Skip to content

Add adversarial-modeler agent to differential-review #84

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dguido wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Add adversarial-modeler agent to differential-review #84

dguido wants to merge 3 commits into from
+190 −4

Conversation

@dguido
Copy link
Member

@dguido dguido commented Feb 12, 2026

Summary

  • Adds adversarial-modeler agent (Read, Grep, Glob, Bash) for attacker modeling on HIGH RISK code changes
  • 5-step methodology: attacker model definition, concrete attack vectors, exploitability rating, complete exploit scenario, baseline cross-reference
  • Key principle: "Concrete impact only — never 'could cause issues'"
  • Updates SKILL.md with agent section and decision tree reference
  • Bumps plugin version to 1.1.0

New files

  • plugins/differential-review/agents/adversarial-modeler.md (164 lines)

Test plan

  • YAML frontmatter parses correctly
  • {baseDir}/skills/differential-review/ paths resolve to existing files (adversarial.md, patterns.md, methodology.md)
  • SKILL.md changes don't break existing skill trigger behavior
  • marketplace.json version matches plugin.json (both 1.1.0)

🤖 Generated with Claude Code

dguido and others added 2 commits February 11, 2026 21:56
@dguido @claude
Add adversarial-modeler agent to differential-review plugin
2872906 
Introduces a formal agent definition for adversarial threat modeling
on high-risk code changes. Updates SKILL.md to reference agent and
bumps version to 1.1.0.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@dguido @claude
Fix {baseDir} paths and bump marketplace.json version
9ce56ff 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@dguido dguido requested a review from omarinuwa as a code owner February 12, 2026 03:09
@dguido @claude
fix: resolve code review findings for PR #84
8bc8b9f 
- Fix decision tree formatting: use correct tree syntax (first
  child uses branch connector, last child uses end connector)
- Add "When NOT to Use" section to adversarial-modeler agent per
  contributing guidelines

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@dguido
Copy link
Member Author

dguido commented Feb 12, 2026

Code Review Summary

Findings by severity

Severity Count
P1 (blocks merge) 0
P2 (important) 1
P3 (nice to have) 2
P4 (informational) 2

Fixed (2)

  • P2: Decision tree formatting (SKILL.md lines 83-87) — Two └─ connectors at the same tree level is invalid tree syntax (└─ means "last item"). Fixed by using ├─ for the first option and └─ for the second.
  • P3: Missing "When NOT to Use" section (adversarial-modeler.md) — Per contributing guidelines, agent definitions should include a "When NOT to Use" section. Added one covering: LOW/MEDIUM risk changes, greenfield code, documentation-only changes, and quick triage requests.

Dismissed (1)

  • P3: README.md not updated — The plugin README doesn't mention the new agent. Dismissed because the SKILL.md Agents section already serves as the authoritative reference, and duplicating this in the README creates a maintenance sync burden.

Noted (2 P4, no action)

  • P4: Description length — 196 characters is on the longer side but justified by the specificity of the trigger conditions.
  • P4: Commit message alignment — The {baseDir} path fix in the second commit correctly follows the convention used in the audit-context-building agent.

Quality pipeline

All checks pass:

  • JSON validation (marketplace.json, plugin.json)
  • Marketplace consistency (27 plugins validated)
  • SKILL.md frontmatter validation (54 files validated)
  • No hardcoded user paths
  • No personal emails
  • Version consistency (marketplace.json and plugin.json both at 1.1.0)
  • Pre-commit hooks (ruff, shellcheck, shfmt, yaml, json, trailing whitespace, end-of-file)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@omarinuwa omarinuwa Awaiting requested review from omarinuwa omarinuwa is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dguido