@t275005746/gse 0.1.1 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.gse/releases/public-github-release-v0.1.2.md +49 -0
- package/.gse/releases/public-registry-publication-npm.md +49 -49
- package/.gse/state.json +148 -26
- package/CHANGELOG.md +52 -8
- package/README.md +13 -6
- package/README.zh-CN.md +13 -6
- package/SKILL.md +32 -12
- package/assets/templates/dispatch-packet.md +22 -14
- package/assets/templates/evidence.md +11 -5
- package/assets/templates/role-fallback-packet.md +49 -0
- package/package.json +18 -10
- package/references/agent-roles.md +41 -20
- package/references/commands.md +75 -45
- package/references/drift-audit.md +2 -1
- package/references/evidence-taxonomy.md +46 -9
- package/references/file-ownership.md +17 -13
- package/references/final-form-roadmap.md +203 -0
- package/references/final-readiness.md +3 -3
- package/references/host-adapters.md +38 -10
- package/references/learning-system.md +24 -8
- package/references/maintenance-cadence.md +51 -0
- package/references/project-guards.md +52 -0
- package/references/quality-gates.md +18 -11
- package/references/role-dispatch-fallback.md +54 -0
- package/references/tool-adapters.md +13 -3
- package/scripts/audit-close-gate-hardening.mjs +188 -0
- package/scripts/audit-close-gate.mjs +219 -33
- package/scripts/audit-command-execution.mjs +30 -17
- package/scripts/audit-commands.mjs +7 -5
- package/scripts/audit-completion-plan-drill.mjs +271 -0
- package/scripts/audit-completion-readiness.mjs +9 -6
- package/scripts/audit-continue-preflight.mjs +318 -0
- package/scripts/audit-evidence-levels.mjs +217 -0
- package/scripts/audit-evidence-review-queue.mjs +206 -0
- package/scripts/audit-final-acceptance-packet.mjs +9 -9
- package/scripts/audit-final-form-progress-report.mjs +19 -18
- package/scripts/audit-final-form-roadmap.mjs +157 -0
- package/scripts/audit-final-form-stale-copy.mjs +2 -2
- package/scripts/audit-final-readiness.mjs +3 -3
- package/scripts/audit-fresh-session-readiness.mjs +1 -1
- package/scripts/audit-host-capabilities.mjs +237 -0
- package/scripts/audit-installed-sync.mjs +203 -0
- package/scripts/audit-learning-drift.mjs +292 -0
- package/scripts/audit-learning-promotion.mjs +351 -0
- package/scripts/audit-learning-system.mjs +24 -14
- package/scripts/audit-local-final-form-completion.mjs +11 -10
- package/scripts/audit-maintenance-cadence.mjs +139 -0
- package/scripts/audit-maintenance-snapshot.mjs +181 -0
- package/scripts/audit-npm-package-metadata.mjs +8 -2
- package/scripts/audit-npm-publish-dry-run.mjs +10 -4
- package/scripts/audit-npm-tarball-install.mjs +9 -3
- package/scripts/audit-owner-external-gate-kit.mjs +12 -11
- package/scripts/audit-project-guards.mjs +189 -0
- package/scripts/audit-project.mjs +14 -11
- package/scripts/audit-public-acceptance-handoff.mjs +10 -10
- package/scripts/audit-public-acceptance-readiness.mjs +6 -6
- package/scripts/audit-public-release-checklist.mjs +17 -15
- package/scripts/audit-release-bundle.mjs +13 -11
- package/scripts/audit-release-owner-action-plan-drill.mjs +5 -4
- package/scripts/audit-release-owner-action-plan.mjs +10 -10
- package/scripts/audit-release-status-manifest.mjs +4 -4
- package/scripts/audit-roadmap-consistency.mjs +11 -7
- package/scripts/audit-role-dispatch-fallback.mjs +212 -0
- package/scripts/audit-session-sync.mjs +127 -0
- package/scripts/audit-state-freshness.mjs +6 -5
- package/scripts/audit-state-repair.mjs +360 -0
- package/scripts/audit-target-hardening-drills.mjs +518 -0
- package/scripts/audit-tool-fallback-policy.mjs +180 -0
- package/scripts/audit-ui-browser-evidence-policy.mjs +191 -0
- package/scripts/audit-validation-profiles.mjs +6 -4
- package/scripts/backfill-evidence-levels.mjs +98 -0
- package/scripts/check-encoding.mjs +72 -0
- package/scripts/generate-continue-packet.mjs +1487 -0
- package/scripts/generate-final-acceptance-packet.mjs +23 -8
- package/scripts/generate-final-form-progress-report.mjs +25 -23
- package/scripts/generate-host-runtime-evidence-handoff.mjs +23 -16
- package/scripts/generate-maintenance-snapshot.mjs +216 -0
- package/scripts/generate-public-acceptance-handoff.mjs +26 -14
- package/scripts/generate-release-owner-action-plan.mjs +4 -3
- package/scripts/generate-release-status-manifest.mjs +4 -3
- package/scripts/init-project.mjs +144 -63
- package/scripts/record-learning.mjs +37 -8
- package/scripts/record-session-sync.mjs +87 -0
- package/scripts/run-gse-command.mjs +79 -47
- package/scripts/run-validation-profile.mjs +24 -5
- package/scripts/validate-gse.mjs +262 -9
|
@@ -0,0 +1,203 @@
|
|
|
1
|
+
# GSE Final Form Roadmap
|
|
2
|
+
|
|
3
|
+
This roadmap defines the final product shape for GSE itself. It is the canonical continuation plan for GSE development after local v1 capability has been proven.
|
|
4
|
+
|
|
5
|
+
The goal is not another patch cycle. Final form means a capable agent can enter a new or existing project, run a short GSE entry command, understand the project, select the next slice, execute with the right level of rigor, prove the result, and carry lessons forward without a long hand-written prompt.
|
|
6
|
+
|
|
7
|
+
## Completion Definition
|
|
8
|
+
|
|
9
|
+
GSE reaches final form when a new agent can enter any supported project and use `/gse continue` to obtain:
|
|
10
|
+
|
|
11
|
+
- the project identity, current goal, active slice, and next action,
|
|
12
|
+
- the required spec, quality gates, and evidence level,
|
|
13
|
+
- the available tools, missing tools, role boundaries, and fallback path,
|
|
14
|
+
- pending owner/external release evidence, plus any optional adapter claims that are not being made,
|
|
15
|
+
- the learning rules that should affect the current run,
|
|
16
|
+
- the exact checks needed before completion can be claimed.
|
|
17
|
+
|
|
18
|
+
Broken state, stale evidence, unsupported tool claims, noisy risk lists, and missing host/runtime evidence must be surfaced before implementation begins.
|
|
19
|
+
|
|
20
|
+
## Final Form Priorities
|
|
21
|
+
|
|
22
|
+
| Priority | Area | Outcome | Acceptance |
|
|
23
|
+
|---|---|---|---|
|
|
24
|
+
| P0 | Short entry takeover | `/gse continue` replaces long goal prompts for mature projects | A project with `.gse/` returns current slice, next action, claim-boundary evidence, and required checks through the portable runner; host-native command evidence is recorded only when a specific host adapter claims it |
|
|
25
|
+
| P1 | State system | Project state is readable, compact, repairable, and not a risk dump | State separates current summary, active slice, top risks, blocked gates, next checks, and archived risk history |
|
|
26
|
+
| P2 | Evidence gate | Claims cannot outrun evidence | Evidence index validity is a preflight gate; bad JSONL, stale records, and downgraded UI/browser proof are labeled before close |
|
|
27
|
+
| P3 | Spec and change lifecycle | GSE provides OpenSpec-style change control without requiring OpenSpec | Change packs move through proposed, active, implemented, verified, accepted, and archived states with goal-map links |
|
|
28
|
+
| P4 | Roles and subagents | GSE provides Superpowers-style execution discipline without requiring a specific subagent host | Planner, locator, implementer, verifier, reviewer, doc/evidence, and release roles have dispatch packets and fallback checklists; process skills do not prove real host dispatch |
|
|
29
|
+
| P5 | Tool and quality gates | Tool use is fast, explicit, and project-aware | LSP/index, browser, Playwright, MCP, CI, package manager, Windows shell, sparse checkout, UTF-8, and project custom gates are preflighted when relevant |
|
|
30
|
+
| P6 | Learning automation | Repeated failures become guards | Lessons dedupe, classify severity, and promote into project quality gates, templates, scripts, or skill updates |
|
|
31
|
+
| P7 | Project init and adapters | New projects get the right scaffold without heavy prerequisites | Lite, Standard, and Enterprise scaffolds create `.gse/` plus optional host pointers for `.codex`, `.claude`, `.mcp`, and similar folders |
|
|
32
|
+
| P8 | Release and distribution | GSE is installable, auditable, and maintainable as an open-source skill product | npm/package install, GitHub release, public CI, security contact, repository settings, registry/marketplace records, bilingual docs, checksums/signing, and update paths are verified or honestly gated |
|
|
33
|
+
| P9 | Benchmark and drills | GSE remains competitive with mature engineering skills | Regular audits compare against OpenSpec, Superpowers/BMAD-style roles, Comet-style phase discipline, and real projects such as AION and MuseFlow |
|
|
34
|
+
| P10 | Final acceptance | Final claims are backed by real evidence at the right claim level | AION doctor, MuseFlow doctor, new-project bootstrap, `/gse continue`, evidence repair, state compaction, role dispatch, learning promotion, package publication, public CI, and portable command execution pass; host-native invocation is optional per host adapter and must be recorded before that adapter claims it |
|
|
35
|
+
|
|
36
|
+
## First Execution Wave
|
|
37
|
+
|
|
38
|
+
1. Done: make `/gse continue` run a hard preflight: state JSON, evidence index, project profile, quality gates, canonical plan, stale risks, and pending owner/external release evidence when the target exposes it.
|
|
39
|
+
2. Done: split `.gse/state.json` into a compact default view and an archived risk/decision history so active sessions do not inherit unreadable residual risk blocks.
|
|
40
|
+
3. Done for continuation: promote evidence index validity from target-project doctor finding to blocking preflight for `/gse continue`; close-gate evidence index validation already remains in place.
|
|
41
|
+
4. Done: add explicit evidence levels for UI/browser/API/CI/owner/release/external proof: `verified-unit`, `verified-component`, `verified-api`, `verified-browser`, `verified-ci`, `accepted-owner`, `accepted-release`, and `external-required`.
|
|
42
|
+
5. Done: convert reusable lessons from AION and MuseFlow into guards: Windows shell syntax, sparse checkout staging, UTF-8-safe Chinese docs, stale evidence, browser-smoke downgrade labeling, no fake subagent dispatch, and non-interrupting cross-thread sync.
|
|
43
|
+
|
|
44
|
+
## Final Form Execution Plan
|
|
45
|
+
|
|
46
|
+
This plan turns the completion definition into ordered implementation waves. It is the working plan for GSE itself, not a project roadmap for projects that use GSE.
|
|
47
|
+
|
|
48
|
+
### Wave 1 - Short Entry And State Control
|
|
49
|
+
|
|
50
|
+
Outcome: mature projects can resume from a short `/gse continue` entry instead of a long hand-written prompt.
|
|
51
|
+
|
|
52
|
+
Status: verified; the hard preflight, compact state packet, completion plan, project guards, explicit evidence levels, role fallback readiness, and state/evidence repair path are verified. Native host slash-command evidence is an optional adapter claim, not a GSE core completion gate.
|
|
53
|
+
|
|
54
|
+
Completed slices:
|
|
55
|
+
|
|
56
|
+
- Done: `completionPlan` gives future agents exact required close steps, required close commands, and active conditional commands for encoding, installed-sync, maintenance snapshot, release bundle, and session sync.
|
|
57
|
+
- Done: completionPlan drill audit verifies clean worktrees have no false active conditionals and dirty docs/scripts/references/acceptance/evidence changes activate the expected close checks.
|
|
58
|
+
- Done: state repair path provides `/gse repair`, `CP14`, and concrete repair actions for stale state, bad JSONL, missing evidence files, next-action drift, and overlong residual risks.
|
|
59
|
+
- Done: `gateTaxonomy` separates core workflow blockers from release gates and host-adapter claim gates in `/gse continue` compact state.
|
|
60
|
+
- Done: generated/noisy artifacts stay visible in `/gse continue` as ignored paths but no longer count as actionable changes or trigger conditional close commands by themselves.
|
|
61
|
+
- Done: active residual risks and archived risk history are counted separately so `/gse continue` does not make historical risk archive entries look like current blockers.
|
|
62
|
+
- Done: the human-facing `/gse continue` prompt is a short action packet with project, root, slice, next action, close summary, risk summary, gate boundary, and do-step instead of long explanatory prose.
|
|
63
|
+
- Done: product-visible progress drift is surfaced through `compactState.productProgressDrift`, `CP22`, and a first-ranked `product-visible-recovery` next-slice candidate when repeated internal/component-level provenance or boundary slices risk replacing visible product workflow progress.
|
|
64
|
+
- Done: product outcome gating is surfaced through `compactState.productOutcomeGate`, `CP23`, and a first-ranked `product-visible-recovery` candidate when a product project repeatedly opens support/internal slices without a named user-visible delta; a deliberate support slice can declare a narrow `supportSliceBoundary`; GSE self-development is classified as `skill` and is not forced through this product gate.
|
|
65
|
+
|
|
66
|
+
Acceptance:
|
|
67
|
+
|
|
68
|
+
- `/gse continue` shows current slice, next action, top risks, claim-boundary evidence, required checks, relevant guard rules, evidence status, and completion plan.
|
|
69
|
+
- Bad evidence and stale state fail before implementation or return a repair action.
|
|
70
|
+
- Default output stays compact; historical risk detail stays archived.
|
|
71
|
+
|
|
72
|
+
### Wave 2 - Spec, Role, And Execution Discipline
|
|
73
|
+
|
|
74
|
+
Outcome: GSE provides OpenSpec-style change control and Superpowers-style execution discipline without requiring either tool.
|
|
75
|
+
|
|
76
|
+
Status: locally verified for portable execution discipline; role fallback packet outputs, no-fake-dispatch close checks, file-ownership/staged-artifact close checks, and host capability record audits are verified. Real-host dispatch evidence remains host-specific future evidence.
|
|
77
|
+
|
|
78
|
+
Boundary: OpenSpec-style and Superpowers-style workflows define requirements, change control, execution discipline, and review quality. They do not provide native slash commands, subagent dispatch, browser tooling, MCP, LSP, CI, or host UI integration by themselves. GSE follows the same boundary: those capabilities are optional host adapters and must be recorded as host evidence before they are claimed.
|
|
79
|
+
|
|
80
|
+
Required slices:
|
|
81
|
+
|
|
82
|
+
- Change lifecycle hardening: every active change can be opened, verified, closed, archived, and linked back to the goal map.
|
|
83
|
+
- Done: role packet execution fallback: planner, locator, implementer, verifier, reviewer, doc/evidence, and release roles have auditable packet outputs for sequential fallback.
|
|
84
|
+
- Done: no-fake-dispatch guard: close gate blocks real-subagent claims unless the current host/tool status is verified.
|
|
85
|
+
- Done: file ownership and dirty-worktree guard: close gate reports staged, unstaged, untracked, mixed, conflict, and generated/test artifact paths before close.
|
|
86
|
+
|
|
87
|
+
Acceptance:
|
|
88
|
+
|
|
89
|
+
- A real target project can run a change pack from open to archive.
|
|
90
|
+
- Role packets work both with real subagents and sequential fallback.
|
|
91
|
+
- Close gate rejects missing evidence, missing review, fake dispatch, and unrelated staged files when the project can expose that data.
|
|
92
|
+
|
|
93
|
+
### Wave 3 - Learning To Guard Promotion
|
|
94
|
+
|
|
95
|
+
Outcome: repeated user corrections and project failures become reusable engineering controls.
|
|
96
|
+
|
|
97
|
+
Status: locally verified; learning capture, duplicate occurrence counting, deterministic promotion analysis, candidate-only promotion reports, `/gse continue` CP15 visibility, and learning drift detection for promoted-but-unenforced candidates are verified.
|
|
98
|
+
|
|
99
|
+
Completed slices:
|
|
100
|
+
|
|
101
|
+
- Done: learning classifier categorizes lessons by shell, encoding, evidence, browser, git, host-tool, project-rule, and release.
|
|
102
|
+
- Done: duplicate learning capture increments `Occurrences` without appending noisy duplicate entries.
|
|
103
|
+
- Done: promotion paths follow note -> checklist/template -> guard/quality gate -> script/skill.
|
|
104
|
+
- Done: `/gse learn --promote` is read-only by default, `/gse learn --promote --execute` writes candidate-only `.gse/learning-promotions.md`, and `/gse continue` surfaces CP15 learning promotion status.
|
|
105
|
+
|
|
106
|
+
Completed slices:
|
|
107
|
+
|
|
108
|
+
- Done: drift audit detects when promoted learning candidates are not covered by project guards, quality gates, `/gse continue`, `/gse close`, or focused audit scripts.
|
|
109
|
+
|
|
110
|
+
Acceptance:
|
|
111
|
+
|
|
112
|
+
- A lesson can be recorded once, deduped, and promoted into a project guard with evidence.
|
|
113
|
+
- `/gse continue` and `/gse close` both surface promoted high-severity guards.
|
|
114
|
+
- AION/MuseFlow lessons are used as examples but no AION/MuseFlow-specific behavior is hardcoded.
|
|
115
|
+
|
|
116
|
+
### Wave 4 - Tool And Host Runtime Adapters
|
|
117
|
+
|
|
118
|
+
Outcome: GSE stays portable while using available tools aggressively.
|
|
119
|
+
|
|
120
|
+
Completed slices:
|
|
121
|
+
|
|
122
|
+
- Done: host capability audit records track native slash-command, browser, MCP, LSP, subagent, and CI status as `verified`, `documented`, `unknown`, `unavailable`, or `external-required`, with `/gse continue` `CP16` visibility and overclaim checks.
|
|
123
|
+
- Done: target-project hardening drills run GSE doctor, `/gse continue`, close gate, host capability, and learning drift checks against configured real projects without mutating target worktrees.
|
|
124
|
+
- Done: optional tool fallback policy audit verifies markdown fallback and claim boundaries across tool adapters, router, model routing, host adapters, project profile, generated command adapters, continue packet wiring, and validation profiles.
|
|
125
|
+
|
|
126
|
+
Required slices:
|
|
127
|
+
|
|
128
|
+
- Native slash-command evidence: record real host-native `/gse continue` invocation only when a host adapter claims native support.
|
|
129
|
+
- Done: Browser/UI evidence policy: `scripts/audit-ui-browser-evidence-policy.mjs` verifies that `verified-component`, `verified-api`, `verified-browser`, screenshot/visual inspection rules, continue/close downgrade surfacing, and validation wiring stay aligned.
|
|
130
|
+
|
|
131
|
+
Acceptance:
|
|
132
|
+
|
|
133
|
+
- GSE never claims native host support from portable command evidence alone.
|
|
134
|
+
- Browser/UI verification downgrade is labeled before close.
|
|
135
|
+
- Host adapter docs point back to `.gse/` and do not duplicate canonical rules.
|
|
136
|
+
|
|
137
|
+
### Wave 5 - Distribution, Public Trust, And Maintenance
|
|
138
|
+
|
|
139
|
+
Outcome: GSE can be installed, audited, updated, and maintained as an open-source skill product.
|
|
140
|
+
|
|
141
|
+
Required slices:
|
|
142
|
+
|
|
143
|
+
- Public release evidence: repository settings, CI, security contact, registry/package channel, marketplace/catalog, release bundle, checksum/signing, and update path records.
|
|
144
|
+
- Done: Installed skill sync: `scripts/audit-installed-sync.mjs` verifies fresh package output, package metadata/version preservation, source-root privacy, installed-copy hash parity, and installed-copy `/gse maintenance` smoke when `--installed-root` is supplied.
|
|
145
|
+
- Done: Session sync records: `scripts/record-session-sync.mjs` and `scripts/audit-session-sync.mjs` make installed-copy refresh and active-session sync attempts auditable without treating notification as adoption.
|
|
146
|
+
- Public docs hardening: keep README and bilingual docs concise, search-friendly, and free of defensive caveat bloat.
|
|
147
|
+
- Done: Maintenance cadence: `references/maintenance-cadence.md`, `/gse maintenance`, and `scripts/audit-maintenance-cadence.mjs` verify benchmark audit, drift audit, dependency/security review, forward-test, target drill, public acceptance, and installed-skill sync coverage.
|
|
148
|
+
- Done: Maintenance snapshot failure isolation: failed canonical `latest-maintenance-snapshot.json` writes are redirected to `latest-maintenance-snapshot.failed.json` so release-bundle and maintenance freshness loops keep the last passing canonical snapshot.
|
|
149
|
+
|
|
150
|
+
Acceptance:
|
|
151
|
+
|
|
152
|
+
- `validate-gse` passes the appropriate profile for the release stage.
|
|
153
|
+
- Public acceptance rows are accepted only with real owner/external evidence.
|
|
154
|
+
- A clean consumer project can install GSE, run `gse status`, initialize `.gse/`, and execute `/gse continue` through the portable runner.
|
|
155
|
+
|
|
156
|
+
## Current Final-Form Gap List
|
|
157
|
+
|
|
158
|
+
These items should drive future slices only when the claim is being made:
|
|
159
|
+
|
|
160
|
+
- Short entry takeover is verified through the portable runner; `/gse continue` now exposes a compact action prompt, `completionPlan`, `gateTaxonomy`, generated/noisy ignored paths, active-versus-archived risk counts, product-visible progress drift warnings, and product outcome gating for product projects. Real host-native slash-command evidence is optional per host adapter.
|
|
161
|
+
- Project guards, learning promotion candidates, learning drift status, no-fake-dispatch/file-ownership close checks, host capability records, and target-project hardening drills now surface or execute through portable audits; AION/MuseFlow drill warnings remain project-local readiness signals, not GSE hard failures.
|
|
162
|
+
- Evidence index validity is a hard preflight; evidence level granularity, state/evidence repair actions, and conservative historical evidence-level backfill are implemented.
|
|
163
|
+
- Role fallback packets and host capability records are auditable through scaffold, `/gse continue`, and focused audits; real subagent dispatch still needs current host evidence.
|
|
164
|
+
- Process skills such as OpenSpec, Superpowers, Comet, and GSE provide workflow discipline and portable artifacts; they do not satisfy host-native slash-command, subagent, browser, MCP, LSP, CI, or host UI evidence rows.
|
|
165
|
+
- Learning capture, occurrence counting, classification, candidate promotion, candidate drift detection, and read-only target-project hardening drills are locally verified; remaining gaps are project-specific product evidence and external host evidence.
|
|
166
|
+
- Public/package release mechanics, browser/UI evidence policy, maintenance cadence, installed/package sync freshness checks, active-session sync records, and portable command execution are verified; optional host-native slash-command evidence is recorded only for hosts that actually expose native support.
|
|
167
|
+
- Failed canonical maintenance snapshot writes are isolated from the last passing snapshot; `.failed.json` is the diagnostic surface for failed runs.
|
|
168
|
+
|
|
169
|
+
## Goal Mode Operating Contract
|
|
170
|
+
|
|
171
|
+
Use this when continuing GSE itself in a goal-mode session:
|
|
172
|
+
|
|
173
|
+
```text
|
|
174
|
+
Goal: implement GSE final form as a portable, installable, evidence-driven engineering skill for long-running agent-assisted software projects.
|
|
175
|
+
|
|
176
|
+
Workspace:
|
|
177
|
+
<path-to-gse-repo>
|
|
178
|
+
|
|
179
|
+
Start:
|
|
180
|
+
1. Read the installed GSE `SKILL.md`.
|
|
181
|
+
2. Read .gse/gse-design-master-plan.md, .gse/goal-map.md, .gse/current-slice.md, .gse/state.json, and references/final-form-roadmap.md.
|
|
182
|
+
3. Continue from the current slice and the highest-priority unfinished Final Form roadmap item.
|
|
183
|
+
4. Keep GSE generic. Do not add AION-only or MuseFlow-only behavior; use them as drills and evidence targets.
|
|
184
|
+
|
|
185
|
+
Loop:
|
|
186
|
+
Goal -> Spec -> Execute -> Evidence -> Learn.
|
|
187
|
+
|
|
188
|
+
Slice rule:
|
|
189
|
+
Do one verifiable slice at a time. Each slice must state outcome, scope, acceptance, evidence, risk, and next action. Prefer executable scripts, templates, and gates over prose-only rules.
|
|
190
|
+
|
|
191
|
+
Verification:
|
|
192
|
+
Run the smallest focused audit that proves the slice. For docs-only final-form routing changes, run audit-final-form-roadmap, roadmap consistency, JSON/UTF-8 sanity, and a smoke validation profile. For release or package claims, run the matching release/package audit.
|
|
193
|
+
|
|
194
|
+
Evidence:
|
|
195
|
+
Append evidence to .gse/evidence/YYYY-MM-DD.md and .gse/evidence/index.jsonl. Do not claim public, native host, marketplace, registry, CI, or owner acceptance without matching accepted records.
|
|
196
|
+
|
|
197
|
+
Completion:
|
|
198
|
+
A slice is complete only after focused validation passes, evidence is recorded, state/current-slice/goal-map are updated, and the changes are committed.
|
|
199
|
+
```
|
|
200
|
+
|
|
201
|
+
## Claim Boundary
|
|
202
|
+
|
|
203
|
+
This roadmap is a contract for final-form development, not proof for every optional adapter claim. The live claim boundary remains `references/final-readiness.md` plus `scripts/audit-final-readiness.mjs`.
|
|
@@ -39,7 +39,7 @@ The table below describes the baseline/status source for each row. The current t
|
|
|
39
39
|
| Marketplace approval | real marketplace/catalog approval or publication evidence | record-driven external gate |
|
|
40
40
|
| Portable command execution | `run-gse-command.mjs` command semantics audit | verified |
|
|
41
41
|
| Host adapters | generated adapter files and compatibility matrix audit | verified |
|
|
42
|
-
| Native slash command | verified host invocation record
|
|
42
|
+
| Native slash command | optional per-host adapter claim; verified only if a host invocation record proves native slash support | not claimed by GSE core |
|
|
43
43
|
| Other host runtime invocation | verified invocation records per host | record-driven external gate |
|
|
44
44
|
|
|
45
45
|
Do not read the baseline column as live status. For example, once the owner-selected license record is accepted, the audit reports `License decision` as `verified` even though the row remains an owner-gated claim type.
|
|
@@ -52,7 +52,7 @@ node <gse-skill>/scripts/audit-final-readiness.mjs --root <gse-skill>
|
|
|
52
52
|
|
|
53
53
|
The audit must report external and owner gates as incomplete unless corresponding records exist. It is valid for the audit to pass while still reporting `owner-required` or `external-required`; passing means the matrix is honest and complete, not that every external gate is satisfied.
|
|
54
54
|
|
|
55
|
-
Accepted owner/external records promote final rows only when the record contains accepted evidence and the relevant boundary proof. For example, a public CI row requires an accepted public CI run record with a successful conclusion and required-check proof; a registry row requires accepted publication evidence with registry proof
|
|
55
|
+
Accepted owner/external records promote final rows only when the record contains accepted evidence and the relevant boundary proof. For example, a public CI row requires an accepted public CI run record with a successful conclusion and required-check proof; a registry row requires accepted publication evidence with registry proof. Native slash command support is a per-host optional adapter claim, not a GSE core completion gate; claim it only after a host invocation record proves native slash-command support.
|
|
56
56
|
|
|
57
57
|
Use the promotion audit to verify that this path still works:
|
|
58
58
|
|
|
@@ -81,4 +81,4 @@ GSE can be described as publicly accepted only after:
|
|
|
81
81
|
- public repository settings evidence exists when a public source repository is claimed,
|
|
82
82
|
- public CI run evidence exists when public CI is claimed,
|
|
83
83
|
- registry or marketplace publication evidence exists when those channels are claimed,
|
|
84
|
-
- native slash-command support is recorded per host before it is claimed.
|
|
84
|
+
- native slash-command support is recorded per host before it is claimed by that host adapter.
|
|
@@ -2,11 +2,13 @@
|
|
|
2
2
|
|
|
3
3
|
Use this when a project needs GSE to work across Codex, Claude Code, Hermes/AION-style runtimes, WorkBuddy, Copilot-style agents, Gemini-style agents, or another agent host. Use `references/compatibility.md` to check host support status and adoption evidence before making capability claims.
|
|
4
4
|
|
|
5
|
-
## Core Rule
|
|
6
|
-
|
|
7
|
-
`.gse/` is the portable source of truth. Host-specific folders are adapters.
|
|
8
|
-
|
|
9
|
-
Adapters may expose commands, hooks, skills, MCP servers, indexes, or local UI metadata for one host, but they must point back to `.gse/` for project policy, goals, evidence, quality gates, and learning rules.
|
|
5
|
+
## Core Rule
|
|
6
|
+
|
|
7
|
+
`.gse/` is the portable source of truth. Host-specific folders are adapters.
|
|
8
|
+
|
|
9
|
+
Adapters may expose commands, hooks, skills, MCP servers, indexes, or local UI metadata for one host, but they must point back to `.gse/` for project policy, goals, evidence, quality gates, and learning rules.
|
|
10
|
+
|
|
11
|
+
Process skills such as OpenSpec, Superpowers, Comet, and GSE can define workflow discipline, specs, roles, evidence, and quality gates. They do not create host-native slash commands, real subagent dispatch, browser automation, MCP servers, LSP indexes, CI runners, or host UI integration. Treat those as host capabilities and verify them through records before claiming support.
|
|
10
12
|
|
|
11
13
|
## Adapter Decision
|
|
12
14
|
|
|
@@ -17,7 +19,7 @@ Create or update a host adapter only when at least one condition is true:
|
|
|
17
19
|
- A host-specific capability needs a short pointer to `.gse/` to avoid duplicate policy.
|
|
18
20
|
- A migration is needed from an existing `.claude/`, `.codex/`, `.agents/`, or runtime-specific workflow into `.gse/`.
|
|
19
21
|
|
|
20
|
-
Do not create host folders just for decoration. If the host capability is unknown, document it as `unknown` in `.gse/project-profile.md
|
|
22
|
+
Do not create host folders just for decoration. If the host capability is unknown, document it as `unknown` in `.gse/project-profile.md`, `.gse/tooling.md`, or `.gse/host-capabilities.md`.
|
|
21
23
|
|
|
22
24
|
## Supported Host Shapes
|
|
23
25
|
|
|
@@ -75,9 +77,9 @@ node <gse-skill>/scripts/audit-host-runtime-invocation-drill.mjs --root <skill-o
|
|
|
75
77
|
|
|
76
78
|
The drill writes temporary records for Claude, Codex, Hermes/AION-style, WorkBuddy, and generic hosts, then audits native versus portable evidence counts. It proves the record/audit mechanics only; it does not prove real host runtime support.
|
|
77
79
|
|
|
78
|
-
Generated adapters are not runtime proof. A host capability becomes verified only when a persistent host invocation record exists and the audit can parse it.
|
|
79
|
-
|
|
80
|
-
Minimum fields:
|
|
80
|
+
Generated adapters are not runtime proof. A host capability becomes verified only when a persistent host invocation record exists and the audit can parse it.
|
|
81
|
+
|
|
82
|
+
Minimum fields:
|
|
81
83
|
|
|
82
84
|
- Host name and adapter path.
|
|
83
85
|
- Source of truth: always `.gse/` unless the project explicitly says otherwise.
|
|
@@ -85,7 +87,33 @@ Minimum fields:
|
|
|
85
87
|
- Unverified or unavailable capabilities.
|
|
86
88
|
- How to start meaningful work in this host.
|
|
87
89
|
- Safety and permissions.
|
|
88
|
-
- Drift check owner or cadence.
|
|
90
|
+
- Drift check owner or cadence.
|
|
91
|
+
|
|
92
|
+
## Host Capability Records
|
|
93
|
+
|
|
94
|
+
Use `.gse/host-capabilities.md` to keep a compact, auditable status table for host-native and tool capabilities:
|
|
95
|
+
|
|
96
|
+
- `native-slash-command`
|
|
97
|
+
- `browser`
|
|
98
|
+
- `mcp`
|
|
99
|
+
- `lsp`
|
|
100
|
+
- `subagent`
|
|
101
|
+
- `ci`
|
|
102
|
+
|
|
103
|
+
Status vocabulary: `verified`, `documented`, `unknown`, `unavailable`, `external-required`.
|
|
104
|
+
|
|
105
|
+
Rules:
|
|
106
|
+
|
|
107
|
+
- `verified` needs concrete project or host evidence.
|
|
108
|
+
- Native slash-command support cannot be verified from portable `run-gse-command.mjs` output.
|
|
109
|
+
- `documented` and `external-required` rows must include a claim boundary.
|
|
110
|
+
- Missing records are a continuation warning for new projects; invalid or overclaimed records fail the host capability audit.
|
|
111
|
+
|
|
112
|
+
Audit command:
|
|
113
|
+
|
|
114
|
+
```text
|
|
115
|
+
node <gse-skill>/scripts/audit-host-capabilities.mjs --target <project-root> --json
|
|
116
|
+
```
|
|
89
117
|
|
|
90
118
|
## Tool Status Rules
|
|
91
119
|
|
|
@@ -21,15 +21,31 @@ Learnings keep long projects from repeating mistakes.
|
|
|
21
21
|
|
|
22
22
|
Use `references/drift-audit.md` when a repeated lesson suggests stale docs, stale project-profile facts, stale host adapters, stale tool assumptions, or stale evidence state.
|
|
23
23
|
|
|
24
|
-
- First occurrence: learning note.
|
|
25
|
-
- Second occurrence: checklist or template update.
|
|
26
|
-
- Third occurrence: project rule or quality gate.
|
|
27
|
-
- Fifth occurrence: script, test, or dedicated skill.
|
|
24
|
+
- First occurrence: learning note.
|
|
25
|
+
- Second occurrence: checklist or template update.
|
|
26
|
+
- Third occurrence: project guard, project rule, or quality gate.
|
|
27
|
+
- Fifth occurrence: script, test, or dedicated skill.
|
|
28
|
+
|
|
29
|
+
Use `scripts/audit-learning-promotion.mjs --target <project-root> --json` to classify and count repeated lessons. The audit is read-only by default. Use `/gse learn --promote --execute` only to write `.gse/learning-promotions.md` candidate output; it does not mutate `.gse/project-guards.md`, `.gse/quality-gates.md`, templates, scripts, or skill files without a deliberate follow-up change.
|
|
30
|
+
|
|
31
|
+
Use `scripts/audit-learning-drift.mjs --root <gse-skill> --target <project-root> --json` after promotion analysis. It checks whether promoted guard or script candidates are covered by project guards, quality gates, `/gse continue`, `/gse close`, or a focused audit script. Uncovered high-severity candidates are surfaced as warnings so the next slice can deliberately promote them.
