sampx/wsf-intel
skills/wsf-intel/SKILL.md
Query, inspect, or refresh codebase intelligence files in .planning/intel/
$ install --global
skillsauthnpx skillsauth add sampx/agent-tools wsf-intelInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 11, 2026, 4:21 AM126.0s1 file scanned
SKILL.md
- name:
- wsf-intel
- description:
- Query, inspect, or refresh codebase intelligence files in .planning/intel/
- argument-hint:
- [query <term>|status|diff|refresh]
- read:
- true
- bash:
- true
- task:
- true
STOP -- DO NOT READ THIS FILE. You are already reading it. This prompt was injected into your context by Claude Code's command system. Using the Read tool on this file wastes tokens. Begin executing Step 0 immediately.
Step 0 -- Banner
Before ANY tool calls, display this banner:
WSF > INTEL
Then proceed to Step 1.
Step 1 -- Config Gate
Check if intel is enabled by reading .planning/config.json directly using the Read tool.
DO NOT use the wsf-tools config get-value command -- it hard-exits on missing keys.
- Read
.planning/config.jsonusing the Read tool - If the file does not exist: display the disabled message below and STOP
- Parse the JSON content. Check if
config.intel && config.intel.enabled === true - If
intel.enabledis NOT explicitlytrue: display the disabled message below and STOP - If
intel.enabledistrue: proceed to Step 2
Disabled message:
WSF > INTEL
Intel system is disabled. To activate:
node /Users/sam/coding/wopal/wopal-workspace/.wopal/wsf/bin/wsf-tools.cjs config-set intel.enabled true
Then run /wsf-intel refresh to build the initial index.
Step 2 -- Parse Argument
Parse $ARGUMENTS to determine the operation mode:
| Argument | Action |
|----------|--------|
| query <term> | Run inline query (Step 2a) |
| status | Run inline status check (Step 2b) |
| diff | Run inline diff check (Step 2c) |
| refresh | Spawn intel-updater agent (Step 3) |
| No argument or unknown | Show usage message |
Usage message (shown when no argument or unrecognized argument):
WSF > INTEL
Usage: /wsf-intel <mode>
Modes:
query <term> Search intel files for a term
status Show intel file freshness and staleness
diff Show changes since last snapshot
refresh Rebuild all intel files from codebase analysis
Step 2a -- Query
Run:
node /Users/sam/coding/wopal/wopal-workspace/.wopal/wsf/bin/wsf-tools.cjs intel query <term>
Parse the JSON output and display results:
- If the output contains
"disabled": true, display the disabled message from Step 1 and STOP - If no matches found, display:
No intel matches for '<term>'. Try /wsf-intel refresh to build the index. - Otherwise, display matching entries grouped by intel file
STOP after displaying results. Do not spawn an agent.
Step 2b -- Status
Run:
node /Users/sam/coding/wopal/wopal-workspace/.wopal/wsf/bin/wsf-tools.cjs intel status
Parse the JSON output and display each intel file with:
- File name
- Last
updated_attimestamp - STALE or FRESH status (stale if older than 24 hours or missing)
STOP after displaying status. Do not spawn an agent.
Step 2c -- Diff
Run:
node /Users/sam/coding/wopal/wopal-workspace/.wopal/wsf/bin/wsf-tools.cjs intel diff
Parse the JSON output and display:
- Added entries since last snapshot
- Removed entries since last snapshot
- Changed entries since last snapshot
If no snapshot exists, suggest running refresh first.
STOP after displaying diff. Do not spawn an agent.
Step 3 -- Refresh (Agent Spawn)
Display before spawning:
WSF > Spawning intel-updater agent to analyze codebase...
Spawn a Task:
Task(
description="Refresh codebase intelligence files",
prompt="You are the wsf-intel-updater agent. Your job is to analyze this codebase and write/update intelligence files in .planning/intel/.
