@hongmaple0820/scale-engine 0.14.0 → 0.15.1

package/dist/workflow/GovernanceTemplates.js

@@ -3,6 +3,8 @@ import { join } from 'node:path';
 import { skillRoutingPolicyTemplate } from '../skills/routing/SkillPolicy.js';
 import { readGovernanceLock, writeGovernanceLock } from './GovernanceLock.js';
 import { resolveGovernanceTemplatePack, } from './GovernanceTemplatePacks.js';
+import { engineeringStandardsPolicyTemplate, frameworksCatalogTemplate } from './EngineeringStandards.js';
+import { resourceManifestTemplate, resourcePolicyTemplate } from './ResourceGovernance.js';
 export function writeGovernanceTemplates(projectDir = process.cwd(), options = {}) {
     const mode = options.mode ?? 'standard';
     const projectName = options.projectName ?? 'Project';
@@ -24,6 +26,9 @@ export function writeGovernanceTemplates(projectDir = process.cwd(), options = {
     writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/visual-review.md', governanceTemplateContent('visual-review.md'));
     writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/api-contract.md', governanceTemplateContent('api-contract.md'));
     writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/docs-impact.md', governanceTemplateContent('docs-impact.md'));
+    writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/resource-impact.md', governanceTemplateContent('resource-impact.md'));
+    writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/standards-impact.md', governanceTemplateContent('standards-impact.md'));
+    writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/architecture-review.md', governanceTemplateContent('architecture-review.md'));
     writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/security-review.md', governanceTemplateContent('security-review.md'));
     writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/db-change-plan.md', governanceTemplateContent('db-change-plan.md'));
     writeTracked(result, lockFiles, projectDir, 'docs/workflow/templates/e2e-plan.md', governanceTemplateContent('e2e-plan.md'));
@@ -40,6 +45,10 @@ export function writeGovernanceTemplates(projectDir = process.cwd(), options = {
         artifactGate: packMode.artifactGate,
     }));
     writeTracked(result, lockFiles, projectDir, '.scale/skills.json', skillRoutingPolicyTemplate(mode));
+    writeTracked(result, lockFiles, projectDir, '.scale/resource-policy.json', resourcePolicyTemplate());
+    writeTracked(result, lockFiles, projectDir, '.scale/assets.json', resourceManifestTemplate());
+    writeTracked(result, lockFiles, projectDir, '.scale/engineering-standards.json', engineeringStandardsPolicyTemplate());
+    writeTracked(result, lockFiles, projectDir, '.scale/frameworks.json', frameworksCatalogTemplate());
     for (const file of pack.generatedFiles) {
         writePackGeneratedFile(result, lockFiles, projectDir, pack.id, pack.version, file);
     }
@@ -63,6 +72,9 @@ export function governanceTemplateContent(name) {
         case 'visual-review.md': return visualReviewTemplate();
         case 'api-contract.md': return apiContractTemplate();
         case 'docs-impact.md': return docsImpactTemplate();
+        case 'resource-impact.md': return resourceImpactTemplate();
+        case 'standards-impact.md': return standardsImpactTemplate();
+        case 'architecture-review.md': return architectureReviewTemplate();
         case 'security-review.md': return securityReviewTemplate();
         case 'db-change-plan.md': return dbChangePlanTemplate();
         case 'e2e-plan.md': return e2ePlanTemplate();
@@ -101,511 +113,675 @@ function shouldUseGeneratedHeader(file) {
     return file.kind === 'doc' || file.kind === 'template' || file.kind === 'script';
