feat(v1.6.0-dev): close L3 cascade — 5 new wrappers + auto-composition

.claude-plugin/marketplace.json

@@ -5,19 +5,19 @@
     "url": "https://smorchestra.ai"
   },
   "metadata": {
-    "description": "SMOrchestra internal dev + ops + content toolkit for Claude Code. Three plugins: smorch-dev (workflow: plan → code → score → handover → ship) + smorch-ops (infra: deploy / rollback / drift / health / incident / secrets) + content-engine (bilingual LinkedIn content production with quality rubric).",
-    "version": "1.1.0"
+    "description": "SMOrchestra internal dev + ops + content toolkit for Claude Code. Three plugins: smorch-dev (workflow + L3 cascade: plan → code → verify → score → handover → ship → document) + smorch-ops (infra: deploy → canary / rollback / drift / health / incident / secrets) + content-engine (bilingual LinkedIn content production with quality rubric).",
+    "version": "1.2.0"
   },
   "plugins": [
     {
       "name": "smorch-dev",
       "source": "./plugins/smorch-dev",
-      "description": "Workflow plugin. 10 slash commands (/smo-plan, /smo-code, /smo-score, /smo-bridge-gaps, /smo-handover, /smo-qa-handover-score, /smo-qa-run, /smo-ship, /smo-triage, /smo-retro) + 9 skills (smo-scorer with 5-hat rubric, lessons-manager, elegance-pause, arabic-rtl-checker, mena-mobile-check, brd-traceability, handover-generator, qa-handover-scorer, cost-tracker). Install on dev + QA machines."
+      "description": "Workflow + L3 cascade plugin. 20 slash commands (workflow: /smorch-dev-start, /smo-plan, /smo-code, /smo-score, /smo-bridge-gaps, /smo-handover, /smo-qa-handover-score, /smo-qa-run, /smo-ship, /smo-triage, /smo-retro, /smo-dev-guide; L3 wrappers v1.5: /smo-worktree, /smo-benchmark, /smo-review-pr; L3 wrappers v1.6: /smo-verify, /smo-simplify, /smo-document, /smo-cso) + 11 frozen L2 skills (smo-scorer with 5-hat rubric, dev-start-bootstrap, dev-guide-router, lessons-manager, elegance-pause, arabic-rtl-checker, mena-mobile-check, brd-traceability, handover-generator, qa-handover-scorer, cost-tracker). v1.6 wires auto-composition: /smo-code→/smo-verify (live verify before commit), /smo-bridge-gaps→/smo-simplify (code quality), /smo-ship→/smo-document (post-merge docs), /smorch-dev-start suggests /careful or /guard for prod-adjacent contexts. Install on dev + QA machines."
     },
     {
       "name": "smorch-ops",
       "source": "./plugins/smorch-ops",
-      "description": "Infrastructure plugin. 7 slash commands (/smo-deploy, /smo-rollback, /smo-drift, /smo-health, /smo-incident, /smo-secrets, /smo-skill-sync) + 7 skills (security-hardener, incident-runbook, deploy-pipeline, rollback-runbook, drift-detector, secrets-manager, codex-doctrine). Install on all machines including servers."
+      "description": "Infrastructure plugin. 7 slash commands (/smo-deploy, /smo-rollback, /smo-drift, /smo-health, /smo-incident, /smo-secrets, /smo-skill-sync) + 7 skills (security-hardener, incident-runbook, deploy-pipeline, rollback-runbook, drift-detector, secrets-manager, codex-doctrine). v1.6: /smo-deploy auto-invokes /smo-canary (smorch-dev) for 30-min post-deploy regression watch + auto-rollback on breach. Install on all machines including servers."
     },
     {
       "name": "content-engine",

