Marketplace
requesting-code-review
Gate 4 of development cycle - dispatches 3 specialized reviewers (code, business-logic, security) in parallel for comprehensive code review feedback.
$ Installieren
git clone https://github.com/LerianStudio/ring /tmp/ring && cp -r /tmp/ring/default/skills/requesting-code-review ~/.claude/skills/ring// tip: Run this command in your terminal to install the skill
SKILL.md
name: requesting-code-review description: | Gate 4 of development cycle - dispatches 3 specialized reviewers (code, business-logic, security) in parallel for comprehensive code review feedback.
trigger: |
- Gate 4 of development cycle
- After completing major feature implementation
- Before merge to main branch
- After fixing complex bug
NOT_skip_when: |
- "Code is simple" โ Simple code can have security issues. Review required.
- "Just refactoring" โ Refactoring may expose vulnerabilities. Review required.
- "Already reviewed similar code" โ Each change needs fresh review.
sequence: after: [dev-testing] before: [dev-validation]
related: complementary: [dev-cycle, dev-implementation, dev-testing]
input_schema: required: [] # All inputs optional for standalone usage optional: - name: unit_id type: string description: "Task or subtask identifier (auto-generated if not provided)" - name: base_sha type: string description: "Git SHA before implementation (auto-detected via git merge-base HEAD main)" - name: head_sha type: string description: "Git SHA after implementation (auto-detected via git rev-parse HEAD)" - name: implementation_summary type: string description: "Summary of what was implemented (auto-generated from git log if not provided)" - name: requirements type: string description: "Requirements or acceptance criteria (reviewers will infer from code if not provided)" - name: implementation_files type: array items: string description: "List of files changed (auto-detected via git diff if not provided)" - name: gate0_handoff type: object description: "Full handoff from Gate 0 (only when called from dev-cycle)" - name: skip_reviewers type: array items: string enum: [code-reviewer, business-logic-reviewer, security-reviewer] description: "Reviewers to skip (use sparingly)"
output_schema: format: markdown required_sections: - name: "Review Summary" pattern: "^## Review Summary" required: true - name: "Issues by Severity" pattern: "^## Issues by Severity" required: true - name: "Reviewer Verdicts" pattern: "^## Reviewer Verdicts" required: true - name: "CodeRabbit External Review" pattern: "^## CodeRabbit External Review" required: false - name: "Handoff to Next Gate" pattern: "^## Handoff to Next Gate" required: true metrics: - name: result type: enum values: [PASS, FAIL, NEEDS_FIXES] - name: reviewers_passed type: string description: "X/3 format" - name: issues_critical type: integer - name: issues_high type: integer - name: issues_medium type: integer - name: issues_low type: integer - name: iterations type: integer - name: coderabbit_status type: enum values: [PASS, ISSUES_FOUND, SKIPPED, NOT_INSTALLED] - name: coderabbit_validation_mode type: enum values: [SUBTASK_LEVEL, TASK_LEVEL] description: "Granularity of CodeRabbit validation" - name: coderabbit_units_validated type: integer description: "Number of units (subtasks or tasks) validated by CodeRabbit" - name: coderabbit_units_passed type: integer description: "Number of units that passed CodeRabbit validation" - name: coderabbit_issues type: integer description: "Total number of issues found by CodeRabbit across all units (0 if skipped)"
examples:
-
name: "Feature review" input: unit_id: "task-001" base_sha: "abc123" head_sha: "def456" implementation_summary: "Added user authentication with JWT" requirements: "AC-1: User can login, AC-2: Invalid password returns error" expected_output: |
Review Summary
Status: PASS Reviewers: 3/3 PASS
Issues by Severity
Severity Count Critical 0 High 0 Medium 0 Low 2 Reviewer Verdicts
Reviewer Verdict code-reviewer โ PASS business-logic-reviewer โ PASS security-reviewer โ PASS Handoff to Next Gate
- Ready for Gate 5: YES
Code Review (Gate 4)
Overview
Dispatch all three reviewer subagents in parallel for fast, comprehensive feedback:
- code-reviewer - Architecture, design patterns, code quality
- business-logic-reviewer - Domain correctness, business rules, edge cases
- security-reviewer - Vulnerabilities, authentication, OWASP risks
Core principle: All 3 reviewers run simultaneously in a single message with 3 Task tool calls.
CRITICAL: Role Clarification
This skill ORCHESTRATES. Reviewer Agents REVIEW.
| Who | Responsibility |
|---|---|
| This Skill | Dispatch reviewers, aggregate findings, track iterations |
| Reviewer Agents | Analyze code, report issues with severity |
| Implementation Agent | Fix issues found by reviewers |
Step 1: Gather Context (Auto-Detect if Not Provided)
This skill supports TWO modes:
1. WITH INPUTS: Called by any skill/user that provides structured inputs (unit_id, base_sha, etc.)
2. STANDALONE: Called directly without inputs - auto-detects everything from git
FOR EACH INPUT, check if provided OR auto-detect:
1. unit_id:
IF provided โ use it
ELSE โ generate: "review-" + timestamp (e.g., "review-20241222-143052")
2. base_sha:
IF provided โ use it
ELSE โ Execute: git merge-base HEAD main
IF git fails โ Execute: git rev-parse HEAD~10 (fallback to last 10 commits)
3. head_sha:
IF provided โ use it
ELSE โ Execute: git rev-parse HEAD
4. implementation_files:
IF provided โ use it
ELSE โ Execute: git diff --name-only [base_sha] [head_sha]
5. implementation_summary:
IF provided โ use it
ELSE โ Execute: git log --oneline [base_sha]..[head_sha]
Format as: "Changes: [list of commit messages]"
6. requirements:
IF provided โ use it
ELSE โ Set to: "Infer requirements from code changes and commit messages"
(Reviewers will analyze code to understand intent)
AFTER AUTO-DETECTION, display context:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ CODE REVIEW CONTEXT โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ Unit ID: [unit_id] โ
โ Base SHA: [base_sha] โ
โ Head SHA: [head_sha] โ
โ Files Changed: [count] files โ
โ Commits: [count] commits โ
โ โ
โ Dispatching 3 reviewers in parallel... โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Step 2: Initialize Review State
review_state = {
unit_id: [from input],
base_sha: [from input],
head_sha: [from input],
reviewers: {
code_reviewer: {verdict: null, issues: []},
business_logic_reviewer: {verdict: null, issues: []},
security_reviewer: {verdict: null, issues: []}
},
aggregated_issues: {
critical: [],
high: [],
medium: [],
low: [],
cosmetic: []
},
iterations: 0,
max_iterations: 3
}
Step 3: Dispatch All 3 Reviewers in Parallel
โ CRITICAL: All 3 reviewers MUST be dispatched in a SINGLE message with 3 Task calls.
