Claude Code Multi-Agent Development Sample

A sample configuration for multi-agent development workflows using Claude Code. Demonstrates how to set up a team of specialized AI agents that collaborate through a spec-driven development process. Full Stack Developer parent orchestrates three specialists (Coding Agent for application development, DevOps Agent for infrastructure/deployment, and Review Agent for code quality/security). Includes Skills and Steering documents to define agent capabilities, and MCP servers for tooling and knowledge access necessary to deploy a full-stack application to AWS.

Disclaimer: This repository is provided as an example only and is NOT approved for production use. The agent configurations, rules, and workflows are starting points — not production-ready defaults. You should review, adjust, and tailor them to fit your own project requirements, team conventions, and security posture. Adoption of this sample requires organizational legal review — you must complete the LLM Legal Approval and MCP Server Legal Approval tables before use.

Overview

This repo provides a sample .claude configuration with four core agents that work together:

Agent	Role	Model
fullstack-agent	Team lead — researches, designs specs, creates plans, delegates work	opus
coding-agent	Implements features and writes tests from specs	sonnet
devops-agent	Infrastructure, CI/CD, containers, and documentation	sonnet
review-agent	Reviews implementations for correctness, security, and quality	opus

Additional on-demand agents:

Agent	Role	Model
sa-agent	AWS Solutions Architect — Well-Architected reviews, cost/security	sonnet

The fullstack-agent orchestrates the workflow: it writes specs, breaks work into parallelized task groups, delegates to coding-agent and devops-agent for implementation, then sends the results to review-agent for feedback. This loop continues until the reviewer passes the work.

How It Works

fullstack-agent (plan + research) → coding-agent + devops-agent (build in parallel) → review-agent (verify) → fullstack-agent (next group or fix)

1. Plan — fullstack-agent researches the problem, writes a spec (spec.md, design.md), and creates a parallelized task plan (tasks.md)
2. Build — fullstack-agent delegates task groups to coding-agent and/or devops-agent in parallel via TeamCreate and SendMessage
3. Review — review-agent analyzes the implementation and writes findings to review.md
4. Fix — if the review fails, fullstack-agent creates fix tasks and loops back to build

Agents coordinate through shared tasks (TaskCreate/TaskUpdate/TaskList) and direct messaging (SendMessage). The team lead uses TeamCreate to spawn teammates and TeamDelete to clean up after work is complete.

Prerequisites

• Claude Code installed
• Node.js (for npx-based MCP servers)
• uv (for uvx-based MCP servers)
• Python 3.8+ on PATH (the agent-team enforcement hooks in hooks/ are Python scripts invoked by Claude Code; they use only the standard library)
• AWS credentials configured (for AWS MCP servers that need API access)
• (Optional) tmux or iTerm2 with Python API enabled — for split-pane display mode where each agent gets its own visible terminal pane. Without these, agent teams run in in-process mode (default), which works in any terminal.

Quick Start

1. Install Claude Code

2. Add the configuration files to your Claude Code config directory:

Warning: If you already have a ~/.claude/ directory with your own configuration, the commands below will overwrite files with matching names. Back up first and consider merging manually (Option B).

Option A — Fresh install (no existing ~/.claude config):

mkdir -p ~/.claude
cp -r agents/ ~/.claude/agents/
cp -r rules/ ~/.claude/rules/
cp -r skills/ ~/.claude/skills/
cp -r hooks/ ~/.claude/hooks/
chmod +x ~/.claude/hooks/*.py
cp settings.json ~/.claude/settings.json
cp .mcp.json ~/.claude/.mcp.json

# The bundled settings.json wires hooks via $CLAUDE_PROJECT_DIR (per-project hooks/).
# When installing globally to ~/.claude/hooks/, rewrite the hook commands so they
# point at $HOME/.claude/hooks/ instead — see "Hook path resolution" below.

