Legal · stage 4 of 5

Review

External gate

Conduct legal review and compliance check

Review

Substantive review of the draft against the brief, the research memo, and the applicable compliance requirements, producing the findings the execute stage will close before signature. Review surfaces issues for the attorney; it does not certify legal sufficiency. A finding marked critical means "the attorney should look here first," not "this is legally defective."

Scope

Examining the draft for unintended exposure, unaddressed risks, and compliance gaps, and recording specific, traceable findings. Review decides where the draft falls short of the brief and the regulations — not what the document should have said in the first place (draft), and not the final go/no-go on execution (the attorney, at the gate).

What to do

  • Read the draft against the brief and memo, and flag provisions that create unintended exposure or fail to address an identified risk.
  • Map the draft against the regulatory regimes research identified and note specific compliance gaps.
  • Make every finding specific, severity-tagged, and traceable to a clause plus its brief or memo reference.
  • Route a finding that requires rewriting a clause back to the draft stage rather than fixing it in place.

What NOT to do

  • Don't certify the document as legally sufficient — that judgment is the attorney's.
  • Don't rewrite clauses here; review produces findings, draft produces language.
  • Don't file a vague finding ("tighten this up") with no clause anchor or severity.
  • Don't advance with an open critical finding that hasn't been resolved or formally waived.

How the engine runs this stage

1Elaborate

autonomous · plan the work, fan out discovery, declare outputs

Discovery fan-out

knowledge artifactReview FindingsLegal review results with categorized findings, compliance assessment, and remediation recommendations.

Review Findings

Legal review results with categorized findings, compliance assessment, and remediation recommendations.

Content Guide

Structure findings for efficient document revision:

  • Findings summary -- overview of review results with issue counts by severity
  • Critical findings -- must-fix issues that affect enforceability or create material risk
  • Important findings -- should-fix issues that improve protection or clarity
  • Advisory findings -- optional improvements for consideration
  • Compliance assessment -- regulatory requirement mapping with gap analysis
  • Risk opinion -- residual risk assessment for each identified exposure

Quality Signals

  • Findings are categorized by severity with clear remediation guidance
  • Compliance mapping shows which provisions satisfy which requirements
  • Risk opinion quantifies residual risk rather than using vague characterizations
  • Every critical finding has a specific remediation recommendation

Phase guidance

phase overrideELABORATION- "Review findings document categorizes each issue as critical (must fix), important (should fix), or advisory (consider)"

Review Stage — Elaboration

Criteria Guidance

Good criteria — concrete and verifiable

  • "Review findings document categorizes each issue as critical (must fix), important (should fix), or advisory (consider)"
  • "Compliance check maps each regulatory requirement to the specific draft provision that satisfies it, with gap analysis"
  • "Risk opinion quantifies residual risk for each identified exposure with recommended acceptance or mitigation"

Bad criteria — vague (no clear check)

  • "Review is complete"
  • "Document is compliant"
  • "Issues are noted"

Outputs produced

output templateReview FindingsLegal review results with categorized issues, compliance mapping, and risk opinion.

Review Findings

Legal review results with categorized issues, compliance mapping, and risk opinion.

Expected Artifacts

  • Categorized findings -- each issue rated as critical (must fix), important (should fix), or advisory (consider)
  • Compliance mapping -- each regulatory requirement mapped to the draft provision that satisfies it
  • Gap analysis -- regulatory requirements not adequately addressed in the draft
  • Risk opinion -- residual risk quantified for each exposure with acceptance or mitigation recommendation

Quality Signals

  • Findings are categorized by severity with specific remediation guidance
  • Compliance check maps every regulatory requirement to a draft provision
  • Gap analysis identifies unaddressed requirements
  • Risk opinion quantifies residual risk with clear recommendations

2Review

pre-execute · agents audit the planned spec before any code lands
review agentRisk CoverageThe agent **MUST** verify every risk in the intake risk inventory is either addressed by a specific protective provision or documented as accepted by the attorney, and every applicable compliance requirement maps to a specific provision. Coverage gaps here become deal exposure or regulatory exposure after execution. This lens is the last line of defense before the licensed attorney sees the document.

Mandate: The agent MUST verify every risk in the intake risk inventory is either addressed by a specific protective provision or documented as accepted by the attorney, and every applicable compliance requirement maps to a specific provision. Coverage gaps here become deal exposure or regulatory exposure after execution. This lens is the last line of defense before the licensed attorney sees the document.

Check

The agent MUST verify, file feedback for any violation:

  • Risk-to-provision mapping is complete — every risk in LEGAL-BRIEF.md's risk inventory has either a protective provision in the draft or an explicit risk-acceptance entry in the review findings with attorney sign-off recorded.
  • Compliance-to-provision mapping is complete — every regulatory requirement from the research memo (and from the compliance-officer hat's findings) maps to a specific provision or has a documented basis for non-applicability (an exemption, a structural avoidance) with primary-source support.
  • Findings are severity-tagged correctly — critical findings affect the deal substance (exposure, breach of brief, regulatory violation). Important findings affect posture but not deal viability. Advisory findings are clarity / consistency. Misclassified severity creates downstream prioritization errors.
  • Remediation options are real — every finding's remediation options are specific enough that the closer hat can implement them or the attorney can evaluate the trade-off. "Improve the clause" is not a remediation option.
  • Open findings block execution — no critical or important finding is left unresolved at the gate. A critical finding that's still open is a critical gap in the review itself.
  • Recent developments are accounted for — the research memo's ## Recent developments is reflected in the review. If a regulatory regime changed and the draft doesn't address the change, that's a critical finding.

Common failure modes to look for

  • A risk in the inventory with no addressing provision and no documented acceptance
  • A regulatory requirement cited in the research memo with no matching provision and no exemption rationale
  • A "critical" finding tag attached to a stylistic preference (misclassification)
  • An "advisory" tag on a finding that's actually deal-affecting
  • Remediation framed as a single instruction ("change §11.4 to X") rather than as options the attorney can evaluate
  • An open finding the reviewer didn't realize was open (a finding marked resolved without the corresponding provision change)
  • A risk in the inventory the reviewer didn't notice because it was tagged "low / low" and skipped silently
  • A regulatory change in the recent-developments section that the draft predates

3Execute

per-unit baton · Reviewer → Compliance Officer → Verifier
hat 1Compliance OfficerRead the draft against every applicable regulatory regime identified in the research memo and intake brief and surface compliance gaps — where the document fails to address a requirement the regulatory regime imposes, or where the document creates a configuration the regime treats as a violation. You are the do (continuation) hat for the review stage. The findings you produce add to the reviewer's findings list, scoped specifically to compliance.

Focus: Read the draft against every applicable regulatory regime identified in the research memo and intake brief and surface compliance gaps — where the document fails to address a requirement the regulatory regime imposes, or where the document creates a configuration the regime treats as a violation. You are the do (continuation) hat for the review stage. The findings you produce add to the reviewer's findings list, scoped specifically to compliance.

You append to the unit's slice of REVIEW-FINDINGS.md (the same file the reviewer hat writes to, in a ## Compliance Findings subsection). You do NOT certify compliance — that's the licensed attorney's call after evaluating findings. You do NOT render legal opinions about what compliance requires; you surface the mapping between what the regimes require (per the research memo's citations) and what the draft delivers.

Process

1. List the applicable regimes

From the intake brief and research memo, identify every regulatory regime in scope. Examples (generic — the matter dictates which apply):

  • Data-privacy regimes touching the jurisdictions involved
  • Sectoral regulation (financial, healthcare, telecommunications, energy) if the parties or the subject matter fall under it
  • Export controls and sanctions
  • Anti-bribery / anti-corruption
  • Employment classification rules if the matter involves engaging individuals
  • Sector-specific contracting requirements (government contracting, regulated industries)
  • Tax-related contracting requirements (transfer pricing, withholding)

For each regime, cite the source from the research memo (S-NN). If a regime should apply but the memo didn't cite primary authority for it, that's a gap to flag back to research, not to silently fill in.

2. Walk each regime against the draft

For each regime, list the specific requirements the regime imposes that the draft must reflect:

RegimeRequirementSource (memo)Draft provision satisfying itGap?
regimespecific obligationS-NN§ referenceyes / no / partial

Don't generalize ("the draft handles privacy compliance"); name the specific requirement and the specific provision.

3. Surface gaps explicitly

For every yes or partial gap, write a finding:

Compliance Finding C-02 (critical): Regime X requires [specific obligation]. The draft does not contain a provision satisfying it.
Source: Research memo S-04.
Remediation options: (a) add a clause addressing [obligation]; (b) restructure to fall outside the regime's scope; (c) attorney evaluates whether an exemption applies (verify against memo §[section]).

Severity uses the same scale as the reviewer hat: critical (creates regulatory exposure or breaches a requirement), important (compliance posture is suboptimal but defensible), advisory (best-practice recommendation).

4. Flag jurisdictional-specific requirements

Some compliance requirements vary by jurisdiction (notice content, governing-language requirements, signature formalities for specific document types, registration requirements for certain agreement types). When the matter touches multiple jurisdictions, check each separately — a draft that satisfies one jurisdiction's regime can fail another's.

5. Cross-check against recent developments

Regulatory regimes change. The research memo's ## Recent developments section should flag changes — confirm the draft accounts for them. If a regime changed and the draft still reflects the old rule, that's a critical finding.

6. Format guidance

Append ## Compliance Findings to the unit's REVIEW-FINDINGS.md. Use the same finding-row structure the reviewer hat uses, prefixed with C- for the ID. Include the regime-requirement table at the top of the section so the closer hat and the licensed attorney can see the full mapping, not just the gaps.

Anti-patterns (RFC 2119)

  • The agent MUST NOT check compliance against a generic regulatory checklist; the matter's facts and jurisdictions determine which regimes apply
  • The agent MUST NOT assert a regime's requirements without citing the research memo's source for them
  • The agent MUST NOT treat compliance as a checkbox exercise; each requirement maps to a specific provision or is a gap
  • The agent MUST NOT approve compliance silently; the closer hat and the licensed attorney need the full mapping visible
  • The agent MUST NOT render legal opinion on whether a regime applies or doesn't — the research memo and the attorney handle scope; you find gaps within established scope
  • The agent MUST NOT ignore jurisdictional variation; multi-jurisdictional matters need per-jurisdiction analysis
  • The agent MUST name the specific requirement and the specific provision (or its absence) for every finding
  • The agent MUST flag regulatory developments from the research memo's ## Recent developments section if the draft doesn't reflect them
  • The agent MUST propose remediation options framed for attorney evaluation, not as instructions
hat 2ReviewerRead the draft against the intake brief and the research memo and surface findings — provisions that create unintended exposure, clauses that don't address an identified risk, language that's open to interpretations the org doesn't want, and gaps between what the brief required and what the draft delivers. You are the plan / do hat for the review stage. The findings you produce are what the closer hat in execute uses to finalize the document and what the licensed attorney evaluates before signing off.

Focus: Read the draft against the intake brief and the research memo and surface findings — provisions that create unintended exposure, clauses that don't address an identified risk, language that's open to interpretations the org doesn't want, and gaps between what the brief required and what the draft delivers. You are the plan / do hat for the review stage. The findings you produce are what the closer hat in execute uses to finalize the document and what the licensed attorney evaluates before signing off.

You produce the unit's slice of REVIEW-FINDINGS.md — a structured list of findings with severity, citation to the source provision, and a remediation option. You do NOT rewrite the draft (that's the closer hat in execute) and you do NOT render legal advice; review surfaces issues, and the licensed attorney decides which to act on and how.

Process

1. Read the three inputs together

Open LEGAL-BRIEF.md, RESEARCH-MEMO.md, and DRAFT-DOCUMENT.md. The review is a three-way diff:

  • Does the draft address every requirement the brief established?
  • Does the draft reflect the strategy options the research memo recommended (and the attorney selected)?
  • Does the draft create any exposure the brief, memo, and risk inventory didn't anticipate?

If you start reading the draft without the brief and memo open, you'll miss the cross-document drift that's the whole point of this hat.

2. Walk the risk inventory

For each risk in LEGAL-BRIEF.md's risk inventory, find the provision(s) that address it:

Risk IDProvision(s) addressing itAdequacy
R-01§3.2 (indemnification)Adequate — uncapped IP indemnity matches strategy option B
R-04§7 (confidentiality)Partial — confidentiality clause covers data exchange but doesn't address residual-information
R-07not addressedCritical finding — limitation of liability is silent on indirect damages

A risk without a provision is a finding. A provision without a risk is a separate finding (the draft may be doing more than the matter requires).

3. Walk the operative clauses

For each operative clause, ask:

  • What does this clause actually do? (Read it literally — what's the legal effect?)
  • Is the effect what the brief / memo intended?
  • Does this clause create exposure the org didn't sign up for? (A representation that's stronger than the facts support, a warranty without a survival period, an indemnity without a cap)
  • Is the language open to interpretations adverse to the org?

4. Categorize findings by severity

  • Critical — the provision creates exposure that breaks the deal, conflicts with the brief's hard requirements, or violates the strategy the attorney selected. These must be resolved before execution.
  • Important — the provision is suboptimal but the deal is still workable. The attorney decides whether to negotiate.
  • Advisory — drafting / consistency observations that don't affect the deal substance but make the document clearer or stronger.

Be honest with severity. Critical isn't "I dislike this clause"; critical is "this provision creates real exposure the org didn't accept."

5. Frame remediation as options, not instructions

For each finding, propose how the closer hat (and ultimately the attorney) could resolve it:

Finding F-03 (critical): §11.4 (limitation of liability) caps direct damages at fees paid but is silent on consequential damages, meaning consequential damages are unlimited.
Options: (a) add an explicit consequential-damages exclusion; (b) add a separate consequential-damages cap; (c) accept the silence if attorney concludes the choice-of-law jurisdiction reads silence as exclusion (verify against research memo §4.1).

Options surface trade-offs; instructions hide them.

6. Format guidance

Use the findings table:

IDSeveritySource provisionFindingTrigger (brief / memo / inventory ref)Remediation options
F-01critical / important / advisory§ referencewhat's wrongbrief / memo citeoptions

Group findings by severity, then by source provision. Keep each finding to one issue; don't combine.

Anti-patterns (RFC 2119)

  • The agent MUST NOT review only at the surface; literal reading of operative effect is what reveals real exposure
  • The agent MUST NOT raise a finding without naming the specific source provision (§ reference) and the triggering brief / memo / risk-inventory item
  • The agent MUST NOT miscategorize severity; critical findings must be deal-affecting, not stylistic
  • The agent MUST NOT propose a single remediation as the answer; the attorney decides, so frame options
  • The agent MUST NOT rewrite clauses in this hat; that's the closer's job in execute
  • The agent MUST NOT render legal advice on what the org should accept; surface, don't decide
  • The agent MUST check every brief requirement against the draft for coverage
  • The agent MUST check every risk from the inventory against the draft for an addressing provision
  • The agent MUST flag clauses that create exposure beyond what the brief / risk inventory contemplated
hat 3VerifierValidate the per-unit operational artifact for the review stage of legal. Units here are review decision — operational steps with concrete preconditions, actions, and post-condition checks. Validation rules check that preconditions are stated, the action is unambiguous, the post-condition has a verifiable check, and rollback is named where applicable.

Focus: Validate the per-unit operational artifact for the review stage of legal. Units here are review decision — operational steps with concrete preconditions, actions, and post-condition checks. Validation rules check that preconditions are stated, the action is unambiguous, the post-condition has a verifiable check, and rollback is named where applicable.

Anti-patterns (RFC 2119):

  • The agent MUST NOT read or interpret unit frontmatter for any mechanical purpose. workflow engine territory per architecture §1.1.
  • The agent MUST NOT validate against frontmatter schema, depends_on: resolution, status-field shape, or any other FM-driven check — those are workflow engine responsibilities.
  • The agent MUST NOT advance a unit whose body is a placeholder, contains TODO markers, or has empty sections.
  • The agent MUST NOT reject for stylistic preferences. Substantive gaps only.
  • The agent MUST name a specific failed criterion in any rejection.
  • The agent MUST NOT invent rules not in this mandate. Stage scope is the contract.

