بنقرة واحدة
task
Work a task end-to-end with lean context gathering, implementation, and verification
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Work a task end-to-end with lean context gathering, implementation, and verification
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
Pre-commit/ship code review: Codex default; optional Claude, Pi, Droid, Copilot, Cursor, or OpenCode.
Create, verify, repair, and close durable Codex goals with measurable outcomes, evidence gates, plan templates, blocker handling, completion audits, and goal-backed workflow repair.
Resolve GitHub PR review feedback with source-backed triage, fixes, autogoal plan state, mandatory autoreview closeout, replies, and thread resolution.
Generate structured video transcripts from local files or video URLs using Gemini Files API. Use when a GitHub or Linear tracker item, comment, or attachment includes a screen recording, .mov, .mp4, or tracker-hosted video and you need a <video-transcripts> block instead of hand-written notes.
Create, verify, repair, and close durable Codex goals with measurable outcomes, evidence gates, plan templates, blocker handling, completion audits, and goal-backed workflow repair.
Pre-commit/ship code review: Codex default; optional Claude, Pi, Droid, Copilot, or OpenCode.
| description | Work a task end-to-end with lean context gathering, implementation, and verification |
| argument-hint | [task description | issue id/link] |
| disable-model-invocation | true |
| name | task |
| metadata | {"skiller":{"source":".agents/rules/task.mdc"}} |
Handle $ARGUMENTS. Start from the source of truth, load extra skills only when they earn their keep, and verify before calling the task done.
#$ARGUMENTS
gh issue view first.gh pr view first.github.com/<owner>/<repo>/security/advisories/GHSA-*): fetch it with
gh api repos/<owner>/<repo>/security-advisories/<GHSA_ID> first.github.com/advisories/GHSA-*):
fetch it with gh api advisories/<GHSA_ID> first. Treat it as read-only
unless you can identify a repository security advisory owned by the
current repo/org.#555: resolve it against the current gh repo
first, then fetch it with gh issue view.video-transcripts, use or create the shared transcript cache through that
skill, and require normalized <video-transcripts> XML before
implementation. If the helper cannot produce it after a real attempt, stop
and report the blocker.major-task immediately and let it own workflow.autogoal before implementationdocs/plans goal plan from the dominant-risk primary
template plus touched-surface packs:
--template docs--template task--with docs.agents/**, .claude/**, .codex/**, skills, hooks, commands,
prompts, or user-action tooling touched: add --with agent-native--with browser--with package-api--with registry-changelog--with security-advisory
node .agents/skills/autogoal/scripts/create-goal-scratchpad.mjs --template <task|docs> --with <pack> --title "<short task title>"content/**, docs/API/reference pages, docs nav,
docs examples, or public ownership/API claims changed by a code task.
Load docs-creator before editing those docs and include the docs pack.
If docs enter scope after the plan already exists, stop before closeout,
read docs-creator, and copy the docs-pack gates into the active plan.testing before tdd and choose the
smallest honest slice.Apply only when the source is a tracker item.
gh for GitHub, Linear
integration for Linear.<issue-number> <issue-title>.Apply this before implementation when a public tracker item reports a bug, makes a user-visible behavior claim, includes a technical diagnosis, or proposes an implementation fix.
.agents/skills/autoreview/SKILL.md for its review contract and use that
stance before code: adversarial, source-backed, and willing to reject weak
claims. This is a pre-solution issue/design review, not a dirty-diff helper
invocation. The structured autoreview helper remains the closeout gate after a
real diff exists.not reproduced:
[@Browser](plugin://browser@openai-bundled) against the real route or
local app when tests or Playwright cannot reproduce or cannot model the
user-visible surface honestlyN/A only when that level cannot observe the reported
behavior; record why. Do not call a bug not reproduced until every
applicable lower-to-higher repro level has either failed to reproduce or is
blocked with evidence.N/A with a reason. Still challenge any
proposed technical fix against source ownership before coding.valid: reproduced and worth fixing, or non-bug work whose source-backed
acceptance criteria are valid with reproduction marked N/A.not reproduced: hard stop. Do not code. Report exact repro attempts and
missing evidence. Use this only when a bug or behavior claim needed
reproduction.invalid or wont-fix: hard stop. Do not code. Give harsh honest feedback
about the bad premise or policy boundary.partially valid: pivot to the best long-term fix and explicitly record
which part of the issue or suggested fix is wrong, narrow, or incomplete.platform limitation: hard stop unless a docs note, guardrail, or graceful
fallback is the actual durable fix.Apply this when the source or required closeout is a GitHub security advisory, GHSA, CVE request, npm advisory, private vulnerability report, or public package security hotfix.
gh api when the source is a GitHub repository advisory or public GHSA; do
not rely on the web UI as the only proof. For npm-only advisories or private
reports without a GitHub advisory, record the external advisory/report source
and the external owner or blocker instead.github.com/advisories/GHSA-*
are read-only for normal repo maintainers. If the fix belongs to this repo,
locate or create the repository security advisory before trying to update
vulnerable ranges, publish, or request a CVE. If no repo advisory is owned by
this repo/org, close with global GHSA readback plus external owner/blocker.--with security-advisory in the goal plan. Also use
--with package-api when a published package, changeset, or npm release is
part of the fix.npm view <package>@<version> and the
GitHub release/tag when relevant.cve_id and is eligible, request a CVE
through the advisory API unless the user explicitly says not to; read back the
advisory afterward and record that assignment may remain pending. For
public/global GHSA records without a repo advisory and non-GitHub sources,
record existing CVE, external CNA/request owner, GitHub/global owner, or N/A
reason.Default to task for normal work and major-task for heavyweight work. Load a
niche skill only when it owns a hard domain gate, command, or proof surface that
the active task would otherwise miss.
