@t275005746/gse 0.1.1 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (84) hide show
  1. package/.gse/state.json +147 -26
  2. package/CHANGELOG.md +19 -3
  3. package/README.md +13 -6
  4. package/README.zh-CN.md +13 -6
  5. package/SKILL.md +32 -12
  6. package/assets/templates/dispatch-packet.md +22 -14
  7. package/assets/templates/evidence.md +11 -5
  8. package/assets/templates/role-fallback-packet.md +49 -0
  9. package/package.json +18 -10
  10. package/references/agent-roles.md +41 -20
  11. package/references/commands.md +74 -45
  12. package/references/drift-audit.md +2 -1
  13. package/references/evidence-taxonomy.md +46 -9
  14. package/references/file-ownership.md +17 -13
  15. package/references/final-form-roadmap.md +201 -0
  16. package/references/final-readiness.md +3 -3
  17. package/references/host-adapters.md +38 -10
  18. package/references/learning-system.md +24 -8
  19. package/references/maintenance-cadence.md +51 -0
  20. package/references/project-guards.md +52 -0
  21. package/references/quality-gates.md +18 -11
  22. package/references/role-dispatch-fallback.md +54 -0
  23. package/references/tool-adapters.md +13 -3
  24. package/scripts/audit-close-gate-hardening.mjs +188 -0
  25. package/scripts/audit-close-gate.mjs +219 -33
  26. package/scripts/audit-command-execution.mjs +30 -17
  27. package/scripts/audit-commands.mjs +7 -5
  28. package/scripts/audit-completion-plan-drill.mjs +230 -0
  29. package/scripts/audit-completion-readiness.mjs +9 -6
  30. package/scripts/audit-continue-preflight.mjs +234 -0
  31. package/scripts/audit-evidence-levels.mjs +217 -0
  32. package/scripts/audit-evidence-review-queue.mjs +206 -0
  33. package/scripts/audit-final-acceptance-packet.mjs +9 -9
  34. package/scripts/audit-final-form-progress-report.mjs +19 -18
  35. package/scripts/audit-final-form-roadmap.mjs +157 -0
  36. package/scripts/audit-final-form-stale-copy.mjs +2 -2
  37. package/scripts/audit-final-readiness.mjs +3 -3
  38. package/scripts/audit-fresh-session-readiness.mjs +1 -1
  39. package/scripts/audit-host-capabilities.mjs +237 -0
  40. package/scripts/audit-installed-sync.mjs +203 -0
  41. package/scripts/audit-learning-drift.mjs +292 -0
  42. package/scripts/audit-learning-promotion.mjs +351 -0
  43. package/scripts/audit-learning-system.mjs +24 -14
  44. package/scripts/audit-local-final-form-completion.mjs +11 -10
  45. package/scripts/audit-maintenance-cadence.mjs +139 -0
  46. package/scripts/audit-maintenance-snapshot.mjs +181 -0
  47. package/scripts/audit-npm-package-metadata.mjs +8 -2
  48. package/scripts/audit-npm-publish-dry-run.mjs +10 -4
  49. package/scripts/audit-npm-tarball-install.mjs +9 -3
  50. package/scripts/audit-owner-external-gate-kit.mjs +12 -11
  51. package/scripts/audit-project-guards.mjs +189 -0
  52. package/scripts/audit-project.mjs +14 -11
  53. package/scripts/audit-public-acceptance-handoff.mjs +10 -10
  54. package/scripts/audit-public-acceptance-readiness.mjs +6 -6
  55. package/scripts/audit-public-release-checklist.mjs +17 -15
  56. package/scripts/audit-release-bundle.mjs +13 -11
  57. package/scripts/audit-release-owner-action-plan-drill.mjs +5 -4
  58. package/scripts/audit-release-owner-action-plan.mjs +10 -10
  59. package/scripts/audit-release-status-manifest.mjs +4 -4
  60. package/scripts/audit-roadmap-consistency.mjs +11 -7
  61. package/scripts/audit-role-dispatch-fallback.mjs +212 -0
  62. package/scripts/audit-session-sync.mjs +127 -0
  63. package/scripts/audit-state-freshness.mjs +6 -5
  64. package/scripts/audit-state-repair.mjs +360 -0
  65. package/scripts/audit-target-hardening-drills.mjs +267 -0
  66. package/scripts/audit-tool-fallback-policy.mjs +180 -0
  67. package/scripts/audit-ui-browser-evidence-policy.mjs +191 -0
  68. package/scripts/audit-validation-profiles.mjs +6 -4
  69. package/scripts/backfill-evidence-levels.mjs +98 -0
  70. package/scripts/check-encoding.mjs +72 -0
  71. package/scripts/generate-continue-packet.mjs +1214 -0
  72. package/scripts/generate-final-acceptance-packet.mjs +23 -8
  73. package/scripts/generate-final-form-progress-report.mjs +25 -23
  74. package/scripts/generate-host-runtime-evidence-handoff.mjs +23 -16
  75. package/scripts/generate-maintenance-snapshot.mjs +216 -0
  76. package/scripts/generate-public-acceptance-handoff.mjs +26 -14
  77. package/scripts/generate-release-owner-action-plan.mjs +4 -3
  78. package/scripts/generate-release-status-manifest.mjs +4 -3
  79. package/scripts/init-project.mjs +144 -63
  80. package/scripts/record-learning.mjs +37 -8
  81. package/scripts/record-session-sync.mjs +87 -0
  82. package/scripts/run-gse-command.mjs +79 -47
  83. package/scripts/run-validation-profile.mjs +24 -5
  84. package/scripts/validate-gse.mjs +216 -0
package/.gse/state.json CHANGED
@@ -1,26 +1,147 @@
1
- {
2
- "schemaVersion": 1,
3
- "projectName": "gse",
