feat(commands): add /gemini-code-review — Gemini 3.5 Flash first-pass review (#27)

New command + self-contained worker (scripts/gemini-code-review.sh): one-shot
diff review on gemini-3.5-flash via a transient liteLLM proxy, curated by the
orchestrator against the local repo's CLAUDE.md. Design B — no nested Claude
Code agent on Gemini (no tool-call-translation fragility). Repo-agnostic;
secret via the plugin's /secret-input + /secret-use. Bump 1.18.0 + CHANGELOG.

Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Author: lapc506

.claude-plugin/marketplace.json

@@ -1,7 +1,7 @@
 {
   "$schema": "https://anthropic.com/claude-code/marketplace.schema.json",
   "name": "make-no-mistakes",
-  "version": "1.17.0",
+  "version": "1.18.0",
   "description": "The disciplined dev lifecycle — implement issues, review PRs, sync releases, test E2E, manage sessions, and stash secrets via OS-native prompts. One plugin to make no mistakes.",
   "owner": {
     "name": "Luis Andres Pena Castillo",
@@ -11,7 +11,7 @@
     {
       "name": "make-no-mistakes",
       "description": "Dev lifecycle orchestrator: disciplined Linear issue execution with worktree isolation, PR review with Greptile gating, team release sync, E2E test generation and execution, test suite previewer, security pentesting, MoSCoW + RICE prioritization, cross-platform secret stash via OS-native GUI prompts (zenity / kdialog / osascript / Get-Credential), and session management. 18 commands, 6 auto-activating skills, 2 specialized agents.",
-      "version": "1.17.0",
+      "version": "1.18.0",
       "author": {
         "name": "Luis Andres Pena Castillo",
         "email": "lapc506@users.noreply.github.com"

.claude-plugin/plugin.json

@@ -1,6 +1,6 @@
 {
   "name": "make-no-mistakes",
-  "version": "1.17.0",
+  "version": "1.18.0",
   "description": "The disciplined dev lifecycle — implement issues, review PRs, sync releases, test E2E, manage sessions, stash secrets, and enforce manifest-driven tool-call hooks. One plugin to make no mistakes.",
   "author": {
     "name": "Luis Andres Pena Castillo",

CHANGELOG.md

@@ -18,6 +18,25 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [1.18.0] - 2026-05-26
+
+### Added
+- **New command `/make-no-mistakes:gemini-code-review`** + worker
+  `scripts/gemini-code-review.sh`. A cost-optimized first-pass code review: the
+  heavy diff-reading runs on **Gemini 3.5 Flash** (one-shot via a transient
+  liteLLM proxy), then the orchestrator (on a Claude model) curates the findings
+  against the local repo's `CLAUDE.md`. **Design B** — no nested Claude Code
+  agent runs on Gemini, so there is no tool-call-translation fragility. Repo-
+  agnostic: base branch auto-detected (`origin/HEAD` → `develop`/`main`/`master`),
+  the rubric is generic, and the curation layer adds repo specifics. Secret
+  handling via the plugin's own `/secret-input` + `/secret-use` so
+  `GEMINI_API_KEY` never leaks into logs.
+
+### Notes
+- **Parallel-version coordination:** the `andres/stale-push-hook` branch also
+  claims `1.18.0`. Whichever merges first keeps `1.18.0`; the other rebases onto
+  the updated `main` and bumps to `1.19.0`.
+
 ## [1.17.0] - 2026-05-25
 
 ### Added

README.md

@@ -1,6 +1,6 @@
 # make-no-mistakes
 
-**Version: 1.17.0** · [CHANGELOG](./CHANGELOG.md) · [Marketplace](https://github.com/DojoCodingLabs/make-no-mistakes-toolkit)
+**Version: 1.18.0** · [CHANGELOG](./CHANGELOG.md) · [Marketplace](https://github.com/DojoCodingLabs/make-no-mistakes-toolkit)
 
 The disciplined dev lifecycle — implement issues, review PRs, sync releases, test E2E, and manage sessions. One plugin to make no mistakes.
 