CHANGELOG.md

@@ -1,5 +1,52 @@
 # Changelog
 
+## [1.6.0-dev] - 2026-05-25
+
+### Added — 5 new L3 wrapper commands to close the OS
+
+- **`/smo-cso`** — Chief Security Officer audit. Wraps `gstack:cso`. Cadence: `--daily` (nightly CI, 8/10 confidence gate, zero-noise) · `--full` (monthly deep scan, 2/10 bar across secrets/deps/CI/LLM/skills/OWASP/STRIDE) · `--post-incident <slug>` (narrow scan focused on incident-touched surfaces). Closes the perfctl founding-event gap. L2 cross-checks: `secrets-manager` validates rotation SLA on secret-related findings; `drift-detector` validates infra-drift correlation. Writes `docs/security/YYYY-MM-DD-{mode}.md` + trend.csv.
+- **`/smo-document`** — Post-ship docs sync. Wraps `gstack:document-release`. Auto-invoked by `/smo-ship` after successful merge. Updates README/CLAUDE.md/ARCHITECTURE/CHANGELOG to match what shipped, sweeps completed TODOs, bumps VERSION. Trivial changes commit direct; non-trivial open a follow-up PR. L2: `brd-traceability` re-validates AC table, `lessons-manager` appends new lessons.
+- **`/smo-verify`** — Live verification before commit. Wraps `gstack:run` + `gstack:verify` + `gstack:browse` (if `has_ui=true`). Auto-invoked by `/smo-code` between green TDD step and commit. Exercises happy + mandatory failure paths from `.smorch/project.json:risk_surfaces[]` + at least 1 edge case in a REAL environment. **Hard gate:** commit blocked if any mandatory scenario FAILs. Directly enforces `~/.claude/CLAUDE.md` § QA-DISCIPLINE (lesson April 28: 4 escaped bugs to Lana in 24h were all preventable).
+- **`/smo-simplify`** — Code-quality fix loop. Wraps `gstack:simplify`. Auto-invoked by `/smo-bridge-gaps` when Engineering hat is lowest scorer AND Q4 (quality) or Q5 (elegance) drag. Categorizes findings as AUTO/REVIEW/DEFER. L2: `elegance-pause` runs on the resulting diff; `cost-tracker` flags if Claude/OpenAI sites touched.
+- **`/smo-canary`** — Post-deploy regression watch. Wraps `gstack:canary`. Auto-invoked by `/smo-deploy` after clean health check. 30-min window (configurable per project). Watches console errors, page failures, Core Web Vitals vs baseline. On breach: auto-`/smo-rollback` (production default ON) + Telegram SEV2 + auto-stub `/smo-incident`. L2 mid-window cross-check via `drift-detector`.
+
+### Changed — existing commands wired to the new wrappers
+
+- **`/smo-code`** — now auto-invokes `/smo-verify --auto` between green TDD step and commit (hard-gates the commit on FAIL).
+- **`/smo-bridge-gaps`** — now auto-invokes `/smo-simplify --auto` when Engineering hat is lowest scorer with Q4/Q5 dragging.
+- **`/smo-ship`** — now auto-invokes `/smo-document --auto` post-merge (step 6). Suppress with `--skip-document`.
+- **`/smo-deploy`** — step 7 now wraps `gstack:canary` via `/smo-canary --auto` (was inline). Adds L2 cross-checks + incident-runbook auto-stub on breach.
+- **`/smo-handover`** — `--validate` now invokes `superpowers:verification-before-completion` (sanity-check brief reflects merged code: PR URL resolves, score file exists, `@AC-N.N` tags claimed exist in test files, rollback command is canonical).
+- **`/smorch-dev-start`** — Layer 2 now emits safety-mode suggestions (additive, never auto-engages): `/careful` for `prod-server` profile; `/guard` for projects with `risk_surfaces: [auth|payments|migrations]` or when cwd matches sensitive paths.
+
+### Added — project overlay schema fields (v1.6)
+
+`.smorch/project.json` schema extended (canonical template at `plugins/smorch-dev/templates/smorch-project.json.template`):
+- `has_ui` (bool, default false) — drives `gstack:browse` engagement in `/smo-verify` + `/smo-qa-run`
+- `risk_surfaces` (array, default []) — drives mandatory failure-path coverage in `/smo-verify`, `/guard` suggestion in `/smorch-dev-start`, risk_tier in `/smo-review-pr`. Values: `auth`, `payments`, `migrations`, `pii`, `secrets`
+- `performance_critical_paths` (array, default []) — file globs that trigger `gstack:benchmark` in `/smo-score`
+- `canary.window_minutes` (default 30) + `canary.auto_rollback` (default true on production) — `/smo-canary --auto` config
+
+### Updated
+
+- `dev-guide-router` skill — 5 new topics (`verify`, `simplify`, `canary`, `document`, `cso`), L3 cascade map extended, overview now lists 22 commands across both plugins.
+- Plugin description in `plugin.json` rewritten for v1.6.
+
+### Non-negotiables preserved
+
+- 92+ composite + 8.5 hat floor before `/smo-ship`
+- ≥80 handover score before Lana accepts QA
+- L-009 push discipline
+- SOP-36 anti-bloat rule (L2 must not reimplement L3) + pre-commit guard
+
+### Score delta
+
+Internal /smo-score against this PR's branch: target 95+ composite (v1.5.1 baseline 91; founder's stated goal: 10/10 OS for plan/review/score/QA/ship).
+
+## [1.5.1] - 2026-04-29
+
+See commit history for v1.5.0 + v1.5.1 — L3 cascade revision (SOP-36) shipping 12 strengthened commands + 3 new wrappers (worktree, benchmark, review-pr).
+
 ## [1.3.0-dev] - 2026-04-21
 