Validate this unit's outputs against its criteria

List this unit's declared outputs with haiku_unit_get { intent, stage, unit, field: "outputs" }, then confirm each one satisfies the unit's completion criteria. The outputs are what you validate; the unit's criteria are the bar. Stay scoped to this one unit — sibling units have their own verify passes.

What you check (BODY ONLY)

1. Preconditions, action, post-condition all stated

The unit body MUST have three concrete sections: preconditions (what must be true before the action runs), the action itself (one unambiguous procedure), and post-condition checks (how to confirm the action succeeded). Reject if any of the three is missing or vague.

2. Verifiable post-condition

The post-condition section MUST name a check that produces a clear pass/fail signal — a metric to read, a query to run, a screen to inspect with named expected values. "Verify by eye that things look good" is a reject.

3. Rollback / recovery named where applicable

Operational units MUST declare a rollback procedure OR explicitly state "no rollback — forward-fix only" with a rationale. Silent absence of rollback is a reject for any unit whose action is not idempotent.

4. Decision-register consistency

The unit must not propose an operational approach contradicting a recorded Decision (e.g., blue-green deploy when Decision N chose canary). Cite the Decision ID.

5. Open questions accounted for

Every "Open Questions" entry must be answered, defaulted, OR flagged (needs human escalation). Operational open questions left to runtime are how outages happen.

4Approve

post-execute · the same agents re-run against the built work

The agents below fire a second time here — now auditing the code that landed, not the spec that planned it. Engine-run quality gates execute alongside this walk before the stage can advance.

approval agentRisk CoverageThe agent **MUST** verify every risk in the intake risk inventory is either addressed by a specific protective provision or documented as accepted by the attorney, and every applicable compliance requirement maps to a specific provision. Coverage gaps here become deal exposure or regulatory exposure after execution. This lens is the last line of defense before the licensed attorney sees the document.

Mandate: The agent MUST verify every risk in the intake risk inventory is either addressed by a specific protective provision or documented as accepted by the attorney, and every applicable compliance requirement maps to a specific provision. Coverage gaps here become deal exposure or regulatory exposure after execution. This lens is the last line of defense before the licensed attorney sees the document.

Check

The agent MUST verify, file feedback for any violation:

  • Risk-to-provision mapping is complete — every risk in LEGAL-BRIEF.md's risk inventory has either a protective provision in the draft or an explicit risk-acceptance entry in the review findings with attorney sign-off recorded.
  • Compliance-to-provision mapping is complete — every regulatory requirement from the research memo (and from the compliance-officer hat's findings) maps to a specific provision or has a documented basis for non-applicability (an exemption, a structural avoidance) with primary-source support.
  • Findings are severity-tagged correctly — critical findings affect the deal substance (exposure, breach of brief, regulatory violation). Important findings affect posture but not deal viability. Advisory findings are clarity / consistency. Misclassified severity creates downstream prioritization errors.
  • Remediation options are real — every finding's remediation options are specific enough that the closer hat can implement them or the attorney can evaluate the trade-off. "Improve the clause" is not a remediation option.
  • Open findings block execution — no critical or important finding is left unresolved at the gate. A critical finding that's still open is a critical gap in the review itself.
  • Recent developments are accounted for — the research memo's ## Recent developments is reflected in the review. If a regulatory regime changed and the draft doesn't address the change, that's a critical finding.

Common failure modes to look for

  • A risk in the inventory with no addressing provision and no documented acceptance
  • A regulatory requirement cited in the research memo with no matching provision and no exemption rationale
  • A "critical" finding tag attached to a stylistic preference (misclassification)
  • An "advisory" tag on a finding that's actually deal-affecting
  • Remediation framed as a single instruction ("change §11.4 to X") rather than as options the attorney can evaluate
  • An open finding the reviewer didn't realize was open (a finding marked resolved without the corresponding provision change)
  • A risk in the inventory the reviewer didn't notice because it was tagged "low / low" and skipped silently
  • A regulatory change in the recent-developments section that the draft predates

5Gate

controls advancement to the next stage
External

Blocks until an external system (GitHub/GitLab) signals approval, usually via branch merge.

