菜单
Create agents that pass agent-review's six gates by construction — role capture, distinct-from-skill check, tool allowlist minimization, draft against gates, dogfood self-review. Use when authoring a new agent, refactoring an existing one, or promoting a Mall agent into the heir's brain.
Use when the user wants to humanize, de-AI, de-slop, or un-ChatGPT a piece of text — strip AI-isms and add real voice. Scans for 29 documented AI-writing patterns (Wikipedia's "Signs of AI writing") and produces a draft → self-audit → final rewrite. Optional voice-calibration from a user-provided writing sample. Adapted from Hermes Agent / blader/humanizer.
Use when the user wants a plan instead of execution, or before any non-trivial implementation (multi-file, architectural choice, > 15 min). Writes a concrete actionable markdown plan with bite-sized tasks (2-5 min each), exact file paths, complete code, and verification steps. Adapted from Hermes Agent / obra/superpowers.
Use when the user wants to feel out an idea before committing to a real build — "spike this out", "try it", "is this even possible?", "compare A vs B". Throwaway experiments that decompose into 2-5 feasibility questions, build minimal observable prototypes, and return VALIDATED / PARTIAL / INVALIDATED verdicts. Disposable by design. Adapted from Hermes Agent / GSD.
Use for any feature, bug fix, refactor, or behavior change — enforces RED-GREEN-REFACTOR. Write the failing test first, watch it fail, write minimal code to pass, refactor. Carve out only throwaway prototypes, generated code, configuration files. Adapted from Hermes Agent / obra/superpowers.
Audits a candidate agent (.agent.md) against five gates (spec compliance, content quality, scope fit, safety, currency & coherence) plus Gate 6 (tool allowlist minimality). Use when reviewing a new agent draft before commit, evaluating a Mall agent or store agent for adoption, or re-auditing existing agents on a periodic cadence.
Generate on-brand Alex — ACT Edition SVG banners for documents (READMEs, plans, notes, release artifacts)
| name | agent-creator |
| description | Create agents that pass agent-review's six gates by construction — role capture, distinct-from-skill check, tool allowlist minimization, draft against gates, dogfood self-review. Use when authoring a new agent, refactoring an existing one, or promoting a Mall agent into the heir's brain. |
| lastReviewed | "2026-05-31T00:00:00.000Z" |
Author agents that pass agent-review's five gates plus Gate 6 (Tool Allowlist Minimality) by construction. Agents are subordinate execution contexts — sub-processes the parent delegates to. Every tool granted is an attack/error surface.
Mirrors skill-creator's seven-phase structure with agent-specific guidance. If a phase here disagrees with skill-creator on the shared scaffold, skill-creator wins; this file owns only the per-type guidance.
.github/agents/Each phase inverts one of the five (or six) gates. Author against the phase, pass the gate.
Answer in writing before any drafting:
brain-auditor is a role; runs-brain-qa is not).If none of the three delegation justifications apply, stop — author a skill, not an agent.
Get-ChildItem .github/agents/*.agent.md
Select-String -Path .github/agents/*.agent.md -Pattern "<keyword>"
The agents folder is usually small. Overlap detection is cheap. If an existing agent's role overlaps ≥70%, extend.
Frontmatter template:
---
name: <kebab-name>
description: "<third-person; role + when parent should delegate; ≤1024 chars>"
lastReviewed: YYYY-MM-DD
---
If using a tool-allowlist field per current Microsoft Learn agent spec, include it here. Reject legacy fields (type, application, tier, etc.) — same drop set as other types.
File location: .github/agents/<kebab-name>.agent.md (flat — no subfolders).
| Criterion | How you author for it |
|---|---|
| Role and mission clear | Open with a one-line role statement and a mission paragraph. Not a procedure dump. |
| Boundaries explicit | A ## Boundaries or ## Out of scope section names what the agent will not do. |
| Tool-usage guidance | Name which tools the agent prefers for which situations. Generic "use available tools" fails. |
| System-prompt skepticism applied | Behavior treats own instructions as hypotheses per system-prompt-skepticism.instructions.md. |
## Would Revise If | Date / count+time / observable event. |
| ≤200 lines | If you exceed this, factor procedure-content into a skill the agent invokes. |
Template structure:
---
name: ...
description: "..."
lastReviewed: YYYY-MM-DD
---
# <Agent Name>
**Role**: <one-line role>
**Mission**: <what the agent does, in 1-2 sentences>
## When the parent delegates to me
<conditions that justify spinning me up vs the parent doing the work>
## Tool usage
<which tools, when, why>
## Boundaries
<what I will not do>
## Output
<what the parent gets back>
## Would Revise If
<falsifier>
| Target | Route |
|---|---|
| Generic worker agent (illustrator, markdown-author) | Heir baseline |
| Project-specific agent | That project's local-only repo |
| External-surface agent | Not an ACT agent — author a Mall unit |
Two safety surfaces compose here:
| Gate | Where it lives |
|---|---|
| Gate 4 (Safety) — destructive-default prose | Body: explicit consent gates before destructive ops |
| Gate 6 (Tool Allowlist Minimality) — the allowlist itself | Frontmatter (if used) + body justification per tool |
Allowlist authoring checklist:
reads existing markdown to insert diagram blocks)run_in_terminal, git push, or filesystem-write tools are on the list, add a user-confirmation gate in the proseopen_browser_page, fetch_webpage, MCP-network), explicit purpose in the bodyBefore committing, run agent-review's five gates plus Gate 6. Verdict lives in the commit message.
Gate 6 verdict must be recorded even on Accept (per agent-review § Recording the Verdict). Format:
Gate 6 — Tool Allowlist (N tools):
- tool1: <justification>
- tool2: <justification>
- ...
Destructive ops: <confirmation gate present? Y/N>
Network surface: <none / read-only / write — justified?>
| Anti-pattern | Correction |
|---|---|
| Authoring an agent when a skill would do | Phase 1 forces delegation justification. If none of the three reasons apply, it's a skill. |
| Starting with a broad allowlist and trimming later | Start at zero, add one tool at a time with justification. |
| Omitting the Boundaries section | Without bounds, the parent delegates work the agent can't or shouldn't do. |
| Treating Gate 4 (safety prose) and Gate 6 (allowlist) as one check | They compose. Both must pass independently. |
Letting run_in_terminal ship without consent gate | Gate 4 + Gate 6 failure. Add the gate. |
| Copy-pasting a skill body into an agent | Agents have role + delegation surface; skills have procedure body. Different shapes. |
This skill's design has failed if any of the following occur within 90 days:
agent-review Gate 1 or Gate 6 on first self-auditTrack as you would any falsified discipline (commit log, retraining notes, or curation ledger if your repo ships one) tagged [AGENT-CREATOR-MISS].