 }
 function generatedHeader(packId, packVersion) {
-    return `# Generated by scale-engine governance pack: ${packId}@${packVersion}
-# Edit policy: prefer editing the pack in scale-engine; local overrides should be documented.
-
+    return `# Generated by scale-engine governance pack: ${packId}@${packVersion}
+# Edit policy: prefer editing the pack in scale-engine; local overrides should be documented.
+
 `;
 }
 function workflowReadme(projectName, mode, packId = 'standard') {
-    return `# ${projectName} Workflow
-
-Governance mode: ${mode}
-Governance pack: ${packId}
-
-## Task Levels
-
-| Level | Use for | Required artifacts |
-| --- | --- | --- |
-| S | typo, comments, small local edits | relevant validation only |
-| M | bug fixes, new APIs, 2-5 files | explore, skill plan, plan, verification, review, summary |
-| L | cross-module or architecture changes | full artifacts plus human confirmation |
-| CRITICAL | auth, permissions, migrations, production config | rollback plan, security review, full verification |
-
-## Standard Task Directory
-
-\`\`\`text
-docs/worklog/tasks/<yyyy-mm-dd>-<task-slug>/
-├── explore.md
-├── mini-prd.md
-├── plan.md
-├── verification.md
-├── review.md
-└── summary.md
-\`\`\`
-
-## Verification
-
-Use service-aware verification when configured:
-
-\`\`\`bash
-scale preflight --service all
-scale preflight --service all --preflight-profile full
-scale verify <task-id> --profile default
-scale verify <task-id> --service <service-name>
-scale verify <task-id> --artifact-gate warn
-scale verify <task-id> --artifact-gate block
-scale verify <task-id> --require-installed-skills
-scale task-artifacts check --dir docs/worklog/tasks/<task-dir> --level L
-\`\`\`
-
+    return `# ${projectName} Workflow
+
+Governance mode: ${mode}
+Governance pack: ${packId}
+
+## Task Levels
+
+| Level | Use for | Required artifacts |
+| --- | --- | --- |
+| S | typo, comments, small local edits | relevant validation only |
+| M | bug fixes, new APIs, 2-5 files | explore, skill plan, plan, verification, review, summary |
+| L | cross-module or architecture changes | full artifacts plus human confirmation |
+| CRITICAL | auth, permissions, migrations, production config | rollback plan, security review, full verification |
+
+## Standard Task Directory
+
+\`\`\`text
+docs/worklog/tasks/<yyyy-mm-dd>-<task-slug>/
+├── explore.md
+├── mini-prd.md
+├── plan.md
+├── verification.md
+├── review.md
+└── summary.md
+\`\`\`
+
+## Verification
+
+Use service-aware verification when configured:
+
+\`\`\`bash
+scale preflight --service all
+scale preflight --service all --preflight-profile full
+scale verify <task-id> --profile default
+scale verify <task-id> --service <service-name>
+scale verify <task-id> --artifact-gate warn
+scale verify <task-id> --artifact-gate block
+scale verify <task-id> --require-installed-skills
+scale task-artifacts check --dir docs/worklog/tasks/<task-dir> --level L
+\`\`\`
+
 Keep \`.scale/verification.json\` as the source of truth for profiles and service commands.
 Keep \`.scale/skills.json\` as the source of truth for active skill routing policy.
+Keep \`.scale/resource-policy.json\` and \`.scale/assets.json\` as the source of truth for generated reports, temporary files, module documentation, media, reusable scripts, and Git retention policy.
+Keep \`.scale/engineering-standards.json\` and \`.scale/frameworks.json\` as the source of truth for logging, security, ORM, architecture, framework, UI/UX, testing, and coding standard checks.
 Use \`artifactGate: "warn"\` while introducing the workflow, then move M/L/CRITICAL work to \`"block"\` once templates and local gates are stable.
-
+
 ## Active Skill Routing
 