# Task 1: Code Reviewer
Task:
subagent_type: "code-reviewer"
model: "opus"
description: "Code review for [unit_id]"
prompt: |
## Code Review Request
**Unit ID:** [unit_id]
**Base SHA:** [base_sha]
**Head SHA:** [head_sha]
## What Was Implemented
[implementation_summary]
## Requirements
[requirements]
## Files Changed
[implementation_files or "Use git diff"]
## Your Focus
- Architecture and design patterns
- Code quality and maintainability
- Naming conventions
- Error handling patterns
- Performance concerns
## Required Output
### VERDICT: PASS / FAIL
### Issues Found
| Severity | Description | File:Line | Recommendation |
|----------|-------------|-----------|----------------|
| [CRITICAL/HIGH/MEDIUM/LOW/COSMETIC] | [issue] | [location] | [fix] |
### What Was Done Well
[positive observations]
# Task 2: Business Logic Reviewer
Task:
subagent_type: "business-logic-reviewer"
model: "opus"
description: "Business logic review for [unit_id]"
prompt: |
## Business Logic Review Request
**Unit ID:** [unit_id]
**Base SHA:** [base_sha]
**Head SHA:** [head_sha]
## What Was Implemented
[implementation_summary]
## Requirements
[requirements]
## Your Focus
- Domain correctness
- Business rules implementation
- Edge cases handling
- Requirements coverage
- Data validation
## Required Output
### VERDICT: PASS / FAIL
### Issues Found
| Severity | Description | File:Line | Recommendation |
|----------|-------------|-----------|----------------|
| [CRITICAL/HIGH/MEDIUM/LOW/COSMETIC] | [issue] | [location] | [fix] |
### Requirements Traceability
| Requirement | Status | Evidence |
|-------------|--------|----------|
| [req] | โ
/โ | [file:line] |
# Task 3: Security Reviewer
Task:
subagent_type: "security-reviewer"
model: "opus"
description: "Security review for [unit_id]"
prompt: |
## Security Review Request
**Unit ID:** [unit_id]
**Base SHA:** [base_sha]
**Head SHA:** [head_sha]
## What Was Implemented
[implementation_summary]
## Requirements
[requirements]
## Your Focus
- Authentication and authorization
- Input validation
- SQL injection, XSS, CSRF
- Sensitive data handling
- OWASP Top 10 risks
## Required Output
### VERDICT: PASS / FAIL
### Issues Found
| Severity | Description | File:Line | OWASP Category | Recommendation |
|----------|-------------|-----------|----------------|----------------|
| [CRITICAL/HIGH/MEDIUM/LOW] | [issue] | [location] | [A01-A10] | [fix] |
### Security Checklist
| Check | Status |
|-------|--------|
| Input validation | โ
/โ |
| Auth checks | โ
/โ |
| No hardcoded secrets | โ
/โ |
Step 4: Wait for All Reviewers and Parse Output
Wait for all 3 Task calls to complete.
For each reviewer:
1. Extract VERDICT (PASS/FAIL)
2. Extract Issues Found table
3. Categorize issues by severity
review_state.reviewers.code_reviewer = {
verdict: [PASS/FAIL],
issues: [parsed issues]
}
// ... same for other reviewers
Aggregate all issues by severity:
review_state.aggregated_issues.critical = [all critical from all reviewers]
review_state.aggregated_issues.high = [all high from all reviewers]
// ... etc
Step 5: Handle Results by Severity
Count blocking issues:
blocking_count = critical.length + high.length + medium.length
IF blocking_count == 0:
โ All reviewers PASS
โ Proceed to Step 8 (Success)
IF blocking_count > 0:
โ review_state.iterations += 1
โ IF iterations >= max_iterations: Go to Step 9 (Escalate)
โ Go to Step 6 (Dispatch Fixes)
Step 6: Dispatch Fixes to Implementation Agent
โ CRITICAL: You are an ORCHESTRATOR. You CANNOT edit source files directly. You MUST dispatch the implementation agent to fix ALL review issues.
Orchestrator Boundaries (HARD GATE)
See dev-team/skills/shared-patterns/standards-boundary-enforcement.md for core enforcement rules.
Key prohibition: Edit/Write/Create on source files is FORBIDDEN. Always dispatch agent.
If you catch yourself about to use Edit/Write/Create on source files โ STOP. Dispatch agent.
Dispatch Implementation Agent
Task:
subagent_type: "[implementation_agent from Gate 0]"
model: "opus"
description: "Fix review issues for [unit_id]"
prompt: |
โ FIX REQUIRED - Code Review Issues Found
## Context
- **Unit ID:** [unit_id]
- **Iteration:** [iterations] of [max_iterations]
## Critical Issues (MUST FIX)
[list critical issues with file:line and recommendation]
## High Issues (MUST FIX)
[list high issues]
## Medium Issues (MUST FIX)
[list medium issues]
## Requirements
1. Fix ALL Critical, High, and Medium issues
2. Run tests to verify fixes
3. Commit fixes with descriptive message
4. Return list of fixed issues with evidence
## For Low/Cosmetic Issues
Add TODO/FIXME comments:
- Low: `// TODO(review): [Issue] - [reviewer] on [date]`
- Cosmetic: `// FIXME(nitpick): [Issue] - [reviewer] on [date]`
Anti-Rationalization for Direct Editing
See shared-patterns/orchestrator-direct-editing-anti-rationalization.md for complete anti-rationalization table.
Applies to: Step 6 (Fix dispatch after Ring reviewers) & Step 7.5.3 (Fix dispatch after CodeRabbit)
Step 7: Re-Run All Reviewers After Fixes
After fixes committed:
1. Get new HEAD_SHA
2. Go back to Step 3 (dispatch all 3 reviewers again)
โ CRITICAL: Always re-run ALL 3 reviewers after fixes.
Do NOT cherry-pick reviewers.
Step 7.5: CodeRabbit CLI Validation (Per-Subtask/Task)
โ NEW APPROACH: CodeRabbit validates EACH subtask/task as it completes, accumulating findings to a file.
CodeRabbit Integration Overview
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ CODERABBIT PER-UNIT VALIDATION FLOW โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ DURING REVIEW (after each subtask/task Ring reviewers pass): โ
โ 1. Run CodeRabbit for that unit's files โ
โ 2. Append findings to .coderabbit-findings.md โ
โ 3. Continue to next unit โ
โ โ
โ BEFORE COMMIT (Step 8): โ
โ 1. Display accumulated .coderabbit-findings.md โ
โ 2. User decides: fix issues OR acknowledge and proceed โ
โ โ
โ BENEFITS: โ
โ โข Catches issues close to when code was written โ
โ โข Smaller scope = faster reviews (7-30 min per unit) โ
โ โข Issues isolated to specific units, easier to fix โ
โ โข Accumulated file provides audit trail โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Rate Limits (Official - per developer per repository per hour)
| Limit Type | Value | Notes |
|---|---|---|
| Files reviewed | 200 files/hour | Per review |
| Reviews | 3 back-to-back, then 4/hour | 7 reviews possible in first hour |
| Conversations | 25 back-to-back, then 50/hour | For follow-up questions |
โฑ๏ธ TIMING: Each CodeRabbit review takes 7-30+ minutes depending on scope. Run in background and check periodically for completion.
Common Commands Reference
CodeRabbit Installation Check:
which coderabbit || which cr
Used in Step 7.5.1 and after installation to verify CLI availability.
