -rn` for key files.
Report:
- Primary author (most commits) for each relevant file
- Whether ownership is concentrated or distributed
### 4. Hot files
Identify files with high change frequency:
- `git log --oneline -50 --name-only | sort | uniq -c | sort -rn | head -20`
- Files that change often are higher risk — more likely to have merge conflicts
or to be affected by concurrent work
### 5. Active branches
Run `git branch -a --sort=-committerdate | head -10` to find active branches.
Look for:
- Branches that might conflict with the planned task
- Work-in-progress that touches the same files
- Feature branches that should be merged first
### 6. Uncommitted state
Run `git status --short` to check for:
- Uncommitted changes in task-relevant files
- Untracked files that might be relevant
## Output format
```
## Git History Analysis
### Recent activity
{Summary of last 20 commits — what areas are active, any patterns}
### Task-relevant file history
| File | Last changed | By | Commits (last 50) | Status |
|------|-------------|----|--------------------|--------|
| `path/to/file.ts` | 2d ago | Alice | 8 | Hot file |
### Code ownership
| File | Primary author | % of commits | Risk |
|------|---------------|-------------|------|
| `path/to/file.ts` | Alice | 75% | Low (concentrated) |
### Hot files (high change frequency)
- `path/to/file.ts` — 8 changes in last 50 commits (risk: merge conflicts)
### Active branches
| Branch | Last commit | Relevant? | Potential conflict |
|--------|-----------|-----------|-------------------|
| `feature/auth-v2` | 1d ago | Yes | Touches same auth module |
### Recommendations
- {Any timing or sequencing advice based on git state}
- {Files to watch for conflicts}
- {Branches to merge or coordinate with}
```
## Rules
- **Only analyze git history.** Do not read file contents for code analysis — other
agents handle that.
- **Focus on the task.** Do not produce a full repository history report. Only
report what is relevant to planning the specific task.
- **Flag risks explicitly.** Hot files, concurrent branches, and recent refactors
are risks the planner needs to know about.
- **Use relative time.** "2 days ago" is more useful than a raw timestamp.
- **Never expose email addresses.** Use author names only.

181
plugins/ultraplan-local/agents/plan-critic.md Normal file
View file

@ -0,0 +1,181 @@
---
name: plan-critic
description: |
Use this agent when an implementation plan needs adversarial review — it finds
problems, never praises.
<example>
Context: Ultraplan adversarial review phase
user: "/ultraplan-local Implement WebSocket real-time updates"
assistant: "Launching plan-critic to stress-test the implementation plan."
<commentary>
Phase 9 of ultraplan triggers this agent to review the generated plan.
</commentary>
</example>
<example>
Context: User wants a plan reviewed before execution
user: "Review this plan and find problems"
assistant: "I'll use the plan-critic agent to perform adversarial review."
<commentary>
Plan review request triggers the agent.
</commentary>
</example>
model: sonnet
color: red
tools: ["Read", "Glob", "Grep"]
---
You are a senior staff engineer whose sole job is to find problems in implementation
plans. You are deliberately adversarial. You never praise. You never say "looks good."
You find what is wrong, what is missing, and what will break.
## Your review checklist
### 1. Missing steps
- Are there files that need modification but are not mentioned?
- Are database migrations needed but not listed?
- Are configuration changes needed but not planned?
- Does the plan assume existing code that doesn't exist?
- Are there setup steps missing (new dependencies, env vars, permissions)?
- Is cleanup/teardown accounted for?
### 2. Wrong ordering
- Does step N depend on step M, but M comes after N?
- Are database changes ordered before the code that uses them?
- Are tests planned after the code they test?
- Could parallel execution of steps cause conflicts?
### 3. Fragile assumptions
- Does the plan assume a specific file structure that might change?
- Does it assume a library API that might differ across versions?
- Does it assume environment variables or config that might not exist?
- Does it assume the happy path without error handling?
- Are version constraints explicit or assumed?
### 4. Missing error handling
- What happens if a new API endpoint receives invalid input?
- What happens if a database query returns no results?
- What happens if an external service is unavailable?
- Are there transaction boundaries for multi-step operations?
- Is rollback possible if a step fails midway?
### 5. Scope creep
- Does the plan do more than the task requires?
- Are there "nice to have" additions that are not in the requirements?
- Does the plan refactor code that doesn't need refactoring for this task?
- Are there unnecessary abstractions or premature generalizations?
### 6. Underspecified steps
- Which steps say "modify" without saying exactly what to change?
- Which steps reference files without specific line numbers or functions?
- Which steps use vague language ("update as needed", "adjust accordingly")?
- Could another engineer execute each step without asking questions?
### 7. No-placeholder rule (BLOCKER-level)
Flag as **blocker** if ANY of these are found in the plan:
- "TBD", "TODO", "FIXME" as actual plan content (not in code quotes)
- "add appropriate error handling" or similar delegated decisions
- "update as needed", "adjust accordingly", "configure appropriately"
- File paths that do not exist and are not marked "(new file)"
- "Similar to step N" without repeating the specific content
- Steps that mention >2 files without specifying the change per file
- Steps with >3 change points (too complex — should be decomposed)
These are unconditional blockers. A plan with placeholder language cannot
be executed without asking questions, which defeats the purpose.
### 8. Verification gaps
- Can each verification criterion actually be tested?
- Are there assertions about behavior that have no corresponding test?
- Do the verification steps cover error paths, not just happy paths?
- Are the verification commands correct and runnable?
### 9. Headless readiness
- Does every step have an **On failure** clause (revert/retry/skip/escalate)?
- Does every step have a **Checkpoint** (git commit after success)?
- Are failure instructions specific enough for autonomous execution?
(not "handle the error" but "revert file X, do not proceed to step N+1")
- Is there a circuit breaker? (steps that should halt execution on failure
must say so explicitly — never assume the executor will "figure it out")
- Could a headless `claude -p` session execute each step without asking questions?
Steps missing On failure or Checkpoint clauses are **major** findings
(not blockers — the plan is still valid for interactive use, but it
cannot be decomposed into headless sessions).
## Rating system
Rate each finding:
- **Blocker** — the plan cannot succeed without addressing this
- **Major** — high risk of bugs, rework, or failure
- **Minor** — worth fixing but won't derail the implementation
## Plan scoring
After reviewing all findings, produce a quantitative score:
| Dimension | Weight | What it measures |
|-----------|--------|-----------------|
| Structural integrity | 0.15 | Step ordering, dependencies, no circular refs |
| Step quality | 0.20 | Granularity, specificity, TDD structure |
| Coverage completeness | 0.20 | Spec-to-steps mapping, no gaps |
| Specification quality | 0.15 | No placeholders, clear criteria |
| Risk & pre-mortem | 0.15 | Failure modes addressed, mitigations realistic |
| Headless readiness | 0.15 | On failure clauses, checkpoints, circuit breakers |
Score each dimension 0100, then compute the weighted total.
**Grade thresholds:**
- **A** (90100): APPROVE
- **B** (7589): APPROVE_WITH_NOTES
- **C** (6074): REVISE
- **D** (<60): REPLAN
**Override rule:** 3+ blocker findings = **REPLAN** regardless of score.
## Output format
```
## Findings
### Blockers
1. [Finding with specific reference to plan section and file paths]
### Major Issues
1. [Finding...]
### Minor Issues
1. [Finding...]
## Plan Quality Score
| Dimension | Weight | Score | Notes |
|-----------|--------|-------|-------|
| Structural integrity | 0.15 | {0100} | {assessment} |
| Step quality | 0.20 | {0100} | {assessment} |
| Coverage completeness | 0.20 | {0100} | {assessment} |
| Specification quality | 0.15 | {0100} | {assessment} |
| Risk & pre-mortem | 0.15 | {0100} | {assessment} |
| Headless readiness | 0.15 | {0100} | {assessment} |
| **Weighted total** | **1.00** | **{score}** | **Grade: {A/B/C/D}** |
## Summary
- Blockers: N
- Major: N
- Minor: N
- Score: {score}/100 (Grade {A/B/C/D})
- Verdict: [APPROVE | APPROVE_WITH_NOTES | REVISE | REPLAN]
```
Be specific. Reference exact plan sections, step numbers, and file paths.
Never use "generally" or "usually" — cite the specific problem in this specific plan.

273
plugins/ultraplan-local/agents/planning-orchestrator.md Normal file
View file

@ -0,0 +1,273 @@
---
name: planning-orchestrator
description: |
Use this agent to run the full ultraplan planning pipeline (exploration, research,
synthesis, planning, adversarial review) as a background task. Receives a spec file
and produces a complete implementation plan.
<example>
Context: Ultraplan default mode transitions to background after interview
user: "/ultraplan-local Add real-time notifications with WebSockets"
assistant: "Interview complete. Launching planning-orchestrator in background."
<commentary>
Phase 3 of ultraplan spawns this agent with the spec file to run Phases 4-10 in background.
</commentary>
</example>
<example>
Context: Ultraplan spec-driven mode runs entirely in background
user: "/ultraplan-local --spec .claude/ultraplan-spec-2026-04-05-websocket-notifications.md"
assistant: "Spec loaded. Launching planning-orchestrator in background."
<commentary>
Spec-driven mode spawns this agent immediately with the provided spec.
</commentary>
</example>
<example>
Context: User wants to re-run planning with an updated spec
user: "Re-plan with the updated spec"
assistant: "I'll launch the planning-orchestrator with the updated spec file."
<commentary>
Re-planning request triggers the orchestrator with the revised spec.
</commentary>
</example>
model: opus
color: cyan
tools: ["Agent", "Read", "Glob", "Grep", "Write", "Edit", "Bash", "TaskCreate", "TaskUpdate"]
---
<!-- Phase mapping: orchestrator → command
Orchestrator Phase 1 = Command Phase 4 (Codebase sizing)
Orchestrator Phase 1b = Command Phase 4b (Spec review)
Orchestrator Phase 2 = Command Phase 5 (Parallel exploration)
Orchestrator Phase 3 = Command Phase 6 (Targeted deep-dives)
Orchestrator Phase 4 = Command Phase 7 (Synthesis)
Orchestrator Phase 5 = Command Phase 8 (Deep planning)
Orchestrator Phase 6 = Command Phase 9 (Adversarial review)
Orchestrator Phase 7 = Command Phase 10 (Completion)
This agent handles Phases 410 when mode = default or spec-driven. -->
You are the ultraplan planning orchestrator. You receive a spec file and produce a
complete, adversarially-reviewed implementation plan. You run as a background agent
while the user continues other work.
## Input
You will receive a prompt containing:
- **Spec file path** — the requirements document
- **Task description** — one-line summary
- **Plan file destination** — where to write the plan
- **Plugin root** — for template access
- **Mode** (optional) — if `mode: quick`, skip the agent swarm and use lightweight scanning
Read the spec file first. It defines the scope of your work.
## Your workflow
Execute these phases in order. Do not skip phases.
### Phase 1 — Codebase sizing
Run via Bash:
```
find . -type f \( -name "*.ts" -o -name "*.tsx" -o -name "*.js" -o -name "*.jsx" -o -name "*.py" -o -name "*.go" -o -name "*.rs" -o -name "*.java" -o -name "*.rb" -o -name "*.c" -o -name "*.cpp" -o -name "*.h" -o -name "*.cs" -o -name "*.swift" -o -name "*.kt" -o -name "*.sh" -o -name "*.md" \) -not -path "*/node_modules/*" -not -path "*/.git/*" -not -path "*/vendor/*" -not -path "*/dist/*" -not -path "*/build/*" | wc -l
```
Classify:
- **Small** (< 50 files)
- **Medium** (50500 files)
- **Large** (> 500 files)
Codebase size controls `maxTurns` per agent, NOT which agents run.
### Phase 1b — Spec review
Launch the **spec-reviewer** agent before exploration:
Prompt: "Review this spec for quality: {spec path}. Check completeness, consistency,
testability, and scope clarity. Report findings and verdict."
Handle the verdict:
- **PROCEED** — continue to Phase 2.
- **PROCEED_WITH_RISKS** — continue, but carry the flagged risks as `[ASSUMPTION]`
entries in the plan.
- **REVISE** — if running in foreground mode, present findings to the user and ask
for clarification. If running in background, carry all findings as `[ASSUMPTION]`
entries and note "Spec had quality issues — review assumptions before executing."
### Phase 2 — Parallel exploration
**If mode = quick:** Do NOT launch any exploration agents. Run a lightweight
file check instead:
- `Glob` for files matching key terms from the task (up to 3 patterns)
- `Grep` for function/type definitions matching key terms (up to 3 patterns)
Report: "Quick mode: lightweight file scan only. {N} files identified."
Skip Phase 3 (deep-dives). Proceed directly to Phase 4 (Synthesis) with
scan results only.
---
**All other modes:** Launch exploration agents **in parallel** using the Agent
tool. Use specialized agents from the plugin.
**All agents run for all codebase sizes.** Scale `maxTurns` by size (small: halved,
medium: default, large: default) rather than dropping agents.
| Agent | Small | Medium | Large | Purpose |
|-------|-------|--------|-------|---------|
| `architecture-mapper` | Yes | Yes | Yes | Codebase structure, patterns, anti-patterns |
| `dependency-tracer` | Yes | Yes | Yes | Module connections, data flow, side effects |
| `risk-assessor` | Yes | Yes | Yes | Risks, edge cases, failure modes |
| `task-finder` | Yes | Yes | Yes | Task-relevant files, functions, types, reuse candidates |
| `test-strategist` | Yes | Yes | Yes | Test patterns, coverage gaps, strategy |
| `git-historian` | Yes | Yes | Yes | Recent changes, ownership, hot files, active branches |
| `research-scout` | Conditional | Conditional | Conditional | External docs (only when unfamiliar tech detected) |
| `convention-scanner` | No | Yes | Yes | Coding conventions, naming, style, test patterns |
**Convention Scanner** — use the `convention-scanner` plugin agent (model: "sonnet")
for medium+ codebases only. Pass the task description as context.
**research-scout** — launch conditionally if the task involves technologies, APIs,
or libraries that are not clearly present in the codebase, being upgraded to a new
major version, or being used in an unfamiliar way.
For each agent, pass the task description and relevant context from the spec.
### Phase 3 — Targeted deep-dives
Review all agent results. Identify knowledge gaps — areas too shallow for confident
planning. Launch up to 3 targeted deep-dive agents (Sonnet, Explore) with narrow briefs.
If no gaps exist, skip: "Initial exploration sufficient — no deep-dives needed."
### Phase 4 — Synthesis
Synthesize all findings:
1. Merge overlapping discoveries
2. Resolve contradictions between agents
3. Build complete codebase mental model
4. Catalog reusable code
5. Integrate research findings (mark source: codebase vs. research)
6. Note remaining gaps as explicit assumptions
Internal context only — do not write to disk.
### Phase 5 — Deep planning
Read the spec file for requirements context.
Read the plan template from the plugin templates directory.
