@drafthq/draft 2.7.0

package/core/templates/root-architecture.md

@@ -0,0 +1,127 @@
+---
+project: "{PROJECT_NAME}"
+module: "root"
+generated_by: "draft:index"
+generated_at: "{ISO_TIMESTAMP}"
+---
+
+# Architecture: [Org/Product Name]
+
+| Field | Value |
+|-------|-------|
+| **Branch** | `{LOCAL_BRANCH}` → `{REMOTE/BRANCH}` |
+| **Commit** | `{SHORT_SHA}` — {COMMIT_MESSAGE} |
+| **Generated** | {ISO_TIMESTAMP} |
+| **Synced To** | `{FULL_SHA}` |
+
+> Synthesized from [X] service contexts.
+> This is a **system-of-systems** view. For service internals, see individual service contexts.
+> Re-running `/draft:index` will update auto-generated sections but preserve manual edits.
+
+---
+
+## System Overview
+
+**Key Takeaway:** [One paragraph synthesizing overall system purpose from service summaries — what this platform does, who it serves, and its primary value proposition]
+
+### System Topology
+
+```mermaid
+graph TD
+    subgraph "External"
+        Users[Users/Clients]
+        ThirdParty[Third-Party Services]
+    end
+
+    subgraph "Edge Layer"
+        Gateway[API Gateway]
+    end
+
+    subgraph "Core Services"
+        ServiceA[Service A]
+        ServiceB[Service B]
+    end
+
+    subgraph "Data Layer"
+        DB[(Database)]
+        Cache[(Cache)]
+    end
+
+    Users --> Gateway
+    Gateway --> ServiceA
+    Gateway --> ServiceB
+    ServiceA --> DB
+    ServiceB --> Cache
+```
+
+> Diagram auto-generated from service dependencies. Edit to add context.
+
+## Service Directory
+
+| Service | Responsibility | Tech | Status | Details |
+|---------|---------------|------|--------|---------|
+| [service-name] | [One-line responsibility] | [Primary tech] | ✓ Active | [→ architecture](../services/[name]/draft/.ai-context.md) |
+
+> **Status:** ✓ Active = initialized and maintained, ○ Legacy = initialized but deprecated, ? = not initialized
+
+## Shared Infrastructure
+
+<!-- Extracted from common external dependencies across services -->
+
+| Component | Purpose | Used By |
+|-----------|---------|---------|
+| [PostgreSQL] | [Primary datastore] | [service-a, service-b] |
+| [Redis] | [Caching, sessions] | [service-a, service-c] |
+| [RabbitMQ] | [Async messaging] | [service-b, service-d] |
+
+## Cross-Service Patterns
+
+<!-- Extracted from common conventions across service .ai-context.md (or architecture.md) files -->
+
+| Pattern | Description | Services |
+|---------|-------------|----------|
+| [JWT Auth] | [All services validate JWT via auth-service] | [all] |
+| [Event-Driven] | [Async events via message queue] | [notifications, reports] |
+
+## Data Flows
+
+### [Primary Flow Name]
+
+```mermaid
+sequenceDiagram
+    participant Client
+    participant Gateway
+    participant ServiceA
+    participant ServiceB
+    participant DB
+
+    Client->>Gateway: Request
+    Gateway->>ServiceA: Route
+    ServiceA->>ServiceB: Internal call
+    ServiceB->>DB: Query
+    DB-->>ServiceB: Result
+    ServiceB-->>ServiceA: Response
+    ServiceA-->>Gateway: Response
+    Gateway-->>Client: Response
+```
+
+> Add primary cross-service data flows here.
+
+<!-- MANUAL START -->
+## Architectural Decisions
+
+[Document key architectural decisions, trade-offs, and rationale here — preserved on re-index]
+
+### ADR-001: [Decision Title]
+
+**Context:** [Why this decision was needed]
+**Decision:** [What was decided]
+**Consequences:** [Impact of the decision]
+
+<!-- MANUAL END -->
+
+## Notes
+
+- For detailed service architecture, navigate to individual service contexts via the Details column
+- This file is regenerable via `/draft:index`
+- Manual edits between `<!-- MANUAL START -->` and `<!-- MANUAL END -->` are preserved

