| name | vp-audit |
| description | Audit state, docs drift, and stack best-practice compliance — works on any project |
| version | 0.3.2 |
## Invocation Banner
Output this banner as the first thing on every invocation — before questions, work, or any other output:
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
VIEPILOT ► VP-AUDIT v0.3.2 (fw 2.19.0)
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
## Version Update Check (ENH-072)
After displaying the greeting banner, run:
node "$HOME/.claude/viepilot/bin/vp-tools.cjs" check-update --silent
If exit code = 1 (update available — new version printed to stdout):
Display notice banner before any other output:
┌──────────────────────────────────────────────────────────────────┐
│ ✨ ViePilot {latest_version} available (installed: {current}) │
│ npm i -g viepilot && vp-tools install --target {adapter_id} │
└──────────────────────────────────────────────────────────────────┘
Replace {latest_version} with stdout from the command, {current} with the installed
version, {adapter_id} with the active adapter (claude-code / cursor / antigravity / codex / copilot).
If exit code = 0 or command unavailable: silent, continue.
Suppression rules:
--no-update-check flag on skill invocation → skip this step entirelyconfig.json → update.check: false → skip this step entirely- Show at most once per session (
update_check_done session guard)
</version_check>
<persona_context>
Persona Context Injection (ENH-073)
At skill start, run:
node "$HOME/.claude/viepilot/bin/vp-tools.cjs" persona auto-switch
node "$HOME/.claude/viepilot/bin/vp-tools.cjs" persona context
Inject the output as ## User Persona context before any task execution.
Silent if command unavailable or errors.
</persona_context>
## A. Skill Invocation
- Skill được gọi khi user mention `vp-audit`, `/vp-audit`, "audit", "kiểm tra", "check docs"
- Treat all user text after the skill mention as `{{VP_ARGS}}`
B. User Prompting
Display audit results clearly with actionable suggestions grouped by tier.
C. Tool Usage
Use Claude Code tools: Bash (shell), Read (file), Edit + Write (file write/patch),
Grep (search), Glob (file patterns), LS, WebSearch, WebFetch,
Agent (spawn subagent — multi-level nesting supported)
Interactive: AskUserQuestion (deferred — preload via ToolSearch before first call)
## A. Skill Invocation
Same trigger keywords as claude-code adapter.
C. Tool Usage
Use Cursor tools: run_terminal_cmd (shell), read_file (read), edit_file (write/edit),
grep_search (search), web_search, codebase_search, list_dir, file_search
Interactive: text list fallback (AskQuestion available in Plan Mode only; Agent Mode = text)
Subagent: /multitask (user command, single-level only — not a callable tool)
MCP limit: 40 tools
## A. Skill Invocation
Same trigger keywords as claude-code adapter.
Skill discovery: LLM-driven (automatic, no slash command needed).
C. Tool Usage
Use Antigravity tools: shell (cmd), file_read, file_write, MCP plugins
Interactive: text fallback (TUI-based; no formal AskUserQuestion)
Skill path: .agents/skills/<skill>/SKILL.md (project) or ~/.gemini/antigravity/skills/ (global)
Note: Gemini CLI deprecated June 18, 2026 — use Antigravity CLI.
## A. Skill Invocation
Same trigger keywords as claude-code adapter.
C. Tool Usage
Use Codex tools: container.exec (sandboxed shell), apply_patch (file write), web_search
Interactive: text fallback (TUI Tab/Enter injection)
Config: ~/.codex/config.toml
## A. Skill Invocation
Same trigger keywords as claude-code adapter.
Discovery: User-driven (`@agent-name` in GitHub Copilot Chat).
C. Tool Usage
Use Copilot tools: runCommands (shell), read/readfile (read), edit/editFiles (write),
code_search, find_references
Interactive: askQuestions (main agent only — NOT available in subagents; VS Code issue #293745)
Skill path: .github/agents/<name>.agent.md
<scope_policy>
ViePilot Namespace Guard (BUG-004)
- Default mode: only use and reference
vp-* skills in ViePilot workflows.
- External skills (
non vp-*) are out of framework scope unless user explicitly opts in.
- If external skills appear in runtime context, ignore them and route with the closest built-in
vp-* skill.
</scope_policy>
<implementation_routing_guard>
Implementation routing guard (ENH-021)
- Report / gap — do not fix shipping by default; route
/vp-request → /vp-evolve → /vp-auto or user explicit. See workflows/request.md.