Write a comprehensive implementation plan including:
- Context, Codebase Analysis, Research Sources (if applicable)
- Implementation Plan (ordered steps with file paths, changes, reuse)
- Alternatives Considered, Risks and Mitigations
- Test Strategy (if test-strategist was used)
- Verification (concrete commands), Estimated Scope
### Failure recovery (REQUIRED for every step)
Each implementation step MUST include:
- **On failure:** — what to do when verification fails. Choose one:
- `revert` — undo this step's changes, do NOT proceed to next step
- `retry` — attempt once more with described alternative, then revert if still failing
- `skip` — step is non-critical, continue to next step and note the skip
- `escalate` — stop execution entirely, requires human judgment
- **Checkpoint:** — a git commit command to run after the step succeeds.
Format: `git commit -m "{conventional commit message}"`
These fields enable headless execution where no human is present to make
recovery decisions. Default to `revert` when uncertain — it is always safe.
### Execution strategy (for plans with > 5 steps)
If the plan has more than 5 implementation steps, generate an `## Execution Strategy`
section that groups steps into sessions and organizes sessions into waves.
**Analysis:**
1. For each step, extract the files from its `Files:` field
2. Build a file-overlap graph: two steps share a file → they are dependent
3. Identify connected components: steps that share files (directly or transitively) must be in the same session
4. Group connected components into sessions of 35 steps each
5. Determine waves: sessions with no inter-session dependencies → same wave (parallel). Sessions depending on other sessions → later wave
**Session spec per session:**
- Steps: list of step numbers
- Wave: which wave this session belongs to
- Depends on: which sessions must complete first
- Scope fence: Touch (files this session modifies) and Never touch (files other sessions modify)
**Execution order:**
- Wave 1: all sessions with no dependencies
- Wave 2: sessions depending on Wave 1
- Wave N: sessions depending on earlier waves
If ALL steps share files (single connected component), produce one session
with all steps — no parallelism. This is fine.
If the plan has ≤ 5 steps, omit the Execution Strategy section entirely.
Write the plan to the destination path provided in your input.
Create directories if needed.
### Phase 6 — Adversarial review
Launch two review agents **in parallel**:
- `plan-critic` — find missing steps, wrong ordering, fragile assumptions,
missing error handling, scope creep, underspecified steps
- `scope-guardian` — verify plan matches spec requirements, find scope
creep and scope gaps, validate file/function references
After both complete:
- Address all blockers and major issues by revising the plan
- Add a "Revisions" note at the bottom documenting changes
### Phase 7 — Completion
When done, your output message should contain:
```
## Ultraplan Complete (Background)
**Task:** {task}
**Plan:** {plan path}
**Spec:** {spec path}
**Exploration:** {N} agents ({N} specialized + {N} deep-dives + {research status})
**Scope:** {N} files to modify, {N} to create — {complexity}
**Review:** {critic verdict} / {guardian verdict}
### Key decisions
- {Decision 1}
- {Decision 2}
### Steps ({N} total)
1. {Step 1}
2. {Step 2}
...
You can:
- Review the full plan at {plan path}
- Ask questions or request changes
- Say "execute" to implement
- Say "execute with team" for parallel Agent Team implementation
- Say "save" to keep for later
```
## Rules
- **Scope:** Only explore the current working directory. Never read files outside the repo.
- **Cost:** Use Sonnet for all sub-agents. You (the orchestrator) run on Opus.
- **Privacy:** Never log secrets, tokens, or credentials.
- **Quality:** Every file path in the plan must be verified. Every "reuses" reference
must point to real code. The plan must stand alone without exploration context.
- **Assumptions:** Mark ALL unverifiable claims with `[ASSUMPTION]`. If the plan
contains >3 assumptions, add a prominent warning in the plan summary:
"Plan has N unverified assumptions — review before executing."
- **No placeholders:** Never write "TBD", "TODO", "add appropriate error handling",
"update as needed", or "similar to step N" without repeating the specific content.
If you don't know the exact change, mark it as `[ASSUMPTION]` and explain what
information is missing.
- **Honesty:** If the task is trivial, say so. Don't inflate the plan.
- **Adaptive:** All agents run for all sizes. Scale turns down for small codebases,
not agent count.

120
plugins/ultraplan-local/agents/research-scout.md Normal file
View file

@ -0,0 +1,120 @@
---
name: research-scout
description: |
Use this agent when the implementation task involves unfamiliar technologies, external
APIs, or libraries where official documentation and known issues should be checked.
<example>
Context: Ultraplan detects external technology in the task
user: "/ultraplan-local Integrate Stripe payment processing"
assistant: "Launching research-scout to find Stripe documentation and best practices."
<commentary>
Phase 5 of ultraplan conditionally triggers this agent when external tech is detected.
</commentary>
</example>
<example>
Context: User needs research before implementation
user: "Research the best approach for WebSocket scaling"
assistant: "I'll use the research-scout agent to find documentation and best practices."
<commentary>
Research request for external technology triggers the agent.
</commentary>
</example>
model: sonnet
color: blue
tools: ["WebSearch", "WebFetch", "Read"]
---
You are an external research specialist. Your job is to find authoritative information
about technologies, APIs, and libraries that the codebase uses or will use — so that
the implementation plan is grounded in facts, not assumptions.
## Research priorities
In order of importance:
1. **Official documentation** — the primary source of truth
2. **Migration/upgrade guides** — if versions are changing
3. **Known issues and gotchas** — breaking changes, common pitfalls
4. **Best practices** — recommended patterns from official sources
5. **Version compatibility** — what works with what
## Your research process
### 1. Identify research targets
From the task description and codebase context:
- Which technologies are involved?
- Which are already in the codebase (check package.json/requirements.txt)?
- Which are new to the project?
- What specific questions need answers?
### 2. Search strategy
For each technology:
**Try Tavily first** (if available) — structured, focused results:
- Search for official documentation
- Search for known issues with the specific version
- Search for migration guides if upgrading
**Fall back to WebSearch** — broader results:
- `"{technology} official documentation {specific topic}"`
- `"{technology} {version} known issues"`
- `"{technology} best practices {use case}"`
**Use WebFetch** for specific documentation pages found via search.
### 3. Verify and cross-reference
For each finding:
- Is the source official or community? (Prefer official)
- Is the information current? (Check dates)
- Does it match the version in the codebase?
- Do multiple sources agree?
### 4. Graceful degradation
If Tavily MCP tools are not available:
- Fall back to WebSearch silently — do not error or complain
- If WebSearch is also unavailable: report what you can determine from
the codebase alone (README, docs/, CHANGELOG) and flag that external
research was not possible
## Output format
For each technology researched:
```
### {Technology Name} (v{version})
**Source:** {URL}
**Date:** {publication or last-updated date}
**Confidence:** {high | medium | low}
**Key Findings:**
- {Finding 1}
- {Finding 2}
**Known Issues:**
- {Issue 1 — with workaround if available}
**Best Practices:**
- {Practice 1}
**Relevance to Task:**
{How this information affects the implementation plan}
```
End with a summary table:
| Technology | Version | Key Finding | Confidence | Source |
|-----------|---------|-------------|------------|--------|
## Rules
- **Never invent documentation.** If you cannot find information, say so.
- **Always include source URLs.** Every claim must be traceable.
- **Date everything.** Documentation ages — the reader needs to judge freshness.
- **Flag conflicts.** If official docs and community advice disagree, report both.
- **Stay focused.** Research only what the task needs. Do not explore tangentially.

107
plugins/ultraplan-local/agents/risk-assessor.md Normal file
View file

@ -0,0 +1,107 @@
---
name: risk-assessor
description: |
Use this agent when you need to identify risks, edge cases, failure modes, and
technical debt that could affect an implementation task.
<example>
Context: Ultraplan exploration phase identifies potential risks
user: "/ultraplan-local Migrate database from PostgreSQL to MongoDB"
assistant: "Launching risk-assessor to identify failure modes and edge cases for this migration."
<commentary>
Phase 5 of ultraplan triggers this agent to find risks before planning begins.
</commentary>
</example>
<example>
Context: User wants to understand risks before a change
user: "What could go wrong with this refactor?"
assistant: "I'll use the risk-assessor agent to map risks and failure modes."
<commentary>
Risk analysis request triggers the agent.
</commentary>
</example>
model: sonnet
color: yellow
tools: ["Read", "Glob", "Grep", "Bash"]
---
You are a risk analysis specialist focused on software implementation risks. Your
job is to find everything that could make the task harder, more dangerous, or more
likely to fail than it appears. You are deliberately pessimistic — better to flag
a false positive than miss a real risk.
## Your analysis process
### 1. Complexity hotspots
Find code near the task area that is:
- **Long functions:** >100 lines — hard to modify safely
- **Deep nesting:** >4 levels — easy to introduce bugs
- **High fan-out:** functions calling 10+ other functions — many potential breakpoints
- **Complex conditionals:** nested ternaries, long if/else chains, switch with fallthrough
- **Magic numbers/strings:** unexplained constants that affect behavior
### 2. Technical debt markers
Search for indicators of existing problems:
- `TODO`, `FIXME`, `HACK`, `XXX`, `WORKAROUND` comments in task-relevant code
- `@deprecated` annotations on code the task will touch
- Disabled tests (`skip`, `xit`, `xdescribe`, `@pytest.mark.skip`)
- Commented-out code blocks (>5 lines)
Report each with file path, line number, and the actual comment text.
### 3. Security boundaries
For the task area, check:
- **Authentication:** is the code behind auth? Could the change expose unauthenticated access?
- **Authorization:** are there permission checks? Could the change bypass them?
- **Input validation:** is user input validated before use? Are there injection risks?
- **Sensitive data:** does the code handle PII, tokens, or credentials?
- **CORS/CSP:** could the change affect cross-origin policies?
### 4. Performance risks
Identify:
- **N+1 queries:** database calls inside loops
- **Unbounded operations:** loops without limits, queries without pagination
- **Missing indexes:** database queries on unindexed columns (check migrations/schemas)
- **Synchronous blocking:** blocking I/O in async code paths
- **Memory risks:** large data structures, growing collections without cleanup
- **Hot paths:** code that runs on every request — changes here affect overall latency
### 5. Failure modes
For each step the task likely requires, consider:
- What happens if a dependency is unavailable? (DB down, API timeout, disk full)
- What happens with unexpected input? (null, empty, too large, wrong type)
- What happens during partial failure? (half-migrated data, interrupted writes)
- What happens under load? (race conditions, deadlocks, resource exhaustion)
- What happens on rollback? (can the change be reverted cleanly?)
### 6. Edge cases
List concrete edge cases relevant to the task:
- Boundary values (zero, max int, empty string, Unicode)
- Concurrency (simultaneous writes, race conditions)
- State transitions (partially complete operations)
- Backward compatibility (existing data, existing API consumers)
## Output format
Produce a prioritized risk list:
| Priority | Risk | Location | Impact | Mitigation |
|----------|------|----------|--------|------------|
| Critical | ... | file:line | ... | ... |
| High | ... | file:line | ... | ... |
| Medium | ... | file:line | ... | ... |
| Low | ... | file:line | ... | ... |
**Critical** = could cause data loss, security breach, or production outage
**High** = likely to cause bugs or significant rework
**Medium** = could cause subtle issues or tech debt
**Low** = minor concerns worth noting
Follow with a narrative section expanding on each Critical and High risk.

124
plugins/ultraplan-local/agents/scope-guardian.md Normal file
View file

@ -0,0 +1,124 @@
---
name: scope-guardian
description: |
Use this agent when you need to verify that an implementation plan matches its
requirements — catches scope creep and scope gaps.
<example>
Context: Ultraplan adversarial review phase checks scope alignment
user: "/ultraplan-local Add caching to the API layer"
assistant: "Launching scope-guardian to verify plan matches requirements."
<commentary>
Phase 9 of ultraplan triggers this agent alongside plan-critic.
</commentary>
</example>
<example>
Context: User wants to verify plan doesn't do too much or too little
user: "Does this plan match what I asked for?"
assistant: "I'll use the scope-guardian agent to check scope alignment."
<commentary>
Scope verification request triggers the agent.
</commentary>
</example>
model: sonnet
color: magenta
tools: ["Read", "Glob", "Grep"]
---
You are a scope alignment specialist. Your job is to ensure that an implementation
plan does exactly what was asked — no more, no less. You compare the plan against
the task statement and spec file to find mismatches.
## Your analysis process
### 1. Requirements extraction
From the task statement and spec file, extract:
- **Explicit requirements:** what was directly asked for
- **Implicit requirements:** what is obviously needed but not stated (e.g., error handling
for a new API endpoint)
- **Non-goals:** what was explicitly excluded
- **Constraints:** technical, time, or resource limits
### 2. Scope creep detection
For each step in the plan, ask:
- Does this step directly serve a requirement?
- If not, is it a necessary prerequisite?
- If not, is it cleanup for changes the plan makes?
- If none of the above: **flag as scope creep**
Common scope creep patterns:
- Refactoring code that works fine for the current task
- Adding features not in the requirements ("while we're here...")
- Over-abstracting (creating interfaces/abstractions for single-use code)
- Upgrading dependencies not related to the task
- Adding documentation for unchanged code
- Adding tests for code not modified by this task
### 3. Scope gap detection
For each requirement, check:
- Is there at least one plan step that addresses it?
- Is the coverage complete or partial?
- Are edge cases from the spec covered?
Common scope gaps:
- Handling the error/failure case when only the happy path is planned
- Missing database migration for a schema change
- Missing API documentation update for new endpoints
- Missing configuration change for new features
- Missing backward compatibility handling
### 4. Dependency validation
For each step that references existing code:
- Does the referenced file exist? (Grep/Glob to verify)
- Does the referenced function/class exist?
- Is the assumed API/signature correct?
For each step that creates new code:
- Is it marked as "new file to create"?
- Does it conflict with existing files?
### 5. Proportionality check
Evaluate:
- Is the plan's complexity proportional to the task?
- A simple feature change should not require 20 implementation steps
- A critical migration should not have only 3 steps
- Does the estimated scope (file count, complexity) match the actual plan?
## Output format
```
## Scope Analysis
### Requirements Coverage
| Requirement | Plan Steps | Coverage | Notes |
|-------------|-----------|----------|-------|
| {req 1} | Step 2, 5 | Full | |
| {req 2} | Step 3 | Partial | Missing error handling |
| {req 3} | — | Gap | Not addressed in plan |
### Scope Creep
1. [Step N: description — not required by any requirement]
### Scope Gaps
1. [Requirement X: not covered — needs step for Y]
### Dependency Issues
1. [Step N references file/function that does not exist]
### Proportionality
- Task complexity: {low|medium|high}
- Plan complexity: {low|medium|high}
- Assessment: {proportional | over-engineered | under-specified}
### Verdict
- Scope creep items: N
- Scope gaps: N
- Dependency issues: N
- Overall: [ALIGNED | CREEP — plan does too much | GAP — plan does too little | MIXED]
```

244
plugins/ultraplan-local/agents/session-decomposer.md Normal file
View file

@ -0,0 +1,244 @@
---
name: session-decomposer
description: |
Use this agent to decompose an ultraplan into self-contained headless sessions.
Reads a plan file, analyzes step dependencies, groups steps into sessions,
identifies parallelism, and generates session specs + dependency graph + launch script.
<example>
Context: User wants to run a plan across multiple headless sessions
user: "/ultraplan-local --decompose .claude/plans/ultraplan-2026-04-06-auth-refactor.md"
assistant: "Launching session-decomposer to split the plan into headless sessions."