 ### Added

README.md

@@ -8,7 +8,7 @@ Internal SMOrchestra dev + ops toolkit. Built after we shipped `eo-microsaas-dev
 
 | Path | Purpose |
 |------|---------|
-| `plugins/smorch-dev/` | **Workflow plugin** — 11 commands (plan, code, score, bridge-gaps, handover, qa-handover-score, qa-run, ship, triage, retro, dev-guide) + 10 skills. Installed on dev + QA machines. |
+| `plugins/smorch-dev/` | **Workflow plugin** — 15 commands (workflow: plan, code, score, bridge-gaps, handover, qa-handover-score, qa-run, ship, triage, retro, dev-guide; L3 wrappers: worktree, benchmark, review-pr; v1.6 L3 wrappers: verify, simplify, canary, document, cso) + 11 skills. Installed on dev + QA machines. |
 | `plugins/smorch-ops/` | **Infra plugin** — 7 commands (deploy, rollback, drift, health, incident, secrets, skill-sync) + 7 skills. Installed on all machines incl. servers. |
 | `install/` | One script per machine profile — `qa-machine.ps1` (Lana, Windows), `eng-desktop.sh` (dev desktops), `dev-server.sh`, `prod-server.sh` |
 | `scripts/` | `validate-plugins.sh` (CI), `sync-from-github.sh` (cron-invoked) |
@@ -36,13 +36,16 @@ iwr -useb https://raw.githubusercontent.com/SMOrchestra-ai/smorch-dev/main/insta
 bash <(curl -fsSL https://raw.githubusercontent.com/SMOrchestra-ai/smorch-dev/main/install/prod-server.sh)
 ```
 
-## Command surface — 18 total, no overlap
+## Command surface — 27 total (v1.6.0-dev), no overlap
 
-### Workflow (smorch-dev)
-`/smo-plan` · `/smo-code` · `/smo-score` (--quick / --full) · `/smo-bridge-gaps` · `/smo-handover` · `/smo-qa-handover-score` · `/smo-qa-run` · `/smo-ship` (merge + tag) · `/smo-triage` (live debug) · `/smo-retro` · `/smo-dev-guide` (in-session cheat-sheet)
+### Workflow chain (smorch-dev)
+`/smorch-dev-start` (4-layer bootstrap, run FIRST) · `/smo-plan` · `/smo-worktree` · `/smo-code` · `/smo-verify` (auto) · `/smo-score` (--quick / --full) · `/smo-bridge-gaps` · `/smo-simplify` (auto on Eng Q4/Q5) · `/smo-handover` · `/smo-qa-handover-score` · `/smo-qa-run` · `/smo-review-pr` (auto in /smo-ship) · `/smo-benchmark` (UI/API gate) · `/smo-ship` (merge + tag) · `/smo-document` (auto post-merge) · `/smo-triage` (live debug) · `/smo-retro` · `/smo-dev-guide` (in-session cheat-sheet)
+
+### Quality + security (smorch-dev — v1.6)
+`/smo-verify` (live verification before commit) · `/smo-simplify` (code-quality fix loop) · `/smo-document` (post-ship docs sync) · `/smo-cso` (security audit, `--daily | --full | --post-incident`)
 
 ### Ops (smorch-ops)
-`/smo-deploy` · `/smo-rollback` · `/smo-drift` · `/smo-health` · `/smo-incident` (post-mortem) · `/smo-secrets` · `/smo-skill-sync`
+`/smo-deploy` (auto-invokes `/smo-canary`) · `/smo-canary` (post-deploy watch) · `/smo-rollback` · `/smo-drift` · `/smo-health` · `/smo-incident` (post-mortem) · `/smo-secrets` · `/smo-skill-sync`
 
 ## Verb boundaries (documented in SOP-14)
 
@@ -95,4 +98,4 @@ eo-mena/
 
 ## Version
 
-v1.0.0 (repo + plugins). Target: take SMOrchestra from ad-hoc workflows to a 10/10 dev + ops discipline. No sloppiness.
+v1.6.0-dev. v1.5 wired the L3 cascade (gstack + superpowers) into 12 commands and added 3 new wrappers. v1.6 closes the OS with 5 more wrappers (`/smo-verify`, `/smo-simplify`, `/smo-canary`, `/smo-document`, `/smo-cso`), auto-composition between them, and `/careful`/`/guard` safety-mode suggestions in the session bootstrap. Target: 10/10 OS for planning + review + scoring + QA + ship + deploy. No sloppiness.

