Run any Skill in Manus with one click

$pwd:

implementation-plan-review

Name: Implementation Plan Review
Author: blockscout

// Expert review of an implementation plan against a GitHub issue/enhancement description (provided as a local file or a GitHub issue URL) and the current repository codebase. Use when asked to critique a plan for correctness, completeness, codebase alignment, risks, and test/rollout readiness (do not implement).

Run Skill in Manus

$ git log --oneline --stat

stars:39

forks:19

updated:May 29, 2026 at 22:22

File Explorer

3 files

SKILL.md

readonly

name	implementation-plan-review
description	Expert review of an implementation plan against a GitHub issue/enhancement description (provided as a local file or a GitHub issue URL) and the current repository codebase. Use when asked to critique a plan for correctness, completeness, codebase alignment, risks, and test/rollout readiness (do not implement).

Implementation Plan Review (Expert)

Review an implementation plan for coverage, correctness, and fit with the current codebase. Do not implement.

Inputs

Implementation plan: a local file path.
Issue/requirements: either (a) a local file path, or (b) a GitHub issue number (run from the target repo so gh resolves it).

If the user provides a GitHub issue number, prefer fetching it into a local file using the bundled script (requires gh auth and network access; otherwise ask for a local issue description file):

bash .codex/skills/implementation-plan-review/scripts/fetch_github_issue.sh <issue-number> --out /tmp/issue.md

If the script reports that gh is not authenticated (exit code 3), ask the user to run:

gh auth login

Workflow

Read the two inputs in full:
- Plan file
- Issue description file (or the fetched /tmp/issue.md)
Apply versioning neutrality policy:
- Do not request a missing version bump (package version, server.json, manifests, etc.) unless a repo rule, user instruction, release plan, or issue text explicitly requires one.
- Do not suggest removing version bump steps merely because the issue does not mention versioning. Issues usually describe the problem, motivation, or code-level improvement; they are not expected to spell out release mechanics.
- If the plan already includes version bump steps, review them only for correctness and consistency with applicable repo rules: required files, matching version strings, valid version format, and no unrelated version/manifests changed.
- Raise a versioning finding only when the plan's versioning steps are internally inconsistent, contradict explicit requirements, or are objectively attached to the wrong files/surfaces.
Apply review-noise policy:
- Do not raise findings only because an implementation plan omits developer execution mechanics such as checking /.dockerenv, choosing host vs devcontainer command prefixes, or spelling out both command variants.
- Do not teach command invocation mechanics in recommendations.
- Review verification semantically: required test/lint/integration categories, targets, and coverage, not how a developer invokes commands in their environment.
- Still flag objectively wrong verification scope, such as requiring only a narrow test subset when repo rules require the full default suite.
Validate codebase reality (start targeted, expand as needed):
- Start by finding referenced modules/configs/env vars/tests with rg (fast and low-noise).
- Prefer opening the minimal set of files first to confirm patterns and naming, but broaden freely if you suspect hidden coupling or cross-cutting behavior (e.g., shared helpers, config loading, response models, pagination, truncation).
- If the plan touches MCP tools, REST API, docs, or tests, cross-check relevant .cursor/rules/*.mdc guidance.
- If it improves confidence, use any other repo investigation strategy (e.g., inspect docs like SPEC.md/API.md, check tests, use git blame, or run unit tests/lint locally).

Suggested commands (adapt as needed):

rg -n "name_in_plan|function_in_plan|ENV_VAR_IN_PLAN" -S .
rg -n "ToolResponse\\[|@mcp\\.tool\\(|log_tool_invocation" blockscout_mcp_server -S
rg -n "ServerConfig\\(|BaseSettings\\(|BLOCKSCOUT_" blockscout_mcp_server/config.py -S
rg -n "pytest\\.mark\\.integration|tests/integration|tests/tools" tests -S

