Stats
Actions
Tags
From forge-shiptoday
Routes any product, engineering, or software development lifecycle (SDLC/PDLC) activity to Forge. Invoke this skill whenever the user describes work that involves the product development process — across any phase: discovery, definition, planning, execution, review, handoff, release, or reporting. This includes: building or shipping features, fixing bugs, writing PRDs, breaking down stories, estimating, prioritizing, reviewing PRs, security audits, vulnerability assessments, release readiness checks, deployment gates, test planning and strategy, refactoring, or any similar SDLC activity. ALSO invoke for any reference to a tracked work item key matching the pattern "PROJ-123" / "BUG-42" / any "<UPPERCASE>-<digits>" id, regardless of the verb attached. Do NOT invoke for pure coding requests ("write a function", "refactor this file", "add a test") UNLESS they reference a tracked work item or describe product process. Do NOT invoke for git operations, file editing, or general Q&A unrelated to a project.
How this skill is triggered — by the user, by Claude, or both
Slash command
/forge-shiptoday:forge-autopilotThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
You are routing product development requests to Forge via the `forge` MCP
You are routing product development requests to Forge via the forge MCP
server. The user does NOT need to say "forge" or "@forge" — detect their intent
from the skill description above and call the right tool automatically.
Forge's workflow catalog lives on the server side and is fully data-driven.
You don't need to know which workflows exist — forge__start_workflow will
return a classifier prompt listing all available workflows (Forge defaults
plus any org-specific workflows configured for the current user) when it
can't auto-detect the right one. Just call it and follow the instructions.
Before calling any Forge tool, build the connected_tools array by checking
which MCP tools are available in the current session:
| Connector | Look for these tool names |
|---|---|
| jira | searchJiraIssuesUsingJql, createJiraIssue, updateJiraIssue |
| linear | list_issues, get_issue, create_issue, save_issue |
| github | gh CLI available via Bash |
| slack | slack_send_message, slack_search_users, slack_search_channels |
| confluence | searchConfluenceUsingCql, getConfluencePage |
| notion | notion-search, notion-fetch, notion-create-pages |
| granola | search_meetings, get_meeting_transcript |
| figma | get_design_context, get_screenshot, get_metadata |
| local_code | Read, Grep, Glob (always include in coding environments) |
Only include connectors you can verify. Always include local_code when you
have filesystem access.
Build the local_skills array by checking your available skills, slash
commands, or rules. Include every skill relevant to product development
or the software development lifecycle — anything a Forge workflow step
could draw on, such as brainstorming, planning, requirements, estimation,
architecture analysis, code review, debugging, testing, or documentation.
Relevance — not whether the skill is project-specific — is the test: a
general-purpose skill still counts if it supports SDLC work.
A Forge workflow step can declare one of these as a required local skill, so under-declaring a relevant skill will block the step that depends on it. When in doubt, include it — over-declaring a relevant skill is harmless.
Do NOT include skills unrelated to product/SDLC work (e.g. presentation,
document, or spreadsheet builders, image or media generators) or built-in
platform commands (/help, /clear, etc.) — Forge workflows never use these.
| Source | Where to look |
|---|---|
| Claude Code | Skills listed in <system-reminder> under "available for use with the Skill tool" |
| Cursor | Rules loaded from .cursor/rules/ shown in your system context |
| Codex | Skills from .agents/skills/ shown in your available skills |
For each skill found, include { "name": "<skill-name>", "description": "<brief description>" }.
If no relevant local skills are found, omit the local_skills parameter entirely.
For ANY product/SDLC request, your default action is:
→ forge__start_workflow(feature_request, connected_tools, local_skills: <detected_skills>)
Do NOT pass an explicit workflow parameter and do NOT try to pre-route to
a specific skill. Forge handles all routing on the server:
classification_complete: true.You do not need to know which workflows or skills exist. The server is the source of truth and tells you what to do next via the response.
"What should I do with PROJ-123?", "help with PROJ-123", "where to start"
→ forge__start_workflow(feature_request, connected_tools, recommendation: true, local_skills: <detected_skills>)
Triggered by the stop-observer.cjs Stop hook (or by prompt-router.cjs
on a snoozed session wake check) — input contains "observe session" or
"observe_session workflow".
