@hongmaple0820/scale-engine 0.25.0 → 0.26.0

package/docs/workflow/node-library.md

@@ -0,0 +1,52 @@
+# Generated by scale-engine governance pack: node-library@2
+# Edit policy: prefer editing the pack in scale-engine; local overrides should be documented.
+
+# Node Library Workflow
+
+This repository uses the latest SCALE repository workflow for Node/npm package delivery.
+
+## Command Entry Points
+
+```bash
+bash scripts/preflight/all.sh
+bash scripts/gates/all.sh --dry-run
+bash scripts/workflow/new-task.sh
+bash scripts/workflow/resume.sh
+bash scripts/workflow/verify.sh --preflight-profile quick
+```
+
+PowerShell:
+
+```powershell
+powershell -NoProfile -ExecutionPolicy Bypass -File scripts/preflight/all.ps1
+powershell -NoProfile -ExecutionPolicy Bypass -File scripts/gates/all.ps1 --dry-run
+powershell -NoProfile -ExecutionPolicy Bypass -File scripts/workflow/new-task.ps1
+powershell -NoProfile -ExecutionPolicy Bypass -File scripts/workflow/resume.ps1
+powershell -NoProfile -ExecutionPolicy Bypass -File scripts/workflow/verify.ps1 --preflight-profile quick
+```
+
+## Default Verification Matrix
+
+- quick loop: `npm run build`, `npm run lint`, `npm test`
+- release loop: add `npm run typecheck`, `git diff --check`, and `npm pack --dry-run`
+- product smoke: enable a real probe in `.scale/product-smoke.json` instead of treating a health endpoint as completion proof
+
+## Branch Policy
+
+This repository follows a GitLab Flow variant:
+
+```text
+feature/fix/docs/chore/codex -> dev -> master -> tag/publish
+```
+
+Use short-lived branches for governed work. Direct governed commits on `dev`, `master`, or `main` are blocked by SCALE ship rules.
+
+## Release Expectations
+
+Before a package release or demo handoff:
+
+1. Run `bash scripts/preflight/all.sh` or the PowerShell equivalent.
+2. Run `scale preflight --preflight-profile full --json`.
+3. Run `npm pack --dry-run`.
+4. Run `git diff --check`.
+5. Confirm runtime evidence and review artifacts for M/L/CRITICAL work.

package/docs/workflow/templates/api-contract.md

@@ -0,0 +1,29 @@
+# API Contract
+
+## Endpoint Or Interface
+
+TBD
+
+## Request
+
+TBD
+
+## Response
+
+TBD
+
+## Errors
+
+TBD
+
+## Permission Rules
+
+TBD
+
+## Compatibility Notes
+
+TBD
+
+## Acceptance Criteria
+
+- [ ] TBD

package/docs/workflow/templates/architecture-review.md

@@ -0,0 +1,23 @@
+# Architecture Review
+
+## Scope
+
+- Modules touched:
+- Public contracts touched:
+- Data flow touched:
+
+## Boundary Checks
+
+- [ ] API/controller layer does not bypass service/usecase layer
+- [ ] Domain layer is not coupled to infrastructure details
+- [ ] Repository/ORM usage follows project conventions
+- [ ] Shared framework components are reused instead of duplicated
+- [ ] New abstractions remove real complexity
+
+## Risks
+
+- TBD
+
+## Decision
+
+- Approved/changes required:

package/docs/workflow/templates/db-change-plan.md

@@ -0,0 +1,20 @@
+# DB Change Plan
+
+## Schema Or Data Change
+
+TBD
+
+## Backward Compatibility
+
+TBD
+
+## Migration Steps
+
+TBD
+
+## Rollback Plan
+
+TBD
+
+## Verification
+TBD

package/docs/workflow/templates/docs-impact.md

@@ -0,0 +1,17 @@
+# Docs Impact
+
+## Code Changes Requiring Docs
+
+- TBD
+
+## Documentation Updated
+
+- TBD
+
+## No-Docs-Needed Rationale
+
+TBD
+
+## Links Checked
+
+- TBD

