Command Reference

Authoritative lookup for Silver Bullet v0.51.1 — commands, .silver-bullet.json, the APO catalog (docs/apo-catalog.json), 27 canonical atomic flows, 22 workflows, and planning artifacts.

Three-Host Runtime Install (v0.51.1)

Silver Bullet ships the same APO workflow contract on Claude Code, Codex, and Cursor. Install surfaces differ; project adoption is always /silver:init after the host has the plugin. Run bash scripts/sb-bootstrap.sh for first-time orientation or bash scripts/sb-diagnostics.sh to read capability tier 0–3 for the active host.

HostPublic marketplaceCheckout installerState root
Claude Codealo-labs/claude-pluginsscripts/install-claude.sh${SB_RUNTIME_HOME_ROOT}/.silver-bullet/
Codexalo-labs/codex-pluginsscripts/install-codex.sh --purge-legacy-skills${SB_RUNTIME_HOME_ROOT}/.silver-bullet/
Cursoralo-labs/alo-labs-cursor-marketplacescripts/install-cursor.sh --public-release~/.cursor/.silver-bullet/
Cursor hooks. scripts/install-cursor.sh merges SB hooks into ~/.cursor/hooks.json via hooks/cursor-hook-bridge.sh. Use the Cursor Skill tool so record-skill can track workflow progress.

Capability Matrix

Workflow routes and evidence artifacts cover the specialized quality, test, deploy, backlog, and recovery families that broad quality-layer tools advertise. Findings use docs/evidence-schema.md (BLOCK/WARN/INFO) — not unified numeric grades.

Capability familySB routeKey evidence
Domain audits (code, API, data, CI, a11y, content…)/silver:domain-auditDOMAIN-AUDIT with validated finding tables
Test engineering (write, E2E, repair, performance, mutation)/silver:testTEST-ENGINEERING, verify-tests marker
Deploy + post-deploy watch/silver:deploy, /silver:canaryDEPLOYMENT.md, CANARY.md
Backlog / deferred work/silver:add, /silver:removeGitHub issue ID or docs/issues/; fingerprint via silver-add.sh
Session recovery/silver:handoff, /silver:forensics, /silver:scanHandoff prompt, workflow tracker, session logs
UI / design continuity/silver:ui-contract, /silver:ui-reviewUI-SPEC, UI-REVIEW, .planning/interface/STATE.md
Content / search readiness/silver:contentCONTENT.md, content-search pack
Incident + retro/silver:incident, /silver:retroINCIDENT.md, RETRO.md
Benchmark / eval/silver:benchmarkBENCHMARK.md
External review enrichmentOptional; SB review authoritativedocs/external-review-policy.md

SB Lifecycle Commands

Silver Bullet owns the core lifecycle commands. Use these commands for planning, execution, review, verification, ship, release, and recovery workflows.

CommandPhaseDescription
/silver:initInitInitializes SB project state, config, docs, CI where absent, and host instruction references.
/silverAnyNatural-language workflow composer and router.
/silver:contextContextCaptures phase context, assumptions, decisions, and research inputs.
/silver:planPlanCreates task-level implementation plans with dependencies, waves, acceptance criteria, and verification strategy.
/silver:executeExecuteExecutes the active plan through SB checkpointed or autonomous execution.
/silver:verifyVerifyGoal-backward verification against requirements, plan, tests, UAT, and user-visible behavior.
/silver:review-requestReviewFrames review scope, files, risks, and ship blockers.
/silver:reviewReviewProduces the authoritative SB review artifact.
/silver:review-triageReviewAccepts, rejects, or defers review findings with rationale.
/silver:secureSecureRuns the SB security/threat review gate for the active change.
/silver:shipShipHandles phase-level branch, PR, CI, deployment-readiness, and traceability duties.
/silver:deployDeployHandles platform detection, deploy command safety, health checks, rollback evidence, and runtime handoff.
/silver:canaryCanaryRuns post-deploy runtime watch checks across HTTP, browser, logs, metrics, and rollback readiness.
/silver:releaseReleaseOwns milestone audits, gap closure, docs, ship readiness, archive, and final release creation.
/silver:debugDebugSystematic debugging for active, reproducible bugs.
/silver:forensicsForensicsPost-mortem investigation for failed, abandoned, stalled, or unclear sessions.
/silver:incidentIncidentCoordinates incident response, postmortem, recovery verification, and corrective-action tracking.
/silver:retroRetroBuilds engineering retrospectives from release, CI, git, issue, review, and session evidence.