4
- "mode": "enterprise",
5
- "canonicalPlan": ".gse/gse-design-master-plan.md",
6
- "phase": "release",
7
- "currentSlice": {
8
- "id": "GSE-108-public-registry-publication",
9
- "outcome": "Complete the real public registry publication gate for @t275005746/gse, then record accepted publication evidence.",
10
- "status": "verified",
11
- "nextAction": "Collect real native slash-command host evidence for /gse continue, record it as accepted host invocation evidence, then re-run the public acceptance doctor."
12
- },
13
- "toolStatuses": {
14
- "browser": "unknown",
15
- "lsp": "unknown",
16
- "mcp": "unknown",
17
- "subagents": "unknown",
18
- "ci": "verified-public"
19
- },
20
- "lastEvidence": ".gse/evidence/2026-07-07.md",
21
- "residualRisks": [
22
- "Native slash-command support remains external-required until a real host runtime proves native /gse invocation with accepted evidence.",
23
- "Do not treat portable text-command routing, generated command pointers, package dry-runs, local tarball installs, or release bundles as public registry publication or native slash-command evidence.",
24
- "Use /gse doctor and audit-public-acceptance-readiness.mjs as the current source of truth for pending final-form gates."
25
- ]
26
- }
1
+ {
2
+ "schemaVersion": 1,
3
+ "projectName": "gse",
4
+ "mode": "enterprise",
5
+ "canonicalPlan": ".gse/gse-design-master-plan.md",
6
+ "phase": "final-form",
7
+ "currentSummary": {
8
+ "status": "release-metadata-0.1.2-verified",
9
+ "localEngineeringReadiness": 100,
10
+ "fullFinalFormReadiness": 100,
11
+ "publicAccepted": "verified",
12
+ "pendingExternalGate": null,
13
+ "currentPlan": "Commit and publish GSE 0.1.2 from verified release metadata."
14
+ },
15
+ "currentSlice": {
16
+ "id": "GSE-147-release-metadata-0.1.2",
17
+ "outcome": "Publish GSE 0.1.2 with npm install guidance and public GitHub repository metadata aligned.",
18
+ "status": "verified",
19
+ "nextAction": "Commit the verified `0.1.2` release metadata slice, then run `npm publish`, create `v0.1.2`, and push the branch/tag from that committed state."
20
+ },
21
+ "toolStatuses": {
22
+ "browser": "unknown",
23
+ "lsp": "unknown",
24
+ "mcp": "unknown",
25
+ "subagents": "unknown",
26
+ "ci": "documented"
27
+ },
28
+ "lastEvidence": ".gse/evidence/2026-07-10.md",
29
+ "blockedGates": [],
30
+ "nextChecks": [
31
+ "node scripts/run-gse-command.mjs --root . --target . --command \"/gse doctor\" --json",
32
+ "node scripts/audit-public-acceptance-readiness.mjs --root . --json",
33
+ "cmd /c npm view @t275005746/gse version --json",
34
+ "cmd /c npm publish --access public",
35
+ "cmd /c npm view @t275005746/gse version dist-tags --json",
36
+ "git tag v0.1.2",
37
+ "git push origin codex/gse-final-form-roadmap",
38
+ "git push origin v0.1.2"
39
+ ],
40
+ "residualRisks": [
41
+ "Process skills provide workflow discipline and portable artifacts; they do not prove host-native slash-command, subagent, browser, MCP, LSP, CI, or host UI support.",
42
+ "Native slash-command support remains an optional per-host adapter claim and is not claimed without a real host invocation record.",
43
+ "Browser, MCP, LSP, and subagent statuses remain unknown until project/session evidence is recorded."
44
+ ],
45
+ "riskArchive": [
46
+ {
47
+ "archivedAt": "2026-07-10",
48
+ "risk": "0.1.1 is already published and immutable; release metadata changes must publish a new semver version.",
49
+ "resolution": "GSE-147 uses 0.1.2 as the publish target."
50
+ },
51
+ {
52
+ "archivedAt": "2026-07-10",
53
+ "risk": "Session sync records prove notification attempts and honest outcomes, not that another running session adopted the capability immediately.",
54
+ "resolution": "GSE-146 surfaces compactState.sessionSyncBoundary and CP21 so adoption is false unless an explicit adoption record exists."
55
+ },
56
+ {
57
+ "archivedAt": "2026-07-08",
58
+ "risk": "The final-form roadmap contract is not itself final-form completion; live claims still come from references/final-readiness.md and audit-final-readiness.mjs.",
59
+ "resolution": "Preserved through /gse continue blockedGates and final-readiness claim boundary."
60
+ },
61
+ {
62
+ "archivedAt": "2026-07-08",
63
+ "risk": "The next implementation slice must reduce long prompt dependence through /gse continue hard preflight, not add more prose-only guidance.",
64
+ "resolution": "Implemented by scripts/generate-continue-packet.mjs and /gse continue routing."
65
+ },
66
+ {
67
+ "archivedAt": "2026-07-08",
68
+ "risk": "Use /gse doctor and audit-public-acceptance-readiness.mjs as the source of truth for pending final-form public gates.",
69
+ "resolution": "Integrated into continue packet ownerExternalGateSummary and blockedGates."
70
+ },
71
+ {
72
+ "archivedAt": "2026-07-08",
73
+ "risk": "The final-form plan could be interpreted as only the remaining owner/external release gates.",
