| name | epic_v2 |
| description | Implement a specific epic end-to-end — worktree, code, test, PR, review, merge. Supports auto-merge for automated phase execution. Pass the epic number as an argument (e.g. /epic_v2 7). |
Epic Implementation Workflow (v2)
Implement the specified epic using a Scout → Builder pipeline for context efficiency.
Architecture
You are the orchestrator. You stay lean and delegate all heavy work to subagents:
- Scout agent — explores codebase, reads docs, studies patterns → writes a self-contained implementation brief to a file
- Builder agent — reads ONLY the brief file → implements, tests, commits, pushes, creates PR
This prevents the builder from burning 50%+ of its context on research it only needs the conclusions from. The scout's context is discarded after it produces the brief.
Context budget rule: The orchestrator NEVER reads ARCHITECTURE.md, full phase task files, or CLAUDE.md subdirectory files. That is exclusively the scout's job.
Arguments
Epic number or slice ID:
- Full epic (
/epic_v2 450): Implements ALL slices (450A, 450B, ...) in a single PR. This is the default for run-phase.sh.
- Single slice (
/epic_v2 450A): Implements only that slice. Use for manual reruns or targeted fixes.
The orchestrator detects the input type: digits-only = full epic, digits + letter = single slice.
Append auto-merge to skip merge confirmation (e.g., /epic_v2 450 auto-merge). Used by the run-phase.sh wrapper for hands-off execution.
Auto-Merge Mode
If the user's prompt contains the word auto-merge:
- Step 5 (Merge) proceeds immediately after review passes — no user confirmation
- If review returns
REQUEST_CHANGES after the fix cycle, stop and report (do not force-merge)
- All other steps remain identical
Without auto-merge in the prompt, behavior is identical to /epic — asks user before merging.
Task Tracking
Create high-level tasks for visibility:
- "Scout Epic {N}" — while scout researches and writes brief
- "Implement Epic {N}" — while builder codes
- "Review PR #{num}" — while reviewer checks
- "Merge Epic {N}" — after review passes (or user approves)
Step 0 — Validate (Orchestrator, Lightweight)
- Extract the epic number from the user's input.
- Detect input type:
- Digits only (e.g.,
450) → full epic mode — will implement all slices in one PR
- Digits + letter (e.g.,
450A) → single slice mode — implements only that slice
- Read
TASKS.md (overview-only) to identify the phase and linked task file.
- Read ONLY the Epic overview, Dependency Graph and Implementation order of the phase task file to get the Epic Overview table.
- If the epic is marked Done, stop and inform the user.
- For full epic mode: Read the Slices table under the epic heading to identify ALL slices (e.g., 450A, 450B). Check which are already Done — skip those. If ALL slices are Done, stop. Collect task IDs from ALL remaining slices.
- Extract: scope (Frontend/Backend/Both), dependencies (verify Done), task IDs (across all remaining slices if full epic).
- Check for existing work:
git branch -a | grep "epic-{N}" ; gh pr list --state all --search "Epic {N}" | head -5
If work exists (open PRs, merged slice PRs covering remaining work), inform the user and ask how to proceed.
Step 1 — Create Worktree (Orchestrator)
cd /Users/rakheendama/Projects/2026/b2b-strawman
git worktree add ../worktree-epic-<ID> -b epic-<ID>/<descriptive-name>
Where <ID> is the epic number (full epic mode) or slice ID (single slice mode).
Create this BEFORE dispatching agents so the scout can write the brief into it.
Step 2 — Dispatch Scout Agent
Launch a blocking general-purpose subagent. The scout explores the main repo and writes a brief file into the worktree.
Scout Prompt Template
You are a **codebase scout** preparing an implementation brief for Epic {ID}.
({ID} is the epic number in full-epic mode, or slice ID in single-slice mode.)
Your job: explore the codebase thoroughly and write a SELF-CONTAINED brief to:
/Users/rakheendama/Projects/2026/worktree-epic-{ID}/.epic-brief.md
The brief must give an implementer EVERYTHING they need to build this epic correctly
WITHOUT reading any other files. Include actual code — not summaries.
## Research Steps (in this order)
### 1. Task Specifications
Read `{TASK_FILE}` — extract FULL task descriptions and acceptance criteria for tasks {TASK_IDS}.
Include exact field names, SQL schemas, API endpoints, and test scenarios from the spec.
### 2. Conventions & Anti-Patterns
Read `backend/CLAUDE.md` and/or `frontend/CLAUDE.md` (scope: {SCOPE}).
Extract ALL conventions and the COMPLETE anti-patterns section verbatim. These prevent
debugging spirals — missing even one can cost hours.
### 3. Architecture Context
Search ARCHITECTURE.md for sections relevant to this epic (grep for keywords, don't read
the full 2400-line file). Extract relevant ADRs (check `adr/` directory too).
Include only what directly impacts this epic's implementation decisions.
### 4. Reference Patterns (CRITICAL)
Find the most similar RECENTLY IMPLEMENTED feature and extract ONE complete example of each:
**Backend** (if in scope):
- Entity (with @FilterDef, @Filter, tenant awareness, constructors)
- Repository interface (with custom JPQL queries like findOneById)
- Service class (with @Transactional, ScopedValue access, validation)
- Controller (with @PreAuthorize, DTO records, response patterns)
- Integration test (with FULL @BeforeAll setup: provisionTenant, planSyncService, MockMvc config)
- Flyway migration SQL (naming convention, tenant_id columns, indexes)
**Frontend** (if in scope):
- Server component (data fetching, permission checks)
- Client component ("use client", form handling, Shadcn UI)
- Server action (revalidation, error handling)
- Test file (with afterEach cleanup, mock patterns, render helpers)
Prefer the MOST RECENTLY modified examples (check git log if needed).
Include the FULL source code of each pattern — not excerpts or summaries.
Prefix each with its file path so the implementer knows the naming convention.
### 5. Integration Points
Identify existing services, entities, repositories, and API endpoints the new code must
interact with. Include their key method signatures and class locations.
### 6. File Structure
Determine exact file paths for all new files, following existing package/directory conventions.
Check where similar files live and mirror that structure.
## Brief Format
Write the brief to `/Users/rakheendama/Projects/2026/worktree-epic-{ID}/.epic-brief.md`
using this exact structure:
---
# Implementation Brief: Epic {ID} — {TITLE}
## Scope
{Backend | Frontend | Both}
## Tasks
{Numbered list with FULL descriptions and acceptance criteria from the task file}
## File Plan
### Create
{Exact paths with one-line purpose}
### Modify
{Exact paths with what to change}
## Reference Patterns
### {Pattern Type} (from {source file path})
```{lang}
{FULL source code — not excerpts}
{Repeat for each pattern type}
Conventions
{ALL relevant rules from CLAUDE.md — include anti-patterns VERBATIM}
Integration Points
{Classes and method signatures the new code calls or extends}
Migration Notes
{Schema, table structure, naming convention — if applicable}
Build & Verify
{Exact commands — see below}
Environment
- Postgres host: b2mash.local:5432
- LocalStack host: b2mash.local:4566
- pnpm: /opt/homebrew/bin/pnpm
- NODE_OPTIONS="" needed before pnpm commands
- SHELL=/bin/bash prefix for docker build
- Maven wrapper: ./mvnw from backend dir
Build Commands (include these exactly in the brief)
Backend — Tiered Build Strategy (minimizes build time AND context usage)
All commands run from: cd /Users/rakheendama/Projects/2026/worktree-epic-{ID}/backend
The strategy has 3 tiers. Use the CHEAPEST tier that answers your current question:
- Tier 1 (Compile): ~30s — "Does it compile?" Use while iterating on code.
- Tier 2 (Targeted Tests): ~2-3min — "Do MY new/changed tests pass?" Use after code is written.
- Tier 3 (Full Verify): ~10-15min — "Does everything pass?" Use ONCE before commit/PR.
Step 0: Kill zombie processes (prevents connection pool exhaustion)
pgrep -f 'surefire.*worktree-epic' | xargs kill 2>/dev/null || true; sleep 2
Step 1: Format
./mvnw spotless:apply 2>&1 | tail -3
Step 2: Tier 1 — Compile check (run after writing code, before tests)
./mvnw compile test-compile -q > /tmp/mvn-epic-{ID}.log 2>&1; if [ $? -eq 0 ]; then echo "COMPILE OK"; else echo "COMPILE FAILED"; grep -E '[ERROR]' /tmp/mvn-epic-{ID}.log | head -20; fi
Fix any compilation errors. Repeat Tier 1 until clean. This is fast — use it freely.