→ forge__start_workflow(feature_request: "Passive session observation", connected_tools, workflow: "observe_session", local_skills: <detected_skills>)
The observe_session workflow is a single-step workflow that wraps the
session observer. It is marked auto_classify: false server-side so it
is invisible to the intent classifier — the only valid entry point is
this explicit workflow: "observe_session" argument.
Follow the returned instructions to present a tracking nudge to the user. Do NOT classify this as a build/bug/architecture request — it's a passive check.
session_observer completes — read follow_upWhen the observer workflow returns Workflow complete., look at the
final state_updates payload you sent. If it includes a follow_up
object (the Link and Create paths set this; Ad-hoc, Snooze, and Dismiss
paths set follow_up: null), you MUST chain to the follow-up workflow
before resuming the user's original request:
forge__start_workflow(
feature_request: <follow_up.feature_request>,
connected_tools: <same array as before>,
epic_key: <follow_up.epic_key>,
workflow: <follow_up.workflow ?? omit>,
pre_forge_context: <follow_up.pre_forge_context>,
local_skills: <detected_skills>
)
The four-field structured shape (SHI-666) keeps the bound work item key
clean: epic_key is passed as a structured parameter so any
SHI-NNN-shaped strings inside pre_forge_context cannot hijack the
binding via the embedded-key regex.
If follow_up is null or absent, do not chain — the user's choice
(Ad-hoc / Snooze / Dismiss) means they explicitly opted out of starting
a tracked workflow. Continue the conversation normally.
Common failure mode to avoid: treating "Workflow complete" as
"observer is done — go back to the user's original ask". When the user
picked Link or Create, they implicitly chose to route the rest of the
session through a tracked workflow — silently going back to the
original ask leaves their selection unhonored and the audit trail
blind to which workflow should now be active. Always read follow_up
before resuming.
Triggered by the stop-observer.cjs Stop hook for an already-tracked
(logged / linked) session — input contains "session checkpoint" and
spells out a complete forge__update_state call (conversation_id,
completed_step, state_updates).
→ Call forge__update_state exactly as the directive specifies — pass
the conversation_id and state_updates verbatim. The conversation_id
is the original observe_session conversation; the server records the
elapsed time as a silent audit event.
Do NOT start a workflow, do NOT classify this as a build/bug/architecture request, and do NOT surface anything to the user — it is a passive, silent check. After the call, continue normally.
Pass the user's request as feature_request (strip pleasantries, keep substance).
After calling start_workflow, Forge returns step-by-step instructions.
Follow them:
AskUserQuestion as the
ONLY tool call in that response — wait for the answer before continuingforge__update_state with the results
AND the step_token from the most recent response (see below)needsDisambiguation or needsIntentClassification,
present options or pick a workflow per the returned instructions and re-callForge installs a PreToolUse hook (workflow-guard.cjs) that denies
tool calls when the active step does not allow them. Two layers:
Layer 1 — CHECKPOINT enforcement. When the orchestrator returns a
**CHECKPOINT** response from forge__update_state (a relayed-question
skill is awaiting user input), the only tools you may call until the
user has answered are:
AskUserQuestion — relay the pending questionforge__update_state — advance with the user's answerforge__abandon_workflow — exit cleanly (see below)Read, Grep, Glob, WebFetch, WebSearch,
TodoWrite, plus read-only MCP tools (names starting with list_,
get_, search_, query_, fetch_, notion-search, notion-fetch)Layer 2 — Per-step tool_permissions. Every step transition publishes
a **Tool Permissions**: cat1, cat2, … line listing the categories the
active step is allowed to use. The hook denies any tool whose category
is not in the list. Categories are coarse:
| Category | Tools |
|---|---|
read_code | Read, Grep, Glob (always allowed regardless) |
ask_user | AskUserQuestion (always allowed regardless) |
web | WebFetch, WebSearch |
tracker_read | list_issues, get_issue, list_comments, search_threads, … |
tracker_write | save_issue, create_issue, save_comment, update_issue, … |
docs_read / docs_write | Notion read / write |
messaging | Slack send |
calendar / design / meetings | Per-connector groups |
code_edit | Edit, Write, NotebookEdit |
shell | Bash, PowerShell |
Concretely: readiness_check does not allow code_edit or shell, so
calling Edit during it is denied. begin_code_execution allows both,
so editing during it is allowed. notify_tech_lead allows messaging
but not tracker_write — the model can send a Slack message but not
silently rewrite the ticket.