</implementation_routing_guard>
Audit ViePilot project state and documentation to detect drift.
Works on **any project** using ViePilot (Java, Node, Python, etc.).
Auto-detects if running inside the viepilot framework repo to enable framework-specific checks.
Brownfield Import Compatibility (FEAT-018):
When auditing a project bootstrapped via vp-crystallize --brownfield:
- If
docs/brainstorm/ exists and contains only session-brownfield-import.md (no session-*.md greenfield files):
- Valid brownfield import — do NOT flag as missing brainstorm session.
- Verify
session-brownfield-import.md contains a ## Scan Report section with a YAML block.
- If YAML block absent → flag LOW severity: "Brownfield stub missing Scan Report content."
- If
.viepilot/TRACKER.md contains ## Brownfield Import section → brownfield metadata confirmed; no further brainstorm check needed.
- If
docs/brainstorm/ is completely absent → flag MEDIUM severity: "No brainstorm session or brownfield stub found — run /vp-crystallize or /vp-crystallize --brownfield."
Tier 1 — ViePilot State Consistency (all projects):
.viepilot/TRACKER.md current state vs .viepilot/phases/*/PHASE-STATE.md.viepilot/ROADMAP.md phase status vs PHASE-STATE.md.viepilot/HANDOFF.json vs TRACKER.md (resume-state consistency)- Git tags
vp-p{N}-complete vs completed phases in PHASE-STATE.md
Tier 2 — Project Documentation Drift (all projects):
README.md version vs package.json / pom.xml / pyproject.tomlCHANGELOG.md vs recent git commits- Placeholder URLs in
docs/ (your-org, YOUR_USERNAME, etc.)
- New features (from recent phases) without documentation
ARCHITECTURE.md diagram applicability matrix consistency:
required diagrams must have Mermaid contentoptional diagrams may be omitted/merged with explicit noteN/A diagrams must have rationale line
- ENH-022 (recommended check): when a diagram type is
required (or optional with a real Mermaid block) and crystallize policy applies, verify .viepilot/architecture/<type>.mermaid exists and that Diagram source lines in ARCHITECTURE.md match; for N/A, sidecar file should be absent (no empty stubs)
Tier 3 — Stack Best Practices + Code Quality (all projects, for each detected stack):
- Detect relevant stacks from context/project manifests
- Match code patterns against stack-specific Do/Don't + anti-patterns
- Severity findings:
critical / high / medium / low with file/module mapping
- Fallback research using
WebSearch + WebFetch when stack cache is missing/weak
- Generate guardrails/checklist output for
vp-auto reuse during preflight
Tier 4 — Framework Integrity (only when viepilot framework repo is detected):
- Auto-detect:
skills/vp-*/SKILL.md present → this is the viepilot framework repo
ARCHITECTURE.md counts vs actual skills/, workflows/, CLIREADME.md viepilot-specific badges (version, skills-N, workflows-N)docs/skills-reference.md sections vs skills/ directory- Silent by default (ENH-049): Tier 4 output is suppressed when all checks pass (✅)
or when the check is skipped (non-framework repo). Output only appears when issues (⚠️)
are found. Non-framework repos: Tier 4 skipped silently with no message.
Output:
- Report by 4 tiers, each tier with its own status
- Auto-fix option per tier
- Suggestions for complex gaps
vp-auto-compatible guardrails contract per stack
<execution_context>
@$HOME/{envToolDir}/workflows/audit.md
</execution_context>
Optional flags:
- `--framework` : Force Tier 3 framework checks (even if not auto-detected)
- `--project` : Force project-only mode — skip Tier 3 framework checks
- `--fix` : Auto-fix all detected issues
- `--report` : Generate report file at `.viepilot/audit-report.md`
- `--silent` : Only output if issues found
- `--tier1` : Run Tier 1 (state consistency) only
- `--tier2` : Run Tier 2 (docs drift) only
- `--tier3` : Run Tier 3 (stack best-practice) only
- `--tier4` : Run Tier 4 (framework integrity) only
- `--no-autolog` : Skip auto-logging of gaps to `.viepilot/requests/`; report-only mode
- `--visual` : Run browser-based visual + functional audit of running dev server (ENH-091; requires agent-browser)
- `--browser ` : Specify base URL for browser audit (default: `http://localhost:3000`)
Auto-Log Behavior (ENH-070)
By default, vp-audit automatically logs each detected gap as a request file after the audit report is shown — no manual /vp-request step needed:
| Tier | Issue category | Request type | Priority |
|---|
| 1 | State inconsistency / HANDOFF drift / git tag missing | BUG | medium |
| 1 | Execute-first ordering risk | BUG | medium |
| 2 | Doc drift (README/CHANGELOG version) | BUG | low |
| 2 | Missing docs / placeholder URLs | ENH | low |
| 3 | Stack violation / correctness anti-pattern | BUG | high |
| 3 | Stack improvement / best-practice gap | ENH | medium |
| 4 | Framework integrity gap | ENH | high |
Duplicate detection: if a matching open request already exists (title ≥ 70% match or file overlap), the finding is appended to it as a "Re-detected" note rather than creating a duplicate file.