 SCALE plans required skills from task description, service selection, and changed files. UI/API work requires a Mini-PRD plus domain evidence such as \`ui-spec.md\`, \`visual-review.md\`, or \`api-contract.md\`. Security and database work require explicit review or rollback artifacts.
 
-When a task records \`servicesTouched\`, \`scale verify <task-id>\` uses those services automatically. You can still override selection with \`--service all\`, \`--service api\`, or \`--service api,gateway\`.
-
-Before M/L work, check whether required workflow skills are physically installed:
-
-\`\`\`bash
-scale skill doctor --json
-scale skill check --require-installed --json
-\`\`\`
-
-## Workspace Lifecycle
+Tool orchestration is part of the workflow contract:
 
-Before finishing an agent-created branch or deleting a temporary worktree, inspect root and child repository state:
+- UI/UX work requires \`frontend-design\` and \`ui-ux-pro-max\`, and should consider \`awesome-design-md\`, browser screenshots, responsive checks, and visual review evidence.
+- Web research, logged-in pages, and dynamic browser work require \`web-access\` evidence, source citations, and browser/network/console evidence when available.
+- Browser E2E work should combine \`webapp-testing\`, Playwright, Agent Browser, web-access, or Chrome DevTools MCP according to the target and record screenshots plus console/network findings.
+- Desktop or client-side GUI automation uses CUA/computer-use only with explicit operator-safety notes, desktop screenshots, and a side-effect boundary.
+- External agent or CLI orchestration such as Codex, Gemini CLI, OpenCode, WPS, or WeChat automation must record version checks, exact commands, output summaries, and dry-run or safe-mode evidence.
 
-\`\`\`bash
-scale workspace status --json
-scale workspace finish --json
-scale workspace cleanup --dir <temporary-worktree> --dry-run --json
+When a task records \`servicesTouched\`, \`scale verify <task-id>\` uses those services automatically. You can still override selection with \`--service all\`, \`--service api\`, or \`--service api,gateway\`.
+
+Before M/L work, check whether required workflow skills are physically installed:
+
+\`\`\`bash
+scale skill doctor --json
+scale skill check --require-installed --json
+\`\`\`
+
+## Workspace Lifecycle
+
+Before finishing an agent-created branch or deleting a temporary worktree, inspect root and child repository state:
+
+\`\`\`bash
+scale workspace status --json
+scale workspace finish --json
+scale workspace cleanup --dir <temporary-worktree> --dry-run --json
 scale workspace cleanup --dir <temporary-worktree> --apply --confirm <branch-or-head> --json
 \`\`\`
 
 Do not remove a temporary worktree while any submodule or nested repository has uncommitted or unpushed work. Child repositories must be committed and reviewed in their own remotes, then the root repository can record any required pointer or governance updates. Cleanup defaults to dry-run. Applying cleanup requires the reported confirmation token, normally the temporary branch name.
 
-## Automation Templates
-
-Optional automation templates are generated under \`docs/workflow/templates/\`:
+## Resource Governance
 
-- \`github-actions-scale-preflight.yml\`: CI workflow that runs \`scale preflight --service all --preflight-profile ci\`.
-- \`pre-push-scale-preflight.sh\`: local pre-push hook template that runs the default quick preflight.
-
-Keep these templates advisory until \`scale preflight --service all --preflight-profile full\` is reliable locally for the project.
-`;
-}
-function exploreTemplate() {
-    return `# Explore
+Use asset scanning before committing generated reports, media, temporary scripts, or long-lived documentation changes:
 
-## Files Read
+\`\`\`bash
+scale assets scan --json
+scale assets doctor --json
+scale assets settle --task-id <task-id> --artifact-dir docs/worklog/tasks/<task-dir>
+\`\`\`
 
-- TBD
+Default policy:
 
-## Current Behavior
+- maintained module docs, standards, contracts, ADRs, reusable scripts: commit and keep current.
+- task worklog artifacts: review before commit; promote final truth to maintained docs when useful.
+- screenshots, videos, E2E reports, coverage, temporary scripts, and runtime logs: keep out of Git unless explicitly promoted.
+- large media: use Git LFS or external artifact storage instead of normal Git history.
 
