universal-dev-standards 5.1.0-beta.5 → 5.1.0-beta.7

package/bin/uds.js

@@ -26,8 +26,12 @@ import { releaseCommand } from '../src/commands/release.js';
 import { compileStandards } from '../src/commands/compile.js';
 import { flowCreateCommand, flowListCommand, flowValidateCommand, flowDiffCommand, flowExportCommand, flowImportCommand } from '../src/commands/flow.js';
 import { generateReport } from '../src/commands/report.js';
+import { mcpCommand } from '../src/commands/mcp.js';
+import { runIntentCommand } from '../src/commands/run-intent.js';
 import { setLanguage, setLanguageExplicit, detectLanguage, t } from '../src/i18n/messages.js';
 import { maybeCheckForUpdates, formatUpdateNotice, shouldCheckUpdateForCommand } from '../src/utils/update-checker.js';
+import { config } from '../src/utils/config-manager.js';
+import { readManifest, isInitialized } from '../src/utils/copier.js';
 
 const require = createRequire(import.meta.url);
 const pkg = require('../package.json');
@@ -62,13 +66,35 @@ program
   .hook('preAction', (thisCommand) => {
     const opts = thisCommand.opts();
     const uiLang = opts.uiLang || 'auto';
-    if (uiLang === 'auto') {
-      // Auto-detect: can be overridden by manifest settings later
-      setLanguage(detectLanguage(null));
-    } else {
-      // Explicit setting: mark as explicitly set to prevent override
+    if (uiLang !== 'auto') {
+      // Explicit --ui-lang flag: highest priority, mark as explicitly set
       setLanguageExplicit(uiLang);
+      return;
+    }
+
+    // Auto-detect priority chain:
+    // 1. Project manifest options.display_language
+    // 2. ~/.udsrc ui.language
+    // 3. OS env LANG / LC_ALL
+    // 4. Default 'en'
+    const projectPath = process.cwd();
+    if (isInitialized(projectPath)) {
+      const manifest = readManifest(projectPath);
+      if (manifest?.options?.display_language) {
+        setLanguage(manifest.options.display_language);
+        return;
+      }
     }
+
+    // Fallback to ~/.udsrc ui.language
+    const rcLang = config.get('ui.language');
+    if (rcLang && rcLang !== 'en') {
+      setLanguage(rcLang);
+      return;
+    }
+
+    // Fallback to OS environment variable detection
+    setLanguage(detectLanguage(null));
   })
   .hook('postAction', async (thisCommand) => {
     const cmd = thisCommand.name();
@@ -515,4 +541,14 @@ missionCommand
   .option('-s, --state <state>', 'Filter by state')
   .action(missionListCommand);
 
+// MCP command for AI tool integration
+mcpCommand(program);
+
+// uds run <intent> — language-agnostic command proxy (XSPEC-029)
+program
+  .command('run <intent>')
+  .description('Run a project command by intent (test/lint/build/security) via uds.project.yaml')
+  .option('--dry-run', 'Show resolved command without executing')
+  .action(runIntentCommand);
+
 program.parse();

package/bundled/ai/standards/agent-communication-protocol.ai.yaml

@@ -108,6 +108,36 @@ standard:
       - field: constraints
         description: "約束條件 [string]"
 