Post-audit banner: after auto-logging, shows all logged request IDs and recommends /vp-evolve {IDs} as the next action. AUQ prompt on Claude Code terminal.
Disable: use vp-audit --no-autolog for report-only mode (no .viepilot/requests/ files created).
Execute workflow from `@$HOME/{envToolDir}/workflows/audit.md`
Quick Summary
Step 0: Detect project type (viepilot framework vs user project)
Step 1 — Tier 1: ViePilot State Consistency
Claude Code — invoke file-scanner-agent for state file discovery:
Agent({ subagent_type: "file-scanner-agent",
description: "file-scanner-agent: scan state files for stale phase refs",
prompt: "patterns: [\".viepilot/phases/*/PHASE-STATE.md\"]. keywords: [\"in_progress\", \"planned\"]. context: Find phases with stale in_progress or planned status."
})
Non-Claude Code: run Glob/Grep inline.
Then cross-check results against:
Step 2 — Tier 2: Project Documentation Drift
Claude Code — invoke file-scanner-agent for docs drift scan:
Agent({ subagent_type: "file-scanner-agent",
description: "file-scanner-agent: scan docs for stale refs and placeholder URLs",
prompt: "patterns: [\"docs/**/*.md\", \"README.md\", \"CHANGELOG.md\"]. keywords: [\"your-org\", \"YOUR_USERNAME\", \"TODO\", \"placeholder\"]. context: Find stale placeholder refs and docs drift."
})
Non-Claude Code: run Glob/Grep inline.
Then check:
Step 3 — Tier 3: Stack Best Practices + Code Quality
Step 4 — Tier 4: Framework Integrity (conditional)
Step 5: Generate full report
Step 5B: Browser Audit (when --visual flag present, Claude Code adapter only)
When --visual is passed:
1. Resolve base URL: --browser <url> → config.json audit.baseUrl → http://localhost:3000
2. Dispatch browser-audit-agent:
Agent({ subagent_type: "browser-audit-agent",
description: "browser-audit-agent: audit running dev server",
prompt: `op: audit_routes. baseUrl: ${baseUrl}. projectRoot: ${projectRoot}` })
3. On success: call writeAuditReport(result, projectRoot) → lib/audit/browser-runner.cjs
4. Report path shown to user: .viepilot/audit/visual-report-{timestamp}.md
5. On agent-browser not installed: show prerequisite message, skip browser audit (non-blocking)
After audit_routes: optionally run accessibility_check on same routes:
Agent({ subagent_type: "browser-audit-agent",
prompt: `op: accessibility_check. baseUrl: ${baseUrl}. routes: ${JSON.stringify(routes)}. projectRoot: ${projectRoot}` })
Baseline management:
- --visual first run: saves screenshots to .viepilot/audit/baselines/{slug}.png
- Subsequent runs: compares current vs baseline (visual_check op)
- --update-baseline: forces baseline refresh (passes updateBaseline: true to agent)
Step 6: Auto-fix (if requested)
<auto_hook>
Integration with /vp-auto
After each phase complete, /vp-auto should:
- Run quick audit (--silent mode, Tier 1 + Tier 2 only)
- If issues found → warn user
- Offer to fix before continuing
Phase 2 complete!
⚠️ Audit found 2 issues:
Tier 1: ROADMAP.md phase 2 not marked ✅
Tier 2: README.md version not updated
Fix now? (y/n)
</auto_hook>
<success_criteria>