โ ๏ธ PREREQUISITES & ENVIRONMENT REQUIREMENTS
Before attempting Step 7.5, verify your environment supports the required operations:
| Requirement | Local Dev | CI/CD | Containerized | Remote/SSH |
|---|---|---|---|---|
curl | sh install | โ Yes | โ ๏ธ May require elevated permissions | โ Often blocked | โ ๏ธ Depends on config |
Browser auth (coderabbit auth login) | โ Yes | โ No browser | โ No browser | โ No browser |
Write to $HOME/.coderabbit/ | โ Yes | โ ๏ธ Ephemeral | โ ๏ธ Ephemeral | โ Usually |
Internet access to cli.coderabbit.ai | โ Yes | โ ๏ธ Check firewall | โ ๏ธ Check firewall | โ ๏ธ Check firewall |
โ HARD STOP CONDITIONS - Skip Step 7.5 if ANY apply:
- Running in containerized environment without persistent storage
- CI/CD pipeline without pre-installed CodeRabbit CLI
- Non-interactive environment (no TTY for browser auth)
- Network restrictions blocking
cli.coderabbit.ai - Read-only filesystem
Environment-Specific Guidance
Local Development (RECOMMENDED)
Standard flow works: curl | sh install + browser authentication.
CI/CD Pipelines
Option A: Pre-install in CI image
# Add to your CI Dockerfile
RUN curl -fsSL https://cli.coderabbit.ai/install.sh | sh
Option B: Use API token authentication (headless)
# Set token via environment variable (add to CI secrets)
export CODERABBIT_API_TOKEN="your-api-token"
coderabbit auth login --token "$CODERABBIT_API_TOKEN"
Option C: Skip CodeRabbit in CI, run locally
# In CI config, set env var to auto-skip
export SKIP_CODERABBIT_REVIEW=true
Containerized/Docker Environments
# Option 1: Mount credentials from host
docker run -v ~/.coderabbit:/root/.coderabbit ...
# Option 2: Pass token as env var
docker run -e CODERABBIT_API_TOKEN="..." ...
# Option 3: Pre-bake into image (not recommended for tokens)
Non-Interactive/Headless Authentication
# Generate API token at: https://app.coderabbit.ai/settings/api-tokens
# Then authenticate without browser:
coderabbit auth login --token "cr_xxxxxxxxxxxxx"
Step 7.5 Flow Logic
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ
ALL 3 RING REVIEWERS PASSED โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Checking CodeRabbit CLI availability... โ
โ โ
โ CodeRabbit provides additional AI-powered code review that โ
โ catches race conditions, memory leaks, security vulnerabilities,โ
โ and edge cases that may complement Ring reviewers. โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ HARD GATE: CodeRabbit Execution Rules (NON-NEGOTIABLE)
| Scenario | Rule | Action |
|---|---|---|
| Installed & authenticated | MANDATORY - CANNOT skip | Run CodeRabbit review, no prompt |
| Not installed | MUST ask user about installation | Present installation option |
| User declines installation | Optional - can proceed | Skip and continue to Step 8 |
Why this distinction:
- If CodeRabbit IS installed โ User has committed to using it โ MUST run
- If CodeRabbit is NOT installed โ User choice to add it โ MUST ask, but can decline
FLOW:
1. Run CodeRabbit Installation Check
2. IF installed AND authenticated โ Run CodeRabbit (MANDATORY, NO prompt, CANNOT skip)
3. IF installed BUT NOT authenticated โ Guide authentication (REQUIRED before proceeding)
4. IF NOT installed โ MUST ask user about installation (REQUIRED prompt)
5. IF user declines installation โ Skip CodeRabbit, proceed to Step 8 (only valid skip path)
Anti-Rationalization for CodeRabbit Execution
| Rationalization | Why It's WRONG | Required Action |
|---|---|---|
| "CodeRabbit is optional, I'll skip it" | If installed, it's MANDATORY. Optional only means installation is optional. | Run CodeRabbit if installed |
| "Ring reviewers passed, that's enough" | Different tools catch different issues. CodeRabbit complements Ring. | Run CodeRabbit if installed |
| "User didn't ask for CodeRabbit" | User installed it. Installation = consent to mandatory execution. | Run CodeRabbit if installed |
| "Takes too long, skip this time" | Time is irrelevant. Installed = mandatory. | Run CodeRabbit if installed |
| "I'll just proceed without asking about install" | MUST ask every user if they want to install. No silent skips. | Ask user about installation |
Step 7.5.1: Check CodeRabbit Installation
Run the CodeRabbit Installation Check command.
IF INSTALLED AND AUTHENTICATED โ MANDATORY EXECUTION (CANNOT SKIP):
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ
CodeRabbit CLI detected - MANDATORY EXECUTION โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ CodeRabbit CLI is installed and authenticated. โ
โ โ
โ โ CodeRabbit review is MANDATORY when installed. โ
โ This step CANNOT be skipped. Proceeding automatically... โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Proceed directly to Step 7.5.2 (Run CodeRabbit Review) - NO user prompt, NO skip option
IF NOT INSTALLED โ MUST ASK USER (REQUIRED PROMPT):
โ You MUST present this prompt to the user. Silent skips are FORBIDDEN.
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ ๏ธ CodeRabbit CLI not found - INSTALLATION PROMPT REQUIRED โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ CodeRabbit CLI is not installed on your system. โ
โ โ
โ CodeRabbit provides additional AI-powered review that catches: โ
โ โข Race conditions and concurrency issues โ
โ โข Memory leaks and resource management โ
โ โข Security vulnerabilities โ
โ โข Edge cases missed by other reviewers โ
โ โ
โ โ You MUST choose one of the following options: โ
โ โ
โ (a) Yes, install CodeRabbit CLI (I'll guide you) โ
โ (b) No, skip CodeRabbit and proceed to Gate 5 โ
โ โ
โ โ ๏ธ ENVIRONMENT CHECK: โ
โ โข Interactive terminal with browser? โ Standard install โ
โ โข CI/headless? โ Requires API token auth โ
โ โข Container? โ See Environment-Specific Guidance above โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
If user selects (a) Yes, install: โ Proceed to Installation Flow below
If user selects (b) No, skip:
โ Record: "CodeRabbit review: SKIPPED (not installed, user declined installation)"
โ Proceed to Step 8 (Success Output)
โ This is the ONLY valid path to skip CodeRabbit
Step 7.5.1a: CodeRabbit Installation Flow
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ฆ INSTALLING CODERABBIT CLI โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ โ ๏ธ ENVIRONMENT CHECK FIRST: โ
โ โ
โ This installation requires: โ
โ โข curl command available โ
โ โข Write access to $HOME or /usr/local/bin โ
โ โข Internet access to cli.coderabbit.ai โ
โ โข Non-containerized environment (or persistent storage) โ
โ โ
โ If in CI/container, see "Environment-Specific Guidance" above. โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Check environment before proceeding:
# Verify prerequisites
curl --version && echo "curl: OK" || echo "curl: MISSING"
test -w "$HOME" && echo "HOME writable: OK" || echo "HOME writable: NO"
curl -sI https://cli.coderabbit.ai | head -1 | grep -q "200\|301\|302" && echo "Network: OK" || echo "Network: BLOCKED"
If prerequisites pass, install:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ฆ Step 1: Installing CodeRabbit CLI... โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
# Step 1: Download and install CodeRabbit CLI
curl -fsSL https://cli.coderabbit.ai/install.sh | sh
After installation, verify: Run the CodeRabbit Installation Check command.
