Stats
Actions
Tags
From llm-gateway
Submits design documents, specs, or plans for peer review via an LLM gateway (Codex, Gemini, Grok, Mistral). Iterates on feedback until approved. Use before implementing complex features.
How this skill is triggered — by the user, by Claude, or both
Slash command
/llm-gateway:design-review-cycleThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Submit design documents, implementation plans, or specifications for peer review through the LLM gateway. Track review iterations until approval.
Submit design documents, implementation plans, or specifications for peer review through the LLM gateway. Track review iterations until approval.
Apply these on every dispatch unless the caller has explicitly overridden a rule in the current turn:
model — let the gateway use its configured default per CLI.approvalStrategy:"mcp_managed" is the skill dispatch default (the gateway schema default is "legacy"). For Codex, also pass fullAuto:true when it must read files or run commands.idleTimeoutMs is a separate no-output safeguard.NOT APPROVED or conditional, revise + re-submit → repeat. Escalate after 3 rounds. This rule does not apply to pure implementation or non-review analysis dispatches.Write a clear review request that includes:
Single reviewer (Codex — most common):
codex_request({
prompt: "Review the design document at [path]. This is a [spec/plan/design] for [feature].\n\nReview for:\n- Completeness (are all requirements addressed?)\n- Correctness (will this approach work?)\n- Feasibility (can this be implemented as described?)\n- Risks (what could go wrong?)\n- Missing considerations\n\nEnd with APPROVED or NOT APPROVED with specific, actionable findings.",
fullAuto: true,
approvalStrategy: "mcp_managed",
correlationId: "design-review-r1"
})
Dual reviewer (Codex + Gemini for security-sensitive designs):
codex_request_async({
prompt: "Review the design document at [path]... End with APPROVED or NOT APPROVED with findings.",
fullAuto: true,
approvalStrategy: "mcp_managed",
correlationId: "design-review-r1-codex"
})
gemini_request_async({
prompt: "Review the design document at [path]. Focus on security implications, attack surfaces, data flow risks, and failure modes... End with APPROVED or NOT APPROVED with findings.",
approvalStrategy: "mcp_managed",
correlationId: "design-review-r1-gemini"
})
Triple reviewer (add Grok for independent diversity on high-stakes designs):
grok_request_async({
prompt: "Independent review of the design document at [path]. Flag completeness gaps, feasibility concerns, and assumptions the other reviewers may accept too easily. End with APPROVED or NOT APPROVED with findings.",
approvalStrategy: "mcp_managed",
correlationId: "design-review-r1-grok"
})
Parse the review response for:
For each finding:
codex_request({
prompt: "Re-review the design at [path] after addressing round 1 feedback:\n\n1. [Finding] — Addressed by: [what changed]\n2. [Finding] — Addressed by: [what changed]\n3. [Finding] — Not applicable because: [justification]\n\nReview the updated document. End with APPROVED or NOT APPROVED with findings.",
fullAuto: true,
approvalStrategy: "mcp_managed",
correlationId: "design-review-r2"
})
Use correlation IDs to track rounds:
design-review-r1 → Initial reviewdesign-review-r2 → After first round of fixesdesign-review-r3 → After second round (rare)If after 3 rounds the design is still not approved, the design likely needs a fundamental rethink — escalate to the user.
| Document Type | Primary Reviewer | Focus Areas |
|---|---|---|
| Implementation plan | Codex | Feasibility, task ordering, test strategy |
| API specification | Codex + Gemini | Completeness, security, error handling |
| Architecture decision | Codex + Grok | Trade-offs, scalability, maintenance burden, independent perspective |
| Security design | Gemini | Attack surfaces, threat model, mitigations |
| Data model | Codex | Normalization, query patterns, migration path |
| High-stakes / hard-to-reverse design | Codex + Gemini + Grok | Use all three when the design locks in a contract or migration path |
Review the implementation plan at [path].
Context: This plan implements [feature] for [project].
Check:
- Are tasks ordered correctly (dependencies respected)?
- Is the test strategy adequate?
- Are there missing tasks or gaps?
- Is the scope appropriate (not too broad, not too narrow)?
- Are file paths and function names consistent throughout?
APPROVED or NOT APPROVED with findings.
Review the API specification at [path].
Context: This API serves [purpose] for [consumers].
Check:
- Are all endpoints documented with request/response schemas?
- Are error cases handled (400, 401, 403, 404, 500)?
- Is authentication/authorization specified?
- Are there rate limiting or pagination considerations?
- Is the naming consistent and RESTful?
APPROVED or NOT APPROVED with findings.
Review the architecture decision at [path].
Context: This decision affects [components] in [project].
Check:
- Are alternatives considered and trade-offs documented?
- Is the chosen approach justified with concrete reasons?
- What are the long-term maintenance implications?
- Are there migration or rollback considerations?
- Does this align with existing system architecture?
APPROVED or NOT APPROVED with findings.
Many sqry review documents follow this naming convention:
01_SPEC.md → Specification02_DESIGN.md → Design document02_DESIGN_review_r1_request.md → Review request (round 1)02_DESIGN_review_r2_request.md → Review request (round 2)The skill works with any document structure — the naming convention is optional.
correlationId for every review round to enable tracing.fullAuto: true and approvalStrategy: "mcp_managed" for Codex reviews — fullAuto:true gives Codex sandboxed file/shell access, while mcp_managed records and gates the request. If Codex still can't access something specific, paste the relevant sections inline.resumeLatest:true to Codex on round 2+ to carry the reviewer's prior context (or sessionId:<UUID> for a specific Codex session). Note: --full-auto is dropped on resume — the original session's approval policy is inherited.LLM_GATEWAY_JOB_RETENTION_DAYS). If polling times out mid-round, re-issue the same call (auto-dedup reattaches to the running job) or fetch by jobId later. Use forceRefresh:true only when the design document has actually been updated.prompt to the structured promptParts field: put the stable review brief in system, the design content (or path-to-design) in context, and the round-specific question in task. prompt and promptParts are mutually exclusive. Stable system/context across rounds keeps the prefix-hash identical, raising implicit cache hit rate at the provider. After a round, read cache-state://prefix/{hash} to confirm reviewers actually shared the prefix.npx claudepluginhub verivus-oss/llm-cli-gateway --plugin llm-gatewayCreates, edits, and optimizes skills for Claude Code, including drafting, evaluating with test prompts, iterating on performance, and improving skill descriptions for better triggering accuracy.