Step 3: Tier 2 — Targeted tests (run only YOUR new/modified test classes)
./mvnw test -Dtest="{NEW_TEST_CLASSES}" -q > /tmp/mvn-epic-{ID}.log 2>&1; MVN_EXIT=$?; if [ $MVN_EXIT -eq 0 ]; then echo "TARGETED TESTS PASSED"; grep 'Tests run:' /tmp/mvn-epic-{ID}.log | tail -1; else echo "TARGETED TESTS FAILED"; FAILED=$(grep -rl 'failures="[1-9]|errors="[1-9]' target/surefire-reports/TEST-.xml 2>/dev/null | sed 's|./TEST-||;s|.xml||' | paste -sd,); echo "FAILED: $FAILED"; fi
Replace {NEW_TEST_CLASSES} with the comma-separated test class names from this epic
(e.g., "ChecklistTemplateServiceTest,ChecklistTemplateControllerTest").
If tests also need integration test runner: add -Dit.test="{NEW_TEST_CLASSES}" and use verify instead of test.
If targeted tests fail, get full stack traces (with full logging to see what went wrong):
./mvnw test -Dtest="{FAILED_CLASSES}" 2>&1 | tail -80
Fix and repeat Tier 2 until your tests pass. Do NOT jump to Tier 3 with failing targeted tests.
Step 4: Tier 3 — Full verify (run ONCE before commit, confirms no regressions)
./mvnw clean verify -q > /tmp/mvn-epic-{ID}.log 2>&1; MVN_EXIT=$?; if [ $MVN_EXIT -eq 0 ]; then echo "FULL BUILD SUCCESS"; grep 'Tests run:' /tmp/mvn-epic-{ID}.log | tail -1; else echo "FULL BUILD FAILED (exit $MVN_EXIT)"; FAILED=$(grep -rl 'failures="[1-9]|errors="[1-9]' target/surefire-reports/TEST-.xml target/failsafe-reports/TEST-.xml 2>/dev/null | sed 's|.*/TEST-||;s|.xml||' | paste -sd,); if [ -n "$FAILED" ]; then echo "FAILED TESTS: $FAILED"; else grep -E '[ERROR]' /tmp/mvn-epic-{ID}.log | head -20; fi; fi
If Tier 3 fails on tests that are NOT yours: fix the regression (you likely broke an import or
changed a shared method signature). Re-run ONLY the failed tests with full logging:
./mvnw verify -Dit.test="{FAILED_CLASSES}" -Dtest="{FAILED_CLASSES}" 2>&1 | tail -80
Then re-run Tier 3 to confirm green.
IMPORTANT: NEVER run ./mvnw clean verify without -q — full output burns 30-60KB of context per run.
If you need to debug a compilation error, read the log file with grep:
grep -n 'ERROR|cannot find symbol|Caused by' /tmp/mvn-epic-{ID}.log | head -30
IMPORTANT: Do NOT skip tiers. Always go 1→2→3. Do NOT run Tier 3 repeatedly to iterate on
failures — drop back to Tier 1 or 2, fix, then re-run Tier 3 once.
Frontend
All commands run from: cd /Users/rakheendama/Projects/2026/worktree-epic-{ID}/frontend
NODE_OPTIONS="" /opt/homebrew/bin/pnpm install > /dev/null 2>&1
NODE_OPTIONS="" /opt/homebrew/bin/pnpm run lint > /tmp/lint-epic-{ID}.log 2>&1; LINT_EXIT=$?; if [ $LINT_EXIT -ne 0 ]; then echo "LINT FAILED"; tail -20 /tmp/lint-epic-{ID}.log; fi
NODE_OPTIONS="" /opt/homebrew/bin/pnpm run build > /tmp/build-epic-{ID}.log 2>&1; BUILD_EXIT=$?; if [ $BUILD_EXIT -ne 0 ]; then echo "BUILD FAILED"; tail -30 /tmp/build-epic-{ID}.log; fi
NODE_OPTIONS="" /opt/homebrew/bin/pnpm test > /tmp/test-epic-{ID}.log 2>&1; TEST_EXIT=$?; if [ $TEST_EXIT -ne 0 ]; then echo "TESTS FAILED"; tail -30 /tmp/test-epic-{ID}.log; else echo "ALL TESTS PASSED"; tail -3 /tmp/test-epic-{ID}.log; fi
IMPORTANT: Include FULL code for reference patterns. The implementer's ONLY reference
material is this brief. Be generous with code, strict with structure.