If installation successful:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ
CodeRabbit CLI installed successfully! โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Step 2: Authentication required โ
โ โ
โ Choose your authentication method: โ
โ โ
โ (a) Browser login (interactive - opens browser) โ
โ โ Best for: Local development with GUI โ
โ โ Command: coderabbit auth login โ
โ โ
โ (b) API token (headless - no browser needed) โ
โ โ Best for: CI/CD, containers, SSH sessions โ
โ โ Get token: https://app.coderabbit.ai/settings/api-tokensโ
โ โ Command: coderabbit auth login --token "cr_xxx" โ
โ โ
โ (c) Skip authentication and CodeRabbit review โ
โ โ
โ Note: Free tier allows 1 review/hour. โ
โ Paid plans get enhanced reviews + higher limits. โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
If user selects (a) Browser login:
# Step 2a: Authenticate with CodeRabbit (opens browser)
# โ ๏ธ Requires: GUI environment with default browser
coderabbit auth login
If user selects (b) API token:
# Step 2b: Authenticate with API token (headless)
# Get your token from: https://app.coderabbit.ai/settings/api-tokens
coderabbit auth login --token "cr_xxxxxxxxxxxxx"
After authentication:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ
CodeRabbit CLI ready! โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Installation: Complete โ
โ Authentication: Complete โ
โ โ
โ Proceeding to CodeRabbit review... โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Proceed to Step 7.5.2 (Run CodeRabbit Review)
If installation failed:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ CodeRabbit CLI installation failed โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Error: [error message from curl/sh] โ
โ โ
โ Troubleshooting: โ
โ โข Check internet connection โ
โ โข Try manual install: https://docs.coderabbit.ai/cli/overview โ
โ โข macOS/Linux only (Windows not supported yet) โ
โ โ
โ Would you like to: โ
โ (a) Retry installation โ
โ (b) Skip CodeRabbit and proceed to Gate 5 โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Step 7.5.2: Run CodeRabbit Review
โ GRANULAR VALIDATION: CodeRabbit MUST validate at the most granular level available.
DETERMINE VALIDATION SCOPE:
1. Check if current work has subtasks (from gate0_handoff or implementation context)
2. IF subtasks exist โ Validate EACH SUBTASK separately
3. IF no subtasks โ Validate the TASK as a whole
WHY GRANULAR VALIDATION:
- Subtask-level validation catches issues early
- Easier to pinpoint which subtask introduced problems
- Prevents "works for task A, breaks task B" scenarios
- Enables incremental fixes without re-running entire review
Step 7.5.2a: Determine Validation Scope
validation_scope = {
mode: null, // "subtask" or "task"
units: [], // list of {id, files, commits} to validate
current_index: 0
}
IF gate0_handoff.subtasks exists AND gate0_handoff.subtasks.length > 0:
โ validation_scope.mode = "subtask"
โ FOR EACH subtask in gate0_handoff.subtasks:
โ Get files changed by this subtask (from commits or file mapping)
โ Add to validation_scope.units: {
id: subtask.id,
name: subtask.name,
files: [files touched by this subtask],
base_sha: [sha before subtask],
head_sha: [sha after subtask]
}
Display:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ CODERABBIT VALIDATION MODE: SUBTASK-LEVEL โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Detected [N] subtasks. Will validate each separately: โ
โ โ
โ 1. [subtask-1-id]: [subtask-1-name] โ
โ Files: [file1.go, file2.go] โ
โ โ
โ 2. [subtask-2-id]: [subtask-2-name] โ
โ Files: [file3.go, file4.go] โ
โ โ
โ ... (up to N subtasks) โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
ELSE:
โ validation_scope.mode = "task"
โ Add single unit: {
id: unit_id,
name: implementation_summary,
files: implementation_files,
base_sha: base_sha,
head_sha: head_sha
}
Display:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ CODERABBIT VALIDATION MODE: TASK-LEVEL โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ No subtasks detected. Validating entire task: โ
โ โ
โ Task: [unit_id] โ
โ Files: [N] files changed โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Step 7.5.2b: Run CodeRabbit for Each Validation Unit
coderabbit_results = {
overall_status: "PASS", // PASS only if ALL units pass
units: []
}
FOR EACH unit IN validation_scope.units:
Display:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ VALIDATING: [unit.id] ([current]/[total]) โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ Name: [unit.name] โ
โ Files: [unit.files.join(", ")] โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
# Run CodeRabbit review
# โฑ๏ธ TIMING: 7-30+ minutes per review. Run in background if possible.
# Compare against base branch
coderabbit --prompt-only --type uncommitted --base [base_branch]
# Compare against specific commit on current branch
coderabbit --prompt-only --type uncommitted --base-commit [unit.base_sha]
# The command is synchronous - it completes when output is returned
Parse output and record:
unit_result = {
id: unit.id,
status: "PASS" | "ISSUES_FOUND",
issues: {
critical: [list],
high: [list],
medium: [list],
low: [list]
}
}
coderabbit_results.units.push(unit_result)
IF unit_result.issues.critical.length > 0 OR unit_result.issues.high.length > 0:
โ coderabbit_results.overall_status = "ISSUES_FOUND"
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ MANDATORY: APPEND FINDINGS TO .coderabbit-findings.md
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
After EACH unit validation, append results to findings file:
IF .coderabbit-findings.md does NOT exist:
โ Create file with header (see "Findings File Format" below)
APPEND to .coderabbit-findings.md:
Unit: [unit.id] - [unit.name]
Validated: [timestamp] Status: [PASS | ISSUES_FOUND] Files: [unit.files.join(", ")]
Issues Found
| # | Severity | Description | File:Line | Recommendation |
|---|---|---|---|---|
| 1 | [severity] | [description] | [file:line] | [recommendation] |
| ... | ... | ... | ... | ... |
This ensures ALL findings are accumulated for review before commit.
AFTER ALL UNITS VALIDATED:
Display summary:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ CODERABBIT VALIDATION SUMMARY โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ Mode: [SUBTASK-LEVEL | TASK-LEVEL] โ
โ Units Validated: [N] โ
โ Overall Status: [PASS | ISSUES_FOUND] โ
โ โ
โ Per-Unit Results: โ
โ โโโโโโโโโโโโโโโโฌโโโโโโโโโโโโโฌโโโโโโโฌโโโโโโโฌโโโโโโโโโฌโโโโโโ โ
โ โ Unit ID โ Status โ Crit โ High โ Medium โ Low โ โ
โ โโโโโโโโโโโโโโโโผโโโโโโโโโโโโโผโโโโโโโผโโโโโโโผโโโโโโโโโผโโโโโโค โ
โ โ [subtask-1] โ โ
PASS โ 0 โ 0 โ 0 โ 1 โ โ
โ โ [subtask-2] โ โ ISSUES โ 1 โ 2 โ 0 โ 0 โ โ
โ โโโโโโโโโโโโโโโโดโโโโโโโโโโโโโดโโโโโโโดโโโโโโโดโโโโโโโโโดโโโโโโ โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Parse CodeRabbit output for:
- Critical issues
- High severity issues
- Security vulnerabilities
- Performance concerns
Findings File Format (.coderabbit-findings.md)
This file accumulates ALL CodeRabbit findings across all validated units.
