chore: bump version to 0.26.0 for epic e50b-e125 completion (merge worktree-20260324-145918)

Author: JoeOakhartNava

.test-index

@@ -162,6 +162,7 @@ After ExitPlanMode approval, do NOT begin implementation. Create a ticket epic (
 ## Multi-Agent Orchestration
 
 **Sub-agent boundaries**: See `plugins/dso/docs/SUB-AGENT-BOUNDARIES.md` for all sub-agent rules (prohibited/required/permitted actions, checkpoint protocol, report format, model selection, recovery).
+**Sub-agent guard pattern**: Skills that require the Agent tool or direct user interaction contain a `<SUB-AGENT-GUARD>` block at the top of their `SKILL.md`. When invoked in sub-agent context (via Task tool), the guard instructs the agent to stop immediately and return an error. Two guard variants exist: (1) **Agent tool check** — for skills that dispatch sub-agents (sprint, debug-everything, brainstorm, preplanning, implementation-plan, design-wireframe, design-review, roadmap, plan-review, review-protocol, resolve-conflicts, dev-onboarding, validate-work, retro, ui-discover); (2) **Orchestrator signal check** — for skills that require user interaction (end-session, project-setup, design-onboarding). Tests: `tests/hooks/test-sub-agent-guard.sh` (36 tests, 2 per skill).
 
 Orchestrator-level rules (apply to `/dso:sprint` and `/dso:debug-everything`, not sub-agents):
 - Max 5 concurrent sub-agents; commit+push between batches

CLAUDE.md

@@ -1,6 +1,6 @@
 {
   "name": "dso",
-  "version": "0.25.23",
+  "version": "0.26.0",
   "description": "Workflow infrastructure plugin for Claude Code projects",
   "commands": "./commands/",
   "skills": "./skills/",

