Stats
Actions
Tags
From great_cto
Runs a structured pre-mortem that identifies concrete failure causes before building. Covers headline writing, risk scoring, and Tiger/Paper Tiger classification.
How this skill is triggered — by the user, by Claude, or both
Slash command
/great_cto:pre-mortemWhen to use
Apply BEFORE implementation begins: - architect, after writing ARCH but before gate:plan - pm, while breaking work into tasks (Pre-mortem section in PLAN-*.md) - security-officer, when threat-modeling - any time the feature is irreversible or high-blast-radius
docs/plans/**docs/architecture/**docs/threat-models/**This skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
A retrospective for a project that hasn't happened yet. Surfaces real
A retrospective for a project that hasn't happened yet. Surfaces real risks that "list every risk" prompts miss.
Originated in Gary Klein's research at MIT Sloan, now standard at AWS and other ops-mature orgs.
The project shipped. It is a clear, public failure. There's a Reddit thread about it. The CEO is asking what went wrong.
One sentence. Concrete. Specific. Examples:
The headline forces you to name the failure mode SPECIFICALLY.
Brainstorm 10-15 reasons. Be specific. Each item should reference:
Reject hand-waves like "testing was insufficient." Replace with "we didn't write a property-based test for the dedup-key collision case."
For each cause, score:
Top 3 by risk score → these are your highest-priority mitigations.
After scoring, classify each risk into one of three types:
🐯 Tigers — Real problems you personally believe could derail the project
📄 Paper Tigers — Concerns others might raise that you don't believe are real risks
🐘 Elephants — Things the team knows about but isn't discussing openly
Each guardrail is a concrete change to the plan:
If a top-3 cause CANNOT be mitigated within the time/budget, escalate to the user: "This plan accepts the risk of X with no mitigation."
## Pre-mortem
Six months from now, this project failed. Headline:
> <one-sentence failure headline>
### Top reasons (likelihood × severity)
| Cause | L | S | Risk | Mitigation in plan |
|---|---|---|---|---|
| <specific cause> | 4 | 5 | 20 | <Task #N: write idempotency test> |
| ... | | | | |
### 🐯 Tigers (real risks — require action)
| Tiger | Classification | Mitigation | Owner | Due |
|-------|---------------|-----------|-------|-----|
| <risk> | Launch-Blocking | <concrete action> | <team/person> | <date> |
| <risk> | Fast-Follow | <concrete action> | <team/person> | <date> |
| <risk> | Track | <monitoring approach> | <owner> | post-launch |
### 📄 Paper Tigers (overblown — document to align stakeholders)
- **<concern>**: Not a real risk because <reason>. If <condition> changes, revisit.
### 🐘 Elephants (unspoken — needs open discussion)
- **<concern>**: Nobody is talking about this. Suggested conversation: "<how to raise it>".
### Accepted risks (no mitigation)
- <risk> — accepted because <budget/scope reason>. Owner: <name>.
Quick start — most-common pre-mortem causes per archetype:
| Archetype | Common failure |
|---|---|
| fintech / commerce | Idempotency-key collision; double-charge during retry storm |
| healthcare | PHI leak via debug log; BAA not signed with vendor |
| web3 | Oracle staleness; flash-loan exploit on bonding curve |
| mlops | Training/serving skew; model drift undetected |
| iot-embedded | OTA bricks devices in a region with no recovery path |
| data-platform | Late-arriving data overwrites correct values |
| ai-system / agent-product | Prompt injection exfiltrates other users' data |
| enterprise-saas | Cross-tenant data leak via RLS gap |
| cli-tool | Destructive flag with no confirmation (rm -rf equivalent) |
| library | Breaking change in minor version bump |
❌ Vague risks. "Performance might be a problem." Be specific: which operation, at what load, what's the SLO.
❌ Cosmic risks. "AWS could go down." Yes, but that's not actionable. Focus on what you can mitigate.
❌ Defensive list. Listing risks you've already mitigated to look thorough. Only list risks the current plan does NOT yet address.
❌ Skip the headline. Without the headline, the team won't believe the failure scenario is real.
npx claudepluginhub avelikiy/great_ctoRuns a pre-mortem analysis: assumes a plan has already failed and reasons backward to surface concrete risks. Use before committing to major decisions or launches.
Performs pre-mortem analysis imagining catastrophic failures for uncommitted plans or existing systems via parallel lenses, yielding prioritized risk registers with early warnings.
Facilitates pre-mortem analysis to identify project risks by imagining failure has occurred and working backward to causes. Useful for new projects, optimistic teams, or scope changes.