# CodeRabbit Findings
**Generated:** [initial timestamp]
**Last Updated:** [latest timestamp]
**Total Units Validated:** [N]
**Overall Status:** [PASS | ISSUES_FOUND]
## Summary
| Severity | Count | Status |
|----------|-------|--------|
| Critical | [N] | [N pending / N fixed] |
| High | [N] | [N pending / N fixed] |
| Medium | [N] | [N pending / N fixed] |
| Low | [N] | [N pending / N fixed] |
---
## Unit: [subtask-1-id] - [subtask-1-name]
**Validated:** [timestamp]
**Status:** [PASS | ISSUES_FOUND]
**Files:** [file1.go, file2.go]
### Issues Found
| # | Severity | Description | File:Line | Recommendation | Status |
|---|----------|-------------|-----------|----------------|--------|
| 1 | CRITICAL | Race condition in handler | handler.go:45 | Use sync.Mutex | PENDING |
| 2 | HIGH | Unchecked error return | repo.go:123 | Handle error | PENDING |
---
## Unit: [subtask-2-id] - [subtask-2-name]
**Validated:** [timestamp]
**Status:** PASS
**Files:** [file3.go]
### Issues Found
_No issues found._
---
[... additional units ...]
File Location: Project root (.coderabbit-findings.md)
Lifecycle:
- Created when first CodeRabbit validation runs
- Appended after each unit validation
- Displayed before commit (Step 8)
- User decides: fix issues or acknowledge and proceed
- After commit, file can be deleted or kept for audit
Step 7.5.3: Handle CodeRabbit Findings
โ CRITICAL: You are an ORCHESTRATOR. You CANNOT edit source files directly. You MUST dispatch the implementation agent to fix issues.
โ GRANULAR FIX DISPATCH: Fixes MUST be dispatched per-unit (subtask or task).
IF coderabbit_results.overall_status == "ISSUES_FOUND":
โ FIRST: Display EACH issue in detail (REQUIRED before any action):
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ ๏ธ CODERABBIT ISSUES FOUND - DETAILED DESCRIPTION โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ UNIT: [subtask-1] - [subtask name] โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Issue #1 [CRITICAL] โ
โ Description: Race condition in concurrent request handler โ
โ File: src/handler.go:45 โ
โ Code Context: โ
โ 43 | func (h *Handler) Process(ctx context.Context) { โ
โ 44 | h.counter++ // โ NOT THREAD-SAFE โ
โ 45 | data := h.sharedMap[key] โ
โ Why it matters: Multiple goroutines can corrupt shared state โ
โ Recommendation: Use sync.Mutex or atomic operations โ
โ โ
โ Issue #2 [HIGH] โ
โ Description: Unchecked error return from database query โ
โ File: src/repo.go:123 โ
โ Code Context: โ
โ 121 | func (r *Repo) GetUser(id string) (*User, error) { โ
โ 122 | result, _ := r.db.Query(query, id) // โ IGNORED โ
โ 123 | return parseUser(result), nil โ
โ Why it matters: Silent failures can cause data corruption โ
โ Recommendation: Check and handle the error properly โ
โ โ
โ UNIT: [subtask-2] - [subtask name] โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Issue #3 [HIGH] โ
โ Description: SQL injection vulnerability โ
โ File: src/query.go:89 โ
โ Code Context: โ
โ 87 | func BuildQuery(userInput string) string { โ
โ 88 | return fmt.Sprintf("SELECT * FROM users WHERE โ
โ 89 | name = '%s'", userInput) // โ INJECTABLE โ
โ Why it matters: Attacker can execute arbitrary SQL โ
โ Recommendation: Use parameterized queries โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ THEN: Ask user for action:
"CodeRabbit found [N] issues in [M] units. What would you like to do?"
(a) Fix all issues - dispatch implementation agent per unit
(b) Proceed to Gate 5 (acknowledge risk)
(c) Review findings in detail (show code context)
IF user selects (a) Fix issues:
โ โ DO NOT edit files directly
โ FOR EACH unit WITH issues (validation_scope.units where status == "ISSUES_FOUND"):
Display:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ง DISPATCHING FIX: [unit.id] ([current]/[total with issues]) โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ Unit: [unit.name] โ
โ Critical Issues: [N] โ
โ High Issues: [N] โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ DISPATCH implementation agent with unit-specific findings:
Task:
subagent_type: "[same agent used in Gate 0]"
model: "opus"
description: "Fix CodeRabbit issues for [unit.id]"
prompt: |
## CodeRabbit Issues to Fix - [unit.id]
**Scope:** This fix is for [subtask/task]: [unit.name]
**Files in Scope:** [unit.files.join(", ")]
The following issues were found by CodeRabbit CLI external review
for THIS SPECIFIC [subtask/task].
โ ๏ธ IMPORTANT: Only fix issues in files belonging to this unit:
[unit.files list]
### Critical Issues
[list from unit.issues.critical]
### High Issues
[list from unit.issues.high]
## Requirements
1. Fix each issue following Ring Standards
2. Only modify files in scope: [unit.files]
3. Run tests to verify fixes don't break functionality
4. Commit fixes with message referencing unit: "fix([unit.id]): [description]"
โ Wait for agent to complete
โ Record fix result for this unit
โ VALIDATE EACH ISSUE INDIVIDUALLY:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ VALIDATING FIXES FOR: [unit.id] โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Each issue MUST be validated individually: โ
โ โ
โ Issue #1: [issue description] โ
โ File: [file:line] โ
โ Severity: CRITICAL โ
โ Fix Applied: [description of fix] โ
โ Validation: โ
RESOLVED / โ NOT RESOLVED โ
โ Evidence: [code snippet or test result] โ
โ โ
โ Issue #2: [issue description] โ
โ File: [file:line] โ
โ Severity: HIGH โ
โ Fix Applied: [description of fix] โ
โ Validation: โ
RESOLVED / โ NOT RESOLVED โ
โ Evidence: [code snippet or test result] โ
โ โ
โ ... (repeat for ALL issues) โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ IF any issue NOT RESOLVED:
โ Identify the correct agent for re-dispatch:
- Check gate0_handoff.implementation_agent (if available)
- OR infer from file type:
- *.go files โ ring-dev-team:backend-engineer-golang
- *.ts files (backend) โ ring-dev-team:backend-engineer-typescript
- *.ts/*.tsx files (frontend) โ ring-dev-team:frontend-engineer
- *.yaml/*.yml (infra) โ ring-dev-team:devops-engineer
โ Re-dispatch ONLY unresolved issues to the correct agent:
Task:
subagent_type: "[correct agent based on file type or gate0_handoff]"
model: "opus"
description: "Retry fix for unresolved issues in [unit.id]"
prompt: |
## RETRY: Unresolved CodeRabbit Issues - [unit.id]
Previous fix attempt did NOT resolve these issues.