Anything denied gets an actionable reason that points at the three
legitimate next moves: relay (AskUserQuestion), advance
(forge__update_state), or abandon (forge__abandon_workflow).
This makes silent-bypass structurally impossible, not just discouraged.
If you receive a deny decision for a tool you genuinely need, the right move is usually to advance the workflow — the next step's allowlist likely includes the tool you want.
update_stateEvery start_workflow and update_state response also includes a line:
**Step Token**: `step_<uuid>` — include this in your next `forge__update_state` call
When you call forge__update_state, include the most recent token via
state_updates.step_token: "<token>". The orchestrator validates it
matches the conversation's current step — a mismatch means the
conversation has already advanced (typically a sub-agent advanced it
without your knowledge), and the call is rejected with an actionable
error pointing you at forge__get_workflow_state for recovery.
For relayed-question CHECKPOINT and RE-ENTRY responses the token does NOT rotate — re-use the same token until the workflow actually advances to a new step. The token rotates on every real step advance.
If you delegate a step to a sub-agent, pass the current step's token
into the sub-agent prompt verbatim — the sub-agent threads it through
its own update_state call. The orchestrator's response to that call
(carrying the new step_token and the next step's instructions) is
delivered to whoever made the MCP call: the sub-agent. The sub-agent
MUST return that response to you (the parent) VERBATIM.
To detect a missing envelope mechanically rather than heuristically, the
orchestrator wraps the next-step instructions in a <<<FORGE_NEXT_STEP token="…" bytes=N>>> … <<<END FORGE_NEXT_STEP>>> envelope. The
parser accepts the envelope on sentinels + token; bytes=N is an
optional integrity annotation. After every sub-agent return:
token="…" no longer
sits on it — the sub-agent didn't include a parseable envelope.bytes=N, compute the UTF-8 byte length of the body between them
and compare against N. Mismatch = the sub-agent paraphrased
inside otherwise-correct sentinels.bytes=N is absent (a
common smaller-model paraphrase mode — the agent keeps the
sentinel shape but drops the byte count as "boring metadata"),
trust the envelope on sentinel + token alone. No fetch needed —
the next-step body is good as-is.forge__get_workflow_state(conversation_id: "<id>") to fetch the
canonical step body and current step_token. This is the designed
recovery channel — read-only, idempotent, and owner-checked.
Findings the sub-agent put in display_text are preserved as a
## Findings block in the fetched response, so no analytical
output is dropped — only the verbatim relay shortcut was skipped.Diagnostic phrasing: when this happens, describe it as a fetch ("the envelope isn't in the sub-agent's return — fetching canonical state") rather than as a failure ("the relay was lost"). The findings layer is the system's designed answer to envelope-not-present, so the information path stayed intact even though the shortcut path didn't. This wording matters for the user reading your message — "lost" reads as a regression, "fetching" reads as a normal recovery.
A summarized or paraphrased return without the envelope leaves the
parent with a stale token if it doesn't fall through to the state
fetch — the new token lives ONLY in the orchestrator's response body,
and your parent CANNOT see the sub-agent's tool results. The STEP BOUNDARY directive injected into delegated prompts repeats this
requirement and names the envelope explicitly. This applies uniformly
across Claude Code (Agent tool), Codex (spawn_agent), Cursor, and
any other environment with sub-agent delegation.
forge__abandon_workflowIf the workflow no longer applies — the user redirected to unrelated work,
the classifier picked the wrong workflow, or scope changed mid-stream — call
forge__abandon_workflow(conversation_id, reason) to cleanly close the
conversation. This is the only correct way to exit a workflow without
completing it.
forge__update_state
calls and proceeding directly with implementation. Silent bypass leaves
the audit trail blind to why the workflow stopped applying — the team
loses signal about which workflows misroute and why.reason is required, must be at least 8 characters, and is recorded
in the audit trail. Make it meaningful (e.g., "user redirected to fix-bug
workflow", "scope changed — going direct on a 1-line change", "wrong
workflow classified, restarting"). Don't write filler like "abandoning"
or "no longer needed".forge__start_workflow
or proceed without one. Subsequent forge__update_state calls against
the abandoned conversation will be rejected.Forge responses include a **Model Routing** metadata line with the recommended
model tier. You MUST check this line and delegate when your current model does
not match the recommended tier.
