























@@ -24,7 +24,7 @@ Use when:
2424- Prefer small fixes at the right ownership boundary; no refactor unless it clearly improves the bug class.
2525- When an accepted finding shows a bug class or repeated pattern, inspect the current PR scope for sibling instances before fixing.
2626- Fix the scoped bug class at once when practical; stop at touched surfaces, owner boundaries, and clear follow-up territory.
27-- Keep going until structured review returns no accepted/actionable findings.
27+- Keep going until structured review returns no accepted/actionable findings only while the work remains inside the original task scope.
2828- If a review-triggered fix changes code, rerun focused tests and rerun the structured review helper.
2929- For security-audit suppression changes, verify accepted findings remain auditable: suppressed findings stay in structured output, active output keeps an unsuppressible suppression notice, and aggregate findings cannot hide unrelated active risk.
3030- Never switch or override the requested review engine/model. If the review hits model capacity, retry the same command a few times with the same engine/model.
@@ -43,6 +43,42 @@ Use when:
4343- If Gitcrawl reports a portable manifest mismatch, source/runtime DB health error, or stale portable-store checkout, run `gitcrawl doctor --json` and inspect `source_db_health`, `runtime_db_health`, and `portable_store_status` before falling back to live GitHub.
4444- Do not push just to review. Push only when the user requested push/ship/PR update.
454546+## Scope Governor
47+48+Autoreview is a closeout gate, not permission to rewrite the task.
49+50+Before the first review, freeze a scope baseline: original request or issue, target branch, intended behavior, owner boundary, changed files, and non-test LOC. For inherited or already-bloated branches, use the intended PR diff as the baseline rather than accepting all existing branch drift.
51+52+Before patching a finding, classify it:
53+54+- **In-scope blocker**: the finding is introduced by the current diff, affects the same owner boundary, and can be fixed without changing the task's contract.
55+- **Follow-up**: the finding is real but belongs to an adjacent bug class, sibling surface, cleanup, or broader hardening track.
56+- **Stop-and-escalate**: the finding requires a new protocol/config/storage/public API contract, a different owner boundary, a release-process change, or a design choice outside the original request.
57+58+Stop patching and report the scope break instead of continuing when:
59+60+- a narrow PR turns into an architecture change, protocol change, migration, or release-process change;
61+- the diff grows past 2x the original files or non-test LOC without explicit approval to expand scope;
62+- two review-triggered patch cycles have not converged; pause and reclassify every remaining finding before another edit;
63+- the best fix is "define the canonical contract first" rather than another local inference layer;
64+- fixing the accepted finding would make the PR no longer describe the same behavior, issue, or owner boundary.
65+66+After the two-cycle pause, continue only when every remaining accepted finding is still an in-scope blocker. Otherwise preserve the useful analysis, identify the smallest safe landed subset if one exists, and open or request a follow-up for the larger fix. Do not keep committing speculative fixes just to satisfy the reviewer.
67+68+Do not stack or push review-triggered fix commits while scope classification or focused proof is unresolved. Keep exploratory edits local until the cycle is proven in scope; if scope breaks, remove them from the landing lane instead of preserving them as branch history.
69+70+Critical exceptions must be explicit: active data loss, crash, broken install/upgrade, release blocker, or concrete security exposure. If the exception is not one of those, it is not critical enough to blow up scope.
71+72+## Release Branches And Release Process
73+74+On release, beta, stable, hotfix, signing, notarization, appcast, package-publish, or release-check work, use freeze discipline even when the branch name is not release-like:
75+76+- Fix only release blockers, failed release infrastructure, exact backports, install/upgrade breakage, data loss, crashes, or concrete security exposure.
77+- Treat non-blocking autoreview findings as follow-ups for `main`, not reasons to broaden the release branch.
78+- Do not introduce new product behavior, config surface, protocol shape, migration, plugin ownership, docs narrative, or process policy unless it directly unblocks the release.
79+- Keep proof tied to the release target: exact branch/ref, failing check or shipped-risk reason, smallest command/proof, and whether the fix must also forward-port to `main`.
80+- If review discovers a real but non-critical design problem during release closeout, stop with a follow-up issue/PR plan; do not use the release branch as the refactor lane.
81+4682## Pick Target
47834884Dirty local work:
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。