package/core/templates/root-product.md

@@ -0,0 +1,53 @@
+---
+project: "{PROJECT_NAME}"
+module: "root"
+generated_by: "draft:index"
+generated_at: "{ISO_TIMESTAMP}"
+---
+
+# Product: [Org/Product Name]
+
+| Field | Value |
+|-------|-------|
+| **Branch** | `{LOCAL_BRANCH}` → `{REMOTE/BRANCH}` |
+| **Commit** | `{SHORT_SHA}` — {COMMIT_MESSAGE} |
+| **Generated** | {ISO_TIMESTAMP} |
+| **Synced To** | `{FULL_SHA}` |
+
+> Synthesized from [X] service contexts.
+> Edit this file to refine the overall product vision.
+> Re-running `/draft:index` will update auto-generated sections but preserve manual edits.
+
+---
+
+## Vision
+
+[Synthesized from common themes across service visions — describe what the overall product/platform does and why it matters]
+
+## Target Users
+
+<!-- Aggregated and deduplicated from all service product.md files -->
+
+- **[User Type 1]**: [Their needs across the platform]
+- **[User Type 2]**: [Their needs across the platform]
+
+## Service Capabilities
+
+| Capability | Provided By | Description |
+|------------|-------------|-------------|
+| [Capability] | [service-name] | [Brief description] |
+
+## Cross-Cutting Concerns
+
+<!-- Extracted from common patterns across services -->
+
+- **Authentication**: [How auth works across services]
+- **Observability**: [Common logging/tracing approach]
+- **Data Privacy**: [Compliance patterns]
+
+<!-- MANUAL START -->
+## Strategic Context
+
+[Add manual strategic context, roadmap notes, or business priorities here — preserved on re-index]
+
+<!-- MANUAL END -->