plugins/dso/.claude-plugin/plugin.json

@@ -0,0 +1,201 @@
+# Review Protocol Workflow
+
+Standardized 3-stage review process producing schema-compliant JSON output.
+See `${CLAUDE_PLUGIN_ROOT}/docs/REVIEW-SCHEMA.md` for the output schema.
+
+## Parameters
+
+Callers configure the review by providing:
+
+| Parameter | Required | Description |
+|-----------|----------|-------------|
+| `subject` | Yes | What is being reviewed (used in schema output) |
+| `artifact` | Yes | The content to review (text, JSON, code, design spec) |
+| `perspectives` | Yes | Array of perspective definitions (see below) |
+| `pass_threshold` | No | Minimum dimension score to pass. Default: 4 |
+| `start_stage` | No | `1` (default), `2`, or `3`. Use `2` to skip mental pre-review when caller already self-validated |
+| `max_revision_cycles` | No | Default: 3 |
+| `caller_id` | No | If the caller has a registered schema (see `scripts/validate-review-output.sh --list-callers`), pass the caller ID here to enable per-caller validation of perspectives, dimensions, and reviewer-specific finding fields. Known IDs: `roadmap`, `design-wireframe`, `implementation-plan`, `retro`, `design-review`, `dev-onboarding`, `preplanning`. |
+
+### Perspective Definition
+
+Each perspective in the `perspectives` array:
+
+```
+{
+  "name": "Security",
+  "dimensions": {
+    "auth_coverage": "All endpoints require appropriate authentication",
+    "input_validation": "All user inputs are validated and sanitized"
+  },
+  "context": "Optional additional context for this perspective"
+}
+```
+
+- `name`: Short label (appears in output as `perspective`)
+- `dimensions`: Map of dimension names to descriptions of what "passing" looks like
+- `context`: Optional extra context the reviewer should consider
+
+For complex reviewers with separate prompt files (e.g., `/dso:design-wireframe`'s reviewer prompts), the caller reads the file and passes its content as `context`.
+
+---
+
+## Stage 1: Mental Pre-Review
+
+**Skip when**: `start_stage >= 2`. Use this when the calling skill has already performed its own self-validation (e.g., `/dso:design-wireframe` Phase 4 artifact consistency check).
+
+The calling agent reviews the artifact against each perspective's dimensions. For each dimension, ask: "Would this score below {pass_threshold}?"
+
+If obvious issues are found:
+1. Fix them directly in the artifact
+2. Note what was changed (for transparency in the review log)
+3. Proceed to Stage 2 with the revised artifact
+
+This is cheap (no sub-agent) and catches low-hanging issues before spending tokens on a sub-agent.
+
+---
+
+## Stage 2: Sub-Agent Structured Review
+
+Dispatch a **single sub-agent** with a structured multi-perspective rubric.
+
+### Sub-Agent Prompt Template
+
+```
+## Structured Multi-Perspective Review
+
+Review the following artifact from multiple perspectives. For each perspective,
+score every dimension 1-5 (or null if not applicable). For any score below
+{pass_threshold}, provide a finding with severity, description, and specific
+suggestion.
+
+### Artifact
+{artifact content}
+
+### Perspectives and Dimensions
+
+{For each perspective:}
+#### {perspective.name}
+{perspective.context if provided}
+
+Dimensions (score each 1-5, null if N/A):
+{For each dimension: "- {name}: {description of passing}"}
+
+### Conflict Detection
+
+After scoring all dimensions, scan your findings for contradictions:
+- Group findings by target (the component, file, or section they address)
+- Within each group, check if any two suggestions pull in opposite directions:
+  - add vs remove
+  - more detail vs less complexity
+  - stricter vs more flexible
+  - expand scope vs reduce scope
+- Only flag contradictions where both findings have severity "critical" or "major"
+- Minor-vs-anything is not a conflict (minor finding yields to the other)
+
+### Output Format
+
+Return valid JSON matching this structure:
+{REVIEW-SCHEMA.md schema}
+```
+
+#### Determine Review Model
+
+Check whether the artifact under review contains high-blast-radius content. For code reviews, use the pattern list in `REVIEW-WORKFLOW.md` Step 3. For non-code reviews (plans, designs), the caller specifies the model (e.g., `/dso:plan-review` uses opus for designs, sonnet for implementation plans).
+
+If **any** high-blast-radius pattern matches → `model="opus"`. Otherwise → `model="sonnet"`.
+
+Launch with:
+```
+subagent_type: "general-purpose"
+model: "{opus or sonnet per detection above}"
+```
+
+### Parse and Validate
+
+After the sub-agent returns:
+1. Save the JSON output to a temp file
+2. Run the schema validator (schema-hash: 3053fa9a43e12b79):
+   ```bash
+   REPO_ROOT=$(git rev-parse --show-toplevel)
+   source "${CLAUDE_PLUGIN_ROOT}/hooks/lib/deps.sh"
+   REVIEW_OUT="$(get_artifacts_dir)/review-protocol-output.json"
+   cat > "$REVIEW_OUT" <<'EOF'
+   <sub-agent JSON output>
+   EOF
+
+   # Base schema check (always)
+   ".claude/scripts/dso validate-review-output.sh" review-protocol "$REVIEW_OUT"
+
+   # Per-caller check (when caller_id is provided)
+   # ".claude/scripts/dso validate-review-output.sh" review-protocol "$REVIEW_OUT" --caller <caller_id>
+   ```
+3. If `SCHEMA_VALID: no` — retry the sub-agent once with an explicit format correction prompt; do not proceed with invalid output
+4. If `SCHEMA_VALID: yes` — proceed to Stage 3
+
+**When `caller_id` is provided**, pass `--caller <caller_id>` to the validator. This additionally checks that:
+- All expected perspectives are present (or marked `not_applicable`)
+- Each perspective's `dimensions` map contains the required dimension keys
+- Each finding contains the reviewer-specific fields required by that perspective (e.g., `wcag_criterion` for Accessibility, `owasp_category` for Security)
+- Enum-typed fields use valid values (e.g., `complexity_estimate` must be `"low"`, `"medium"`, or `"high"`)
+- Conditional fields are checked only when the finding's `dimension` matches (e.g., `stale_location` is only required for `freshness` findings)
+
+---
+
+## Stage 3: Conflict Escalation
+
+**Trigger**: `conflicts[]` array is non-empty after Stage 2.
+
+For each conflict:
+- If one finding is `critical` and the other is `minor` → resolve in favor of the critical finding, no escalation
+- If both are `critical` or `major` → **escalate to user** via AskUserQuestion, presenting both suggestions as options
+- If both are `minor` → caller chooses either direction without escalation
+
+**Multi-agent escalation** (optional, caller decides): If the caller prefers sub-agent resolution over user escalation, dispatch one sub-agent per conflicting perspective to debate the tradeoff. Each receives the other's finding and must propose a resolution that addresses both concerns. Use only when user escalation is impractical (e.g., batch processing).
+
+---
+
+## Revision Protocol
+
+When the review does not pass (any dimension below `pass_threshold`):
+
+1. **Triage by severity**: Address `critical` findings first, then `major`, then `minor`. Skip `minor` if they don't affect pass/fail.
+
+2. **Check conflicts first**: If `conflicts[]` is non-empty, resolve conflicts (Stage 3) before spending a revision cycle.
+
+3. **Revise**: For each finding being addressed, modify the specific artifact it targets. The calling skill documents what changed.
+
+4. **Re-submit**: Send the full revised artifact back through Stage 2. Do not send partial updates.
+
+5. **Cycle limit**: Maximum `max_revision_cycles` automated cycles (default 3). After exhausting cycles:
+   - Do NOT revise automatically
+   - Present the user with: current artifact state, all unresolved findings across all cycles, and specific questions about direction
+   - Apply user input, then run one final Stage 2 review
+
+6. **Cycle tracking**: The calling skill is responsible for tracking cycle count and logging review history in whatever format it uses (ticket notes, review-log.md, etc.).
+
+---
+
+## Quick Reference
+
+```
+Stage 1 (Mental)  → Caller self-reviews, fixes obvious issues
+                     Skip if start_stage=2
+Stage 2 (Single)  → One sub-agent, multi-perspective rubric
+                     Returns REVIEW-SCHEMA.md JSON
+Stage 3 (Conflict) → Triggered by non-empty conflicts[]
+                     Escalate critical+critical to user
+                     Minor yields to other finding
+Revision           → Triage by severity, resolve conflicts first
+                     Max 3 cycles, then escalate to user
+```
+
+## Common Mistakes
+
+| Mistake | Fix |
+|---------|-----|
+| Skipping Stage 1 without reason | Only skip if caller already self-validated. Set `start_stage: 2` explicitly. |
+| Speculative conflict detection | Don't guess whether a suggestion "might" worsen another dimension. Only flag direct contradictions in suggestions. |
+| Revising before resolving conflicts | Always resolve Stage 3 conflicts before spending a revision cycle. |
+| Ignoring N/A dimensions | `null` scores are valid. Don't treat them as failures. |
+| Retrying failed review parse indefinitely | One retry with format correction. After that, report the raw output to the caller. |

