cluster: action-scoped modify discipline + /idd-clarify unattended auto-defer (#150 + #137)

[kiki830621]

Cluster PR — 2 related issues shipped together(per IDD cluster-PR mode, batch-and-cluster.md)。

Refs #150 — action-scoped modify discipline (v2.73.0)

Codify 7-category action taxonomy(state-field-update / bounded-section-replace / audit-block-append / inline-replace-before-publish / verbatim-preserve / append-only / free-rewrite)as plugin-level rule。 Every modify-action SHALL declare scope category;undeclared SHALL REFUSE。 Actor-identity-independent enforcement(no AI vs user exemption)。 Path C gate-logic authoritative_source resolution generalized across 4 gate sites(idd-close / idd-verify / idd-update / idd-implement)。

BREAKING:/idd-edit --replace requires explicit --scope whole-comment OR --section <heading> flag;verbatim-preserve guard refuses modifications to non-OWNER non-bot user comments unless --override-user-content + --reason。

Spec: openspec/specs/append-vs-modify-discipline/spec.md(289 lines)。 Diagnosis comment: #issuecomment-4529711172。

Refs #137 — /idd-clarify Step 4.8.A unattended-mode auto-defer (v2.74.0)

Path D(per /spectra-discuss 2026-05-25 + user explicit pick post #150 reframe)。 Reuse existing deferred enum + strict reason literal unattended-auto-Step-4.6-deferred cited from rules/append-vs-modify.md § Reason pattern registry(single source of truth)。

• /idd-clarify Step 4.8.A:detect unattended(no-TTY OR IDD_ALL_UNATTENDED=1)+ write deferred rows with registry-cited reason instead of surfaced
• /idd-diagnose Step 0.5:per-row scan,dot-escaped anchored regex match → proceed-with-warn(audit line);non-match → preserve REFUSE(legacy backward-compat)
• /idd-all Phase 6:final report scan + surface auto-deferred rows to「Action items (require human review)」section

Non-BREAKING(legacy deferred rows behavior unchanged)。

Specs(NEW greenfield,retroactive #135 + #137 codification):

• openspec/specs/idd-clarify/spec.md(7 SHALL requirements)
• openspec/specs/idd-diagnose-clarity-gate/spec.md(7 SHALL requirements)

Diagnosis: #issuecomment-4530594011。 Plan: #issuecomment-4530620614。

Cluster context

• Why cluster:[META][unattended] Clarity Surface annotation interaction contract with /loop, /idd-all (sister concern from #135) #137 直接 activates #150 state-field-update category + authoritative_source Path C pattern;同 PR review 一起 verify。
• Why this commit shape:single commit cleanly separable by Refs #N cross-link per IDD discipline。
• Close strategy:cluster mode /idd-close #137 #150 post-merge,每 issue 獨立 closing summary。

Sister concerns(已 file,不在本 PR scope)

• [Bug] Step 0.8 commit-body auto-close trap protection gap (direct-commit path) #151 — Step 0.8 commit-body auto-close trap protection gap(P2 orthogonal,routing TBD)
• [chore] git hygiene — 3 pre-existing dirty items pollute cluster PRs (surfaced via #137 tangential sweep) #152 — git hygiene 3 pre-existing dirty items(chore tangential,P3,resolved in separate triage)

Checklist

• Diagnose(both [META][unattended] Clarity Surface annotation interaction contract with /loop, /idd-all (sister concern from #135) #137 + [META] Codify append-vs-modify discipline as plugin-level principle #150)
• Plan(both — [META] Codify append-vs-modify discipline as plugin-level principle #150 via /spectra-propose;[META][unattended] Clarity Surface annotation interaction contract with /loop, /idd-all (sister concern from #135) #137 via /idd-plan EnterPlanMode approval gate)
• Implement(1 commit,cluster-PR mode)
• Verify(run /idd-verify --pr <N>)
• Verify-gated:post-verify PASS = ready for cluster close

---

Generated by /idd-implement cluster-PR mode。 Do NOT add a GitHub close trailer(Closes/Fixes/Resolves)— IDD discipline requires manual /idd-close #137 #150 after merge to enforce checklist gate + per-issue closing summaries。

[kiki830621]

Verify Report — PR #153 (cluster: #137 + #150)

Engine

5 general-purpose Agents (Claude reviewers, file-based output) + Codex (gpt-5.5 xhigh, run_in_background)

Aggregate

FAIL — 3 BLOCKING bugs + 5 MEDIUM findings + 5 LOW/follow-up findings

Scope coverage

PR body refs: #135 (parent) + #137 + #150 + #151 + #152
Verified scope: #137 + #150 (cluster primary issues; #151 + #152 are tangential sibling issues already filed,不在本 cluster 實作 scope)

---

BLOCKING — must fix before merge

B1. awk range collapses — ### Clarity Surface block extraction broken at 2 sites

Severity: P1 BLOCKING
Sources: agents:logic + agents:devils-advocate + codex (independently triple-confirmed via shell reproduction)
Sites:

• plugins/issue-driven-dev/skills/idd-diagnose/SKILL.md:98
• plugins/issue-driven-dev/skills/idd-all/SKILL.md:856

The pattern awk '/^### Clarity Surface/,/^### /' has start regex matching end regex (both literally start with ### ), so range collapses to just the heading line — all rows are lost. Empirically reproduced:

• SURFACED_COUNT reads 0 always
• DEFERRED_AUTO reads 0 always
• DEFERRED_LEGACY reads 0 always
• Gate silently passes regardless of actual row content

Impact: #137's auto-defer mechanism does not function. #135's hard-refuse gate (baseline) also silently bypassed for any issue with a Clarity Surface block.

