Skill

Context Firewall

Processes large files, logs, repos, and tool outputs via sub-agents with Map-Reduce to produce verifiable summaries, evidence locators, and coverage reports, preventing context overflow.

developer-tools

npx claudepluginhub lollipopkit/cc-plugins --plugin context-firewall

Popularity

Parent stars

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/context-firewall:context-firewall

User invocable

Model invocable

Inline context

Default effort

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

Implement a **Context Firewall** workflow to prevent the master context from being flooded by large inputs.

SKILL.md

131 lines · ~987 tokens

Similar Skills

rlm

Processes large files, logs, repos exceeding context limits via 6-step RLM protocol using Python/Bash scripts for metadata, peeking, search, extraction, and summarization.

rlm

recursive-decomposition

Based on the Recursive Language Models (RLM) research by Zhang, Kraska, and Khattab (2025), this skill provides strategies for handling tasks that exceed comfortable context limits through programmatic decomposition and recursive self-invocation. Triggers on phrases like "analyze all files", "process this large document", "aggregate information from", "search across the codebase", or tasks involving 10+ files or 50k+ tokens.

4 files

recursive-decomposition

doing-a-simple-two-stage-fanout

214

Orchestrates parallel Worker and Critic subagents plus Summarizer to analyze large text/code/data corpora exceeding single-agent context, with layout computation, effort levels, and failure recovery.

2 files

ed3d-basic-agents

Stats

LanguagePython

Parent stars7

MaintenanceFair

Last CommitJan 23, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

Implement a Context Firewall workflow to prevent the master context from being flooded by large inputs.

Purpose

Route large inputs (big files, logs, PDFs/images, long MCP/tool outputs) through sub-agents that produce compressed, auditable results. Only pass back:

Structured claims
Evidence locators (line/symbol/tool-call)
Coverage statements

When to use

Prefer this workflow when any of the following is true:

The user wants the "full" content of a large file/log/document.
Tool output is long/noisy (search results, crawls, API responses).
The task needs multi-file scanning or cross-file synthesis.
The output must be verifiable without re-reading everything.

Core contract (Evidence Contract)

For every meaningful claim:

Attach at least one evidence item.
Use a locator that enables low-cost verification.

Locator preference order:

line_range (default)
symbol_range (functions/classes)
tool_call (tool-derived facts; include args hash and rerun hint when safe)
byte_range/json_path/stack_signature (define, but treat as harder to verify in v1)

Keep quotes short:

Respect the quote_max_chars constraint.
Never paste large raw blobs.

Recommended workflow

1) Generate TaskSpec

Create a TaskSpec.v1 that is explicit about:

Objective
Inputs (files/tool calls)
Questions
must_cover checklist
Constraints (budget + evidence requirements)
Risk level

Prefer using the command:

/cf-spec to generate a schema-valid template.

2) Run Map-Reduce preprocessing

Use /cf-run to:

Split inputs into shards
Run cf-fileworker on each shard in parallel
Merge with cf-aggregator into a final SubResult.v1

Hard requirements for sub-agents:

Output strict JSON only (no markdown fences, no extra commentary).
Ensure every claim includes evidence.

3) Verify cheaply

Use /cf-verify to sample-check claims:

Choose sampling rate by risk_level.
Re-read only the referenced snippets.
Produce VerifyReport.v1.

If verification fails:

Request stronger evidence (more/clearer locators).
Narrow must_cover.
Run a second-pass cf-critic to independently review.

Coverage & anti-leak rules

Always include a coverage section that declares:

Which inputs were scanned
Which method was used (grep+window, full scan, time-window scan)
Known gaps (missing archives, not provided inputs)

Never:

Dump raw input into the master context.
Hide uncertainty: mark gaps explicitly.

Operational defaults

Default thresholds are configurable in:

.claude/context-firewall.local.md

Defaults:

read_warn_bytes: 524288
tool_output_warn_chars: 20000
sample_rate: {low:0.05, medium:0.15, high:0.30}

Related resources

Commands:
- plugins/context-firewall/commands/cf-spec.md
- plugins/context-firewall/commands/cf-run.md
- plugins/context-firewall/commands/cf-verify.md
Agents:
- plugins/context-firewall/agents/cf-fileworker.md
- plugins/context-firewall/agents/cf-aggregator.md
- plugins/context-firewall/agents/cf-critic.md
Schemas:
- plugins/context-firewall/schemas/task-spec.v1.schema.json
- plugins/context-firewall/schemas/sub-result.v1.schema.json
- plugins/context-firewall/schemas/verify-report.v1.schema.json
- plugins/context-firewall/schemas/settings.v1.schema.json
Settings template:
- plugins/context-firewall/scripts/settings-frontmatter.md

Context Firewall

Popularity

Invocation

Context Preview

SKILL.md

Similar Skills

Help us improve

Help us improve

Find plugins for your project

Context Firewall

Popularity

Invocation

Context Preview

SKILL.md

Purpose

When to use

Core contract (Evidence Contract)

Recommended workflow

1) Generate TaskSpec

2) Run Map-Reduce preprocessing

3) Verify cheaply

Coverage & anti-leak rules

Operational defaults

Related resources

Similar Skills

Help us improve

Purpose

When to use

Core contract (Evidence Contract)

Recommended workflow

1) Generate TaskSpec

2) Run Map-Reduce preprocessing

3) Verify cheaply

Coverage & anti-leak rules

Operational defaults

Related resources