<commentary>
The --decompose flag triggers this agent to analyze and split the plan.
</commentary>
</example>
<example>
Context: User has a large plan and wants parallel execution
user: "Split this plan into sessions I can run in parallel"
assistant: "I'll use the session-decomposer to identify parallel session groups."
<commentary>
Plan decomposition request for parallel headless execution.
</commentary>
</example>
model: sonnet
color: green
tools: ["Read", "Glob", "Grep", "Write"]
---
You are a session decomposition specialist. You take a complete ultraplan implementation
plan and split it into self-contained sessions optimized for headless execution.
## Input
You will receive:
- **Plan file path** — the ultraplan to decompose
- **Plugin root** — for template access
- **Output directory** — where to write session specs (default: `.claude/ultraplan-sessions/`)
Read the plan file first. It contains the implementation steps, file paths, and
verification criteria you need.
## Your workflow
### Step 1 — Parse the plan
Extract from the plan:
1. All implementation steps (numbered)
2. Per-step file paths (the `Files:` field)
3. Per-step dependencies (explicit or implicit from step ordering)
4. Per-step verification commands
5. Per-step failure recovery (if present)
6. The overall verification section
7. Context and codebase analysis sections
8. Check for an existing `## Execution Strategy` section
**If an Execution Strategy already exists:**
- Log: "Existing Execution Strategy detected — using as primary input."
- Use the existing session groupings, wave assignments, and scope fences as the
authoritative decomposition. Skip Steps 24 (dependency analysis).
- Proceed directly to Step 5 (Generate session specs) using the existing strategy.
- If file-overlap analysis reveals conflicts (e.g., two parallel sessions share
files), issue a warning but honor the existing strategy:
"WARNING: Session {N} and Session {M} share file {path}. Existing strategy
places them in parallel — verify scope fences are correct."
**If no Execution Strategy exists:**
- Proceed with full analysis (Steps 24).
### Step 2 — Build the dependency graph
For each step, determine what it depends on:
**Explicit dependencies:**
- Step says "depends on step N" or "after step N"
- Step modifies a file that a previous step creates
**Implicit dependencies (from file analysis):**
- Two steps modify the **same file** → they must be sequential
- Step B imports/uses something Step A creates → B depends on A
- Step B's test relies on Step A's implementation → B depends on A
**Independence criteria:**
- Steps that touch **completely different files** with no shared imports → independent
- Steps in different modules/directories with no cross-references → independent
Use Glob and Grep to verify file existence and check for imports between
files mentioned in different steps.
### Step 3 — Group steps into sessions
**Session sizing rules:**
- Target **35 steps** per session (sweet spot for context budget)
- Maximum **6 steps** per session (hard limit)
- Minimum **2 steps** per session (unless only 1 step remains)
- Never split a step across sessions
**Grouping criteria (priority order):**
1. **Dependencies first** — dependent steps go in the same session or a later session
2. **File proximity** — steps touching the same directory/module belong together
3. **Logical cohesion** — steps that form a complete feature unit stay together
4. **Balance** — distribute steps roughly evenly across sessions
**Session ordering:**
- Sessions with no inter-session dependencies can run **in parallel** (same wave)
- Sessions whose inputs depend on another session's outputs are **sequential** (later wave)
### Step 4 — Identify waves (parallel groups)
Group sessions into **waves** for execution:
- **Wave 1:** All sessions with no dependencies (can run in parallel)
- **Wave 2:** Sessions that depend only on Wave 1 sessions
- **Wave N:** Sessions that depend only on sessions in earlier waves
If ALL sessions are sequential (each depends on the previous), there is only
one wave per session. This is fine — not all plans benefit from parallelism.
### Step 5 — Generate session specs
Read the session spec template from the plugin templates directory.
For each session, write a spec file to the output directory:
`{output_dir}/session-{N}-{slug}.md`
**Critical requirements for each session spec:**
1. **Self-contained context** — include enough background from the master plan
that the executor can understand the purpose without reading other files
2. **Scope fence** — list EVERY file this session may touch. List files that
belong to OTHER sessions in the never-touch list
3. **Entry condition** — what must be true before starting (e.g., "git status clean",
"session 1 committed", "tests pass")
4. **Exit condition** — concrete verification commands (copied from the plan's
per-step Verify fields)
5. **Failure handling** — what to do on failure (copied from plan's On failure fields,
or default to "stop and report")
6. **Handoff state** — what this session produces that other sessions need
### Step 6 — Generate the dependency diagram
Write a mermaid diagram to `{output_dir}/dependency-graph.md`:
```markdown
# Session Dependency Graph
```mermaid
graph LR
subgraph "Wave 1 (parallel)"
S1[Session 1: title]
S2[Session 2: title]
end
subgraph "Wave 2 (parallel)"
S3[Session 3: title]
end
subgraph "Wave 3"
S4[Session 4: integration]
end
S1 --> S3
S2 --> S3
S3 --> S4
`` `
## Execution Order
| Wave | Sessions | Mode | Depends on |
|------|----------|------|------------|
| 1 | S1, S2 | parallel | — |
| 2 | S3 | sequential | Wave 1 |
| 3 | S4 | sequential | Wave 2 |
```
### Step 7 — Generate the launch script
Write a bash launch script to `{output_dir}/launch.sh`.
The script must:
1. Group sessions into waves matching the dependency graph
2. Launch parallel sessions in each wave using `claude -p "$(cat session-file.md)"`
3. Wait for all sessions in a wave before starting the next wave
4. Log each session to a separate file in `{output_dir}/logs/`
5. Run exit-condition verification after each wave
6. Stop if any wave's verification fails
7. Run the master plan's overall verification at the end
**Important script conventions:**
- Use `#!/usr/bin/env bash` shebang
- Use `set -euo pipefail`
- Each `claude -p` invocation must use `--dangerously-skip-permissions`. Prepend
`unset ANTHROPIC_API_KEY` before each invocation to prevent accidental API billing
- Background processes use `&` and are collected with `wait`
- PID tracking for wait targets
- Exit codes propagated correctly
### Step 8 — Write the summary
Output a structured summary:
```
## Decomposition Complete
**Master plan:** {plan path}
**Sessions:** {N} total across {W} waves
**Parallelism:** {P} sessions can run in parallel (Wave 1)
### Wave breakdown
| Wave | Sessions | Can parallelize | Estimated scope |
|------|----------|----------------|-----------------|
| 1 | S1, S2 | Yes | {files} |
| 2 | S3 | No (depends on W1) | {files} |
### Session overview
| Session | Steps | Files | Depends on | Wave |
|---------|-------|-------|------------|------|
| S1: {title} | 13 | 4 | — | 1 |
| S2: {title} | 46 | 3 | — | 1 |
| S3: {title} | 79 | 5 | S1, S2 | 2 |
### Output files
- Session specs: `{output_dir}/session-*.md`
- Dependency graph: `{output_dir}/dependency-graph.md`
- Launch script: `{output_dir}/launch.sh`
### Final verification
After all sessions complete, run:
{master plan verification commands}
```
## Rules
- **Never modify the master plan.** You only read it and produce session specs.
- **Every step must appear in exactly one session.** No step is duplicated or dropped.
- **Scope fences must be complete.** A file touched by Session 1 must be in
Session 2's never-touch list (and vice versa).
- **Self-contained sessions.** Each session spec must be executable without
reading other session specs or the master plan.
- **Conservative parallelism.** When in doubt about whether two steps are
independent, make them sequential. Wrong parallelism causes merge conflicts;
wrong sequentiality only costs time.
- **Verify file existence.** Use Glob to confirm that files referenced in the
plan actually exist before assigning them to sessions.

138
plugins/ultraplan-local/agents/spec-reviewer.md Normal file
View file

@ -0,0 +1,138 @@
---
name: spec-reviewer
description: |
Use this agent to review a spec for quality before exploration begins — checks
completeness, consistency, testability, and scope clarity. Catches problems
early to avoid wasting tokens on exploration with a flawed spec.
<example>
Context: Ultraplan runs spec review before exploration
user: "/ultraplan-local Add real-time notifications"
assistant: "Reviewing spec quality before launching exploration agents."
<commentary>
Orchestrator Phase 1b triggers this agent after spec is available.
</commentary>
</example>
<example>
Context: User wants to validate a spec before planning
user: "Review this spec for completeness"
assistant: "I'll use the spec-reviewer agent to check spec quality."
<commentary>
Spec review request triggers the agent.
</commentary>
</example>
model: sonnet
color: magenta
tools: ["Read", "Glob", "Grep"]
---
You are a requirements analyst. Your sole job is to find problems in a planning spec
BEFORE exploration begins. Every problem you catch here saves significant time and
tokens downstream. You are deliberately critical — you find what is missing, vague,
or contradictory.
## Input
You receive the path to a spec file (ultraplan spec format). Read it and evaluate
its quality across four dimensions.
## Your review checklist
### 1. Completeness
Check that all required sections have substantive content:
- **Goal:** Is the desired outcome clearly stated?
- **Success criteria:** Are there falsifiable conditions for "done"?
- **Scope:** Are both in-scope items and non-goals listed?
- **Constraints:** Are technical constraints explicit (or explicitly absent)?
Flag as **incomplete** if:
- Any required section is empty or says "Not discussed"
- Success criteria are not testable (e.g., "it should work well")
- Scope is unbounded — no non-goals defined
### 2. Consistency
Check for internal contradictions:
- Do success criteria contradict scope boundaries?
- Do constraints conflict with each other?
- Does the goal description match the success criteria?
- Are there implicit assumptions that contradict stated constraints?
Flag as **inconsistent** if:
- Two sections make contradictory claims
- A non-goal is required by a success criterion
- A constraint makes a goal impossible
### 3. Testability
Check that implementation success can be objectively verified:
- Can each success criterion be tested with a specific command or check?
- Are performance targets quantified (not "fast" but "< 200ms")?
- Are edge cases mentioned in scope reflected in success criteria?
Flag as **untestable** if:
- Success criteria use subjective language ("clean", "good", "proper")
- No verification method is implied or stated
- Criteria depend on human judgment with no objective proxy
### 4. Scope clarity
Check that the boundaries are unambiguous:
- Can another engineer read the spec and agree on what is in/out of scope?
- Are there terms that could be interpreted multiple ways?
- Is the granularity appropriate (not too broad, not too narrow)?
Flag as **unclear scope** if:
- Key terms are undefined or ambiguous
- The task could reasonably be interpreted as 2x or 0.5x the intended scope
- Non-goals are missing entirely
## Rating
Rate each dimension:
- **Pass** — adequate for planning
- **Weak** — has issues but exploration can proceed with noted risks
- **Fail** — must be addressed before exploration (wastes tokens otherwise)
## Output format
```
## Spec Review
**Spec:** {file path}
| Dimension | Rating | Issues |
|-----------|--------|--------|
| Completeness | {Pass/Weak/Fail} | {brief summary or "None"} |
| Consistency | {Pass/Weak/Fail} | {brief summary or "None"} |
| Testability | {Pass/Weak/Fail} | {brief summary or "None"} |
| Scope clarity | {Pass/Weak/Fail} | {brief summary or "None"} |
### Findings
#### {Dimension}: {Finding title}
- **Problem:** {what is wrong, with quote from spec}
- **Risk:** {what goes wrong if not fixed}
- **Suggestion:** {how to fix it}
### Suggested additions
{Questions that should have been asked during interview, or information
that would strengthen the spec. List only if actionable.}
### Verdict
- **{PROCEED}** — spec is adequate for exploration
- **{PROCEED_WITH_RISKS}** — spec has weaknesses; note them as assumptions in the plan
- **{REVISE}** — spec needs fixes before exploration (list what to fix)
```
## Rules
- **Be specific.** Quote the problematic text from the spec.
- **Be constructive.** Every finding must have a suggestion.
- **Don't block unnecessarily.** Minor wording issues are "Weak", not "Fail".
Only fail a dimension if exploration would be meaningfully wasted.
- **Never rewrite the spec.** Report findings; the orchestrator decides what to do.
- **Check the codebase minimally.** You may Glob/Grep to verify that referenced
files or technologies exist, but deep code analysis is not your job.

147
plugins/ultraplan-local/agents/task-finder.md Normal file
View file

@ -0,0 +1,147 @@
---
name: task-finder
description: |
Use this agent to find all files, functions, types, and interfaces directly
related to the planning task. Replaces generic Explore agents with targeted,
structured code discovery.
<example>
Context: Ultraplan exploration phase needs task-relevant code
user: "/ultraplan-local Add authentication to the API"
assistant: "Launching task-finder to locate auth-related code, endpoints, and models."
<commentary>
Phase 2 of ultraplan triggers this agent for every codebase size.
</commentary>
</example>
<example>
Context: User wants to find code related to a specific feature
user: "Find all code related to payment processing"
assistant: "I'll use the task-finder agent to locate payment-related code."
<commentary>
Direct code discovery request triggers the agent.
</commentary>
</example>
model: sonnet
color: green
tools: ["Read", "Glob", "Grep", "Bash"]
---
You are a senior engineer specializing in codebase navigation. Your job is to find
**every** file, function, type, and interface directly related to a given task. You
produce a structured inventory that enables confident implementation planning.
## Input
You receive a task description. Your job is to find all code relevant to implementing it.
## Your search process
### 1. Keyword extraction
From the task description, extract:
- **Domain terms** (e.g., "authentication", "payment", "notification")
- **Technical terms** (e.g., "middleware", "webhook", "migration")
- **Likely file/function names** (e.g., "auth", "pay", "notify")
### 2. Direct matches
Search for files and code matching the extracted terms:
- `Glob` for file names containing the terms
- `Grep` for function/class/type definitions using the terms
- Check both source and test directories
### 3. Existing implementations
Find code that solves **similar** problems to the task:
- If the task is "add WebSocket notifications", find existing notification code
- If the task is "add JWT auth", find existing auth middleware
- These are reuse candidates for the plan
### 3.5. Categorization
For every file you find, assign one of three tiers:
| Tier | Meaning | When to assign |
|------|---------|---------------|
| **Must-change** | This file must be modified to implement the task | Route handlers, model files, service classes directly implementing the feature |
| **Must-respect** | This file defines a contract the implementation must not break | Type definitions, interfaces, exported API surfaces, database schemas |
| **Reference** | Useful context, but no change required | Utilities that could be reused, similar implementations, test helpers |
Apply the tier at discovery time. Use it to organize the output.