Option B — Merge into existing config:

# Back up your current config
cp -r ~/.claude ~/.claude.bak

# Copy agents, rules, skills, and hooks (won't overwrite existing files)
cp -rn agents/ ~/.claude/agents/
cp -rn rules/ ~/.claude/rules/
cp -rn skills/ ~/.claude/skills/
cp -rn hooks/ ~/.claude/hooks/
chmod +x ~/.claude/hooks/*.py

# Manually merge settings.json and .mcp.json into your existing files:
# - settings.json: merge the "env", "enabledPlugins", and "hooks" keys (rewrite
#   hook command paths from $CLAUDE_PROJECT_DIR to $HOME/.claude/hooks/ — see
#   "Hook path resolution" below)
# - .mcp.json: merge the "mcpServers" entries

Hook path resolution. The bundled settings.json wires the three enforcement hooks with python3 "$CLAUDE_PROJECT_DIR/hooks/..." so this repo can ship and run them without leaving the project. When you install hooks under ~/.claude/hooks/ (the natural location for a global setup), edit the hooks block in your merged settings.json to use $HOME/.claude/hooks/... instead. Either form works — the hooks themselves resolve ~/.claude/logs/... paths via $HOME regardless of where the scripts live.

3. Enable the agent teams experimental feature in your settings.json:

{
  "env": {
    "CLAUDE_CODE_EXPERIMENTAL_AGENT_TEAMS": "1"
  }
}

4. Install required plugins.

   Plugins live in two marketplaces. The bundled settings.json declares both via enabledPlugins (15 entries) and extraKnownMarketplaces. On a fresh Claude Code install you still need to register the official Claude marketplace explicitly — extraKnownMarketplaces only carries non-default sources. The AWS marketplace is already wired by the bundled settings.json and registers automatically on next session start.

   a) Register the official Claude marketplace (one-time, host-wide):

   claude plugin marketplace add anthropics/claude-plugins-official

   Verify both marketplaces are now listed:

   claude plugin marketplace list
   # Expect to see: claude-plugins-official, agent-plugins-for-aws

   b) Install + enable plugins. With the bundled settings.json in place, restart Claude Code:

   claude

   On session start, Claude Code reads enabledPlugins, fetches each plugin from its declared marketplace, installs it under ~/.claude/plugins/cache/, and enables it. First start can take ~30s while plugins download.

   Alternatively, install interactively at any time:

   claude /plugins
   # Browse, install, and toggle plugins from the menu.

   Or install a single plugin directly:

   claude plugin install deploy-on-aws@agent-plugins-for-aws

   c) Verify. From inside Claude Code, run /plugins and confirm all 15 entries listed in settings.json show as enabled:

   Marketplace	Plugins
   claude-plugins-official	context7, superpowers, code-review, code-simplifier, commit-commands, feature-dev, frontend-design, github, gitlab, pr-review-toolkit, security-guidance
   agent-plugins-for-aws	deploy-on-aws, aws-amplify, aws-serverless, databases-on-aws

   Option B (merging into existing config): make sure your merged settings.json includes both the full enabledPlugins block and the extraKnownMarketplaces.agent-plugins-for-aws block — without the marketplace definition, Claude Code cannot resolve the four AWS plugins (@agent-plugins-for-aws-suffixed names) even after the official marketplace is registered. Reference snippet:

   {
     "enabledPlugins": {
       "deploy-on-aws@agent-plugins-for-aws": true,
       "aws-amplify@agent-plugins-for-aws": true,
       "aws-serverless@agent-plugins-for-aws": true,
       "databases-on-aws@agent-plugins-for-aws": true
     },
     "extraKnownMarketplaces": {
       "agent-plugins-for-aws": {
         "source": {
           "source": "github",
           "repo": "awslabs/agent-plugins"
         }
       }
     }
   }

   Troubleshooting:

   • marketplace add fails with a clone error: the GitHub repos are public, but git must be installed and reachable. If you're behind a proxy, configure git first.
   • Plugins listed in enabledPlugins show as missing in /plugins: their marketplace isn't registered. Re-run claude plugin marketplace list; if either marketplace is absent, add it (anthropics/claude-plugins-official for the official set; the AWS marketplace re-registers automatically from settings.json).
   • Plugin loaded but its skills/agents are absent: restart your Claude Code session — plugin contributions are wired at session start, not hot-reloaded.

