/pwn https://target           classify target, create operation, choose play, begin
/play                         list reusable workflows
/play web-surface https://x   run a specific play
/operations                   switch between saved engagements
/agents                       choose a specialist agent
/mode appsec                  switch mode directly
/doctor                       inspect runtime, tools, vault, and CVE bundle
/opsec strict                 enforce declared scope
/teach                        narrate tool use for demos and learning
/share --sign                 create a redacted, optionally signed handoff archive
/remediate OBS-001            turn an observation into patch guidance
/models                       switch model/provider inside the TUI