-TBD
+## Engineering Standards
 
-## Main Conflict
+Use standards scanning before reviewing or shipping M/L/CRITICAL work:
 
-TBD
+\`\`\`bash
+scale standards scan --json
+scale standards doctor --json
+scale standards settle --task-id <task-id> --artifact-dir docs/worklog/tasks/<task-dir>
+scale preflight --preflight-profile full --json
+scale verify <task-id> --json
+\`\`\`
 
-## Affected Modules
+Default policy:
 
-TBD
+- ad-hoc console/output logging is allowed only for CLI/script paths.
+- sensitive fields such as token, password, secret, authorization, cookie, and credentials must not be logged.
+- hardcoded secret-like assignments are blocked before review or release.
+- SQL must use parameterized queries, ORM bind parameters, or safe query builders.
+- unsafe HTML sinks, dynamic code execution, empty catch blocks, and type suppressions require remediation before release.
+- framework and architecture rules live in \`.scale/frameworks.json\` and module standards docs.
+- \`.scale/frameworks.json > bannedImports\` blocks direct use of deprecated ORMs, unsafe SDKs, or off-system UI components.
+- \`.scale/frameworks.json > lastReviewedAt/reviewIntervalDays\` warns when module framework decisions need review.
+- \`.scale/engineering-standards.json > blockingRules\` promotes selected warning rule IDs to release-blocking findings.
+- \`.scale/engineering-standards.json > allowedFindingPatterns\` allows narrow rule/path/evidence exceptions without hiding unrelated findings in the same file.
+- \`.scale/verification.json > policy.engineeringStandardsGate\` controls whether preflight and task verification treat standards as \`off\`, \`warn\`, or \`block\`.
 
-## Evidence
-TBD
+## Automation Templates
+
+Optional automation templates are generated under \`docs/workflow/templates/\`:
+
+- \`github-actions-scale-preflight.yml\`: CI workflow that runs \`scale preflight --service all --preflight-profile ci\`.
+- \`pre-push-scale-preflight.sh\`: local pre-push hook template that runs the default quick preflight.
+
+Keep these templates advisory until \`scale preflight --service all --preflight-profile full\` is reliable locally for the project.
+`;
+}
+function exploreTemplate() {
+    return `# Explore
+
+## Files Read
+
+- TBD
+
+## Current Behavior
+
+TBD
+
+## Main Conflict
+
+TBD
+
+## Affected Modules
+
+TBD
+
+## Evidence
+TBD
 `;
 }
 function miniPrdTemplate() {
-    return `# Mini-PRD
-
-## Background
-
-TBD
-
-## Target Users
-
-TBD
-
-## Core Scenario
-
-TBD
-
-## Non-Goals
-
-TBD
-
-## User Path
-
-TBD
-
-## Permission Rules
-
-TBD
-
-## Data Impact
-
-TBD
-
-## Exception Scenarios
-
-1. TBD
-2. TBD
-3. TBD
-
-## Acceptance Criteria
-
-- [ ] TBD
-
-## Rollback Or Disable Strategy
-TBD
+    return `# Mini-PRD
+
+## Background
+
+TBD
+
+## Target Users
+
+TBD
+
+## Core Scenario
+
+TBD
+
+## Non-Goals
+
+TBD
+
+## User Path
+
+TBD
+
+## Permission Rules
+
+TBD
+
+## Data Impact
+
+TBD
+
+## Exception Scenarios
+
+1. TBD
+2. TBD
+3. TBD
+
+## Acceptance Criteria
+
+- [ ] TBD
+
+## Rollback Or Disable Strategy
+TBD
 `;
 }
 function skillPlanTemplate() {
-    return `# Skill Plan
-
-## Detected Intents
-
-| Domain | Score | Evidence |
-| --- | ---: | --- |
-|  |  |  |
-
-## Required Skills
-
-- TBD
-
-## Recommended Skills
-
-- TBD
-
-## Required Artifacts
+    return `# Skill Plan
+
+## Detected Intents
+
+| Domain | Score | Evidence |
+| --- | ---: | --- |
+|  |  |  |
+
+## Required Skills
+
+- TBD
+
+## Recommended Skills
+
+- TBD
+
+## Required Artifacts
+
+- TBD
+
+## Required Verification Evidence
 