Silver Bullet Skills

Silver Bullet is the Agentic Process Orchestrator and lifecycle engine. /silver accepts freeform intent, classifies task complexity, composes the right SB workflow path, and then enforces that the selected path actually runs. Optional plugins enrich specialized domains but do not own the core lifecycle.

Command naming note: public docs use logical slash-command names mapped to catalog flow steps. Claude Code lists SB skills under the /silver: prefix only (no duplicate hyphen stubs); Codex exposes the native /silver: picker and keeps packaged skill-source/ files out of duplicate listings; Cursor uses the Skill tool with merged hooks.

SkillWhenDescription
/silverAnytimeDynamic workflow composer. Routes natural-language work requests to the smallest safe workflow: fast path, clarify, spec, feature, bugfix, UI, DevOps, research, release, docs, quality gates, tests, or SB lifecycle work.
/silver:initSetupInitializes or reactivates SB for a project. Creates silver-bullet.md, .silver-bullet.json, workflow docs, documentation scaffold, CI where absent, and reconciles CLAUDE.md/AGENTS.md without overwriting user instructions.
/silver:ensure-docsDocsBootstraps, reconciles, and audits the bounded documentation scheme: docs/ARCHITECTURE.md, docs/TESTING.md, docs/doc-scheme.md, monthly knowledge/learnings files, task checklist, and related docs.
/silver:quality-gatesRequiredBefore plan / before ship8 core product/software dimensions: modularity, reusability, scalability, security, reliability, usability, testability, and extensibility. AI/LLM safety and domain packs are added only when the phase scope requires them. Failing dimensions become hard requirements.
/silver:domain-auditSpecialized qualityRuns domain contract packs for code, tests, API, data, dependencies, performance, structure, CI, environment, accessibility, content/search, UI, architecture, runtime release, incident/retro, and benchmark evidence.
/silver:blast-radiusDevOpsRequiredBefore DevOps planMaps scope, dependencies, failure scenarios, rollback plan, change window, and escalation path. Produces LOW/MEDIUM/HIGH/CRITICAL risk classification.
/devops-quality-gatesDevOpsRequiredDevOps pre-plan / pre-ship7 IaC-adapted dimensions: reliability, security, scalability, modularity, testability, observability, and change-safety. Focuses on idempotency, drift prevention, least-privilege IAM, rollback safety, and operational reliability.
/devops-skill-routerDevOpsDevOps enrichmentRoutes to optional IaC/cloud provider skills when installed. It is contextual enrichment, not a substitute for SB planning or SB gates.
/silver:forensicsOn failureRoot-cause investigation for failed, abandoned, stalled, or unclear SB sessions and workflow artifacts.
/silver:testTestingTest engineering for test writing, E2E route discovery, test repair, test audit, test performance, and mutation-style challenge workflows.
/silver:refactorRefactorBehavior-preserving refactor workflow with baseline tests, structure/code-health packs, and proof of no regression.
/silver:worktreeGit isolationCreates or finishes isolated git worktrees with branch state, verification, merge/PR, and cleanup safety.
/silver:contentContent/searchPublic content, docs, migration, SEO/AI-search, optimization, article, metadata, link, and render workflow.
/silver:benchmarkEvaluationRepeatable benchmark workflow for agents, models, providers, prompts, or implementation approaches.
/silver:create-releaseRequiredMilestone releaseGenerates structured release notes, updates release surfaces, creates the final version tag, and publishes the GitHub Release. Runs last inside /silver:release, after ship and milestone archival.
/verify-testsRequiredFinal deliveryRuns configured verify commands or stack defaults and writes the freshness marker consumed by SB hooks. Required before final delivery/release gates.
/silver:addDeferred workClassifies and files bugs, backlog items, tech debt, and follow-ups to GitHub Issues/project board or local docs/issues/ depending on project config.
/silver:removeDeferred workRemoves or retires a tracked work item by ID.
/silver:remKnowledge captureCaptures project knowledge or portable learnings into monthly files under docs/knowledge/ and docs/learnings/.
/silver:scanRetrospectiveRetrospective session scanning for unaddressed deferred items and knowledge/learning candidates.
/silver:spikeFeasibilityRuns 2–5 executable experiments with Given/When/Then structure and VALIDATED/INVALIDATED/PARTIAL verdicts before committing to an implementation approach.
/silver:phaseRoadmap managementCRUD management for phases in .planning/ROADMAP.md — add, insert, remove, or edit phases. The sanctioned path to mutate the phase list without triggering the planning-file-guard.
/silver:undoSafe revertSafe git revert for phase or plan commits with dependency checks and artifact cleanup. Keeps STATE.md and SUMMARY.md consistent with reverted code.
/silver:threadCross-session trackingCreates and manages lightweight cross-session context threads for tracking a specific topic, decision chain, or concern across multiple sessions.
/silver:handoffSession endGenerates a reusable project-level handoff prompt with project state, milestone context, constraints, verification/release status, and open follow-ups.
/silver:updateMaintenanceChecks latest SB release, shows the target version/SHA/changelog, and updates after explicit confirmation. Runs /silver:doctor automatically and surfaces every FAIL for inline fix.
/silver:doctorDiagnosticsHost-aware install and project activation audit via scripts/sb-doctor.sh (checks D1–D13). Run after /silver:update, when hooks seem inactive, or before relying on enforcement. D8 orchestrator rule applies on Cursor only; D2/D3/D13 use the active host plugin paths.
/silver:migrateUpgrade supportMigrates older SB project state into the current composable-workflow structure and per-instance workflow tracker.
/silver:review-fix-ladderHigh-confidence reviewProgressively reviews and fixes scoped or user-confirmed repo-wide work by escalating through a host-aware model ladder until two consecutive clean passes per rung.

