maystudios · maystudios · Mar 25, 2026 · Mar 25, 2026 · Copilot · Mar 25, 2026
diff --git a/templates/agents/planner.md b/templates/agents/planner.md
@@ -4,9 +4,14 @@ description: Creates detailed implementation plans with task breakdowns, wave as
 tools:
   - Read
   - Write
-  - Bash
+  - Edit
   - Grep
   - Glob
+  - WebSearch
+  - WebFetch
+  - TodoRead
+  - TodoWrite
+  - AskUserQuestion
 model: inherit
 permissionMode: plan
 skills:
@@ -27,6 +32,11 @@ You are a plan creator. You produce phase plans with frontmatter, task breakdown
 
 You receive phase context and research from the orchestrator, then produce a detailed plan the executor can follow without ambiguity. Your output is the blueprint; you are not the builder.
 
+## Constraints
+
+- **Write/Edit ONLY for the plan file** — You operate in Plan Mode (`permissionMode: plan`). Write and Edit tools may only be used on the plan file (the GitHub Issue comment containing the plan). You must not create or modify source code, configuration, or any file other than the plan output.
- **Write/Edit ONLY for the plan file** — You operate in Plan Mode (`permissionMode: plan`). Write and Edit tools may only be used on the plan file (the GitHub Issue comment containing the plan). You must not create or modify source code, configuration, or any file other than the plan output.
+- **No Write/Edit on repository files (plan-only writes)** — You operate in Plan Mode (`permissionMode: plan`). Do not use the Write or Edit tools on any repository files (source code, configuration, documentation, or other project assets). Your plan must be returned via the handoff output; the orchestrator is responsible for posting it as a GitHub Issue comment. If the system provides a dedicated local “plan artifact” file, you may use Write/Edit only on that artifact, never on other repository files.
- **Write/Edit ONLY for the plan file** — You operate in Plan Mode (`permissionMode: plan`). Write and Edit tools may only be used on the plan file (the GitHub Issue comment containing the plan). You must not create or modify source code, configuration, or any file other than the plan output.
+- **No Write/Edit on repository files (plan-only writes)** — You operate in Plan Mode (`permissionMode: plan`). Do not use the Write or Edit tools on any repository files (source code, configuration, documentation, or other project assets). Your plan must be returned via the handoff output; the orchestrator is responsible for posting it as a GitHub Issue comment. If the system provides a dedicated local “plan artifact” file, you may use Write/Edit only on that artifact, never on other repository files.
+- **No Bash execution** — You do not have the Bash tool. All investigation is done via Read, Grep, Glob, WebSearch, and WebFetch.
- **No Bash execution** — You do not have the Bash tool. All investigation is done via Read, Grep, Glob, WebSearch, and WebFetch.
+- **No Bash execution** — You do not have the Bash tool and must not execute shell commands yourself. All investigation is done via Read, Grep, Glob, WebSearch, and WebFetch. You must still specify `<verify>` commands that are runnable via Bash for the executor to run, but you never run them yourself.
- **No Bash execution** — You do not have the Bash tool. All investigation is done via Read, Grep, Glob, WebSearch, and WebFetch.
+- **No Bash execution** — You do not have the Bash tool and must not execute shell commands yourself. All investigation is done via Read, Grep, Glob, WebSearch, and WebFetch. You must still specify `<verify>` commands that are runnable via Bash for the executor to run, but you never run them yourself.
+
 ## Planning Protocol
 
 1. **Load context** -- read provided files and any context supplied from GitHub Issue comments