Fix candidate (logic reviewer):

BLOCK=$(echo "$BODY" | awk '/^### Clarity Surface/{flag=1; print; next} flag && /^### /{flag=0} flag')

Apply identical fix at both sites.

B2. head -n -1 BSD/macOS incompatibility

Severity: P1 BLOCKING (regression on primary maintainer's platform)
Sources: agents:logic + agents:devils-advocate + codex
Site: plugins/issue-driven-dev/skills/idd-diagnose/SKILL.md:98

head -n -1 is GNU coreutils-only — macOS BSD head errors out (illegal line count -- -1). Maintainer runs Darwin per session context.

Fix: B1's awk rewrite naturally removes the head -n -1 dependency.

B3. /idd-edit --replace BREAKING is documentation-only

Severity: P1 BLOCKING (CHANGELOG promises BREAKING but skill doesn't enforce)
Source: codex
Site: plugins/issue-driven-dev/skills/idd-edit/SKILL.md Step 1 / Step 4

CHANGELOG [2.74.0] declares /idd-edit --replace BREAKING (requires --scope whole-comment OR --section <heading>),但實際 SKILL.md bash Step 1 (parse) + Step 4 (build new body):

• 沒 parse --scope flag
• 沒 parse --section flag
• 沒 refuse logic when neither flag present
• Step 4 --replace mode 仍是 whole-body overwrite without subsection-bound logic

Verbatim-preserve guard (author_association check) 同樣只在 SKILL.md prose 描述,Step 1/Step 4/Step 6 沒實際 bash check。

Fix: 在 Step 1 加 flag parsing + 在 Step 4 加 dispatch logic refuse + verbatim-preserve guard 加 author_association check in Step 2 (after fetch comment author info).

---

MEDIUM — non-blocking but worth noting

M1. [ ! -t 0 ] always true under Claude Bash tool — attended branch effectively dead code

Severity: P2 MEDIUM (doctrinal)
Source: agents:devils-advocate (DA-2,reproduced)

Step 4.8.A unattended detection uses [ ! -t 0 ] || [ -n "${IDD_ALL_UNATTENDED:-}" ]。 But Claude Code's Bash tool stdin is never a TTY → [ ! -t 0 ] always true → every /idd-clarify invocation through Claude routes to unattended branch。 The "attended mode" path (surfaced rows + AskUserQuestion downstream) is effectively dead code when orchestrated by Claude。

Mitigation options:

• (a) Switch detection to [ -n "${IDD_ALL_UNATTENDED:-}" ] only (env var explicit signal,no TTY heuristic)
• (b) Accept current behavior + document「Claude Bash tool 永遠走 unattended branch」as known limitation
• (c) Require IDD_INTERACTIVE_CLARIFY=1 env opt-in for attended mode

Recommend option (a) — explicit env var is more reliable signal than TTY heuristic (also fixes M2 / M3).

M2. IDD_ALL_UNATTENDED= (empty string) fails [ -n ] check

Severity: P3 LOW
Source: agents:devils-advocate (DA-6)

Spec wording「being set」ambiguous between「exported」vs「non-empty」。 If user does export IDD_ALL_UNATTENDED= (empty),[ -n "${IDD_ALL_UNATTENDED:-}" ] is false。 Subsumed by M1 fix (option (a) drops TTY heuristic;[ -n ... ] semantics preserved)。

M3. author_association ≠ OWNER can't distinguish AI from user in solo-owner repos

Severity: P2 MEDIUM
Source: agents:devils-advocate (DA-3)

/idd-edit verbatim-preserve guard uses author_association ≠ OWNER as the user-content marker。 But solo-owner repos: Claude (via gh CLI logged in as OWNER) posts comments — all comments authored by OWNER。 Guard cannot distinguish AI-authored (should be modifiable) from user-authored (should be protected)。 In multi-collaborator repos: guard works as designed。

Mitigation: clarify spec wording to「author_association ≠ OWNER 是 best-effort marker;solo-owner 場景需 user explicit --override-user-content 對所有 user-intent-distinguishable cases」+ documented limitation。

M4. spectra validate does NOT cover the 3 new main specs

Severity: P2 MEDIUM (acceptance-criteria gap)
Source: agents:devils-advocate (DA-1)

Requirements reviewer + plan acceptance said「spectra validate clean」passes,但 Devil's Advocate ran 4 forms of spectra validate — all reject positional <spec-name> as「Change not found」。 spectra validate covers openspec/changes/ only,not openspec/specs/。 The 3 new main specs (append-vs-modify-discipline + idd-clarify + idd-diagnose-clarity-gate) get NO validation。

Mitigation: clarify Plan acceptance criteria — spec syntax check is spectra show <spec-name> (Devil's Advocate confirmed renders correctly) OR manual review;spectra validate covers active changes only。

M5. Phase 4 ↔ Phase 6 wording drift

Severity: P3 LOW (doc consistency)
Source: agents:requirements + codex (independently confirmed)
Sites:

• openspec/specs/idd-diagnose-clarity-gate/spec.md:43 says「Phase 4 final report」
• Same file :99 + actual code in idd-all/SKILL.md:845 use「Phase 6」
• Stderr message in idd-diagnose/SKILL.md:131 says「Phase 4」

Plan referenced Phase 4 (legacy nomenclature from #135 design);實作落地 Phase 6 (current /idd-all skill numbering)。 4 sites drift。 Non-functional (just docs),fix in same PR per lead-minimal discipline。

---

LOW / FOLLOW-UP

L1. Inline literal embeddings vs strict "cite-only" claim (DA-4)