Do not keep repo-local skills for generic lifestyle, app-template, local git
ops, stale command stubs, or broad CE ceremony when task, major-task,
autogoal, autoreview, or a Plate-specific skill owns the workflow better.
If a generated skill is gone but skills-lock.json still references it, remove
it through npx skills remove <skill> -y first. If the CLI removes the agent
files but leaves stale lock entries, record that evidence before cleaning the
lock.
autogoal: measurable or auditable non-trivial work. Use the dominant-risk
primary template and touched-surface packs: docs-heavy work gets
--template docs, normal work gets --template task, and supporting docs,
browser, agent-native, security-advisory, or package/API surfaces add
matching --with <pack> rows. Review expectations stay in the primary
template. Do not use root planning files, hooks, .planning/**, or
docs/goals/**.major-task: heavyweight architecture, framework, migration, benchmark, or
proposal work.testing: tasks primarily about tests, coverage, regression gaps, or suite
phases.tdd: bugs and feature work where behavior-level automated coverage is sane.learnings-researcher: non-trivial repeated domains with documented
solutions.video-transcripts: tracker evidence contains a video or screen recording.framework-docs-researcher: unfamiliar, version-sensitive, or unstable
third-party APIs after local clones/docs are checked.browser-use: real browser/UI surface needs verification.agent-browser-issue: browser automation is blocked by a reusable tool-side
issue.changeset: published package work under packages/ needs release notes.registry-changelog: user-visible Plate registry UI, kit, example,
metadata, copied-code install shape, or generated registry changelog work
needs a registry changelog entry or a concrete N/A reason.plate-ui: authoring or refactoring Plate registry UI/components, static/live
renderers, kits, registry wiring, or ownership/extraction decisions under
apps/www/src/registry/**.docs-creator: mandatory for non-trivial docs/content work, new or rewritten
pages, plugin/API/spec/serialization docs, route moves, example changes,
public docs under content/**, or docs with source-backed ownership/API
claims. Use --template docs when docs dominate. Use --with docs and still
load docs-creator when docs are a supporting touched surface under a normal
or major task. Tiny typo/link-only edits may skip it with an explicit reason.git/gh commands directly. The task skill owns the PR body.agent-native-reviewer: changes touch .agents/**, .claude/**,
AI/tooling surfaces, commands, or user actions an agent should perform.Keep this lighter than Slate Plan. A normal task should not grow a scorecard, issue ledger, or pass calendar, but it still needs real closeout pressure when the patch is risky.
.agents/skills/autoreview/SKILL.md, pick the target from the actual
diff state, and keep going until there are no accepted/actionable findings.
Use dirty local --mode local, branch/PR --mode branch --base <base>, and
committed-slice --mode commit --commit <ref>.agent-native-reviewer is required when the task changes .agents/**,
.claude/**, .codex/**, skills, hooks, commands, prompts, or user-action
tooling. Treat accepted findings like normal review findings: verify against
source, fix the real issue, and rerun the relevant proof.docs-creator and use the docs goal template.docs-creator
before writing docs. If supporting docs are discovered late, add the docs
pack rows to the active plan before closeout; do not hide them under the
generic "Docs or content changed" gate.Keep verification mandatory and proportional.
pnpm test, bun test, or pnpm check fails with local-corruption
signals unrelated to the diff, run pnpm run reinstall once and rerun the
exact failing command before declaring the task blocked.docs-creator gate. Supporting docs under a code task still need
docs-creator, docs-pack evidence, pnpm --filter www build:source, and
pnpm --filter www check:docs when source parity or generated docs can be
affected.apps/www/src/registry/**, satisfy the registry changelog gate.apps/www/src/registry/, the registry
changelog gate replaces the package changeset.When a task run creates or updates a PR, the PR description must mirror the
task final handoff. Do not use a generic Summary / Verification PR body,
generic git-helper prose, or a generated badge footer unless the caller or repo
template explicitly asks for it.
Use the accepted task PR format from kitcn PR #270. The shape is not optional:
<!-- auto-release:start --> block. If a changeset is
part of the diff and repo policy expects auto release, include that block.🐛 Fixes #123 or 🐛 Fixes ➖ N/A. Never include a line that links to the
current PR itself; the current PR URL belongs in the final response, not in
its own description.🟢 95-100% confidence.| Phase | 🧪 Tests | 🌐 Browser |Reproduced and Verified rows. Mark passing proof with 🟢, repro or
failing proof with 🔴, and non-applicable browser/test cells with ➖ N/A.**✅ Outcome**, **⚠️ Caveat**, **🏗️ Design**, and
**🧪 Verified**.The body should tell QA/reviewers what was fixed, how it was reproduced, how it
was verified, and why the chosen ownership boundary is right. It must not use
plain Fix:, plain Confidence:, ## Outcome, ## Verified, or a generic
Summary / Verification shape for task-run PRs. After editing, verify it
with gh pr view --json body before final handoff.
video-transcripts before implementation when required.#555 were resolved against the current repo.autogoal and used the right goal
template.docs-creator and used --template docs.docs-creator, used --with docs, and closed the docs
pack unless the change was truly typo/link-only with an explicit reason.--with <pack> rows when they were not the dominant risk.--with registry-changelog.--with security-advisory and closed
release, advisory publication, CVE request, and readback evidence.gh pr view --json body.