Ground findings with scratchpads:
- Before finalizing §4 comments, create a scratchpad directory next to the implementation plan file:
  - General rule: <plan directory>/<plan filename without final extension>-scratchpads/
  - Example: .ai/impl_plans/issue-375.md → .ai/impl_plans/issue-375-scratchpads/
- For each actionable candidate finding, create one deterministic scratchpad file in final report order:
  - finding-01-short-slug.md
  - finding-02-short-slug.md
  - Continue numbering in the same order used in §4.
- Each scratchpad must include these sections:
  - Grounded context: exact code, docs, tests, configs, or rules inspected, with paths/functions/classes where relevant.
  - Variants: at least 2 meaningful solution options; use 3-4 for non-trivial findings.
  - Rubric: criteria for choosing between variants.
  - Evaluation: a score table or concise comparison of variants against the rubric.
  - Best recommendation: the concrete change to make to the implementation plan.
  - Plain-language rationale: why the chosen recommendation is best.
- Use the scratchpad result to rewrite the final §4 recommendation. If scratchpad investigation disproves or weakens a finding, remove it or downgrade it before final output.
- Findings that cannot be grounded in a scratchpad should normally be omitted. Keep them only when they are genuinely product/intent questions and mark them as Question.

Scratchpad discipline:

Scratchpads are working artifacts created by this review skill to make final recommendations grounded.
Do not create scratchpads for pure summary text, obvious nits, or questions that require user/product input rather than code investigation.
Do not use scratchpads to pad the report; use them only to make actionable recommendations more accurate.

Produce the review in the required format (next section).

Required output format

Produce a review with these sections:

1) Understanding

Issue summary
Acceptance criteria (bulleted)

2) Plan ↔ Requirements coverage

What is covered well
What is missing / ambiguous

3) Codebase alignment

Key files/modules you inspected (with paths)
Assumptions in the plan that match the codebase
Assumptions that don’t match (explain and suggest correction)

4) Review comments (actionable)

Provide comments as a list. Each comment must include:

Severity: Blocker | Major | Minor | Question | Nit
Location: plan section/step + (when relevant) repo file/function/class
Problem: what’s wrong / missing
Recommendation: concrete change to the plan
Rationale: why it matters (bug risk / security / perf / maintainability)
Scratchpad: path to the backing scratchpad file, when the comment is actionable and not a pure Question

Testing gaps rule:

List every specific missing/incorrect test as an actionable comment in §4.
In §6, provide a consolidated checklist that references those items without repeating full explanations.

5) Junior-dev readiness check

Missing task-specific prerequisites, step ordering, and verification coverage
Do not flag omitted environment-specific command invocation details
Where the plan needs more explicit detail

6) Test & rollout strategy

Consolidated test checklist (Unit / Integration / E2E / Negative & security / Performance & regression), referencing §4 test comments
Migration/rollback plan if applicable
Feature flags / safe rollout suggestions if applicable

Review focus checklist (use as prompts, not new requirements)

Coverage: every acceptance criterion mapped to plan steps.
Codebase alignment: paths, module structure, naming, existing helpers and patterns.
Edge cases & compatibility: pagination, timeouts, empty results, truncation limits, backward compatibility.
Security: input validation, SSRF/DNS rebinding boundaries, secrets handling, logging redaction, auth assumptions.
Performance/scale: API call counts, caching, pagination strategy, long-running tasks/progress updates.
Ops/observability: error handling, logs, metrics/telemetry/analytics implications, rollout/rollback.
Versioning: only comment if explicitly required by the issue description; otherwise assume omission is intentional.

related-skills.json

same repository

gh-safe.md

from "blockscout/mcp-server"

Use this skill whenever you are about to run any write `gh` CLI command — `gh pr edit`, `gh pr create`, `gh issue edit`, `gh issue create`, `gh pr comment`, `gh issue comment`, `gh pr close`, `gh pr merge`, `gh release create`, or similar. High-level `gh` commands sometimes fail with "missing required scopes" auth errors even though the underlying GitHub REST API works fine with the same token. This skill makes you automatically fall back to `gh api` instead of stopping to ask the user to re-authenticate. Always invoke before running any mutating `gh` command.

2026-05-2939

plan-export.md

from "blockscout/mcp-server"

Export a detailed phased implementation plan for a GitHub issue to a file, reading all applicable rules from .cursor/rules before planning

2026-05-2939

implement-plan.md

from "blockscout/mcp-server"

Use to implement a structured implementation plan (e.g. temp/impl_plans/issue-*.md) phase by phase. Trigger when the user asks to implement, execute, realize, or "do" an implementation-plan file. Orchestrates a phase-developer subagent and a plan-correspondence-verifier subagent for each phase, commits each verified phase, then walks the Final Checklist. Invoke explicitly — it makes commits and spawns many subagents.

