Run the dispatcher:
node "<plugin-root>/scripts/cc.mjs" adversarial-review <jobId-or-prefix> [flags]
The dispatcher constructs the adversarial review prompt internally — do NOT
pass an empty prompt and do NOT append -- to the run line.
Forward only these flags when the user explicitly requests them:
--all, --json, --yes, --model, --effort, --permission-mode,
--bypass-permissions, --dangerously-skip-permissions,
--allow-dangerously-skip-permissions, --agent, --agents, --allowedTools, --allowed-tools,
--disallowedTools, --disallowed-tools, --tools, --settings,
--setting-sources, --strict-mcp-config, --append-system-prompt,
--system-prompt, --plugin-dir, --plugin-url, --bare, --safe-mode,
--ide, --chrome, --no-chrome, --disable-slash-commands,
--exclude-dynamic-system-prompt-sections, --verbose, --blocking,
--fail-on.
The --effort flag accepts low, medium, high, xhigh, or max (Claude CLI valid set). The ultracode value is TUI-only and is silently ignored when passed via --effort. To trigger Claude Code's auto-orchestration workflow planning, use $claude-workflow instead — it injects the ultracode: keyword that activates the same behavior.
Do NOT forward --allow-edit, --add-dir, --mcp-config, or --name —
they are not applicable to this subcommand. Do not inject --yes for
ordinary review jobs. Exception: if the user explicitly asks for trusted
unattended Claude work and you forward --bypass-permissions,
--dangerously-skip-permissions, or --permission-mode bypassPermissions,
include --yes in the same command so the review job stays inside the cc
status/result surface instead of falling back to native claude. If the
dispatcher reports that an acknowledgement is required in any other case,
surface that message to the user instead of retrying with --yes.
If the user explicitly asks for trusted unattended Claude work, or has already
approved that mode for the current task/session/project, forward
--bypass-permissions for fresh local shell/tool automation jobs. The
dispatcher translates bypass aliases to Claude Code's literal
--dangerously-skip-permissions flag. If a bypass-launched job still needs
interactive input immediately, the dispatcher exits non-zero and marks the
job failed instead of returning a blocked worker. This does not resolve
browser selection, passkeys, or other local user-gesture prompts.