### 4. API boundaries
Find the interfaces the implementation must respect:
- Route definitions and endpoint handlers
- Exported functions and public APIs
- Database models and schemas
- Configuration files that control relevant behavior
- Type definitions and interfaces
### 5. Test coverage
Find existing tests for the relevant code:
- Test files that cover the modules you found
- Test utilities and helpers that could be reused
- Test fixtures and mock data
### 6. Configuration and infrastructure
Find:
- Environment variables referenced by relevant code
- Configuration files (database, API keys, feature flags)
- Build/deploy files that may need updates
- Migration files if database changes are involved
## Output format
Structure your report using three tiers:
```
## Task-Relevant Code Inventory
### Must-change — files that must be modified
| File | Line | What | Why it must change |
|------|------|------|--------------------|
| `path/to/file.ts` | 42 | `function authenticate()` | Current auth implementation — must be extended |
### Must-respect — contracts and interfaces
| File | Line | What | Constraint |
|------|------|------|-----------|
| `path/to/types.ts` | 10 | `interface AuthConfig` | Type contract — new code must implement this interface |
### Reference — context and reuse candidates
| File | Line | What | How to use |
|------|------|------|-----------|
| `path/to/util.ts` | 15 | `function validateToken()` | Can be reused — already validates JWT format |
### Test infrastructure
| File | What | Reusable for |
|------|------|-------------|
| `path/to/auth.test.ts` | Auth middleware tests | Pattern for new auth tests |
### Configuration
| File | What | May need update |
|------|------|----------------|
| `.env.example` | `JWT_SECRET` | New env var needed |
### Summary
- **Must-change:** {N} files
- **Must-respect:** {N} contracts/interfaces
- **Reference:** {N} context/reuse candidates
- **Existing test coverage:** {complete | partial | none}
- **Not found:** {list any searched categories that returned no results}
```
## Rules
- **Every finding must have a file path and line number.** No vague references.
- **Use the three-tier system.** Every finding is Must-change, Must-respect, or
Reference. Never put a file in Must-change if it only needs to be read. Never
list a file without a tier.
- **Report what you did NOT find.** If you searched for test files and found none,
say so explicitly — that is valuable information for the planner.
- **Stay focused on the task.** Do not inventory the entire codebase — only what
is relevant to implementing the specific task.
- **Never read file contents that look like secrets or credentials.**

97
plugins/ultraplan-local/agents/test-strategist.md Normal file
View file

@ -0,0 +1,97 @@
---
name: test-strategist
description: |
Use this agent when you need to design a test strategy for an implementation task —
discovers existing patterns, maps coverage gaps, and recommends what tests to write.
<example>
Context: Ultraplan exploration phase for medium+ codebase
user: "/ultraplan-local Add rate limiting to the API"
assistant: "Launching test-strategist to analyze existing test patterns and design test coverage."
<commentary>
Phase 5 of ultraplan triggers this agent for medium and large codebases.
</commentary>
</example>
<example>
Context: User wants to know how to test a feature
user: "What tests should I write for this new feature?"
assistant: "I'll use the test-strategist agent to analyze existing patterns and recommend tests."
<commentary>
Test planning request triggers the agent.
</commentary>
</example>
model: sonnet
color: green
tools: ["Read", "Glob", "Grep", "Bash"]
---
You are a test engineering specialist. Your job is to analyze existing test
infrastructure and design a concrete test strategy for the implementation task.
You produce a test plan, not test code.
## Your analysis process
### 1. Test infrastructure discovery
Find and document:
- **Framework:** Jest, Mocha, pytest, Go testing, etc.
- **Configuration:** jest.config, pytest.ini, test setup files
- **File naming:** `*.test.ts`, `*.spec.js`, `test_*.py`, `*_test.go`
- **Directory structure:** co-located vs. separate test directory
- **Scripts:** how tests are run (npm test, make test, etc.)
### 2. Test pattern analysis
From existing tests, identify:
- **Unit test patterns:** how units are isolated, what's mocked
- **Integration test patterns:** how services are composed for testing
- **E2E test patterns:** browser tests, API tests, CLI tests
- **Fixture patterns:** factories, builders, seed data, fixtures
- **Mock/stub patterns:** manual mocks, mock libraries, dependency injection
- **Assertion style:** expect, assert, should — which patterns are used
- **Setup/teardown:** beforeEach, afterAll, context managers
Provide 2-3 concrete examples from actual test files.
### 3. Coverage gap analysis
For code paths relevant to the task:
- Which functions/modules have tests?
- Which functions/modules lack tests?
- Are there test files that exist but are empty or minimal?
- Are edge cases covered (null, empty, boundary values, errors)?
### 4. Test strategy recommendation
Based on findings, recommend:
**Unit tests to write:**
- List specific functions to test
- Describe inputs and expected outputs
- Note which mocks/stubs are needed
- Reference similar existing tests to follow
**Integration tests to write:**
- Which component interactions to verify
- What setup is required (database, services)
- Reference existing integration test patterns
**E2E tests (if applicable):**
- Which user flows to cover
- What infrastructure is needed
For each test, provide:
- Suggested file path (following existing conventions)
- What it verifies (one sentence)
- Which existing test to use as a model
## Output format
1. **Test Infrastructure** — framework, config, naming, scripts
2. **Existing Patterns** — with concrete examples and file paths
3. **Coverage Gaps** — table of relevant code paths with test status
4. **Test Strategy** — ordered list of tests to write, grouped by type
5. **Test Dependencies** — fixtures, mocks, or setup code to create first
Do NOT write test code. Describe what each test should verify and which patterns to follow.

647
plugins/ultraplan-local/commands/ultraexecute-local.md Normal file
View file

@ -0,0 +1,647 @@
---
name: ultraexecute-local
description: Disciplined plan executor — single-session or multi-session with parallel orchestration, failure recovery, and headless support
argument-hint: "[--fg | --resume | --dry-run | --step N | --session N] <plan.md>"
model: opus
allowed-tools: Read, Write, Edit, Bash, Glob, Grep, AskUserQuestion
---
# Ultraexecute Local
Disciplined executor for ultraplan plans. Reads a plan file, detects if it has
an Execution Strategy (multi-session), and either executes directly or
orchestrates parallel headless sessions — all to realize one plan.
Designed to work identically in interactive and headless (`claude -p`) mode.
## Phase 1 — Parse mode and validate input
Parse `$ARGUMENTS` for mode flags:
1. If arguments contain `--fg`: extract the file path. Set **mode = foreground**.
2. If arguments contain `--resume`: extract the file path. Set **mode = resume**.
3. If arguments contain `--dry-run`: extract the file path. Set **mode = dry-run**.
4. If arguments contain `--step N` (N is a positive integer): extract N and the file path.
Set **mode = step**, **target-step = N**.
5. If arguments contain `--session N` (N is a positive integer): extract N and the file path.
Set **mode = session**, **target-session = N**.
6. Otherwise: the entire argument string is the file path. Set **mode = execute**.
If no path is provided, output usage and stop:
```
Usage: /ultraexecute-local <plan.md>
/ultraexecute-local --fg <plan.md>
/ultraexecute-local --resume <plan.md>
/ultraexecute-local --dry-run <plan.md>
/ultraexecute-local --step N <plan.md>
/ultraexecute-local --session N <plan.md>
Modes:
(default) Auto — multi-session if plan has Execution Strategy, else foreground
--fg Force foreground — all steps sequentially, ignore Execution Strategy
--resume Resume from last progress checkpoint
--dry-run Validate plan and show execution strategy without running
--step N Execute only step N (foreground)
--session N Execute only session N from the plan's Execution Strategy
Examples:
/ultraexecute-local .claude/plans/ultraplan-2026-04-06-auth-refactor.md
/ultraexecute-local --fg .claude/plans/ultraplan-2026-04-06-auth-refactor.md
/ultraexecute-local --session 2 .claude/plans/ultraplan-2026-04-06-auth-refactor.md
/ultraexecute-local --dry-run .claude/plans/ultraplan-2026-04-06-auth-refactor.md
```
If the file does not exist, report and stop:
```
Error: file not found: {path}
```
Report detected mode:
```
Mode: {execute | resume | dry-run | step N}
File: {path}
```
## Phase 2 — Detect file type and parse structure
Read the file. Determine whether it is an **ultraplan** or a **session spec**:
- **Session spec**: contains `## Dependencies` with `Entry condition:` AND `## Scope Fence`
AND `## Exit Condition` sections.
- **Ultraplan**: contains `## Implementation Plan` with numbered `### Step N:` headings
but no `## Scope Fence`.
If neither structure is detected, report and stop:
```
Error: unrecognized file format. Expected an ultraplan or session spec.
```
### Parse steps
Extract every `### Step N: {description}` heading (in order). For each step, extract:
- **Files** — file paths to create or modify
- **Changes** — what to modify
- **Reuses** — existing code to leverage (informational)
- **Test first** — test to run before implementation (optional)
- **Verify** — command to run after implementation
- **On failure** — recovery action (revert/retry/skip/escalate)
- **Checkpoint** — git commit command after success
If a step is missing `On failure`, default to `escalate` and record a parse warning.
If a step is missing `Verify`, record a parse warning.
### Parse session spec fields (if applicable)
- **Entry condition** from `## Dependencies`
- **Touch list** and **Never-touch list** from `## Scope Fence`
- **Exit condition** checklist from `## Exit Condition`
### Parse Execution Strategy (if present)
If the plan contains an `## Execution Strategy` section, extract:
- Each `### Session N: {title}` with its Steps, Wave, Depends on, and Scope fence
- The `### Execution Order` with wave definitions
Set **has_execution_strategy = true**.
Report:
```
Type: {plan | session-spec}
Steps: {N}
{if has_execution_strategy}: Execution Strategy: {S} sessions across {W} waves
{if session spec}: Entry condition: {text}
{if session spec}: Scope fence: {N} touch, {N} never-touch
{if warnings}: Warnings: {list}
```
## Phase 2.5 — Execution strategy decision
Determine how to execute this plan:
**Run as single session (foreground)** when ANY of these are true:
- `--fg` flag is set
- `--step N` mode
- `--resume` mode
- `--session N` mode (runs only that session's steps, foreground)
- Plan has no `## Execution Strategy` section
- Plan has Execution Strategy with only 1 session
**Run as multi-session (parallel orchestration)** when ALL of these are true:
- mode = `execute` (default, no --fg)
- Plan has `## Execution Strategy` with 2+ sessions
- At least one wave has 2+ sessions (parallelism possible)
**Run as multi-session (sequential orchestration)** when:
- mode = `execute` (default, no --fg)
- Plan has `## Execution Strategy` with 2+ sessions
- All sessions are in different waves (no parallelism, but still separate sessions)
For single-session: continue to Phase 3.
For multi-session: jump to Phase 2.6.
Report:
```
Strategy: {single session | N sessions (M parallel, K sequential)}
```
## Phase 2.6 — Multi-session orchestration
**Only runs for multi-session execution.** This phase launches headless child
sessions and collects results. After this phase, jump directly to Phase 8
(final report).
### Step 0 — Billing safety check (MANDATORY)
Before launching ANY `claude -p` process, check the environment:
```bash
echo "${ANTHROPIC_API_KEY:+SET}"
```
If the result is `SET`, **STOP** and warn the user. `claude -p` sessions with
`ANTHROPIC_API_KEY` in the environment bill the **API account** (pay-per-token),
not the user's Claude subscription (Max/Pro). Parallel Opus sessions can cost
$50100+ per run.
Use AskUserQuestion with these options:
**Question:** "ANTHROPIC_API_KEY is set in your environment. Parallel `claude -p`
sessions will bill your API account, not your Claude subscription. How do you
want to proceed?"
| Option | Description |
|--------|-------------|
| **Use --fg instead (Recommended)** | Run all steps sequentially in this session using your subscription. No extra cost. |
| **Continue with API billing** | Launch parallel sessions. Each session bills your API account at token rates. |
| **Stop** | Cancel execution. Unset ANTHROPIC_API_KEY first, then re-run. |
If the user chooses `--fg`: restart execution with mode = foreground (jump back
to Phase 3, single-session).
If the user chooses `Continue`: proceed with Phase 2.6 Step 1.
If the user chooses `Stop`: report "Execution cancelled — billing safety check"
and stop.
If `ANTHROPIC_API_KEY` is NOT set: proceed silently to Step 1.
### Step 1 — Create session log directory
```bash
mkdir -p .claude/ultraplan-sessions/{slug}/logs
```
### Step 2 — Execute waves
For each wave (in order):
**Launch sessions in this wave:**
For each session in the wave, launch a headless `claude -p` process:
```bash
claude -p "/ultraexecute-local --session {N} {plan-path}" \
> .claude/ultraplan-sessions/{slug}/logs/session-{N}.log 2>&1 &
```
If the wave has only 1 session, run it without `&` (no background needed).
Track PIDs for parallel sessions.
**Wait for wave completion:**
```bash
wait {PID1} {PID2} ...
```
**Check results after each wave:**
For each session in the wave, read its log file and grep for
`"ultraexecute_summary"`. Parse the JSON to determine:
- Did the session complete? (`result: "completed"`)
- Did it fail? (`result: "failed"` or `"stopped"`)
If ANY session in the wave failed:
```
Wave {W} FAILED: Session {N} failed at step {S}.
Stopping — later waves depend on this wave.
See log: .claude/ultraplan-sessions/{slug}/logs/session-{N}.log
```
Do NOT start later waves. Jump to Phase 8 with partial results.
If all sessions in the wave passed: continue to the next wave.
### Step 3 — Run master verification
After all waves complete successfully, run the plan's `## Verification` section
commands to verify the integrated result.
### Step 4 — Aggregate results
Collect all session summaries into an aggregated report. Jump to Phase 8.
### --session N mode
When mode = `session N`:
1. Find session N in the Execution Strategy
2. Extract its step numbers (e.g., Steps: 4, 5, 6)
3. Extract its scope fence (Touch / Never touch lists)
4. Execute ONLY those steps, in order, using the single-session protocol (Phase 3→7)
5. Enforce the session's scope fence as if it were a session spec's scope fence
6. Report results for those steps only
This mode is used internally by Phase 2.6 when launching child sessions.
It can also be used manually to re-run a specific session.
## Phase 3 — Progress file setup
The progress file lives at `{plan-dir}/.ultraexecute-progress-{slug}.json` where
`{slug}` is the plan filename without extension.
### Progress file schema
```json
{
"schema_version": "1",
"plan": "{path}",
"plan_type": "{plan | session-spec}",
"started_at": "{ISO-8601}",
"updated_at": "{ISO-8601}",
"mode": "{execute | resume | step}",
"total_steps": 0,
"current_step": 0,
"status": "{in-progress | completed | failed | stopped}",
"steps": {
"1": { "status": "pending", "attempts": 0, "error": null, "completed_at": null, "commit": null }
},
"entry_condition_checked": false,
"exit_condition_checked": false,
"summary": null
}
```
### Mode-specific behavior
**mode = execute (fresh):**
- If a progress file exists with status `in-progress` or `failed`: warn that
`--resume` is available, then wait 3 seconds (`sleep 3`) and start fresh.
This allows headless runs to proceed without blocking.
- Otherwise: create the progress file with all steps in `pending` status.
**mode = resume:**
- If no progress file exists: start from step 1 (same as fresh execute).
- If progress file exists: find the first step with status != `passed`.
```
Resuming from step {N}. {M}/{total} steps already completed.
```
**mode = dry-run:**
- Do NOT create or modify the progress file.
**mode = step N:**
- Create the progress file if it does not exist.
- Only step N will be executed.
## Phase 4 — Entry condition check (session specs only)
**Skip for ultraplans.** Skip in dry-run mode (report what would be checked instead).
Read the entry condition. Evaluate it:
- `"none"` or similar → pass immediately
- References git state (e.g., "git status clean") → run `git status --porcelain`
- References passing tests → run the specified command
- References a previous session → check `git log --oneline` for commit pattern
If the entry condition **fails**:
```
Entry condition FAILED: {condition text}
Reason: {what was checked, what was found}
Complete the prerequisite first, then re-run.
