Review Gates

Review gates are quality checkpoints that evaluate phase artifacts before the lifecycle advances. They enforce standards and catch problems early -- before bad decisions cascade through later phases.

Gate Modes

Configure gate modes in .sniper/config.yaml:

review_gates:
  after_ingest: flexible
  after_discover: flexible
  after_plan: strict
  after_solve: flexible
  after_sprint: strict

Strict Mode

The most rigorous mode. The human must explicitly approve advancement.

Behavior with no failures:

• The review report is presented
• You are asked to approve, request revisions, or reject
• No advancement occurs without your explicit "yes"

Behavior with warnings:

• Warnings are listed with justifications
• You decide whether to approve despite warnings

Behavior with failures:

• Failures are listed as mandatory action items
• Advancement is blocked -- no override option
• Fix the issues and run /sniper-review again

Strict mode is the default for after_plan and after_sprint because these are high-risk transitions.

Flexible Mode

Auto-advances when quality is acceptable, with async review.

Behavior with no failures:

• Auto-advances to the next phase
• Report is printed for your records

Behavior with warnings:

• Auto-advances despite warnings
• Warnings are noted for async review

Behavior with failures:

• Failures are presented and you are asked to choose:
  1. Have the team fix the issues
  2. Override and advance anyway
  3. Stop and review manually

Flexible mode is the default for after_discover and after_solve because output from these phases can be refined in later iterations.

Auto Mode

No review gate at all. The phase completes and the lifecycle moves on without evaluation.

WARNING

Auto mode is not recommended for any phase in production projects. It exists for rapid prototyping or experimentation where governance is not needed.

How Evaluation Works

When /sniper-review runs, it:

1. Determines the current active phase from state.phase_log
2. Loads the phase-specific checklist from .sniper/checklists/
3. Identifies the artifacts to review based on the phase
4. Evaluates each checklist criterion against the actual artifact content
5. Assigns PASS, WARN, or FAIL to each item
6. Applies the gate policy based on the configured mode

Evaluation Criteria

Each checklist item receives one of three statuses:

Status	Meaning	Criteria
PASS	Criterion is clearly met	Substantive content, specific (not generic), actionable depth
WARN	Partially met or needs improvement	Content exists but lacks specificity, vague language, incomplete sections
FAIL	Not met	Content missing entirely, only placeholder text, contradicts criterion

The evaluator reads the full artifact content and checks each criterion. Template placeholders (TODO, <!-- -->) are treated as FAILs, not WARNs.

Phase-Specific Checklists

Discovery Checklist

Located at .sniper/checklists/discover-review.md. Evaluates three artifacts:

Project Brief:

• Problem statement is specific and evidence-based
• At least 3 direct competitors identified with features and pricing
• Unique value proposition clearly differentiates
• Target market segment defined with size estimates
• Key assumptions listed explicitly
• v1 scope separates in-scope from out-of-scope

Risk Assessment:

• Technical feasibility risks identified with specifics
• Integration and compliance risks documented
• Each risk has a mitigation strategy
• At least 2 devil's advocate findings

User Personas:

• At least 2 distinct personas defined
• Each has role, goals, pain points, workflows
• Primary user journey mapped
• Personas are realistic, not idealized

Planning Checklist

Located at .sniper/checklists/plan-review.md. The most detailed checklist. Evaluates four artifacts and cross-document consistency:

PRD: testable acceptance criteria, prioritized requirements (P0/P1/P2), measurable success metrics, no duplicates

Architecture: technology choices with rationale and alternatives, component diagram with boundaries, data models with field types, API contracts specific enough for independent implementation

UX Spec: information architecture covering all pages, user flows including error paths, component states (default/hover/active/disabled/loading/error), accessibility requirements

Security: auth model, authorization model, encryption strategy, compliance with named regulations, threat model

Cross-Document Consistency: API contracts match UX data needs, security is implementable within architecture, PRD requirements fully covered by architecture

Sprint Checklist

Located at .sniper/checklists/sprint-review.md. Evaluates code and tests:

• Code quality, linting, type safety
• Test existence and pass rates
• Acceptance criteria verification
• Architecture compliance
• Security review

Memory Compliance

When the memory system is active, review gates also check compliance with learned conventions, anti-patterns, and decisions:

• Convention checks -- verify that code follows codified conventions (e.g., "all API routes use Zod validation")
• Anti-pattern scanning -- search for known anti-patterns in changed files
• Decision consistency -- ensure changes do not contradict active architectural decisions

Memory compliance findings are advisory in flexible gates and enforcement-level in strict gates.

Domain Pack Checklists

Domain packs can provide additional checklist items. If .sniper/packs/*/checklists/ contains any markdown files, those items are evaluated after the framework checklist.

For example, the sales-dialer pack adds a telephony review checklist that verifies TCPA compliance and call recording requirements.

Running Reviews Manually

You can run a review at any time with:

/sniper-review

This evaluates the current active phase. The command reads the phase from state.phase_log, loads the appropriate checklist, and produces a full report.

Next Steps

• Configuration -- set gate modes per phase
• Memory System -- how conventions are enforced during review
• Reference: Checklists -- browse all available checklists