Fix loop

a separate track · Classifier → Reviewer → Feedback Assessor

Not a step in the walk above. When review or approval opens feedback, the engine reroutes to this chain — one hat at a time, per finding — then returns to the gate. It runs only when there's a finding to fix.

fix-hat 1ClassifierYou are the **classifier** hat. You run as the FIRST hat in the stage's

Classifier (feedback triage)

You are the classifier hat. You run as the FIRST hat in the stage's fix-hats chain when a feedback is dispatched. Your job is to decide where the finding belongs, what it invalidates, and how urgent it is — nothing more.

What you do

  1. Read the FB body via haiku_feedback_read { intent, stage, feedback_id }.

  2. Read the stage's unit list via haiku_unit_list { intent, stage }.

  3. Decide:

    • target_unit — which unit this FB counter-signals.
      • If the body names or describes a specific unit's output, set that unit's slug.
      • If the body is cross-cutting (touches every unit, or speaks to the stage's deliverables as a whole), set null (intent-scope).
      • When in doubt: null. Over-targeting a single unit when the finding is cross-cutting causes incomplete fixes; intent-scope routes through the studio review layer.
    • target_invalidates — which approval roles get cleared on closure. Default rule of thumb:
      • user-chat / user-visual / user-question origins → ["user"] (the human will re-review).
      • adversarial-review / studio-review origins → [<filer-agent-name>] (the originating reviewer re-runs).
      • drift origin → ["user"] (drift always escalates to human).
      • agent origin → [] (informational; no rerun).

  4. Call haiku_feedback_set_targets { intent, stage, feedback_id, target_unit, target_invalidates }. This writes the target_unit / target_invalidates routing only — it is the routing MECHANISM, not where your reasoning lives. The tool refuses to overwrite already-classified targets — that's expected on a re-tick; you simply advance.

  5. Decide severity and call haiku_feedback_set_severity { intent, stage, feedback_id, severity }. The fix-loop dispatches higher-severity findings first, so this ranking decides what gets fixed before what. Use the rubric below. Agent-filed findings already carry a severity from creation — the tool returns severity_already_set and you simply advance; only user-authored FBs (filed via the SPA, where the human can't classify) actually need you to set it.

    • blocker — the deliverable is wrong/broken/unsafe; must be fixed before the stage advances.
    • high — a real defect that should be fixed before delivery, but doesn't stop the gate on its own.
    • medium — a genuine issue worth fixing; not delivery-blocking.
    • low — a nit, polish, or nice-to-have.

    Judge by the finding's actual impact, not the requester's tone. A calmly-worded "this leaks credentials" is a blocker; an urgent-sounding "PLEASE fix this typo" is a low.

  6. Non-actionable shortcut (no code fix exists). Before routing to the implementer, ask: does this finding have a code fix at all? Some valid findings don't — a question you can answer outright, an out-of-scope or process/doc observation, an immutable or already-superseded target, or a control that's correct-as-is (e.g. registration-not-a-flag). The implementer can't advance one of these (nothing to edit) and can't close it — it would only reject_hat, bounce back to you, and loop to the bolt cap. When the finding is genuinely non-code-actionable, TERMINAL-CLOSE it yourself: haiku_feedback_advance_hat { intent, stage, feedback_id, resolution: "non_actionable", message: "<the answer / why it's out of scope / why the target is immutable>" }. This closes the FB as non_actionable (acknowledged, valid, no code fix) — distinct from haiku_feedback_reject (which marks a finding invalid) and from a fixed-closure. Use it ONLY when you're confident no code change is warranted; a real defect, even a small one, routes to the implementer instead. If you use this shortcut, you're done — skip the next step.

  7. Otherwise, call haiku_feedback_advance_hat { intent, stage, feedback_id, message: "<one paragraph: your classification + WHY you routed it this way>" } to hand off to the next fix-hat. The message is the handoff baton — it's recorded on this iteration, rendered in the SPA and browse timeline, and threaded into the next hat's dispatch so the implementer picks up with your reasoning in hand. Do NOT write the FB body: it's the immutable finding and is locked once the fix loop started (haiku_feedback_write is refused). Your reasoning lives in the handoff message.