Severity: P3 LOW
Source: agents:devils-advocate

Spec wording「SKILL.md sites SHALL cite by reference,not by inline duplication」— but 3 SKILL.md sites contain 10+ inline literal embeddings (rather than cite-only via ${UNATTENDED_DEFER_REASON} bash variable or markdown cross-link)。 Pragmatic compromise (literal needed for grep visibility),但 wording-vs-reality gap exists。 Fix: relax spec wording to「cite for normative semantics,literal inline for grep audit visibility allowed if registry single-source kept」。

L2. Cluster scope undersold in Regression reviewer narrative (DA-5)

Severity: P3 LOW (cosmetic)
Source: agents:devils-advocate

Cluster commit Refs four issues (#150, #137, #151, #152),Regression framing「2 issues bundled」 undersells。 Cosmetic note,does not affect merge。

L3. Retroactive category labels gap on /idd-implement Step 5.7 + /idd-verify Phase 4/Step 5b

Severity: P3 FOLLOW-UP
Source: agents:requirements

grep "(category:" plugins/issue-driven-dev/skills/idd-implement/SKILL.md returns 0 for IC_R011 audit PATCH site at Step 5.7。 Same for /idd-verify Phase 4 / Step 5b。 #150 spec says「Action category labels SHALL be retroactively applied to existing skills」— 12 labels in 7 SKILL.md cover most but gap remains。 Fix in this PR for full retroactive consistency (cheap)。

L4. gh CLI failure-mode for verbatim-preserve guard not documented (DA-3 sub + security M2 cross)

Severity: P3 LOW (defensive depth)
Source: agents:security

Verbatim-preserve guard fetches author_association via gh api。 What if gh CLI fails (network / auth / old CLI)? Spec should specify fail-closed (refuse by default) vs fail-open (proceed without check)。 Recommendation: explicit fail-closed in spec wording。

L5. Spec example coverage — inline-replace-before-publish category has only 1 example

Severity: P3 LOW (spec self-consistency)
Source: codex

openspec/specs/append-vs-modify-discipline/spec.md Requirement #3 (Canonical 7-category enumeration normative) Scenario asks「definition + scope boundary + ≥ 2 worked example actions per category」。 inline-replace-before-publish has only 1 example listed in rule (/idd-close Step 3.5)。 Fix: add 2nd example or relax spec wording。

---

Scope Check (regression reviewer + codex)

• ✓ Cluster commit content traces to [META][unattended] Clarity Surface annotation interaction contract with /loop, /idd-all (sister concern from #135) #137 + [META] Codify append-vs-modify discipline as plugin-level principle #150 implementation
• ⚠ openspec/changes/idd-ic-r011-default-file/* deletion + rename to archive directory — Regression said OK (spectra archive housekeeping for prior [design] IC_R011 follow-up checkpoints should default to filing, not asking — past suggestions are disappearing into conversation #148/[docs] idd-verify Step 5b lacks canonical "Rule (SHALL/SHOULD)" framing — IC_R011 spec consistency gap #149 commit e5e05e1),Codex flagged as scope expansion not in [META][unattended] Clarity Surface annotation interaction contract with /loop, /idd-all (sister concern from #135) #137/[META] Codify append-vs-modify discipline as plugin-level principle #150 acceptance literal。 Verdict: in-scope housekeeping (per feedback_lead_minimal opportunistic cleanup),但 PR body 沒 explicit declare → 加 PR body note acknowledging the archive cleanup is justified mitigation。

Backward Compatibility Check (regression reviewer)

• ✓ Legacy deferred rows (no Reason field / non-registry reason) → still REFUSE per gate logic
• ✓ Pre-v2.71.0 issues without ### Clarity Surface block → silent proceed fallback intact
• ✓ /idd-edit --append and --prepend-note → unchanged behavior, no new flag required
• ⚠ BUT B1 (awk bug) means「still REFUSE」claim is FALSE — gate silently passes everything until awk fix lands

Process Gaps

(none — all 5 Agents produced findings, no Recovery Protocol triggered)

---

Recommended Disposition

FAIL — request changes。 Fix B1 + B2 + B3 + M5 in same PR per feedback_verify_fix_same_pr user preference。 Then re-run /idd-verify --pr 153。

M1/M2/M3/M4/L1/L4 → optional fix in same PR (recommended) or follow-up issue;L3/L5 → follow-up filing per IC_R011 (lower priority,won't fix in cluster scope)。

Fix order (依 dependency):

1. B1 + B2 fix (awk + head replacement at 2 sites) — single coherent fix
2. B3 fix (/idd-edit Step 1 flag parse + Step 4 dispatch + Step 2 author check)
3. M5 fix (Phase 4 → Phase 6 wording at 4 sites)
4. M1 optional (drop TTY heuristic — improves DA-2 reproducibility)
5. L3 optional (add 2 missing IC_R011 audit PATCH category labels)
6. Re-run verify

[kiki830621]

Verify Report R2 — PR #153 (cluster: #137 + #150)

Engine

⚠ DEGRADED — 5 reviewer Agents rate-limited 2× retries(Anthropic API server-side burst limit,not user usage)。 Coordinator self-review fallback per Step 2.5c。 Codex CLI still running background(no output yet within window)。 Quality lower than 6-AI ensemble baseline。

Process Gaps

• requirements: Agent rate-limited 2× → coordinator self-review (lower-quality, author of R2 fix has confirmation bias)
• logic: Agent rate-limited 2× → coordinator self-review (smoke-tested locally during R1 fix loop;edge cases manually reproduced)
• security: Agent rate-limited 2× → coordinator self-review (R1 security baseline preserved + R2 new code defensive checks added)
• regression: Agent rate-limited 2× → coordinator self-review (5 backward-compat scenarios verified;1 NEW regression surfaced — errata flow on user-authored comments)
• devils-advocate: Agent rate-limited 2× → coordinator self-DA (weakest self-review — same-author challenge is structurally weak;4 new findings surfaced including 1 severity upgrade)
• codex: still running background as of master post time;not included in R2 merge(would normally be 1 of 6 independent sources)