2026-05-2939

consult-spec.md

from "blockscout/mcp-server"

TRIGGER CONDITIONS - invoke this skill when ANY of these apply: User-triggered (explicit request): - User mentions "specification", "SPEC", "SPEC.md", "spec requirements" - User asks to "verify with spec", "confirm with specification", "check requirements" - User requests "authoritative requirements" or "source of truth" Agent self-triggered (during reasoning): - Before implementing any feature or making code changes - When verifying technical requirements or constraints - When making architectural or design decisions - When you need unbiased guidance not influenced by current implementation - When encountering conflicting information and need ground truth PURPOSE: Consults SPEC.md through an isolated subagent that ONLY reads the specification, never implementation code. This ensures guidance is based on authoritative requirements, not potentially incorrect existing code.

2026-05-2839

describe-changes.md

from "blockscout/mcp-server"

Describe very high level changes required to implement discussed functionality (functionality, test, docs)

2026-05-2839

gh-issue-bug.md

from "blockscout/mcp-server"

Generate a structured bug report for GitHub issues based on conversation context about bugs, errors, or broken functionality

2026-05-2839

package.json

"author": "blockscout"

"repository": "blockscout/mcp-server"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

name	implementation-plan-review
description	Expert review of an implementation plan against a GitHub issue/enhancement description (provided as a local file or a GitHub issue URL) and the current repository codebase. Use when asked to critique a plan for correctness, completeness, codebase alignment, risks, and test/rollout readiness (do not implement).

Implementation Plan Review (Expert)

Review an implementation plan for coverage, correctness, and fit with the current codebase. Do not implement.

Inputs

Implementation plan: a local file path.
Issue/requirements: either (a) a local file path, or (b) a GitHub issue number (run from the target repo so gh resolves it).

If the user provides a GitHub issue number, prefer fetching it into a local file using the bundled script (requires gh auth and network access; otherwise ask for a local issue description file):

bash .codex/skills/implementation-plan-review/scripts/fetch_github_issue.sh <issue-number> --out /tmp/issue.md

If the script reports that gh is not authenticated (exit code 3), ask the user to run:

gh auth login

Workflow

Read the two inputs in full:
- Plan file
- Issue description file (or the fetched /tmp/issue.md)
Apply versioning neutrality policy:
- Do not request a missing version bump (package version, server.json, manifests, etc.) unless a repo rule, user instruction, release plan, or issue text explicitly requires one.
- Do not suggest removing version bump steps merely because the issue does not mention versioning. Issues usually describe the problem, motivation, or code-level improvement; they are not expected to spell out release mechanics.
- If the plan already includes version bump steps, review them only for correctness and consistency with applicable repo rules: required files, matching version strings, valid version format, and no unrelated version/manifests changed.
- Raise a versioning finding only when the plan's versioning steps are internally inconsistent, contradict explicit requirements, or are objectively attached to the wrong files/surfaces.
Apply review-noise policy:
- Do not raise findings only because an implementation plan omits developer execution mechanics such as checking /.dockerenv, choosing host vs devcontainer command prefixes, or spelling out both command variants.
- Do not teach command invocation mechanics in recommendations.
- Review verification semantically: required test/lint/integration categories, targets, and coverage, not how a developer invokes commands in their environment.
- Still flag objectively wrong verification scope, such as requiring only a narrow test subset when repo rules require the full default suite.
Validate codebase reality (start targeted, expand as needed):
- Start by finding referenced modules/configs/env vars/tests with rg (fast and low-noise).
- Prefer opening the minimal set of files first to confirm patterns and naming, but broaden freely if you suspect hidden coupling or cross-cutting behavior (e.g., shared helpers, config loading, response models, pagination, truncation).
- If the plan touches MCP tools, REST API, docs, or tests, cross-check relevant .cursor/rules/*.mdc guidance.
- If it improves confidence, use any other repo investigation strategy (e.g., inspect docs like SPEC.md/API.md, check tests, use git blame, or run unit tests/lint locally).