74
+ "resolution": "references/final-form-roadmap.md now contains Wave 1-5 execution plan and current gap list for local engineering and external evidence."
75
+ },
76
+ {
77
+ "archivedAt": "2026-07-08",
78
+ "risk": "Project guard automation is the next local engineering gap: repeated real-project lessons must become preflight guard items instead of reminder prose.",
79
+ "resolution": "Implemented as soft project guard preflight through .gse/project-guards.md, audit-project-guards.mjs, scaffold generation, and /gse continue CP11."
80
+ },
81
+ {
82
+ "archivedAt": "2026-07-08",
83
+ "risk": "Evidence level granularity still needs sharper UI/browser/API/CI labels.",
84
+ "resolution": "Implemented through evidenceLevel and requiredEvidenceLevel taxonomy, audit-evidence-levels.mjs, /gse continue CP12, and close gate CG09."
85
+ },
86
+ {
87
+ "archivedAt": "2026-07-08",
88
+ "risk": "Role and dispatch fallback packets need stronger default output and no-fake-dispatch checks.",
89
+ "resolution": "Implemented through role-dispatch-fallback.md, role-fallback-packet.md, .gse/agents/role-fallback-packets.md, audit-role-dispatch-fallback.mjs, and /gse continue CP13."
90
+ },
91
+ {
92
+ "archivedAt": "2026-07-08",
93
+ "risk": "Downgraded evidence is now visible before continue/close, but each project decides whether a downgrade blocks close.",
94
+ "resolution": "Preserved through evidenceLevel and requiredEvidenceLevel warnings."
95
+ },
96
+ {
97
+ "archivedAt": "2026-07-08",
98
+ "risk": "Use /gse doctor and audit-public-acceptance-readiness.mjs as the source of truth for current final-form external gates.",
99
+ "resolution": "Preserved as the public/external acceptance route while state repair handles local state/evidence drift."
100
+ },
101
+ {
102
+ "archivedAt": "2026-07-08",
103
+ "risk": "State/evidence repair is intentionally conservative: invalid JSON/JSONL is reported with concrete actions, not guessed or overwritten.",
104
+ "resolution": "GSE-115 implemented /gse repair and CP14; the remaining risk is now bounded as a deliberate repair policy."
105
+ },
106
+ {
107
+ "archivedAt": "2026-07-08",
108
+ "risk": "Automatic /gse repair writes are limited to reversible residual-risk compaction with .gse/backups; stale next-action drift remains a deliberate update.",
109
+ "resolution": "GSE-115 verified execute-gated residual-risk compaction and kept stale next-action repair deliberate."
110
+ },
111
+ {
112
+ "archivedAt": "2026-07-08",
113
+ "risk": "Learning promotion writes candidate-only .gse/learning-promotions.md output; guards, gates, templates, scripts, and skill updates still require deliberate follow-up changes.",
114
+ "resolution": "GSE-116 implemented candidate-only learning promotion; deliberate follow-up remains as normal slice work rather than an active blocker."
115
+ },
116
+ {
117
+ "archivedAt": "2026-07-08",
118
+ "risk": "Classification is deterministic and project-generic, not a human semantic review.",
119
+ "resolution": "GSE-116 bounded classification as routing evidence and preserved human review for actual guard/gate/script mutations."
120
+ },
121
+ {
122
+ "archivedAt": "2026-07-09",
123
+ "risk": "Role fallback packets prove auditable sequential role boundaries, not real subagent execution.",
124
+ "resolution": "Preserved by role fallback packets, no-fake-dispatch close gate, and host capability records; no longer needs default active risk display."
125
+ },
126
+ {
127
+ "archivedAt": "2026-07-09",
128
+ "risk": "AION and MuseFlow drill warnings are project-local readiness signals; GSE behavior must stay project-generic and must not mutate target projects during read-only drills.",
129
+ "resolution": "Preserved by target hardening drill limits and maintenance cadence; no longer needs default active risk display."
130
+ },
131
+ {
132
+ "archivedAt": "2026-07-09",
133
+ "risk": "Installed sync evidence proves local source/package/installed-copy parity only at the time of the audit; it does not publish a package or prove host-native slash-command support.",
134
+ "resolution": "Archived by GSE state repair to keep active residual risks compact."
135
+ },
136
+ {
137
+ "archivedAt": "2026-07-09",
138
+ "risk": "UI/browser evidence policy proves evidence labeling and downgrade surfacing only; target-project visible UI claims still need real browser or screenshot-backed proof.",
139
+ "resolution": "Archived by GSE state repair to keep active residual risks compact."
140
+ },
141
+ {
142
+ "archivedAt": "2026-07-09",
143
+ "risk": "Maintenance snapshots are point-in-time freshness evidence; future capability edits must regenerate the snapshot, release bundle, and installed copy.",
144
+ "resolution": "Archived by GSE state repair to keep active residual risks compact."
145
+ }
146
+ ]
147
+ }
package/CHANGELOG.md CHANGED
@@ -2,9 +2,25 @@
2
2
 