Spec Pipeline Skills

Three skills that form the spec-driven development pipeline. They run before SB planning begins — SPEC.md is the upstream input that REQUIREMENTS.md, ROADMAP.md, and DESIGN.md must stay aligned with.

SkillWhenDescription
/silver:spec Before planning (spec-first projects) AI-driven spec elicitation. Produces a canonical SPEC.md with structured requirements, acceptance criteria, assumption tracking, and source input cross-references. Use when a formal spec is required before SB planning.
/silver:ingest Before spec creation (external sources) Ingests artifacts from JIRA, Figma, and Google Docs via MCP connectors. No custom API code — all external data access delegated to MCP. Produces a structured INGESTION_MANIFEST.md that maps external inputs to spec sections.
/silver:validate After spec creation, before planning Read-only pre-build gap analysis. Reads .planning/SPEC.md and PLAN.md files, maps acceptance criteria to planned work, surfaces assumptions and open questions, emits BLOCK/WARN/INFO findings, and writes .planning/VALIDATION.md. BLOCK findings must be resolved before implementation.
/silver:review-stats Anytime (review health reporting) Generates three summary tables from accumulated review metrics (JSON Lines): pass rates by artifact type, rounds to clean pass, and finding categories by artifact type. Use to track review health over time.

Quality & Review Skills

These quality gates and domain audit skills provide the one-by-one quality dimensions, domain contract packs, and artifact review roles used by /silver:quality-gates, release readiness, and spec/review workflows. They are included in the skill inventory.

SkillRoleDescription
modularityQuality dimensionChecks separation of concerns, boundaries, cohesion, and coupling.
reusabilityQuality dimensionChecks whether useful behavior is generalized without premature abstraction.
scalabilityQuality dimensionChecks growth paths, resource limits, and operational scale assumptions.
securityQuality dimensionChecks threat boundaries, injection risks, auth, secrets, and unsafe defaults.
reliabilityQuality dimensionChecks failure modes, retries, idempotency, observability, and recovery behavior.
usabilityQuality dimensionChecks user-facing clarity, error states, accessibility-adjacent UX, and workflow friction.
testabilityQuality dimensionChecks whether behavior can be verified with focused, maintainable tests.
extensibilityQuality dimensionChecks future-change seams, compatibility boundaries, and extension risks.
ai-llm-safetyConditional quality dimensionApplies when the phase includes AI behavior, prompts, retrieval, model outputs, or agentic automation.
silver-domain-auditDomain quality packsNormalizes specialized findings across code/test/API/data/dependency/performance/structure/CI/environment/accessibility/content/search/UI/architecture/runtime/incident/retro/benchmark surfaces.
artifact-reviewerReview orchestratorRuns structured artifact review against specs, requirements, UAT, roadmap, context, research, design, and cross-artifact sets.
artifact-review-assessorReview triageClassifies findings as MUST-FIX, NICE-TO-HAVE, or DISMISS so review loops can stop safely.
review-specArtifact reviewerReviews SPEC.md for completeness, ambiguity, assumptions, and acceptance criteria quality.
review-requirementsArtifact reviewerReviews REQUIREMENTS.md alignment with the spec and user intent.
review-roadmapArtifact reviewerReviews roadmap structure, sequencing, dependency clarity, and milestone coverage.
review-uatArtifact reviewerReviews UAT criteria and execution evidence before milestone completion.
review-designArtifact reviewerReviews design artifacts, UI contracts, and design-system alignment.
review-researchArtifact reviewerReviews research artifacts for decision quality, evidence, and handoff clarity.
review-contextArtifact reviewerReviews context packets for enough detail to support downstream planning and execution.
review-ingestion-manifestArtifact reviewerReviews external artifact ingestion manifests and source-to-spec traceability.
review-cross-artifactArtifact reviewerChecks consistency across SPEC, REQUIREMENTS, ROADMAP, DESIGN, UAT, and review artifacts.