commands/gemini-code-review.md

@@ -0,0 +1,57 @@
+---
+description: Cheap first-pass code review on Gemini 3.5 Flash (one-shot via liteLLM), curated by the orchestrator against the local repo's CLAUDE.md. Design B — no nested agent.
+argument-hint: "[PR# | branch | --uncommitted]  (default: <base>...HEAD)"
+---
+
+# Gemini Code Review: $ARGUMENTS
+
+A **cost-optimized first-pass** code review. The heavy diff-reading runs on
+**Gemini 3.5 Flash** (cheap/fast) in a single one-shot request; you (the
+orchestrator, on a Claude model) then **curate** the output against the local
+repo's review rules. This is NOT a replacement for a full Claude-model review on
+high-risk PRs — it's a fast triage pass.
+
+## How it works (Design B)
+
+`${CLAUDE_PLUGIN_ROOT}/scripts/gemini-code-review.sh` resolves the diff, starts a
+transient liteLLM proxy, sends the diff + a condensed review rubric to
+gemini-3.5-flash in ONE completion, and returns review markdown. No nested Claude
+Code agent runs on Gemini, so there is no tool-call-translation fragility.
+
+## Steps
+
+1. **Run the worker** against the requested target (default `<base>...HEAD`, base
+   auto-detected from `origin/HEAD` → `develop`/`main`/`master`). The worker needs
+   `GEMINI_API_KEY` in the environment — provide it via this plugin's secret
+   helpers so it never leaks into logs:
+
+   ```bash
+   # one-time, if not already staged:  /secret-input
+   /secret-use GEMINI_API_KEY -- bash "${CLAUDE_PLUGIN_ROOT}/scripts/gemini-code-review.sh" $ARGUMENTS
+   ```
+
+   - `$ARGUMENTS` may be a PR number, branch, `--uncommitted`, an `a..b` range, or
+     empty. Pass it through verbatim.
+   - If the script exits non-zero, surface the stderr reason (missing
+     `GEMINI_API_KEY`, empty diff, proxy failed to start) and STOP — do not
+     fabricate a review.
+
+2. **Curate the Gemini output** — do NOT just relay it. For each finding:
+   - **Validate** against the actual diff and **this repo's `CLAUDE.md`** (and any
+     nearest-directory `CLAUDE.md` / `docs/agent-standards`). Confirm, correct, or
+     **drop false positives** (Flash over-flags).
+   - **Add** repo-rule-specific issues Flash missed that are visible in the diff
+     (architecture-boundary violations, banned patterns, test conventions, RLS /
+     security rules — whatever the repo's standards encode).
+   - Keep `file:line` precision; discard vague advice.
+
+3. **Present the curated review** in the worker's shape (Files table,
+   Critical/Major/Minor findings, Missing Tests, Verdict + metrics) with a one-line
+   header noting it is a **Gemini-3.5-Flash first pass curated by the orchestrator**.
+
+## When to use
+
+- **`/make-no-mistakes:gemini-code-review`**: cheap triage, WIP self-review,
+  large/low-risk diffs, fast feedback.
+- A full Claude-model review (e.g. a repo's own `/code-review`): authoritative
+  review on high-risk PRs (auth, payments, migrations, RLS, infra).

package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lapc506/make-no-mistakes",
-  "version": "1.17.0",
+  "version": "1.18.0",
   "description": "The disciplined dev lifecycle — implement issues, review PRs, sync releases, test E2E, manage sessions, stash secrets, and enforce manifest-driven tool-call hooks (no SSH+DB, no manual prod, no minified build, no secret leaks, Slack format). OpenCode + Claude Code plugin.",
   "type": "module",
   "main": "./dist/index.js",