package/core/templates/root-tech-stack.md

@@ -0,0 +1,117 @@
+---
+project: "{PROJECT_NAME}"
+module: "root"
+generated_by: "draft:index"
+generated_at: "{ISO_TIMESTAMP}"
+---
+
+# Tech Stack: [Org/Product Name]
+
+| Field | Value |
+|-------|-------|
+| **Branch** | `{LOCAL_BRANCH}` → `{REMOTE/BRANCH}` |
+| **Commit** | `{SHORT_SHA}` — {COMMIT_MESSAGE} |
+| **Generated** | {ISO_TIMESTAMP} |
+| **Synced To** | `{FULL_SHA}` |
+
+> Synthesized from [X] service contexts.
+> This defines **org-wide standards**. Service-specific additions are in their local tech-stack.md.
+> Re-running `/draft:index` will update auto-generated sections but preserve manual edits.
+
+---
+
+## Org Standards
+
+### Languages
+
+- **Primary**: [Most common language] — [X]% of services
+- **Secondary**: [Second most common] — [Y]% of services
+- **Specialized**: [Other languages] — approved for specific use cases
+
+### Frameworks
+
+| Purpose | Standard | Alternatives |
+|---------|----------|--------------|
+| HTTP API | [Framework] | [Approved alternatives] |
+| Background Jobs | [Framework] | - |
+| Testing | [Framework] | - |
+
+### Data Storage
+
+| Type | Standard | When to Use |
+|------|----------|-------------|
+| OLTP | PostgreSQL | Default for relational data |
+| Document | MongoDB | Approved for specific use cases |
+| Cache | Redis | Session, cache, rate limiting |
+| Search | Elasticsearch | Full-text search requirements |
+
+### Messaging
+
+| Pattern | Standard |
+|---------|----------|
+| Async Events | RabbitMQ |
+| Event Streaming | Kafka (approved for high-volume) |
+
+### Infrastructure
+
+| Component | Standard |
+|-----------|----------|
+| Container | Docker |
+| Orchestration | Kubernetes |
+| CI/CD | GitHub Actions |
+| Registry | [Container registry] |
+| Secrets | [Secrets manager] |
+
+## Approved Variances
+
+Services may deviate from standards with documented justification:
+
+| Service | Variance | Standard | Justification |
+|---------|----------|----------|---------------|
+| [ml-service] | Python | Go/TypeScript | ML ecosystem requirements |
+| [analytics] | MongoDB | PostgreSQL | Time-series workload |
+
+> Add new variances via PR to this file. Variances without justification will be flagged.
+
+## Shared Libraries
+
+Internal libraries all services should use:
+
+| Library | Purpose | Current Version |
+|---------|---------|-----------------|
+| @org/auth-client | Auth service integration | 2.x |
+| @org/logging | Structured logging | 1.x |
+| @org/errors | Error handling patterns | 1.x |
+| @org/config | Configuration management | 1.x |
+
+## Code Patterns
+
+Org-wide conventions:
+
+| Pattern | Standard | Reference |
+|---------|----------|-----------|
+| Error Handling | [Custom error classes with codes] | @org/errors |
+| Logging | [Structured JSON, correlation IDs] | @org/logging |
+| API Versioning | [URL path: /v1/, /v2/] | API guidelines |
+| Authentication | [JWT validation via auth-service] | Auth spec |
+
+<!-- MANUAL START -->
+## Technology Decisions
+
+[Document org-wide technology decisions and rationale here — preserved on re-index]
+
+### TDR-001: [Decision Title]
+
+**Context:** [Why this decision was needed]
+**Decision:** [What was decided]
+**Services Affected:** [Which services]
+
+<!-- MANUAL END -->
+
+## Compliance
+
+| Requirement | Standard | Enforcement |
+|-------------|----------|-------------|
+| Secrets | Never in code, use secrets manager | CI scan |
+| Dependencies | Weekly vulnerability scan | Dependabot |
+| Containers | Base images from approved list | CI policy |

package/core/templates/service-index.md

@@ -0,0 +1,55 @@
+---
+project: "{PROJECT_NAME}"
+module: "root"
+generated_by: "draft:index"
+generated_at: "{ISO_TIMESTAMP}"
+---
+
+# Service Index
+
+| Field | Value |
+|-------|-------|
+| **Branch** | `{LOCAL_BRANCH}` → `{REMOTE/BRANCH}` |
+| **Commit** | `{SHORT_SHA}` — {COMMIT_MESSAGE} |
+| **Generated** | {ISO_TIMESTAMP} |
+| **Synced To** | `{FULL_SHA}` |
+
+> Auto-generated. Do not edit directly.
+> Re-run `/draft:index` to update.
+
+---
+
+## Overview
+
+| Metric | Count |
+|--------|-------|
+| Total Services Detected | [X] |
+| Initialized | [Y] |
+| Uninitialized | [Z] |
+
+## Service Registry
+
+| Service | Status | Tech Stack | Dependencies | Team | Details |
+|---------|--------|------------|--------------|------|---------|
+| [service-name] | ✓ | [lang, db] | [deps] | [@team] | [→ architecture](../services/[name]/draft/.ai-context.md) |
+| [service-name] | ○ | - | - | - | Not initialized |
+
+> **Status Legend:** ✓ = initialized, ○ = not initialized
+
+## Uninitialized Services
+
+The following services have not been initialized with `/draft:init`:
+
+- `[path/to/service]/`
+
+Run `/draft:index --init-missing` or initialize individually with:
+```bash
+cd [path/to/service] && /draft:init
+```
+
+<!-- MANUAL START -->
+## Notes
+
+[Add any manual notes about services here - this section is preserved on re-index]
+
+<!-- MANUAL END -->

package/core/templates/session-summary.md

@@ -0,0 +1,8 @@
+---
+name: session-summary
+description: Foundations stub — will be expanded with export / summary logic
+---
+
+# session-summary (Draft Foundations)
+
+Portable stub. Content generalized from proven internal patterns.