5. Verify MCP servers are working:

# MCP servers in .mcp.json are auto-installed on first use via npx/uvx.
# To check their status:
claude /mcp

6. Start Claude Code:

claude

Repository Structure

├── agents/                     # Agent definitions (markdown prompts with frontmatter)
│   ├── fullstack-agent.md      # Team lead — architecture, planning, coordination
│   ├── coding-agent.md         # Implements features and tests
│   ├── devops-agent.md         # Infrastructure, CI/CD, containers, docs
│   ├── review-agent.md         # Code review and quality verification
│   └── sa-agent.md             # AWS Solutions Architect — Well-Architected reviews
├── .mcp.json                   # MCP server configurations used by agents and skills
├── rules/                      # Global behavioral rules for all agents (auto-loaded every session)
│   ├── AWS-security-guidelines.md # AWS security best practices and production safeguards
│   ├── agent-team-protocol.md  # Shared teammate lifecycle and communication protocol
│   └── execution-hygiene.md    # Non-interactive execution and dependency isolation
├── skills/                     # Domain-specific knowledge files (invoked on demand)
│   ├── spec-workflow/          # Spec-driven development loop with parallel task groups
│   ├── documentation/          # Technical writing patterns
│   ├── git-workflow/           # Git operations and conventions
│   └── pr-review/              # Pull request review patterns
├── commands/                   # Optional slash commands (see Optional Commands section)
│   ├── brainstorm.md           # `/brainstorm` — structured new-project ideation -> requirements.md
│   └── optimize-my-claude.md   # `/optimize-my-claude` — audit and tune ~/.claude after model releases
├── hooks/                      # Python hook scripts that machine-enforce the agent-team protocol
│   ├── team_hook_common.py            # Shared payload-parsing, audit-log, and exit-contract helpers
│   ├── task_created_format_check.py   # TaskCreated → enforce role/file/acceptance/Run task shape
│   ├── task_completed_verify_gate.py  # TaskCompleted → require Run command + verification sentinel
│   └── teammate_idle_workcheck.py     # TeammateIdle → nudge if claimable work remains for the role
└── settings.json               # Claude Code settings (env vars, enabled plugins, hook wiring)

Key Concepts

Agents define who does what. Each agent has a markdown file with YAML frontmatter (name, description, model) and a detailed system prompt (role, constraints, workflow). The team lead (fullstack-agent) spawns and coordinates teammates.

Rules are global behavioral constraints that apply to all agents. They enforce consistency — like AWS security guidelines and production safeguards that must be honored on every interaction.

Skills are domain-specific knowledge that agents invoke on demand. They provide patterns, protocols, and best practices for specific workflows (e.g., spec-driven development, agent-team coordination, git workflow, PR review).

Hooks are Python scripts wired into settings.json that machine-enforce the agent-team protocol. They gate three events (TaskCreated, TaskCompleted, TeammateIdle), are fail-open by design, and audit every decision to ~/.claude/logs/team-hooks.jsonl. See the Hooks section below for the task shape, sentinel convention, and bypass tokens.

Specs are created at runtime in .claude/specs/<slug>/ and contain the design decisions, task plans, review findings, and decision logs for each piece of work.

Rules

Rule	Purpose
AWS-security-guidelines.md	Enforces AWS security best practices including least-privilege access, production safeguards, and credential handling
agent-team-protocol.md	Shared teammate lifecycle — claiming tasks, communication patterns, verification gates (machine-enforced via hooks/; see Hooks), and blocker reporting. Loaded as a rule (not a skill) so every spawned teammate inherits it as priming without needing to invoke Skill
execution-hygiene.md	Non-interactive execution (-y/--yes/--no-input, disabled pagers, no TTY assumptions) and project dependency isolation per language (venvs, node_modules, cargo, go mod) with version pinning and lock files. Loaded as a rule so every session — team or solo — inherits it without needing to invoke Skill