scripts/gemini-code-review.sh

@@ -0,0 +1,178 @@
+#!/usr/bin/env bash
+# gemini-code-review.sh — one-shot code review on Gemini 3.5 Flash via liteLLM.
+#
+# Self-contained, repo-agnostic worker for the /make-no-mistakes:gemini-code-review
+# command. Resolves a diff, sends it + a condensed review rubric to
+# gemini-3.5-flash in a SINGLE completion through a transient liteLLM proxy, and
+# prints review markdown to stdout. NO nested Claude Code agent runs on Gemini,
+# so there is no tool-call-translation fragility — just one completion. An Opus
+# orchestrator (the command) then curates the output against the local repo's
+# CLAUDE.md rules.
+#
+# Usage:
+#   gemini-code-review.sh                 # diff <base>...HEAD (base auto-detected)
+#   gemini-code-review.sh 245             # gh pr diff 245
+#   gemini-code-review.sh --uncommitted   # git diff HEAD (staged + unstaged)
+#   gemini-code-review.sh my-branch       # git diff <base>...my-branch
+#   gemini-code-review.sh a..b            # git diff a..b
+#   [--base <branch>]                     # override auto-detected base
+#
+# Secret: requires GEMINI_API_KEY in the environment. Provide it WITHOUT leaking
+# it into logs via this plugin's own secret helpers:
+#   /secret-input                          (stage the key once)
+#   /secret-use GEMINI_API_KEY -- bash <this-script> [args]
+#
+# Requires: litellm, jq, curl, git (+ gh for PR mode).
+set -euo pipefail
+
+PORT="${GEMINI_REVIEW_PORT:-4100}"
+MODEL="gemini/gemini-3.5-flash"
+BASE=""
+TARGET=""
+
+while [ $# -gt 0 ]; do
+  case "$1" in
+    --base) [ -z "${2:-}" ] && { echo "ERROR: --base requiere un valor." >&2; exit 1; }; BASE="$2"; shift 2 ;;
+    --uncommitted) TARGET="--uncommitted"; shift ;;
+    -h|--help) sed -n '2,26p' "$0"; exit 0 ;;
+    *) TARGET="$1"; shift ;;
+  esac
+done
+
+for bin in litellm jq curl git; do
+  command -v "$bin" >/dev/null 2>&1 || { echo "ERROR: falta '$bin' en PATH." >&2; exit 1; }
+done
+if [ -z "${GEMINI_API_KEY:-}" ]; then
+  echo "ERROR: GEMINI_API_KEY no está en el entorno." >&2
+  echo "Stage it once with /secret-input, then run via:" >&2
+  echo "  /secret-use GEMINI_API_KEY -- bash \"$0\" $*" >&2
+  exit 1
+fi
+
+# --- auto-detect base branch (repo-agnostic) ---
+if [ -z "$BASE" ]; then
+  BASE="$(git symbolic-ref --quiet --short refs/remotes/origin/HEAD 2>/dev/null | sed 's@^origin/@@' || true)"
+  if [ -z "$BASE" ]; then
+    for b in develop main master; do
+      git show-ref --verify --quiet "refs/remotes/origin/$b" && BASE="$b" && break
+    done
+  fi
+  [ -z "$BASE" ] && BASE="main"
+fi
+
+# --- resolve diff ---
+LABEL=""
+if [ -z "$TARGET" ]; then
+  LABEL="${BASE}...HEAD"; DIFF="$(git diff "${BASE}...HEAD")"
+elif [ "$TARGET" = "--uncommitted" ]; then
+  LABEL="uncommitted (git diff HEAD)"; DIFF="$(git diff HEAD)"
+elif [[ "$TARGET" =~ ^[0-9]+$ ]]; then
+  command -v gh >/dev/null 2>&1 || { echo "ERROR: 'gh' requerido para modo PR." >&2; exit 1; }
+  LABEL="PR #${TARGET}"; DIFF="$(gh pr diff "$TARGET")"
+elif [[ "$TARGET" == *..* ]]; then
+  LABEL="$TARGET"; DIFF="$(git diff "$TARGET")"
+else
+  LABEL="${BASE}...${TARGET}"; DIFF="$(git diff "${BASE}...${TARGET}")"
+fi
+if [ -z "${DIFF// }" ]; then echo "ERROR: diff vacío para '${LABEL}'." >&2; exit 2; fi
+DIFF_CHARS=${#DIFF}
+[ "$DIFF_CHARS" -gt 600000 ] && echo "WARN: diff grande (${DIFF_CHARS} chars) — el review puede perder profundidad." >&2
+
+# --- rubric (repo-agnostic; the command curates against the repo's CLAUDE.md) ---
+read -r -d '' RUBRIC <<'RUBRIC_EOF' || true
+You are a battle-tested senior engineer doing a rigorous code review of a diff.
+Review as if you will debug this at 3 AM during an incident. Read EVERY changed
+line. You are given ONLY the diff — do not ask to run commands or open other