3
3
  All notable GSE changes should be recorded here before a public package, catalog entry, or release handoff is marked ready.
4
4
 
5
- ## Unreleased
6
-
7
- ### Added
5
+ ## Unreleased
6
+
7
+ ## 0.1.2 - 2026-07-10
8
+
9
+ ### Added
10
+
11
+ - Public npm/GitHub install metadata for `@t275005746/gse`.
12
+ - README and README.zh-CN npm install quick path.
13
+
14
+ ### Verified
15
+
16
+ - Public GitHub repository visibility and npm registry status are checked during release close.
17
+ - `/gse continue` exposes session-sync adoption boundaries so installed-copy sync is not mistaken for target-session adoption.
18
+
19
+ ### Boundary
20
+
21
+ - Native host slash-command support remains optional per host adapter and is not claimed without host invocation evidence.
22
+
23
+ ### Added
8
24
 
9
25
  - Project bootstrap modes for Lite, Standard, and Enterprise `.gse/` scaffolds.
10
26
  - Native Goal-Spec-Evidence operating model with change packs, execution-quality packs, evidence taxonomy, close gates, and target project audits.
package/README.md CHANGED
@@ -22,12 +22,19 @@ Goal -> Spec -> Execute -> Evidence -> Learn
22
22
  - Optional adapters for host folders, LSP notes, MCP notes, hooks, plugins, and project skills
23
23
  - Release, packaging, public-collaboration, and evidence-gate workflows for mature projects
24
24
 
25
- ## Installation
26
-
27
- Use GSE from a checked-out copy:
28
-
29
- ```bash
30
- node scripts/validate-gse.mjs --root . --json
25
+ ## Installation
26
+
27
+ Install from npm:
28
+
29
+ ```bash
30
+ npm install -g @t275005746/gse
31
+ gse status --target .
32
+ ```
33
+
34
+ Use GSE from a checked-out copy:
35
+
36
+ ```bash
37
+ node scripts/validate-gse.mjs --root . --json
31
38
  ```
32
39
 
33
40
  Package a checked-out copy for handoff:
package/README.zh-CN.md CHANGED
@@ -22,12 +22,19 @@ Goal -> Spec -> Execute -> Evidence -> Learn
22
22
  - 可选 host folders、LSP、MCP、hooks、plugins、project skills 适配说明
23
23
  - 面向成熟项目的 release、packaging、public collaboration 和 evidence gate 工作流
24
24
 
25
- ## 安装
26
-
27
- 从已检出的 GSE 副本直接使用:
28
-
29
- ```bash
30
- node scripts/validate-gse.mjs --root . --json
25
+ ## 安装
26
+
27
+ npm 安装:
28
+
29
+ ```bash
30
+ npm install -g @t275005746/gse
31
+ gse status --target .
32
+ ```
33
+
34
+ 从已检出的 GSE 副本直接使用:
35
+
36
+ ```bash
37
+ node scripts/validate-gse.mjs --root . --json
31
38
  ```
32
39
 
33
40
  把已检出的副本打包给其他环境:
package/SKILL.md CHANGED
@@ -37,19 +37,32 @@ Default stance: keep the workflow as light as the task allows and as rigorous as
37
37
  Portable command helpers:
38
38
 