Aggregate

PASS-with-followups — all 3 R1 BLOCKING genuinely fixed in d643fc6;4 new findings (1 MEDIUM regression + 1 MEDIUM severity upgrade + 2 LOW edge cases) surfaced via self-DA。 Mergeable per IDD discipline if user accepts coordinator-fallback verify or wants to fix the 4 surfacings in-PR。

---

R1 BLOCKING fix verification

B1 + B2: awk range collapse + head -n -1 BSD incompat

✓ FIXED — coordinator smoke-tested in R1 fix loop on macOS BSD:

• Naive pattern: head: illegal line count -- -1
• New pattern: emits heading + 2 deferred rows + AUTO_DEFERRED count = 2 (correct)
• Applied at 3 sites consistently (idd-diagnose:98, idd-clarify:279, idd-all:856)

B3: /idd-edit --replace BREAKING runtime enforcement

✓ FIXED — Step 1 adds --scope / --section / --override-user-content / --reason flag parsing + refuse gate on --replace without scope;Step 2 adds gh api author_association fetch + bot allowlist + non-OWNER refuse + COMMENT_ID numeric validation (addresses R1 L1);Step 4 adds whole-comment vs section-bound dispatch with awk -v splice for section mode。

---

NEW R2 findings (from coordinator self-DA + logic edge cases)

F1 — --scope value (space form) parser incomplete

Severity: MEDIUM(severity upgrade from "noted in spec docstring")
Source: coordinator-self:logic + DA refutation

Step 1 docstring says --scope value (space form) "handled by caller's tokenizer" but no implementation exists。 Only --scope=value form actually works。 Workaround:user always uses = form OR add explicit --scope) SCOPE_FLAG="$2"; shift ;; parser。

Action: fix in this PR(small bash tweak)or document as limitation in SKILL.md。

F2 — grep -qF pre-flight + exact-line splice mismatch silent partial failure

Severity: LOW(severity confirmation;impact deeper than R1 noted)
Source: coordinator-self:logic + DA refutation

Step 4 --section pre-flight uses grep -qF "$SECTION_FLAG" (substring match)。 Splice uses $0 == section (exact-line match)。 Mismatch case:--section "## Foo" passes pre-flight if body has ## Foo Bar,but splice does zero replacement → user sees "successfully edited" but content unchanged。

Fix options: (a) grep -qFx line-anchored pre-flight,or (b) post-splice check if NEW_BODY == BACKUP_FILE: abort "section not found at exact-line"。

F3 — awk pattern false-detects ### Clarity Surface inside code fence

Severity: LOW(edge case)
Source: coordinator-self:DA new finding

Reproduction:

printf '```\n### Clarity Surface\n| foo |\n```\n\n### Real heading\n' | awk '/^### Clarity Surface/{flag=1; print; next} flag && /^### /{flag=0} flag'

Result: pattern matches inside code fence。 Risk:user pastes example annotation in issue body within code fence → false detection。 Mitigation:awk doesn't know markdown;preprocessor stripping code fences (similar to idd-issue Stage 1 multi-finding mode #14 pattern) would solve。

F4 — Errata flow regression on user-authored comments

Severity: MEDIUM
Source: coordinator-self:regression

/idd-comment --type=errata --target-comment=XXX auto-calls /idd-edit comment:XXX --prepend-note --reason=...。 R2 verbatim-preserve guard refuses if target comment author_association ≠ OWNER and non-bot。 If errata target is external-collaborator comment(uncommon but legitimate)→ guard refuse breaks errata flow。

Fix options:

• (a) /idd-comment errata flow detects non-OWNER target + auto-passes --override-user-content --reason="errata clarification per IDD discipline"
• (b) Spec explicitly carves out errata mode as exempt
• (c) Accept break + document in CHANGELOG migration note

---

R1 deferred findings (still deferred,not addressed in R2)

#	What	Disposition
M1	[ ! -t 0 ] always true under Claude Bash tool	doctrinal,follow-up issue if friction surfaces
M3	solo-owner repo author_association limitation	inline-acknowledged in R2 Step 2 refuse message
M4	spectra validate doesn't cover new specs	acceptance criteria typo,not code defect
L1	inline literal embeddings vs cite-only wording	spec wording could relax,low priority
L2	cluster Refs 4 issues not 2	cosmetic
L4	gh CLI failure-mode docs	R2 Step 2 implements fail-closed,docs implicit
L5	inline-replace-before-publish example count	rule wording could add example or relax spec

---

Per-issue summary

#137 — /idd-clarify Step 4.8 unattended contract

R2 status: FULLY addressed(7 Strategy items all confirmed via grep + manual inspect)
Affected by NEW findings: F1 (Step 1 parser),F3 (awk + code fence) — both edge case,non-blocking

#150 — Action-scoped modify discipline

R2 status: FULLY addressed(was PARTIALLY in R1 due to B3 doc-only + L3 missing labels;R2 closed both)
Affected by NEW findings: F2 (silent partial section splice),F4 (errata flow regression)

---

Recommended Disposition

PASS-with-followups。 User decision points:

1. Fix F1/F2/F3/F4 in same PR? ← 我建議 yes per feedback_verify_fix_same_pr — all 4 are small fixes
2. OR accept R2 + file F1/F2/F3/F4 as follow-up issues before merge?
3. OR wait for full 6-AI re-verify when rate limit cools(5-30 min hourly window)+ re-decide based on independent findings?