|
|
32
|
+
|
|
33
|
+
Promotion categories:
|
|
34
|
+
|
|
35
|
+
- `shell`: shell syntax, host command behavior, Windows/Unix command differences.
|
|
36
|
+
- `encoding`: UTF-8, mojibake, localized document handling.
|
|
37
|
+
- `evidence`: JSONL, evidence levels, stale records, close gates.
|
|
38
|
+
- `browser`: browser smoke, Playwright, screenshot, component-test downgrade.
|
|
39
|
+
- `git`: sparse checkout, staging, commit boundaries.
|
|
40
|
+
- `host-tool`: subagents, MCP, LSP, native slash commands, host runtime claims.
|
|
41
|
+
- `project-rule`: canonical plans, AGENTS.md, local project conventions.
|
|
42
|
+
- `release`: CI, registry, marketplace, security contact, release evidence.
|
|
28
43
|
|
|
29
44
|
## Suggested Stores
|
|
30
45
|
|
|
31
|
-
- `.gse/learnings.md` for portable project lessons.
|
|
32
|
-
- `.
|
|
33
|
-
-
|
|
34
|
-
-
|
|
46
|
+
- `.gse/learnings.md` for portable project lessons.
|
|
47
|
+
- `.gse/project-guards.md` for recurring preflight rules promoted from lessons.
|
|
48
|
+
- `.learnings/` when the project already uses that convention.
|
|
49
|
+
- `AGENTS.md` for durable project rules.
|
|
50
|
+
- ADRs for architectural decisions.
|
|
35
51
|
|
|
@@ -0,0 +1,51 @@
|
|
|
1
|
+
# GSE Maintenance Cadence
|
|
2
|
+
|
|
3
|
+
GSE final form requires recurring checks, not only one-time release proof. This cadence keeps benchmark coverage, drift detection, security review, forward testing, and target-project drills visible while host-native slash-command evidence remains an external gate.
|
|
4
|
+
|
|
5
|
+
## Cadence Table
|
|
6
|
+
|
|
7
|
+
| Area | Trigger | Minimum Cadence | Evidence | Command |
|
|
8
|
+
|---|---|---|---|---|
|
|
9
|
+
| Benchmark audit | Non-trivial GSE capability change or new comparable engineering skill | Monthly or before release | `.gse/benchmark-audits/` entry or roadmap update | `node scripts/audit-final-form-roadmap.mjs --root . --json` |
|
|
10
|
+
| Drift audit | Project guard, learning, adapter, command, or state model changes | Weekly or before close | Learning drift and state freshness output | `node scripts/audit-learning-drift.mjs --root . --target . --json` |
|
|
11
|
+
| Dependency and security review | Release, install, package, registry, CI, or external input changes | Monthly or before release | Release trust, CI readiness, and public acceptance outputs | `node scripts/audit-release-trust.mjs --root . --json` |
|
|
12
|
+
| Forward test | Non-trivial routing, command, scaffold, validation, or package change | Before release and after major workflow changes | Fixture or fresh-session forward-test evidence | `node scripts/forward-test-gse.mjs --root . --json` |
|
|
13
|
+
| Target-project hardening drill | GSE adoption, continue, close, host capability, or learning behavior changes | Weekly or before public release | Read-only target drill output | `node scripts/audit-target-hardening-drills.mjs --root . --json` |
|
|
14
|
+
| Public acceptance doctor | Public release, registry, marketplace, host, or owner evidence changes | Before release or public claim | Pending owner/external gate report | `node scripts/audit-public-acceptance-readiness.mjs --root . --json` |
|
|
15
|
+
| Command runner smoke | `/gse` command routing, portable command wrapper, or short-entry behavior changes | Every command-router change | Portable runner output from `scripts/run-gse-command.mjs` | `node scripts/run-gse-command.mjs --root . --target . --command "/gse maintenance" --json --compact` |
|
|
16
|
+
| Installed skill sync | Any capability upgrade shipped from source to installed skill | Every capability upgrade | Installed-copy hash comparison and command smoke from `scripts/audit-installed-sync.mjs` | `node scripts/audit-installed-sync.mjs --root . --installed-root <installed-skill-dir> --json` |
|
|
17
|
+
| Active session sync | Any capability upgrade that should reach active GSE-using sessions | Every capability upgrade when active sessions exist | Honest sent, archived, unavailable, failed, or skipped records from `scripts/record-session-sync.mjs` plus `scripts/audit-session-sync.mjs` | `node scripts/audit-session-sync.mjs --root . --require-installed --require-thread <thread-id> --json` |
|
|
18
|
+
|
|
19
|
+
## Maintenance Snapshot
|
|
20
|
+
|
|
21
|
+
Use a snapshot when the goal is to prove that the recurring checks actually ran, not only that the cadence is documented.
|
|
22
|
+
|
|
23
|
+
```powershell
|
|
24
|
+
node scripts/generate-maintenance-snapshot.mjs --root . --target . --installed-root <installed-skill-dir> --execute --json
|
|
25
|
+
```
|
|
26
|
+
|
|
27
|
+
The canonical output is `.gse/maintenance/latest-maintenance-snapshot.json` plus a Markdown sibling. Without `--installed-root`, the installed-sync row is package-only and must not be used as installed-copy freshness proof.
|
|
28
|
+
|
|
29
|
+
For an installed package smoke, use package mode so source-worktree-only roadmap and release-bundle freshness checks do not become false blockers:
|
|
30
|
+
|
|
31
|
+
```powershell
|
|
32
|
+
node scripts/generate-maintenance-snapshot.mjs --root <installed-skill-dir> --target <installed-skill-dir> --package-smoke --skip-release-bundle --json
|
|
33
|
+
```
|
|
34
|
+
|
|
35
|
+
Package smoke proves the installed copy can run the maintenance command set. The source repository remains responsible for canonical roadmap, release bundle, and installed-root freshness evidence.
|
|
36
|
+
|
|
37
|
+
## Close Rule
|
|
38
|
+
|
|
39
|
+
Maintenance evidence is not a substitute for native host evidence, public CI, marketplace approval, or owner acceptance. It only proves that GSE has a repeatable upkeep loop and that remaining external gates stay visible.
|
|
40
|
+
|
|
41
|
+
Before claiming a maintenance-sensitive slice complete, run:
|
|
42
|
+
|
|
43
|
+
```powershell
|
|
44
|
+
node scripts/audit-maintenance-cadence.mjs --root . --json
|
|
45
|
+
node scripts/generate-maintenance-snapshot.mjs --root . --target . --installed-root <installed-skill-dir> --execute --json
|
|
46
|
+
node scripts/audit-maintenance-snapshot.mjs --root . --json
|
|
47
|
+
node scripts/run-gse-command.mjs --root . --target . --command "/gse maintenance" --json --compact
|
|
48
|
+
node scripts/audit-installed-sync.mjs --root . --installed-root <installed-skill-dir> --json
|
|
49
|
+
node scripts/audit-session-sync.mjs --root . --json
|
|
50
|
+
node scripts/run-validation-profile.mjs --target . --profile lite --json
|
|
51
|
+
```
|
|
@@ -0,0 +1,52 @@
|
|
|
1
|
+
# Project Guards
|
|
2
|
+
|
|
3
|
+
Project guards are reusable preflight rules promoted from repeated project lessons.