When finished, confirm: "Brief written to {path}" and list the section sizes (line counts).
## Step 3 — Dispatch Builder Agent
Verify the brief file exists, then launch a **blocking** `general-purpose` subagent with `model: "opus"`:
### Builder Prompt Template
You are implementing Epic {ID} in the worktree at:
/Users/rakheendama/Projects/2026/worktree-epic-{ID}
First Step — Read Your Brief
Read: /Users/rakheendama/Projects/2026/worktree-epic-{ID}/.epic-brief.md
This file contains EVERYTHING you need: tasks, file plan, code patterns, conventions,
build commands, and integration points. Do NOT read ARCHITECTURE.md, TASKS.md, or
CLAUDE.md files — the brief already contains the relevant extracts.
Workflow
1. Implement
- Follow the File Plan from the brief exactly
- Adapt Reference Patterns to the new feature (don't copy-paste variable names blindly)
- Respect ALL Conventions and Anti-Patterns from the brief
- Implement ONLY the tasks in the brief — nothing more
- If the brief mentions files to modify, read those specific files before editing
2. Build & Verify (Tiered — read the brief carefully)
Follow the tiered build strategy from the brief's "Build & Verify" section:
- Tier 1 (compile): Run after writing code. Fast (~30s). Iterate here for compile errors.
- Tier 2 (targeted tests): Run only YOUR new test classes. (~2-3min). Iterate here for test failures.
- Tier 3 (full verify): Run ONCE before commit. (~10-15min). Confirms no regressions.
Always go 1→2→3. Never jump straight to Tier 3. Never run Tier 3 repeatedly to iterate.
Build output is redirected to log files — only summaries enter your context.
If the build fails:
- Kill zombie surefire processes first: pgrep -f 'surefire.*worktree-epic' | xargs kill 2>/dev/null || true; sleep 2
- Read the relevant log file to understand the error
- Fix the root cause (not symptoms)
- Drop back to Tier 1 or 2, fix, then re-attempt Tier 3. Max 3 Tier-3 attempts.
- If still failing after 3 Tier-3 attempts, stop and report what's failing and your hypotheses. Do NOT keep retrying — zombie processes accumulate and cause connection pool exhaustion.
When reading log files for errors, use targeted reads:
grep -n "ERROR|FAILURE|Caused by" /tmp/mvn-epic-{ID}.log | tail -20
NOT: cat /tmp/mvn-epic-{ID}.log (this defeats the purpose of output redirection)
3. Commit & Push
- Stage only files you changed:
git add <specific files>
- Commit:
git commit -m "feat(epic-{ID}): {DESCRIPTION}"
- Push:
git push -u origin epic-{ID}/{BRANCH_NAME}
4. Create PR
gh pr create --title "Epic {ID}: {TITLE}" --body "$(cat <<'EOF'
Summary
{What this epic implements — from the brief's Tasks section}
Changes
{Bulleted list of key files/components added or modified}
Tasks Completed
{Checklist of task IDs from the brief}
Test plan
{Build commands and manual verification steps}
🤖 Generated with Claude Code
EOF
)"
5. Report Back
When done, report:
- PR number and URL
- Files created/modified count
- Test results summary
- Any deviations from the brief or issues encountered
Do NOT stop to ask questions. Use the brief to resolve ambiguity.
If the brief is genuinely missing critical info, note it in the PR description
and make your best judgment call.
## Step 4 — Combined Code Review (Superpowers reviews are the gate; CodeRabbit is collected)
The merge gate depends on TWO things: (a) the two `superpowers:code-reviewer` subagent reviews
dispatched below, AND (b) a real CodeRabbit review collected and addressed. Both must be reflected
in the PR body audit trail (Step 4.5) before merge — the merge-gate hook enforces this.
CodeRabbit typically arrives within 5–10 minutes of PR creation. The collection strategy is:
**start polling in background immediately after PR creation**, then collect results after the
superpowers reviews and fixer cycles complete. This gives CodeRabbit 10–40+ minutes of wall-clock
time (the superpowers reviews + fix cycles take significant time). If CodeRabbit still hasn't
arrived after all fix cycles complete, do ONE final 5-min bounded wait before marking DEFERRED.
