Open a review-action approval window by creating the ./.review-approved flag file. Takes an optional reason string that is embedded in the receipt chain.
How this command is triggered — by the user, by Claude, or both
Slash command
/review-agent-governance:approve-review [reason for approval]The summary Claude sees in its command listing — used to decide when to auto-load this command
# Approve Review Open a human-approval window for review-surface actions (PR reviews, comments, merges, CI edits). The window stays open until you remove the flag file with `rm ./.review-approved` or restart the session. ## Usage ## What this does 1. Creates a `./.review-approved` flag file in the project root. 2. If the user provided a reason, writes it into the file and into a timestamped entry under `./review-receipts/approvals/`. 3. Prints a confirmation with the timestamp and, if provided, the reason. 4. Reminds the user to close the window with `rm ./.review-approved` as s...
Open a human-approval window for review-surface actions (PR reviews,
comments, merges, CI edits). The window stays open until you remove the
flag file with rm ./.review-approved or restart the session.
/approve-review "Approving LGTM on PR #42 after visual inspection"
/approve-review # no reason, still opens the window
./.review-approved flag file in the project root../review-receipts/approvals/.rm ./.review-approved as
soon as the approved action completes.Run this in the Bash tool. Capture the full user argument as $ARGUMENTS
(the marketplace slash-command convention) so a reason with spaces is
preserved verbatim.
REASON="$ARGUMENTS"
TS="$(date -u +%Y-%m-%dT%H:%M:%SZ)"
FLAG="./.review-approved"
# JSON-escape the reason so quotes, backslashes, newlines do not break
# the approval-record JSON below.
REASON_ESCAPED="$(printf '%s' "$REASON" | python3 -c 'import json,sys; print(json.dumps(sys.stdin.read()))')"
# Write the flag file (human-readable key=value, not JSON).
{
echo "approved_at=$TS"
if [ -n "$REASON" ]; then
echo "reason=$REASON"
fi
} > "$FLAG"
# Record the approval. This is a plain JSON log file, NOT a signed
# receipt. The README explicitly notes that approval records are not
# signed by protect-mcp; only the PostToolUse tool-call receipts flow
# through the signer.
mkdir -p ./review-receipts/approvals
cat > "./review-receipts/approvals/$TS.json" <<JSON
{
"approved_at": "$TS",
"reason": $REASON_ESCAPED,
"flag_file": "$FLAG"
}
JSON
# Confirmation to the user
echo "Approval window opened at $TS"
if [ -n "$REASON" ]; then
echo "Reason: $REASON"
fi
echo ""
echo "Close the window with: rm $FLAG"
echo "The next tool call will be permitted without policy evaluation."
Approval window opened at 2026-04-17T12:34:56Z
Reason: Approving LGTM on PR #42 after visual inspection
Close the window with: rm ./.review-approved
The next tool call will be permitted without policy evaluation.
Remember: every attempt in the approval window still produces a signed
receipt. Auditors can see exactly what you approved and when.
rm ./.review-approved,
the agent could make additional review actions without prompting. Close
the window immediately after the approved action.../README.md../agents/review-policy-author.mdrm ./.review-approved/list-pendingnpx claudepluginhub paulpham157/agents-cc --plugin review-agent-governance17plugins reuse this command
First indexed May 12, 2026
Showing the 6 earliest of 17 plugins