mustflow 2.69.0 → 2.70.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "mustflow",
3
- "version": "2.69.0",
3
+ "version": "2.70.0",
4
4
  "description": "Agent workflow documents and CLI for mustflow repository roots.",
5
5
  "type": "module",
6
6
  "license": "MIT-0",
@@ -62,7 +62,7 @@ translations = {}
62
62
  [documents."skills.index"]
63
63
  source = "locales/en/.mustflow/skills/INDEX.md"
64
64
  source_locale = "en"
65
- revision = 170
65
+ revision = 171
66
66
  translations = {}
67
67
 
68
68
  [documents."skill.adapter-boundary"]
@@ -401,6 +401,12 @@ source_locale = "en"
401
401
  revision = 2
402
402
  translations = {}
403
403
 
404
+ [documents."skill.design-implementation-handoff"]
405
+ source = "locales/en/.mustflow/skills/design-implementation-handoff/SKILL.md"
406
+ source_locale = "en"
407
+ revision = 1
408
+ translations = {}
409
+
404
410
  [documents."skill.database-change-safety"]
405
411
  source = "locales/en/.mustflow/skills/database-change-safety/SKILL.md"
406
412
  source_locale = "en"
@@ -2,7 +2,7 @@
2
2
  mustflow_doc: skills.index
3
3
  locale: en
4
4
  canonical: true
5
- revision: 170
5
+ revision: 171
6
6
  authority: router
7
7
  lifecycle: mustflow-owned
8
8
  ---
@@ -562,6 +562,7 @@ routes. Event routes stay inactive until their event occurs.
562
562
  | `.mustflow/context/PROJECT.md` needs cautious project context | `.mustflow/skills/project-context-authoring/SKILL.md` | Supported project facts | `.mustflow/context/PROJECT.md` | authority drift | `mustflow_check` | Updated cautious context |
563
563
  | Existing `SKILL.md` files or skill packages are refreshed from stale, external, vendor, runtime, or version-sensitive guidance while preserving the original behavior contract | `.mustflow/skills/skill-refresh/SKILL.md` | Target skill, current behavior contract, runtime mode, source ledger, package ledger, synchronized template surfaces, and command contract entries | Skill body, helper files, route metadata, template copy, locale metadata, profile membership, package tests, and directly tied docs | trigger drift, stale vendor claim, runtime incompatibility, copied external prose, helper-script mismatch, user-edit overwrite, non-idempotent refresh, or template drift | `changes_status`, `changes_diff_summary`, `docs_validate_fast`, `test_release`, `mustflow_check` | Skill refreshed, runtime mode, source freshness, semantic change classification, synchronized surfaces, version impact, verification, and remaining route/source/provenance/runtime risk |
564
564
  | Skill procedures or routes are created or maintained | `.mustflow/skills/skill-authoring/SKILL.md` | Repeated task evidence | `.mustflow/skills/**` | overlap and command drift | `mustflow_check`, `docs_validate` | Skill route and procedure changes |
565
+ | Agent A designs and Agent B implements from a versioned handoff, private `.agent` planning files, local-only ignored design state, manifest/plan/state ledgers, startup gates, allowed-path gates, blocker/deviation ledgers, or completion gates | `.mustflow/skills/design-implementation-handoff/SKILL.md` | Target repository, Agent A and Agent B surfaces, privacy mode, public behavior source, private handoff paths, ownership, allowed and forbidden paths, task dependencies, verification expectations, and remote-agent transfer boundary | `AGENTS.md`, public spec files, private `.agent` handoff files, ignore or exclude guidance, handoff templates, instruction artifacts, tests, docs, and directly synchronized workflow surfaces | hidden-only product contract, private-file leak, remote agent missing local context, plan/state version drift, Agent B editing Agent A-owned files, overly broad allowed paths, unbacked ignored files, or false completion evidence | `changes_status`, `changes_diff_summary`, `docs_validate_fast`, `mustflow_check` | Handoff mode, public versus private file split, Agent A/B ownership, startup and task gates, ignore or exclude decision, remote-agent limitation, verification gates, and remaining privacy or handoff risk |
565
566
  | Work instructions for coding agents, Codex tasks, work orders, issues, PR requests, automations, implementation briefs, reviews, proofs, cleanup tasks, or operational-readiness tasks are drafted, reviewed, or improved | `.mustflow/skills/task-instruction-authoring/SKILL.md` | Target agent surface, task family, goal, scope, constraints, durable rules, risk class, verification expectations, and required output | Instruction artifacts, work-order bodies, issue bodies, templates, docs, skills, checklists, and directly synchronized workflow surfaces | vague goal, delegated product decision, missing acceptance evidence, unsafe raw command, proof theater, review blade drift, overlong one-off policy, or operational-readiness gap | `changes_status`, `changes_diff_summary`, `docs_validate_fast`, `mustflow_check` | Instruction family, missing decisions, final instruction or rubric, durable guidance decision, verification expectations, and remaining ambiguity or operational risk |
566
567
 
567
568
  When introducing a new skill, link it here and define the specific trigger and route fields.
@@ -0,0 +1,250 @@
1
+ ---
2
+ mustflow_doc: skill.design-implementation-handoff
3
+ locale: en
4
+ canonical: true
5
+ revision: 1
6
+ lifecycle: mustflow-owned
7
+ authority: procedure
8
+ name: design-implementation-handoff
9
+ description: Apply this skill when creating, reviewing, or using a two-agent design-to-implementation handoff where Agent A produces a specification and implementation plan, Agent B implements from that handoff, and private local planning files such as `.agent/MANIFEST.yaml`, `.agent/PLAN.yaml`, or `.agent/STATE.yaml` must be separated from public tracked product contracts. Use for local/private handoff setup, A-to-B implementation packages, ignored agent planning folders, startup gates, task state ledgers, and completion gates. Do not use for ordinary one-agent task prompts; use task-instruction-authoring instead.
10
+ metadata:
11
+ mustflow_schema: "1"
12
+ mustflow_kind: procedure
13
+ pack_id: mustflow.core
14
+ skill_id: mustflow.core.design-implementation-handoff
15
+ command_intents:
16
+ - changes_status
17
+ - changes_diff_summary
18
+ - docs_validate_fast
19
+ - mustflow_check
20
+ ---
21
+
22
+ # Design Implementation Handoff
23
+
24
+ <!-- mustflow-section: purpose -->
25
+ ## Purpose
26
+
27
+ Turn an Agent A design and an Agent B implementation request into a small, versioned handoff
28
+ contract that preserves public product behavior while keeping private planning state out of the
29
+ public repository when requested.
30
+
31
+ This skill is for handoff structure, authority, ownership, and evidence. It is not a license to hide
32
+ product behavior, invent missing requirements, or make ignored local files the only source of truth
33
+ for a shipped system.
34
+
35
+ <!-- mustflow-section: use-when -->
36
+ ## Use When
37
+
38
+ - Agent A is asked to design, plan, specify, or break down work for Agent B to implement later.
39
+ - Agent B is asked to implement from an existing design package, private planning folder, work plan,
40
+ or local-only agent handoff.
41
+ - A repository needs a small design-to-implementation folder structure such as `spec/SPEC.md` plus
42
+ `.agent/MANIFEST.yaml`, `.agent/PLAN.yaml`, and `.agent/STATE.yaml`.
43
+ - Private agent planning files should be ignored, excluded locally, backed up privately, or protected
44
+ from accidental staging.
45
+ - The task needs a startup gate, version match, unresolved-question gate, task dependency gate,
46
+ allowed-path gate, blocker ledger, deviation ledger, or completion gate for another agent.
47
+ - The design handoff may run locally with ignored files or remotely where ignored local files are not
48
+ automatically available.
49
+
50
+ <!-- mustflow-section: do-not-use-when -->
51
+ ## Do Not Use When
52
+
53
+ - The task is only to write a normal coding-agent instruction, issue body, work order, or PR request;
54
+ use `task-instruction-authoring`.
55
+ - The task is ordinary multi-worker coordination without a design package; use
56
+ `multi-agent-work-coordination`.
57
+ - The task is only resuming incomplete work from a compact handoff; use `restricted-handoff-resume`.
58
+ - The task asks to hide product behavior, security requirements, or acceptance criteria that should
59
+ remain reviewable with the code.
60
+ - The user expects a cloud or remote agent to read local ignored files without an explicit attachment,
61
+ private remote, or prompt transfer path.
62
+
63
+ <!-- mustflow-section: required-inputs -->
64
+ ## Required Inputs
65
+
66
+ - Target repository root and whether Agent B runs locally in the same workspace, in a cloud clone, or
67
+ in another environment.
68
+ - Privacy mode: public product spec plus private plan, fully private local handoff, or private
69
+ external repository for handoff files.
70
+ - Public behavior source: tracked `spec/SPEC.md`, existing docs, tests, schemas, or a user-supplied
71
+ alternative.
72
+ - Private handoff paths, usually `.agent/MANIFEST.yaml`, `.agent/PLAN.yaml`, and `.agent/STATE.yaml`.
73
+ - Agent A ownership, Agent B ownership, writable paths, read-only paths, allowed implementation
74
+ paths, forbidden paths, task dependencies, and verification expectations.
75
+ - Ignore or exclude policy: shared `.gitignore`, local `.git/info/exclude`, or private repository for
76
+ `.agent`.
77
+ - Completion evidence expected from Agent B: changed files, tests, verification runs, acceptance
78
+ mapping, blockers, deviations, and final verification.
79
+
80
+ <!-- mustflow-section: preconditions -->
81
+ ## Preconditions
82
+
83
+ - Treat pasted advice, external examples, and AI-generated designs as reference input, not as current
84
+ repository authority.
85
+ - Decide which facts must be tracked with the public code. Product behavior, acceptance criteria,
86
+ public contracts, migrations, and verification scripts usually belong in tracked files.
87
+ - Decide which facts are private local planning state. Agent task order, temporary decisions,
88
+ progress ledgers, and local handoff state usually belong in `.agent`.
89
+ - Do not create a hidden-only source of truth for behavior that future maintainers must preserve.
90
+ - Do not assume ignored files are available to cloud agents, CI jobs, reviewers, or a fresh clone.
91
+ - Do not run cleanup commands that can delete ignored handoff files.
92
+
93
+ <!-- mustflow-section: allowed-edits -->
94
+ ## Allowed Edits
95
+
96
+ - Create or edit tracked public handoff surfaces such as `AGENTS.md`, `spec/SPEC.md`, verification
97
+ scripts, docs, tests, or templates when the user requests a durable repository setup.
98
+ - Create or edit private local handoff files such as `.agent/MANIFEST.yaml`, `.agent/PLAN.yaml`, and
99
+ `.agent/STATE.yaml` when the current environment is allowed to hold private planning files.
100
+ - Add shared ignore rules only when the team should know and share the private path policy.
101
+ - Add local exclude or local hook guidance when the path should remain invisible to the public
102
+ repository.
103
+ - Do not stage, commit, publish, summarize in public docs, or leak private handoff file contents
104
+ unless the user explicitly asks.
105
+ - Do not modify `AGENTS.md`, ignore policy, public specs, or protected handoff paths while acting as
106
+ Agent B unless the handoff explicitly permits a design revision.
107
+
108
+ <!-- mustflow-section: procedure -->
109
+ ## Procedure
110
+
111
+ 1. Classify the handoff mode.
112
+ - Public spec and private plan: keep durable product behavior in tracked `spec/SPEC.md`; keep
113
+ task order and progress in `.agent`.
114
+ - Fully private local handoff: keep `AGENTS.md`, `SPEC.md`, plan, and state local; require a
115
+ separate private backup or private repository if the work matters.
116
+ - Remote Agent B: attach the private handoff, point B at a private accessible repository, or paste
117
+ the needed handoff into the task context; do not assume local ignored files cross the boundary.
118
+ 2. Create the smallest file set that can carry the contract.
119
+ - `AGENTS.md`: reusable implementation-agent rules only, not project feature plans.
120
+ - `spec/SPEC.md`: observable product behavior, non-goals, contracts, failure behavior,
121
+ concurrency, security, edge cases, acceptance criteria, and definition of done.
122
+ - `.agent/MANIFEST.yaml`: handoff status, spec version, plan version, read order, authority map,
123
+ ownership, protected paths, final verification, and completion rules.
124
+ - `.agent/PLAN.yaml`: Agent A-owned task list with dependencies, requirement IDs, acceptance IDs,
125
+ allowed paths, forbidden paths, deliverables, and verification requirements.
126
+ - `.agent/STATE.yaml`: Agent B-owned progress ledger with task states, changed files, tests,
127
+ verification runs, acceptance evidence, blockers, deviations, and final verification.
128
+ 3. Keep planning and progress separate.
129
+ - Do not put mutable status fields in `PLAN.yaml`.
130
+ - Do not let `STATE.yaml` override `SPEC.md` or `PLAN.yaml`.
131
+ - Allow only `pending`, `in_progress`, `blocked`, and `verified` task states unless the user
132
+ explicitly extends the state machine.
133
+ 4. Write the Agent B startup gate.
134
+ - Read `AGENTS.md`.
135
+ - Check whether the private manifest exists.
136
+ - Read every path in `read_order`.
137
+ - Confirm handoff status is `approved`.
138
+ - Confirm unresolved questions are empty.
139
+ - Confirm manifest, plan, and state versions match.
140
+ - Identify the first pending task whose dependencies are verified.
141
+ - Report that task's requirement IDs, acceptance IDs, allowed paths, forbidden paths, and
142
+ verification expectations before editing.
143
+ 5. Write the authority and ownership rules.
144
+ - `spec/SPEC.md` owns required product behavior.
145
+ - `.agent/PLAN.yaml` owns implementation order and task boundaries.
146
+ - `.agent/STATE.yaml` records evidence but does not change the design.
147
+ - Agent A owns spec, manifest, and plan.
148
+ - Agent B owns state, allowed production code, allowed tests, and allowed migrations for the
149
+ current task.
150
+ 6. Write the Agent B execution gate.
151
+ - Work on exactly one task.
152
+ - Do not start a task until all dependencies are `verified`.
153
+ - Mark the task `in_progress` before changing files.
154
+ - Stay inside the task's `allowed_paths`.
155
+ - Implement production code and tests together.
156
+ - Run the task's declared verification through the repository command contract when one exists.
157
+ - Record changed files, tests, verification results, and acceptance evidence.
158
+ - Mark the task `verified` only after required verification succeeds.
159
+ 7. Write the blocker and deviation rules.
160
+ - If `SPEC.md`, `MANIFEST.yaml`, `PLAN.yaml`, and current code conflict, do not guess.
161
+ - Record a blocker in `STATE.yaml` with requirement IDs, task ID, affected paths, and open
162
+ status.
163
+ - Record every design deviation with reason, impact, and approval status.
164
+ - Treat unapproved deviations as incomplete work.
165
+ 8. Choose the private-file protection mechanism.
166
+ - Use shared `.gitignore` only when every clone should ignore `.agent`.
167
+ - Use `.git/info/exclude` when the private path should remain a local-only convention with no
168
+ public trace.
169
+ - If `.agent` is important, recommend a separate private repository or private backup for that
170
+ folder; ignored files have no public repository history.
171
+ - Require evidence that `.agent` files are ignored or excluded and not tracked before completion.
172
+ - Warn that ignored files can still be force-added and can be deleted by cleanup commands that
173
+ remove ignored files.
174
+ 9. Add a completion gate.
175
+ - Every plan task is `verified`.
176
+ - Every acceptance criterion maps to source files and test files.
177
+ - The final verification command exits with the required status.
178
+ - No open blocker remains.
179
+ - No unapproved deviation remains.
180
+ - No private `.agent` file is tracked or staged in the public repository.
181
+ 10. Review the handoff for common failure modes.
182
+ - Hidden-only product behavior.
183
+ - Version numbers that do not change when Agent A revises the design.
184
+ - `allowed_paths` so broad that Agent B can rewrite the whole repository.
185
+ - Verification commands copied from external advice instead of mapped to the repository command
186
+ contract.
187
+ - Private local files expected by a remote agent.
188
+ - Progress state mixed into the immutable plan.
189
+ - Ignored files with no backup.
190
+
191
+ <!-- mustflow-section: postconditions -->
192
+ ## Postconditions
193
+
194
+ - Public product behavior is separated from private agent planning state.
195
+ - Agent A and Agent B ownership boundaries are explicit.
196
+ - Agent B can identify the next executable task without inventing missing decisions.
197
+ - Private handoff files are protected from accidental public tracking according to the selected
198
+ privacy mode.
199
+ - The handoff names its remote-agent limitation when private local files are not automatically
200
+ transferred.
201
+ - Completion requires task verification, acceptance traceability, blocker/deviation closure, and
202
+ private-file tracking checks.
203
+
204
+ <!-- mustflow-section: verification -->
205
+ ## Verification
206
+
207
+ Use configured oneshot command intents when available:
208
+
209
+ - `changes_status`
210
+ - `changes_diff_summary`
211
+ - `docs_validate_fast`
212
+ - `mustflow_check`
213
+
214
+ When adding this handoff to a mustflow template or package surface, also use the relevant configured
215
+ template, docs, package, or release checks.
216
+
217
+ For downstream repositories, map any final verification command named in the handoff to that
218
+ repository's command contract. If no configured command exists, record the verification as missing
219
+ or manual instead of inventing a runnable command.
220
+
221
+ <!-- mustflow-section: failure-handling -->
222
+ ## Failure Handling
223
+
224
+ - If the user wants all design material hidden, warn that future maintainers and remote agents will
225
+ not see the design unless it is separately attached or privately stored.
226
+ - If product behavior appears only in `.agent`, either move the public behavior contract to a
227
+ tracked spec or report the hidden-source-of-truth risk.
228
+ - If Agent B cannot access `.agent`, downgrade the handoff to explicit user instructions or require
229
+ an attachment/private remote before implementation.
230
+ - If ignore or exclude policy is unclear, choose no public ignore edit and report the local exclude
231
+ option rather than leaking private-path conventions into the repository.
232
+ - If a private handoff file is already tracked, report that ignore rules do not untrack existing
233
+ files and require an explicit untracking or history-cleanup decision before claiming privacy.
234
+ - If version numbers disagree, stop implementation and request or record an Agent A handoff refresh.
235
+
236
+ <!-- mustflow-section: output-format -->
237
+ ## Output Format
238
+
239
+ - Handoff mode selected
240
+ - Public tracked contract files
241
+ - Private local handoff files
242
+ - Agent A and Agent B ownership
243
+ - Startup gate and next-task gate
244
+ - Ignore or exclude protection decision
245
+ - Remote-agent transfer limitation
246
+ - Verification and completion gates
247
+ - Files changed
248
+ - Command intents run
249
+ - Skipped checks and reasons
250
+ - Remaining privacy, authority, or handoff risks
@@ -924,6 +924,12 @@ route_type = "authoring"
924
924
  priority = 62
925
925
  applies_to_reasons = ["unknown_change", "docs_change", "workflow_change", "mustflow_docs_change"]
926
926
 
927
+ [routes."design-implementation-handoff"]
928
+ category = "workflow_contracts"
929
+ route_type = "authoring"
930
+ priority = 64
931
+ applies_to_reasons = ["unknown_change", "docs_change", "workflow_change", "mustflow_docs_change"]
932
+
927
933
  [routes."project-context-authoring"]
928
934
  category = "workflow_contracts"
929
935
  route_type = "authoring"
@@ -1,6 +1,6 @@
1
1
  id = "default"
2
2
  name = "default"
3
- version = "2.69.0"
3
+ version = "2.70.0"
4
4
  description = "Minimal workflow for LLM agents to read, edit, and verify their work in a repository."
5
5
  common_root = "common"
6
6
  locales_root = "locales"
@@ -106,6 +106,7 @@ creates = [
106
106
  ".mustflow/skills/contract-sync-check/SKILL.md",
107
107
  ".mustflow/skills/cross-platform-filesystem-safety/SKILL.md",
108
108
  ".mustflow/skills/date-number-audit/SKILL.md",
109
+ ".mustflow/skills/design-implementation-handoff/SKILL.md",
109
110
  ".mustflow/skills/database-change-safety/SKILL.md",
110
111
  ".mustflow/skills/database-migration-change/SKILL.md",
111
112
  ".mustflow/skills/database-query-bottleneck-review/SKILL.md",
@@ -292,6 +293,7 @@ minimal = [
292
293
  "config-env-change",
293
294
  "contract-sync-check",
294
295
  "date-number-audit",
296
+ "design-implementation-handoff",
295
297
  "database-change-safety",
296
298
  "database-migration-change",
297
299
  "database-query-bottleneck-review",
@@ -424,6 +426,7 @@ patterns = [
424
426
  "config-env-change",
425
427
  "contract-sync-check",
426
428
  "date-number-audit",
429
+ "design-implementation-handoff",
427
430
  "database-change-safety",
428
431
  "database-migration-change",
429
432
  "database-query-bottleneck-review",
@@ -567,6 +570,7 @@ oss = [
567
570
  "contract-sync-check",
568
571
  "cross-platform-filesystem-safety",
569
572
  "date-number-audit",
573
+ "design-implementation-handoff",
570
574
  "database-change-safety",
571
575
  "database-migration-change",
572
576
  "database-query-bottleneck-review",
@@ -723,6 +727,7 @@ team = [
723
727
  "contract-sync-check",
724
728
  "cross-platform-filesystem-safety",
725
729
  "date-number-audit",
730
+ "design-implementation-handoff",
726
731
  "database-change-safety",
727
732
  "database-migration-change",
728
733
  "database-query-bottleneck-review",
@@ -864,6 +869,7 @@ product = [
864
869
  "config-env-change",
865
870
  "contract-sync-check",
866
871
  "date-number-audit",
872
+ "design-implementation-handoff",
867
873
  "database-change-safety",
868
874
  "database-migration-change",
869
875
  "database-query-bottleneck-review",
@@ -1014,6 +1020,7 @@ library = [
1014
1020
  "contract-sync-check",
1015
1021
  "cross-platform-filesystem-safety",
1016
1022
  "date-number-audit",
1023
+ "design-implementation-handoff",
1017
1024
  "database-change-safety",
1018
1025
  "database-migration-change",
1019
1026
  "database-query-bottleneck-review",