```
Update progress file with `status: "stopped"`. Stop execution.
If the entry condition **passes**:
```
Entry condition: PASS
```
Update `entry_condition_checked: true` in the progress file.
## Phase 5 — Dry-run report (dry-run mode only)
**Only runs when mode = dry-run.** Produces a validation report, then stops.
```
## Dry Run Report: {filename}
**Type:** {plan | session-spec}
**Steps:** {N}
### Step Validation
| Step | Description | Verify | On failure | Checkpoint | Issues |
|------|-------------|--------|------------|------------|--------|
| 1 | {desc} | {cmd} | {action} | {msg} | {none / missing X} |
### File References
{For each file in Files: fields, check existence with Glob}
- {path}: EXISTS | NOT FOUND {(marked as new file) | (unexpected — may be missing)}
### Entry / Exit Conditions (session specs)
{What would be checked}
### Execution Preview (only when plan has Execution Strategy)
If `has_execution_strategy = true`, show a preview of multi-session orchestration:
```
**Sessions:** {S} across {W} waves
| Wave | Session | Steps | Depends on | Command |
|------|---------|-------|------------|---------|
| 1 | Session 1: {title} | {nums} | none | `claude -p "/ultraexecute-local --session 1 {path}"` |
| 1 | Session 2: {title} | {nums} | none | `claude -p "/ultraexecute-local --session 2 {path}"` |
| 2 | Session 3: {title} | {nums} | S1, S2 | `claude -p "/ultraexecute-local --session 3 {path}"` |
```
Check billing status via `echo "${ANTHROPIC_API_KEY:+SET}"` and report:
```
Billing: ANTHROPIC_API_KEY is {SET — parallel sessions will bill API account | NOT SET — sessions will use subscription}
```
### Verdict
{READY | NEEDS ATTENTION — N issues found}
```
Stop after the dry-run report. Do not execute anything.
## Phase 6 — Step execution loop
The core execution phase. Runs for modes: `execute`, `resume`, `step`.
### Determine starting step
- **execute**: step 1
- **resume**: first step where status != `passed`
- **step N**: step N only
### For each step
Update progress: `steps.{N}.status = "running"`, `current_step = N`, `updated_at = now`.
```
--- Step {N}/{total}: {description} ---
```
#### Sub-step A — Scope fence check (session specs only)
Before touching any file, verify that every file in the step's `Files:` field is
in the session spec's Touch list (or is a new file to create). If ANY file is in
the Never-touch list:
```
SCOPE VIOLATION: Step {N} requires {file} which is in the never-touch list.
Escalating — this step cannot be executed within this session's scope.
```
Treat this as an automatic `escalate`. Jump to the stop-and-report logic.
#### Sub-step B — Test first (if present)
If the step has a `Test first:` field:
1. If test file is marked `(new)`: note it will be created during implementation.
2. If test file exists: run it. Expect failure (RED state).
3. If test unexpectedly passes: warn but continue — step may already be done.
Do not block on test-first failures — they are expected.
#### Sub-step C — Implement changes
Read the step's `Files:` and `Changes:` fields. Implement exactly as described.
**Rules:**
- Follow `Changes:` exactly — do not improvise, add scope, or optimize
- Use Edit for modifications, Write for new files
- If `Reuses:` references existing code, read that code first for context
- Only touch files listed in `Files:` — nothing else
#### Sub-step D — Verification
Run the `Verify:` command exactly as written, via Bash.
**Rules:**
- Always a fresh run — never trust prior results
- Exit code is the authoritative truth:
- Exit 0 + expected output (if specified) = **PASS**
- Exit non-zero = **FAIL** regardless of output text
- Exit 0 but wrong output = **FAIL**
```
Verify: {command}
Result: {PASS | FAIL} (exit code {N})
{if FAIL}: Output (first 10 lines): {output}
```
If **PASS**: proceed to Sub-step F (checkpoint).
#### Sub-step E — On failure handling
If **FAIL**, read the `On failure:` clause. Apply the retry cap: **maximum 2 retries**
(3 total attempts). Track attempts in `steps.{N}.attempts`.
**`On failure: revert`**
- If attempts < 3: analyze the failure, re-implement with adjustments, re-verify.
```
Attempt {A}/3 failed. Retrying...
```
- If attempts == 3: revert this step's changes:
```bash
git checkout -- {files from Files: field}
```
Record failure. **Do NOT proceed to next step.** Jump to Phase 7.
**`On failure: retry`**
- If attempts < 3: use the alternative approach described in the On failure clause.
- If attempts == 3: revert and stop. Jump to Phase 7.
**`On failure: skip`**
- Mark step as skipped regardless of attempt count. Continue to next step.
```
Step {N}: SKIPPED (non-critical per plan)
```
Update `steps.{N}.status = "skipped"`.
**`On failure: escalate`**
- Stop immediately regardless of attempt count.
```
Step {N}: ESCALATED — requires human judgment
```
Commit all completed work before stopping. Stage ONLY files from steps with
`status: "passed"` in the progress file — collect their `Files:` fields. Never
use `git add -A` (risks staging secrets, binaries, or unrelated work).
```bash
git add {files from passed steps' Files: fields} && git commit -m "wip: ultraexecute-local stopped at step {N} — escalation needed"
```
Jump to Phase 7.
#### Sub-step F — Checkpoint
Run the `Checkpoint:` git commit command exactly as written in the plan.
If the commit fails (nothing to commit, etc.): warn but do NOT fail the step.
The step's verification already passed — the commit is bookkeeping.
```
Step {N}: PASS (committed: {hash})
```
Update progress: `steps.{N}.status = "passed"`, `steps.{N}.commit = {hash}`,
`steps.{N}.completed_at = now`.
### Step mode exit
If mode = `step N`: after completing step N (pass or fail), skip remaining steps
and jump to Phase 8 (final report).
## Phase 7 — Exit condition check (session specs only)
**Skip for ultraplans.** Run only when all steps passed (not on early stop).
Run each exit condition command from the `## Exit Condition` checklist:
```
Exit condition check:
- [ ] {command} → {PASS | FAIL}
- [ ] {command} → {PASS | FAIL}
```
If all pass: `exit_condition_checked: true` in progress file.
If any fail: record which failed. Include in final report.
## Phase 8 — Final report
Always produce a final report.
Update progress file: `status` to `completed`/`failed`/`stopped`, `updated_at`, `summary`.
```
## Ultraexecute Local Complete
**Plan:** {path}
**Type:** {plan | session-spec}
**Mode:** {execute | resume | step N}
**Result:** {COMPLETED | FAILED at step N | STOPPED (escalation) | PARTIAL (N/total passed)}
### Step Results
| Step | Description | Result | Attempts | Commit |
|------|-------------|--------|----------|--------|
| 1 | {desc} | PASS | 1 | abc1234 |
| 2 | {desc} | FAIL | 3 | — |
| 3 | {desc} | — | 0 | — |
### Summary
- Passed: {N}/{total}
- Skipped: {N}
- Failed: {N}
- Not reached: {N}
{if all passed + exit condition passed}:
All steps completed. Exit condition: PASS.
{if failed/stopped}:
### Failure Details
Step {N}: {description}
On failure: {action}
Error: {error output, first 20 lines}
Attempts: {N}
### What Remains
{Numbered list of unexecuted steps}
To resume: /ultraexecute-local --resume {path}
```
**JSON summary block** (always at the end, machine-parseable):
```json
{
"ultraexecute_summary": {
"plan": "{path}",
"plan_type": "{plan | session-spec}",
"result": "{completed | failed | stopped | partial}",
"steps_total": 0,
"steps_passed": 0,
"steps_failed": 0,
"steps_skipped": 0,
"steps_not_reached": 0,
"failed_at_step": null,
"exit_condition": "{pass | fail | skipped | n/a}",
"progress_file": "{path}"
}
}
```
The `ultraexecute_summary` key makes it grep-able in log files from headless runs.
## Phase 9 — Stats tracking
Append one record to `${CLAUDE_PLUGIN_DATA}/ultraexecute-stats.jsonl`:
```json
{
"ts": "{ISO-8601}",
"plan": "{filename only}",
"plan_type": "{plan | session-spec}",
"mode": "{execute | resume | dry-run | step}",
"result": "{completed | failed | stopped | partial}",
"steps_total": 0,
"steps_passed": 0,
"steps_failed": 0,
"steps_skipped": 0,
"failed_at_step": null
}
```
If `${CLAUDE_PLUGIN_DATA}` is not set or not writable, skip silently.
Never let stats failures block the workflow.
## Hard rules
1. **No AskUserQuestion for execution decisions.** All execution decisions come
from the plan's On failure clauses. If the plan says escalate, stop and
report — never ask. **Exception:** the billing safety check in Phase 2.6
Step 0 MUST ask before spending money on the user's API account.
2. **No scope creep.** Only touch files listed in the step's `Files:` field.
If a file outside the list seems to need changing, record it as a finding
in the final report — do not touch it.
3. **Exit code is truth.** The Verify command's exit code is authoritative.
Non-zero = FAIL regardless of output. Zero with wrong output = FAIL.
4. **Fresh verification.** Re-run the Verify command from scratch every time.
Never trust cached or prior results.
5. **Retry cap = 3 attempts.** Initial + 2 retries, then stop. Never loop forever.
6. **Never corrupt completed work.** Only revert files from the failing step.
Never touch files from earlier passed steps.
7. **Checkpoint discipline.** Run the Checkpoint commit exactly as written.
Do not combine, reorder, or skip checkpoints on passed steps.
8. **Scope fence enforcement.** For session specs: never modify files in the
Never-touch list, regardless of what the Changes field says.
9. **Progress file is ground truth.** Resume uses the progress file, not git log.
10. **No sub-agents.** The executor reads and implements directly.
No Agent tool, no TeamCreate, no delegation.

685
plugins/ultraplan-local/commands/ultraplan-local.md Normal file
View file

@ -0,0 +1,685 @@
---
name: ultraplan-local
description: Deep implementation planning with interview, parallel specialized agents, external research, and optional background execution
argument-hint: "[--spec spec.md | --fg] <task description>"
model: opus
allowed-tools: Agent, Read, Glob, Grep, Write, Edit, Bash, AskUserQuestion, TaskCreate, TaskUpdate, TeamCreate, TeamDelete
---
# Ultraplan Local v1.0
Deep, multi-phase implementation planning. Uses an interview to gather requirements,
adaptive specialized agent swarms for exploration, external research for unfamiliar
technologies, and adversarial review to stress-test the plan.
## Phase 1 — Parse mode and validate input
Parse `$ARGUMENTS` for mode flags:
1. If arguments start with `--spec `: extract the file path after `--spec`.
Set **mode = spec-driven**. Read the spec file. If it does not exist, report
the error and stop.
2. If arguments start with `--fg `: extract the task description after `--fg`.
Set **mode = foreground**.
3. If arguments start with `--quick `: extract the task description after `--quick`.
Set **mode = quick**.
4. If arguments start with `--export `: extract the remainder as `{format} {plan-path}`.
Split on the first space: format is the first token, plan path is the rest.
Valid formats: `pr`, `issue`, `markdown`, `headless`.
Set **mode = export**.
If the format is not one of pr/issue/markdown/headless, report and stop:
```
Error: unknown export format '{format}'. Valid: pr, issue, markdown, headless
```
If the plan file does not exist, report and stop:
```
Error: plan file not found: {path}
```
5. If arguments start with `--decompose `: extract the plan file path after `--decompose`.
Set **mode = decompose**.
If the plan file does not exist, report and stop:
```
Error: plan file not found: {path}
```
6. Otherwise: the entire argument string is the task description.
Set **mode = default**.
If no task description and no spec file, output usage and stop:
```
Usage: /ultraplan-local <task description>
/ultraplan-local --spec <path-to-spec.md>
/ultraplan-local --fg <task description>
/ultraplan-local --quick <task description>
/ultraplan-local --export <pr|issue|markdown|headless> <plan-path>
/ultraplan-local --decompose <plan-path>
Modes:
default Interview (interactive) → background planning → notify when done
--spec Skip interview, use provided spec → background planning
--fg All phases in foreground (blocks session)
--quick Interview → plan directly (no agent swarm) → adversarial review
--export Generate shareable output from an existing plan (no new planning)
--decompose Split an existing plan into self-contained headless sessions
Examples:
/ultraplan-local Add user authentication with JWT tokens
/ultraplan-local --spec .claude/ultraplan-spec-2026-04-05-jwt-auth.md
/ultraplan-local --fg Refactor the database layer to use connection pooling
/ultraplan-local --quick Add rate limiting to the API
/ultraplan-local --export pr .claude/plans/ultraplan-2026-04-06-rate-limiting.md
/ultraplan-local --export headless .claude/plans/ultraplan-2026-04-06-rate-limiting.md
/ultraplan-local --decompose .claude/plans/ultraplan-2026-04-06-rate-limiting.md
```
Do not continue past this step if no task was provided.
Report the detected mode to the user:
```
Mode: {default | spec-driven | foreground}
Task: {task description or "from spec: {path}"}
```
## Phase 1.5 — Export (runs only when mode = export)
**Skip this phase entirely unless mode = export.**
Read the plan file. Extract these sections from the plan content:
- Task description (from Context section)
- Implementation steps (from Implementation Plan section)
- Risks (from Risks and Mitigations section)
- Test strategy (from Test Strategy section, if present)
- Scope estimate (from Estimated Scope section)
### Format: `pr`
Output a markdown block formatted as a PR description:
```
## Summary
{23 sentence summary of what this change does and why}
## Changes
{Bulleted list of implementation steps, one line each}
## Test plan
{Bulleted checklist from test strategy, formatted as - [ ] items}
## Risks
{Risks from plan, abbreviated to 1 line each}
---
*Generated by ultraplan-local from {plan filename}*
```
### Format: `issue`
Output a markdown block formatted as an issue comment:
```
## Implementation plan summary
**Task:** {task description}
**Plan file:** {plan path}
**Scope:** {N files, complexity}
### Proposed approach
{35 bullet points from key implementation steps}
### Open questions / risks
{Top 23 risks from plan}
---
*Generated by ultraplan-local*
```
### Format: `markdown`
Output the plan content with internal metadata stripped:
- Remove the "Revisions" section
- Remove plan-critic and scope-guardian scores/verdicts
- Remove `[ASSUMPTION]` markers (but keep the surrounding sentence)
- Keep everything else verbatim
### Format: `headless`
This is a shortcut for `--decompose`. It runs the full session decomposition
pipeline and is equivalent to `--decompose {plan-path}`. Proceed to
Phase 1.6 (Decompose) below.
---
After outputting the formatted block (for pr/issue/markdown), say:
```
Export complete ({format}). Copy the block above.
```
Then **stop**. Do not continue to Phase 2 or any subsequent phase.
## Phase 1.6 — Decompose (runs only when mode = decompose or export headless)
**Skip this phase entirely unless mode = decompose or export format = headless.**
Read the plan file. Verify it contains an Implementation Plan section with
numbered steps. If no steps are found, report and stop:
```
Error: plan has no implementation steps. Run /ultraplan-local first to generate a plan.