 - TBD
 
-## Required Verification Evidence
+## Tool Orchestration
 
-- TBD
+| Capability | Primary Tool Or Skill | Fallback | Required Evidence |
+| --- | --- | --- | --- |
+| UI/UX design | frontend-design, ui-ux-pro-max | awesome-design-md | design-system, ui-spec.md, visual-review.md |
+| Web research or logged-in pages | web-access | agent-browser, Chrome DevTools MCP | source citations, browser evidence |
+| Browser E2E | webapp-testing, Playwright | agent-browser, web-access | screenshot, console, network evidence |
+| Desktop GUI automation | CUA/computer-use | manual verification | desktop screenshot, operator-safety notes |
+| External agent CLI | codex/gemini/opencode CLI | manual review | version check, exact command output |
 
 ## Skipped Skills
 
 | Skill | Reason | Fallback Evidence |
-| --- | --- | --- |
-|  |  |  |
+| --- | --- | --- |
+|  |  |  |
 `;
 }
 function skillEvidenceTemplate() {
-    return `# Skill Evidence
-
+    return `# Skill Evidence
+
 ## Planned Skills
 
 - TBD
 
+## Tool Selection Rationale
+
+TBD
+
 ## Used Skills
 
 | Skill | Phase | Trigger | Evidence | Status |
 | --- | --- | --- | --- | --- |
 | skill-id | plan/build/verify/review | why it was selected | command, screenshot, report, or artifact path | executed/skipped/fallback |
 
-## Skipped Skills
-
-| Skill | Reason | Fallback Evidence |
-| --- | --- | --- |
-| skill-id | why it could not run | manual review, alternate command, or explicit risk |
-`;
-}
-function uiSpecTemplate() {
-    return `# UI Spec
-
-## User Goal
-
-TBD
-
-## Primary Flow
-
-TBD
-
-## Interaction States
-
-- Default:
-- Loading:
-- Empty:
-- Error:
-- Success:
-
-## Responsive Behavior
+## Browser Or Web Evidence
 
-TBD
+| Tool | Target | Evidence | Result |
+| --- | --- | --- | --- |
+| web-access/agent-browser/Chrome DevTools MCP | URL or local target | screenshot, console log, network finding, source URL | passed/failed/skipped |
 
-## Accessibility Requirements
+## Desktop Or External CLI Evidence
 
-TBD
+| Tool | Scope | Safety Boundary | Evidence | Result |
+| --- | --- | --- | --- | --- |
+| cua/codex/gemini/opencode/wps/wechat | command or app target | read-only/dry-run/test account/manual approval | output summary, screenshot, or report path | passed/failed/skipped |
 