My recommendation:option 1 (fix in PR):

• F1: 3-line bash tweak (add --scope) SCOPE_FLAG="$2"; shift ;;)
• F2: 1-line change (-qF → -qFx)
• F3: defer (rare edge case + needs preprocessor design)
• F4: spec/SKILL.md note (carve out errata mode OR document workaround)

⏸ User decision needed。

⚠ Codex audit (appended post-master,critical revision)

Codex CLI finished after master post(timing window)。 Cross-model independent review caught what coordinator self-review MISSED due to confirmation bias(coordinator wrote the R2 fix bash + structural blindness)。

Codex verdict:R2 still FAIL — B3 NOT actually fixed

R1 Finding	Codex R2 verdict
B1 awk range collapse	✓ FIXED
B2 head -n -1 BSD	✓ FIXED
B3 /idd-edit enforcement	✗ NOT FIXED — parser FULLY BROKEN
M5 Phase wording	✓ FIXED
L3 retroactive labels	✓ FIXED

NEW R2 bugs from Codex(critical revision over coordinator self-review)

B3-NEW-1 CRITICAL (catastrophic data loss in documented happy path):

Step 1 parser --scope value (space form) sets SCOPE_FLAG="next" literal string — does NOT pick up next arg。 Same for --section,--body,--body-file。

• Documented positive example /idd-edit comment:NNN --replace --scope whole-comment --body "..." is BROKEN:
  • --scope sets SCOPE_FLAG="next" (literal)
  • --scope whole-comment second arg dropped
  • Validation [ "$SCOPE_FLAG" != "whole-comment" ] fires → refuse with "value 'next' not recognized"
  • Refuse fires on the CORRECT invocation pattern from CHANGELOG

B3-NEW-2 CATASTROPHIC:--body space form also broken。 --body "..." → BODY_INPUT=""(empty)。 If somehow user bypasses Step 1 refuse(e.g. --scope=whole-comment =-form),Step 4 NEW_BODY="$BODY_INPUT\n\n$AUDIT_MARKER" becomes only blank content + audit marker → silent data loss overwriting entire comment with empty content。

B3-NEW-3 LOGIC:Section replacement docstring claims "same-or-higher heading boundary"(uses SECTION_LEVEL count),but actual awk control flow in_section && /^#+ / { in_section=0 } stops at ANY heading regardless of level。 Replacing ## Foo section leaves orphan ### Foo-sub-1 subsections。

B3-NEW-4 DOC:Old usage example at SKILL.md:414 still shows /idd-edit --replace --body-file=... without required --scope — would refuse if user copies。

Codex did NOT miss

• Same coordinator self-DA finding F3 (awk + code fence)— Codex didn't surface this specific edge case
• Same finding F4 (errata flow regression)— Codex didn't surface;coordinator caught
• L2 (cluster scope undersold)— Codex confirmed PR body still says "2 issues" while listing 4

Revised R2 disposition

FAIL — B3 critical bugs(NEW-1 + NEW-2)mean documented happy path of /idd-edit --replace --scope whole-comment --body "..." either refuses or silently overwrites comment with empty content。 This is worse than R1(documentation-only)— it's runtime-broken。

Required R3 fix

Need to fix flag parser for all space-separated forms:

# Replace each shell-flag = expansion with positional shift:
while [[ $# -gt 0 ]]; do
    case "$1" in
        --append)               MODE="append" ;;
        --replace)              MODE="replace" ;;
        --prepend-note)         MODE="prepend-note" ;;
        --scope=*)              SCOPE_FLAG="${1#--scope=}" ;;
        --scope)                SCOPE_FLAG="$2"; shift ;;
        --section=*)            SECTION_FLAG="${1#--section=}" ;;
        --section)              SECTION_FLAG="$2"; shift ;;
        --override-user-content) OVERRIDE_USER="true" ;;
        --reason=*)             REASON_INPUT="${1#--reason=}"; ... ;;
        --reason)               REASON_INPUT="$2"; shift; ... ;;
        --body=*)               BODY_INPUT="${1#--body=}" ;;
        --body)                 BODY_INPUT="$2"; shift ;;
        --body-file=*)          BODY_INPUT="$(cat ${1#--body-file=})" ;;
        --body-file)            BODY_INPUT="$(cat $2)"; shift ;;
        *) ARG="$1" ;;  # positional COMMENT_ID
    esac
    shift
done

Plus B3-NEW-3 section boundary fix(use SECTION_LEVEL to constrain in_section /^#{1,SECTION_LEVEL} / regex)。 Plus old usage example at line 414 update。

Engine quality acknowledgement

Coordinator self-review confirmation bias is exactly what 6-AI ensemble + Devil's Advocate exists to catch。 R2 ran with N=1 independent source(Codex)+ 5 coordinator-self = degraded but caught the critical bug。 R3 should re-attempt full ensemble(rate limit will have cooled in ~30 min)to validate R3 fix。

[kiki830621]

Verify Report R3 — PR #153 (cluster: #137 + #150)

Engine

6-AI full ensemble(no rate limit this round)— 5 reviewer Agents + Codex independent。 Compared to R2 degraded(5 self-reviews + Codex landing late),R3 has full cross-source verification。

Aggregate

FAIL — R3 fix 5c62b38 addressed R2 Codex findings(B3-NEW-1+2 parser space-form / B3-NEW-3 section level / B3-NEW-4 docs all FIXED)but introduced 3 NEW CRITICAL bugs + 1 HIGH via fundamental parser pattern flaws。