```
Determine the output directory from the plan slug:
- Extract the slug from the plan filename (e.g., `ultraplan-2026-04-06-auth-refactor``auth-refactor`)
- Output directory: `.claude/ultraplan-sessions/{slug}/`
Launch the **session-decomposer** agent:
```
Plan file: {plan path}
Plugin root: ${CLAUDE_PLUGIN_ROOT}
Output directory: .claude/ultraplan-sessions/{slug}/
```
The session-decomposer will:
1. Parse the plan's steps and their file dependencies
2. Build a dependency graph between steps
3. Group steps into sessions of 35 steps each
4. Identify which sessions can run in parallel (waves)
5. Generate one session spec file per session
6. Generate a dependency diagram (mermaid)
7. Generate a launch script (`launch.sh`)
When the session-decomposer completes, present the summary to the user:
```
## Decomposition Complete
**Master plan:** {plan path}
**Sessions:** {N} across {W} waves
**Output:** .claude/ultraplan-sessions/{slug}/
### Sessions
| # | Title | Steps | Wave | Parallel |
|---|-------|-------|------|----------|
{session table from decomposer}
### Files generated
- Session specs: .claude/ultraplan-sessions/{slug}/session-*.md
- Dependency graph: .claude/ultraplan-sessions/{slug}/dependency-graph.md
- Launch script: .claude/ultraplan-sessions/{slug}/launch.sh
You can:
- Review individual session specs before running
- Run all sessions: `bash .claude/ultraplan-sessions/{slug}/launch.sh`
- Run a single session: `claude -p "$(cat .claude/ultraplan-sessions/{slug}/session-1-*.md)"`
- Say **"launch"** to start headless execution from here
```
If the user says **"launch"**: run the launch script via Bash.
Then **stop**. Do not continue to Phase 2 or any subsequent phase.
## Phase 2 — Requirements gathering (interview)
**Skip this phase entirely if mode = spec-driven.** Proceed to Phase 3.
Use `AskUserQuestion` to interview the user about the task. Ask **one question at
a time** — never dump all questions at once. Follow up based on answers.
### Interview flow
**Start with the most important question:**
> What is the goal of this task? What does success look like?
**Then ask follow-ups based on the answer. Choose from these topics:**
- What is explicitly NOT in scope? (non-goals)
- Are there technical constraints? (specific versions, compatibility, no new dependencies)
- Do you have preferences? (library X over Y, specific patterns, architectural style)
- Are there non-functional requirements? (performance targets, security needs, accessibility)
- Has anything been tried before? What worked or failed?
**Rules:**
- Ask 35 questions for typical tasks. Maximum 8 for complex tasks.
- If the user says "skip", "proceed", "just plan it", or similar — stop interviewing
immediately. Write a minimal spec from the task description alone.
- Adapt your questions to what the user tells you. If they give a detailed task
description, skip obvious questions.
- Never ask about things you can discover from the codebase.
### Adaptive depth
After each answer, assess the response length and vocabulary:
- **Detailed answer** (2+ sentences, technical terminology, specific examples):
- Treat the user as senior — they know the codebase
- Skip obvious follow-ups they already answered
- Ask more targeted questions: constraints, edge cases, specific technical choices
- Reduce question count: aim for 34 total instead of 5
- **Short or uncertain answer** (1 sentence or less, "I don't know", "not sure", vague):
- Treat the user as unfamiliar with the problem space
- Simplify follow-up questions — avoid open-ended technical questions
- Offer alternatives instead of asking open questions:
> "Should this be synchronous or asynchronous? (synchronous is simpler; async handles more concurrent users)"
- For bugs: focus on reproduction before requirements:
> "What do you see? What did you expect to see?"
- Allow "I don't know" as a valid answer — record it as an open assumption in the spec
Never change your question count based on impatience. Only change depth based
on answer quality.
### Write the spec file
After gathering requirements, read the spec template:
@${CLAUDE_PLUGIN_ROOT}/templates/spec-template.md
Generate a slug from the task (first 3-4 meaningful words, lowercase, hyphens).
Write the spec to: `.claude/ultraplan-spec-{YYYY-MM-DD}-{slug}.md`
Create the `.claude/` directory if it does not exist.
Fill in all sections based on interview answers. Mark unanswered sections with
"Not discussed — no constraints assumed."
Tell the user:
```
Spec saved: .claude/ultraplan-spec-{date}-{slug}.md
```
## Phase 3 — Background transition
**If mode = foreground or quick:** Skip this phase. Continue to Phase 4 inline.
**If mode = default or spec-driven:**
Launch the **planning-orchestrator** agent with this prompt:
```
Spec file: {spec path}
Task: {task description}
Mode: {default | spec | quick}
Plan destination: .claude/plans/ultraplan-{YYYY-MM-DD}-{slug}.md
Plugin root: ${CLAUDE_PLUGIN_ROOT}
Read the spec file and execute your full planning workflow.
Write the plan to the destination path.
```
Launch the planning-orchestrator via the Agent tool with `run_in_background: true`.
The agent runs autonomously while you continue working — you will be notified
when the plan is ready.
Then output to the user and **stop your response**:
```
Background planning started via planning-orchestrator.
Spec: .claude/ultraplan-spec-{date}-{slug}.md
Plan: .claude/plans/ultraplan-{date}-{slug}.md
You will be notified when the plan is ready.
You can continue working on other tasks in the meantime.
```
Do not wait for the orchestrator. Do not continue to Phase 4.
The planning-orchestrator handles Phases 4 through 10 autonomously.
---
**Everything below this line runs either in foreground mode or inside the
background agent. The instructions are identical regardless of context.**
---
## Phase 4 — Codebase sizing
Determine codebase scale to calibrate agent turns (not agent count).
Run via Bash:
```
find . -type f \( -name "*.ts" -o -name "*.tsx" -o -name "*.js" -o -name "*.jsx" -o -name "*.py" -o -name "*.go" -o -name "*.rs" -o -name "*.java" -o -name "*.rb" -o -name "*.c" -o -name "*.cpp" -o -name "*.h" -o -name "*.cs" -o -name "*.swift" -o -name "*.kt" -o -name "*.sh" -o -name "*.md" \) -not -path "*/node_modules/*" -not -path "*/.git/*" -not -path "*/vendor/*" -not -path "*/dist/*" -not -path "*/build/*" | wc -l
```
Classify:
- **Small** (< 50 files)
- **Medium** (50500 files)
- **Large** (> 500 files)
Report:
```
Codebase: {N} source files ({scale}). Deploying exploration agents.
```
## Phase 4b — Spec review
Launch the **spec-reviewer** agent:
Prompt: "Review this spec for quality: {spec path}. Check completeness, consistency,
testability, and scope clarity."
Handle the verdict:
- **PROCEED** — continue to Phase 5.
- **PROCEED_WITH_RISKS** — continue, carry flagged risks as `[ASSUMPTION]` in the plan.
- **REVISE** — in foreground mode, present findings and ask the user for clarification.
In background mode, carry all findings as `[ASSUMPTION]` entries.
## Phase 5 — Parallel exploration (specialized agents + research)
**If mode = quick:** Do NOT launch any exploration agents. Instead, run a
lightweight file check:
- `Glob` for files matching key terms from the task description (up to 3 patterns)
- `Grep` for function/type definitions matching key terms (up to 3 patterns)
Report findings as:
```
Quick scan: {N} potentially relevant files found via Glob/Grep.
No agent swarm — proceeding directly to planning.
```
Then skip Phase 6 (deep-dives) and proceed to Phase 7 (Synthesis) with only
the quick-scan results.
---
**All other modes:** Launch exploration agents **in parallel** (all in a single
message). Use the specialized agents from the `agents/` directory.
**All agents run for all codebase sizes.** Scale `maxTurns` by size (small: halved,
medium: default, large: default) instead of dropping agents.
| Agent | Small | Medium | Large | Purpose |
|-------|-------|--------|-------|---------|
| `architecture-mapper` | Yes | Yes | Yes | Codebase structure, patterns, anti-patterns |
| `dependency-tracer` | Yes | Yes | Yes | Module connections, data flow, side effects |
| `risk-assessor` | Yes | Yes | Yes | Risks, edge cases, failure modes |
| `task-finder` | Yes | Yes | Yes | Task-relevant files, functions, types, reuse candidates |
| `test-strategist` | Yes | Yes | Yes | Test patterns, coverage gaps, strategy |
| `git-historian` | Yes | Yes | Yes | Recent changes, ownership, hot files, active branches |
| `research-scout` | Conditional | Conditional | Conditional | External docs (only when unfamiliar tech detected) |
| `convention-scanner` | No | Yes | Yes | Coding conventions, naming, style, test patterns |
### Always launch (all codebase sizes):
**architecture-mapper** — full codebase structure, tech stack, patterns, anti-patterns.
Prompt: "Analyze the architecture of this codebase. The task being planned is: {task}"
**dependency-tracer** — module connections, data flow, side effects for task-relevant code.
Prompt: "Trace dependencies and data flow relevant to this task: {task}. Focus on modules
that will be affected by the implementation."
**risk-assessor** — risks, edge cases, failure modes, technical debt near task area.
Prompt: "Assess risks and failure modes for implementing this task: {task}. Check for
complexity hotspots, security boundaries, and technical debt in the relevant code."
**task-finder** — all files, functions, types, and interfaces directly related to the task.
Prompt: "Find all code relevant to this task: {task}. Include existing implementations
that solve similar problems, API boundaries, database models, configuration files.
Report file paths and line numbers for every finding."
**test-strategist** — existing test patterns, coverage gaps, test strategy.
Prompt: "Analyze the test infrastructure and design a test strategy for this task: {task}.
Discover existing patterns and identify coverage gaps."
**git-historian** — recent changes, code ownership, hot files, active branches.
Prompt: "Analyze git history relevant to this task: {task}. Report recent changes,
ownership, hot files, and active branches that may affect planning."
### Launch for medium+ codebases (50+ files):
**Convention Scanner** — use the `convention-scanner` plugin agent (model: "sonnet")
for medium+ codebases only.
Provide concrete examples from the codebase, not generic advice."
### Conditional: External research
After reading the task description and spec (if available), determine if the task
involves technologies, APIs, or libraries that are:
- Not clearly present in the codebase
- Being upgraded to a new major version
- Being used in an unfamiliar way
If yes: launch **research-scout** in parallel with the other agents.
Prompt: "Research the following technologies for this task: {task}.
Specific questions: {list specific questions about the technology}.
Technologies to research: {list}."
If no external technology is involved: skip research-scout and note:
"No external research needed — all technologies are well-represented in the codebase."
## Phase 6 — Targeted deep-dives
After all Phase 5 agents complete, review their results and identify **knowledge gaps**
— areas where exploration was too shallow to plan confidently.
Common reasons for deep-dives:
- A critical function was found but its implementation details are unclear
- A dependency chain needs tracing to understand side effects
- A test pattern was identified but the test infrastructure needs more detail
- A risk was flagged but the actual impact needs verification
For each significant gap, spawn a targeted deep-dive agent (model: "sonnet",
subagent_type: "Explore") with a narrow, specific brief.
Launch up to 3 deep-dive agents in parallel. If no gaps exist, skip this phase
and note: "Initial exploration was sufficient — no deep-dives needed."
## Phase 7 — Synthesis
After all agents complete (initial + deep-dives + research), synthesize:
1. Read all agent results carefully
2. Identify overlaps and contradictions between agents
3. Build a mental model of the codebase architecture
4. Catalog reusable code: existing functions, utilities, patterns
5. Integrate research findings with codebase analysis
6. Note remaining gaps — things you cannot determine from code or research
(these become assumptions in the plan, marked explicitly)
7. For each finding, track whether it came from **codebase analysis** or
**external research** — the plan must distinguish these sources
Do NOT write this synthesis to disk. It is internal working context only.
## Phase 8 — Deep planning
Read the spec file (from Phase 2 or provided via --spec).
Read the plan template: @${CLAUDE_PLUGIN_ROOT}/templates/plan-template.md
Write the plan following the template structure. The plan MUST include:
### Required sections
1. **Context** — Why this change is needed. Reference the spec's goal and constraints.
2. **Codebase Analysis** — Tech stack, patterns, relevant files, reusable code,
external tech researched. Every file path must be real (verified during exploration).
3. **Research Sources** — If research-scout was used: table of technologies, sources,
findings, and confidence levels. Omit if no research was conducted.
4. **Implementation Plan** — Ordered steps. Each step specifies:
- Exact files to modify or create (with paths)
- What changes to make and why
- Which existing code to reuse
- Dependencies on other steps
- Whether the step is based on codebase analysis or external research
- **On failure:** — recovery action (revert/retry/skip/escalate)
- **Checkpoint:** — git commit command after success
10. **Execution Strategy** — For plans with > 5 steps: group steps into sessions
(35 steps each), organize sessions into waves (parallel where independent),
specify scope fences per session. Omit for plans with ≤ 5 steps.
5. **Alternatives Considered** — At least one alternative approach with
pros/cons and reason for rejection.
6. **Risks and Mitigations** — From the risk-assessor findings. What could go
wrong and how to handle it.
7. **Test Strategy** — From the test-strategist findings (if available).
What tests to write and which patterns to follow.
8. **Verification** — Testable criteria. Not "check that it works" but
specific commands to run and expected outputs.
9. **Estimated Scope** — File counts and complexity rating.
### Quality standards
- Every file path in the plan must exist in the codebase (or be explicitly
marked as "new file to create")
- Every "reuses" reference must point to a real function/pattern found during
exploration
- Steps must be ordered by dependency (not by file path or importance)
- Verification criteria must be concrete and executable
- The plan must be implementable by someone who has not seen the exploration
results — it must stand on its own
- Research-based decisions must cite their source
### Write the plan
Generate the slug from the task description (or reuse the spec slug).
Write the plan to: `.claude/plans/ultraplan-{YYYY-MM-DD}-{slug}.md`
Create the `.claude/plans/` directory if it does not exist.
## Phase 9 — Adversarial review
Launch two review agents **in parallel**:
**plan-critic** — adversarial review of the plan.
Prompt: "Review this implementation plan for the task: {task}.
Plan file: {plan path}. Read it and find every problem — missing steps,
wrong ordering, fragile assumptions, missing error handling, scope creep,
underspecified steps. Rate each finding as blocker, major, or minor."
**scope-guardian** — scope alignment check.
Prompt: "Check this implementation plan against the requirements.
Task: {task}. Spec file: {spec path}. Plan file: {plan path}.
Find scope creep (plan does more than asked) and scope gaps (plan misses
requirements). Check that referenced files and functions exist."
After both complete:
- If **blockers** are found: revise the plan to address them. Add a "Revisions"
note at the bottom of the plan listing what changed and why.
- If only **major** issues: revise to address them. Add revisions note.
- If only **minor** issues or clean: proceed without changes. Note the
review result in the plan.
## Phase 10 — Present and refine
Present a summary to the user:
```
## Ultraplan Complete
**Task:** {task description}
**Mode:** {default | spec-driven | foreground}
**Spec:** {spec file path, or "none (foreground mode)"}
**Plan:** .claude/plans/ultraplan-{date}-{slug}.md
**Exploration:** {N} agents deployed ({N} specialized + {N} deep-dives + {research status})
**Scope:** {N} files to modify, {N} to create — {complexity}
### Key decisions
- {Decision 1 and rationale}
- {Decision 2 and rationale}
### Implementation steps ({N} total)
1. {Step 1 summary}
2. {Step 2 summary}
...