docs/INDEX.md

@@ -65,7 +65,7 @@ All dev-related how-to guides live at **`docs/guides/`**. No dev guide lives out
 
 | Artifact | Location | Contents |
 |----------|----------|----------|
-| smorch-dev plugin | `smorch-dev/plugins/smorch-dev/` | 11 commands + 10 skills + templates |
+| smorch-dev plugin | `smorch-dev/plugins/smorch-dev/` | 20 commands + 11 skills + templates (v1.6.0-dev — workflow + L3 cascade wrappers) |
 | smorch-ops plugin | `smorch-dev/plugins/smorch-ops/` | 7 commands + 7 skills + templates |
 | Install scripts | `smorch-dev/install/` | qa-machine.ps1, eng-desktop.sh, dev-server.sh, prod-server.sh |
 | Validator | `smorch-dev/scripts/validate-plugins.sh` | Schema + frontmatter + dead-ref check (runs in CI) |

docs/PLUGIN-SKILLS-COMMANDS-GUIDE.md

@@ -39,7 +39,11 @@ iwr -useb https://raw.githubusercontent.com/SMOrchestra-ai/smorch-dev/main/insta
 
 ---
 
-## The 18 commands — by daily sequence
+## The commands — by daily sequence
+
+> v1.6.0-dev: 22 commands total (smorch-dev: 15, smorch-ops: 7). v1.5 added L3 cascade wrappers (worktree, benchmark, review-pr). v1.6 adds 5 more (verify, simplify, canary, document, cso) + auto-composition between them.
+
+
 
 ### Morning
 | Command | What it does |
@@ -50,10 +54,15 @@ iwr -useb https://raw.githubusercontent.com/SMOrchestra-ai/smorch-dev/main/insta
 ### Building a feature
 | Command | What it does |
 |---------|--------------|
-| `/smo-plan {feature}` | Plan mode. Reads BRD + lessons + project overlay. Waits for approval. |
-| `/smo-code` | TDD loop: test-first per AC-N.N, minimal impl, refactor, elegance pause. |
+| `/smo-plan {feature}` | Plan mode. Reads BRD + lessons + project overlay. Multi-perspective L3 (writing-plans + plan-eng-review + optional CEO/design). Waits for approval. |
+| `/smo-worktree` | Isolated git worktree (hard-required before /smo-code on multi-file work). Wraps superpowers:using-git-worktrees. |
+| `/smo-code` | TDD loop: test-first per AC-N.N, minimal impl, refactor, elegance pause. **v1.6: auto-invokes `/smo-verify` before commit (live verification, hard gate).** |
+| `/smo-verify` | **(v1.6)** Live verification before commit. Wraps gstack:run + gstack:verify + gstack:browse. Exercises happy + mandatory failure paths from `risk_surfaces[]` + edge case in real environment. Blocks commit on fail. |
 | `/smo-score [--quick / --full]` | 5-hat composite score. Gate 92+ internal, 90+ students. |
-| `/smo-bridge-gaps` | Fix the lowest hat when score is 85-91. |
+| `/smo-bridge-gaps` | Fix the lowest hat when score is 85-91. **v1.6: auto-invokes `/smo-simplify` when Eng Q4/Q5 are dragging.** |
+| `/smo-simplify` | **(v1.6)** Code-quality fix loop. Wraps gstack:simplify. AUTO/REVIEW/DEFER categorization. |
+| `/smo-benchmark` | Performance regression gate (run before /smo-ship if UI/API code touched). Wraps gstack:benchmark. |
+| `/smo-review-pr` | External adversarial review (auto-invoked inside /smo-ship). Wraps superpowers:requesting-code-review + gstack:review + /security-review. |
 
 ### Dev → QA handover
 | Command | What it does |
@@ -65,8 +74,10 @@ iwr -useb https://raw.githubusercontent.com/SMOrchestra-ai/smorch-dev/main/insta
 ### Ship + deploy
 | Command | What it does |
 |---------|--------------|
-| `/smo-ship` | Merge PR + git tag. Does NOT deploy. Requires 92+ score + QA pass. |
-| `/smo-deploy` | SSH to server + git pull + pm2 reload + health check. Pre-drift check. |
