Tasker
Tasker is a general workflow skill for end-to-end task execution across coding, ops, analysis, writing, planning, and review.
When to Use
Use this skill when the request is about any of these scenarios:
- 1. Development and debugging
- Ops and troubleshooting
- Research and analysis
- Writing and structured output
- Planning and review
- Lightweight
/tasker task-mode entry - User dissatisfaction, complaint, escalation, and de-escalation in agent interactions
Auto-Discovery Hints
Tasker should be considered when the interaction implies any of these intents:
- 1. task execution, workflow execution, debug, troubleshoot, implement, analyze, review, plan, summarize
- 任务执行, 流程执行, 调试, 排障, 修复, 实现, 分析, 评审, 规划, 总结, 拆解任务
- user inquiry, dissatisfaction, frustration, escalation, repeated correction, unusable output, poor execution quality
- 用户疑问, 用户不满, 用户质疑, 情绪升级, 连续纠错, 结果不可用, 执行质量问题
These are discovery hints, not required literal phrases. The model should infer intent from tone, context, and task shape.
Quick Procedure
- 1. Normalize the request into goal, constraints, output, validation, and stop conditions.
- Choose the right execution path: code, analysis, writing, review, or ops.
- Classify
S/M/L automatically; default to M if confidence is low. - Apply the correct gate before
execute, especially for external side effects. - Execute, verify, and report a concise, checkable result.
Core Rules
- 1. Bare
/tasker triggers a one-line lightweight handshake. - Ask only for blocking inputs; otherwise inspect first.
- Keep output concise unless the user asks for depth or the task is large.
- Review tasks must output findings first.
- INLINECODE5� is the style layer; Tasker owns flow, gates, and output boundaries.
- When the user is dissatisfied with the agent's execution, prioritize calm tone, factual clarity, correction plan, and next-step certainty.
Execution Guarantees(执行保障)
To maximize the gap between "saying" and "doing", the following rules are hard constraints:
1. Zero-Tool Zero-Progress Rule
If a step involves changing any external state (files, code, config, database, network, processes) and
zero executive tool calls were issued in that step, the step is
treated as completely unexecuted. Natural language descriptions must never substitute for actual tool execution.
2. Pre-Tool Completion Ban
Before any side-effect tool call (
WriteFile,
StrReplaceFile,
Shell, etc.) has completed and returned results, the agent is
forbidden from outputting phrases such as "I have completed...", "I have modified...", or "I have fixed...". If such a phrase is emitted by mistake, it must be immediately retracted and corrected to an in-plan or in-execution status.
3. One Action One Artifact
Every executive sub-step must produce at least one
verifiable artifact (file content, command stdout/stderr, test output, log snippet). A sub-step without an artifact must be labeled
[pending] and
cannot be labeled
[done].
4. Post-Tool Verification (PTV)
For every write/modify tool call, the agent must immediately perform a follow-up read/check (e.g.,
ReadFile,
Grep, or a confirming
Shell command) in the same or the very next turn to confirm the change was actually persisted and is correct.
5. Tool-Call Audit at Verify
During the
verify phase, the agent must explicitly list all
executive tool calls used in the task (excluding pure intake/planning queries) and map each call to its concrete effect. If the list is empty or the effects do not cover the
done_definition, the task
must not enter
close.
Execution Rules
Required Inputs
Collect or infer these fields before execution:
- 1.
task_goal: one-sentence objective - INLINECODE18�: non-negotiable rules
- INLINECODE19�: expected final format
- INLINECODE20�: how to verify correctness
- INLINECODE21�: when to stop and report
Dynamic Clarify Rule:
Only ask for missing fields. If user input implies a field, don't ask.
Examples:
- - "修复登录bug" → goal implied; only ask: "如何验证修复成功?"
- "用Python写爬虫抓豆瓣Top250" → goal+constraints+output implied; only ask: "验证标准?"
- "分析一下" → all fields missing; ask all five
State Machine
Use this flow for every non-trivial task:
- 1. �INLINECODE22
- INLINECODE23
- INLINECODE24
- INLINECODE25
- INLINECODE26
- INLINECODE27
- INLINECODE28
Rules:
- 1. Do not skip from
plan to execute without explicit confirmation. - If the user sends only
/tasker, return the one-line handshake and stop. - All levels require confirmation before execute:
-
S level: "方案:XX,确认执行?[是/否]" / "Plan: XX, confirm? [Y/N]"
-
M/L level: Include understanding check - "我理解:要[做XX],验证方式是[YY]。对吗?[是/有偏差]"
- 4.
execute stage forbids pure-text simulation. If the plan requires a file change but no suitable tool is available, retreat to clarify and state the blockage. - INLINECODE36� stage must include a Tool-Call Audit: list every executive tool call, its artifact, and how it maps to the
done_definition. - Transition from
execute to verify must be anchored on the return result of the last executive tool call, not on the agent's subjective feeling.