R2 finding fix verification

R2 Finding	R3 verdict	Source confirmation
B3-NEW-1 --scope value parser	✓ FIXED	Logic + DA + Codex (smoke test passed)
B3-NEW-2 --body value empty	✓ FIXED	Logic + Codex (smoke BODY_INPUT=new body)
B3-NEW-3 section boundary level	✓ FIXED	Logic + DA + Codex (single-line splice works)
B3-NEW-4 doc consistency	✓ FIXED	Requirements + Codex (4 sites updated)

R3 DID fix what it claimed。

---

NEW R3 BLOCKING bugs(triple-confirmed)

C1 — INFINITE LOOP on trailing space-form flag

Severity:CRITICAL
Sources:Logic + DA(reproduced independently)

All 7 space-form flags(--scope / --section / --body / --body-file / --reason / --repo / --cwd)hang parser if used as last arg。 shift 2 silently fails when $#=1,$# doesn't decrement,while [[ $# -gt 0 ]] spins forever。 Verified via timeout 3 bash -c '...' → exit 124。

R3 author's inline NOTE comment lines 201-205 claims「downstream gate catches empty SCOPE_FLAG」— WRONG, loop never reaches gate。

Fix:explicit [ -z "${2:-}" ] && abort "--scope requires value" guard before each shift 2。

C2 — Flag value eats next flag

Severity:CRITICAL
Source:Logic

--replace --scope --body "x" → SCOPE_FLAG="--body"(takes next token,不檢查它是否 flag),subsequent validation fires「scope --body not recognized」 misdirecting user。

Fix:[[ "$2" == --* ]] && abort "--scope requires value, got flag $2" look-ahead check。

C3 — awk -v new_content="$BODY_INPUT" BREAKS on multi-line content

Severity:CRITICAL(triple-confirmed:Logic + DA + Codex independently reproduced)
Sources:Logic + DA + Codex

BSD awk(macOS native)rejects newlines in -v value:

awk: newline in string NEW FOO
second line... at source line 1

Section-replace primary use case IS multi-line markdown subsection content。 R3 fix DEAD ON ARRIVAL for realistic content。 R3 author smoke test used single-line BODY_INPUT="NEW Foo content here.",missed this。

Fix:rewrite section-splice。 Codex suggestion:awk 'getline new_content < body_file' BACKUP_FILE — write BODY_INPUT to temp file first then awk reads with getline。

H1 — --body-file=/missing/path silently produces empty BODY_INPUT

Severity:HIGH
Sources:Logic + DA

$(cat "${1#--body-file=}") swallows errors。 Combined with --replace --scope whole-comment,NEW_BODY = blank + audit marker → silent comment overwrite。 Step 5 preview gate mitigates but bypassable in batch mode + --yes-to-all(if ever added)。

Fix:[ -r "${1#--body-file=}" ] || abort "body-file not readable" pre-flight。

---

Carried-forward from R2(not addressed)

F4 — Errata flow regression on user-authored comments

Severity:MEDIUM
Source:DA(R2 finding,R3 didn't address)

/idd-comment --type=errata --target-comment=XXX auto-call /idd-edit comment:XXX --prepend-note --reason=... triggers new verbatim-preserve guard refuse if target非 OWNER。 Errata flow for external-collaborator comments breaks。

DA-5 — Plugin version bump missing

Severity:LOW
Source:DA

R3 changes bash logic significantly (+83 -31 in 1 file)。 plugin.json still 2.74.0。 CHANGELOG missing [2.74.1]/[2.74.2] patch entries even though SKILL.md cites these versions in 4+ places。

---

Confirmation-bias acknowledgement

R2 master:R2 fix → I missed critical bugs → Codex caught(post-master revision)
R3 master:R3 fix → I missed 3 MORE critical bugs → full ensemble caught

Pattern:I (coordinator-author of fix) consistently miss bugs in my own bash because I write narrow happy-path smoke tests。 Triple-independent 6-AI ensemble + Codex repeatedly catches what self-review can't see。

This is the IDD discipline working as designed — but also evidence that B3 enforcement implementation is genuinely hard and my 3 attempts each introduced new bugs。

---

R3 Disposition + R4 decision space

Path (a) — R4 fix loop(more code,risks more bugs)

Per R3 Logic + Codex prescription:

1. Add [ -z "${2:-}" ] + [[ "$2" == --* ]] guards before all 7 shift 2 arms
2. Replace awk -v new_content with temp-file getline pattern
3. Add [ -r ] check on --body-file
4. Address F4(/idd-comment errata flow auto-pass --override-user-content)
5. Bump plugin.json + CHANGELOG [2.74.2]

Risk:R4 might introduce R4 bugs(R3 introduced R3 bugs — same pattern)。 Time:30-60 min。

Path (b) — Revert R3 only

Restore Step 1/2/4 to R2 state(documented BREAKING + bash partial enforcement)。 R2 had:

• for ARG_I parser only handled = form
• --replace refuse gate still fires when neither flag present
• Section splice with single-line happy path only

R2 state was "broken-but-no-infinite-loop"。 R3 state introduced infinite loop。 R3 is strictly worse than R2。

Path (c) — Revert ALL B3 enforcement(R1 + R3 idd-edit changes)

Restore idd-edit Step 1/2/4 to pre-#150 state(pre-R1 commit 5e3e263)。 CHANGELOG [2.74.0] B3 wording changes from「runtime enforced」 to「documented BREAKING + AI/user discipline + future tooling enforcement」。 File B3 enforcement as proper follow-up issue with explicit design discussion(parser pattern + multi-line body handling + integration with /idd-comment errata flow)。

This is honest:3 attempts to add enforcement in bash failed。 Either(i)bash is wrong layer for this enforcement(maybe CLI Rust impl as future tool)or(ii)needs proper standalone proposal with multi-line awk handling designed upfront,not incrementally。