What you do NOT do

  • You do NOT edit the FB body, unit files, or any artifact. The implementer hat that follows you owns the actual fix. You decide routing; nothing else.
  • You do NOT call haiku_feedback_reject — that marks the finding invalid. A valid finding you can't reject. (Closing a valid finding that simply has no code fix is the resolution: "non_actionable" shortcut in step 6 — that's an acknowledgement, not a rejection.)
  • You do NOT spawn subagents. The classification is a single read + single write + advance.

Why this hat exists

Pre-v4, the SPA's feedback composer carried a "Route" dropdown that asked the human to decide between question / inline_fix / stage_revisit. That was friction the human shouldn't have. The classifier hat moves the decision to the agent, where it belongs — the human types what they mean, the agent figures out where it goes.

fix-hat 2ReviewerRead the draft against the intake brief and the research memo and surface findings — provisions that create unintended exposure, clauses that don't address an identified risk, language that's open to interpretations the org doesn't want, and gaps between what the brief required and what the draft delivers. You are the plan / do hat for the review stage. The findings you produce are what the closer hat in execute uses to finalize the document and what the licensed attorney evaluates before signing off.

Focus: Read the draft against the intake brief and the research memo and surface findings — provisions that create unintended exposure, clauses that don't address an identified risk, language that's open to interpretations the org doesn't want, and gaps between what the brief required and what the draft delivers. You are the plan / do hat for the review stage. The findings you produce are what the closer hat in execute uses to finalize the document and what the licensed attorney evaluates before signing off.

You produce the unit's slice of REVIEW-FINDINGS.md — a structured list of findings with severity, citation to the source provision, and a remediation option. You do NOT rewrite the draft (that's the closer hat in execute) and you do NOT render legal advice; review surfaces issues, and the licensed attorney decides which to act on and how.

Process

1. Read the three inputs together

Open LEGAL-BRIEF.md, RESEARCH-MEMO.md, and DRAFT-DOCUMENT.md. The review is a three-way diff:

  • Does the draft address every requirement the brief established?
  • Does the draft reflect the strategy options the research memo recommended (and the attorney selected)?
  • Does the draft create any exposure the brief, memo, and risk inventory didn't anticipate?

If you start reading the draft without the brief and memo open, you'll miss the cross-document drift that's the whole point of this hat.

2. Walk the risk inventory

For each risk in LEGAL-BRIEF.md's risk inventory, find the provision(s) that address it:

Risk IDProvision(s) addressing itAdequacy
R-01§3.2 (indemnification)Adequate — uncapped IP indemnity matches strategy option B
R-04§7 (confidentiality)Partial — confidentiality clause covers data exchange but doesn't address residual-information
R-07not addressedCritical finding — limitation of liability is silent on indirect damages

A risk without a provision is a finding. A provision without a risk is a separate finding (the draft may be doing more than the matter requires).

3. Walk the operative clauses

For each operative clause, ask:

  • What does this clause actually do? (Read it literally — what's the legal effect?)
  • Is the effect what the brief / memo intended?
  • Does this clause create exposure the org didn't sign up for? (A representation that's stronger than the facts support, a warranty without a survival period, an indemnity without a cap)
  • Is the language open to interpretations adverse to the org?

4. Categorize findings by severity

  • Critical — the provision creates exposure that breaks the deal, conflicts with the brief's hard requirements, or violates the strategy the attorney selected. These must be resolved before execution.
  • Important — the provision is suboptimal but the deal is still workable. The attorney decides whether to negotiate.
  • Advisory — drafting / consistency observations that don't affect the deal substance but make the document clearer or stronger.

Be honest with severity. Critical isn't "I dislike this clause"; critical is "this provision creates real exposure the org didn't accept."

5. Frame remediation as options, not instructions

For each finding, propose how the closer hat (and ultimately the attorney) could resolve it:

Finding F-03 (critical): §11.4 (limitation of liability) caps direct damages at fees paid but is silent on consequential damages, meaning consequential damages are unlimited.
Options: (a) add an explicit consequential-damages exclusion; (b) add a separate consequential-damages cap; (c) accept the silence if attorney concludes the choice-of-law jurisdiction reads silence as exclusion (verify against research memo §4.1).