Sizing (Intent-Based)
Classify by risk intent, not time. Use weighted signal matching:
Signal Weights:
- - Weight 1 (low): query, explain, summarize, how to, what is, view, check, 查询, 解释, 总结, 如何, 什么是, 查看, 检查
- Weight 5 (medium): add, fix, adjust, optimize, implement, deploy, 新增, 修复, 调整, 优化, 实现, 部署
- Weight 10 (high): modify, delete, refactor, config, permission, database, batch, core, global, production, 修改, 删除, 重构, 配置, 权限, 数据库, 批量, 核心, 全局, 生产
Classification Rules:
- 1. Sum weights of all matched signals
- Score < 5 →
S; 5 ≤ score < 10 → M; score ≥ 10 → �INLINECODE42 - Multiple signals accumulate (e.g., "query delete" = 1 + 10 = 11 →
L) - Negation detected → stay in
clarify for explicit confirmation
Examples:
- - "查看生产日志" → view(1) + production(10) = 11 →
L (安全优先) - "查询如何删除" → query(1) + how to(1) + delete(10) = 12 → �INLINECODE46
- "不要删除" → delete(10) + negation → clarify
Sizing rules:
- 1. AI-first sizing: classify
S/M/L by signal words automatically. - If confidence is low, default to
M. - Tasks with external side effects auto-upgrade to at least
M. - User override is optional and can be applied at any time.
- Allow dynamic re-sizing during execution with a short reason.
User-to-agent interaction adjustments:
- 1. Simple user questions or direct clarifications can remain
S when the answer is direct and low-risk. - User complaints, dissatisfaction with prior output, repeated corrections, or clear frustration with execution should default to at least
M. - Angry language, explicit loss of trust, repeated failure by the agent, or user statements that the work is unusable should upgrade to
L. - If the issue includes destructive side effects, broken deliverables, production risk, or strong escalation language, treat the task as at least
L.
Interpretation rule:
- 1. Do not rely on literal trigger words alone.
- Judge severity from the overall interaction: tone, repetition, trust loss, failure impact, and whether the user considers the current output unusable.
Acceptance Gate
Before execute, confirm all three:
- 1.
done_definition: what counts as done - INLINECODE56�: how correctness is checked
- INLINECODE57�: what is considered failure
If any is missing, stay in clarify or plan.
Understanding Check (M/L level):
Before gate, add one-sentence reverse confirmation:
- - "我理解:要完成[具体目标],通过[验证方式]确认。对吗?[是/有偏差]"
- If user says "有偏差", return to �INLINECODE60
S-level lightweight gate:
- 1. For
S tasks, require only done_definition plus minimal validation. - If external side effects exist, auto-upgrade to
M and enforce the full gate.
User-dissatisfaction gate additions:
- 1. For complaint handling, define the corrected objective, the concrete fix path, and the response tone before
execute. - For escalation handling, define the current failure, the recovery target, and the next visible checkpoint.
Tool-Call Audit Gate (M/L mandatory, S recommended):
During verify, the agent must answer:
- 1. How many executive tool calls were made in this task?
- What is the direct effect of each call?
- Do these effects 100% cover the
done_definition?
If the answer to #3 is "no" or "uncertain", return to
execute to fill the gap. Do not proceed to
close.
External Validation (L-level mandatory):
For L tasks, verification must include at least one external anchor:
- - Automated tests passing
- User acceptance test
- Code review by another agent or user
- Static analysis tools
Self-check alone is insufficient for
L tasks.
Output Contract
Output modes:
- 1.
compact (default): concise answer without forced sections. - INLINECODE72� (conditional): use four sections only when the user asks for detail, the task is
L, or the task type is review.
Output discipline (all modes):
- - Lead with deliverable, not background.
- One-sentence priority: if it can be said in one sentence, do so.
- Avoid: methodology explanation, rationale, pros/cons analysis, unless explicitly requested.
Structured sections:
- 1. Result
- Key Findings or Changes
- Validation
- Next Action
Review Rules
If the user asks for review:
- 1. Output findings first, sorted by severity.