Orchestration Workflows

Catalog-backed WF-* workflows that /silver composes after intent classification. Each workflow is a composition tree of canonical atomic-flow slugs from docs/apo-catalog.json; optional atoms are marked with ?. Extension skills enrich domains only at explicit catalog boundaries.

SkillEntry trigger keywordsTypical composed path
/silverfreeform intent, route, classifyROUTE → composed workflow
/silver:deep-researchhow should we, compare X vs Y, spike, architecture decisionCLARIFYDECIDEDOCUMENTVALIDATE
/silver:clarifyidea, concept, fuzzy requirement, no SPEC.mdCLARIFY → context/plan handoff
/silver:specformal spec, acceptance criteria, user stories, write a specSPECIFY
/silver:ingestJIRA, Figma, Google Docs, Confluence, external artifactSPECIFY (ingest sub-step)
/silver:validatevalidate spec, validate plan, gap analysis, assumption awarenessVALIDATE
/silver:featureadd, build, implement, new feature, enhance, extendBOOTSTRAP?ORIENT?CLARIFY?DECIDE?SPECIFY?QUALITY_GATE (pre-plan) → PLANDESIGN_CONTRACT?EXECUTE → post-exec gates
/silver:bugfixbug, broken, crash, error, regression, failing testORIENTDEBUGPLANEXECUTE → post-exec gates
/silver:uiUI, frontend, component, screen, design, layout, responsiveBOOTSTRAP?ORIENT?CLARIFY?DECIDE?SPECIFY?QUALITY_GATE (pre-plan) → PLANDESIGN_CONTRACTEXECUTE → post-exec gates
/silver:fasttrivial, quick fix, typo, one-liner, config value, bounded small changeFAST_PATHQUALITY_GATEPLANVALIDATEEXECUTEVERIFY (escalates to /silver:feature when scope exceeds bounds)
/silver:testwrite tests, E2E, Playwright, fix tests, test audit, mutation, slow testsPLANEXECUTEVERIFY
/silver:refactorrefactor, rename, split, extract, move files, simplifyPLANEXECUTEVERIFY → post-exec gates
/silver:benchmarkbenchmark, compare agents, compare models, provider comparisonORIENTEXECUTEVERIFYDOCUMENT
/silver:contentcontent, SEO, AI search, article, blog, migration, metadata, linksCLARIFYSPECIFYEXECUTEVERIFYDOCUMENT
/silver:devopsinfra, CI/CD, pipeline, terraform, IaC, kubernetes, cloud, opsBLAST_RADIUSDEVOPS_ROUTEQUALITY_GATESECUREORIENTPLANVALIDATEEXECUTE → post-exec gates
/silver:deploydeploy, deployment, production deploy, staging deploy, rolloutBLAST_RADIUSVERIFYSECURESHIP
/silver:canarycanary, post-deploy, production watch, runtime watch, health watchBLAST_RADIUSVERIFYSHIP
/silver:releaserelease, publish, version, go live, tag v, ship to usersQUALITY_GATEREVIEW_REQUESTREVIEWREVIEW_TRIAGEVERIFYSECUREVALIDATEBRANCH_FINISHCOMPLETION_AUDITSHIPRELEASE
/silver:review-triadreview_request, review, triageREVIEW_REQUESTREVIEWREVIEW_TRIAGE (WF-REVIEW-TRIAD)
/silver:ship-readinessbranch_finish, completion_audit, shipBRANCH_FINISHCOMPLETION_AUDITSHIP (WF-SHIP-READINESS)
/silver:incidentincident, outage, production regression, postmortemBLAST_RADIUSDEBUGSECUREVERIFYDOCUMENT
/silver:retroretro, retrospective, release metrics, process reviewORIENTDOCUMENTDECIDE
/silver:forensicsforensics, session failure, post-mortem reconstructionDEBUGDOCUMENTVALIDATE (WF-SILVER-FORENSICS)
/silver:process-maintenancephase, thread, backlog, migrationPHASE_MANAGEDOCUMENTVALIDATE (WF-PROCESS-MAINTENANCE)
/silver:worktreeworktree, isolated branch, branch workspace, finish worktreeEXECUTE (worktree isolation mode)