+| `/smo-ship` | Merge PR + git tag. Does NOT deploy. Requires 92+ score + QA pass. **v1.6: invokes gstack:ship for PR ceremony + auto-invokes `/smo-document` post-merge.** |
+| `/smo-document` | **(v1.6)** Post-ship docs sync. Wraps gstack:document-release. Updates README/CLAUDE.md/CHANGELOG to match what shipped. Trivial → direct commit; non-trivial → follow-up PR. |
+| `/smo-deploy` | SSH to server + git pull + pm2 reload + health check. Pre-drift check. **v1.6: auto-invokes `/smo-canary` post-success.** |
+| `/smo-canary` | **(v1.6)** Post-deploy regression watch (30 min default). Wraps gstack:canary. Auto-rollback on breach. |
 | `/smo-rollback` | Revert a deploy. Target SLA 90-120s. Deploy's twin. |
 
 ### Incidents + fixes
@@ -75,11 +86,14 @@ iwr -useb https://raw.githubusercontent.com/SMOrchestra-ai/smorch-dev/main/insta
 | `/smo-triage {bug}` | Live diagnostic: hypothesis → evidence → root cause → regression test. |
 | `/smo-incident` | Post-mortem writer. SEV1-4 structure per SOP-10. |
 
-### Ops
+### Ops + security
 | Command | What it does |
 |---------|--------------|
 | `/smo-secrets [--audit / --rotate {name}]` | 90-day rotation tracking per SOP-16. |
 | `/smo-skill-sync` | Push a skill edit → smorch-brain → all machines via sync-all. |
+| `/smo-cso [--daily / --full / --post-incident <slug>]` | **(v1.6)** Chief Security Officer audit. Wraps gstack:cso. Nightly 8/10 gate in CI + monthly --full deep scan + post-incident narrow scan. Closes the perfctl founding-event gap. |
+| `/smo-health` | Multi-server health roll-up (apps + UFW/fail2ban/SSH posture). |
+| `/smo-drift --target {host}` | On-demand drift diagnostic. |
 
 ### End of sprint
 | Command | What it does |
@@ -197,12 +211,19 @@ The plugin reads `.smorch/project.json` at SessionStart and adapts. No PR to the
 | You say | Plugin does |
 |---------|-------------|
 | "start a feature for X" | `/smo-plan X` |
-| "code it" | `/smo-code` |
+| "code it" | `/smo-code` (auto: /smo-verify before commit) |
+| "verify it works live" | `/smo-verify` (v1.6) |
 | "score it" | `/smo-score --full` |
-| "fix the weakest hat" | `/smo-bridge-gaps` |
+| "fix the weakest hat" | `/smo-bridge-gaps` (auto: /smo-simplify on Eng Q4/Q5) |
+| "clean up the code" | `/smo-simplify` (v1.6) |
+| "get a second opinion" | `/smo-review-pr` (also auto in /smo-ship) |
+| "check perf regression" | `/smo-benchmark` |
 | "send to QA" | `/smo-handover --notify` |
-| "ship it" | `/smo-ship` |
-| "deploy" | `/smo-deploy` |
+| "ship it" | `/smo-ship` (auto: /smo-document post-merge) |
+| "sync the docs" | `/smo-document` (v1.6) |
+| "deploy" | `/smo-deploy` (auto: /smo-canary post-success) |
+| "watch the deploy" | `/smo-canary` (v1.6, also auto) |
+| "security audit" | `/smo-cso --full` (v1.6, monthly) |
 | "something is broken" | `/smo-triage "{symptom}"` |
 | "write up the incident" | `/smo-incident` |
 | "revert the deploy" | `/smo-rollback` |
@@ -212,7 +233,7 @@ The plugin reads `.smorch/project.json` at SessionStart and adapts. No PR to the
 | "push the new skill" | `/smo-skill-sync` |
 | "end of sprint" | `/smo-retro` |
 | "what do I run next?" | `/smo-dev-guide next` |
-| "how does X work?" | `/smo-dev-guide {topic}` (e.g. `architecture`, `overlay`, `sync`) |
+| "how does X work?" | `/smo-dev-guide {topic}` (e.g. `verify`, `canary`, `cso`, `l3`) |
 | "look up SOP-14" | `/smo-dev-guide sop-14` |
 | "look up L-008" | `/smo-dev-guide l-008` |