+  hook_exit_codes:
+    description: >
+      Hook 退出碼三分類（借鑑 lintsinghua/claude-code-book Ch.7 Hooks 協議）。
+      適用於所有 DevAP/VibeOps 生成的 Claude Code hook shell 腳本。
+    codes:
+      - code: 0
+        name: pass
+        description: "Hook 通過，工具/Agent 執行繼續"
+        blocking: false
+        stdout_handling: "忽略"
+        stderr_handling: "忽略"
+      - code: 2
+        name: block
+        description: "阻止執行；stderr 輸出作為回饋文字直接注入 AI 上下文"
+        blocking: true
+        stdout_handling: "忽略"
+        stderr_handling: "作為 AI feedback 注入（支援 JSON 格式 decision:block/reason）"
+        note: "PreToolUse exit 2 → 阻止工具呼叫；Stop exit 2 → 中止 session"
+      - code: other
+        name: warn
+        description: "非阻擋性警告；記錄日誌但執行繼續（exit 1 為常用警告代碼）"
+        blocking: false
+        stdout_handling: "記錄到系統日誌"
+        stderr_handling: "顯示為 warning，不注入 AI 上下文"
+    rules:
+      - "MUST: 阻擋行為只能用 exit 2，不得用 exit 1 或其他非零代碼"
+      - "MUST: exit 2 時 stderr 必須是人類可讀的原因（推薦 JSON: {reason: string}）"
+      - "SHOULD: 軟性警告（deprecated pattern、style 違反）使用 exit 1"
+      - "MAY: exit 0 時可輸出 JSON 到 stdout（Stop hook 用 decision:block 要求 AI 繼續）"
+
   rules:
     - id: ACP-001
       trigger: "訊息缺少必要欄位"
@@ -129,6 +159,10 @@ standard:
       trigger: "建立 Handoff"
       action: "引用 artifact_id，不嵌入完整內容"
       priority: medium
+    - id: ACP-006
+      trigger: "生成 hook 腳本"
+      action: "依照 hook_exit_codes 三分類：0=pass, 2=block+feedback, 其他=warn"
+      priority: high
 
 physical_spec:
   type: checklist

package/bundled/ai/standards/anti-hallucination.ai.yaml

@@ -3,8 +3,8 @@
 
 id: anti-hallucination
 meta:
-  version: "1.3.1"
-  updated: "2026-01-26"
+  version: "1.4.0"
+  updated: "2026-04-13"
   source: core/anti-hallucination.md
   guide: core/guides/anti-hallucination-guide.md
   description: Protocols to prevent AI hallucination through evidence-based analysis and strict verification tags
@@ -109,6 +109,53 @@ prohibited_behaviors:
     description: Do NOT start coding without identifying potential side effects
     correct_action: List at least 3 potential side effects before implementation (state changes, dependencies, cascading effects)
 
+epistemic_calibration:
+  description: "Agent 認知校準 — Answer/Ask/Abstain 三動作框架 (XSPEC-008, DEC-014 PassiveQA)"
+  version_added: "1.4.0"
+
+  action_types:
+    answer:
+      use_when: "具備足夠資訊產出高品質結果"
+      requirement: "可選填 completeness (complete | mostly_complete | partial | insufficient) 和 confidence (0.0~1.0)"
+    ask:
+      use_when: "缺少關鍵資訊，強行回答將產生幻覺"
+      requirement: "必填 missing_variables 清單；不可用於逃避困難任務"
+      routing: "Pipeline 暫停，呈現 missing_variables 給使用者或資訊收集流程"
+    abstain:
+      use_when: "任務完全超出能力範圍，或執行將造成不可逆傷害"
+      requirement: "必填 abstain_reason；僅限真正無法執行的情況"
+      routing: "Pipeline 記錄原因，跳過此 agent 或觸發人工介入"
+
+  fail_closed_agents:
+    description: "以下 agent 必須產出 answer，不可 ask 或 abstain"
+    agents:
+      - name: evaluator
+        reason: "必須評分，否則管道無法完成品質評估"
+      - name: guardian
+        reason: "必須做安全判斷 (fail-closed)，不得跳過"
+
+  schema:
+    description: "所有 agent output 可選填的 epistemic 子結構"
+    example: |
+      {
+        "epistemic": {
+          "action_type": "answer",          // "answer" | "ask" | "abstain"
+          "completeness": "mostly_complete", // optional
+          "confidence": 0.85,               // 0.0~1.0, optional
+          "missing_variables": [],           // required when action_type="ask"
+          "abstain_reason": null             // required when action_type="abstain"
+        }
+      }
+    backward_compatibility: "缺少 epistemic 欄位時，預設視為 action_type: answer"
+
+  prohibited:
+    - id: overuse-ask
+      description: "禁止以 ask 逃避困難任務；ask 僅適用於真正缺少必要資訊的情況"
+    - id: overuse-abstain
+      description: "禁止頻繁 abstain；pipeline 應追蹤各 agent 的 abstain 頻率"
+    - id: evaluator-guardian-ask-abstain
+      description: "Evaluator 和 Guardian 禁止 ask 或 abstain"
+
 rules:
   - id: conversation-language
     trigger: responding to user