Post-exec gates (WF-POST-EXEC-GATES): UI_QUALITY?REVIEW_REQUESTREVIEWREVIEW_TRIAGEVERIFYSECUREVALIDATE?QUALITY_GATE (pre-ship) → BRANCH_FINISHCOMPLETION_AUDITSHIP.

Complexity Triage

/silver classifies every request before routing. This prevents over-engineering trivial changes and under-engineering risky ones.

ClassificationSignalsAction
TrivialTypo, rename, small config/copy change, usually ≤3 filesRoute to /silver:fast Tier 1
Bounded mediumSmall logic/dependency change, usually 4–10 files, no cross-cutting impactRoute to /silver:fast Tier 2
SimpleClear scope, single phase, known implementation pathRoute to the matching workflow and skip extra clarification when safe
ComplexCross-cutting, multi-phase, architecture or data-model impactFull workflow with clarify/research/spec gates as needed
FuzzyVague intent, unclear success criteria, missing scopeRun /silver:clarify, then re-classify

Ship Disambiguation

/silver distinguishes phase-level ship from milestone-level release.

SignalRoute
Version number, changelog, release notes, public publish, go live/silver:release
Active phase in progress, no version signalsilver:ship
No active phase and milestone complete/silver:release

Core Lifecycle Skills

Silver Bullet commands and markers cover the core software-engineering lifecycle from problem framing through final delivery.

Lifecycle concern/silver: commandDescription
Problem framing / scope clarificationsilver:clarifyProblem framing, option generation, convergence, and handoff.
Spec writingsilver:specCanonical SPEC and REQUIREMENTS artifacts.
Plan writing / phase discussionsilver:context, silver:planContext packets, assumptions, task plans, dependency analysis, and verification strategy.
TDD disciplinetdd / silver-tddRed/green/refactor policy for behavior-changing software work.
Review request / triagesilver:review-request, silver:review-triageReview framing, finding triage, and fix-loop control.
Completion verificationsilver:completion-audit, silver:verifyFresh evidence before completion claims.
Branch finishing / shipsilver:branch-finish, silver:shipBranch hygiene, PR readiness, CI, and traceability.

Runtime Parity Scripts (v0.51.1)

Structural parity scripts align documented evidence contracts with hook-enforced runtime behavior across all three hosts.

Script / gatePurpose
scripts/validate-evidence-findings.pyValidates finding tables in DOMAIN-AUDIT, REVIEW, QUALITY-GATES, SECURITY, VERIFICATION, UI-REVIEW, and TEST-ENGINEERING artifacts.
hooks/lib/evidence-schema-gate.shWarn-first delivery gate on PR/release; set SILVER_BULLET_EVIDENCE_SCHEMA_STRICT=1 to hard-block.
scripts/silver-add.sh fingerprint|dedup|prioritizeStable backlog fingerprints shared with silver:scan; dedup against docs/issues/ and scan state.
scripts/stamp-interface-state.shStamps .planning/interface/STATE.md from template during /silver:init for UI projects.
scripts/sb-bootstrap.shOne-command onboarding probe: checks jq, runs diagnostics, prints init/plugin next steps.
scripts/sb-diagnostics.shInstall/runtime diagnostics for migrators and support.
scripts/sb-doctor.shHost-aware install + activation audit (/silver:doctor). Checks plugin cache, hooks manifest, config freshness, orchestrator rule (Cursor only), and cross-host contamination.

DevOps Plugin Skills (Contextual Enrichment)

These skills are optional enrichment — not enforcement gates. They're invoked when a matching DevOps plugin is installed and the IaC toolchain matches.