### 4.1 — Dispatch two superpowers reviews in parallel (BLOCKING)
Extract the PR number from the builder's response. Write the diff to a file:
```bash
gh pr diff {PR_NUMBER} > /tmp/pr-{PR_NUMBER}.diff
In a SINGLE message, dispatch BOTH of the following Agent calls in parallel.
Use subagent_type: "superpowers:code-reviewer" for both.
Do NOT use run_in_background — both reviews must complete before the merge step proceeds.
Agent A — Bug, security, and quality lens:
You are the BUG / QUALITY reviewer for PR #{PR_NUMBER} on the multi-tenant B2B SaaS platform.
## Setup
1. Read the diff: /tmp/pr-{PR_NUMBER}.diff
2. Read the brief: /Users/rakheendama/Projects/2026/worktree-epic-{ID}/.epic-brief.md
3. Read conventions: backend/CLAUDE.md and/or frontend/CLAUDE.md based on scope.
## What to check
### Critical (blocks merge)
- **Tenant isolation**: Missing @FilterDef/@Filter on new entities, using findById() instead
of findOneById() (bypasses @Filter), missing tenant_id, missing RLS for shared-schema
- **Security**: Missing @PreAuthorize, SQL injection (never string concat in native queries,
use set_config for session vars), exposed internal endpoints, missing access control
- **Data corruption**: Missing @Transactional, race conditions, incorrect cascade types
### High (should fix)
- **Convention violations**: Anti-patterns from CLAUDE.md — ThreadLocal instead of ScopedValue,
OSIV issues, wrong exception patterns, missing bean validation
- **Test gaps**: New endpoints without tests, integration tests missing tenant isolation
assertions, tests without provisionTenant/planSyncService setup
- **Frontend/backend parity**: Permission logic doesn't match across layers
### Medium
- Dead code, duplicated logic, missing error handling at system boundaries
## Output format
Return structured findings:
# Review: PR #{PR_NUMBER} (Bug/Quality)
## Verdict: {APPROVE | REQUEST_CHANGES}
## Critical
- **[file:line]** Issue → Fix: suggestion
## High
{same}
## Medium
{same}
## Summary
- Issues: N critical, N high, N medium
- {1-2 sentence assessment}
Only report issues you're >80% confident about. Include file:line for every finding.
Agent B — Architecture and design lens:
You are the ARCHITECTURE reviewer for PR #{PR_NUMBER} on the multi-tenant B2B SaaS platform.
## Setup
1. Read the diff: /tmp/pr-{PR_NUMBER}.diff
2. Read the brief: /Users/rakheendama/Projects/2026/worktree-epic-{ID}/.epic-brief.md
3. Read conventions: backend/CLAUDE.md and/or frontend/CLAUDE.md based on scope.
4. Skim relevant ADRs in architecture/ if the change touches a documented boundary.
## What to check
### Critical (blocks merge)
- **Layering violations**: Controller calling repository directly, service leaking JPA entities
to controller, cross-package reach-throughs that bypass an existing service interface
- **Boundary breakage**: Multitenancy/audit/security boundary violated (e.g., new code paths
that side-step `RequestScopes.runForTenant`, audit events emitted without resolver, security
filters bypassed)
- **ADR contradictions**: Change directly contradicts an existing ADR in architecture/
without an ADR amendment
### High (should fix)
- **Premature abstraction**: New interface with single implementation and no extension seam
in the brief; over-parameterized config; speculative generics
- **Under-abstraction**: Three+ near-identical copies of the same logic introduced in this PR
- **Convention drift**: New code introduces a pattern that conflicts with an established one
in the same package (e.g., new enum style when neighbouring files use a different one)
- **Missing extension seams** explicitly required by the brief
### Medium
- Cohesion / responsibility issues (god class, anaemic service)
- Naming that obscures intent
- Tests that bind to internals rather than behaviour
## Output format
Return structured findings:
# Review: PR #{PR_NUMBER} (Architecture)
## Verdict: {APPROVE | REQUEST_CHANGES}
## Critical
- **[file:line]** Issue → Fix: suggestion
## High
{same}
## Medium
{same}
## Summary
- Issues: N critical, N high, N medium
- {1-2 sentence assessment}
Only report issues you're >80% confident about. Include file:line for every finding.
