npm - xdrs-core - Versions diffs - 0.30.0 → 0.31.1 - Mend

xdrs-core 0.30.0 → 0.31.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/.xdrs/_core/adrs/index.md +1 -0
package/.xdrs/_core/adrs/principles/001-xdrs-core.md +1 -0
package/.xdrs/_core/adrs/principles/010-core-scope-naming.md +71 -0
package/.xdrs/_core/index.md +4 -0
package/package.json +2 -2

package/.xdrs/_core/adrs/index.md CHANGED Viewed

@@ -15,6 +15,7 @@ Foundational standards, principles, and guidelines.
 - [_core-adr-policy-007](principles/007-plan-standards.md) - **Plan standards** — How to structure ephemeral execution plans that implement decisions
 - [_core-adr-policy-008](principles/008-xdr-standards-structured.md) - **Policy standards - structured** — How to expose individually referenceable numbered rules inside a Policy when external citation by identifier is required
 - [_core-adr-policy-009](principles/009-presentation-standards.md) - **Presentation standards** — How to structure Marp slide presentations that support XDRS documents
+- [_core-adr-policy-010](principles/010-core-scope-naming.md) - **Core scope naming convention** — How to use the `-core` suffix on a scope to separate meta governance content from consumable policies in a domain
 ## Skills

package/.xdrs/_core/adrs/principles/001-xdrs-core.md CHANGED Viewed

@@ -64,6 +64,7 @@ Policies can be of different kinds, depending on the nature of the decision:
   - `_local` is a reserved scope for XDRS elements created locally to a specific project or repository. XDRS elements in `_local` MUST NOT be shared with or propagated to other contexts. This scope MUST always be placed in the lowest position in the root `index.md` so that its decisions override or extend any decisions from higher-positioned scopes. Shared root `index.md` files MUST NOT include an explicit link to `_local`, because `_local` remains workspace-local and is not distributed with shared packages. Readers, tools, and agents SHOULD still try the default workspace-local path `_local/index.md` when it exists, even without a root-index link. Documents in non-`_local` scopes MUST NEVER link to any document inside `_local`; documents inside `_local` MAY link to other documents inside `_local`.
   - **Types:** `adrs`, `bdrs`, `edrs`
   - there can exist sufixes to the standard scope names (e.g: `business-x-mobileapp`, `business-y-servicedesk`)
+  - The `-core` suffix is a reserved special suffix (e.g., `security-core`, `platform-core`) that designates a scope as the meta governance layer for all scopes sharing the same prefix. See `_core-adr-policy-010` for the full convention.
 - **Subjects:** MUST be one of the following depending on the type of the Policy. Use the subject to indicate the main concern of the decision.
   - **ADR subjects**
     - `principles`: Cross-cutting architecture and policy foundations.