This is attempt [N] of 2 maximum.
### Unresolved Issues (MUST FIX)
| # | Severity | Description | File:Line | Previous Attempt | Why It Failed |
|---|----------|-------------|-----------|------------------|---------------|
| [issue.id] | [severity] | [description] | [file:line] | [what was tried] | [why not resolved] |
### Requirements
1. Review the previous fix attempt and understand why it failed
2. Apply a different/better solution
3. Verify the fix resolves the issue
4. Run relevant tests
5. Commit with message: "fix([unit.id]): retry [issue description]"
โ Max 2 fix attempts per issue
โ IF issue still NOT RESOLVED after 2 attempts:
โ Mark as UNRESOLVED_ESCALATE
โ Add to escalation report for manual review
โ Record per-issue validation results:
unit_validation = {
id: unit.id,
issues_validated: [
{
issue_id: 1,
description: "[issue]",
severity: "CRITICAL",
file: "[file:line]",
fix_applied: "[description]",
status: "RESOLVED" | "NOT_RESOLVED",
evidence: "[snippet or test]",
attempts: 1
},
...
],
all_resolved: true | false
}
โ AFTER ALL UNITS FIXED:
Display:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ
FIX DISPATCH COMPLETE โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ Units Fixed: [N] / [total with issues] โ
โ Total Issues Validated: [N] โ
โ Issues Resolved: [N] / [N] โ
โ โ
โ Per-Unit Fix Status: โ
โ โโโโโโโโโโโโโโโโฌโโโโโโโโโโโโโฌโโโโโโโโโโโโโโโโโโโโโโโโ โ
โ โ Unit ID โ Status โ Commit โ โ
โ โโโโโโโโโโโโโโโโผโโโโโโโโโโโโโผโโโโโโโโโโโโโโโโโโโโโโโโค โ
โ โ [subtask-1] โ โ
FIXED โ abc123 โ โ
โ โ [subtask-2] โ โ
FIXED โ def456 โ โ
โ โโโโโโโโโโโโโโโโดโโโโโโโโโโโโโดโโโโโโโโโโโโโโโโโโโโโโโโ โ
โ โ
โ Issue-Level Validation Details: โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ โ
โ โ UNIT: [subtask-1] โ โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค โ
โ โ #1 [CRITICAL] Race condition in handler โ โ
โ โ File: src/handler.go:45 โ โ
โ โ Fix: Added mutex lock โ โ
โ โ Status: โ
RESOLVED โ โ
โ โ Evidence: Test race_test.go passes โ โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค โ
โ โ #2 [HIGH] Unchecked error return โ โ
โ โ File: src/handler.go:67 โ โ
โ โ Fix: Added error check with proper handling โ โ
โ โ Status: โ
RESOLVED โ โ
โ โ Evidence: Error path verified in unit test โ โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
LEGACY FLOW (when validation_scope.mode == "task"):
IF CodeRabbit found CRITICAL or HIGH issues:
โ Display findings to user
โ Ask: "CodeRabbit found [N] critical/high issues. Fix now or proceed anyway?"
(a) Fix issues - dispatch to implementation agent
(b) Proceed to Gate 5 (acknowledge risk)
(c) Review findings in detail
IF user selects (a) Fix issues:
โ โ DO NOT edit files directly
โ DISPATCH implementation agent with CodeRabbit findings:
Task:
subagent_type: "[same agent used in Gate 0]"
model: "opus"
description: "Fix CodeRabbit issues for [unit_id]"
prompt: |
## CodeRabbit Issues to Fix
The following issues were found by CodeRabbit CLI external review.
Fix ALL Critical and High severity issues.
### Critical Issues
[list from CodeRabbit output]
### High Issues
[list from CodeRabbit output]
## Requirements
1. Fix each issue following Ring Standards
2. Run tests to verify fixes don't break functionality
3. Commit fixes with descriptive message
โ After agent completes, re-run CodeRabbit: `coderabbit --prompt-only`
โ If CodeRabbit issues remain, repeat fix cycle (max 2 iterations for CodeRabbit)
โ โ AFTER CodeRabbit passes, MUST re-run Ring reviewers:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ RE-RUNNING RING REVIEWERS AFTER CODERABBIT FIXES โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ CodeRabbit fixes may have introduced new issues detectable by โ
โ Ring reviewers. Re-validation is MANDATORY before Gate 5. โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Step 7.5.3a: Re-Run All 3 Ring Reviewers
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
1. Get new HEAD_SHA after CodeRabbit fixes
2. Dispatch all 3 reviewers in parallel (per Step 3):
- code-reviewer
- business-logic-reviewer
- security-reviewer
3. Wait for all 3 to complete
Step 7.5.3b: Handle Ring Reviewer Results
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
IF all 3 Ring reviewers PASS:
โ Proceed to Step 8 (Success Output)
IF any Ring reviewer finds CRITICAL/HIGH/MEDIUM issues:
โ Increment ring_revalidation_iterations counter
โ IF ring_revalidation_iterations >= 2:
โ ESCALATE: "Max iterations reached after CodeRabbit fixes"
โ Go to Step 9 (Escalate)
โ DISPATCH implementation agent to fix Ring reviewer issues
โ After fixes committed:
โ Re-run CodeRabbit: `coderabbit --prompt-only`
โ IF CodeRabbit passes:
โ Re-run all 3 Ring reviewers (loop back to Step 7.5.3a)
โ IF CodeRabbit finds issues:
โ Fix CodeRabbit issues first, then re-run Ring reviewers
State tracking for CodeRabbit fix cycle:
```
coderabbit_fix_state = {
coderabbit_iterations: 0, // max 2 for CodeRabbit-only fixes
ring_revalidation_iterations: 0, // max 2 for Ring reviewer re-runs
total_max_iterations: 4 // absolute cap: 2 CR + 2 Ring
}
```
IF CodeRabbit found only MEDIUM/LOW issues:
โ Display summary
โ โ DO NOT edit files directly to add TODOs
โ DISPATCH implementation agent to add TODO comments:
Task:
subagent_type: "[same agent used in Gate 0]"
description: "Add TODO comments for CodeRabbit findings"
prompt: |
Add TODO comments for these CodeRabbit findings:
[list MEDIUM/LOW issues with file:line]
Format: // TODO(coderabbit): [issue description]
โ After TODO comments added (code changed):
โ Re-run all 3 Ring reviewers (per Step 7.5.3a above)
โ IF Ring reviewers PASS: Proceed to Step 8
โ IF Ring reviewers find issues: Fix and re-run (max 2 iterations)
IF CodeRabbit found no issues:
โ Display: "โ
CodeRabbit review passed - no additional issues found"
โ No code changes made by CodeRabbit flow
โ Proceed directly to Step 8 (no Ring re-run needed)
Anti-Rationalization for Direct Editing
See shared-patterns/orchestrator-direct-editing-anti-rationalization.md - same table applies here.