The response metadata contains a line like:
**Model Routing**: tier=balanced | model=gpt-5.4 | environment=codex | guidance=codex_model_map | complexity=medium | task=planning
The tier value tells you which capability tier to use. The optional model
value is only exact when the guidance variant names a maintained model map
for your current environment. If no model is present, use the tier language
only: pick your fastest, balanced, or most capable available model.
Follow the instructions in the Model Routing block returned by Forge:
| Routing signal | What to do |
|---|---|
guidance=claude_code_model_map | Use the concrete model parameter Forge provides. |
guidance=codex_model_map | Use the provided Codex model hint when your Agent or model switch supports it; otherwise choose the same tier in Codex. |
guidance=model_agnostic_tier | Do not invent a model name. Choose your tool's available model that matches the tier. |
The sub-agent inherits your MCP tools and can call external connectors directly.
CRITICAL: Sub-agents execute ONE step only. The ---DELEGATE BELOW---
content already includes a step boundary directive. After the sub-agent returns,
YOU (the parent) MUST display the sub-agent's full analysis, findings, and
substantive output to the user immediately — before launching the next
sub-agent, calling forge__update_state, or asking any confirmation
question. This rule fires on every sub-agent return, not just before
confirmations. Do NOT summarize or paraphrase — reproduce the sub-agent's key
content (analysis results, discovery summaries, recommendations, structured
findings) so the user can see exactly what was produced. Then continue the
workflow by interpreting the next step yourself. Do NOT expect the sub-agent
to chain multiple steps.
Common loophole to avoid: when a sub-agent's return bundles both its substantive findings AND state-advancement metadata (e.g. "advanced to step 3, here's the next-step instructions"), it is tempting to read the whole return as workflow plumbing and skip straight to the next sub-agent. Don't. The findings are user-facing; the state metadata is internal. Surface the findings first, every time.
If you already match the recommended tier, execute the instructions directly — no delegation needed. If you do NOT match, delegate or switch using the environment-specific guidance Forge returned.
**Model Routing** is present, evaluate it before
executing the step instructions---DELEGATE BELOW--- in the
instructions is the delegated prompt. Include all of itSome AI harnesses enter a planning/dry-run mode when they detect intent to execute non-trivial work (e.g., Claude Code auto-enters plan mode on verbs like "implement", "fix", "build"). In plan mode, the harness forbids non-readonly tool calls and expects you to present a plan for the user to approve before any writes happen.
When plan mode is active AND a Forge workflow is requested, both protocols apply — they are not in conflict:
forge__start_workflow to fetch the
right workflow. This is a read-only call to Forge; it has no side
effects on the user's systems.save_issue, ticket comments, code edits,
forge__update_state calls) as part of the plan you present via
ExitPlanMode. Do NOT execute those writes while plan mode is active.forge__update_state to
advance through the deferred steps in order until the workflow
completes.Why both protocols are compatible: plan mode constrains which tools you may call, not which workflows you may consider. Forge's routing (which workflow to use, what its steps look like) is informational at this stage. Writes are deferred, not skipped — the workflow completes normally once plan mode releases you to act.
Anti-pattern to avoid: do NOT abandon the Forge workflow mid-step
because plan mode is active. If you've called forge__start_workflow and
read the step instructions, complete the read-only portions and present
the deferred writes in your plan — do not pivot to a parallel
plan-mode-only investigation that ignores the workflow. Abandoning leaves
the session's active_workflow flag stuck (workflow-tracker.cjs only
clears it on completion), which causes every subsequent prompt to receive
a stale "A Forge workflow is active and waiting for user input" reminder.
Regular coding tasks should be handled normally without Forge:
The line: if the user is talking about the product development process (planning, scoping, tracking, handing off, reviewing against requirements, auditing, releasing), route to Forge. If they're just writing code directly, don't.
Guides creation, editing, and verification of skills for AI coding agents using test-driven development with subagent scenarios. Use when authoring or debugging skills.
npx claudepluginhub shiptoday/forge-plugin-claude-mp --plugin forge-shiptoday