Skills

Skill	Purpose
spec-workflow	Defines the full plan → build → review loop with parallel task groups and the .claude/specs/<slug>/ directory structure. Structural conventions (directory layout, task format) are also inlined into each agent file so they are always visible; this skill carries the deeper workflow narrative on demand
documentation	Technical writing patterns for runbooks, architecture docs, and AWS service documentation linking. Invoked by coding-agent and devops-agent at task close-out, and by fullstack-agent in Phase 4 to refresh the project README and other docs before cleanup
git-workflow	Conventional commit style, branch naming, and integration with the commit-commands plugin for commit/push/PR flows
pr-review	Pull request review patterns and delegation to the pr-review-toolkit plugin for specialized analyses

Hooks

Three Python scripts in hooks/ machine-enforce the agent-team protocol. They are wired in settings.json under the hooks key and resolved at runtime via $CLAUDE_PROJECT_DIR (this repo) or $HOME (when installed globally — see "Hook path resolution" in Quick Start). Every decision is audited to ~/.claude/logs/team-hooks.jsonl, and all hooks are fail-open: any unexpected condition allows the action, so a hook bug can never block a teammate.

Event	Script	Enforcement
TaskCreated	task_created_format_check.py	Rolls back creation unless the task carries a [role] tag, both | files | acceptance pipe sections, and a Run: <command>
TaskCompleted	task_completed_verify_gate.py	Blocks completion unless the task has a Run: command and the owning teammate wrote a verification sentinel after that command passed
TeammateIdle	teammate_idle_workcheck.py	Nudges a teammate that is going idle while unclaimed, unblocked tasks tagged with its role still exist (capped at 2 nudges per claimable set, loop-safe)

Task shape

Tasks authored by the team lead must follow:

[coding|devops|sa|sfdc] <verb> <what> | <file paths> | <acceptance>. Run: <command>

Example: [coding] add JWT verifier | src/auth/jwt.ts | unit tests pass. Run: npm test -- src/auth

Verification sentinel

Before a teammate calls TaskUpdate(status=completed), it must run the task's Run: command and then write a sentinel attesting that the run passed:

mkdir -p ~/.claude/logs/verified/<team_name>
echo "<the Run command> PASSED" > ~/.claude/logs/verified/<team_name>/task-<task_id>.verified

The hook deletes the sentinel on a successful completion so it cannot be reused. The hook can't read the teammate's transcript — the sentinel is the teammate's attestation that verification actually happened.

Bypass tokens

Add either token anywhere in the task subject or description for legitimate exceptions:

Token	Use when
[skip-format-check]	The task is coordination/research/non-build work and doesn't need the [role] | files | acceptance | Run: shape
[skip-verify]	The task is pure analysis or documentation with no runnable verification command (typical for some [sa] / [sfdc] / docs-only tasks). Prefer giving the task a real Run: (lint, validate, --dry-run, query check) over a skip token where one exists

Verifying hooks are wired

After install, smoke-test from the repo root:

# Should exit 2 (block) with "Missing: [role] tag..." on stderr
echo '{"task_id":"test","task_subject":"do something","task_description":""}' \
  | python3 hooks/task_created_format_check.py

# Should exit 0 (allow)
echo '{"task_id":"test","task_subject":"[coding] foo | f.py | tests pass. Run: pytest"}' \
  | python3 hooks/task_created_format_check.py

# Should exit 0 (fail-open)
echo '{}' | python3 hooks/task_completed_verify_gate.py

If claude /doctor reports the hook commands and Claude Code logs each TaskCreated / TaskCompleted / TeammateIdle decision to ~/.claude/logs/team-hooks.jsonl, enforcement is live.

The full convention, including loop-guard semantics for TeammateIdle and the audit-log schema, lives in rules/agent-team-protocol.md → "Enforced Hooks".

Optional Commands

The commands/ directory contains optional slash commands that plug into this workflow. They are not required for the core plan → build → review loop, but they cover two common needs around it: starting new work and keeping the configuration current.

Install them alongside the other config:

cp -r commands/ ~/.claude/commands/

Once copied, invoke them from any Claude Code session as slash commands.

