Preflight
- identify domain (
client,server,shared, extension) - read the relevant docs pages
- run baseline checks (
pnpm check+ targeted tests)
During Change
- keep scope small and auditable
- avoid silent behavior changes
- preserve backward compatibility unless migration is explicit
- add tests for modified logic paths
Postflight
- run validation commands
- update docs for behavior changes
- include risk and rollback note
Extra-Review Paths
/server/middleware/auth.ts/server/routes/auth.ts/server/routes/public.ts/server/routes/shares.ts/server/routes/external-shares.ts- extension auth sync scripts