devflow — Blueprint

Architecture

One marketplace, two plugins, zero coupling between them

Marketplace

devflow

kwiercioch-okicode/devflow
Entry point for plugin discovery

Plugin — df

SDLC Workflow

10 commands · 7 scripts · 5 hooks
plan → execute → commit → review → ship
Haiku triage · 68 E2E tests · relay-driven Jira ops

Plugin — cs

Config Setup

3 commands · scanner · compositor
Generate & maintain .claude/ config

Layer

Commands

/df:* entry points
Thin dispatchers

Layer

Scripts

JS prepare scripts
Pre-compute → JSON

Layer

Hooks

Deterministic guards
Zero LLM involvement

Layer

Shared Lib

git.js · discovery.js
Node built-ins only

Ship Pipeline

Full SDLC pipeline from Jira ticket to pull request - Haiku triage routes to the right model, relay handles all Jira ops post-completion

📋

Plan

/df:plan

⚡

Execute

/df:execute

💾

Commit

/df:commit

🔍

Review

/df:review

⛔

Verdict Gate

.devflow/verdict.json

🚀

Pull Request

/df:pr

Jira SDLC Pipeline

Ticket to PR - fully automated. Jira webhook triggers Claude, relay handles all Jira ops post-completion.

🔔

Webhook

POST /webhook

🧠

Triage

haiku

📋

Plan

sonnet / opus

👤

Approve

human in Jira

⚡

Implement

sonnet (100 turns)

🔍

Review

5-dim code review

🚀

PR

gh pr create

📡

Jira Update

relay posts + transitions

15min plan timeout | 60min impl timeout | 68 E2E tests | 4 endpoints | session resume via Jira comment

Config Pipeline

Lifecycle of .claude/ configuration - from generation to continuous improvement

🔧

Generate

/cs:init

🔄

Sync

/cs:sync

📚

Learn

.claude/learnings/

🌾

Harvest

/cs:harvest

🏥

Diagnose

/cs:doctor

Prepare Script Pattern

LLM never parses raw git output — scripts pre-compute everything into JSON

01

Command invoked

User calls /df:review
Command locates prepare script
in ~/.claude/plugins/

→

02

Script executes

review-prepare.js runs
Parses git diff, discovers
dimensions, maps files

→

03

JSON output

Structured manifest written
to temp file. Changed files,
hunks, dimension assignments

→

04

LLM consumes

Reads clean JSON. No parsing.
No hallucinated git data.
Deterministic foundation.

Guardrails

Each guardrail has an enforcement mechanism and a source - click any card for details

hookplugin

Branch Protection

Blocks git commit, push, and merge on protected branches (main, master, staging)

hookplugin

Worktree Guard

Detects active worktrees at session start, injects warning to work in .worktrees/ directory

hookplugin

Review Gate

Blocks PR creation unless review verdict exists and has no critical/high findings

hookskillplugin

Verdict Bridge

Review writes verdict JSON, hook reads it before PR. Bridges LLM review with deterministic gate.

hookplugin

Secrets Guard

Blocks reading .env, *.pem, *.key, credentials.json and similar files. Blocks bash commands that expose secrets.

hookskillplugin

Test First

Hook reminds on production file edit. Skill defines the TDD workflow: failing test before code.

hookplugin

OpenSpec Check

Reminds to create proposal when editing production code without active OpenSpec change.

CLAUDE.md.claude/rules/

Brainstorming First

Creative work must start with exploration: clarify intent, explore approaches, design before code.

CLAUDE.md.claude/rules/

Drift Check

After 3+ autonomous steps, re-read original request. Stop if scope shifted.

CLAUDE.md.claude/rules/

Self-Review

Re-read every changed file before done. Check for debug code, hardcoded values, edge cases.

CLAUDE.md.claude/rules/

Stop and Ask

Stop on: ambiguous requirements, API/schema changes, 2 failed approaches, scope growth.

CLAUDE.md.claude/rules/

Minimal Blast Radius

Touch only what the task requires. Note adjacent improvements separately, don't bundle.

CLAUDE.md.claude/rules/

Verify Before Done

Demonstrate it works: tests pass, behavioral diff, or build succeeds. Not done until verified.

CLAUDE.md.claude/rules/

Self-Learning

Capture corrections and discoveries to .claude/learnings/log.md. Harvest into skills/rules when 10+ ACTIVE entries accumulate.

hookplugin

/df:doctor

Verifies all guardrails are working. 11 checks, zero LLM.

CLAUDE.mdproject

Review Dimensions

Project-specific review dimensions. Generated by /cs:init, discovered by /df:review.

CLAUDE.mdproject

Domain Invariants

Business rules: state machines, tenant isolation, entity lifecycle. Generated by /cs:init per project.

Commands

df: plugin — SDLC workflow | cs: plugin — config generation

🌿

/df:worktree

Create & manage worktrees

📋

/df:plan

Structured implementation plan

⚡

/df:execute

Wave-based plan execution

💾

/df:commit

Smart commit + style detection

🔍

/df:review

Multi-dimension code review

🚀

/df:pr

Auto PR description

🏷️

/df:version

Semver + changelog

📦

/df:ship

Full SDLC pipeline + Haiku triage + relay-driven Jira ops

🩺

/df:doctor

Guardrails health check

🎫

/df:jira

Jira lifecycle: fetch, plan, results, transitions

🔧

/cs:init

Generate .claude/ config

🔄

/cs:sync

Sync config with codebase

🌾

/cs:harvest

Promote learnings to skills/rules

🏥

/cs:doctor

Diagnose .claude/ health

Install

/plugin marketplace add kwiercioch-okicode/devflow /plugin install df@devflow /plugin install cs@devflow