@appsforgood/next-supabase-kit 0.1.6 → 0.1.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +7 -0
- package/DOGFOOD.md +31 -0
- package/README.md +209 -42
- package/antigravity/commands/review.toml +16 -0
- package/antigravity/commands/spec.toml +17 -0
- package/antigravity/commands/test.toml +17 -0
- package/antigravity/plugin.json +4 -1
- package/assistant-adapters/antigravity.md +7 -0
- package/dist/index.js +4 -1
- package/dist/index.js.map +1 -1
- package/examples/next-supabase-installed/.agent-kit/agent-roster.json +46 -11
- package/examples/next-supabase-installed/.agent-kit/manifest.json +2 -2
- package/examples/next-supabase-installed/audit-output.json +380 -380
- package/package.json +1 -1
- package/prompts/lifecycle-command-index.md +180 -0
- package/rosters/next-supabase-default-council.json +16 -2
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,12 @@
|
|
|
1
1
|
# Changelog
|
|
2
2
|
|
|
3
|
+
## 0.1.7
|
|
4
|
+
|
|
5
|
+
- Added **Workflow Commands** section to README and docs site: lifecycle diagram, 12 core + 8 UI slash commands, council table, skills-by-phase grouping, and explicit separation from package CLI commands.
|
|
6
|
+
- Added `prompts/lifecycle-command-index.md` as the canonical delivery lifecycle command index (parallel to `prompts/ui-command-index.md`).
|
|
7
|
+
- Added Antigravity native commands `/spec`, `/test`, and `/review` (20 total runtime commands) with roster `testing` and `code-review` workflows.
|
|
8
|
+
- Added "How skills work" guidance to `SKILLS.md` and updated assistant adapter docs for lifecycle command discoverability.
|
|
9
|
+
|
|
3
10
|
## 0.1.6
|
|
4
11
|
|
|
5
12
|
- Added a repo-native UI improvement harness with command-style prompts, deterministic detector checklist, acceptance rubric, portable runtime skill, and focused Antigravity UI commands.
|
package/DOGFOOD.md
CHANGED
|
@@ -34,6 +34,23 @@ Mode: read-only audit; no downstream files were modified.
|
|
|
34
34
|
- Assistant adapters and upgrade lifecycle still need real activation/dogfood evidence after publication.
|
|
35
35
|
- Reference-led design critique still needs a real UI change dogfood pass with screenshots or equivalent visual evidence.
|
|
36
36
|
|
|
37
|
+
## 2026-07-04 Publish @0.1.7 Snapshot
|
|
38
|
+
|
|
39
|
+
Date: 2026-07-04
|
|
40
|
+
CLI source: public npm registry `@appsforgood/next-supabase-kit@0.1.7`
|
|
41
|
+
|
|
42
|
+
- Published `@appsforgood/next-supabase-kit@0.1.7` with lifecycle README commands, `/spec`/`/test`/`/review` Antigravity adapters, and `prompts/lifecycle-command-index.md`.
|
|
43
|
+
- Post-publish: `npm run publish:verify` against live registry.
|
|
44
|
+
|
|
45
|
+
## 2026-07-04 Publish @0.1.6 Snapshot
|
|
46
|
+
|
|
47
|
+
Date: 2026-07-04
|
|
48
|
+
CLI source: public npm registry `@appsforgood/next-supabase-kit@0.1.6`
|
|
49
|
+
Mode: local maintainer publish (token) after `npm run release:check`, then `npm run publish:verify`.
|
|
50
|
+
|
|
51
|
+
- Published `@appsforgood/next-supabase-kit@0.1.6` to public npm (local token publish with `--provenance=false`; CI releases continue to use OIDC + provenance).
|
|
52
|
+
- `npm run publish:verify` passed: registry visibility confirmed, `npx` doctor ok, clean temp `init` installed current baseline assets, and `audit --json --min-readiness baseline-setup` returned 0 failures (67 pass / 4 warn / readiness `baseline-setup`).
|
|
53
|
+
|
|
37
54
|
## 2026-07-02 Publish Verification And Self-Install Snapshot
|
|
38
55
|
|
|
39
56
|
Date: 2026-07-02
|
|
@@ -143,3 +160,17 @@ Policy: **gitignored local overlay + bootstrap script** (not committed to kit so
|
|
|
143
160
|
| Rationale | Kit source stays in `templates/` and tracked maintainer docs; overlay proves Tier B activation without polluting commit history |
|
|
144
161
|
|
|
145
162
|
This policy closes the gap where the kit shipped Level 5 IDE surfaces but BaseRepo maintainers operated at Level 4 day-to-day.
