open/ktg-plugin-marketplace
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity Actions
ktg-plugin-marketplace/plugins/ultraplan-local/tests/fixtures/trekreview/plan-with-source-findings.md
Kjell Tore Guttormsen 14ecda886c feat(voyage)!: bulk content rewrite ultra -> voyage/trek prose [skip-docs] 
Sed-pipeline (16 patterns, longest-match-first) sweeper residuelle ultra*-treff
i prose, command-narrativ, agent-prompts, hook-kommentarer, doc-prosa.

Pipeline-utvidelser fra V4-prompten:
- BSD-syntax [[:<:]]ultra[[:>:]] istedenfor \bultra\b (BSD sed mangler \b)
- 6 compound-patterns for ultraplan/ultraexecute/ultraresearch/ultrabrief/
  ultrareview/ultracontinue uten -local-suffiks
- ultra*-stats glob -> trek*-stats glob
- Linje-eksklusjon redusert til ultra-cc-architect (Q8); session-state-
  eksklusjonen var over-protektiv
- File-eksklusjon utvidet til settings.json, package.json, plugin.json,
  hele .claude/-treet (gitignored + V5-territorium)

Q8-undantak holdt: architecture-discovery.mjs + project-discovery.mjs urort.
Filnavn-konvensjon holdt: .session-state.local.json + *.local.* preservert.

Manuell narrative-fix: tests/lib/agent-frontmatter.test.mjs linje 10
mangled "/ultra*-local" til "/voyage*-local" (ingen slik kommando finnes);
korrigert til "/trek*".

Residualer utenfor scope (V5 handterer): package.json + .claude-plugin/
plugin.json (Step 12-14 versjons-bump). .claude/* er gitignored
spec-historikk med tilsiktet BEFORE/AFTER-narrativ.

Part of voyage-rebrand session 3 (Wave 4 / Step 10).

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-05-05 15:08:20 +02:00

1.4 KiB
Raw Blame History

plan_version source_findings
1.7
763d174e6c519fafbadcba5d1706708479e36e61
d2d0e27875ae9ef0d818cb08bb6f14e6d33c4232
7861519c326c207aabf17072db51c469bebc217b

Remediation Plan: JWT auth review findings

Generated by trekplan v3.2.0 on 2026-05-01 — plan_version: 1.7.

Synthetic fixture — Handover 6 SC3(b) structural test only.

Context

This synthetic plan is consumed by tests/lib/source-findings.test.mjs to verify the structural contract of Handover 6: a plan generated from a type: trekreview brief carries a source_findings: block-style YAML list of 40-char hex IDs in its frontmatter. The IDs trace back to the consumed findings in review.md.

This is NOT a runnable plan. It exists only to exercise the parser.

Implementation Plan

Step 1: Fix UNIMPLEMENTED_CRITERION in lib/handlers/login.mjs:23

  • Files: lib/handlers/login.mjs
  • Changes: Return 401 with WWW-Authenticate header when password mismatch occurs.
  • Verify: node --test tests/handlers/login.test.mjs → expected: pass.
  • Checkpoint: git commit -m "fix(auth): login returns 401 on invalid credentials"
  • Manifest: 
    manifest:
  expected_paths:
    - lib/handlers/login.mjs
  min_file_count: 1
  commit_message_pattern: "^fix\\(auth\\): login returns 401"
  bash_syntax_check: []
  forbidden_paths: []
  must_contain:
    - path: lib/handlers/login.mjs
      pattern: "401"