39
39
  - Short CLI wrapper: `node <skill>/scripts/gse.mjs status --target <project-root> --json`
40
- - Short continuation prompt: `node <skill>/scripts/generate-session-prompt.mjs --target <project-root>`
41
- - Portable command runner: `node <skill>/scripts/run-gse-command.mjs --target <project-root> --command "/gse continue"`
42
- - Validation profile runner: `node <skill>/scripts/run-validation-profile.mjs --target <project-root> --profile lite|standard|enterprise|release`
40
+ - Short continuation packet: `node <skill>/scripts/generate-continue-packet.mjs --target <project-root>`
41
+ - Portable command runner: `node <skill>/scripts/run-gse-command.mjs --target <project-root> --command "/gse continue"`
42
+ - State/evidence repair doctor: `node <skill>/scripts/run-gse-command.mjs --target <project-root> --command "/gse repair" --json`
43
+ - Direct repair audit: `node <skill>/scripts/audit-state-repair.mjs --target <project-root> --json`
44
+ - Validation profile runner: `node <skill>/scripts/run-validation-profile.mjs --target <project-root> --profile lite|standard|enterprise|release`
43
45
  - Command execution audit: `node <skill>/scripts/audit-command-execution.mjs --root <skill> --profile lite|full`
44
- - Close readiness check: `node <skill>/scripts/audit-close-gate.mjs --target <project-root>`
46
+ - Close readiness check: `node <skill>/scripts/audit-close-gate.mjs --target <project-root>`
47
+ - Project guard preflight: `node <skill>/scripts/audit-project-guards.mjs --target <project-root> --json`
45
48
  - GSE owner/external action list: `node <skill>/scripts/run-gse-command.mjs --target <skill> --command "/gse owner-actions" --json --compact`
46
49
  - Owner/external live evidence probe: `node <skill>/scripts/run-gse-command.mjs --target <skill> --command "/gse probe --public-repo-url <url>" --json`
47
50
  - Release bundle dry-run/write route: `node <skill>/scripts/run-gse-command.mjs --target <skill> --command "/gse release" --json`
48
51
  - Package dry-run/write route: `node <skill>/scripts/run-gse-command.mjs --target <skill> --command "/gse package" --json`
49
52
  - Install dry-run/write route: `node <skill>/scripts/run-gse-command.mjs --target <skill> --command "/gse install --source <package-dir> --install-target <install-skill-dir>" --json`
50
53
  - Public release checklist route: `node <skill>/scripts/run-gse-command.mjs --target <skill> --command "/gse public-release" --json`
51
- - Learning capture route: `node <skill>/scripts/run-gse-command.mjs --target <project-root> --command "/gse learn --summary <lesson>" --execute --json`
52
- - Existing project state/index update: `node <skill>/scripts/update-project-state.mjs --target <project-root>`
54
+ - Learning capture route: `node <skill>/scripts/run-gse-command.mjs --target <project-root> --command "/gse learn --summary <lesson>" --execute --json`
55
+ - Learning drift audit: `node <skill>/scripts/audit-learning-drift.mjs --root <skill> --target <project-root> --json`
56
+ - Target hardening drills: `node <skill>/scripts/audit-target-hardening-drills.mjs --root <skill> --aion-target <project-root> --museflow-target <project-root> --json`
57
+ - Maintenance cadence audit: `node <skill>/scripts/audit-maintenance-cadence.mjs --root <skill> --json`
58
+ - Maintenance snapshot: `node <skill>/scripts/generate-maintenance-snapshot.mjs --root <skill> --target <project-root> --installed-root <installed-skill-dir> --execute --json`
59
+ - Installed package smoke: `node <skill>/scripts/generate-maintenance-snapshot.mjs --root <installed-skill-dir> --target <installed-skill-dir> --package-smoke --skip-release-bundle --json`
60
+ - Installed sync audit: `node <skill>/scripts/audit-installed-sync.mjs --root <skill> --installed-root <installed-skill-dir> --json`
61
+ - Session sync record audit: `node <skill>/scripts/audit-session-sync.mjs --root <skill> --json`
62
+ - Conservative evidence-level backfill: `node <skill>/scripts/backfill-evidence-levels.mjs --root <project-root> --json`
63
+ - Historical evidence review queue: `node <skill>/scripts/audit-evidence-review-queue.mjs --root <skill> --target <project-root> --json`
64