|
|
163
|
+
|
|
164
|
+
## 2026-07-04 - Lifecycle Commands README Parity
|
|
165
|
+
|
|
166
|
+
Date: 2026-07-04
|
|
167
|
+
Scope: README/docs discoverability + three new Antigravity adapters
|
|
168
|
+
|
|
169
|
+
| Item | Detail |
|
|
170
|
+
| --- | --- |
|
|
171
|
+
| README | Added **Workflow Commands** section: lifecycle diagram, 12 core + 8 UI slash commands, council table, skills-by-phase, skill activation narrative |
|
|
172
|
+
| Canonical index | `prompts/lifecycle-command-index.md` for delivery commands (parallel to `prompts/ui-command-index.md`) |
|
|
173
|
+
| New adapters | `/spec`, `/test`, `/review` in `antigravity/commands/` (20 total native commands) |
|
|
174
|
+
| Roster | `testing` and `code-review` workflows; planning triggers for spec keywords |
|
|
175
|
+
| Out of scope | `/build`, `/webperf`, `/code-simplify`, `/build auto` — documented as future orchestration |
|
|
176
|
+
| Verification | `npm test`, `agent-kit adapter validate antigravity` after build |
|
package/README.md
CHANGED
|
@@ -20,10 +20,10 @@ It also includes a local Agent Studio workflow: project context, durable human c
|
|
|
20
20
|
|
|
21
21
|
## Quick Start
|
|
22
22
|
|
|
23
|
-
Use this in a Next.js + Supabase project:
|
|
23
|
+
Use this in a Next.js + Supabase project (latest: **v0.1.7** on npm):
|
|
24
24
|
|
|
25
25
|
```bash
|
|
26
|
-
npx @appsforgood/next-supabase-kit init --stack next-supabase --setup --open
|
|
26
|
+
npx @appsforgood/next-supabase-kit@0.1.7 init --stack next-supabase --setup --open
|
|
27
27
|
npx @appsforgood/next-supabase-kit audit
|
|
28
28
|
npx @appsforgood/next-supabase-kit audit --min-readiness baseline-setup
|
|
29
29
|
```
|
|
@@ -33,8 +33,13 @@ After install, the **Agent Office** setup view teaches agents about your project
|
|
|
33
33
|
```bash
|
|
34
34
|
npx @appsforgood/next-supabase-kit setup --open
|
|
35
35
|
npx @appsforgood/next-supabase-kit setup --status
|
|
36
|
-
|
|
37
|
-
|
|
36
|
+
```
|
|
37
|
+
|
|
38
|
+
Promote IDE/runtime adapters after install:
|
|
39
|
+
|
|
40
|
+
```bash
|
|
41
|
+
npx @appsforgood/next-supabase-kit init --activate cursor --activate antigravity
|
|
42
|
+
npx @appsforgood/next-supabase-kit adapter validate all
|
|
38
43
|
```
|
|
39
44
|
|
|
40
45
|
The installer preserves existing docs. If a file already exists and differs from the template, the new version is written to `.agent-kit/conflicts/` for review.
|
|
@@ -78,6 +83,83 @@ npm run release:check
|
|
|
78
83
|
|
|
79
84
|
`npm run release:check` is the main pre-release proof command. It typechecks, tests, builds, install-smokes the package, checks examples, runs dependency audit, validates SBOM generation, and dry-runs packaging.
|
|
80
85
|
|
|
86
|
+
## Workflow Commands
|
|
87
|
+
|
|
88
|
+
Twenty slash commands map to the delivery lifecycle. Each one activates the right council agents and skills automatically. Use them in Antigravity after `init --activate antigravity`, or as prompt prefixes in any IDE. Canonical workflow steps live in `.agent-kit/prompts/lifecycle-command-index.md` (delivery) and `.agent-kit/prompts/ui-command-index.md` (UI polish).
|
|
89
|
+
|
|
90
|
+
```text
|
|
91
|
+
SETUP → SPEC/PLAN → BUILD → VERIFY → REVIEW → SHIP
|
|
92
|
+
```
|
|
93
|
+
|
|
94
|
+
**Workflow commands** (`/setup`, `/spec`, …) are runtime adapters. **Package CLI** commands (`agent-kit init`, `audit`, `session`, …) are documented under [CLI Reference](#cli-reference) below. Cursor loads rules and skills from `init`; Antigravity gets native slash commands from `init --activate antigravity`. See `ASSISTANT_ADAPTERS.md` for per-IDE setup.
|
|
95
|
+
|
|
96
|
+
### Core lifecycle commands
|
|
97
|
+
|
|
98
|
+
| What you're doing | Command | Key principle | Skills / council |
|
|
99
|
+
| --- | --- | --- | --- |
|
|
100
|
+
| Onboard project context | `/setup` | Context before code | Agent Office, project-context |
|
|
101
|
+
| Define what to build | `/spec` | Spec before code | Planner, docs-maintainer |
|
|
102
|
+
| Plan how to build it | `/plan` | Council before implementation | planning-council, lead-architect |
|
|
103
|
+
| Route between agents | `/handoff` | Explicit handoffs | agent-handoff-tracing |
|
|
104
|
+
| Build frontend/UI | `/frontend` | Content-first design | frontend-design-lead skills |
|
|
105
|
+
| Check kit readiness | `/audit` | Evidence before claims | best-practice-maturity-review |
|
|
106
|
+
| Prove behavior | `/test` | Tests are proof | testing-qa, qa-engineer |
|
|
107
|
+
| Review before merge | `/review` | Improve code health | qa-engineer + security-reviewer |
|
|
108
|
+
| Security signoff | `/security` | RLS at the boundary | owasp-security-review, supabase-auth-rls |
|
|
109
|
+
| Public copy | `/copy` | Proof before publish | marketing-copy-lead |
|
|
110
|
+
| Ship release | `/ship` | Faster is safer | deployment-observability, release gates |
|
|
111
|
+
| Upgrade kit/deps | `/upgrade` | Diff before overwrite | upgrade-maintenance |
|
|
112
|
+
|
|
113
|
+
### UI harness commands
|
|
114
|
+
|
|
115
|
+
Focused UI improvement commands. Full steps: `.agent-kit/prompts/ui-command-index.md`.
|
|
116
|
+
|
|
117
|
+
| What you're doing | Command | Key principle |
|
|
118
|
+
| --- | --- | --- |
|
|
119
|
+
| Audit UI before release | `/ui-audit` | Detect before ship |
|
|
120
|
+
| Improve visual quality | `/ui-polish` | Scope-safe polish |
|
|
121
|
+
| Repair layout structure | `/layout-cleanup` | Hierarchy over decoration |
|
|
122
|
+
| Fix responsive behavior | `/responsive-cleanup` | Mobile is not an afterthought |
|
|
123
|
+
| WCAG 2.1 AA pass | `/accessibility-pass` | Keyboard and contrast matter |
|
|
124
|
+
| Prove product distinctiveness | `/distinctiveness-pass` | Not interchangeable SaaS |
|
|
125
|
+
| Critique screenshots | `/screenshot-critique` | Evidence over opinion |
|
|
126
|
+
| Live browser QA loop | `/browser-qa` | Measure in the real UI |
|
|
127
|
+
|
|
128
|
+
Skills activate from task keywords and roster `defaultFor` tags—for example, schema/RLS work routes to **Supabase/Postgres Engineer** with `supabase-auth-rls` and `postgres-migrations`; App Router work routes to **Next.js Engineer** with `nextjs-app-router`. See `SKILLS.md` and `.agent-kit/agent-roster.json`.
|
|
129
|
+
|
|
130
|
+
### Council
|
|
131
|
+
|
|
132
|
+
| Agent | Owns | Key skills |
|
|
133
|
+
| --- | --- | --- |
|
|
134
|
+
| Planner | Scope, roadmap, ambiguous requests | planning-council, agent-handoff-tracing |
|
|
135
|
+
| Lead Architect | Core and cross-layer changes | nextjs-app-router, supabase-auth-rls, owasp-security-review |
|
|
136
|
+
| Supabase/Postgres Engineer | Schema, migrations, RLS, auth | supabase-auth-rls, postgres-migrations |
|
|
137
|
+
| Next.js Engineer | App Router, Server Actions, UI state | nextjs-app-router, frontend-design-system |
|
|
138
|
+
| Frontend Design Lead | Design gates, visual QA, anti-generic UI | content-first-design, ui-improvement-harness |
|
|
139
|
+
| Marketing Copy Lead | Positioning, conversion copy, CTAs | positioning-messaging, conversion-copywriting |
|
|
140
|
+
| Security Reviewer | OWASP, auth boundaries, secrets | owasp-security-review, supabase-auth-rls |
|
|
141
|
+
| QA Engineer | Tests, regression, acceptance evidence | testing-qa, visual-regression-qa |
|
|
142
|
+
| Documentation Maintainer | Living docs, spec, decisions | docs-maintainer, planning-council |
|
|
143
|
+
| Deployment/Observability Engineer | Release, rollback, monitoring | deployment-observability |
|
|
144
|
+
|
|
145
|
+
### Skills by lifecycle phase
|
|
146
|
+
|
|
147
|
+
Full skill list: `SKILLS.md`.
|
|
148
|
+
|
|
149
|
+
**Define:** planning-council, agent-handoff-tracing, best-practice-maturity-review, docs-maintainer
|
|
150
|
+
|
|
151
|
+
**Build:** nextjs-app-router, supabase-auth-rls, postgres-migrations, content-first-design, frontend-design-system, ui-improvement-harness, positioning-messaging
|
|
152
|
+
|
|
153
|
+
**Verify:** testing-qa, visual-regression-qa, owasp-security-review, accessibility-wcag, reference-led-design-critique, frontend-product-quality-rubric
|
|
154
|
+
|
|
155
|
+
**Ship:** deployment-observability, upgrade-maintenance
|
|
156
|
+
|
|
157
|
+
### How skills work
|
|
158
|
+
|
|
159
|
+
- **Canonical skills** live in `.agent-kit/skills/` as markdown checklists agents load for a task type.
|
|
160
|
+
- **Runtime wrappers** in `runtime-skills/*/SKILL.md` expose the same content to Antigravity and other skill-directory runtimes.
|
|
161
|
+
- **Roster routing** in `.agent-kit/agent-roster.json` maps `defaultFor` keywords and workflows to agents and their default skill sets—slash commands and natural-language requests both use the same contract.
|
|
162
|
+
|
|
81
163
|
## How Agentic Coders Should Use It
|
|
82
164
|
|
|
83
165
|
Start with the installed files:
|
|
@@ -104,22 +186,135 @@ Default routing:
|
|
|
104
186
|
|
|
105
187
|
For meaningful multi-agent work, record the decision, risk, next handoff, required outputs, and verification evidence in `COUNCIL.md` or `.agent-kit/council-sessions/*.json`.
|
|
106
188
|
|
|
107
|
-
|
|
189
|
+
## CLI Reference
|
|
190
|
+
|
|
191
|
+
Every command accepts `--json` for machine-readable output. Mutating commands (`init`, `update`, `add skill`, `correction apply`) also accept `--dry-run`.
|
|
192
|
+
|
|
193
|
+
### Install and upgrade
|
|
194
|
+
|
|
195
|
+
| Command | Purpose |
|
|
196
|
+
| --- | --- |
|
|
197
|
+
| `init` | Install docs, roster, skills, schemas, Cursor rules, and project context |
|
|
198
|
+
| `diff` | Compare local docs against bundled templates |
|
|
199
|
+
| `update` | Hash-aware upgrade: pristine docs refresh, local edits kept, conflicts for review |
|
|
200
|
+
| `add skill <name>` | Copy one skill into `.agent-kit/skills/` |
|
|
201
|
+
| `onboard` | Print the recommended first-run checklist |
|
|
202
|
+
|
|
203
|
+
```bash
|
|
204
|
+
agent-kit init --stack next-supabase --guided --dry-run
|
|
205
|
+
agent-kit init --activate cursor --activate codex --no-setup
|
|
206
|
+
agent-kit diff
|
|
207
|
+
agent-kit update --dry-run
|
|
208
|
+
agent-kit add skill ui-improvement-harness
|
|
209
|
+
```
|
|
210
|
+
|
|
211
|
+
`init` flags: `--stack`, `--guided`, `--dry-run`, `--activate <targets...>`, `--setup`, `--no-setup`, `--open`, `--force`, `--json`.
|
|
212
|
+
`update` flags: `--dry-run`, `--force`, `--json`.
|
|
213
|
+
|
|
214
|
+
### Setup and Agent Office
|
|
215
|
+
|
|
216
|
+
| Command | Purpose |
|
|
217
|
+
| --- | --- |
|
|
218
|
+
| `setup` | Serve local Agent Office (default) and form wizard at `http://127.0.0.1:9321` |
|
|
219
|
+
| `setup --status` | Print onboarding progress as JSON |
|
|
220
|
+
|
|
221
|
+
Routes: `/` or `/office` (pixel office, default), `/wizard` (form fallback).
|
|
222
|
+
|
|
223
|
+
```bash
|
|
224
|
+
agent-kit setup --open
|
|
225
|
+
agent-kit setup --status
|
|
226
|
+
```
|
|
227
|
+
|
|
228
|
+
### Audit and validation
|
|
229
|
+
|
|
230
|
+
| Command | Purpose |
|
|
231
|
+
| --- | --- |
|
|
232
|
+
| `audit` | Readiness report with pass/warn/fail findings |
|
|
233
|
+
| `doctor` | Validate CLI runtime prerequisites |
|
|
234
|
+
| `adapter validate [target]` | Validate IDE/runtime adapter assets (`cursor`, `claude`, `codex`, `copilot`, `antigravity`, `all`) |
|
|
235
|
+
| `package validate` | Source-repo release asset validation (maintainers) |
|
|
236
|
+
|
|
237
|
+
```bash
|
|
238
|
+
agent-kit audit --json --min-readiness baseline-setup
|
|
239
|
+
agent-kit adapter validate cursor
|
|
240
|
+
agent-kit doctor --json
|
|
241
|
+
```
|
|
242
|
+
|
|
243
|
+
Readiness levels: `needs-setup`, `baseline-setup`, `needs-improvement`, `best-practice-candidate`. Use `--min-readiness <level>` in CI.
|
|
244
|
+
|
|
245
|
+
### Project context
|
|
246
|
+
|
|
247
|
+
| Command | Purpose |
|
|
248
|
+
| --- | --- |
|
|
249
|
+
| `context init` | Create or refresh `.agent-kit/project-context.json` |
|
|
250
|
+
| `context scan` | Print inferred context without writing |
|
|
251
|
+
| `context ask` | List unanswered high-value context questions |
|
|
252
|
+
| `context render` | Render `.agent-kit/project-context.md` |
|
|
253
|
+
| `context validate` | Validate context against schema |
|
|
254
|
+
| `context show` | Print current context JSON |
|
|
108
255
|
|
|
109
256
|
```bash
|
|
110
|
-
agent-kit
|
|
111
|
-
agent-kit init --guided
|
|
257
|
+
agent-kit context init
|
|
112
258
|
agent-kit context validate
|
|
259
|
+
```
|
|
260
|
+
|
|
261
|
+
### Council sessions
|
|
262
|
+
|
|
263
|
+
| Command | Purpose |
|
|
264
|
+
| --- | --- |
|
|
265
|
+
| `session start` | Open a council session with workflow routing |
|
|
266
|
+
| `session list` / `session active` | Inspect sessions |
|
|
267
|
+
| `session note` / `decision` / `handoff` | Record collaboration events |
|
|
268
|
+
| `session correct` / `artifact` / `verify` / `output` | Record corrections, files, checks, required outputs |
|
|
269
|
+
| `session checkpoint` | Batch-apply events from a JSON file |
|
|
270
|
+
| `session render` / `session close` | Render Markdown and close the session |
|
|
271
|
+
|
|
272
|
+
```bash
|
|
113
273
|
agent-kit session start "Build checkout flow" --workflow frontend-change
|
|
114
|
-
agent-kit session decision --agent planner --risk "Generic UI risk" "Use frontend-change workflow."
|
|
115
274
|
agent-kit session handoff --from planner --to frontend-design-lead --decision "Start design intake." --risk "Generic UI risk."
|
|
116
|
-
agent-kit session correct --agent frontend-design-lead --scope project "Keep UI dense and operational."
|
|
117
275
|
agent-kit session verify --command "npm test" --result pass --notes "Tests passed."
|
|
118
276
|
agent-kit session output "visual QA evidence" --status not-applicable --evidence "No UI change."
|
|
277
|
+
agent-kit session checkpoint --file .agent-kit/checkpoint.json
|
|
119
278
|
agent-kit session render
|
|
120
|
-
agent-kit
|
|
279
|
+
agent-kit session close --status complete
|
|
280
|
+
```
|
|
281
|
+
|
|
282
|
+
### Corrections
|
|
283
|
+
|
|
284
|
+
| Command | Purpose |
|
|
285
|
+
| --- | --- |
|
|
286
|
+
| `correction list` | List durable project and agent correction rules |
|
|
287
|
+
| `correction add` | Add a correction (`--scope project\|agent\|session`) |
|
|
288
|
+
| `correction apply` | Promote a correction into active rules |
|
|
289
|
+
| `correction retire` | Retire a correction with reason |
|
|
290
|
+
| `correction propose-upstream` | Flag a correction for kit promotion |
|
|
291
|
+
|
|
292
|
+
```bash
|
|
293
|
+
agent-kit correction add --scope project "Prefer operational density over hero-style marketing layout."
|
|
294
|
+
agent-kit correction apply --id project-ui-density
|
|
295
|
+
```
|
|
296
|
+
|
|
297
|
+
### Studio views
|
|
298
|
+
|
|
299
|
+
| Command | Purpose |
|
|
300
|
+
| --- | --- |
|
|
301
|
+
| `studio export` | Generate self-contained static HTML at `.agent-kit/studio/index.html` |
|
|
302
|
+
| `studio serve` | Live localhost Agent Office with SSE session events (default port `9331`) |
|
|
303
|
+
|
|
304
|
+
```bash
|
|
121
305
|
agent-kit studio export
|
|
122
|
-
agent-kit
|
|
306
|
+
agent-kit studio serve --open
|
|
307
|
+
```
|
|
308
|
+
|
|
309
|
+
### Research (maintainers)
|
|
310
|
+
|
|
311
|
+
Requires `GITHUB_TOKEN` in the environment.