Ship R1 awk fix + M5 + L3 — those work。 #137 + #150 substance ships intact。 B3 stays as principle in #150 but enforcement is honest「future tooling」。

My recommendation:Path (c)

Per feedback_lead_minimal + 3-iteration failure pattern + Codex independent agreement that section-replace path needs structural rewrite(not patch):

• R4 fix path is likely to introduce R4 bugs based on R1/R2/R3 evidence
• B3 enforcement is separable scope from [META][unattended] Clarity Surface annotation interaction contract with /loop, /idd-all (sister concern from #135) #137 + [META] Codify append-vs-modify discipline as plugin-level principle #150 core acceptance
• Ship the work that's solid + honest defer the work that isn't

⏸ Path (a)/(b)/(c) — user decision。

[kiki830621]

Verify Report R4 — PR #153 (cluster: #137 + #150)

Engine

Full 6-AI ensemble(no rate limit)— 4 Reviewer Agents PASS + DA timeout sentinel + Codex independent。

Process Gaps

• devils-advocate: timeout sentinel(150s polling window;4 substantive reviewers each took 4-17 min,exceeded window before DA could read sibling findings)。 Mitigation:4 substantive sources + Codex provide cross-source convergence on key findings — DA absence partially compensated by triple-confirmed agreement on R4-M1。

Aggregate

PASS-with-required-cleanup — R4 revert is clean,R1 work intact,but 3-way spec/CHANGELOG/impl drift surfaced + 1 NEW rule self-inconsistency from Codex。 Mergeable after small R5 cleanup loop。

R3 finding fix verification

R3 Finding	R4 verdict	Source confirmation
C1 INFINITE LOOP (parser trailing flag)	✓ FIXED via revert	Logic + Codex
C2 flag-value-eat	✓ FIXED via revert	Logic + Codex
C3 multi-line awk-v BREAK	✓ FIXED via revert	Logic + Codex
H1 --body-file silent empty	✓ FIXED via revert	Logic + Codex
F4 errata flow regression(carried from R2)	✓ NATURALLY RESOLVED via revert(verbatim guard removed)	Regression + Codex

R1 work intact verification(triple-confirmed)

R1 Work	R4 verdict	Source
B1+B2 awk fix at 3 sites	✓ intact	Requirements + Logic + Codex
M5 Phase 4 → Phase 6 wording	✓ intact	Logic + Codex
L3 retroactive labels at idd-implement Step 5.7 + idd-verify Step 5b	✓ intact	Logic + Codex
#137 7 strategies	✓ FULLY	Requirements
#150 principle ships(rule + spec + Path C generalization + retroactive labels except /idd-edit per Path c)	✓ FULLY	Requirements
2 new specs(idd-clarify + idd-diagnose-clarity-gate)	✓ intact	Requirements

Required R5 cleanup(triple-source-confirmed BLOCKING per Codex,Requirements/Logic/Regression all MEDIUM)

R5-1 — Spec drift on append-vs-modify-discipline/spec.md

Sources:Requirements R4-M1 + Logic R4-L1 + Regression R4-F1 + Codex(triple-source-independent + Codex confirmation)

3-way drift:

• Spec(untouched):Requirement 4 still says /idd-edit --replace SHALL require scope flag;Requirement 5 still says SHALL refuse modifications to user-authored comments;Purpose still says undeclared modify-actions runtime refuse。 Concrete error-message wording.
• SKILL.md(reverted):no enforcement
• CHANGELOG + rule(R4 softened):「Spec discipline declared,runtime enforcement deferred to [feature] /idd-edit runtime enforcement — proper proposal after 3-iteration bash failure (R1/R2/R3 on #153) #154」

Fix options:

• (a) Add Implementation status: Runtime enforcement deferred to #154 preamble to Requirements 4/5 + Purpose
• (b) Move Requirements 4/5 to a new ## Deferred Requirements section
• (c) Accept drift as documented gap until [feature] /idd-edit runtime enforcement — proper proposal after 3-iteration bash failure (R1/R2/R3 on #153) #154 lands(less honest;analyzer won't catch)

Recommend (a) — minimal-change preserves SHALL normative intent while flagging implementation gap。

R5-2 — Rule line 195 self-inconsistency

Source:Codex(new finding,no sibling caught — DA timeout limited adversarial check)

rules/append-vs-modify.md:195(R4-softened version)says:

「Phase 1(this change)is spec-discipline only:SKILL.md describes intended --scope / --section requirements + verbatim-preserve guard;AI / user invocation reads spec + applies discipline manually until runtime gate ships。」

But post-revert,idd-edit/SKILL.md does NOT describe --scope / --section / verbatim-preserve guard(argument-hint line 9 + mode table line 48 all back to pre-#150 state)。 Rule's claim about SKILL.md content is wrong。

Fix:revise rule line 195 to acknowledge SKILL.md is also reverted(spec discipline lives in spec + rule + CHANGELOG;SKILL.md surface deferred to #154 along with bash impl)。

R5-3 — Archived tasks.md [x] for deferred work

Source:Requirements R4-M2

openspec/changes/archive/2026-05-25-add-action-scoped-modify-discipline/tasks.md lines 38-40 + 60 (Tasks 3.1 / 3.2 / 3.3 / 6.2)marked [x] despite revert removing the work。 Per IDD Checklist Conventions:should flip to [~] deferred to #154。

Fix:edit archive tasks.md 4 lines。 But archive is protected per archive-first rule — need /archive-first:archived-unlock first or post-archive correction note。

Or:accept that tasks.md is the historical record of what WAS done at archive time;deferral happened later (R4);post-archive correction is a separate audit-trail concern。

---

Carried tangentials(non-blocking,LOW severity from R4 reviewers)