4.2 — Collect CodeRabbit review (overlaps with superpowers review time)
CodeRabbit runs asynchronously after PR creation. The strategy is to let it run in parallel with
the superpowers reviews and fix cycles, then collect its findings before the final merge decision.
Step 4.2a — Immediately after dispatching superpowers reviews (Step 4.1), start a background
CodeRabbit poll using Bash run_in_background. This runs concurrently with the superpowers
reviews and any fix cycles, giving CodeRabbit the full duration of Steps 4.1–4.4 to complete
(typically 10–40+ minutes of wall-clock time):
PR_NUMBER={PR_NUMBER}
OWNER_REPO="rakheen-dama/b2b-strawman"
CR_STATE="missing"
for i in $(seq 1 20); do
REVIEWS=$(gh api repos/$OWNER_REPO/pulls/$PR_NUMBER/reviews --jq '[.[] | select(.user.login == "coderabbitai[bot]")] | length' 2>/dev/null || echo 0)
INLINE=$(gh api repos/$OWNER_REPO/pulls/$PR_NUMBER/comments --jq '[.[] | select(.user.login == "coderabbitai[bot]")] | length' 2>/dev/null || echo 0)
if [ "${REVIEWS:-0}" -gt 0 ] || [ "${INLINE:-0}" -gt 0 ]; then
CR_STATE="present"
break
fi
sleep 30
done
echo "CR_STATE=$CR_STATE after $i iterations"
Step 4.2b — After all superpowers fix cycles complete (end of Step 4.4), collect CodeRabbit
findings. By this point the background poll has likely completed. Read its output. If
CR_STATE=present, collect the findings:
PR_NUMBER={PR_NUMBER}
OWNER_REPO="rakheen-dama/b2b-strawman"
gh api repos/$OWNER_REPO/pulls/$PR_NUMBER/comments \
--jq '.[] | select(.user.login == "coderabbitai[bot]") | "[\(.path):\(.line // .original_line)] \(.body)"' \
> /tmp/cr-inline-$PR_NUMBER.txt 2>/dev/null || true
gh api repos/$OWNER_REPO/pulls/$PR_NUMBER/reviews \
--jq '.[] | select(.user.login == "coderabbitai[bot]") | .body' \
> /tmp/cr-reviews-$PR_NUMBER.txt 2>/dev/null || true
gh api repos/$OWNER_REPO/issues/$PR_NUMBER/comments \
--jq '.[] | select(.user.login == "coderabbitai[bot]") | .body' \
> /tmp/cr-summary-$PR_NUMBER.txt 2>/dev/null || true
If the background poll finished with CR_STATE=missing (CodeRabbit didn't arrive in 10 min),
do ONE more check right now — CodeRabbit may have arrived during the fix cycles that ran after
the poll ended:
REVIEWS=$(gh api repos/$OWNER_REPO/pulls/$PR_NUMBER/reviews --jq '[.[] | select(.user.login == "coderabbitai[bot]")] | length' 2>/dev/null || echo 0)
INLINE=$(gh api repos/$OWNER_REPO/pulls/$PR_NUMBER/comments --jq '[.[] | select(.user.login == "coderabbitai[bot]")] | length' 2>/dev/null || echo 0)
if [ "${REVIEWS:-0}" -gt 0 ] || [ "${INLINE:-0}" -gt 0 ]; then
CR_STATE="present"
fi
If still missing after this final check, mark as DEFERRED. This should be rare — CodeRabbit
typically arrives well within the combined superpowers + fix cycle duration.
Read the three collection files. If any have actionable findings (not just the boilerplate "No
actionable comments were generated" or "Review failed"), dispatch a fixer agent (same pattern as
Step 4.3) to address them. This is a SEPARATE fix cycle from the superpowers fixes.
Record the outcome — this string MUST be pasted verbatim into the PR body in Step 4.5:
- If
CR_STATE=present and there are actionable findings → ## CodeRabbit: REVIEWED — N findings, addressed in fixer pass
- If
CR_STATE=present and no actionable findings → ## CodeRabbit: REVIEWED — no actionable findings
- If
CR_STATE=missing after all waits → ## CodeRabbit: DEFERRED — not arrived after full review cycle; superpowers reviews are the merge gate
4.3 — Merge findings & dispatch fixer
Combine the two superpowers reviews into a single deduplicated list. If the same file:line is
flagged by both, keep the more detailed wording.