package/bundled/ai/standards/anti-sycophancy-prompting.ai.yaml

@@ -0,0 +1,111 @@
+# Anti-Sycophancy Prompting Standards - AI Optimized
+# Source: core/anti-sycophancy-prompting.md
+
+id: anti-sycophancy-prompting
+meta:
+  version: "1.0.0"
+  updated: "2026-04-15"
+  source: core/anti-sycophancy-prompting.md
+  description: Techniques and rules for designing prompts that elicit genuine, critical LLM responses rather than sycophantic agreement
+
+principles:
+  socratic_critique:
+    rule: Reframe evaluation tasks as critique tasks to eliminate sycophancy incentives
+    do:
+      - Ask for fatal objections rather than approval
+      - Require technically grounded, non-trivial objections
+      - Prohibit positive opening phrases
+    do_not:
+      - Ask "is this a good idea?" without specifying critique mode
+      - Accept "Great idea, but..." as valid critique framing
+
+  anchor_prevention:
+    rule: Obtain independent LLM judgment before revealing user position
+    steps:
+      - Ask for neutral comparison without revealing preference
+      - Receive independent judgment
+      - Reveal user position
+      - Require explicit technical justification for any stance change
+
+  symmetric_output:
+    rule: Use format constraints to force balanced opposing viewpoints
+    format: "| Arguments FOR | Arguments AGAINST | — Net Recommendation: [clear stance]"
+    constraints:
+      - Both columns must have similar length (< 20% difference)
+      - Net recommendation must be explicit and may be negative
+
+  confidence_labeling:
+    rule: Require confidence scores on all recommendations
+    format: "Confidence: [1-5] — [reason for uncertainty]"
+    scale:
+      5: Validated at similar scale, high certainty
+      4: Industry standard with sufficient documentation
+      3: Reasonable inference, PoC recommended
+      2: Uncertain, Spike strongly recommended
+      1: Highly uncertain, not recommended for direct adoption
+    constraints:
+      - Confidence < 3 must include "More information needed"
+      - All major claims require confidence labeling
+
+  sycophancy_detection:
+    rule: Detect sycophantic response patterns for automated re-evaluation
+    signals:
+      - id: positive-opener
+        pattern: Response starts with agreeable phrase within first 50 tokens
+        examples: ["great", "interesting", "certainly", "of course", "absolutely"]
+      - id: position-flip
+        pattern: Model reverses stance after user reveals preference without new evidence
+      - id: risk-minimization
+        pattern: "While there are some minor issues, overall..."
+      - id: missing-quantification
+        pattern: Major recommendation lacks confidence score or specific metrics
+    trigger: If 2+ signals detected, invoke re-evaluation with Red Team framing
+
+prohibited_behaviors:
+  - id: positive-opener
+    description: Do NOT open critique with positive affirmation
+    correct_action: Start directly with analysis
+
+  - id: unsupported-flip
+    description: Do NOT reverse stance after user reveals preference without new technical evidence
+    correct_action: Maintain position or cite specific new information
+
+  - id: unquantified-risk
+    description: Do NOT describe risks as "minor" without evidence
+    correct_action: Quantify risk or explain why it is bounded
+
+  - id: missing-confidence
+    description: Do NOT provide major recommendations without confidence level
+    correct_action: Always include confidence (1-5) and uncertainty statement
+
+agent_application:
+  code_review:
+    apply: [socratic_critique, symmetric_output, sycophancy_detection]
+  architecture_advisor:
+    apply: [anchor_prevention, confidence_labeling, sycophancy_detection]
+  bug_analysis:
+    apply: [socratic_critique, confidence_labeling]
+  general_consultation:
+    apply: [symmetric_output, confidence_labeling]
+
+complete_template: |
+  You are a domain expert with no emotional investment in my satisfaction.
+  Your role is to identify flaws in my thinking, not to make me feel good.
+
+  Rules:
+  - Do NOT open with positive phrases (good, interesting, nice, certainly)
+  - Every recommendation must include a confidence level (1-5) and what you are uncertain about
+  - If my direction is wrong, say so directly
+
+  My question: [question]
+
+  First, list the incorrect assumptions I may be holding about this problem.
+  Then give your honest recommendation.
+
+checklist:
+  - Prompt does not invite agreement
+  - Positive opening phrases explicitly prohibited
+  - Independent stance obtained before revealing user preference (if applicable)
+  - Dual-column format enforced for evaluation tasks
+  - Confidence levels required on major recommendations
+  - Sycophancy detection applied to output