Applies to: Step 6 (Fix dispatch after Ring reviewers) & Step 7.5.3 (Fix dispatch after CodeRabbit)
Step 7.5.4: CodeRabbit Results Summary
## CodeRabbit External Review
**Status:** [PASS|ISSUES_FOUND|SKIPPED]
**Validation Mode:** [SUBTASK-LEVEL|TASK-LEVEL]
**Units Validated:** [N]
**Total Issues Found:** [N]
**Issues Resolved:** [N]/[N]
### Per-Unit Validation Results
| Unit ID | Unit Name | Status | Critical | High | Medium | Low |
|---------|-----------|--------|----------|------|--------|-----|
| [subtask-1] | [name] | โ
PASS | 0 | 0 | 0 | 1 |
| [subtask-2] | [name] | โ
FIXED | 1โ0 | 2โ0 | 0 | 0 |
| [task-id] | [name] | โ
PASS | 0 | 0 | 0 | 0 |
### Issues Found - Detailed Description (ALWAYS shown when issues exist)
#### Unit: [subtask-2]
| # | Severity | Description | File:Line | Code Context | Why It Matters | Recommendation |
|---|----------|-------------|-----------|--------------|----------------|----------------|
| 1 | CRITICAL | Race condition | handler.go:45 | `h.counter++` not thread-safe | Corrupts shared state | Use sync.Mutex |
| 2 | HIGH | Unchecked error | repo.go:123 | `result, _ := r.db.Query()` | Silent failures | Handle error |
| 3 | HIGH | SQL injection | query.go:89 | `fmt.Sprintf("...%s", input)` | Security breach | Parameterized query |
### Issue-Level Validation (REQUIRED after fixes are applied)
#### Unit: [subtask-2]
| # | Severity | Description | File:Line | Fix Applied | Status | Evidence |
|---|----------|-------------|-----------|-------------|--------|----------|
| 1 | CRITICAL | Race condition in concurrent handler | handler.go:45 | Added mutex lock around shared state | โ
RESOLVED | race_test.go passes |
| 2 | HIGH | Unchecked error from DB query | repo.go:123 | Added error check with rollback | โ
RESOLVED | Error path tested |
| 3 | HIGH | SQL injection vulnerability | query.go:89 | Used parameterized query | โ
RESOLVED | Security test added |
#### Unit: [subtask-3] (if applicable)
| # | Severity | Description | File:Line | Fix Applied | Status | Evidence |
|---|----------|-------------|-----------|-------------|--------|----------|
| 1 | HIGH | Missing input validation | api.go:34 | Added validation middleware | โ
RESOLVED | Fuzz test passes |
### Overall Summary by Severity
| Severity | Found | Resolved | Remaining | Action |
|----------|-------|----------|-----------|--------|
| Critical | [N] | [N] | 0 | Fixed |
| High | [N] | [N] | 0 | Fixed |
| Medium | [N] | [N] | 0 | TODO added |
| Low | [N] | - | [N] | TODO added |
CodeRabbit Skip Scenarios (ONLY VALID PATHS)
โ CodeRabbit can ONLY be skipped in these specific scenarios. Any other skip is a VIOLATION.
| Scenario | Record As | Next Step | Why Valid |
|---|---|---|---|
| CLI not installed, user explicitly declines install | SKIPPED (not installed, user declined) | Step 8 | User was asked and chose not to install |
| Installation failed after attempt, user skips | SKIPPED (installation failed) | Step 8 | Technical failure, user informed |
| Authentication failed after attempt, user skips | SKIPPED (auth failed) | Step 8 | Technical failure, user informed |
| Environment doesn't support (CI/container) | SKIPPED (unsupported environment) | Step 8 | Technical limitation |
โ INVALID SKIP SCENARIOS (FORBIDDEN):
| Invalid Scenario | Why FORBIDDEN | Required Action |
|---|---|---|
| CLI installed but "skipped for speed" | Installed = MANDATORY | Run CodeRabbit |
| CLI installed but "Ring reviewers passed" | Complementary tools, both required | Run CodeRabbit |
| CLI not installed, no prompt shown | MUST ask user about installation | Show installation prompt |
| Silent skip without user interaction | All skips require explicit user choice | Ask user |
โ NON-NEGOTIABLE: When CodeRabbit CLI IS installed and authenticated, execution is MANDATORY - it CANNOT be skipped under any circumstance.
Step 8: Display Accumulated Findings & Prepare Success Output
โ BEFORE generating success output, MUST display accumulated CodeRabbit findings.
Step 8.1: Display Accumulated CodeRabbit Findings
IF .coderabbit-findings.md exists:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ CODERABBIT FINDINGS - ACCUMULATED DURING REVIEW โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ The following issues were identified by CodeRabbit during the โ
โ review process. Review before proceeding to commit. โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Display contents of .coderabbit-findings.md
โ Show summary table:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ CODERABBIT FINDINGS SUMMARY โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ | Severity | Count | Status | โ
โ |----------|-------|--------| โ
โ | Critical | [N] | [pending/fixed] | โ
โ | High | [N] | [pending/fixed] | โ
โ | Medium | [N] | [pending/fixed] | โ
โ | Low | [N] | [pending/fixed] | โ
โ โ
โ Total Issues: [N] | Fixed: [N] | Pending: [N] โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Ask user:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ ACTION REQUIRED โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ [N] CodeRabbit issues are pending. What would you like to do? โ
โ โ
โ (a) Fix all pending issues now (dispatch implementation agent)โ
โ (b) Review and fix issues one-by-one (interactive mode) โ
โ (c) Acknowledge and proceed to commit (issues documented) โ
โ โ
โ Note: Choosing (c) will include findings file in commit for โ
โ tracking. Issues remain documented for future fixing. โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
IF user selects (a) Fix all issues:
โ Dispatch implementation agent with ALL pending issues from findings file
โ After fixes, update .coderabbit-findings.md (mark issues as FIXED)
โ Re-run CodeRabbit validation for affected files
โ Loop back to Step 8.1 to display updated findings
IF user selects (b) Interactive mode (one-by-one):
โ Go to Step 8.1.1 (Interactive Issue Review)
IF user selects (c) Acknowledge and proceed:
โ Record: "CodeRabbit issues acknowledged by user"
โ Include .coderabbit-findings.md in commit (for audit trail)
โ Proceed to Step 8.2 (Success Output)
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Step 8.1.1: Interactive Issue Review (One-by-One)
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
issues_to_fix = []
issues_to_skip = []
FOR EACH issue IN pending_issues (ordered by severity: CRITICAL โ HIGH โ MEDIUM โ LOW):
Display:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ ISSUE [current]/[total] - [SEVERITY] โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Unit: [unit.id] - [unit.name] โ