-## Acceptance Criteria
+## Skipped Skills
 
-- [ ] TBD
+| Skill | Reason | Fallback Evidence |
+| --- | --- | --- |
+| skill-id | why it could not run | manual review, alternate command, or explicit risk |
+`;
+}
+function uiSpecTemplate() {
+    return `# UI Spec
+
+## User Goal
+
+TBD
+
+## Primary Flow
+
+TBD
+
+## Interaction States
+
+- Default:
+- Loading:
+- Empty:
+- Error:
+- Success:
+
+## Responsive Behavior
+
+TBD
+
+## Accessibility Requirements
+
+TBD
+
+## Acceptance Criteria
+
+- [ ] TBD
 `;
 }
 function visualReviewTemplate() {
-    return `# Visual Review
-
-## Screenshots Or Evidence
-
-TBD
-
-## Layout And Responsiveness
-
-TBD
-
-## Text Fit And Overlap
-
-TBD
-
-## Accessibility Notes
-
-TBD
-
-## Final Verdict
-TBD
+    return `# Visual Review
+
+## Screenshots Or Evidence
+
+TBD
+
+## Layout And Responsiveness
+
+TBD
+
+## Text Fit And Overlap
+
+TBD
+
+## Accessibility Notes
+
+TBD
+
+## Final Verdict
+TBD
 `;
 }
 function apiContractTemplate() {
-    return `# API Contract
-
-## Endpoint Or Interface
-
-TBD
-
-## Request
-
-TBD
-
-## Response
-
-TBD
-
-## Errors
-
-TBD
-
-## Permission Rules
-
-TBD
-
-## Compatibility Notes
-
-TBD
-
-## Acceptance Criteria
-
-- [ ] TBD
+    return `# API Contract
+
+## Endpoint Or Interface
+
+TBD
+
+## Request
+
+TBD
+
+## Response
+
+TBD
+
+## Errors
+
+TBD
+
+## Permission Rules
+
+TBD
+
+## Compatibility Notes
+
+TBD
+
+## Acceptance Criteria
+
+- [ ] TBD
 `;
 }
 function docsImpactTemplate() {
-    return `# Docs Impact
+    return `# Docs Impact
+
+## Code Changes Requiring Docs
+
+- TBD
+
+## Documentation Updated
+
+- TBD
+
+## No-Docs-Needed Rationale
+
+TBD
+
+## Links Checked
+
+- TBD
+`;
+}
+function resourceImpactTemplate() {
+    return `# Resource Impact
 
-## Code Changes Requiring Docs
+## Resources Created
 
-- TBD
+| Path | Type | Git Policy | Retention |
+| --- | --- | --- | --- |
+| TBD | canonical-doc/task-artifact/evidence-report/temporary/reusable-script/generated-media/contract/decision-record | commit/ignore/lfs/external/review | TBD |
 
-## Documentation Updated
+## Resources Updated
 
 - TBD
 
-## No-Docs-Needed Rationale
+## Resources Promoted To Maintained Docs
 
-TBD
+- TBD
 
-## Links Checked
+## Resources To Delete Or Archive Before Finish
 
 - TBD
-`;
-}
-function securityReviewTemplate() {
-    return `# Security Review
 
-## Assets And Trust Boundaries
+## Source Of Truth Updates
 
-TBD
+- [ ] .scale/resource-policy.json
+- [ ] .scale/assets.json
+- [ ] docs/modules/<module>/README.md
+`;
+}
+function standardsImpactTemplate() {
+    return `# Standards Impact
 
-## Authorization Rules
+## Standards Checked
 
-TBD
+- [ ] Logging and redaction
+- [ ] Architecture boundaries
+- [ ] ORM/database access
+- [ ] Framework/component conventions
+- [ ] UI/UX acceptance where user-facing
+- [ ] Test and verification rigor
+- [ ] Security-sensitive inputs and outputs
 
-## Abuse Cases
+## Findings
 
-1. TBD
-2. TBD
-3. TBD
+| Severity | Rule | Path | Decision |
+| --- | --- | --- | --- |
+| TBD | TBD | TBD | fix/accept/escalate |
 
-## Sensitive Data Impact
+## Policy Updates
 
-TBD
-
-## Rollback Or Disable Strategy
+- [ ] .scale/engineering-standards.json
+- [ ] .scale/frameworks.json
+- [ ] docs/standards/
 
-TBD
+## Settlement
 
-## Final Verdict
-TBD
+- Standards scan:
+- Standards doctor:
 `;
 }
-function dbChangePlanTemplate() {
-    return `# DB Change Plan
+function architectureReviewTemplate() {
+    return `# Architecture Review
 
-## Schema Or Data Change
-
-TBD
+## Scope
 
-## Backward Compatibility
+- Modules touched:
+- Public contracts touched:
+- Data flow touched:
 
-TBD
+## Boundary Checks
 
-## Migration Steps
+- [ ] API/controller layer does not bypass service/usecase layer
+- [ ] Domain layer is not coupled to infrastructure details
+- [ ] Repository/ORM usage follows project conventions
+- [ ] Shared framework components are reused instead of duplicated
+- [ ] New abstractions remove real complexity
 
