// Run an external, read-only verification pass for a CTOX task result by gathering mission, ticket, communication, runtime, and live-surface evidence directly from tools instead of relying on executor-provided context.
[HINT] Download the complete skill directory including SKILL.md and all related files
| name | external-review |
| description | Run an external, read-only verification pass for a CTOX task result by gathering mission, ticket, communication, runtime, and live-surface evidence directly from tools instead of relying on executor-provided context. |
| cluster | review |
Use this skill for a standalone review run.
Treat the review assignment as target metadata only. Gather everything else yourself.
Only CTOX runtime store, live surfaces, repo state, and direct read-only verification count as durable evidence. Standalone markdown artifacts or workspace notes do not count as knowledge unless their facts are also reflected in the CTOX runtime store or directly verified live.
Recent meeting outcomes are time-sensitive runtime evidence. For communication reviews and artifact reviews, inspect the latest relevant meeting summaries before verdict. Prefer same-thread meetings first, then recent cross-thread meeting summaries that mention the reviewed system, recipient, deliverable, project, or artifact. Treat the last 7 days as high-priority context, 30-day-old meetings as supporting context, and older meeting notes as stale unless reinforced by current runtime state.
Stay bounded. Use the review assignment, explicit artifact paths, CTOX CLI output, and directly relevant read-only evidence first. Do not reverse-engineer CTOX source code or spend the review budget exploring schemas unless a direct check fails and that exact fact is necessary for the verdict.
For internal non-owner artifact jobs with explicit required file paths, inspect those files first. PASS is allowed when the declared files exist and truthfully record current status, evidence, results, or the persisted next action. Do not fail only because broader mission state is still open or because a nonessential runtime table is hard to inspect.
The review run:
VERDICT: FAIL, begin SUMMARY: with NO-SEND:, state the wait condition, and put none under OPEN_ITEMS unless real work is missingruntime/ctox.sqlite3Use the local CTOX CLI first where it gives a structured answer.
ctox strategy show --conversation-id <conversation-id> --thread-key <thread-key>
ctox continuity-show runtime/ctox.sqlite3 <conversation-id> focus
ctox continuity-show runtime/ctox.sqlite3 <conversation-id> anchors
ctox continuity-show runtime/ctox.sqlite3 <conversation-id> narrative
sqlite3 runtime/ctox.sqlite3 "
SELECT conversation_id, mission, mission_status, blocker, done_gate AS finish_rule, next_slice AS next_step, is_open
FROM mission_states
WHERE conversation_id = <conversation-id>
ORDER BY last_synced_at DESC;
"
sqlite3 runtime/ctox.sqlite3 "
SELECT message_id, role, created_at, substr(content,1,400)
FROM messages
WHERE conversation_id = <conversation-id>
ORDER BY message_id DESC
LIMIT 12;
"
ctox queue list
ctox ticket self-work-list --limit 20
ctox ticket cases --limit 20
sqlite3 runtime/ctox.sqlite3 "
SELECT message_key, status, thread_key, preview, substr(body_text,1,500)
FROM communication_messages
WHERE channel = 'queue'
ORDER BY observed_at DESC
LIMIT 20;
"
sqlite3 runtime/ctox.sqlite3 "
SELECT channel, direction, sender_address, subject, substr(preview,1,220), created_at
FROM communication_messages
WHERE thread_key = '<thread-key>'
ORDER BY observed_at DESC
LIMIT 12;
"
If a suggested SQLite query fails because a column or table is absent, use PRAGMA table_info(<table>) once and adapt the query, or record the missing evidence as an open item. Do not keep probing unrelated schemas.
sqlite3 runtime/ctox.sqlite3 "
SELECT observed_at, thread_key, subject, substr(body_text,1,1200)
FROM communication_messages
WHERE channel = 'meeting'
AND (
body_text LIKE '%Meeting Summary%'
OR subject LIKE '%meeting%'
OR subject LIKE '%Meeting%'
)
ORDER BY observed_at DESC
LIMIT 12;
"
For same-thread review context, add AND thread_key = '<thread-key>' first. If same-thread results are empty, search recent meeting summaries globally and keep only entries that mention the artifact, reviewed system, recipient, project, or deliverable. Do not let an old meeting override a newer ticket, continuity, communication, or verification record.
curl -I <public-url>
curl -sS <public-url>
curl -i <critical-route>
Use a browser for owner-visible or public surfaces whenever possible.
ctox harness-mining conformance --window 2000 --fitness-threshold 0.95
ctox harness-mining multiperspective --limit 30
What to read for the verdict:
conformance.fitness_ok: if false, the harness is acting outside its
declared spec. This alone is sufficient to set MISSION_STATE: UNHEALTHY
even if the public surface looks fine. Quote the failing buckets in
EVIDENCE.conformance.trigger.failing_buckets[]: each row names an out-of-catalog
transition (e.g. ticket: queued → closed skipping verified). Treat
this as a FAILED_GATES entry — it is a Spec-vs-Reality drift the
reviewed task result has either caused or inherited.multiperspective.evidence_presence: per evidence-key presence ratio
across recent proofs. A review_audit_key presence ratio < 1.0 on any
protected entity type is a critical gate failure for owner-visible work.multiperspective.constraint_coverage[].acceptance_ratio: rejected →
accepted ratio per (entity_type, lane, from→to). Use this to spot review
bottlenecks — a transition with high rejected count and low acceptance
ratio is a procedural break, not a one-off bug.Every concrete finding the review run produces must be tagged with one of:
rewrite — pure body / subject / wording correction; the agent can fix it by editing the prior outbound body without changing any durable state. Examples:
rework — substantive change requiring durable state mutation, fresh research, or new structural artefacts. Examples:
If a finding could plausibly be either, default to rework.
The agent's machine-readable output for the verdict must include each finding with id, category (one of rewrite / rework), evidence, and corrective_action. The dispatcher uses these tags structurally — there is no string scraping in core.
Emit one entry per finding under the CATEGORIZED_FINDINGS: block as a single line of pipe-delimited key: value pairs in the order id | category | evidence | corrective_action. Use - none if the run produced no concrete findings.
Return FAIL when any of these are true:
When the reviewed task result claims a product with UI, database-backed workflow, or AI/agent automation, apply the stateful-product-from-scratch review contract. Return FAIL when any of these are true:
TransitionRun or equivalentDefault classification for these findings is rework, not rewrite.
Return FAIL when the reviewed task result touches an external system and any of these are true:
ticket_source_control row (a Kanban source) exists without an active source-skill-binding and without an open system-onboarding self-work item.ctox ticket knowledge-list --system "<s>" returns 0 entries.ticket_knowledge_loads and no new ticket_knowledge_entries.Reviewer checks for these conditions:
ctox ticket sources
ctox ticket source-skills
ctox ticket knowledge-list --system "<system>"
ctox ticket self-work-list --system "<system>" --state open
Normal review compaction is disabled.
If the review grows large enough that another review run should continue, stop and return:
VERDICT: PARTIALThe handoff must be sufficient for another reviewer to continue without the original run.
Return exactly:
VERDICT: PASS|FAIL|PARTIALMISSION_STATE: HEALTHY|UNHEALTHY|UNCLEARSUMMARY: ...FAILED_GATES:FINDINGS:CATEGORIZED_FINDINGS:OPEN_ITEMS:EVIDENCE:HANDOFF: