npm - @champpaba/claude-agent-kit - Versions diffs - 2.1.2 → 2.1.3 - Mend

@champpaba/claude-agent-kit 2.1.2 → 2.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/.claude/agents/_shared/pre-work-checklist.md +21 -5
package/.claude/commands/cdev.md +27 -13
package/package.json +1 -1

package/.claude/agents/_shared/pre-work-checklist.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # Pre-Work Checklist (Shared by All Agents)
-> **Version:** 2.1.2 (Instruction-based Library Detection)
+> **Version:** 2.1.3 (Design Spec Injection)
 > **Purpose:** Single source of truth for pre-work validation
 ---
@@ -29,14 +29,22 @@ Complete these steps before implementation to ensure alignment with project stan
    - WHY: The team chose these libraries for specific reasons (compatibility, features, constraints)
    - Custom implementations waste effort and may miss edge cases the library handles
+5. **Implement according to Design Spec (not library defaults)**
+   - If design.md specifies configurations → Use those values (not library defaults)
+   - If design.md specifies custom endpoints → Implement those endpoints
+   - WHY: Design decisions were made for specific project requirements
 **Example:**
 ```
 tasks.md says: "Install better-auth and dependencies"
-→ Use better-auth library
-→ Follow better-auth documentation patterns
+design.md says: "JWT 15min + Redis refresh token 30d"
+→ Use better-auth library (from tasks.md)
+→ Configure JWT with 15min expiry (from design.md)
+→ Configure Redis refresh with 30d (from design.md)
+→ Implement /api/auth/refresh endpoint (from design.md)
-WHY not custom? better-auth handles OAuth flows, session management,
-and security edge cases that custom code would need to re-implement.
+WHY not defaults? Design spec has project-specific security requirements.
 ```
 ---
@@ -62,6 +70,13 @@ Library Requirements: (Step 0)
 - [ ] Scanned design.md for design decisions
 - Required libraries: {list from tasks.md/design.md}
+Design Spec Implementation: (Step 5)
+- [ ] Read design.md specifications
+- [ ] Identified custom configurations (not library defaults)
+- Design requirements:
+  - {requirement 1 from design.md}
+  - {requirement 2 from design.md}
 Project Context:
 - Project: {name}
 - Stack: {tech-stack}
@@ -90,6 +105,7 @@ Ready to Implement:
 Pre-work validation prevents:
 - **Wrong library choices** - Using custom code when a library was already chosen by the team
+- **Library defaults instead of spec** - Using default configs when design.md specifies custom values
 - Misaligned implementations (wrong patterns, wrong style)
 - Duplicate components (not searching existing code first)
 - Wrong package manager usage (CI/CD breaks)

package/.claude/commands/cdev.md CHANGED Viewed

@@ -105,6 +105,9 @@ ${changeContext.proposal}
 ## Tasks
 ${changeContext.tasks}
+## Design Decisions (from design.md)
+${changeContext.design || '(no design.md found)'}
 ${phase.instructions}
 ---
@@ -118,32 +121,43 @@ ${phase.instructions}
    - "Configure X with Y adapter" → Use X with adapter Y
    - Backtick packages like \`better-auth\` → Required dependency
-2. **Review design.md** (in change context) for:
+2. **Review "Design Decisions" section above** for:
    - "### D1: Use X Library" → Decision to use X
    - "**Decision:** Use X" → Chosen library
-   - Alternatives table shows why this library was chosen
+   - Specific configurations (e.g., "JWT 15min", "Redis refresh token 30d")
+   - Architecture decisions (e.g., "Hybrid Session Strategy")
 3. **Use the specified libraries**
    - WHY: The team chose these for compatibility, features, or constraints
    - Custom implementations duplicate effort and miss edge cases the library handles
-   - Follow library documentation patterns for consistency
+4. **Implement according to Design Spec (not library defaults)**
+   - If design.md specifies "JWT 15min + Redis refresh 30d" → Configure library with these values
+   - If design.md specifies custom endpoints → Implement those endpoints
+   - Library defaults are starting points, not final implementation
+   - WHY: Design decisions were made for specific project requirements
 **Example:**
 \`\`\`
-tasks.md: "Install better-auth and dependencies"
-→ Use better-auth library
-→ Follow better-auth docs for setup
+design.md says:
+  "Hybrid Session Strategy: JWT 15min + Redis refresh 30d"
+→ Use better-auth library (from tasks.md)
+→ Configure JWT plugin with 15min expiry
+→ Configure refresh token with 30d in Redis
+→ Implement /api/auth/refresh endpoint
-WHY not custom? better-auth handles OAuth, sessions, security
-edge cases that custom code would need to re-implement.
+WHY not defaults? Design spec has project-specific security requirements
+that differ from library defaults.
 \`\`\`
-**Report required libraries in your validation:**
+**Report in validation:**
 \`\`\`
-Required Libraries Found:
-- better-auth (tasks.md line 6)
-- @better-auth/drizzle (tasks.md line 6)
-- ioredis (design.md D2)
+Libraries: better-auth, @better-auth/drizzle, ioredis
+Design Spec Implementation:
+- [x] JWT access token: 15min (design.md D1)
+- [x] Redis refresh token: 30d (design.md D2)
+- [x] /api/auth/refresh endpoint (design.md D3)
 \`\`\`
 ---

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@champpaba/claude-agent-kit",
-  "version": "2.1.2",
+  "version": "2.1.3",
   "description": "Universal multi-agent template for Claude Code - AI-assisted development with specialized agents",
   "main": "bin/cli.js",
   "bin": {