SkillWhen to Use
/devops-skill-routerDetermines which DevOps plugin skill to invoke based on file type and toolchain detected.
terraform-code-generationHashiCorp skill for Terraform best practices. Invoke during Discuss/Plan for .tf files.
deploy-on-awsAWS architecture recommendations. Invoke during Plan for AWS deployments.
kubernetes-operationsKubernetes manifest best practices. Invoke during Discuss/Execute for k8s work.
k8s-troubleshooterPod and cluster diagnostics. Invoke during Verify for k8s deployments.
monitoring-observabilitySLO validation and observability setup. Invoke during Verify for monitoring phases.
gitops-workflowsArgoCD/Flux patterns. Invoke during Plan if the project uses GitOps.
ci-cdPipeline best practices. Invoke during Testing Strategy for pipeline phases.
aws-cost-optimizationFlag wasteful AWS resources. Invoke during Verify for AWS deployments.

APO Catalog, Generated Views & Migration

v0.51.1 makes docs/apo-catalog.json the sole authority for the Silver Bullet process model. It defines Process → Workflow → Atomic Flow → Flow Step/Skill, including 27 canonical atomic flows, 22 workflows, 85 flow steps, V-loops, evidence records, intent ledgers, composition logs, tool policies, and runtime mappings.

Catalog source of truth

  • docs/apo-catalog.json — authoritative APO catalog.
  • docs/composable-flows-contracts.md — generated human-readable contract reference.
  • docs/workflow-composition-matrix.md — generated workflow tree/matrix view.
  • docs/generated/atomic-flow-index.json — generated runtime/test index.

Do not hand-maintain workflow trees in prose. Change the catalog, regenerate the views, then run freshness tests.

V-loops and subagents

Every atomic flow executes as exactly one subagent work package. Each flow step/skill has a local V-loop; step V-loops roll up into the atomic-flow V-gate, atomic-flow V-gates roll up into workflow gates, and final completion validates material user intent against evidence.

v0.51.1 migration notes

  • Legacy FLOW 1–18 labels are migration aliases only — not primary navigation. New docs, workflows, and tests should use atomic-flow slugs, WF-* workflow IDs, or public /silver:* routes.
  • Older WORKFLOW.md state is legacy; active composition state lives in .planning/workflows/<id>.md.
  • Run /silver:update or rerun /silver:init after upgrading a project so config, instructions, recommended-tool opt-ins, and workflow trackers align with v0.51.1.
  • If stale generated docs are detected, run python3 scripts/generate-apo-artifacts.py and the APO freshness tests before release.

Canonical atomic flows

Cross-checked against docs/generated/atomic-flow-index.json (27 entries). Slugs are the stable catalog identifiers; legacy FLOW numbers map through migration_map.legacy_flows in the catalog.

SlugCapability classPublic routeLegacy alias
ROUTEroute intent/silvernew in APO
BOOTSTRAPproject bootstrap/silver:initFLOW 1
ORIENTcontext orientation/silver:scan, /silver:contextFLOW 2
CLARIFYscope clarification/silver:clarifyFLOW 3
DECIDEdecision research/silver:deep-researchFLOW 4
SPECIFYrequirements specification/silver:spec, /silver:ingestFLOW 5
PLANexecution planning/silver:planFLOW 6
DESIGN_CONTRACTdesign contract/silver:ui-contractFLOW 7
VALIDATEgap validation/silver:validatenew in APO
QUALITY_GATEcross cutting quality gate/silver:quality-gates, /devops-quality-gatesFLOW 13
FAST_PATHbounded fast path/silver:fastnew in APO
EXECUTEimplementation execution/silver:executeFLOW 8
DEBUGfailure diagnosis/silver:debug, /silver:forensicsFLOW 15
UI_QUALITYui quality review/silver:ui-reviewFLOW 9
VERIFYverification and testing/silver:verifyFLOW 12
SECUREsecurity and llm safety/silver:secureFLOW 11
REVIEW_REQUESTreview request/silver:review-requestnew in APO
REVIEWartifact and code review/silver:reviewnew in APO
REVIEW_TRIAGEreview triage and fix/silver:review-triagenew in APO
BLAST_RADIUSblast radius assessment/silver:blast-radiusnew in APO
DEVOPS_ROUTEdevops toolchain routing/silver:devops (IaC routing step)new in APO
BRANCH_FINISHbranch hygiene/silver:branch-finishnew in APO
COMPLETION_AUDITcompletion audit/silver:completion-auditnew in APO
SHIPship readiness/silver:shipnew in APO
RELEASErelease management/silver:release, /silver:create-releaseFLOW 18
DOCUMENTdurable documentation/silver:ensure-docsFLOW 17 (+ FLOW 16 design handoff in release)
PHASE_MANAGEphase and state management/silver:phase, /silver:addnew in APO

recommended_tools.graphify.enabled_by_user, recommended_tools.agentmemory.enabled_by_user, recommended_tools.rtk.enabled_by_user, and recommended_tools.context_mode.enabled_by_user live in .silver-bullet.json. Once opted in, a tool is mandatory when the selected catalog flow declares it relevant and must either produce evidence or record a catalog-backed failure/skip reason. RTK and Context Mode gates verify install/wiring only; usage rules are in silver-bullet.md §2g-ii.