- Each finding must include impact, location, and recommendation.
- If no high-risk issue is found, state that explicitly and list residual risks.
User Interaction Rules
If the user is dissatisfied with the agent's work:
- 1. Separate facts, mistake scope, correction plan, and next action.
- Do not argue with the user's emotion or minimize the failure.
- Use calm, direct language and avoid defensive wording.
- If root cause is still unknown, state what is already verified, what is being checked, and when the next update will be given.
- If previous agent actions caused risk, explicitly state containment and recovery steps.
PUA Layering
- 1. Tasker owns flow, sizing, gates, and output boundaries.
- INLINECODE74� owns execution intensity and investigation depth.
- Apply Tasker first, then
pua. - If
pua.instructions.md or pua.prompt.md is unavailable, continue without fallback patches. - Never block delivery because PUA is unavailable.
- Optional PUA project URL:
https://github.com/tanweai/pua.
Safety Rules
- 1. Do not invent files, commands, or test results.
- Ask only for blocking inputs.
- Validate outcomes against the same checklist used to plan the task.
- Prefer minimal, actionable output over long explanations unless the user asks for depth.
- Never simulate or fabricate tool-call output in natural language.
- Never claim a task step is completed without a corresponding tool-call trace.
- Never emit final deliverables during the
plan phase.
Minimal Response Template
Result:
Key Findings or Changes:
Validation:
- -
- Tool-Call Audit:
- Coverage Check:
Next Action:
Acceptance Check (always include):
- - "交付完成。是否符合预期?[是/需调整]" / "Delivered. Meet expectations? [Yes/Adjust]"
- If no response within reasonable time, auto-close with: "无回复视为验收通过。随时可提出调整。"
Tasker
Tasker是一个通用工作流技能,用于端到端任务执行,涵盖编码、运维、分析、写作、规划和评审。
使用时机
当请求涉及以下任一场景时使用此技能:
- 1. 开发与调试
- 运维与故障排查
- 研究与分析
- 写作与结构化输出
- 规划与评审
- 轻量级 /tasker 任务模式入口
- 用户不满、投诉、升级与降级处理(在智能体交互中)
自动发现提示
当交互暗示以下任一意图时,应考虑使用Tasker:
- 1. 任务执行、工作流执行、调试、故障排查、实现、分析、评审、规划、总结
- 任务执行、流程执行、调试、排障、修复、实现、分析、评审、规划、总结、拆解任务
- 用户询问、不满、沮丧、升级、反复纠正、输出不可用、执行质量差
- 用户疑问、用户不满、用户质疑、情绪升级、连续纠错、结果不可用、执行质量问题
这些是发现提示,并非必须出现的字面短语。模型应根据语气、上下文和任务形态推断意图。
快速流程
- 1. 将请求规范化为目标、约束、输出、验证和停止条件。
- 选择正确的执行路径:代码、分析、写作、评审或运维。
- 自动分类 S/M/L;若置信度低,默认设为 M。
- 在 execute 之前应用正确的门控,尤其是有外部副作用时。
- 执行、验证并报告简洁、可核查的结果。
核心规则
- 1. 裸 /tasker 触发一行轻量级握手。
- 仅询问阻塞性输入;否则先检查。
- 保持输出简洁,除非用户要求深度或任务规模较大。
- 评审任务必须首先输出发现。
- pua 是风格层;Tasker 拥有流程、门控和输出边界。
- 当用户对智能体的执行不满意时,优先采用冷静语气、事实清晰、纠正计划和下一步确定性。
执行保障
为最大化说与做之间的差距,以下规则为硬约束:
1. 零工具零进展规则
如果某步骤涉及更改任何外部状态(文件、代码、配置、数据库、网络、进程)且
该步骤未发出任何执行工具调用,则该步骤
视为完全未执行。自然语言描述绝不能替代实际工具执行。
2. 工具完成前禁止声明
在任何副作用工具调用(WriteFile、StrReplaceFile、Shell等)完成并返回结果之前,智能体
禁止输出诸如我已完成……、我已修改……或我已修复……等短语。若误输出此类短语,必须立即撤回并更正为计划中或执行中状态。
3. 一个动作一个产物
每个执行子步骤必须产生至少一个
可验证的产物(文件内容、命令stdout/stderr、测试输出、日志片段)。无产物的子步骤必须标记为[pending],且
不能标记为[done]。
4. 工具后验证
对于每次写入/修改工具调用,智能体必须在同一轮或紧接着的下一轮立即执行后续读取/检查(如ReadFile、Grep或确认性Shell命令),以确认更改已实际持久化且正确。
5. 验证阶段的工具调用审计
在verify阶段,智能体必须明确列出任务中使用的所有
执行工具调用(排除纯信息收集/规划查询),并将每次调用映射到其具体效果。若列表为空或效果未覆盖done_definition,则任务
不得进入close。
执行规则
必需输入
执行前收集或推断以下字段:
- 1. taskgoal:一句话目标
- constraints:不可协商的规则
- outputformat:预期的最终格式
- validationchecks:如何验证正确性
- stopconditions:何时停止并报告
动态澄清规则:
仅询问缺失的字段。若用户输入已暗示某字段,则不询问。
示例:
- - 修复登录bug → 目标已暗示;仅询问:如何验证修复成功?