-TBD
+## Risks
 
-## Rollback Plan
+- TBD
 
-TBD
+## Decision
 
-## Verification
-TBD
+- Approved/changes required:
+`;
+}
+function securityReviewTemplate() {
+    return `# Security Review
+
+## Assets And Trust Boundaries
+
+TBD
+
+## Authorization Rules
+
+TBD
+
+## Abuse Cases
+
+1. TBD
+2. TBD
+3. TBD
+
+## Sensitive Data Impact
+
+TBD
+
+## Rollback Or Disable Strategy
+
+TBD
+
+## Final Verdict
+TBD
+`;
+}
+function dbChangePlanTemplate() {
+    return `# DB Change Plan
+
+## Schema Or Data Change
+
+TBD
+
+## Backward Compatibility
+
+TBD
+
+## Migration Steps
+
+TBD
+
+## Rollback Plan
+
+TBD
+
+## Verification
+TBD
 `;
 }
 function e2ePlanTemplate() {
-    return `# E2E Plan
-
-## User Paths
-
-TBD
-
-## Browser Coverage
-
-TBD
-
-## Test Data
-
-TBD
-
-## Assertions
-
-TBD
-
-## Evidence
-TBD
+    return `# E2E Plan
+
+## User Paths
+
+TBD
+
+## Browser Coverage
+
+TBD
+
+## Test Data
+
+TBD
+
+## Assertions
+
+TBD
+
+## Evidence
+TBD
 `;
 }
 function planTemplate() {
-    return `# Plan
-
-## Approach
-
-TBD
-
-## Boundaries
-
-TBD
-
-## Exception Contract
-
-1. TBD
-2. TBD
-3. TBD
-
-## Rollback Plan
-
-TBD
-
-## Test Strategy
-TBD
+    return `# Plan
+
+## Approach
+
+TBD
+
+## Boundaries
+
+TBD
+
+## Exception Contract
+
+1. TBD
+2. TBD
+3. TBD
+
+## Rollback Plan
+
+TBD
+
+## Test Strategy
+TBD
 `;
 }
 function verificationTemplate() {
-    return `# Verification
-
-## Commands Run
-
-| Command | Result | Notes |
-| --- | --- | --- |
-|  |  |  |
-
-## Output Summary
-
-TBD
-
-## Failures And Fixes
-
-TBD
-
-## Final Status
-TBD
+    return `# Verification
+
+## Commands Run
+
+| Command | Result | Notes |
+| --- | --- | --- |
+|  |  |  |
+
+## Output Summary
+
+TBD
+
+## Failures And Fixes
+
+TBD
+
+## Final Status
+TBD
 `;
 }
 function reviewTemplate() {
-    return `# Review
-
-## Code Review
-
-TBD
-
-## Security Review
-
-TBD
-
-## Same-Pattern Scan
-
-TBD
-
-## Residual Risks
-TBD
+    return `# Review
+
+## Code Review
+
+TBD
+
+## Security Review
+
+TBD
+
+## Same-Pattern Scan
+
+TBD
+
+## Residual Risks
+TBD
 `;
 }
 function summaryTemplate() {
-    return `# Summary
-
-## Delivered Changes
-
-TBD
-
-## Remaining Risks
-
-TBD
-
-## Follow-Ups
-
-TBD
-
-## Metric Row
-
-| Date | Task | Level | Services | Files Changed | First Verification Pass | Fix Iterations | Artifact Complete | Residual Risk | Final Gate |
-| --- | --- | --- | --- | ---: | --- | ---: | --- | --- | --- |
-|  |  |  |  |  |  |  |  |  |  |
+    return `# Summary
+
+## Delivered Changes
+
+TBD
+
+## Remaining Risks
+
+TBD
+
+## Follow-Ups
+
+TBD
+
+## Metric Row
+
+| Date | Task | Level | Services | Files Changed | First Verification Pass | Fix Iterations | Artifact Complete | Residual Risk | Final Gate |
+| --- | --- | --- | --- | ---: | --- | ---: | --- | --- | --- |
+|  |  |  |  |  |  |  |  |  |  |
 `;
 }
 function metricsTemplate() {
-    return `# Workflow Metrics
-
-<!-- SCALE_METRICS:START -->
-| Date | Task | Level | Services | Files Changed | First Verification Pass | Fix Iterations | Rework Needed | Artifact Complete | Residual Risk | Final Gate |