+ - UI/browser evidence policy audit: `node <skill>/scripts/audit-ui-browser-evidence-policy.mjs --root <skill> --target <project-root> --json`
65
+ - Existing project state/index update: `node <skill>/scripts/update-project-state.mjs --target <project-root>`
53
66
  - Change spec pack: `node <skill>/scripts/init-change.mjs --target <project-root> --change-id <id> --level lite|standard|enterprise`
54
67
  - Public release record: `node <skill>/scripts/record-public-release.mjs --root <project-root> --license-status owner-required`
55
68
  - Release bundle: `node <skill>/scripts/generate-release-bundle.mjs --root <skill> --label <release-label> --out <bundle-dir>`
@@ -100,8 +113,9 @@ For long-running projects, bind the work to `.gse/goal-map.md` or the project's
100
113
  - Project-specific standards and tools: `references/project-profile.md`
101
114
  - Project-local agent workspace: `references/project-agent-workspace.md`
102
115
  - Host-specific adapters: `references/host-adapters.md`, `references/compatibility.md`
103
- - Benchmark and gap audit: `references/benchmark-audit.md`
104
- - Task level selection: `references/task-levels.md`
116
+ - Benchmark and gap audit: `references/benchmark-audit.md`
117
+ - Final form roadmap: `references/final-form-roadmap.md`, `scripts/audit-final-form-roadmap.mjs`
118
+ - Task level selection: `references/task-levels.md`
105
119
  - Goal maps: `references/goal-map.md`
106
120
  - Specs and change folders: `references/spec-workflow.md`
107
121
  - Agent roles and ownership: `references/agent-roles.md`, `references/file-ownership.md`
@@ -128,7 +142,7 @@ For long-running projects, bind the work to `.gse/goal-map.md` or the project's
128
142
  - Release owner action plan drill: `scripts/audit-release-owner-action-plan-drill.mjs`
129
143
  - Public release checklist: `scripts/generate-public-release-checklist.mjs`, `scripts/audit-public-release-checklist.mjs`
130
144
  - Final-form progress report: `scripts/generate-final-form-progress-report.mjs`, `scripts/audit-final-form-progress-report.mjs`
131
- - Packaging and maintenance: `references/packaging.md`
145
+ - Packaging and maintenance: `references/packaging.md`, `references/maintenance-cadence.md`, `scripts/audit-maintenance-cadence.mjs`, `scripts/generate-maintenance-snapshot.mjs`, `scripts/audit-maintenance-snapshot.mjs`, `scripts/audit-installed-sync.mjs`, `scripts/record-session-sync.mjs`, `scripts/audit-session-sync.mjs`
132
146
  - CI readiness: `.github/workflows/validate-gse.yml`, `scripts/audit-ci-readiness.mjs`
133
147
  - Public collaboration templates: `.github/PULL_REQUEST_TEMPLATE.md`, `.github/ISSUE_TEMPLATE/`, `scripts/audit-public-collaboration-templates.mjs`
134
148
  - Release trust and key custody: `references/release-trust.md`
@@ -142,7 +156,13 @@ For long-running projects, bind the work to `.gse/goal-map.md` or the project's
142
156
  - Final acceptance packet: `scripts/generate-final-acceptance-packet.mjs`, `scripts/audit-final-acceptance-packet.mjs`
143
157
  - Recovery and handoff: `references/recovery.md`
144
158
  - Forward testing: `references/forward-test.md`
145
- - Learning loop: `references/learning-system.md`
146
- - Learning capture: `scripts/record-learning.mjs`, `scripts/audit-learning-system.mjs`
147
- - Drift audit: `references/drift-audit.md`
159
+ - Learning loop: `references/learning-system.md`
160
+ - Learning capture: `scripts/record-learning.mjs`, `scripts/audit-learning-system.mjs`
161
+ - Learning drift: `scripts/audit-learning-drift.mjs`
162
+ - Conservative evidence-level backfill: `scripts/backfill-evidence-levels.mjs`
163
+ - Historical evidence review queue: `scripts/audit-evidence-review-queue.mjs`
164
+ - UI/browser evidence policy: `scripts/audit-ui-browser-evidence-policy.mjs`
165
+ - Target hardening drills: `scripts/audit-target-hardening-drills.mjs`
166
+ - Project guards: `references/project-guards.md`, `scripts/audit-project-guards.mjs`
167
+ - Drift audit: `references/drift-audit.md`
148
168
  - Design basis and source boundaries: `references/design-basis.md`
@@ -4,16 +4,21 @@ Use this when assigning work to a real subagent, another human/agent session, or
4
4
 
5
5
  Do not require this packet for tiny single-agent edits. Use it when delegation, role separation, file ownership, or review evidence matters.
6
6
 
7
- ## Execution Mode
8
-
9
- - Mode: real-subagent | sequential-role | handoff-session
10
- - Host/tool used:
11
- - Tool status: verified | documented | unknown | unavailable
12
- - If not real-subagent, state fallback reason:
7
+ ## Execution Mode
8
+
9
+ - Mode: real-subagent | sequential-role | handoff-session
10
+ - Real delegation used: yes | no
11
+ - Host/tool used:
12
+ - Tool status: verified | documented | unknown | unavailable
13
+ - If not real-subagent, state fallback reason:
14
+ - Dispatch evidence:
15
+ - Fallback execution:
16
+ - Role output evidence:
17
+ - Claim boundary:
13
18
 
14
19
  ## Role
15
20
 
16
- - Role: Coordinator | Product Analyst | Architect | Code Locator | Builder | Reviewer | QA | Docs/Evidence | Other:
21
+ - Role: Coordinator | Planner | Product Analyst | Architect | Locator | Implementer | Verifier | Reviewer | QA | Docs/Evidence | Release | Other:
17
22
  - Skill focus:
18
23
  - Model/tool preference, if project-approved:
19
24
 
@@ -75,12 +80,13 @@ Return a concise report with:
75
80
  - Residual risks:
76
81
  - Questions or blockers:
77
82
 
78
- ## Verification
79
-
80
- - Required focused test/smoke/check:
81
- - Acceptable evidence level: result | verified | accepted
82
- - What proves success:
83
- - What would fail the task:
83
+ ## Verification
84
+
85
+ - Required focused test/smoke/check:
86
+ - Evidence status: result | verified | accepted
87
+ - Acceptable evidence level: result | verified-unit | verified-component | verified-api | verified-browser | verified-ci | accepted-owner | accepted-release | external-required
88
+ - What proves success:
89
+ - What would fail the task:
84
90
 
85
91
  ## Stop Conditions
86
92
 
@@ -101,4 +107,6 @@ Stop and report `NEEDS_CONTEXT` or `BLOCKED` if:
101
107
 
102
108
  ## Notes For Sequential Fallback
103
109
 
104
- When no real subagent tool exists, use this packet as a role checklist in the main session. Say that no real delegation occurred if reporting delegation status matters. Keep role boundaries honest.
110
+ When no real subagent tool exists, use this packet as a role checklist in the main session. Say that no real delegation occurred if reporting delegation status matters. Keep role boundaries honest.
111
+
112
+ For repeatable role fallback packets, use `assets/templates/role-fallback-packet.md` and `references/role-dispatch-fallback.md`.
@@ -1,8 +1,14 @@
1
- # Evidence
2
-
3
- ## Verification Commands
4
-
5
- ## Results
1
+ # Evidence
2
+
3
+ ## Status
4
+
5
+ - Evidence status:
6
+ - Evidence level:
7
+ - Required evidence level:
8
+
9
+ ## Verification Commands
10
+
11
+ ## Results
6
12
 
7
13
  ## Files Changed
8
14
 
@@ -0,0 +1,49 @@
1
+ # Role Fallback Packet
2
+
3
+ Use this packet for one role in a real-subagent run, sequential fallback, or handoff session.
4
+
5
+ ## Dispatch Boundary
6
+
7
+ - Execution mode: real-subagent | sequential-role | handoff-session
8
+ - Real delegation used: yes | no
9
+ - Host/tool used:
10
+ - Tool status: verified | documented | unknown | unavailable
11
+ - Fallback reason:
12
+ - Dispatch evidence:
13
+
14
+ ## Role
15
+
16
+ - Role: Planner | Locator | Implementer | Verifier | Reviewer | Docs/Evidence | Release
17
+ - Skill focus:
18
+ - Objective:
19
+ - Non-goals:
20
+
21
+ ## Ownership
22
+
23
+ - Allowed files:
24
+ - Forbidden files:
25
+ - Read-only files:
26
+ - Shared files requiring coordinator review:
27
+ - Pre-existing dirty files:
28
+
29
+ ## Required Inputs
30
+
31
+ 1.
32
+ 2.
33
+ 3.
34
+
35
+ ## Expected Output
36
+
37
+ - Role output evidence:
38
+ - Files inspected:
39
+ - Files changed:
40
+ - Verification command/check:
41
+ - Evidence level: result | verified-unit | verified-component | verified-api | verified-browser | verified-ci | accepted-owner | accepted-release | external-required
42
+ - Residual risk:
43
+ - Stop condition:
44
+ - Claim boundary:
45
+
46
+ ## Completion
47
+
48
+ - Status: DONE | DONE_WITH_CONCERNS | NEEDS_CONTEXT | BLOCKED
49
+ - Coordinator integration required: yes | no
package/package.json CHANGED
@@ -1,10 +1,17 @@
1
1
  {
2
2
  "name": "@t275005746/gse",
3
- "version": "0.1.1",
3
+ "version": "0.1.2",
4
4
  "description": "Goal-Spec-Evidence Engineering workflow skill for long-running agent-assisted software projects.",
5
5
  "type": "module",
6
- "license": "MIT",
7
- "homepage": "https://gatehub.top/",
6
+ "license": "MIT",
7
+ "repository": {
8
+ "type": "git",
9
+ "url": "git+https://github.com/275005746/gse.git"
10
+ },
11
+ "bugs": {
12
+ "url": "https://github.com/275005746/gse/issues"
13
+ },
14
+ "homepage": "https://gatehub.top/",
8
15
  "bin": {
9
16
  "gse": "scripts/gse.mjs"
10
17
  },
@@ -30,13 +37,14 @@
30
37
  "references",
31
38
  "scripts"
32
39
  ],
33
- "scripts": {
34
- "audit:npm": "node scripts/audit-npm-package-metadata.mjs --root . --json",
35
- "audit:npm-install": "node scripts/audit-npm-tarball-install.mjs --root . --json",
36
- "audit:npm-publish": "node scripts/audit-npm-publish-dry-run.mjs --root . --json",
37
- "validate": "node scripts/validate-gse.mjs --root . --json",
38
- "pack:dry-run": "npm pack --dry-run --json"
39
- },
40
+ "scripts": {
41
+ "audit:npm": "node scripts/audit-npm-package-metadata.mjs --root . --json",
42
+ "audit:npm-install": "node scripts/audit-npm-tarball-install.mjs --root . --json",
43
+ "audit:npm-publish": "node scripts/audit-npm-publish-dry-run.mjs --root . --json",
44
+ "check:encoding": "node scripts/check-encoding.mjs",
45
+ "validate": "node scripts/validate-gse.mjs --root . --json",
46
+ "pack:dry-run": "npm pack --dry-run --json"
47
+ },
40
48
  "keywords": [
41
49
  "gse",
42
50
  "goal-spec-evidence",
@@ -2,11 +2,17 @@
2
2
 