|
|
312
|
+
|
|
313
|
+
```bash
|
|
314
|
+
agent-kit research discover --limit 100
|
|
315
|
+
agent-kit research scan
|
|
316
|
+
agent-kit research summarize
|
|
317
|
+
agent-kit research propose-updates
|
|
123
318
|
```
|
|
124
319
|
|
|
125
320
|
## What Gets Installed
|
|
@@ -158,35 +353,6 @@ The `.agent-kit/` folder includes:
|
|
|
158
353
|
- `design-briefs/` for SaaS, admin, marketplace, content, tool, ecommerce, portfolio/venue, education, community/social, and AI workflow surfaces.
|
|
159
354
|
- `profiles/` for product-type and adjacent-stack adaptation.
|
|
160
355
|
|
|
161
|
-
## Everyday Commands
|
|
162
|
-
|
|
163
|
-
```bash
|
|
164
|
-
agent-kit audit
|
|
165
|
-
agent-kit audit --json
|
|
166
|
-
agent-kit audit --min-readiness baseline-setup
|
|
167
|
-
agent-kit adapter validate antigravity
|
|
168
|
-
agent-kit package validate
|
|
169
|
-
agent-kit context init
|
|
170
|
-
agent-kit session start "Short task name"
|
|
171
|
-
agent-kit session output "verification evidence" --status complete --evidence "npm test"
|
|
172
|
-
agent-kit session render
|
|
173
|
-
agent-kit correction list
|
|
174
|
-
agent-kit studio export
|
|
175
|
-
agent-kit diff
|
|
176
|
-
agent-kit update
|
|
177
|
-
agent-kit add skill frontend-design-system
|
|
178
|
-
agent-kit doctor
|
|
179
|
-
```
|
|
180
|
-
|
|
181
|
-
Readiness levels from `agent-kit audit --json`:
|
|
182
|
-
|
|
183
|
-
- `needs-setup`: required install or council contracts are failing.
|
|
184
|
-
- `baseline-setup`: setup is valid, but starter evidence placeholders remain.
|
|
185
|
-
- `needs-improvement`: no failures, but warnings remain.
|
|
186
|
-
- `best-practice-candidate`: static audit found no failures or warnings.
|
|
187
|
-
|
|
188
|
-
Use `agent-kit audit --min-readiness <level>` in CI when a project wants a merge or release threshold.
|
|
189
|
-
|
|
190
356
|
## AI Mechanisms
|
|
191
357
|
|
|
192
358
|
Agent Kit separates the mechanisms that make AI coding repeatable:
|
|
@@ -194,7 +360,7 @@ Agent Kit separates the mechanisms that make AI coding repeatable:
|
|
|
194
360
|
- Instructions: `AGENTS.md`, assistant adapters, and IDE-specific rule files.
|
|
195
361
|
- Roster: `.agent-kit/agent-roster.json` chooses agents, workflows, and handoffs.
|
|
196
362
|
- Skills: `.agent-kit/skills/` keeps specialist workflows reusable.
|
|
197
|
-
- Runtime commands: Antigravity `commands/*.toml` expose `/setup`, `/audit`, `/plan`, `/handoff`, `/frontend`, focused UI improvement commands, `/security`, `/copy`, `/ship`, and `/upgrade` as native adapter entrypoints.
|
|
363
|
+
- Runtime commands: Antigravity `commands/*.toml` expose `/setup`, `/spec`, `/audit`, `/plan`, `/handoff`, `/frontend`, `/test`, `/review`, focused UI improvement commands, `/security`, `/copy`, `/ship`, and `/upgrade` as native adapter entrypoints.
|
|
198
364
|
- Portable skills: `runtime-skills/*/SKILL.md` wraps canonical `skills/*.md` files for runtimes that discover skill directories.
|
|
199
365
|
- Model routing: `MODEL_ROUTING.md` and `.agent-kit/model-routing.json` map agents to model profiles.
|
|
200
366
|
- Messaging: `MESSAGING.md` records audience, pain, outcome, proof, objections, voice, and conversion evidence for public-facing copy.
|
|
@@ -242,6 +408,7 @@ Use the upgrade flow instead of overwriting project-owned docs:
|
|
|
242
408
|
|
|
243
409
|
```bash
|
|
244
410
|
agent-kit diff
|
|
411
|
+
agent-kit update --dry-run
|
|
245
412
|
agent-kit update
|
|
246
413
|
agent-kit audit --min-readiness baseline-setup
|
|
247
414
|
```
|
|
@@ -291,7 +458,7 @@ Release expectations:
|
|
|
291
458
|
- Dependency Review, CodeQL, OpenSSF Scorecard, Dependabot, SBOM validation, and SBOM attestation.
|
|
292
459
|
- Post-publish verification with `npm run publish:verify`.
|
|
293
460
|
|
|
294
|
-
The package is published to public npm under `@appsforgood/next-supabase-kit`. Every release must pass `npm run release:check` before publish and `npm run publish:verify` after (registry visibility, clean `npx` doctor/init/audit). Post-publish verification
|
|
461
|
+
The package is published to public npm under `@appsforgood/next-supabase-kit@0.1.7`. Every release must pass `npm run release:check` before publish and `npm run publish:verify` after (registry visibility, clean `npx` doctor/init/audit). Post-publish verification last passed **2026-07-04** against the live registry: `@0.1.7` doctor, clean init, and `audit --min-readiness baseline-setup` with zero failures.
|
|
295
462
|
|
|
296
463
|
## Repository Health
|
|
297
464
|
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
name = "review"
|
|
2
|
+
description = "Run pre-merge code health review with QA and conditional Security Reviewer routing."
|
|
3
|
+
|
|
4
|
+
prompt = """
|
|
5
|
+
Run the code-review workflow.
|
|
6
|
+
|
|
7
|
+
Canonical sources: TESTING.md, SECURITY.md, QUALITY_GATES.md, AGENTS.md, .agent-kit/agent-roster.json, .agent-kit/skills/testing-qa.md, .agent-kit/skills/owasp-security-review.md, and .agent-kit/prompts/lifecycle-command-index.md.
|
|
8
|
+
|
|
9
|
+
Workflow:
|
|
10
|
+
1. Route through QA Engineer for behavior, regression, and test evidence.
|
|
11
|
+
2. Include Security Reviewer when auth, RLS, data mutation, dependency, secret, or external-call boundaries changed.
|
|
12
|
+
3. Return findings by severity with concrete remediation.
|
|
13
|
+
4. Distinguish this from release GO/NO-GO, which belongs to `/ship`.
|
|
14
|
+
|
|
15
|
+
Required outputs: reviewed scope, findings by severity, required fixes, security notes when applicable, merge recommendation.
|
|
16
|
+
"""
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
name = "spec"
|
|
2
|
+
description = "Define or update SPEC.md with acceptance criteria before implementation."
|
|
3
|
+
|
|
4
|
+
prompt = """
|
|
5
|
+
Run the spec workflow.
|
|
6
|
+
|
|
7
|
+
Canonical sources: SPEC.md, AGENTS.md, AGENT_ROSTER.md, .agent-kit/agent-roster.json, .agent-kit/project-context.md, .agent-kit/corrections/project-rules.json, QUALITY_GATES.md, and .agent-kit/prompts/lifecycle-command-index.md.
|
|
8
|
+
|
|
9
|
+
Workflow:
|
|
10
|
+
1. Route through Planner and Documentation Maintainer.
|
|
11
|
+
2. Read project context and active correction rules before drafting or updating the spec.
|
|
12
|
+
3. Capture goal, user/workflow, acceptance criteria, preserved behavior, non-goals, and docs impact.
|
|
13
|
+
4. Map affected layers: data, business logic, presentation, auth, deployment, and tests.
|
|
14
|
+
5. Record decision, risk, and next handoff with `agent-kit session ...` when a session is active.
|
|
15
|
+
|
|
16
|
+
Required outputs: spec delta or draft, acceptance criteria, preserved capabilities, non-goals, verification plan, next handoff.
|
|
17
|
+
"""
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
name = "test"
|
|
2
|
+
description = "Add or run tests and produce acceptance evidence per TESTING.md and QUALITY_GATES.md."
|
|
3
|
+
|
|
4
|
+
prompt = """
|
|
5
|
+
Run the test workflow.
|
|
6
|
+
|
|
7
|
+
Canonical sources: TESTING.md, QUALITY_GATES.md, AGENTS.md, .agent-kit/agent-roster.json, .agent-kit/skills/testing-qa.md, and .agent-kit/prompts/lifecycle-command-index.md.
|
|
8
|
+
|
|
9
|
+
Workflow:
|
|
10
|
+
1. Route through QA Engineer.
|
|
11
|
+
2. Name unit, regression, smoke, and visual QA gaps for the change scope.
|
|
12
|
+
3. Prioritize auth and data mutation paths.
|
|
13
|
+
4. Run project test commands and capture results.
|
|
14
|
+
5. Record verification with `agent-kit session verify` when a session is active.
|
|
15
|
+
|
|
16
|
+
Required outputs: test plan, commands run, pass/fail summary, coverage gaps, skipped-test rationale.
|
|
17
|
+
"""
|
package/antigravity/plugin.json
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
"schemaVersion": 1,
|
|
3
3
|
"name": "agent-kit-next-supabase",
|
|
4
4
|
"displayName": "Agent Kit Next/Supabase",
|
|
5
|
-
"version": "0.1.