If NO Critical or High findings exist from either superpowers review, skip the fixer and proceed
directly to Step 4.4.
If ANY Critical or High findings exist, dispatch a blocking general-purpose subagent to fix
them all in one pass:
You are fixing code review findings for PR #{PR_NUMBER} in worktree:
/Users/rakheendama/Projects/2026/worktree-epic-{ID}
## Superpowers Bug/Quality Findings (PRIMARY — address all Critical and High)
{Paste Agent A findings. If verdict was APPROVE with no findings, write "None".}
## Superpowers Architecture Findings (PRIMARY — address all Critical and High)
{Paste Agent B findings. If verdict was APPROVE with no findings, write "None".}
## Implementation Brief (for context)
Read: /Users/rakheendama/Projects/2026/worktree-epic-{ID}/.epic-brief.md
## Instructions
1. Read each finding carefully. Verify the issue exists in the current code before fixing.
2. For superpowers Critical/High findings: fix ALL of them. If a finding is a false positive,
explain WHY with evidence (file:line proof).
3. Medium findings: fix only if trivially fixable while you're already in the file. Don't expand scope.
5. After fixing, run the appropriate build tier to verify you didn't break anything:
- Format: cd /Users/rakheendama/Projects/2026/worktree-epic-{ID}/backend && ./mvnw spotless:apply 2>&1 | tail -3
- Compile check: ./mvnw compile test-compile -q > /tmp/mvn-fix-{ID}.log 2>&1; echo $?
- Full verify (once): ./mvnw clean verify -q > /tmp/mvn-fix-{ID}.log 2>&1; echo $?
6. Commit: git commit -m "fix: address review findings for Epic {ID}"
7. Push: git push
## Report Format
For EACH finding, report one of:
- ✅ FIXED — {what you changed}
- ⏭️ FALSE POSITIVE — {evidence why this is not a real issue}
- ⚠️ DEFERRED — {why this can't be fixed in this PR, e.g., requires architectural change}
4.4 — Re-review after fix (max 2 cycles)
After the fixer pushes, re-dispatch ONLY Agent A (bug/quality) on the new diff to confirm no
regressions. Do NOT re-dispatch Agent B unless Agent A flags an architectural regression.
If Agent A returns Critical or High findings on the second pass, run ONE more fix cycle (max 2
fix cycles total). If findings persist after 2 cycles, note them in the PR description and STOP
(in auto-merge mode, exit non-zero so the wrapper script knows this slice failed).
4.4b — Collect and address CodeRabbit findings
After all superpowers fix cycles are complete (Step 4.4), collect CodeRabbit findings per
Step 4.2b. If CodeRabbit has actionable findings, dispatch a fixer agent to address them
(same pattern as Step 4.3 but with CodeRabbit findings as PRIMARY input). This is a separate
commit from the superpowers fixes. Run full verify after fixing, commit, and push.
4.5 — Append review audit trail to PR body (REQUIRED before merge)
The merge-gate hook (.claude/hooks/pre-pr-merge-gate.sh) inspects the PR body for proof that
reviews actually ran. Without this step, merge will be rejected. Append a ## Code Review Audit Trail
section to the PR body containing:
- Agent A (bug/quality) final verdict block (after fix cycles) — must contain
## Verdict: APPROVE
OR a ## Verdict: REQUEST_CHANGES paired with an explicit "all Critical/High resolved" line.
- Agent B (architecture) final verdict block — same rule.