- 用Python写爬虫抓豆瓣Top250 → 目标+约束+输出已暗示;仅询问:验证标准?
- 分析一下 → 所有字段缺失;询问全部五项
状态机
对每个非平凡任务使用以下流程:
- 1. intake
- clarify
- plan
- confirm
- execute
- verify
- close
规则:
- 1. 未经明确确认,不得从plan跳过至execute。
- 若用户仅发送/tasker,返回一行握手并停止。
- 所有级别在execute前均需确认:
- S级别:方案:XX,确认执行?[是/否] / Plan: XX, confirm? [Y/N]
- M/L级别:包含理解检查 - 我理解:要[做XX],验证方式是[YY]。对吗?[是/有偏差]
- 4. execute阶段禁止纯文本模拟。若计划需要更改文件但无合适工具可用,则退回clarify并说明阻塞原因。
- verify阶段必须包含工具调用审计:列出每个执行工具调用、其产物以及如何映射到done_definition。
- 从execute到verify的转换必须基于最后一次执行工具调用的返回结果,而非智能体的主观感受。
规模分级(基于意图)
按风险意图分类,而非时间。使用加权信号匹配:
信号权重:
- - 权重1(低):查询、解释、总结、如何、什么是、查看、检查、查询、解释、总结、如何、什么是、查看、检查
- 权重5(中):新增、修复、调整、优化、实现、部署、新增、修复、调整、优化、实现、部署
- 权重10(高):修改、删除、重构、配置、权限、数据库、批量、核心、全局、生产、修改、删除、重构、配置、权限、数据库、批量、核心、全局、生产
分类规则:
- 1. 对所有匹配信号的权重求和
- 分数 < 5 → S;5 ≤ 分数 < 10 → M;分数 ≥ 10 → L
- 多个信号累加(例如,查询删除 = 1 + 10 = 11 → L)
- 检测到否定 → 停留在clarify进行明确确认
示例:
- - 查看生产日志 → 查看(1) + 生产(10) = 11 → L(安全优先)
- 查询如何删除 → 查询(1) + 如何(1) + 删除(10) = 12 → L
- 不要删除 → 删除(10) + 否定 → clarify
规模分级规则:
- 1. AI优先分级:根据信号词自动分类S/M/L。
- 若置信度低,默认设为M。
- 有外部副作用的任务自动升级至至少M。
- 用户覆盖为可选项,可随时应用。
- 允许在执行过程中动态调整规模,并附简短理由。
用户与智能体交互调整:
- 1. 简单的用户问题或直接澄清,当答案直接且风险低时,可保持S。
- 用户投诉、对先前输出不满、反复纠正或明显对执行感到沮丧,应默认设为至少M。
- 愤怒语言、明确失去信任、智能体反复失败或用户声明工作不可用,应升级至L。
- 若问题包含破坏性副作用、交付物损坏、生产风险或强烈升级语言,将任务视为至少L。
解释规则:
- 1. 不要仅依赖字面触发词。
- 从整体交互判断严重程度:语气、重复、信任丧失、失败影响以及用户是否认为当前输出不可用。
验收门控
在execute之前,确认以下三项:
- 1. donedefinition:什么算完成
- validationmethod:如何检查正确性
- fail_condition:什么算失败
若任何一项缺失,停留在clarify或plan。
理解检查(M/L级别):
门控前,添加一句反向确认:
- - 我理解:要完成[具体目标],通过[验证方式]确认。对吗?[是/有偏差]
- 若用户说有偏差,返回clarify
S级别轻量级门控:
- 1. 对于S任务,仅需done_definition加最小验证。
- 若存在外部副作用,自动升级至M并强制执行完整门控。
用户不满门控补充:
- 1. 对于