-| --- | --- | --- | --- | ---: | --- | ---: | --- | --- | --- | --- |
-|  |  |  |  |  |  |  |  |  |  |  |
-<!-- SCALE_METRICS:END -->
-
-## Monthly Review
-
-### Repeated Failure Patterns
-
-TBD
-
-### Slowest Gates
-
-TBD
-
-### Documentation Gaps
-
-TBD
-
-### Product Design Misses
-
-TBD
-
-### Proposed Workflow Changes
-TBD
+    return `# Workflow Metrics
+
+<!-- SCALE_METRICS:START -->
+| Date | Task | Level | Services | Files Changed | First Verification Pass | Fix Iterations | Rework Needed | Artifact Complete | Residual Risk | Final Gate |
+| --- | --- | --- | --- | ---: | --- | ---: | --- | --- | --- | --- |
+|  |  |  |  |  |  |  |  |  |  |  |
+<!-- SCALE_METRICS:END -->
+
+## Monthly Review
+
+### Repeated Failure Patterns
+
+TBD
+
+### Slowest Gates
+
+TBD
+
+### Documentation Gaps
+
+TBD
+
+### Product Design Misses
+
+TBD
+
+### Proposed Workflow Changes
+TBD
 `;
 }
 function verificationMatrixTemplate(mode, options = {}) {
@@ -625,6 +801,7 @@ function verificationMatrixTemplate(mode, options = {}) {
             optionalToolsWarnOnly: true,
             artifactGate: options.artifactGate ?? (mode === 'critical' ? 'block' : 'warn'),
             artifactGateLevels: ['M', 'L', 'CRITICAL'],
+            engineeringStandardsGate: mode === 'minimal' ? 'warn' : 'block',
         },
     }, null, 2) + '\n';
 }
@@ -638,49 +815,49 @@ function packageVersion() {
     }
 }
 function githubActionsPreflightTemplate() {
-    return `name: SCALE Preflight
-
-on:
-  pull_request:
-  push:
-    branches:
-      - main
-      - master
-
-jobs:
-  preflight:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: '20'
-
-      - name: Install project dependencies when present
-        shell: bash
-        run: |
-          if [ -f package-lock.json ]; then
-            npm ci
-          elif [ -f package.json ]; then
-            npm install
-          fi
-
-      - name: Run SCALE preflight
-        run: npx @hongmaple0820/scale-engine@latest preflight --service all --preflight-profile ci
+    return `name: SCALE Preflight
+
+on:
+  pull_request:
+  push:
+    branches:
+      - main
+      - master
+
+jobs:
+  preflight:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - name: Install project dependencies when present
+        shell: bash
+        run: |
+          if [ -f package-lock.json ]; then
+            npm ci
+          elif [ -f package.json ]; then
+            npm install
+          fi
+
+      - name: Run SCALE preflight
+        run: npx @hongmaple0820/scale-engine@latest preflight --service all --preflight-profile ci
 `;
 }
 function prePushPreflightTemplate() {
-    return `#!/usr/bin/env sh
-set -eu
-
-if command -v scale >/dev/null 2>&1; then
-  scale preflight --service all
-else
-  npx @hongmaple0820/scale-engine@latest preflight --service all
-fi
+    return `#!/usr/bin/env sh
+set -eu
+
+if command -v scale >/dev/null 2>&1; then
+  scale preflight --service all
+else
+  npx @hongmaple0820/scale-engine@latest preflight --service all
+fi
 `;
 }
 //# sourceMappingURL=GovernanceTemplates.js.map