- The CodeRabbit status line from Step 4.2b (
## CodeRabbit: REVIEWED ... or ## CodeRabbit: DEFERRED ...).
cat > /tmp/pr-{PR_NUMBER}-audit.md <<'EOF'
---
{Paste Agent A's FINAL verdict block verbatim — including the `## Verdict: APPROVE` line and the findings sections.}
### Superpowers — Architecture (Agent B)
{Paste Agent B's FINAL verdict block verbatim.}
{The status line from Step 4.2b — one of:
}
{e.g., "1 fix cycle (Agent A flagged 2 High; addressed in commit abc123)" or "0 (clean approve on first pass)"}
EOF
gh pr view {PR_NUMBER} --json body --jq .body > /tmp/pr-{PR_NUMBER}-body.md
cat /tmp/pr-{PR_NUMBER}-audit.md >> /tmp/pr-{PR_NUMBER}-body.md
gh pr edit {PR_NUMBER} --body-file /tmp/pr-{PR_NUMBER}-body.md
The hook checks the PR body for ALL THREE markers before allowing merge:
- Two occurrences of
## Verdict: APPROVE (one per superpowers reviewer)
- One
## CodeRabbit: REVIEWED OR ## CodeRabbit: DEFERRED line
If any marker is missing or malformed, the merge will be denied with a clear reason. Fix the
audit trail and retry — do NOT bypass the hook.
Step 5 — Merge
Auto-Merge Mode (prompt contains "auto-merge")
Merge immediately if ALL of the following are true (after fix cycles):
- Both superpowers reviews (bug/quality AND architecture) returned APPROVE OR all their
Critical and High findings were fixed
- Build is green (final
./mvnw verify log shows exit 0)
- The PR's GitHub merge state is
MERGEABLE (gh pr view {n} --json mergeStateStatus)
- Step 4.5 audit trail has been written to the PR body — the merge-gate hook will reject
the merge otherwise. Verify with:
gh pr view {n} --json body --jq .body | grep -c "## Verdict: APPROVE"
must return 2 (or matching "all Critical/High resolved" line), and grep -E "## CodeRabbit: (REVIEWED|DEFERRED)" must match once.
CodeRabbit findings, if any, were addressed in Step 4.4b. CodeRabbit runs in background during
the full review cycle (typically 10–40+ min of wall-clock). DEFERRED is only used if CodeRabbit
genuinely never arrived after the entire superpowers + fix cycle duration.
If any Critical or High finding from EITHER superpowers review remains unresolved after 2 fix
cycles: STOP and report the unresolved issues. Do not merge. Exit with a clear error message
so the wrapper script knows this slice failed.
Manual Mode (no "auto-merge" in prompt)
Ask the user before merging. Do not auto-merge.
Merge Procedure (both modes)
gh pr merge {PR_NUMBER} --squash --delete-branch
cd /Users/rakheendama/Projects/2026/b2b-strawman
git worktree remove ../worktree-epic-<N> --force
git pull origin main
git fetch --prune
Then update task status — for EACH slice implemented in this PR (all slices in full-epic mode, one slice in single-slice mode), update ALL FOUR locations:
- Mark the slice Done in the Detail Section row (the row starting with
| **{SLICE_ID}** | under the epic's Tasks heading — add **Done** (PR #{PR_NUMBER}) in the last column). THIS IS THE MOST CRITICAL — the run-phase.sh script checks these rows to determine completion. If you skip this, the phase script will re-run the epic or crash.
- Mark the slice Done in the Implementation Order table row (the row with
| {order} | Epic {N} | {SLICE_ID} | — update the last column).
- Mark the epic Done in the Epic Overview table at the top of the task file (when all slices in the epic are done — which is always true in full-epic mode).
- Update the status column in
TASKS.md overview.
In full-epic mode, you must update ALL slices (e.g., both 450A and 450B) in a single pass. Do not mark only one slice.
- Commit and push from main repo
Guardrails
- Context hygiene: Orchestrator NEVER reads architecture/ARCHITECTURE.md, full task files, or subdirectory CLAUDE.md files
- Brief is the contract: Builder works from the brief only — if the brief is wrong, re-run the scout, don't have the builder explore
- Build output stays in files: All build/test output goes to
/tmp/ log files — only summaries enter agent context
- No over-implementation: Builder implements ONLY the brief's task list
- Verify before done: Green build required before PR creation
- No duplicate work: Check
git branch -a and gh pr list before starting
- Scope boundary: If uncertain (and not in auto-merge mode), STOP and ask the user
Recovery
If the builder fails:
- Check its output summary for error details
- If fixable: dispatch a new
general-purpose agent with the same brief path + the error context
- If the brief was insufficient: re-run the scout with additional guidance (e.g., "also extract the auth filter pattern")
- If worktree is broken:
cd /Users/rakheendama/Projects/2026/b2b-strawman
git worktree remove ../worktree-epic-<N> --force
git branch -D epic-<N>/<branch-name> 2>/dev/null
Then restart from Step 1.