|
|
5
|
+
"version": "0.1.7",
|
|
6
6
|
"description": "Runtime commands and portable skills for the Agent Kit Next/Supabase council workflow.",
|
|
7
7
|
"homepage": "https://github.com/lukey662/agentsandskills",
|
|
8
8
|
"sourceOfTruth": [
|
|
@@ -17,6 +17,7 @@
|
|
|
17
17
|
],
|
|
18
18
|
"commands": [
|
|
19
19
|
{ "name": "setup", "path": "commands/setup.toml" },
|
|
20
|
+
{ "name": "spec", "path": "commands/spec.toml" },
|
|
20
21
|
{ "name": "audit", "path": "commands/audit.toml" },
|
|
21
22
|
{ "name": "plan", "path": "commands/plan.toml" },
|
|
22
23
|
{ "name": "handoff", "path": "commands/handoff.toml" },
|
|
@@ -29,6 +30,8 @@
|
|
|
29
30
|
{ "name": "distinctiveness-pass", "path": "commands/distinctiveness-pass.toml" },
|
|
30
31
|
{ "name": "screenshot-critique", "path": "commands/screenshot-critique.toml" },
|
|
31
32
|
{ "name": "browser-qa", "path": "commands/browser-qa.toml" },
|
|
33
|
+
{ "name": "test", "path": "commands/test.toml" },
|
|
34
|
+
{ "name": "review", "path": "commands/review.toml" },
|
|
32
35
|
{ "name": "security", "path": "commands/security.toml" },
|
|
33
36
|
{ "name": "copy", "path": "commands/copy.toml" },
|
|
34
37
|
{ "name": "ship", "path": "commands/ship.toml" },
|
|
@@ -40,15 +40,22 @@ If the `agy` CLI is available, teams may additionally run its native plugin vali
|
|
|
40
40
|
Commands expose short runtime entrypoints:
|
|
41
41
|
|
|
42
42
|
- `/setup`
|
|
43
|
+
- `/spec`
|
|
43
44
|
- `/audit`
|
|
44
45
|
- `/plan`
|
|
45
46
|
- `/handoff`
|
|
46
47
|
- `/frontend`
|
|
48
|
+
- `/test`
|
|
49
|
+
- `/review`
|
|
47
50
|
- `/security`
|
|
48
51
|
- `/copy`
|
|
49
52
|
- `/ship`
|
|
50
53
|
- `/upgrade`
|
|
51
54
|
|
|
55
|
+
UI harness commands (`/ui-audit`, `/ui-polish`, `/layout-cleanup`, `/responsive-cleanup`, `/accessibility-pass`, `/distinctiveness-pass`, `/screenshot-critique`, `/browser-qa`) are documented in `.agent-kit/prompts/ui-command-index.md`.
|
|
56
|
+
|
|
57
|
+
Delivery lifecycle commands are documented in `.agent-kit/prompts/lifecycle-command-index.md`.
|
|
58
|
+
|
|
52
59
|
Each command must load project context and correction rules when present, select the appropriate roster workflow, record required outputs with `agent-kit session output`, and render sessions when evidence changes.
|
|
53
60
|
|
|
54
61
|
## Security
|
package/dist/index.js
CHANGED
|
@@ -150,7 +150,7 @@ import { join as join12, normalize } from "path";
|
|
|
150
150
|
|
|
151
151
|
// src/config/defaults.ts
|
|
152
152
|
var PACKAGE_NAME = "@appsforgood/next-supabase-kit";
|
|
153
|
-
var PACKAGE_VERSION = "0.1.
|
|
153
|
+
var PACKAGE_VERSION = "0.1.7";
|
|
154
154
|
var DEFAULT_CONFIG = {
|
|
155
155
|
stack: "next-supabase",
|
|
156
156
|
projectType: "saas",
|
|
@@ -3070,6 +3070,7 @@ function createAuditReport(cwd) {
|
|
|
3070
3070
|
// src/install/adapter-validate.ts
|
|
3071
3071
|
var REQUIRED_COMMANDS = [
|
|
3072
3072
|
"setup",
|
|
3073
|
+
"spec",
|
|
3073
3074
|
"audit",
|
|
3074
3075
|
"plan",
|
|
3075
3076
|
"handoff",
|
|
@@ -3082,6 +3083,8 @@ var REQUIRED_COMMANDS = [
|
|
|
3082
3083
|
"distinctiveness-pass",
|
|
3083
3084
|
"screenshot-critique",
|
|
3084
3085
|
"browser-qa",
|
|
3086
|
+
"test",
|
|
3087
|
+
"review",
|
|
3085
3088
|
"security",
|
|
3086
3089
|
"copy",
|
|
3087
3090
|
"ship",
|