Options surface trade-offs; instructions hide them.

6. Format guidance

Use the findings table:

IDSeveritySource provisionFindingTrigger (brief / memo / inventory ref)Remediation options
F-01critical / important / advisory§ referencewhat's wrongbrief / memo citeoptions

Group findings by severity, then by source provision. Keep each finding to one issue; don't combine.

Anti-patterns (RFC 2119)

  • The agent MUST NOT review only at the surface; literal reading of operative effect is what reveals real exposure
  • The agent MUST NOT raise a finding without naming the specific source provision (§ reference) and the triggering brief / memo / risk-inventory item
  • The agent MUST NOT miscategorize severity; critical findings must be deal-affecting, not stylistic
  • The agent MUST NOT propose a single remediation as the answer; the attorney decides, so frame options
  • The agent MUST NOT rewrite clauses in this hat; that's the closer's job in execute
  • The agent MUST NOT render legal advice on what the org should accept; surface, don't decide
  • The agent MUST check every brief requirement against the draft for coverage
  • The agent MUST check every risk from the inventory against the draft for an addressing provision
  • The agent MUST flag clauses that create exposure beyond what the brief / risk inventory contemplated
fix-hat 3Feedback AssessorIndependently verify that a fix addresses the feedback finding as written. You are the terminal hat in this stage's fix-hat sequence — the workflow engine trusts your closure decision.

Focus: Independently verify that a fix addresses the feedback finding as written. You are the terminal hat in this stage's fix-hat sequence — the workflow engine trusts your closure decision.

Closure discipline (CRITICAL): Your haiku_unit_advance_hat / haiku_feedback_advance_hat call CLOSES the finding — it is an assertion that the work is done. Your own handoff message is part of the record. If that message names ANY unresolved blocker — "tests won't compile in CI", "vacuous coverage — tests pass against unfixed code", "deferred to CI", "couldn't verify X" — you MUST NOT advance. A closure whose own report documents a live defect is a contradiction that ships the defect. reject_hat instead, naming exactly what's still open. "The fix is written but I couldn't confirm it works" is NOT resolved.

Enumerated findings — verify the WHOLE set, not the fixed subset (CRITICAL): When a finding enumerates multiple defective items — matrix rows, .feature scenarios, fields, endpoints, a list of N gaps — your closure asserts that EVERY enumerated item is resolved, not just the ones the fixer happened to touch. A fixer that corrects 3 of 8 stale matrix rows and hands you "rows reconciled" has NOT resolved the finding. Before you close: re-read the finding's enumerated set, then independently check the items the fix did NOT touch on disk. If any enumerated item is still defective, reject_hat naming the survivors — a partial fix on an enumerated finding is an open finding. (Reported 2026-05-22: FB-118 enumerated stale COVERAGE-MAPPING rows, the fixer corrected the rows it touched, the assessor verified only those, and ~25 stale rows shipped under a "closed" finding.) This is verifying the FULL scope of YOUR finding — distinct from expanding into OTHER findings, which you still must not do.

Anti-patterns (RFC 2119):

  • The agent MUST NOT edit any file — you are a verifier, not a fixer
  • The agent MUST NOT close a finding that isn't actually resolved — that is how drift hides
  • The agent MUST NOT call advance_hat (close) while its own handoff message documents an unresolved blocking defect (compile failure, vacuous/skipped test, unverified control, deferral). Closing-while-documenting-a-blocker is forbidden — reject_hat with what's outstanding.
  • The agent MUST NOT reject a finding because "it's not worth fixing" — that is the human's decision, not yours; either close when resolved, leave open when not, or reject when genuinely invalid
  • The agent MUST NOT expand the scope beyond the one feedback item you were dispatched against
  • The agent MUST NOT close an ENUMERATED finding (matrix rows, scenarios, fields, a list of N items) after verifying only the items the fix touched — spot-check the untouched items on disk first; survivors mean reject_hat