|
|
4
|
+
|
|
5
|
+
They sit between learning notes and hard quality gates:
|
|
6
|
+
|
|
7
|
+
```text
|
|
8
|
+
lesson -> project guard -> quality gate -> script/test/skill update
|
|
9
|
+
```
|
|
10
|
+
|
|
11
|
+
Use guards when a mistake is likely to recur across sessions, but the rule still needs project context.
|
|
12
|
+
|
|
13
|
+
## Guard File
|
|
14
|
+
|
|
15
|
+
Default project-local path:
|
|
16
|
+
|
|
17
|
+
```text
|
|
18
|
+
.gse/project-guards.md
|
|
19
|
+
```
|
|
20
|
+
|
|
21
|
+
The file uses a small table so humans can edit it and scripts can audit it:
|
|
22
|
+
|
|
23
|
+
| ID | Guard | Severity | Trigger | Check | Status |
|
|
24
|
+
|---|---|---|---|---|---|
|
|
25
|
+
| UTF8-DOC | Use UTF-8-safe readers for Chinese or multilingual docs before judging mojibake. | high | Chinese docs or encoding complaint | Read with Node UTF-8 or another UTF-8-safe viewer; run the project encoding check when docs changed. | active |
|
|
26
|
+
|
|
27
|
+
## Default Guard Set
|
|
28
|
+
|
|
29
|
+
- `WIN-SHELL`: shell syntax must match the active host.
|
|
30
|
+
- `SPARSE-GIT`: sparse checkout must be checked before staging generated workflow folders.
|
|
31
|
+
- `UTF8-DOC`: multilingual docs need UTF-8-safe reads and encoding checks.
|
|
32
|
+
- `EVIDENCE-STALE`: stale or broken evidence is a preflight issue.
|
|
33
|
+
- `UI-EVIDENCE`: UI/browser downgrades must be labeled explicitly.
|
|
34
|
+
- `SUBAGENT-HONEST`: subagent dispatch claims require real host evidence.
|
|
35
|
+
- `SYNC-NO-INTERRUPT`: cross-thread GSE upgrade sync must not interrupt a running project session.
|
|
36
|
+
|
|
37
|
+
## Continue Behavior
|
|
38
|
+
|
|
39
|
+
`/gse continue` reads `.gse/project-guards.md` when present and returns an active guard summary in the compact packet.
|
|
40
|
+
|
|
41
|
+
Missing guard files are a warning for mature projects, not a hard failure. Broken state or evidence remains the hard preflight failure.
|
|
42
|
+
|
|
43
|
+
## Promotion
|
|
44
|
+
|
|
45
|
+
- First occurrence: record in `.gse/learnings.md`.
|
|
46
|
+
- Second occurrence: update a checklist, template, or guard candidate.
|
|
47
|
+
- Third occurrence: promote to `.gse/project-guards.md` or `.gse/quality-gates.md`.
|
|
48
|
+
- Fifth occurrence: automate as a script, test, or skill update.
|
|
49
|
+
|
|
50
|
+
Do not hardcode product-specific behavior into the GSE skill. AION and MuseFlow can supply examples and evidence, but project guards must stay generic.
|
|
51
|
+
|
|
52
|
+
Cross-thread sync is a guard-sensitive action: prefer evidence records, release notes, or owner action notes. Send a message to another active project session only when it is idle or the owner explicitly asks for immediate sync.
|
|
@@ -6,13 +6,19 @@ Pick gates by task risk.
|
|
|
6
6
|
|
|
7
7
|
- Outcome matches request.
|
|
8
8
|
- Scope did not expand silently.
|
|
9
|
-
- Acceptance has evidence.
|
|
10
|
-
- Evidence status uses `evidence-taxonomy.md`: result, verified, or accepted.
|
|
11
|
-
-
|
|
12
|
-
-
|
|
9
|
+
- Acceptance has evidence.
|
|
10
|
+
- Evidence status uses `evidence-taxonomy.md`: result, verified, or accepted.
|
|
11
|
+
- Evidence level uses `evidence-taxonomy.md`: `result`, `verified-unit`, `verified-component`, `verified-api`, `verified-browser`, `verified-ci`, `accepted-owner`, `accepted-release`, or `external-required`.
|
|
12
|
+
- Do not claim `verified` or `accepted` when evidence only proves `result`.
|
|
13
|
+
- Do not describe `verified-component` or `verified-api` as `verified-browser`; record a downgrade when browser proof was required but only component/API proof ran.
|
|
14
|
+
- Dirty worktree contains only intended files; use `references/file-ownership.md` when ownership or pre-existing changes are unclear.
|
|
15
|
+
- Close checks must surface role-dispatch honesty, staged/unstaged/untracked worktree state, and staged generated/test artifacts before a slice is called complete.
|
|
13
16
|
- Final answer states evidence and remaining risk.
|
|
14
|
-
- Use `references/recovery.md` when work is interrupted, verification fails, rollback/resume decisions are needed, or another agent/session must continue.
|
|
15
|
-
-
|
|
17
|
+
- Use `references/recovery.md` when work is interrupted, verification fails, rollback/resume decisions are needed, or another agent/session must continue.
|
|
18
|
+
- Check `.gse/project-guards.md` through `/gse continue` or `scripts/audit-project-guards.mjs` when recurring lessons may affect the slice.
|
|
19
|
+
- Check `.gse/host-capabilities.md` through `/gse continue` or `scripts/audit-host-capabilities.mjs` before claiming native slash-command, browser, MCP, LSP, subagent, or CI support.
|
|
20
|
+
- Check learning drift through `/gse continue` or `scripts/audit-learning-drift.mjs` before closing repeated-failure lessons as enforced.
|
|
21
|
+
- Use `references/review.md` when task risk requires spec compliance, code quality, architecture drift, security/privacy, regression, or evidence review.
|
|
16
22
|
- Use `references/domain-quality-gates.md` when task risk involves security/privacy, performance/cost, accessibility, resilience/recovery, UI/browser, API/state, data/migration, model/tool routing, or release/operations concerns.
|
|
17
23
|
- Use `references/architecture-health.md` when the task touches structural boundaries, coupling, source-of-truth drift, ownership, dependency/security risk, performance/resilience, migration, or release impact.
|
|
18
24
|
- Use `references/forward-test.md` for non-trivial GSE skill, scaffold, router, role, adapter, release, recovery, or packaging changes.
|
|
@@ -63,11 +69,12 @@ node <gse-skill>/scripts/run-validation-profile.mjs --target <project-root> --pr
|
|
|
63
69
|
|
|
64
70
|
Use this runner when a host, user, or future agent needs a stable command instead of hand-selecting individual audit scripts.
|
|
65
71
|
|
|
66
|
-
## UI Gates
|
|
67
|
-
|
|
68
|
-
- Component test or browser smoke for visible behavior.
|
|
69
|
-
- Screenshot or visual inspection for layout-sensitive work.
|
|
70
|
-
-
|
|
72
|
+
## UI Gates
|
|
73
|
+
|
|
74
|
+
- Component test or browser smoke for visible behavior.
|
|
75
|
+
- Screenshot or visual inspection for layout-sensitive work.
|
|
76
|
+
- Use `verified-component` for component-only UI proof and `verified-browser` for browser/screenshot-backed UI proof.
|
|
77
|
+
- Loading, empty, error, success, retry, and cancelled states covered when relevant.
|
|
71
78
|
|
|
72
79
|
## Agent/Product Gates
|
|
73
80
|
|
|
@@ -0,0 +1,54 @@
|
|
|
1
|
+
# Role Dispatch Fallback
|
|
2
|
+
|
|
3
|
+
Use this reference when real subagent tools are unavailable, unknown, or not appropriate for the current slice.
|
|
4
|
+
|
|
5
|
+
GSE must never turn role names into fake delegation. A role packet is evidence that the work boundary was explicit; it is not evidence that a real subagent ran unless the host produced current dispatch evidence.
|
|
6
|
+
|
|
7
|
+
## Required Roles
|
|
8
|
+
|
|
9
|
+
The portable fallback set is:
|
|
10
|
+
|
|
11
|
+
| Role | Purpose | Default write access | Fallback output |
|
|
12
|
+
|---|---|---|---|
|
|
13
|
+
| Planner | Define outcome, scope, acceptance, evidence, risk, and next action. | docs/state only | Slice plan with non-goals and selected gates |
|
|
14
|
+
| Locator | Locate files, symbols, commands, existing tests, and ownership boundaries. | read-only | File/function/test map and relevant patterns |
|
|
15
|
+
| Implementer | Make the bounded code or document change. | assigned files only | Diff summary and files changed |
|
|
16
|
+
| Verifier | Run focused tests, smokes, audits, or structural checks. | evidence/test output only | Commands, results, evidence level, residual risk |
|
|
17
|
+
| Reviewer | Review spec compliance, regression risk, quality, and missing tests. | read-only | Findings or explicit no-findings report |
|
|
18
|
+
| Docs/Evidence | Record slice evidence, state changes, release notes, and learnings. | docs/evidence only | Evidence record and state/doc update summary |
|
|
19
|
+
| Release | Check release, public, owner, CI, package, and host-runtime boundaries. | docs/release only | Release readiness and external gate summary |
|
|
20
|
+
|
|
21
|
+
## Fallback Packet Requirements
|
|
22
|
+
|
|
23
|
+
Every auditable role packet, whether real or sequential, must state:
|
|
24
|
+
|
|
25
|
+
- Execution mode: `real-subagent`, `sequential-role`, or `handoff-session`.
|
|
26
|
+
- Real delegation used: `yes` or `no`.
|
|
27
|
+
- Host/tool used and tool status.
|
|
28
|
+
- Fallback reason when real delegation is not used.
|
|
29
|
+
- Role, objective, allowed files, forbidden files, and expected output.
|
|
30
|
+
- Role output evidence.
|
|
31
|
+
- Verification command or check.
|
|
32
|
+
- Evidence level.
|
|
33
|
+
- Stop condition.
|
|
34
|
+
- Claim boundary.
|
|
35
|
+
|
|
36
|
+
## Claim Boundary
|
|
37
|
+
|
|
38
|
+
- `real-subagent` means a current host dispatch tool created an agent/task and returned evidence.
|
|
39
|
+
- `sequential-role` means the main agent executed the role checklist locally.
|
|
40
|
+
- `handoff-session` means another human or agent session owns the work after handoff.
|
|
41
|
+
- File/tool parallelism is not subagent dispatch.
|
|
42
|
+
- A role packet without dispatch evidence can still prove disciplined fallback, but it cannot prove real multi-agent execution.
|
|
43
|
+
|
|
44
|
+
## Close Rule
|
|
45
|
+
|
|
46
|
+
Before a slice closes, the coordinator should be able to answer:
|
|
47
|
+
|
|
48
|
+
1. Which roles were required for this slice?
|
|
49
|
+
2. Which roles ran as real delegation, sequential fallback, or handoff?
|
|
50
|
+
3. What files or evidence did each role touch?
|
|
51
|
+
4. What verification or review did each role produce?
|
|
52
|
+
5. What claim must not be made because a tool was unavailable?
|
|
53
|
+
|
|
54
|
+
`scripts/audit-close-gate.mjs` enforces the no-fake-dispatch boundary when `.gse/agents/role-fallback-packets.md` is present: a row that says real delegation was used must also have verified tool status.
|
|
@@ -1,6 +1,8 @@
|
|
|
1
1
|
# Tool Adapters
|
|
2
2
|
|
|
3
|
-
GSE has few hard requirements. Tools enhance the workflow when available.
|
|
3
|
+
GSE has few hard requirements. Tools enhance the workflow when available.
|
|
4
|
+
Use markdown fallback when optional tools are unavailable.
|
|
5
|
+
Do not treat optional tools as hard prerequisites.
|
|
4
6
|
|
|
5
7
|
## Minimum Tools
|
|
6
8
|
|
|
@@ -31,7 +33,7 @@ Avoid broad reads of generated outputs, logs, lockfiles, or historical archives
|
|
|
31
33
|
|
|
32
34
|
Use `references/drift-audit.md` when recorded tool status, command assumptions, MCP, LSP/index, browser, CI, package manager, or deployment facts may be stale.
|
|
33
35
|
|
|
34
|
-
Use
|
|
36
|
+
Use `.gse/project-profile.md`, `.gse/tooling.md`, and `.gse/host-capabilities.md` to record tool connections and status.
|
|
35
37
|
|
|
36
38
|
Status vocabulary:
|
|
37
39
|
|
|
@@ -40,7 +42,15 @@ Status vocabulary:
|
|
|
40
42
|
- `unknown`: not confirmed.
|
|
41
43
|
- `unavailable`: expected but missing or failing.
|
|
42
44
|
|
|
43
|
-
Project-specific commands and standards override generic recommendations. If the project says to use `pnpm`, `bun`, `make`, a custom smoke script, a specific LSP/index, or a private MCP server, follow that after verifying it is present or documenting its status.
|
|
45
|
+
Project-specific commands and standards override generic recommendations. If the project says to use `pnpm`, `bun`, `make`, a custom smoke script, a specific LSP/index, or a private MCP server, follow that after verifying it is present or documenting its status.
|
|
46
|
+
|
|
47
|
+
For the standard host/tool capability table, run:
|
|
48
|
+
|
|
49
|
+
```text
|
|
50
|
+
node <gse-skill>/scripts/audit-host-capabilities.mjs --target <project-root> --json
|
|
51
|
+
```
|
|
52
|
+
|
|
53
|
+
This audit checks native slash-command, browser, MCP, LSP/index, subagent dispatch, and CI rows. It labels missing records as a warning, but fails invalid statuses, `verified` rows without evidence, and native slash-command overclaims based only on portable command output.
|
|
44
54
|
|
|
45
55
|
## Model Routing
|
|
46
56
|
|