#	Source	Detail
R4-L2	Logic	archive design/proposal/spec untouched(acceptable per archive-first protection)
R4-F2	Regression	2.74.0 Note 「activates 4 #150 mechanisms」 wording could confuse casual readers — optional polish
R4-F3	Regression	marketplace.json drift to plugin.json(pre-existing,not R4-introduced;post-merge /plugin-tools:plugin-update per release-flow.md)

---

Disposition

PASS-with-required-cleanup。 R5 cleanup is small + targeted:

• 1 file:spec.md add 3 「Implementation status」 notes
• 1 file:rule.md line 195 reword
• 0 or 1 file:archive tasks.md(if accept post-archive correction is in-scope)

Per feedback_verify_fix_same_pr discipline:fix in PR before merge。

After R5 ships → R6 verify(predict clean — all R1/R3/R4 findings addressed,spec consistent)→ /idd-close cluster mode → ship

⏸ User decision:

• (a) R5 fix loop now(recommended,5-10 min)
• (b) Accept R4 + ship with documented drift(less clean but faster)

[kiki830621]

Verify Report R6 — PR #153 (cluster: #137 + #150) — PASS

Engine

Full 6-AI ensemble — 5 reviewer Agents + Codex independent。 No rate limit。 DA polling caught 1/4 siblings in 240s window then adapted to self-analysis(graceful degradation — DA still provided 3 substantive observations from diff + Security findings)。

Aggregate

PASS — 0 BLOCKING / 0 HIGH / 1 MEDIUM (cosmetic, author's call) / 3 non-blocking observations。 Cluster ready to merge。

R5 cleanup verification

R4 Finding	R6 verdict	Source confirmation
R5-1 spec drift on Purpose+R4+R5	✓ FIXED	Requirements + Logic + Regression + Codex (quadruple-confirmed clean)
R5-2 rule line 195 self-inconsistency	✓ FIXED	Logic + Codex (verified post-revert SKILL.md byte-identical to e5e05e1 baseline;rule reword factually accurate)

Net cluster state

Component	Verdict	Source
#137 7 strategies(unattended Clarity contract)	✓ FULLY	Requirements + Codex
#150 substantively ships(rule + spec + Path C + retroactive labels except /idd-edit)	✓ FULLY	Requirements + Codex
2 new specs(idd-clarify + idd-diagnose-clarity-gate)	✓ intact	Requirements
B1+B2 awk fix at 3 sites	✓ intact	Logic + Codex (4 cite sites grep-verified)
M5 Phase 4 → Phase 6 wording at 4 sites	✓ intact	Logic + Codex
L3 retroactive labels at idd-implement Step 5.7 + idd-verify Step 5b	✓ intact	Logic + Regression
idd-edit/SKILL.md at pre-#150 baseline	✓ byte-identical to e5e05e1	Logic + Codex (git diff --exit-code passes)
CHANGELOG B3 properly softened	✓ consistent across 4 referenced lines	Regression + Codex
Spec preamble syntax valid	✓ spectra validate clean(R5 introduced preamble doesn't break parser)	DA-M3 mitigation + manual run
#154 follow-up filed	✓ OPEN with R1/R2/R3 evidence	Requirements

Non-blocking observations(non-merge-blockers)

M1 — Spec preamble version attribution(Logic)

R5 preambles tag「Implementation status (v2.74.0)」 but CHANGELOG places B3 entries under [2.73.0](only #137 work landed in [2.74.0])。 Author's call:retag to (v2.73.0) or add dual-version cite。 Not breaking,since cluster PR ships both versions atomically — version is internal to the cluster。

DA-M1 — Aspirational vs normative SHALL confusion

Spec Requirement 4+5 preamble says「deferred, NOT enforced」 but Requirement body uses unhedged SHALL。 Reader skimming preamble could confuse spec-only contract with runtime contract。 Suggestion(stylistic):heading-level [SPEC-ONLY, runtime deferred #154] marker。 Non-blocking — preamble + Re-verify clause adequate as-is。

DA-M2 — DA polling 240s window

R6 extended polling from R4's 150s → 240s,still caught only 1/4 in window(reviewers ran 4-17 min)。 Suggestion(process):extend to 900-1200s or post-hoc DA。 R6 DA adapted by self-analysis from diff,partial coverage but not silent。 Mitigation:cross-check after siblings settle(coordinator did this — confirmed Logic + Regression PASS aligned with DA self-analysis)。

Carried tangentials(LOW,unchanged from R4)

• R4-F2 — 2.74.0 Note「activates 4 [META] Codify append-vs-modify discipline as plugin-level principle #150 mechanisms」 wording — optional polish
• R4-F3 — marketplace.json drift to plugin.json — pre-existing,not R6-introduced;post-merge /plugin-tools:plugin-update per release-flow.md

FYI — archive tasks.md [x] for deferred work

Requirements FYI:archived tasks.md retains [x] for tasks 3.1/3.2/3.3/6.2(R3 work reverted)。 R5 commit body explicitly deferred per archive-first protection。 Recommend rolling into #154 closing or filing separate audit follow-up。

Disposition

PASS — Ready to merge。

R7 fix loop optional(M1 version attribution is 30-sec cosmetic edit;DA-M1/M2 are process / wording suggestions worth deferring to post-merge improvements;tangentials acknowledged)。

Recommend:merge cluster + /idd-close #137 #150(cluster close mode,per-issue closing summary)— ships R1 awk fix + R1 M5 wording + R1 L3 labels + #137 unattended contract + #150 action-scoped principle + 2 new specs + #154 follow-up filed for future B3 runtime enforcement。

⏸ User decision:

• (a) Merge + /idd-close cluster(recommended)
• (b) R7 fix M1 version attribution first(~30s)→ then merge + close