.silver-bullet.json Configuration

Project-level configuration file in the repo root. Created by /silver:init and refreshed idempotently on re-run.

{ "config_version": "0.51.1", "version": "0.51.1", "project": { "name": "my-app", "src_pattern": "/src/", "src_exclude_pattern": "__tests__|\.test\.", "active_workflow": "full-dev-cycle" }, "skills": { "required_planning": ["silver-quality-gates", "silver-context", "silver-plan"], "required_planning_devops": ["silver-blast-radius", "devops-quality-gates", "silver-context", "silver-plan"], "required_deploy": [ "silver-quality-gates", "silver-execute", "silver-verify", "silver-ship", "silver-review", "silver-secure", "silver-validate", "silver-review-request", "silver-review-triage", "silver-branch-finish", "silver-create-release", "silver-completion-audit", "silver-tdd", "verify-tests" ], "all_tracked": ["silver-quality-gates", "silver-context", "silver-plan", "silver-execute", "verify-tests", ...] }, "release": { "profile": "generic", "require_plugin_runtime_matrix": true, "require_pre_release_quality_gate": true }, "devops_plugins": { "hashicorp": false, "awslabs": false, "pulumi": false, "devops-skills": false, "wshobson": false }, "state": { "state_file": "${SB_RUNTIME_HOME_ROOT}/.silver-bullet/state", "trivial_file": "${SB_RUNTIME_HOME_ROOT}/.silver-bullet/trivial" }, "enterprise_policy": { "active_profile": "supervised", "profiles": { "supervised": { "session_mode_default: interactive }, "autonomous_safe": { "session_mode_default: autonomous, clarify_auto: true }, "regulated": { "evidence_schema_strict: true }, "internal_dogfood": { "non_production_deploy_autonomy: true } } } }

See Enterprise Policy Profiles for profile semantics. enterprise_policy is mostly advisory; SessionStart injects the recommended session_mode_default — other profile fields are runtime handoff TODO.

Two-tier enforcement is intentional: commits and pushes only require the planning floor, while PR creation, deploys, and releases require the full delivery list. That lets SB make incremental development commits without weakening final delivery gates.

Session Log Format

A session log is created at the start of every session at docs/sessions/YYYY-MM-DD-{task-slug}.md. The path is written to ${SB_RUNTIME_HOME_ROOT}/.silver-bullet/session-log-path for hooks to access.

# Session: {task-slug} ## Meta Date: YYYY-MM-DD Model: host execution tier Mode: interactive | autonomous ## Pre-answers - Model routing — Planning: host execution tier - Worktree: yes ## Task {one-sentence description} ## Approach {how you approached it} ## Skills flagged at discovery {skills surfaced during skill discovery step} ## Skill gap check (post-plan) {any skills flagged after plan was written} ## Active Intent Ledger {nested live request ledger with active and unresolved items} ## Files changed {list of files modified} ## Skills invoked {ordered list of skills actually invoked} ## Agent Teams dispatched {agents dispatched, isolation mode, results} ## Autonomous decisions {decisions made without user input in autonomous mode} ## Outcome {what was achieved} ## Knowledge and learnings additions updated docs/knowledge/YYYY-MM.md or docs/learnings/YYYY-MM.md | no changes ## Runtime/cost note {host runtime, rough usage/cost estimate if available}

Project Root Files

These files live in the project root and are created by /silver:init.

FileOwnerDescription
silver-bullet.mdSilver BulletSilver Bullet enforcement instructions (sections 0-10). Managed by plugin — do not edit manually. Updated by /silver:init.
CLAUDE.mdUserProject-specific instructions. CLAUDE.md in Claude, AGENTS.md in Codex. References silver-bullet.md for enforcement rules. User-owned — Silver Bullet only adds a reference line.
.silver-bullet.jsonSilver BulletProject-level configuration: project name, source pattern, semantic compression, verify commands, workflow paths.

Planning Files (.planning/)

All planning files are managed by SB lifecycle workflows. Do not edit them manually unless you know what you're doing.