+files; review what is shown and flag where you'd want to see more.
+
+Hunt for:
+- Logic: race conditions, null/undefined access without guards, missing awaits,
+  off-by-one, inverted/incorrect boolean logic, wrong equality, bad type coercion.
+- State/data-flow: stale closures, missing effect/memo deps, direct mutation of
+  shared/immutable state, lost error context in catch blocks.
+- Edge cases: empty/zero/negative, empty-string vs null vs undefined, encoding,
+  timezones, large-input performance, concurrency.
+- Architecture: single-responsibility violations, oversized units, missing types,
+  magic numbers/strings, leftover debug logs / commented-out code, dead code.
+- Tests: new logic without tests; missing error/empty/edge coverage.
+- Security: secrets/keys committed or logged, privileged credentials in client
+  code, unvalidated input, missing authz/ownership checks, SQL injection, XSS via
+  raw/unsafe HTML injection, SSRF on server-side fetch, missing rate limiting.
+
+Output EXACTLY this markdown:
+
+## Gemini Code Review — {LABEL}
+
+### Files Reviewed
+| File | +/- | Risk | Notes |
+|------|-----|------|-------|
+
+### Findings
+#### Critical (blocks merge)
+- **[Category]** `file:line` — issue -> fix
+#### Major (fix before merge)
+- ...
+#### Minor (recommended)
+- ...
+
+### Missing Tests / Changes
+- ...
+
+### Verdict: Approve | Request Changes | Block
+| Critical | Major | Minor |
+|----------|-------|-------|
+| N | N | N |
+
+If a section is empty, write "None.". Be specific with file:line; no vague advice.
+RUBRIC_EOF
+RUBRIC="${RUBRIC/\{LABEL\}/$LABEL}"
+
+# --- transient liteLLM proxy (self-generated config + master key; kill only ours) ---
+PROXY_LOG="$(mktemp -t gcr-proxy.XXXXXX.log)"
+PROXY_CFG="$(mktemp -t gcr-config.XXXXXX.yaml)"
+export LITELLM_MASTER_KEY="sk-gcr-local-$$"
+cat > "$PROXY_CFG" <<CFG
+model_list:
+  - model_name: $MODEL
+    litellm_params:
+      model: $MODEL
+      api_key: os.environ/GEMINI_API_KEY
+general_settings:
+  master_key: os.environ/LITELLM_MASTER_KEY
+litellm_settings:
+  drop_params: true
+CFG
+STARTED=false
+ready() { curl -fsS "http://127.0.0.1:${PORT}/health/readiness" >/dev/null 2>&1; }
+cleanup() { $STARTED && [ -n "${PID:-}" ] && kill "$PID" 2>/dev/null || true; rm -f "$PROXY_LOG" "$PROXY_CFG"; }
+trap cleanup EXIT INT TERM
+
+if ! ready; then
+  echo "Levantando liteLLM proxy (gemini-3.5-flash) en 127.0.0.1:${PORT}..." >&2
+  litellm --config "$PROXY_CFG" --host 127.0.0.1 --port "$PORT" >"$PROXY_LOG" 2>&1 &
+  PID=$!; STARTED=true
+  for _ in $(seq 1 40); do ready && break; sleep 1; done
+  ready || { echo "ERROR: el proxy no arrancó. Log:" >&2; tail -8 "$PROXY_LOG" >&2; exit 4; }
+fi
+
+# --- one completion ---
+# `-sS` (NOT -fsS): on an HTTP 4xx/5xx the body is captured + diagnosed below,
+# instead of curl failing silently and masking the real API error (quota, bad key).
+BODY="$(jq -n --arg m "$MODEL" --arg sys "$RUBRIC" \
+  --arg usr "Review this diff (${LABEL}):"$'\n\n'"\`\`\`diff"$'\n'"${DIFF}"$'\n'"\`\`\`" \
+  '{model:$m, messages:[{role:"system",content:$sys},{role:"user",content:$usr}]}')"
+RESP="$(curl -sS "http://127.0.0.1:${PORT}/v1/chat/completions" \
+  -H "Authorization: Bearer ${LITELLM_MASTER_KEY}" \
+  -H "Content-Type: application/json" -d "$BODY")" \
+  || { echo "ERROR: no se pudo conectar al proxy." >&2; exit 5; }
+
+CONTENT="$(printf '%s' "$RESP" | jq -r '.choices[0].message.content // empty')"
+if [ -z "$CONTENT" ]; then
+  echo "ERROR: respuesta sin contenido:" >&2
+  printf '%s\n' "$RESP" | jq -r '.error // .' >&2 2>/dev/null || printf '%s\n' "$RESP" >&2
+  exit 6
+fi
+
+OUT="$(mktemp -t gemini-code-review.XXXXXX.md)"
+printf '%s\n' "$CONTENT" | tee "$OUT"
+echo "[saved: $OUT · model: gemini-3.5-flash · diff: $LABEL · ${DIFF_CHARS} chars]" >&2