package/core/templates/spec.md

@@ -0,0 +1,165 @@
+---
+project: "{PROJECT_NAME}"
+module: "root"
+track_id: "{TRACK_ID}"
+generated_by: "draft:new-track"
+generated_at: "{ISO_TIMESTAMP}"
+# Stable frontmatter only (WS-8). All ephemeral fields — git pinning, status,
+# classification, scope_includes/excludes, synced_to_commit — live in
+# metadata.json and surface via <!-- META:<key> --> directives below.
+
+# Classification — mirrors metadata.json:classification (WS-8).
+classification:
+  criticality: "" # tier1 | tier2 | tier3
+  data_classification: "" # public | internal | confidential | restricted
+  deployment_surface: "" # cloud | on-prem | mobile | desktop | hybrid
+
+# Approvers — pre-fill into hld.md / lld.md Approvals tables on `/draft:decompose`.
+# Manual entry today; will be auto-populated by the organizational MCP server when available.
+# Use comma-separated names or @-handles. Leave empty strings until MCP integration ships.
+approvers:
+  tech_leads: "" # HLD: Technical Leads
+  arb_leads: "" # HLD: Architecture Review Board Leads
+  cloudops_leads: "" # HLD: Cloud Operations (SaaS-deployed services)
+  qa_leads: "" # HLD: Quality Assurance (on-prem services)
+  pm_leads: "" # HLD: Product Management Leads
+  team_leads: "" # LLD: Team Leads
+  qa: "" # LLD: Quality Assurance
+---
+
+# Specification: [Title]
+
+| Field | Value |
+|-------|-------|
+| **Branch** | <!-- META:git.branch --> → <!-- META:git.remote --> |
+| **Commit** | <!-- META:git.commit_short --> — <!-- META:git.commit_message --> |
+| **Generated** | {ISO_TIMESTAMP} |
+| **Synced To** | <!-- META:synced_to_commit --> |
+| **Classification** | <!-- META:classification.criticality --> / <!-- META:classification.data_classification --> / <!-- META:classification.deployment_surface --> |
+
+**Track ID:** {TRACK_ID}
+**Status:** <!-- META:status --> <!-- REQUIRED -->
+
+> This is a working draft. Content will evolve through conversation. Status
+> is rendered from `metadata.json:status`; never edit it inline.
+
+## Context References
+- **Product:** `draft/product.md` — [pending]
+- **Tech Stack:** `draft/tech-stack.md` — [pending]
+- **Architecture:** `draft/.ai-context.md` — [pending]
+- **Discovery (Phase 0 spike):** `./discovery.md` — code-spike output (file-level
+  hotspots, mode-selection flags, open questions). Generated by `draft:discover`.
+
+> **Citations.** Use `path/to/file.ext:LINE` (or `LINE-RANGE`) for code references.
+> `scripts/tools/verify-citations.sh` resolves these against `synced_to_commit`.
+> Prefer the source-side anchor `// DRAFT-CITE: <id>` over raw line numbers when
+> the call site is likely to move during refactors — verifiers prefer the anchor.
+> Wrap illustrative-only citations in `<!-- VERIFIER:IGNORE START -->` /
+> `<!-- VERIFIER:IGNORE END -->` so they don't fail the verifier.
+
+## Problem Statement
+[To be developed through intake conversation]
+
+## Background & Why Now
+[To be developed through intake conversation]
+
+## Requirements
+### Functional
+[To be developed through intake conversation]
+
+### Non-Functional
+[To be developed through intake conversation]
+
+## Acceptance Criteria
+
+> **Required columns (WS-7):** each AC carries a `test_id` linking it to a
+> concrete test case so reviewers can audit coverage at a glance.
+
+| AC | Description | test_id | <!-- REQUIRED -->
+|----|-------------|---------|
+| AC-1 | _TBD_ac_1_description_ | _TBD_ac_1_test_id_ |