Command	When to Use	Purpose
/brainstorm	Starting a new project from a rough idea	Walks through up to 10 clarifying questions (users, scale, integrations, NFRs, budget, deployment, edge cases, MVP scope), synthesizes a requirements document with the user, then writes it to .claude/specs/<slug>/requirements.md. This feeds directly into the spec-workflow skill as the starting point for spec.md, design.md, and tasks.md
/optimize-my-claude	Following a new Claude model release (e.g., after an Opus/Sonnet/Haiku upgrade)	Audits the full ~/.claude configuration — settings, agents, rules, skills, plugins, and MCP servers — against current best practices for the active model. Flags deprecated env vars, stale model IDs, cost leaks (e.g., teammates pinned to Opus for focused work), redundant content, and missing features. Presents findings by impact, waits for user approval, then applies only the approved changes. Pass an optional focus area (e.g., /optimize-my-claude settings) to scope the audit

Both commands are interactive — they ask for confirmation before writing files or making configuration changes.

Plugins

This configuration enables the following Claude Code plugins via settings.json:

Plugin	Purpose
context7	Live documentation lookup for libraries and frameworks
superpowers	Enhanced development workflows (TDD, debugging, planning)
feature-dev	Guided feature development with architecture focus
code-review	Code review workflows
pr-review-toolkit	Comprehensive PR review with specialized agents
commit-commands	Git commit, push, and PR creation
github	GitHub issue/PR management
gitlab	GitLab issue/PR management
code-simplifier	Code clarity and maintainability refinement
frontend-design	Production-grade frontend interface design
deploy-on-aws	AWS deployment workflows — codebase analysis, service recommendation, cost estimation, IaC generation, and deployment. Provides awsiac (CloudFormation/CDK validation, compliance, best practices), awspricing (pricing data, cost reports), and a diagram skill for architecture diagrams
aws-amplify	AWS Amplify Gen 2 workflows — full-stack app deployment (React, Next.js, Vue, Angular, mobile), authentication, data models, storage, GraphQL APIs, sandbox/production environments
aws-serverless	AWS serverless development — Lambda function design/build/deploy/test, SAM CLI operations, API Gateway (REST/HTTP/WebSocket), Event Source Mapping setup/optimization, serverless templates, durable functions
databases-on-aws	Database operations — Aurora DSQL queries, schema inspection, migrations, DSQL documentation and best practice recommendations

MCP Servers

MCP servers are configured in .mcp.json and auto-installed on first use via npx or uvx. No manual installation is required.

Server	Source	Purpose
awslabs.document-loader-mcp-server	AWS Labs	Load external documents (PDFs, web pages)

Customization

• Add agents: Create a new <name>.md in agents/ with frontmatter (name, description, model), then reference it in the fullstack-agent's team composition
• Add rules: Drop a markdown file in rules/ — all agents will follow it
• Add skills: Create a <name>/SKILL.md in skills/ — agents reference these for domain knowledge
• Change models: Edit the model field in each agent's YAML frontmatter. Available models: opus, sonnet, haiku
• Add MCP servers: Add entries to .mcp.json — servers are auto-installed via npx/uvx on first use

LLM Legal Approval

Field	Value
Service	Claude (Anthropic)
Approval Status	[To be completed by adopter]
Approval Date	[Date]
Approval Authority	[Legal/Procurement team]
License Terms	[Link to agreement]
Usage Restrictions	[Any limitations]

Note: Adopters must complete this section with their organization's legal approval status before using Claude Code in any project. Consult your legal and procurement teams for guidance on AI/LLM usage policies.

MCP Server Legal Approval

Adopters must complete this table before using the MCP servers configured in .mcp.json.

Server	Provider	Approval Status	Right to Use	Distribution Rights	Security Review
awslabs.document-loader-mcp-server	AWS Labs	Approved (AWS ToS)	Yes	Yes	AWS-managed

Note: Third-party MCP servers require independent legal and security review by your organization before use. AWS-provided servers fall under AWS Terms of Service.

Dataset Compliance

No dataset is provided as part of this project. This repository contains only configuration files (agent definitions, rules, skills, and MCP server configurations) for setting up multi-agent development workflows. No training data, evaluation data, or other datasets are included or required.

Security

See SECURITY.md for the full security overview including threat model, AI security controls, and risk assessment.

For security issue notifications, see CONTRIBUTING.

License

This library is licensed under the MIT-0 License. See the LICENSE file.