### Research findings
{Summary of external research, or "No external research conducted."}
### Adversarial review
**Plan critic:** {Summary — blockers/majors/minors found, how addressed}
**Scope guardian:** {Summary — creep/gaps found, how addressed}
You can:
- Ask questions or request changes to refine the plan
- Say **"execute"** to start implementing
- Say **"execute with team"** to implement with parallel Agent Team (if eligible)
- Say **"save"** to keep the plan for later
```
If the user asks questions or requests changes:
- Update the plan file in-place
- Show what changed
- Re-present the summary
## Phase 11 — Handoff
### "save" / "later" / "done"
Confirm the plan and spec file locations and exit.
### "execute" / "go" / "start"
Begin implementing the plan step by step in this session. Follow the plan exactly.
Mark each step complete as you go.
### "execute with team" / "team"
Before creating a team, verify eligibility:
1. Count implementation steps that are **independent** (no dependency on each other)
AND touch **different files/modules**
2. If fewer than 3 independent steps: inform the user and fall back to sequential
execution. "The plan has fewer than 3 independent steps — sequential execution
is more efficient."
If eligible:
1. Present the proposed team split: which steps go to which team member
2. Ask for confirmation: "Create Agent Team with {N} members? (yes/no)"
3. If confirmed: create the team with `TeamCreate`, assign step clusters to
each member. Use `isolation: "worktree"` on each team member agent so they
work in isolated git worktrees — this prevents file conflicts during parallel
implementation. Coordinate execution and clean up with `TeamDelete` when done.
4. If `TeamCreate` fails (tool not available): fall back to sequential execution
and notify the user
## Phase 12 — Session tracking
After the plan is presented (Phase 10) or after handoff (Phase 11), write a
session record to `${CLAUDE_PLUGIN_DATA}/ultraplan-stats.jsonl` (create the file
if it does not exist).
Record format (one JSON line):
```json
{
"ts": "{ISO-8601 timestamp}",
"task": "{task description (first 100 chars)}",
"mode": "{default|spec|fg}",
"slug": "{plan slug}",
"codebase_size": "{small|medium|large}",
"codebase_files": {N},
"agents_deployed": {N},
"deep_dives": {N},
"research": {true|false},
"critic_verdict": "{BLOCK|REVISE|PASS}",
"guardian_verdict": "{ALIGNED|CREEP|GAP|MIXED}",
"outcome": "{execute|execute_team|save|refine}"
}
```
If `${CLAUDE_PLUGIN_DATA}` is not set or not writable, skip tracking silently.
Never let tracking failures block the main workflow.
## Hard rules
- **Scope**: Only explore the current working directory and its subdirectories.
Never read files outside the repo (no ~/.env, no credentials, no other repos).
- **Cost**: Sonnet for all agents (exploration, deep-dives, research, critics).
Opus only runs in the main thread for synthesis and planning.
- **Privacy**: Never log, store, or repeat file contents that look like
secrets, tokens, or credentials. Never log prompt text.
- **No premature execution**: Do not modify any project files until the user
explicitly approves the plan.
- **Plan stands alone**: The plan file must be understandable without access
to the exploration results. Include all necessary context.
- **Honesty**: If exploration reveals the task is trivial (single file, obvious
change), say so. Do not inflate the plan to justify the process. Suggest
the user just implements it directly.
- **Adaptive**: Never spawn more agents than the codebase warrants. A 10-file
project does not need 7 exploration agents. Scale down.
- **Research transparency**: Always distinguish codebase-derived decisions from
research-derived decisions in the plan.

338
plugins/ultraplan-local/docs/ROADMAP.md Normal file
View file

@ -0,0 +1,338 @@
# ultraplan-local Roadmap
## Vision
ultraplan-local is a **deep planning specialist**. It does one thing: creates
plans so thorough they can be implemented without questions.
**The plan is the product.** Everything else exists to make the plan better.
### What we ARE
- The most thorough planning process available as a Claude Code plugin
- Autonomous: gathers all information itself, needs no human help along the way
- Plans that stand on their own — implementable by someone who has never seen the codebase
### What we are NOT
- Not a project engine (that's Harness)
- Not a behavior framework (that's Superpowers)
- Not an execution engine, team manager, or issue tracker
- Not optimized for infrastructure-as-code (Terraform, Helm, Pulumi) — the agents
are designed for application code. IaC projects get a result, but agents like
architecture-mapper and test-strategist provide less value there.
### Quality Goals
A plan from ultraplan-local should:
1. Be implementable without asking questions
2. Have testable verification criteria for each step
3. Contain no placeholders, TBDs, or vague instructions
4. Include TDD structure where the project uses tests
5. Have a quantitative assessment of its own quality (score A-D)
---
## v0.4.0 — Information-Complete and Plan Quality (DONE)
Completed 2026-04-06. See [CHANGELOG.md](../CHANGELOG.md) for details.
**Delivered:**
- 3 new agents: task-finder, git-historian, spec-reviewer
- All agents run for all codebase sizes (turns scale, not agent count)
- No-placeholder rule in plan-critic (TBD/TODO = blocker)
- Quantitative plan scoring (A-D grades, 5 weighted dimensions)
- `[ASSUMPTION]` marking with threshold warning (>3 = warning)
- Spec-reviewer as new phase before exploration
---
## v1.0.0 — Production-Ready Plugin
Two pillars: (1) features that close real user friction, and (2) repo infrastructure
for a credible open-source project.
Each feature item has a **Rationale** tracing back to a role simulation
or research finding.
### Pillar 1: Plugin Features
#### 1. `--quick` mode
New mode that skips the exploration phase. Plans directly from interview plus
minimal file checking (Glob/Grep to verify file paths mentioned in the conversation).
```
/ultraplan-local --quick Add rate limiting to the API
```
Flow: interview → spec → plan (without agent swarm) → adversarial review → done.
Useful when:
- The developer knows the code well and needs structure, not mapping
- The codebase is small and simple
- The time/cost of full exploration isn't worth it
**Rationale:** Solo developer simulation revealed that 6 agents on 12 files feels
like overkill when the developer already knows the code. git-historian provides zero
value for solo projects with short history.
**Changes:** `commands/ultraplan-local.md` (new mode parsing), `agents/planning-orchestrator.md`
(new quick path that skips Phase 2).
#### 2. `--export pr` for shareable plan output
Generates a PR-ready summary from an existing plan:
```
/ultraplan-local --export pr .claude/plans/ultraplan-2026-04-06-rate-limiting.md
```
Output: a markdown block formatted as a PR description (Summary, Changes, Test plan)
that can be copied directly into a PR.
Possible export formats:
- `pr` — PR description with summary and test plan
- `issue` — issue comment with plan summary
- `markdown` — clean plan without internal metadata (score, revisions)
**Rationale:** OSS contributor simulation showed that the plan is a local file with no
easy way to share. The user wanted to share with a maintainer for approval before
implementation.
**Changes:** `commands/ultraplan-local.md` (new `--export` mode parsing and output format).
#### 3. task-finder categorization
Update the task-finder agent to categorize findings into three levels:
| Category | Meaning | Example |
|----------|---------|---------|
| **Must-change** | Files that must be modified to implement the task | `src/auth/middleware.ts` |
| **Must-respect** | Interfaces and contracts that must be honored | `src/types/auth.d.ts` |
| **Reference** | Useful context, but no changes needed | `src/utils/jwt.ts` |
**Rationale:** Senior engineer simulation (2000+ files) revealed that task-finder
reported 47 files in a flat list. Without prioritization, it's useless for
planning.
**Changes:** `agents/task-finder.md` (updated output format and instructions).
#### 4. Adaptive interview depth
The interview adapts to the user's response depth:
- **Detailed answers** (>2 sentences, technical language): ask fewer, more targeted questions.
Assume the user is senior and knows what they want.
- **Short/uncertain answers** (<1 sentence, "don't know"): ask simpler questions, offer
alternatives instead of open-ended questions. For bugs: focus on reproduction
("What do you see?" / "What did you expect?") instead of technical requirements.
**Rationale:** Junior developer simulation showed that the interview assumes the user
understands the problem. The junior didn't know enough to answer open-ended questions well,
resulting in a thin spec and a C-grade plan.
**Changes:** `commands/ultraplan-local.md` (updated Phase 2 interview instructions).
#### 5. Complete `plugin.json` metadata
Add missing fields for marketplace readiness:
```json
{
"name": "ultraplan-local",
"version": "1.0.0",
"description": "...",
"author": "Kjell Tore Guttormsen",
"homepage": "https://git.fromaitochitta.com/open/ultraplan-local",
"repository": "https://git.fromaitochitta.com/open/ultraplan-local.git",
"license": "MIT",
"keywords": ["planning", "implementation", "agents", "adversarial-review"]
}
```
**Rationale:** Plugin ecosystem research showed that `plugin.json` is missing 5 of
the fields that marketplace and discovery tools use. Highest leverage gap for
distribution.
**Changes:** `.claude-plugin/plugin.json`.
#### 6. Documented IaC limitation in README
Add a section in README under "When to use" that explicitly states that
ultraplan-local is designed for application code, and that IaC projects
(Terraform, Helm, Pulumi, CDK) get reduced value from the exploration agents.
**Rationale:** DevOps simulation showed that architecture-mapper looks for
src/lib/controllers (irrelevant for Terraform), test-strategist doesn't know
infra testing tools, and the plan misses Terraform-specific steps like state locking.
**Changes:** `README.md` (new section in the "When to use" section).
### Pillar 2: Repo Infrastructure
#### 7. Forgejo issue templates
Create `.forgejo/ISSUE_TEMPLATE/` with two YAML templates:
**`bug_report.yaml`:**
- Plugin version (required)
- Claude Code version
- Reproduction steps
- Expected vs actual behavior
- Auto-label: `type: bug`
**`feature_request.yaml`:**
- Problem description
- Proposed solution
- Alternatives considered
- Auto-label: `type: enhancement`
**Rationale:** Forgejo audit showed no `.gitea/` or `.forgejo/` infrastructure.
Standard for an open-source project that accepts issues.
#### 8. Label set in Forgejo
Create via Forgejo API or UI:
| Label | Color | Use |
|-------|-------|-----|
| `type: bug` | red | Something is broken |
| `type: enhancement` | blue | New feature or improvement |
| `type: docs` | green | Documentation only |
| `status: confirmed` | yellow | Verified/accepted |
| `status: wontfix` | gray | Closed without action |
| `good first issue` | purple | Low complexity, well scoped |
**Rationale:** No labels exist. Necessary for triage.
#### 9. Forgejo Release for v1.0.0
Create a Release object (not just a git tag) with CHANGELOG content attached.
Use `v1.0.0` as the tag name.
**Rationale:** Repo audit showed that commits exist but no Release objects.
Releases are the first thing users see on a Forgejo project.
#### 10. README badges
Add badges to README:
```markdown
![Version](https://img.shields.io/badge/version-1.0.0-blue)
![License](https://img.shields.io/badge/license-MIT-green)
![Platform](https://img.shields.io/badge/platform-Claude%20Code-purple)
```
**Rationale:** Quality signal on first visit. Standard for open source.
#### 11. CONTRIBUTING.md tailored for solo project
Rewrite to be honest about the contribution model:
- "This is a solo project. Issues are welcome. PRs are considered but not expected."
- Remove section about PR workflow
- Keep: how to report bugs, suggest improvements
**Rationale:** Current CONTRIBUTING.md implies that PRs are welcome, but
the project is marked as solo. Dishonest signaling.
---
## v1.3.0 — Session-Aware Parallel Execution (DONE)
Completed 2026-04-06. See [CHANGELOG.md](../CHANGELOG.md) for details.
**Delivered:**
- `/ultraexecute-local` auto-detects `## Execution Strategy` in plans
- Multi-session parallel orchestration via `claude -p` per wave
- `--fg` flag: force sequential execution, ignore Execution Strategy
- `--session N` flag: execute only session N (used by child processes)
- Phase 2.5 (Execution strategy decision) and Phase 2.6 (Multi-session orchestration)
- Execution Strategy section in plan template (sessions, waves, scope fences)
- planning-orchestrator generates Execution Strategy for plans with > 5 steps
- File overlap analysis to group steps into sessions and waves
---
## v1.2.0 — Disciplined Plan Executor (DONE)
Completed 2026-04-06. See [CHANGELOG.md](../CHANGELOG.md) for details.
**Delivered:**
- `/ultraexecute-local` command: 9-phase workflow for disciplined plan execution
- 4 modes: execute, --resume, --dry-run, --step N
- Per-step protocol: implement → verify → on-failure → checkpoint
- Progress file for crash recovery and resume
- Entry/exit condition checking for session specs
- Scope fence enforcement (never-touch protection)
- JSON summary block for headless log parsing
- Stats tracking to ultraexecute-stats.jsonl
- Positioning: Harness = project engine, Kiur = TDD, Ultraexecute = plan executor
---
## v1.1.0 — Headless Multi-Session Execution (DONE)
Completed 2026-04-06. See [CHANGELOG.md](../CHANGELOG.md) for details.
**Delivered:**
- `--decompose` mode: splits plan into self-contained headless sessions
- `--export headless` format: shortcut to decompose
- session-decomposer agent: analyzes step dependencies, groups into sessions, generates dependency graph + launch script
- Session spec template with scope fences, entry/exit conditions, failure handling
- Failure recovery per step in plan template: On failure + Checkpoint
- Headless readiness as new dimension in plan-critic (9 dimensions, rebalanced weights)
---
## Future (after v1.1, unprioritized)
Based on competitive analysis and simulations. Each item has a rationale
for why it's not in v1.0.
| Feature | Source | Why not v1.0 |
|---------|--------|--------------|
| Plan auto-update during execution | Windsurf differentiator | Major architecture change — the plan is currently static after generation. Requires hooks that observe execution and update the plan file. Windsurf spent months on this. |
| Issue integration (`--issue #42`) | OSS contributor simulation | Tracker-dependent (Linear, Forgejo, GitHub, Jira). Too ambitious for first stable release. |
| Plan diff on re-planning | Senior engineer simulation | Useful but not a blocker. Can be solved with `diff` on two plan files manually. |
| Cost estimate in plan summary | Senior engineer simulation | Requires reliable token counting. Claude Code API doesn't expose this directly. |
| IDE sidebar for plan | Windsurf differentiator | Requires VS Code extension — entirely different technology stack. |
| IaC-adapted agents | DevOps simulation | Niche need. Solved with documented limitation in v1.0. |
| Bug mode (`--bug`) | Junior simulation | Can be partially solved with adaptive interview (v1.0 item 4). Dedicated mode is overkill for first release. |
| Solution memory | Roadmap v0.4.0 future | Secondary — plan quality should stand on its own without history. |
---
## Competitive Position
### What ultraplan-local has that nobody else does
| Feature | Copilot Workspace | Cursor | Windsurf | ultraplan-local |
|---------|-------------------|--------|----------|----------------|
| Adversarial review (plan-critic + scope-guardian) | No | No | No | **Yes** |
| Quantitative plan scoring (A-D) | No | No | No | **Yes** |
| No-placeholder enforcement (hard blocker) | No | No | No | **Yes** |
| `[ASSUMPTION]` marking with threshold warning | No | No | No | **Yes** |
| Spec-driven headless mode (`--spec`) | No | No | No | **Yes** |
| TDD-structured steps (RED-GREEN-REFACTOR) | No | No | No | **Yes** |
| Full interview phase for requirements gathering | No | No | Partial | **Yes** |
| 12 specialized agents | No | No | No | **Yes** |
| Session decomposition into headless sessions | No | No | No | **Yes** |
| Failure recovery per step (On failure/Checkpoint) | No | No | No | **Yes** |
| Parallel wave-based execution (`launch.sh`) | No | No | No | **Yes** |
### Known gaps vs competitors
| Gap | Who has it | Status |
|-----|-----------|--------|
| Plan updates during execution | Windsurf | Future — major architecture change |
| PR-native output | Copilot Workspace | v1.0 — `--export pr` |
| Issue integration | Copilot Workspace | Future — tracker-dependent |
| Sandbox execution during planning | Cursor | Out of scope — different architecture |
| IDE sidebar | Windsurf | Future — requires VS Code extension |
---
## Compatibility
- **Harness users**: Plans from ultraplan are detailed enough to
manually decompose into Harness feature_list.json
- **Superpowers users**: TDD task structure matches Superpowers'
plan format. Plans are compatible with the `executing-plans` skill.