+| AC-2 | _TBD_ac_2_description_ | _TBD_ac_2_test_id_ |
+
+## Non-Goals
+[To be developed through intake conversation]
+
+## Technical Approach
+[To be developed through intake conversation]
+
+## Eligibility / Cap Policy <!-- OPTIONAL -->
+
+> Only populate when the track introduces eligibility gates or caps. Every
+> cap value carries `derived_from` tying the number to a source (flag,
+> threshold, vendor limit, benchmark). Pure invention is rejected by review.
+
+| Gate | v1 default | derived_from | Rationale | <!-- REQUIRED if section present -->
+|------|------------|--------------|-----------|
+| _TBD_gate_1_ | _TBD_gate_1_default_ | _TBD_gate_1_derived_from_ | _TBD_gate_1_rationale_ |
+
+## Success Metrics
+<!-- Remove metrics that don't apply -->
+
+| Category | Metric | Target | Measurement |
+|----------|--------|--------|-------------|
+| Performance | [e.g., API response time] | [e.g., <200ms p95] | [e.g., APM dashboard] |
+| Quality | [e.g., Test coverage] | [e.g., >90%] | [e.g., CI coverage report] |
+| Business | [e.g., User adoption rate] | [e.g., 50% in 30 days] | [e.g., Analytics] |
+| UX | [e.g., Task completion rate] | [e.g., >95%] | [e.g., User testing] |
+
+## Stakeholders & Approvals
+<!-- Add roles relevant to your organization -->
+
+| Role | Name | Approval Required | Status | <!-- REQUIRED -->
+|------|------|-------------------|--------|
+| Product Owner | _TBD_approver_product_owner_ | Spec sign-off | [ ] |
+| Tech Lead | _TBD_approver_tech_lead_ | Architecture review | [ ] |
+| Security | _TBD_approver_security_ | Security review (if applicable) | [ ] |
+| QA | _TBD_approver_qa_ | Test plan review | [ ] |
+
+### Approval Gates
+- [ ] Spec approved by Product Owner
+- [ ] Architecture reviewed by Tech Lead
+- [ ] Security review completed (if touching auth, data, or external APIs)
+- [ ] Test plan reviewed by QA
+
+## Risk Assessment
+<!-- Score: Probability (1-5) x Impact (1-5). Risks scoring >=9 require mitigation plans. -->
+
+> **Required columns (WS-7):** `mitigation_test_id` links each risk to the
+> test row that demonstrates the mitigation works.
+
+| Risk | Probability | Impact | Score | Mitigation | mitigation_test_id | <!-- REQUIRED -->
+|------|-------------|--------|-------|------------|--------------------|
+| _TBD_risk_1_ | _TBD_risk_1_prob_ | _TBD_risk_1_impact_ | _TBD_risk_1_score_ | _TBD_risk_1_mitigation_ | _TBD_risk_1_test_id_ |
+| _TBD_risk_2_ | _TBD_risk_2_prob_ | _TBD_risk_2_impact_ | _TBD_risk_2_score_ | _TBD_risk_2_mitigation_ | _TBD_risk_2_test_id_ |
+
+## Deployment Strategy
+<!-- Define rollout approach for production delivery -->
+
+### Rollout Phases
+1. **Canary** (1-5% traffic) — Validate core flows, monitor error rates
+2. **Limited GA** (25%) — Expand to subset, watch performance metrics
+3. **Full GA** (100%) — Complete rollout
+
+### Feature Flags
+- Flag name: `[feature_flag_name]`
+- Default: `off`
+- Kill switch: [yes/no]
+
+### Rollback Plan
+- Trigger: [e.g., error rate >1%, latency >500ms p95]
+- Process: [e.g., disable feature flag, revert deployment]
+- Data rollback: [e.g., migration revert script, N/A]
+
+### Monitoring
+- Dashboard: [link or name]
+- Alerts: [e.g., PagerDuty rule for error rate spike]
+- Key metrics: [e.g., error rate, latency, throughput]
+
+## Open Questions
+[Tracked during conversation]
+
+## Conversation Log
+> Key decisions and reasoning captured during intake.
+
+[Conversation summary will be added here]