package/docs/workflow/templates/e2e-plan.md

@@ -0,0 +1,20 @@
+# E2E Plan
+
+## User Paths
+
+TBD
+
+## Browser Coverage
+
+TBD
+
+## Test Data
+
+TBD
+
+## Assertions
+
+TBD
+
+## Evidence
+TBD

package/docs/workflow/templates/explore.md

@@ -0,0 +1,16 @@
+# Explore - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Files Read
+
+- TBD
+
+## Main Contradiction
+
+- TBD
+
+## Constraints
+
+- TBD

package/docs/workflow/templates/github-actions-scale-preflight.yml

@@ -0,0 +1,32 @@
+name: SCALE Preflight
+
+on:
+  pull_request:
+  push:
+    branches:
+      - main
+      - master
+
+jobs:
+  preflight:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - name: Install project dependencies when present
+        shell: bash
+        run: |
+          if [ -f package-lock.json ]; then
+            npm ci
+          elif [ -f package.json ]; then
+            npm install
+          fi
+
+      - name: Run SCALE preflight
+        run: npx @hongmaple0820/scale-engine@latest preflight --service all --preflight-profile ci

package/docs/workflow/templates/mini-prd.md

@@ -0,0 +1,16 @@
+# Mini PRD - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Goal
+
+- TBD
+
+## Non-Goals
+
+- TBD
+
+## Acceptance Criteria
+
+- TBD

package/docs/workflow/templates/plan.md

@@ -0,0 +1,37 @@
+# Plan - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Scope / Boundary
+
+- In scope:
+- Out of scope / non-goals:
+
+## Approach
+
+1. TBD
+2. TBD
+3. TBD
+
+## Exception / Failure Paths
+
+- Expected failure:
+- Error handling:
+- Manual recovery:
+
+## Rollback / Fallback
+
+- Rollback:
+- Fallback:
+- Disable path:
+
+## Acceptance Criteria
+
+- TBD
+
+## Verification
+
+- `make gate-quality`
+- `make verify PROFILE=default`
+- `git diff --check`

package/docs/workflow/templates/pre-push-scale-preflight.sh

@@ -0,0 +1,8 @@
+#!/usr/bin/env sh
+set -eu
+
+if command -v scale >/dev/null 2>&1; then
+  scale preflight --service all
+else
+  npx @hongmaple0820/scale-engine@latest preflight --service all
+fi

package/docs/workflow/templates/product-smoke.md

@@ -0,0 +1,61 @@
+# Product Smoke
+
+## Real Product Path
+
+Describe the smallest end-to-end path that proves the change works through the real product boundary.
+
+Example:
+
+```text
+UI or client -> gateway/router -> service -> database/storage/queue -> observable result
+```
+
+Do not use a green health endpoint as the only proof when the user-facing path depends on routing, authentication, storage, async tasks, browser behavior, or third-party integration.
+
+## Quick Setup
+
+1. Open `.scale/product-smoke.json`.
+2. Replace the example command with one real product path command.
+3. Set that probe's `enabled` field to `true`.
+4. Run `scale preflight --profile productSmoke --json`.
+5. Run `scale runtime final-check --level M --json`.
+
+`status: "skipped"` means no real product path was exercised. It does not count as completion evidence.
+
+## Setup
+
+- Base URL:
+- Test user or tenant:
+- Required fixtures:
+- Services that must be running:
+
+## Smoke Commands
+
+| Command | Expected Result | Evidence Artifact |
+| --- | --- | --- |
+| TBD | TBD | TBD |
+
+## Runtime Evidence
+
+Record at least one runtime evidence item:
+
+```bash
+scale runtime record \
+  --kind command \
+  --title "Product smoke: <flow>" \
+  --status passed \
+  --command "<exact smoke command>" \
+  --exit-code 0 \
+  --summary "<business result, task id, status, or observable output>" \
+  --artifacts ".agent/logs/<service>/<smoke>.json" \
+  --metadata-json '{"productSmoke":true,"realProductPath":true}'
+```
+
+## Assertions
+
+- [ ] Request crossed the real product boundary, not only an isolated unit.
+- [ ] Authentication or user identity path was exercised when relevant.
+- [ ] Persistence/storage/queue side effect was verified when relevant.
+- [ ] Async task or eventual state was polled to terminal status when relevant.
+- [ ] Failure output is specific enough to diagnose the failing layer.
+- [ ] Runtime artifacts are ignored or deliberately promoted according to resource governance.