โ File: [file:line] โ
โ โ
โ Description: โ
โ [issue description] โ
โ โ
โ Code Context: โ
โ [code snippet around the issue] โ
โ โ
โ Why it matters: โ
โ [explanation of impact] โ
โ โ
โ Recommendation: โ
โ [suggested fix] โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ What would you like to do with this issue? โ
โ โ
โ (f) Fix this issue โ
โ (s) Skip this issue (acknowledge) โ
โ (a) Fix ALL remaining issues โ
โ (k) Skip ALL remaining issues โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
IF user selects (f) Fix:
โ Add to issues_to_fix list
โ Continue to next issue
IF user selects (s) Skip:
โ Add to issues_to_skip list
โ Continue to next issue
IF user selects (a) Fix ALL remaining:
โ Add current + all remaining to issues_to_fix list
โ Break loop
IF user selects (k) Skip ALL remaining:
โ Add current + all remaining to issues_to_skip list
โ Break loop
AFTER loop completes:
Display summary:
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ INTERACTIVE REVIEW COMPLETE โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ โ
โ Issues to fix: [N] โ
โ [list of issues selected for fixing] โ
โ โ
โ Issues to skip: [N] โ
โ [list of issues selected to skip] โ
โ โ
โ Proceed with this selection? (y/n) โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
IF user confirms (y):
IF issues_to_fix.length > 0:
โ Dispatch implementation agent with ONLY issues_to_fix
โ After fixes, update .coderabbit-findings.md:
- Mark fixed issues as FIXED
- Mark skipped issues as ACKNOWLEDGED
โ Re-run CodeRabbit validation for affected files
โ Loop back to Step 8.1
ELSE:
โ All issues skipped/acknowledged
โ Proceed to Step 8.2 (Success Output)
IF user cancels (n):
โ Return to Step 8.1 main prompt
ELSE (no findings file exists):
โ CodeRabbit was skipped or found no issues
โ Proceed directly to Step 8.2 (Success Output)
Step 8.2: Generate Success Output
Generate skill output:
## Review Summary
**Status:** PASS
**Unit ID:** [unit_id]
**Iterations:** [review_state.iterations]
## Issues by Severity
| Severity | Count |
|----------|-------|
| Critical | 0 |
| High | 0 |
| Medium | 0 |
| Low | [count] |
| Cosmetic | [count] |
## Reviewer Verdicts
| Reviewer | Verdict | Issues |
|----------|---------|--------|
| code-reviewer | โ
PASS | [count] |
| business-logic-reviewer | โ
PASS | [count] |
| security-reviewer | โ
PASS | [count] |
## Low/Cosmetic Issues (TODO/FIXME added)
[list with file locations]
## CodeRabbit Findings
**Findings File:** .coderabbit-findings.md
**Total Issues Found:** [N]
**Issues Fixed:** [N]
**Issues Acknowledged:** [N]
**Status:** [ALL_FIXED | ACKNOWLEDGED | NO_ISSUES]
## Handoff to Next Gate
- Review status: COMPLETE
- All blocking issues: RESOLVED
- Reviewers passed: 3/3
- CodeRabbit findings: [status]
- Ready for Gate 5 (Validation): YES
Step 9: Escalate - Max Iterations Reached
Generate skill output:
## Review Summary
**Status:** FAIL
**Unit ID:** [unit_id]
**Iterations:** [max_iterations] (MAX REACHED)
## Issues by Severity
| Severity | Count |
|----------|-------|
| Critical | [count] |
| High | [count] |
| Medium | [count] |
## Unresolved Issues
[list all Critical/High/Medium still open]
## Reviewer Verdicts
| Reviewer | Verdict |
|----------|---------|
| code-reviewer | [PASS/FAIL] |
| business-logic-reviewer | [PASS/FAIL] |
| security-reviewer | [PASS/FAIL] |
## Handoff to Next Gate
- Review status: FAILED
- Unresolved blocking issues: [count]
- Ready for Gate 5: NO
- **Action Required:** User must manually resolve issues
โ ESCALATION: Max iterations (3) reached. Blocking issues remain.
Pressure Resistance
See dev-team/skills/shared-patterns/shared-pressure-resistance.md for universal pressure scenarios.
| User Says | Your Response |
|---|---|
| "Skip review, code is simple" | "Simple code can have security issues. Dispatching all 3 reviewers." |
| "Just run code-reviewer" | "All 3 reviewers run in parallel. No time saved by skipping." |
| "Fix later, merge now" | "Blocking issues (Critical/High/Medium) MUST be fixed before Gate 5." |
Anti-Rationalization Table
See dev-team/skills/shared-patterns/shared-anti-rationalization.md for universal anti-rationalizations.
Gate 4-Specific Anti-Rationalizations
| Rationalization | Why It's WRONG | Required Action |
|---|---|---|
| "Run reviewers one at a time" | Sequential = slow. Parallel = 3x faster. | Dispatch all 3 in single message |
| "Skip security for internal code" | Internal code can have vulnerabilities. | Include security-reviewer |
| "Critical issue is false positive" | Prove it with evidence, don't assume. | Fix or provide evidence |
| "Low issues don't need TODO" | TODOs ensure issues aren't forgotten. | Add TODO comments |
| "2 of 3 reviewers passed" | Gate 4 requires ALL 3. 2/3 = 0/3. | Re-run ALL 3 reviewers |
| "MEDIUM is not blocking" | MEDIUM = MUST FIX. Same as CRITICAL/HIGH. | Fix MEDIUM issues NOW |
Execution Report Format
## Review Summary
**Status:** [PASS|FAIL|NEEDS_FIXES]
**Unit ID:** [unit_id]
**Duration:** [Xm Ys]
**Iterations:** [N]
## Issues by Severity
| Severity | Count |
|----------|-------|
| Critical | [N] |
| High | [N] |
| Medium | [N] |
| Low | [N] |
## Reviewer Verdicts
| Reviewer | Verdict |
|----------|---------|
| code-reviewer | โ
/โ |
| business-logic-reviewer | โ
/โ |
| security-reviewer | โ
/โ |
## CodeRabbit External Review (MANDATORY if installed, Optional to install)
**Status:** [PASS|ISSUES_FOUND|SKIPPED|NOT_INSTALLED]
**Validation Mode:** [SUBTASK-LEVEL|TASK-LEVEL]
**Units Validated:** [N]
**Units Passed:** [N]/[N]
**Issues Found:** [N]
**Issues Resolved:** [N]/[N]
### Per-Unit Results (if subtask-level)
| Unit ID | Status | Critical | High | Medium | Low |
|---------|--------|----------|------|--------|-----|
| [subtask-1] | โ
PASS | 0 | 0 | 0 | 1 |
| [subtask-2] | โ
FIXED | 0 | 0 | 0 | 0 |
### Issue-Level Validation (REQUIRED when issues were fixed)
| Unit | # | Severity | Description | Fix Applied | Status | Evidence |
|------|---|----------|-------------|-------------|--------|----------|
| subtask-2 | 1 | CRITICAL | Race condition | Mutex added | โ
RESOLVED | Test passes |
| subtask-2 | 2 | HIGH | Unchecked error | Error handling added | โ
RESOLVED | Test passes |
## Handoff to Next Gate
- Review status: [COMPLETE|FAILED]
- Blocking issues: [resolved|N remaining]
- CodeRabbit: [PASS|SKIPPED|N issues acknowledged]
- CodeRabbit validation: [N]/[N] units passed
- Ready for Gate 5: [YES|NO]
Repository
LerianStudio
Author
LerianStudio/ring/default/skills/requesting-code-review
25
Stars
1
Forks
Updated5d ago
Added1w ago