FileCreated byDescription
.planning/PROJECT.md/silver:init / SB bootstrapProject goals, scope, metadata, and team context.
.planning/REQUIREMENTS.md/silver:spec / SB planningAuthoritative requirements list. Single source of truth.
.planning/ROADMAP.md/silver:init / SB planningPhase breakdown with goals and acceptance criteria per phase.
.planning/interface/STATE.md/silver:init, /silver:ui-contractDurable UI/design tokens and component state for frontend projects. Stamped from template via scripts/stamp-interface-state.sh.
.planning/{phase}-CONTEXT.md/silver:contextDecisions and clarifications captured for this phase.
.planning/{phase}-RESEARCH.md/silver:deep-research / /silver:planImplementation research results — how to build the phase.
.planning/{phase}-{N}-PLAN.md/silver:planTask-level execution plan. N is the iteration number.
.planning/{phase}-{N}-SUMMARY.md/silver:executeExecution summary: what was built, commits made, deviations.
.planning/{phase}-VERIFICATION.md/silver:verifyGoal-backward verification results.
.planning/{phase}-UAT.md/silver:verifyUser acceptance test results (app workflow only).
.planning/.context-cache/semantic-compress.shCached semantic context chunks. Auto-invalidated on file change.

Documentation Files (docs/)

FilePurpose
docs/PRD-Overview.mdHigh-level product requirements overview synced from planning artifacts.
docs/ARCHITECTURE.mdDurable architecture overview, constraints, and design principles.
docs/TESTING.mdTest strategy, coverage goals, stack-specific verification commands, and testing decisions.
docs/internal/CICD.mdCI/CD pipeline and deployment process documentation when the project keeps operational docs internal.
docs/doc-scheme.mdHuman-readable documentation architecture and update contract.
docs/doc-scheme.jsonMachine-readable required-docs/sections contract consumed by SB doc checks.
docs/task-doc-checklist.jsonPer-task documentation coverage checklist.
docs/knowledge/INDEX.mdGateway index for project-scoped knowledge.
docs/knowledge/YYYY-MM.mdMonthly project-specific intelligence: architecture patterns, gotchas, key decisions, recurring patterns, open questions.
docs/learnings/YYYY-MM.mdMonthly portable learnings using the strict domain/stack/practice/devops/design taxonomy.
docs/CHANGELOG.mdNewest-first task/release changelog.
docs/specs/Detailed design specs and source-linked specs.
docs/workflows/Active workflow files such as full-dev-cycle.md and devops-cycle.md.
docs/sessions/Per-session logs created at session start and completed during finalization/handoff.
docs/issues/Local issue/backlog storage when the project is not configured for GitHub issue tracking.

State Files (${SB_RUNTIME_HOME_ROOT}/.silver-bullet/)

These files live in ${SB_RUNTIME_HOME_ROOT}/.silver-bullet/ with restricted permissions (0700). They store session state for hooks.

FilePurpose
${SB_RUNTIME_HOME_ROOT}/.silver-bullet/modeContains interactive or autonomous. Read by hooks throughout the session. Defaults to interactive if missing.
${SB_RUNTIME_HOME_ROOT}/.silver-bullet/session-log-pathPath to the current session log file in docs/sessions/. Used by hooks to write events.
${SB_RUNTIME_HOME_ROOT}/.silver-bullet/trivialLegacy compatibility marker. Codex agents should route trivial work through /silver:fast instead.
${SB_RUNTIME_HOME_ROOT}/.silver-bullet/session-initSentinel file marking that the session init phase (loading context, compacting) has already run.
${SB_RUNTIME_HOME_ROOT}/.silver-bullet/timeoutTimeout sentinel for autonomous mode session duration tracking.

Useful Shortcuts and Patterns

Common Command Sequences

# Let SB compose the right workflow /silver Add audit logging to account settings # Start a new feature phase explicitly /silver:feature Add audit logging to account settings # Continue where you left off /silver current status and next step # Something broke during execution /silver:debug # Review, verify, and prepare final delivery /silver:review-request -> /silver:review -> /silver:review-triage -> /silver:verify -> /verify-tests # Route trivial changes through the supported fast path /silver:fast # DevOps task with risk controls /silver:devops Update staging Terraform module # Milestone release /silver:release v0.51.1

Runtime and Model Boundaries

Silver Bullet does not provide a generic automatic model-routing layer. Configure model behavior in the active host, then let Silver Bullet compose and enforce the workflow around that execution.