plugins/dso/docs/workflows/REVIEW-PROTOCOL-WORKFLOW.md

@@ -4,6 +4,14 @@ description: Use when starting a new feature or epic — turns an idea into a de
 user-invocable: true
 ---
 
+<SUB-AGENT-GUARD>
+This skill requires the Agent tool to dispatch sub-agents. Before proceeding, check whether the Agent tool is available in your current context. If you cannot use the Agent tool (e.g., because you are running as a sub-agent dispatched via the Task tool), STOP IMMEDIATELY and return this error to your caller:
+
+"ERROR: /dso:brainstorm cannot run in sub-agent context — it requires the Agent tool to dispatch its own sub-agents. Invoke this skill directly from the orchestrator instead."
+
+Do NOT proceed with any skill logic if the Agent tool is unavailable.
+</SUB-AGENT-GUARD>
+
 # Brainstorm: Feature to Epic
 
 Turn a feature idea into a high-fidelity ticket epic through Socratic dialogue, approach design, and spec validation.

plugins/dso/skills/brainstorm/SKILL.md

@@ -4,6 +4,14 @@ description: Diagnose and fix all outstanding bugs (validation failures AND open
 user-invocable: true
 ---
 
+<SUB-AGENT-GUARD>
+This skill requires the Agent tool to dispatch sub-agents. Before proceeding, check whether the Agent tool is available in your current context. If you cannot use the Agent tool (e.g., because you are running as a sub-agent dispatched via the Task tool), STOP IMMEDIATELY and return this error to your caller:
+
+"ERROR: /dso:debug-everything cannot run in sub-agent context — it requires the Agent tool to dispatch its own sub-agents. Invoke this skill directly from the orchestrator instead."
+
+Do NOT proceed with any skill logic if the Agent tool is unavailable.
+</SUB-AGENT-GUARD>
+
 # Debug Everything: Full Project Health Restoration
 