package/docs/workflow/templates/reality-check.md

@@ -0,0 +1,28 @@
+# Reality Check - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Confirmed
+
+- TBD
+
+## Not Verified
+
+- TBD
+
+## Stub / Fake / Partial
+
+- TBD
+
+## Credential-Gated
+
+- TBD
+
+## Environment-Gated
+
+- TBD
+
+## User-Visible Risk
+
+- TBD

package/docs/workflow/templates/resource-cleanup.md

@@ -0,0 +1,17 @@
+# Resource Cleanup - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## New Resources
+
+| Resource | Location | Keep / Move / Delete | Reason |
+| --- | --- | --- | --- |
+| TBD | TBD | TBD | TBD |
+
+## Docs Promotion
+
+- Promote to `docs/`:
+- Keep in `.planning/`:
+- Keep local under `.agent/`:
+- Delete before handoff:

package/docs/workflow/templates/resource-impact.md

@@ -0,0 +1,25 @@
+# Resource Impact
+
+## Resources Created
+
+| Path | Type | Git Policy | Retention |
+| --- | --- | --- | --- |
+| TBD | canonical-doc/task-artifact/evidence-report/temporary/reusable-script/generated-media/contract/decision-record | commit/ignore/lfs/external/review | TBD |
+
+## Resources Updated
+
+- TBD
+
+## Resources Promoted To Maintained Docs
+
+- TBD
+
+## Resources To Delete Or Archive Before Finish
+
+- TBD
+
+## Source Of Truth Updates
+
+- [ ] .scale/resource-policy.json
+- [ ] .scale/assets.json
+- [ ] docs/modules/<module>/README.md

package/docs/workflow/templates/review.md

@@ -0,0 +1,12 @@
+# Review - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Findings
+
+- TBD
+
+## Residual Risk
+
+- TBD

package/docs/workflow/templates/runtime.md

@@ -0,0 +1,23 @@
+# Runtime Contract - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Configuration Source
+
+- Source: TBD
+- Environment/profile: TBD
+- Local override file: TBD
+
+## Service Topology
+
+| Service | URL / Command | Config source | Auth mode | Status |
+| --- | --- | --- | --- | --- |
+| primary | TBD | TBD | TBD | Not checked |
+
+## Verification Boundary
+
+- Confirmed:
+- Not covered:
+- Requires external credentials:
+- Requires shared/cloud environment:

package/docs/workflow/templates/security-review.md

@@ -0,0 +1,26 @@
+# Security Review
+
+## Assets And Trust Boundaries
+
+TBD
+
+## Authorization Rules
+
+TBD
+
+## Abuse Cases
+
+1. TBD
+2. TBD
+3. TBD
+
+## Sensitive Data Impact
+
+TBD
+
+## Rollback Or Disable Strategy
+
+TBD
+
+## Final Verdict
+TBD

package/docs/workflow/templates/skill-evidence.md

@@ -0,0 +1,33 @@
+# Skill Evidence
+
+## Planned Skills
+
+- TBD
+
+## Tool Selection Rationale
+
+TBD
+
+## Used Skills
+
+| Skill | Phase | Trigger | Evidence | Status |
+| --- | --- | --- | --- | --- |
+| skill-id | plan/build/verify/review | why it was selected | command, screenshot, report, or artifact path | executed/skipped/fallback |
+
+## Browser Or Web Evidence
+
+| Tool | Target | Evidence | Result |
+| --- | --- | --- | --- |
+| web-access/agent-browser/Chrome DevTools MCP | URL or local target | screenshot, console log, network finding, source URL | passed/failed/skipped |
+
+## Desktop Or External CLI Evidence
+
+| Tool | Scope | Safety Boundary | Evidence | Result |
+| --- | --- | --- | --- | --- |
+| cua/codex/gemini/opencode/wps/wechat | command or app target | read-only/dry-run/test account/manual approval | output summary, screenshot, or report path | passed/failed/skipped |
+
+## Skipped Skills
+
+| Skill | Reason | Fallback Evidence |
+| --- | --- | --- |
+| skill-id | why it could not run | manual review, alternate command, or explicit risk |