3
3
  Use roles to make multi-agent work predictable.
4
4
 
5
- ## Coordinator
6
-
7
- Owns scope, task level, context selection, final integration, and final answer.
8
-
9
- Never delegates final judgment.
5
+ ## Coordinator
6
+
7
+ Owns scope, task level, context selection, final integration, and final answer.
8
+
9
+ Never delegates final judgment.
10
+
11
+ ## Planner
12
+
13
+ Defines the slice outcome, scope, acceptance, evidence, residual risk, and next action.
14
+
15
+ Maps to Coordinator or Product Analyst in smaller tasks.
10
16
 
11
17
  ## Product Analyst
12
18
 
@@ -16,13 +22,23 @@ Clarifies user outcome, pain, audience, competitive baseline, and priority.
16
22
 
17
23
  Defines state, data flow, module boundaries, contracts, risks, and rollback.
18
24
 
19
- ## Code Locator
20
-
21
- Read-only. Finds files, symbols, call chains, existing tests, and local patterns.
22
-
23
- ## Builder
24
-
25
- Implements a bounded slice. Avoids unrelated refactors.
25
+ ## Code Locator
26
+
27
+ Read-only. Finds files, symbols, call chains, existing tests, and local patterns.
28
+
29
+ Also called Locator in portable role fallback packets.
30
+
31
+ ## Builder
32
+
33
+ Implements a bounded slice. Avoids unrelated refactors.
34
+
35
+ Also called Implementer in portable role fallback packets.
36
+
37
+ ## Verifier
38
+
39
+ Runs focused checks and records what evidence level the check proves.
40
+
41
+ Maps to QA in smaller tasks.
26
42
 
27
43
  ## Reviewer
28
44
 
@@ -32,18 +48,23 @@ Checks correctness, regressions, architecture drift, security, and missing tests
32
48
 
33
49
  Runs focused verification, browser smoke, API smoke, or screenshot checks.
34
50
 
35
- ## Docs/Evidence
36
-
37
- Writes evidence, changelog notes, ADR links, and learning entries. Does not modify implementation unless explicitly assigned.
51
+ ## Docs/Evidence
52
+
53
+ Writes evidence, changelog notes, ADR links, and learning entries. Does not modify implementation unless explicitly assigned.
54
+
55
+ ## Release
56
+
57
+ Checks release, CI, package, public, owner, marketplace, registry, and host-runtime claim boundaries. Does not turn local evidence into external acceptance.
38
58
 
39
59
  ## Dispatch Rules
40
60
 
41
- - Use real subagent tools only when exposed by the current host.
42
- - Give each agent a role, files allowed, expected output, and forbidden actions. Use `assets/templates/dispatch-packet.md` when the assignment needs durable boundaries or evidence.
43
- - Avoid parallel writes to the same files.
44
- - If subagents are unavailable, execute roles sequentially in the main session and say so.
61
+ - Use real subagent tools only when exposed by the current host.
62
+ - Give each agent a role, files allowed, expected output, and forbidden actions. Use `assets/templates/dispatch-packet.md` when the assignment needs durable boundaries or evidence.
63
+ - For portable fallback packets, use `references/role-dispatch-fallback.md` and `assets/templates/role-fallback-packet.md`.
64
+ - Avoid parallel writes to the same files.
65
+ - If subagents are unavailable, execute roles sequentially in the main session and say so.
45
66
 
46
67
  ## File Ownership
47
68
 
48
- Use `references/file-ownership.md` before assigning write access, running parallel implementation, or editing in a dirty worktree. Keep locator, reviewer, and QA roles read-only unless explicitly assigned otherwise.
69
+ Use `references/file-ownership.md` before assigning write access, running parallel implementation, or editing in a dirty worktree. Keep locator, verifier, reviewer, release, and QA roles read-only unless explicitly assigned otherwise.
49
70