Project root: ${CWD}
wsf-tools path: /Users/sam/coding/wopal/wopal-workspace/.wopal/wsf/bin/wsf-tools.cjs
Instructions:
1. Analyze the codebase structure, dependencies, APIs, and architecture
2. Write JSON intel files to .planning/intel/ (stack.json, api-map.json, dependency-graph.json, file-roles.json, arch-decisions.json)
3. Each file must have a _meta object with updated_at timestamp
4. Use wsf-tools intel extract-exports <file> to analyze source files
5. Use wsf-tools intel patch-meta <file> to update timestamps after writing
6. Use wsf-tools intel validate to check your output
When complete, output: ## INTEL UPDATE COMPLETE
If something fails, output: ## INTEL UPDATE FAILED with details."
)
Wait for the agent to complete.
Step 4 -- Post-Refresh Summary
After the agent completes, run:
node /Users/sam/coding/wopal/wopal-workspace/.wopal/wsf/bin/wsf-tools.cjs intel status
Display a summary showing:
- Which intel files were written or updated
- Last update timestamps
- Overall health of the intel index
Anti-Patterns
- DO NOT spawn an agent for query/status/diff operations -- these are inline CLI calls
- DO NOT modify intel files directly -- the agent handles writes during refresh
- DO NOT skip the config gate check
- DO NOT use the wsf-tools config get-value CLI for the config gate -- it exits on missing keys
Related Skills
sampx/ellamaka-config
tools
VerifiedTrustedCommunity
Configure ellamaka, a fork of OpenCode with wopal-space mode. MUST use for any task about ellamaka config, agent frontmatter, permission rules, model/provider selection, formatter settings, config loading order, or why config changes are ignored. Trigger on requests about ellamaka or opencode config files, agent permission overrides, restricting subagents, custom/plugin tool permissions (e.g. wopal_task_*), disabling tools, configuring providers or models, formatter setup, config precedence or layering, or debugging settings that do not take effect. Use this skill even when the user says "opencode" if the actual runtime, config path, or behavior is ellamaka. Prefer this skill whenever the answer depends on the difference between ellamaka and upstream opencode, including wopal-space config loading, plugin tool permissions, or agent frontmatter precedence.
1SKILL.mdUpdated May 31, 2026
sampx/df-plan-review
development
VerifiedTrustedCommunity
Plan quality verification for dev-flow. Goal-backward analysis ensures plans WILL achieve their stated goal before execution burns context. ⚠️ MUST use when: (1) Reviewing Plan quality before approve (2) Wopal completes Plan writing and needs quality gate (3) User asks to "check plan", "verify plan", "review plan" (4) Plan enters planning status and needs pre-execution validation 🔴 Trigger automatically when Plan is ready for review, even if user doesn't explicitly say "review". Agent: rook (read-only verification subagent) Mode: verification, not execution
1SKILL.mdUpdated May 31, 2026
sampx/df-implement-review
development
VerifiedTrustedCommunity
Review implementation results for goal achievement and code quality. Supports both Plan-backed review and planless diff review. ⚠️ MUST use when: (1) Wopal delegates rook to review fae implementation output, (2) Prompt contains "review_type: implementation", (3) Prompt contains changed code file list or Plan path + implementation scope, (4) Any code review request from Wopal. 🔴 Trigger even when user does not explicitly mention "review" if the task involves verifying implementation results. This skill is rook-exclusive (only rook agent can load it).
1SKILL.mdUpdated May 31, 2026
sampx/agents-collab
tools
VerifiedTrustedCommunity
Foundation rules for how Wopal collaborates with sub-agents such as fae and rook. ⚠️ MUST load before ANY delegation — covers delegation tool APIs, task lifecycle, notifications, status handling, and recovery. 🔴 Trigger: "delegate", "let fae implement", "fae task", "rook review", "check task status", "cancel task", "abort task", "agent collaboration", "委派", "让 fae 执行", "fae 任务", "rook 审查", "检查状态", or any intent to hand work to a sub-agent. 🔴 Never delegate without loading this skill first. Skipping it is serious negligence. Note: this skill does not include workflow-specific prompt templates such as dev-flow templates. Those belong to the corresponding workflow skills.
1SKILL.mdUpdated May 31, 2026