package/bundled/ai/standards/capability-declaration.ai.yaml

@@ -0,0 +1,113 @@
+# Capability Declaration Standard - AI Optimized
+# Source: XSPEC-037 (claude-code-book Ch.3 Fail-Closed buildTool factory)
+
+standard:
+  id: capability-declaration
+  name: Capability Declaration Standard
+  description: Fail-Closed 能力聲明 — 工具/Adapter/Agent 必須顯式聲明安全性，缺省為最保守預設
+
+  meta:
+    version: "1.0.0"
+    updated: "2026-04-15"
+    source: XSPEC-037
+    description: >
+      所有工具、Adapter 和 Agent 能力預設為「不安全、需授權」。
+      開發者必須顯式聲明 isConcurrencySafe: true 才能享受並行優化。
+      「忘記設權限」的結果是保守行為而非危險行為。
+    scope: universal
+    borrowed_from: "claude-code-book Ch.3 buildTool factory, isConcurrencySafe/isReadOnly default false"
+
+  guidelines:
+    - "所有工具、Adapter、Agent 必須實作 CapabilityDeclaration（即使使用預設值）"
+    - "isConcurrencySafe 和 isReadOnly 預設為 false — 必須顯式聲明才能解鎖優化路徑"
+    - "框架必須在缺少聲明時使用 FAIL_CLOSED_DEFAULTS，並記錄警告"
+    - "聲明必須反映實際能力，虛假聲明（如謊稱 isReadOnly）視為安全漏洞"
+    - "trustLevel 影響沙箱隔離強度，不可降低至低於 userSettings 允許的等級"
+
+  interface:
+    CapabilityDeclaration:
+      fields:
+        isConcurrencySafe:
+          type: boolean
+          default: false
+          description: "是否對並行執行安全（無競態、無共享可變狀態）。預設 false。"
+          unlock: "設為 true 後可加入並行批次執行"
+        isReadOnly:
+          type: boolean
+          default: false
+          description: "是否為純讀取操作（不修改任何持久化狀態）。預設 false。"
+          unlock: "設為 true 後可跳過寫入相關的 Safety Hook 階段"
+        requiresUserConfirmation:
+          type: boolean
+          default: true
+          description: "執行前是否需要使用者明確確認。預設 true。"
+          unlock: "設為 false 後進入自動執行模式（需 userSettings 允許）"
+        trustLevel:
+          type: enum
+          values: [trusted, sandboxed, untrusted]
+          default: untrusted
+          description: "工具的信任等級，影響沙箱隔離強度"
+          mapping:
+            trusted: "內建工具或已審核插件，無沙箱限制"
+            sandboxed: "第三方工具，在受限環境中執行"
+            untrusted: "未知來源，最嚴格限制（預設）"
+
+  fail_closed_defaults:
+    isConcurrencySafe: false
+    isReadOnly: false
+    requiresUserConfirmation: true
+    trustLevel: untrusted
+    log_on_use:
+      level: warn
+      message: "[WARN] Capability not declared, using Fail-Closed defaults for: {component_name}"
+
+  well_known_declarations:
+    note: "常見工具的建議聲明（供參考，各專案可調整）"
+    examples:
+      GrepTool:
+        isConcurrencySafe: true
+        isReadOnly: true
+        requiresUserConfirmation: false
+        trustLevel: trusted
+      GlobTool:
+        isConcurrencySafe: true
+        isReadOnly: true
+        requiresUserConfirmation: false
+        trustLevel: trusted
+      FileReadTool:
+        isConcurrencySafe: true
+        isReadOnly: true
+        requiresUserConfirmation: false
+        trustLevel: trusted
+      FileEditTool:
+        isConcurrencySafe: false
+        isReadOnly: false
+        requiresUserConfirmation: true
+        trustLevel: trusted
+      BashTool:
+        isConcurrencySafe: false
+        isReadOnly: false
+        requiresUserConfirmation: true
+        trustLevel: sandboxed
+
+  enforcement:
+    on_missing_declaration:
+      action: "使用 FAIL_CLOSED_DEFAULTS"
+      log: true
+    on_false_claim:
+      description: "聲明 isReadOnly: true 但實際執行了寫入"
+      detection: "runtime 監控 + 審計日誌"
+      consequence: "記錄 CAPABILITY_MISMATCH 事件，降級至 FAIL_CLOSED_DEFAULTS"
+
+  applicable_components:
+    - "DevAP AgentAdapter（ClaudeAdapter / OpenCodeAdapter / CliAdapter）"
+    - "DevAP Tool 呼叫系統"
+    - "VibeOps ToolExecutor"
+    - "VibeOps Agent（planner / builder / evaluator 等）"
+    - "所有 MCP 工具插件"
+
+  error_codes:
+    CAP-001: "CAPABILITY_NOT_DECLARED — 使用 Fail-Closed 預設"
+    CAP-002: "CAPABILITY_MISMATCH — 實際行為與聲明不符"
+    CAP-003: "TRUST_LEVEL_INSUFFICIENT — trustLevel 低於場景要求"
+    CAP-004: "CONCURRENT_UNSAFE — 嘗試並行執行 isConcurrencySafe: false 的組件"

package/bundled/ai/standards/circuit-breaker.ai.yaml

@@ -0,0 +1,93 @@
+# Circuit Breaker Standard - AI Optimized
+# Source: XSPEC-036 (claude-code-book Ch.2 MAX_CONSECUTIVE_AUTOCOMPACT_FAILURES)
+
+standard:
+  id: circuit-breaker
+  name: Circuit Breaker Standard
+  description: 通用斷路器模式 — 連續失敗後開路，防止 API 呼叫雪崩
+
+  meta:
+    version: "1.0.0"
+    updated: "2026-04-15"
+    source: XSPEC-036
+    description: >
+      任何依賴外部 API 或重試機制的 Agent 組件都應使用斷路器保護。
+      書中實測：引入斷路器前每日浪費 ~250K API 呼叫（1279 個 session 各超過 50 次連續失敗）。
+    scope: universal
+    borrowed_from: "claude-code-book Ch.2 circuit breaker, MAX_CONSECUTIVE_AUTOCOMPACT_FAILURES=3"
+
+  guidelines:
+    - "任何重試機制必須使用斷路器包裝，不得直接無限重試"
+    - "斷路器狀態必須透過遙測可觀測（circuit_breaker_state_change 事件）"
+    - "OPEN 狀態下的請求必須立即失敗（fail fast），不等待 timeout"
+    - "failureThreshold 預設值為 3，與 claude-code-book 及 DevAP Fix Loop 一致"
+    - "斷路器必須按照「功能單元」建立，不得全域共享單一斷路器"
+
+  states:
+    CLOSED:
+      description: "正常運作，請求正常轉發"
+      transition_to_OPEN: "連續失敗次數 >= failureThreshold"
+      reset_condition: "任一成功呼叫重設失敗計數器"
+    OPEN:
+      description: "開路，立即拒絕所有請求"
+      action: "回傳 CircuitOpenError，不實際執行"
+      transition_to_HALF_OPEN: "等待 cooldownMs 後自動進入"
+    HALF_OPEN:
+      description: "半開，允許一次探針呼叫"
+      on_probe_success: "→ CLOSED，重設計數器"
+      on_probe_failure: "→ OPEN，重設 cooldown"
+
+  interface:
+    CircuitBreaker:
+      fields:
+        name: string
+        state: "CLOSED | HALF_OPEN | OPEN"
+      methods:
+        execute: "async <T>(fn: () => Promise<T>) => Promise<T>"
+        getState: "() => CircuitBreakerState"
+        reset: "() => void  # 手動重設（管理員用）"
+
+    CircuitBreakerConfig:
+      fields:
+        failureThreshold:
+          type: number
+          default: 3
+          description: "連續失敗 N 次後開路"
+        cooldownMs:
+          type: number
+          default: 30000
+          description: "OPEN → HALF_OPEN 等待時間（毫秒）"
+        successThreshold:
+          type: number
+          default: 1
+          description: "HALF_OPEN → CLOSED 需要的連續成功次數"
+
+    CircuitOpenError:
+      fields:
+        code: "CIRCUIT_OPEN"
+        breakerName: string
+        state: "OPEN"
+        cooldownRemainingMs: number
+
+  telemetry_events:
+    circuit_breaker_state_change:
+      fields:
+        breaker_name: string
+        from_state: "CLOSED | HALF_OPEN | OPEN"
+        to_state: "CLOSED | HALF_OPEN | OPEN"
+        failure_count: number
+        timestamp: string
+      when: "每次狀態轉換時上傳"
+
+  applicable_scenarios:
+    - "DevAP Fix Loop Agent 呼叫重試"
+    - "DevAP Judge / Quality Gate 重試"
+    - "DevAP API 呼叫（LLM API 不穩定保護）"
+    - "VibeOps Feedback Loop 重試"
+    - "VibeOps FLARE 主動檢索重試"
+    - "VibeOps AutoCompact（原始靈感來源）"
+
+  error_codes:
+    CB-001: "CIRCUIT_OPEN — 斷路器開路，請求被拒絕"
+    CB-002: "PROBE_FAILED — HALF_OPEN 探針失敗，重新開路"
+    CB-003: "INVALID_CONFIG — failureThreshold 必須 >= 1"