package/.xdrs/_core/adrs/principles/010-core-scope-naming.md ADDED Viewed

@@ -0,0 +1,71 @@
+---
+name: _core-adr-policy-010-core-scope-naming-convention
+description: Defines the -core suffix naming convention for XDRS scopes used to hold meta governance content such as writing standards, structural templates, ownership, and process guidance for a domain. Use when designing or evaluating shared scopes.
+apply-to: All XDRS scope authors and maintainers
+valid-from: 2026-06-24
+---
+# _core-adr-policy-010: Core scope naming convention
+## Context and Problem Statement
+When teams create shared XDRS scopes (e.g., `security-standards`, `platform-engineering`), they often mix two kinds of content:
+- **Consumable policies**: rules and decisions that other teams or repositories must follow.
+- **Meta governance**: writing standards, structural templates, skill guidance, ownership definitions, and process rules that govern how content is authored within the domain.
+Mixing both kinds makes shared scopes harder to consume selectively and causes confusion about which content represents actual rules versus internal governance for scope contributors.
+How should teams separate meta governance from consumable policies within a scope domain?
+## Decision Outcome
+**Use a `-core` suffix sibling scope to hold all meta governance content for a domain.**
+A scope named `[domain]-core` (e.g., `security-core`, `platform-core`) is reserved for the meta organization of the `[domain]` scope family. It contains content that governs how policies are written and maintained within the domain — not the actual policies themselves.
+### Details
+#### 01-core-suffix-definition
+A scope name ending in `-core` signals that the scope holds meta governance content for scopes sharing the same prefix. It MUST NOT contain policies intended for direct consumption by other teams or repositories.
+Content that belongs in a `-core` scope:
+- Writing standards and templates specific to the domain.
+- Structural conventions for that domain's policies.
+- Process guidance for authoring or reviewing policies within the domain.
+- Skill files for domain-specific review or authoring workflows.
+- Ownership, contact, and governance information for the domain.
+Content that does NOT belong in a `-core` scope:
+- Actual rules or constraints for other teams to follow (e.g., security requirements, compliance rules).
+- Any policy intended to be enforced by external teams or repositories.
+#### 02-core-governs-same-prefix-scopes
+All XDRS scopes sharing the same prefix as a `-core` scope (e.g., `security-standards`, `security-cloud`) are governed by the standards defined in the corresponding `-core` scope (e.g., `security-core`). Authors of those scopes MUST follow the `-core` scope standards when writing, reviewing, or extending policies in any same-prefix scope.
+#### 03-core-scope-is-optional-but-recommended
+Creating a `-core` scope is optional. It is strongly recommended whenever a domain scope is intended to be shared with multiple teams or repositories. Separating meta governance into a `-core` scope prevents unnecessary internal content from being distributed to consumers and keeps the consumable scope focused on actual rules.
+#### 04-core-vs-local-scope
+The `-core` suffix is distinct from the `_local` scope:
+- `_local` holds project-specific overrides that are never shared and apply only to the current repository. It is implicitly present in every workspace and may contain a mix of local overrides unrelated to any particular domain.
+- A `-core` scope is a formal, named scope scoped to a domain. It can be shared selectively with contributors and is required to be followed by all authors writing content in any same-prefix scope.
+Use `_local` when meta governance is relevant only to the current repository. Use a `-core` scope when the governance applies to a named domain shared across teams or repositories.
+#### 05-core-scope-distribution
+A `-core` scope MAY be distributed to consumers alongside the companion consumable scope, or kept internal to the team that maintains the domain. When distributed, consumers who extend or contribute to the domain scope locally MUST follow its standards. When not distributed, internal contributors must still comply.
+## Considered Options
+1. **`_local` scope for meta content** — simple to set up, but mixes local project overrides with domain-level governance. Becomes confusing in large teams, especially when `_local` already contains project-specific policies.
+2. **Meta content embedded inside the consumable scope** — makes the shared scope noisier and harder for consumers to parse; no clear separation between governance and rules.
+3. **`-core` sibling scope (chosen)** — cleanly separates meta governance from consumable content, makes the governance explicit and discoverable, and enables selective distribution.

package/.xdrs/_core/index.md CHANGED Viewed

@@ -35,6 +35,10 @@ Each artifact type has its own writing standard:
 Slide presentations that support XDRS documents follow [_core-adr-policy-009](adrs/principles/009-presentation-standards.md). Slides use the Marp Markdown format, live in `.assets/` next to the document they support, and must maintain bidirectional links with the parent document.
+### Domain scope meta governance
+[_core-adr-policy-010](adrs/principles/010-core-scope-naming.md) defines the `-core` suffix naming convention for XDRS scopes. A scope named `[domain]-core` (e.g., `security-core`) holds meta governance content — writing standards, templates, ownership, and process guidance — for all scopes sharing the same prefix. It must not contain consumable policies, and all contributors to same-prefix scopes must follow its standards.
 ### Available skills
 The `_core` scope ships with seven skills that automate the most common framework operations:

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "xdrs-core",
-  "version": "0.30.0",
+  "version": "0.31.1",
   "description": "A framework to structure, compile and distribute Architectural (ADR), Business (BDR), and Engineering (EDR) decision records contents so that AI agents and humans can reliably find and use them with hierarchical scopes and controlled rollout in the format of distributable versioned packages.",
   "repository": {
     "type": "git",
@@ -30,7 +30,7 @@
     "jest": "^29.7.0"
   },
   "dependencies": {
-    "filedist": "^0.35.2",
+    "filedist": "^0.36.0",
     "ignore": "^7.0.5",
     "minimatch": "^10.2.5"
   },