package/core/templates/tech-matrix.md

@@ -0,0 +1,101 @@
+---
+project: "{PROJECT_NAME}"
+module: "root"
+generated_by: "draft:index"
+generated_at: "{ISO_TIMESTAMP}"
+---
+
+# Technology Matrix
+
+| Field | Value |
+|-------|-------|
+| **Branch** | `{LOCAL_BRANCH}` → `{REMOTE/BRANCH}` |
+| **Commit** | `{SHORT_SHA}` — {COMMIT_MESSAGE} |
+| **Generated** | {ISO_TIMESTAMP} |
+| **Synced To** | `{FULL_SHA}` |
+
+> Auto-generated. Do not edit directly.
+> Re-run `/draft:index` to update.
+
+---
+
+## Org Standards
+
+Technologies used by majority of services (>50%):
+
+| Technology | Category | Usage | Services |
+|------------|----------|-------|----------|
+| [PostgreSQL] | Database | [X]% | [list] |
+| [Redis] | Caching | [X]% | [list] |
+| [Docker] | Container | [X]% | [list] |
+| [GitHub Actions] | CI/CD | [X]% | [list] |
+
+## Technology Distribution
+
+### Languages
+
+| Language | Services | Percentage | Notes |
+|----------|----------|------------|-------|
+| [Go] | [auth, users, gateway] | [45%] | Preferred for performance-critical |
+| [TypeScript] | [billing, notifications] | [40%] | Preferred for rapid development |
+| [Python] | [ml-service, analytics] | [15%] | ML/data workloads only |
+
+### Databases
+
+| Database | Services | Use Case |
+|----------|----------|----------|
+| PostgreSQL | [auth, billing, users] | Primary OLTP |
+| MongoDB | [notifications, analytics] | Document store |
+| Redis | [auth, gateway] | Cache, sessions |
+
+### Frameworks
+
+| Framework | Language | Services |
+|-----------|----------|----------|
+| [Gin] | Go | auth, users, gateway |
+| [Express] | TypeScript | billing |
+| [FastAPI] | Python | ml-service |
+
+### Message Queues
+
+| Queue | Services | Pattern |
+|-------|----------|---------|
+| [RabbitMQ] | notifications, reports | Pub/sub |
+| [Kafka] | analytics | Event streaming |
+
+## Variance Report
+
+Services deviating from org standards:
+
+| Service | Deviation | Standard | Justification |
+|---------|-----------|----------|---------------|
+| [ml-service] | Python | Go/TypeScript | ML ecosystem requirements |
+| [analytics] | MongoDB | PostgreSQL | Time-series workload |
+| [legacy-reports] | Java | Go/TypeScript | Legacy, migration planned |
+
+## Shared Libraries
+
+Internal libraries used across services:
+
+| Library | Purpose | Version | Used By | Repo |
+|---------|---------|---------|---------|------|
+| [@org/auth-client] | Auth service client | 2.x | billing, gateway, notifications | [link] |
+| [@org/logging] | Structured logging | 1.x | all services | [link] |
+| [@org/errors] | Error handling | 1.x | auth, billing, users | [link] |
+
+## Version Matrix
+
+Current versions in production:
+
+| Service | Language Version | Framework Version | Last Updated |
+|---------|-----------------|-------------------|--------------|
+| auth-service | Go 1.21 | Gin 1.9 | [date] |
+| billing-service | Node 20 | Express 4.18 | [date] |
+| user-service | Go 1.21 | Gin 1.9 | [date] |
+
+<!-- MANUAL START -->
+## Technology Roadmap
+
+[Add planned technology changes, deprecations, or migrations here — preserved on re-index]
+
+<!-- MANUAL END -->