Suggested commands (adapt as needed):

rg -n "name_in_plan|function_in_plan|ENV_VAR_IN_PLAN" -S .
rg -n "ToolResponse\\[|@mcp\\.tool\\(|log_tool_invocation" blockscout_mcp_server -S
rg -n "ServerConfig\\(|BaseSettings\\(|BLOCKSCOUT_" blockscout_mcp_server/config.py -S
rg -n "pytest\\.mark\\.integration|tests/integration|tests/tools" tests -S

Ground findings with scratchpads:
- Before finalizing §4 comments, create a scratchpad directory next to the implementation plan file:
  - General rule: <plan directory>/<plan filename without final extension>-scratchpads/
  - Example: .ai/impl_plans/issue-375.md → .ai/impl_plans/issue-375-scratchpads/
- For each actionable candidate finding, create one deterministic scratchpad file in final report order:
  - finding-01-short-slug.md
  - finding-02-short-slug.md
  - Continue numbering in the same order used in §4.
- Each scratchpad must include these sections:
  - Grounded context: exact code, docs, tests, configs, or rules inspected, with paths/functions/classes where relevant.
  - Variants: at least 2 meaningful solution options; use 3-4 for non-trivial findings.
  - Rubric: criteria for choosing between variants.
  - Evaluation: a score table or concise comparison of variants against the rubric.
  - Best recommendation: the concrete change to make to the implementation plan.
  - Plain-language rationale: why the chosen recommendation is best.
- Use the scratchpad result to rewrite the final §4 recommendation. If scratchpad investigation disproves or weakens a finding, remove it or downgrade it before final output.
- Findings that cannot be grounded in a scratchpad should normally be omitted. Keep them only when they are genuinely product/intent questions and mark them as Question.

Scratchpad discipline:

Scratchpads are working artifacts created by this review skill to make final recommendations grounded.
Do not create scratchpads for pure summary text, obvious nits, or questions that require user/product input rather than code investigation.
Do not use scratchpads to pad the report; use them only to make actionable recommendations more accurate.

Produce the review in the required format (next section).

Required output format

Produce a review with these sections:

1) Understanding

Issue summary
Acceptance criteria (bulleted)

2) Plan ↔ Requirements coverage

What is covered well
What is missing / ambiguous

3) Codebase alignment

Key files/modules you inspected (with paths)
Assumptions in the plan that match the codebase
Assumptions that don’t match (explain and suggest correction)

4) Review comments (actionable)

Provide comments as a list. Each comment must include:

Severity: Blocker | Major | Minor | Question | Nit
Location: plan section/step + (when relevant) repo file/function/class
Problem: what’s wrong / missing
Recommendation: concrete change to the plan
Rationale: why it matters (bug risk / security / perf / maintainability)
Scratchpad: path to the backing scratchpad file, when the comment is actionable and not a pure Question

Testing gaps rule:

List every specific missing/incorrect test as an actionable comment in §4.
In §6, provide a consolidated checklist that references those items without repeating full explanations.

5) Junior-dev readiness check

Missing task-specific prerequisites, step ordering, and verification coverage
Do not flag omitted environment-specific command invocation details
Where the plan needs more explicit detail

6) Test & rollout strategy

Consolidated test checklist (Unit / Integration / E2E / Negative & security / Performance & regression), referencing §4 test comments
Migration/rollback plan if applicable
Feature flags / safe rollout suggestions if applicable

Review focus checklist (use as prompts, not new requirements)

Coverage: every acceptance criterion mapped to plan steps.
Codebase alignment: paths, module structure, naming, existing helpers and patterns.
Edge cases & compatibility: pagination, timeouts, empty results, truncation limits, backward compatibility.
Security: input validation, SSRF/DNS rebinding boundaries, secrets handling, logging redaction, auth assumptions.
Performance/scale: API call counts, caching, pagination strategy, long-running tasks/progress updates.
Ops/observability: error handling, logs, metrics/telemetry/analytics implications, rollout/rollback.
Versioning: only comment if explicitly required by the issue description; otherwise assume omission is intentional.

implementation-plan-review

Implementation Plan Review (Expert)

Inputs

Workflow

Required output format

1) Understanding

2) Plan ↔ Requirements coverage

3) Codebase alignment

4) Review comments (actionable)

5) Junior-dev readiness check

6) Test & rollout strategy

Review focus checklist (use as prompts, not new requirements)

More from this repository

More from this repository

Implementation Plan Review (Expert)

Inputs

Workflow

Required output format

1) Understanding

2) Plan ↔ Requirements coverage

3) Codebase alignment

4) Review comments (actionable)

5) Junior-dev readiness check

6) Test & rollout strategy

Review focus checklist (use as prompts, not new requirements)