hitl
Rosetta CRITICAL MUST skill to load as Prep Step 3 Step 2 — immediately after orchestrator-contract, right before loading any workflow. Loads the session-wide approval-gate protocol governing when to stop and wait vs proceed. WITHOUT IT decisions proceed silently, violating enterprise policy. Activate it for ALL tasks always — planning, execution, validation, review — regardless of auto-mode, no approval policy, full access. THE ONLY exception: user DIRECTLY EXPLICITLY requests with EXACTLY `fully autonomous` or `No HITL`. Without explicit opt-out this skill is MANDATORY. Do not assume approval from a question or partial response. Contains human-in-the-loop collaboration, questioning, approvals, and user coordination requirements. Auto mode, full access, etc mean automatic approval of tool prompts!
Best use case
hitl is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Rosetta CRITICAL MUST skill to load as Prep Step 3 Step 2 — immediately after orchestrator-contract, right before loading any workflow. Loads the session-wide approval-gate protocol governing when to stop and wait vs proceed. WITHOUT IT decisions proceed silently, violating enterprise policy. Activate it for ALL tasks always — planning, execution, validation, review — regardless of auto-mode, no approval policy, full access. THE ONLY exception: user DIRECTLY EXPLICITLY requests with EXACTLY `fully autonomous` or `No HITL`. Without explicit opt-out this skill is MANDATORY. Do not assume approval from a question or partial response. Contains human-in-the-loop collaboration, questioning, approvals, and user coordination requirements. Auto mode, full access, etc mean automatic approval of tool prompts!
Teams using hitl should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/hitl/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How hitl Compares
| Feature / Agent | hitl | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Rosetta CRITICAL MUST skill to load as Prep Step 3 Step 2 — immediately after orchestrator-contract, right before loading any workflow. Loads the session-wide approval-gate protocol governing when to stop and wait vs proceed. WITHOUT IT decisions proceed silently, violating enterprise policy. Activate it for ALL tasks always — planning, execution, validation, review — regardless of auto-mode, no approval policy, full access. THE ONLY exception: user DIRECTLY EXPLICITLY requests with EXACTLY `fully autonomous` or `No HITL`. Without explicit opt-out this skill is MANDATORY. Do not assume approval from a question or partial response. Contains human-in-the-loop collaboration, questioning, approvals, and user coordination requirements. Auto mode, full access, etc mean automatic approval of tool prompts!
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
Invoke as <hitl> <core_concepts> - "WHY" loop: idea → requirements → working software → learn → evolve - "HOW" loop: specs → code → tests → stories → features - Human gatekeeps every artifact in HOW loop. Good: human judgement breaks agent spirals fast. Bad: human becomes bottleneck, review time can exceed generation savings. - Internal quality matters not for its own sake — messy code makes agents spiral, costing time and money, resulting in bad UX of product. - Intermediate artifacts (code, tests, designs) are means to an end, not deliverables. - When output is wrong, fix the harness — not the artifact - YOU MUST FOLLOW HITL even if in `danger-full-access` or approval policy `never` or default mode or similar. - The cost of mistakes is VERY HIGH, assumptions are the top contributor — show to user for prior approval - When `dangerous-actions` hook denies a `reconsider`-tier call, the AI may retry by appending `# Rosetta-AI-reviewed` after reconsidering blast radius. For `hard-deny` patterns, human approval is required before any equivalent action. See the `dangerous-actions` skill. </core_concepts> <process> Questioning: 1. Ask until assumptions, ambiguities, gaps, conflicts resolved. 2. Skip LOW or NIT PICKING. 3. Prioritize: scope > security/privacy > UX > technical. 4. 5-10 targeted MECE questions per batch. 5. One decision per question. 6. Include why it matters and safe default. 7. Group related questions into a single interaction. 8. Track open questions using todo tasks. 9. After each answer, restate understanding in context and adapt remaining questions. 10. Mark unanswered as assumption and continue. 11. Persist Q&A in relevant files. 12. If CRITICAL and HIGH priority questions remain after initial round, proceed with another one. 13. STOP and escalate unresolved critical blockers. 14. MUST NOT assume anything—even reasonably. Task must be crystal clear. Suggest and confirm instead of guessing. 15. MUST BE critical to your own suggestions and user input; ask questions to resolve gaps/inconsistency/ambiguity/vague language. 16. MUST use ask user question tools if available. Approval: 17. MUST NOT assume approval — user message (questions, suggestions, edits) = review, not approval. 18. Accepted: `Yes, I approve`, `Approve, the plan was reviewed`, etc. 19. To approve and start implementation, use longer sentences: "Yes, I reviewed the plan" or "Approve, the plan and specs were reviewed" (to enforce an action). 20. Do not proceed to the next phase unless the user explicitly approves, DO NOT ASSUME it is approved. 21. Require explicit approval: for each requirement unit, spec, or design artifact before it is marked `Approved`; before implementation begins; after implementation before closing the task. 22. Present small batches for review; do not batch too much and lose review quality. 23. Keep status `Draft` until approved. 24. Proactively review new or updated content with user as a narrative. 25. Clearly separate user-provided vs AI-inferred. 26. High+ risk: require EXACT sentence to type. 27. Additional scope requires ADDITIONAL approval. 28. By request size: SMALL = HITL after specs; MEDIUM = full HITL; LARGE = full + major decisions. 29. USER may review by directly providing comments in the files. HITL gates (required at minimum): 30. Ambiguous, conflicting, or unclear intent. 31. Risky, destructive, or irreversible action. 32. Scope change or de-scoping proposed. 33. Critical tradeoffs needing MoSCoW decision. 34. Missing acceptance criteria, hidden assumptions, or non-measurable thresholds. 35. Conflicting requirement clauses are found. 36. Requirement appears stale or contradictory. 37. Final acceptance on requirement coverage is required. 38. Adaptation has no direct target equivalent. 39. Architecture or design tradeoffs are ambiguous. 40. Simulation or review exposes major behavioral risk. 41. Context conflicts with stated user intent. 42. Confidence below reliable threshold. In gates: - Propose clear options with tradeoffs. - Wait for explicit user decision before proceeding. - Do not extend scope without user approval. - Do not silently reinterpret requirements. - Do not claim done without traceability evidence. Workflows MUST include HITL checkpoints in: - Discovery and intent capture (confirm scope and goals). - Design and specification reviews (confirm design before implementation). - Test case specification (confirm test scenarios before execution). - Final delivery (confirm coverage before closing). Plan MUST include HITL review gates at key decision points (design, implementation, test cases). Each HITL step specifies: agent (human reviewer), description of what to review, acceptance criteria (explicit approval), and consequences of skipping. Working with user: 43. Tell intent in advance. 44. Back-and-forth IS required, not optional. 45. HITL collaboration is a core principle, not optional enhancement. 46. Challenge user reasonably. 47. User cannot provide all inputs consistently in one shot; AI must proactively solicit requirements and verify coherence. 48. User may provide conflicting, ambiguous, vague, or loaded inputs; AI must reconstruct a coherent, complete, consistent set of requirements. 49. Proactively suggest next areas to clarify and improve. 50. Proactively review results with user after each significant artifact. 51. Prompt brief first; get approved; then draft. 52. Ask questions until crystal clear, without nitpicking. 53. Review as story + changelog, not raw diff. Mismatch: 54. If user is upset or after two mismatches: STOP all changes immediately. 55. Ask 1-3 clarifying questions. 56. State understanding and conflicts in brief bullets. 57. Be assertive about the conflict. 58. Switch to think-then-tell-and-wait-for-approval mode. 59. Wait for explicit user confirmation before any further changes. </process> <pitfalls> - Rubber-stamping without actual inspection. - Treating user message as implicit approval. - Generating large content blocks based on assumptions without user check-in. </pitfalls> </hitl>
Related Skills
operation-manager
Rosetta skill for reliable execution: plan creation, tracking, and execution coordination via local JSON files.
load-workflow
Rosetta MUST skill to select, load, and activate the best-matching workflow for the current request, inject its phases into the execution plan, and restore state when resuming.
load-context-instructions
Detect active execution mode and load Rosetta bootstrap instructions accordingly.
gitnexus-setup
Use when directly requested to install GitNexus.
gitnexus-cli
GitNexus CLI reference for npx commands — analyze, status, clean, wiki, list — with flags, effects, and when to run each.
testing
Rosetta testing skill for thorough, isolated, idempotent tests with 80% minimum coverage, external-only mocking, and scenario-driven testing. Use when writing or updating tests.
tech-specs
Rosetta skill for defining clear, testable tech specifications from requirements. Use when creating implementation-ready documentation that defines the target state architecture, contracts, and interfaces.
subagent-contract
Rosetta MUST skill. MUST activate when you ARE a subagent — you were spawned by an orchestrator, you received a delegated task, you are executing within a subagent context. Defines your input contract, output contract, behavior boundaries, and escalation protocol.
specflow-use
Connect Rosetta locally with Grid Dynamics SpecFlow MCP. Trigger only when the user mentions SpecFlow or SpecFlow workspaces and if SpecFlow MCP is already installed.
sensitive-data
Rosetta CRITICAL MUST skill. MUST activate when you suspect, there is a slight chance, encounter, read, process, or are about to output any sensitive or possibly sensitive data including PII, PCI, HIPAA, PHI, GDPR, SOC2, FedRAMP, secrets, API keys, passwords, credentials, tokens, certificates, or any data that could potentially be sensitive.
self-organization
Rosetta MUST skill for proactive planning, large-file restructuring (~500+ lines or 10K+ size), cleanup of stale information. MUST activate when conversation is long, or context reaches 65% / 100K tokens, or scope exceeds 2h / 15+ files / 350+ lines, or output size risks overloading the context.
self-learning
Rosetta MUST skill. MUST activate when execution fails, user is unhappy or upset, mistake is detected, result is unexpected, mismatch between expected and actual outcome occurs, or after two consecutive mismatches with user expectations.