 You are a **Senior Software Engineer at Google** brought in to restore a project to full health. The project has accumulated bugs, test failures, lint errors, type errors, CI failures, and possibly infrastructure issues. **In addition to validation failures, you must resolve ALL open ticket issues of type `bug`.** Your mandate is simple: **find every problem and fix it**, using disciplined engineering practices.

plugins/dso/skills/debug-everything/SKILL.md

@@ -4,6 +4,14 @@ description: Use when starting a new project or feature that needs a design syst
 user-invocable: true
 ---
 
+<SUB-AGENT-GUARD>
+This skill requires direct user interaction (prompts, confirmations, interactive choices). If you are running as a sub-agent dispatched via the Task tool, STOP IMMEDIATELY and return this error to your caller:
+
+"ERROR: /dso:design-onboarding cannot run in sub-agent context — it requires direct user interaction. Invoke this skill directly from the main session instead."
+
+Do NOT proceed with any skill logic if you are running as a sub-agent.
+</SUB-AGENT-GUARD>
+
 # Design Onboarding: North Star Definition
 
 Role: **Senior Design Systems Lead** with deep expertise in Human-Centered Design (HCD), WCAG 2.1+ Accessibility, and Component-Driven Architecture.

plugins/dso/skills/design-onboarding/SKILL.md

@@ -4,6 +4,14 @@ description: Use when reviewing proposed designs (code, wireframes, screenshots)
 user-invocable: true
 ---
 
+<SUB-AGENT-GUARD>
+This skill requires the Agent tool to dispatch sub-agents. Before proceeding, check whether the Agent tool is available in your current context. If you cannot use the Agent tool (e.g., because you are running as a sub-agent dispatched via the Task tool), STOP IMMEDIATELY and return this error to your caller:
+
+"ERROR: /dso:design-review cannot run in sub-agent context — it requires the Agent tool to dispatch its own sub-agents. Invoke this skill directly from the orchestrator instead."
+
+Do NOT proceed with any skill logic if the Agent tool is unavailable.
+</SUB-AGENT-GUARD>
+
 # The Enforcer: Design System & HCD QA
 
 Role: **Strict Design QA Lead.** Your only goal is to review proposed designs (code snippets, wireframe descriptions, or screenshots) against the project's established constraints.

plugins/dso/skills/design-review/SKILL.md

@@ -10,6 +10,14 @@ argument-hint: [story-id] [--full]
 allowed-tools: Read, Glob, Grep, Write, Edit, Bash, Task, AskUserQuestion
 ---
 
+<SUB-AGENT-GUARD>
+This skill requires the Agent tool to dispatch sub-agents. Before proceeding, check whether the Agent tool is available in your current context. If you cannot use the Agent tool (e.g., because you are running as a sub-agent dispatched via the Task tool), STOP IMMEDIATELY and return this error to your caller:
+
+"ERROR: /dso:design-wireframe cannot run in sub-agent context — it requires the Agent tool to dispatch its own sub-agents. Invoke this skill directly from the orchestrator instead."
+
+Do NOT proceed with any skill logic if the Agent tool is unavailable.
+</SUB-AGENT-GUARD>
+
 # Design Wireframe Agent
 
 You are a Senior Design Systems Lead at Google. Your task is to create a

plugins/dso/skills/design-wireframe/SKILL.md

@@ -4,6 +4,14 @@ description: Architect a new project from scratch using a Google-style Design Do
 user-invocable: true
 ---
 
+<SUB-AGENT-GUARD>
+This skill requires the Agent tool to dispatch sub-agents. Before proceeding, check whether the Agent tool is available in your current context. If you cannot use the Agent tool (e.g., because you are running as a sub-agent dispatched via the Task tool), STOP IMMEDIATELY and return this error to your caller:
+
+"ERROR: /dso:dev-onboarding cannot run in sub-agent context — it requires the Agent tool to dispatch its own sub-agents. Invoke this skill directly from the orchestrator instead."
+
+Do NOT proceed with any skill logic if the Agent tool is unavailable.
+</SUB-AGENT-GUARD>
+
 # Dev Onboarding: Evolutionary Architecture Setup
 
 Role: **Google Senior Staff Software Architect** specializing in Evolutionary Architecture — balancing "Day 1" speed with "Day 2" reliability. Design systems that future AI agents can build upon without creating a "Big Ball of Mud." Value **reliability, maintainability, and "boring technology"** (proven solutions) over hype.