package/docs/workflow/templates/skill-plan.md

@@ -0,0 +1,39 @@
+# Skill Plan
+
+## Detected Intents
+
+| Domain | Score | Evidence |
+| --- | ---: | --- |
+|  |  |  |
+
+## Required Skills
+
+- TBD
+
+## Recommended Skills
+
+- TBD
+
+## Required Artifacts
+
+- TBD
+
+## Required Verification Evidence
+
+- TBD
+
+## Tool Orchestration
+
+| Capability | Primary Tool Or Skill | Fallback | Required Evidence |
+| --- | --- | --- | --- |
+| UI/UX design | frontend-design, ui-ux-pro-max | awesome-design-md | design-system, ui-spec.md, visual-review.md |
+| Web research or logged-in pages | web-access | agent-browser, Chrome DevTools MCP | source citations, browser evidence |
+| Browser E2E | webapp-testing, Playwright | agent-browser, web-access | screenshot, console, network evidence |
+| Desktop GUI automation | CUA/computer-use | manual verification | desktop screenshot, operator-safety notes |
+| External agent CLI | codex/gemini/opencode CLI | manual review | version check, exact command output |
+
+## Skipped Skills
+
+| Skill | Reason | Fallback Evidence |
+| --- | --- | --- |
+|  |  |  |

package/docs/workflow/templates/spec.md

@@ -0,0 +1,17 @@
+# Spec - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## What
+
+
+## Why
+
+
+## Boundaries
+
+
+## Acceptance Criteria
+
+- [ ] 

package/docs/workflow/templates/standards-impact.md

@@ -0,0 +1,28 @@
+# Standards Impact
+
+## Standards Checked
+
+- [ ] Logging and redaction
+- [ ] Architecture boundaries
+- [ ] ORM/database access
+- [ ] Framework/component conventions
+- [ ] UI/UX acceptance where user-facing
+- [ ] Test and verification rigor
+- [ ] Security-sensitive inputs and outputs
+
+## Findings
+
+| Severity | Rule | Path | Decision |
+| --- | --- | --- | --- |
+| TBD | TBD | TBD | fix/accept/escalate |
+
+## Policy Updates
+
+- [ ] .scale/engineering-standards.json
+- [ ] .scale/frameworks.json
+- [ ] docs/standards/
+
+## Settlement
+
+- Standards scan:
+- Standards doctor:

package/docs/workflow/templates/summary.md

@@ -0,0 +1,16 @@
+# Summary - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## What Changed
+
+- TBD
+
+## Verification Result
+
+- TBD
+
+## Follow-up
+
+- TBD

package/docs/workflow/templates/tasks.md

@@ -0,0 +1,8 @@
+# Tasks - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Task List
+
+- [ ] 

package/docs/workflow/templates/ui-spec.md

@@ -0,0 +1,29 @@
+# UI Spec
+
+## User Goal
+
+TBD
+
+## Primary Flow
+
+TBD
+
+## Interaction States
+
+- Default:
+- Loading:
+- Empty:
+- Error:
+- Success:
+
+## Responsive Behavior
+
+TBD
+
+## Accessibility Requirements
+
+TBD
+
+## Acceptance Criteria
+
+- [ ] TBD

package/docs/workflow/templates/verification.md

@@ -0,0 +1,20 @@
+# Verification - {{TASK_ID}}
+
+Date: {{DATE}}
+Level: {{LEVEL}}
+
+## Commands Run
+
+- TBD
+
+## Passed
+
+- TBD
+
+## Failed / Blocked
+
+- TBD
+
+## Not Run
+
+- TBD