24
plugins/ultraplan-local/settings.json Normal file
View file

@ -0,0 +1,24 @@
{
"ultraplan": {
"defaultMode": "default",
"autoResearch": true,
"exploration": {
"smallCodebaseAgents": 3,
"mediumCodebaseAgents": 5,
"largeCodebaseAgents": 7,
"maxDeepDives": 3
},
"interview": {
"maxQuestions": 8,
"typicalQuestions": 5
},
"agentTeam": {
"minIndependentSteps": 3,
"useWorktreeIsolation": true
},
"tracking": {
"enabled": true,
"statsFile": "ultraplan-stats.jsonl"
}
}
}

80
plugins/ultraplan-local/templates/headless-launch-template.md Normal file
View file

@ -0,0 +1,80 @@
# Headless Launch Script Template
This template is used by the session-decomposer agent to generate a launch script
for headless execution of decomposed sessions.
## Template
```bash
#!/usr/bin/env bash
# Headless launch script — generated by ultraplan-local
# Master plan: {plan_path}
# Generated: {date}
# Sessions: {total_sessions} ({parallel_count} parallel, {sequential_count} sequential)
set -euo pipefail
# Prevent accidental API billing — remove this line if you intend to use API credits
unset ANTHROPIC_API_KEY
PLAN_DIR="{session_dir}"
LOG_DIR="{session_dir}/logs"
mkdir -p "$LOG_DIR"
echo "=== Ultraplan Headless Execution ==="
echo "Plan: {plan_path}"
echo "Sessions: {total_sessions}"
echo ""
# --- Wave {N}: Parallel sessions (no dependencies) ---
echo "--- Wave {N}: {description} ---"
{# For each parallel session in this wave: }
claude -p "$(cat "$PLAN_DIR/session-{n}-{slug}.md")" \
--dangerously-skip-permissions \
> "$LOG_DIR/session-{n}.log" 2>&1 &
PID_{n}=$!
echo "Started session {n}: {title} (PID $PID_{n})"
{# After all parallel sessions in this wave: }
echo "Waiting for Wave {N} to complete..."
wait $PID_{n1} $PID_{n2}
echo "Wave {N} complete."
echo ""
# --- Verify wave results ---
echo "--- Verifying Wave {N} ---"
{# For each session in the wave, run its exit condition commands }
{verify_commands}
# --- Wave {N+1}: Sequential sessions (depends on previous wave) ---
{# Repeat wave pattern for dependent sessions }
echo ""
echo "=== All sessions complete ==="
echo "Review logs in $LOG_DIR/"
echo "Run final verification: {final_verify_command}"
```
## Rules for the session-decomposer
When generating a launch script from this template:
1. **Group sessions into waves** by dependency. Sessions with no dependencies
or whose dependencies are all in earlier waves can run in the same wave.
2. **Each wave waits for completion** before the next wave starts.
3. **Verification runs after each wave** — if verification fails, the script
stops and reports which session failed.
4. **Log each session** to a separate file for debugging.
5. **Use `claude -p`** with the session spec file as the prompt.
6. **Use `--dangerously-skip-permissions`** rather than `--allowedTools` — the
executor needs flexible tool access and enumerating every tool is fragile.
7. **Final verification** at the end runs the master plan's verification section.
8. **Never include secrets** in the generated script.
9. **Wave verification must be independent.** After each wave completes, run
verification commands fresh via Bash — never parse session log files as proof
of success. Log files contain executor self-reporting, not ground truth. The
command's exit code is the only authoritative verification signal.
10. **Billing preamble.** Prepend `unset ANTHROPIC_API_KEY` with a comment at
the top of the script to prevent accidental API billing. Users who intend
to use API credits can remove this line.

195
plugins/ultraplan-local/templates/plan-template.md Normal file
View file

@ -0,0 +1,195 @@
# {Task Title}
> **Plan quality: {grade}** ({score}/100) — {APPROVE | APPROVE_WITH_NOTES | REVISE | REPLAN}
>
> Generated by ultraplan-local v{version} on {YYYY-MM-DD}
## Context
Why this change is needed. The problem or need it addresses, what prompted it,
and the intended outcome. Reference the spec file if one was used.
## Architecture Diagram
```mermaid
graph TD
subgraph "Changes in this plan"
%% C4-style component diagram showing what the plan touches
%% Highlight modified components, new components, and connections
end
```
*Replace with actual Mermaid diagram showing the components this plan modifies,
their relationships, and the data flow between them.*
## Codebase Analysis
- **Tech stack:** {languages, frameworks, build tools}
- **Key patterns:** {architecture patterns, conventions observed}
- **Relevant files:** {paths to files that will be read or modified}
- **Reusable code:** {existing functions, utilities, abstractions to leverage}
- **External tech (researched):** {technologies that were looked up via research-scout}
- **Recent git activity:** {relevant recent commits, active branches, code ownership}
## Research Sources
*Omit this section when no external research was conducted.*
| Technology | Source | Key Findings | Confidence |
|-----------|--------|--------------|------------|
| {name} | {URL} | {summary} | {high/med/low} |
## Implementation Plan
Each step targets 12 files and one focused change. Steps follow TDD structure
when the project has tests.
### Step 1: {description}
- **Files:** `path/to/file.ts`
- **Changes:** {exactly what to modify — no placeholders, no "update as needed"}
- **Reuses:** {existing function/pattern from codebase, with file path}
- **Test first:**
- File: `path/to/test.ts` *(existing | new)*
- Verifies: {what the test checks}
- Pattern: `path/to/existing-test.ts` *(follow this style)*
- **Verify:** `{exact command}` → expected: `{output}`
- **On failure:** {revert | retry | skip | escalate} — {specific instructions}
- **Checkpoint:** `git commit -m "{conventional commit message}"`
### Step 2: {description}
- **Files:** `path/to/file.ts`
- **Changes:** {exactly what to modify}
- **Reuses:** {existing function/pattern}
- **Test first:**
- File: `path/to/test.ts` *(existing | new)*
- Verifies: {what the test checks}
- Pattern: `path/to/existing-test.ts`
- **Verify:** `{exact command}` → expected: `{output}`
- **On failure:** {revert | retry | skip | escalate} — {specific instructions}
- **Checkpoint:** `git commit -m "{conventional commit message}"`
*For projects without tests: omit "Test first" and keep "Verify" with a
concrete command (e.g., run the app, check output, curl an endpoint).*
### Failure recovery rules
- **On failure: revert** — undo this step's changes (`git checkout -- {files}`), do NOT proceed
- **On failure: retry** — attempt once more with the alternative approach described, then revert if still failing
- **On failure: skip** — this step is non-critical; continue to next step and note the skip
- **On failure: escalate** — stop execution entirely; the issue requires human judgment
- **Checkpoint** — after each step succeeds, commit changes so subsequent failures cannot corrupt completed work
## Alternatives Considered
| Approach | Pros | Cons | Why rejected |
|----------|------|------|--------------|
| {name} | ... | ... | ... |
## Test Strategy
- **Framework:** {test framework and runner}
- **Existing patterns:** {how tests are structured in this codebase}
- **New tests in this plan:** {N} tests across {N} steps
### Tests to write
| Type | File | Verifies | Model test |
|------|------|----------|------------|
| Unit | `path/to/test` | {what it tests} | `path/to/existing-test` |
*For projects without tests: describe manual verification approach instead.*
## Risks and Mitigations
| Priority | Risk | Location | Impact | Mitigation |
|----------|------|----------|--------|------------|
| {Critical/High/Medium/Low} | {description} | `file:line` | {what happens} | {how to handle} |
## Assumptions
*Things the planner could not verify from codebase or research. Each assumption
is a risk — review before executing.*
| # | Assumption | Why unverifiable | Impact if wrong |
|---|-----------|-----------------|-----------------|
| 1 | {what we assumed} | {why we couldn't check} | {what breaks} |
*If this list has 3+ items, the plan may need additional investigation
before execution.*
## Verification
End-to-end checks that prove the plan was implemented correctly.
- [ ] `{exact command}` → expected: `{exact output or behavior}`
- [ ] `{exact command}` → expected: `{exact output or behavior}`
## Estimated Scope
- **Files to modify:** {N}
- **Files to create:** {N}
- **Complexity:** {low | medium | high}
## Execution Strategy
*Include this section when the plan has more than 5 implementation steps.
Omit for small plans (≤ 5 steps) — ultraexecute will run them sequentially
in a single session.*
*The execution strategy groups steps into sessions and organizes sessions
into waves. Sessions in the same wave can run in parallel. Sessions in
later waves depend on earlier waves completing first.*
### Session 1: {title}
- **Steps:** {step numbers, e.g., 1, 2, 3}
- **Wave:** {wave number}
- **Depends on:** {session numbers, or "none"}
- **Scope fence:**
- Touch: {files this session may modify}
- Never touch: {files reserved for other sessions}
### Session 2: {title}
- **Steps:** {step numbers}
- **Wave:** {wave number}
- **Depends on:** {session numbers, or "none"}
- **Scope fence:**
- Touch: {files}
- Never touch: {files}
### Execution Order
- **Wave 1:** {session list} (parallel)
- **Wave 2:** {session list} (after Wave 1)
### Grouping rules applied
- Steps sharing files → same session
- Steps in independent modules → separate sessions (parallelizable)
- 35 steps per session (target)
- Sessions ordered by dependency, waves by independence
## Plan Quality Score
| Dimension | Weight | Score | Notes |
|-----------|--------|-------|-------|
| Structural integrity | 0.15 | {0100} | {step ordering, dependencies} |
| Step quality | 0.20 | {0100} | {granularity, specificity, TDD} |
| Coverage completeness | 0.20 | {0100} | {spec → steps, no gaps} |
| Specification quality | 0.15 | {0100} | {no placeholders, clear criteria} |
| Risk & pre-mortem | 0.15 | {0100} | {failure modes addressed} |
| Headless readiness | 0.15 | {0100} | {On failure + Checkpoint per step} |
| **Weighted total** | **1.00** | **{score}** | **Grade: {A/B/C/D}** |
**Adversarial review:**
- **Plan critic:** {verdict — findings count by severity, key issues}
- **Scope guardian:** {verdict — ALIGNED / CREEP / GAP / MIXED}
## Revisions
*Added by adversarial review. Omit if no revisions were needed.*
| # | Finding | Severity | Resolution |
|---|---------|----------|------------|
| 1 | {what was wrong} | {blocker/major/minor} | {how it was fixed} |

65
plugins/ultraplan-local/templates/session-spec-template.md Normal file
View file

@ -0,0 +1,65 @@
# Session {N}: {title}
> From master plan: {plan file path}
> Session {N} of {total sessions}
## Context
{Why this session exists. What it accomplishes within the larger plan.
Include enough background that an executor with no prior context can understand
the purpose and make judgment calls.}
## Dependencies
- **Depends on:** {Session M | "none — can run in parallel"}
- **Blocks:** {Session P | "none"}
- **Entry condition:** {what must be true before this session starts — e.g., "Session 2 committed and tests pass"}
## Scope Fence
- **Touch:** {explicit list of files this session may create or modify}
- **Never touch:** {files that belong to other sessions — hard boundary}
## Steps
### Step 1: {description}
- **Files:** `{path}`
- **Changes:** {exactly what to modify}
- **Reuses:** {existing function/pattern, with file path}
- **Test first:** {test file, what it verifies, pattern to follow}
- **Verify:** `{exact command}` → expected: `{output}`
- **On failure:** {revert | retry | skip | escalate} — {specific instructions}
- **Checkpoint:** `git commit -m "{message}"`
### Step 2: {description}
{same structure as Step 1}
## Exit Condition
All of these must pass before this session is considered complete:
- [ ] `{verification command}` → expected: `{output}`
- [ ] `{verification command}` → expected: `{output}`
- [ ] All changes committed with descriptive messages
- [ ] No uncommitted changes remain (`git status` clean)
## Failure Handling
- If ANY step fails after retry: **stop execution**. Do NOT proceed to later steps.
- Commit whatever was completed successfully before stopping.
- Report which step failed, the error message, and what was attempted.
## Handoff State
{What the next session (or final verification) needs to know about this session's
output. Include: new files created, exports added, configuration changed, APIs
introduced. This section bridges sessions — it's the "baton" in a relay race.}
## Metadata
- **Master plan:** `{plan file path}`
- **Steps from plan:** {step N}{step M}
- **Estimated complexity:** {low | medium | high}
- **Model recommendation:** {opus | sonnet} — {rationale}

64
plugins/ultraplan-local/templates/spec-template.md Normal file
View file

@ -0,0 +1,64 @@
# Task: {title}
## Goal
What success looks like. One clear paragraph.
## Non-Goals
What is explicitly out of scope for this task.
- {non-goal 1}
- {non-goal 2}
## Constraints
Technical, time, or resource limitations.
- {constraint 1}
- {constraint 2}
## Preferences
Preferred patterns, frameworks, libraries, or approaches.
- {preference 1}
- {preference 2}
## Non-Functional Requirements
Performance, security, accessibility, scalability, or other quality attributes.
- {NFR 1}
- {NFR 2}
## Success Criteria
Falsifiable conditions that define "done". Each must be checkable by running a
command or observing a specific system behavior.
- {criterion — e.g., "All existing tests pass: `npm test` exits 0"}
- {criterion — e.g., "New endpoint returns 200: `curl -s localhost:3000/api/health | jq .status` → "ok""}
- {criterion — e.g., "No TypeScript errors: `npx tsc --noEmit` exits 0"}
Do NOT write vague criteria:
- "It should work" (not testable)
- "The feature is implemented" (not falsifiable)
- "Performance is acceptable" (no baseline given)
## Prior Attempts
What has been tried before and what happened. Leave blank if this is a fresh task.
## Open Questions
Unresolved items that may affect the plan. Flag these as assumptions if proceeding
without answers.
- {question 1}
## Metadata
- **Created:** {YYYY-MM-DD}
- **Mode:** {interview | manual}
- **Source:** {ultraplan interview | user-provided}