package/bundled/ai/standards/developer-memory.ai.yaml

@@ -154,6 +154,19 @@ standard:
         Upgrade path: pitfalls → pattern → mental-model.
       priority: recommended
 
+    - id: memory-as-hint-not-conclusion
+      trigger: "before acting on any recalled memory (file paths, function names, API flags, repo state)"
+      instruction: >
+        記憶是線索，不是結論（借鑑 lintsinghua/claude-code-book 記憶驗證原則）。
+        使用記憶前必須驗證其仍然成立：
+        - 記憶提到檔案路徑 → 先確認檔案存在（Glob/Read）
+        - 記憶提到函式或 flag → 先確認仍存在（Grep）
+        - 記憶描述 repo 架構快照 → 優先信任 git log / 原始碼
+        - 若記憶內容與現況衝突 → 信任現況，標記記憶為 needs-revision
+        禁止：直接引用記憶中的具體 API/路徑/函式名稱作為事實，
+        未獨立驗證即向使用者推薦操作。
+      priority: required
+
     - id: noise-control
       trigger: surfacing memories
       instruction: >

package/bundled/ai/standards/dual-phase-output.ai.yaml

@@ -0,0 +1,108 @@
+# Dual-Phase LLM Output Standard - AI Optimized
+# Source: XSPEC-035 (claude-code-book Ch.7 AutoCompact dual-phase design)
+
+standard:
+  id: dual-phase-output
+  name: Dual-Phase LLM Output Standard
+  description: 雙階段 LLM 輸出模式 — <analysis> 思考丟棄，<summary> 結構化保留
+
+  meta:
+    version: "1.0.0"
+    updated: "2026-04-15"
+    source: XSPEC-035
+    description: >
+      讓 LLM 充分推理的同時，避免思考過程累積在上下文中消耗 token 預算。
+      適用於所有需要 LLM 審查的場景：Judge、Evaluator、Guardian、AutoCompact。
+    scope: universal
+    borrowed_from: "claude-code-book Ch.7 formatCompactSummary dual-phase output"
+
+  guidelines:
+    - "所有 LLM 審查 Agent 必須要求雙階段輸出格式（<analysis> + <summary>）"
+    - "<analysis> 在後處理時必須丟棄，不得寫入持久化上下文或對話歷史"
+    - "<summary> 必須包含結構化結論欄位（decision、confidence、findings、next_action）"
+    - "若回應缺少雙階段格式，後處理器必須降級相容（完整回應視為 summary）並記錄警告"
+    - "summary 欄位命名需遵循本標準，各應用場景可擴充但不可刪減核心欄位"
+
+  format:
+    xml_tags:
+      analysis:
+        purpose: "LLM 思考草稿 — 後處理時丟棄"
+        required: true
+        content_guidance:
+          - "逐條審查邏輯"
+          - "邊界情境考量"
+          - "替代方案比較"
+      summary:
+        purpose: "結構化結論 — 後處理時保留"
+        required: true
+        core_fields:
+          decision:
+            type: enum
+            values: [approved, rejected, needs_revision]
+            required: true
+          confidence:
+            type: enum
+            values: [high, medium, low]
+            required: true
+          findings:
+            type: array
+            item_format: "[type] description"
+            required: true
+          next_action:
+            type: string
+            required: true
+        extension_fields:
+          note: "各應用場景可新增欄位，不可刪減上述核心欄位"
+          examples:
+            security: "severity: critical | high | medium | low, cwe_ids: [CWE-NNN]"
+            quality: "test_coverage: number, tech_debt_score: number"
+
+  prompt_template: |
+    You MUST respond using EXACTLY this two-phase XML structure:
+
+    <analysis>
+    [Your reasoning process — will be DISCARDED after processing]
+    - Step-by-step evaluation
+    - Edge case considerations
+    - Alternative comparisons
+    </analysis>
+
+    <summary>
+    decision: approved | rejected | needs_revision
+    confidence: high | medium | low
+    findings:
+      - [type] description
+    next_action: [recommended follow-up action]
+    </summary>
+
+    IMPORTANT: The <analysis> block is your scratchpad. Only <summary> persists.
+
+  post_processing:
+    extract_summary:
+      pattern: "<summary>([\\s\\S]*?)</summary>"
+      on_missing: fallback_to_full_response
+    discard_analysis:
+      pattern: "<analysis>([\\s\\S]*?)</analysis>"
+      action: discard
+    fallback:
+      trigger: "summary tag not found in response"
+      action: "use full response as summary content"
+      log_level: warn
+      message: "[WARN] dual-phase format missing, fallback to full response"
+
+  token_impact:
+    analysis_ratio: "50-70% of typical review response"
+    savings_per_review: "1000–3500 tokens"
+    savings_in_fix_loop_3x: "3000–10500 tokens"
+    note: "Savings accumulate in repeated review scenarios (Fix Loop, Feedback Loop)"
+
+  applicable_agents:
+    - DevAP Judge Agent
+    - VibeOps Evaluator Agent
+    - VibeOps Guardian Agent
+    - Any LLM-driven AutoCompact / summarization component
+
+  error_codes:
+    DPO-001: "summary tag missing — fallback activated"
+    DPO-002: "analysis tag missing — full response processed as-is"
+    DPO-003: "required summary field absent — parsing error"

package/bundled/ai/standards/execution-history.ai.yaml

@@ -1,5 +1,5 @@
 # Execution History Repository Standards - AI Optimized
-# Source: core/execution-history.md
+# Source: cross-project/specs/XSPEC-003-execution-history-standard-sdd.md
 
 standard:
   id: execution-history
@@ -11,11 +11,12 @@ standard:
     - "提供 L1/L2/L3 三層存取，平衡資訊量與 token 成本"
     - "敏感資訊在寫入時自動 redact"
     - "跨專案僅共享 L1 層級，遵守授權隔離"
+    - "歷史保留策略確保 L1/L2 索引永久保留，L3 artifacts 依 max_runs 設定自動清理以控制儲存空間"
 
   meta:
     version: "1.0.0"
     updated: "2026-04-02"
-    source: core/execution-history.md
+    source: cross-project/specs/XSPEC-003-execution-history-standard-sdd.md
     description: "基於 Meta-Harness 論文洞見，建立跨專案執行歷史標準"
 
   schema: