arckit-cli 6.1.1__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (482) hide show
  1. arckit_cli/__init__.py +1120 -0
  2. arckit_cli-6.1.1.data/data/share/arckit/.arckit/memory/sessions.md +293 -0
  3. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/RENDERING.md +22 -0
  4. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/document-control-uae.md +20 -0
  5. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/document-control-uk.md +16 -0
  6. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/adm-preliminary-template.md +135 -0
  7. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/adr-template.md +588 -0
  8. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-design-template.md +390 -0
  9. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-governance-template.md +90 -0
  10. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-integration-template.md +159 -0
  11. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-inventory-template.md +108 -0
  12. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-maturity-template.md +388 -0
  13. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-security-template.md +213 -0
  14. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/analysis-report-template.md +323 -0
  15. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/application-inventory-template.md +221 -0
  16. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-board-template.md +194 -0
  17. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-change-template.md +205 -0
  18. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-diagram-template.md +610 -0
  19. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-principles-template.md +632 -0
  20. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-repository-template.md +107 -0
  21. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-strategy-template.md +666 -0
  22. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-bvergg-template.md +252 -0
  23. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-dsgvo-template.md +354 -0
  24. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-nisg-template.md +236 -0
  25. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-aescsf-template.md +189 -0
  26. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ai-assurance-template.md +243 -0
  27. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-disp-attestation-template.md +297 -0
  28. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-dss-template.md +302 -0
  29. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-e8-posture-template.md +377 -0
  30. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-energy-compliance-template.md +189 -0
  31. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ism-controls-template.md +462 -0
  32. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ndb-playbook-template.md +288 -0
  33. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ot-security-template.md +204 -0
  34. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-pia-template.md +394 -0
  35. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-pspf-template.md +380 -0
  36. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-soci-cirmp-template.md +206 -0
  37. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/aws-research-template.md +605 -0
  38. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/azure-research-template.md +559 -0
  39. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/backlog-template.md +465 -0
  40. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-aia-template.md +206 -0
  41. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-atip-template.md +192 -0
  42. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-charter-template.md +190 -0
  43. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-cloud-residency-template.md +173 -0
  44. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-fitaa-template.md +156 -0
  45. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-gc-digital-standards-template.md +208 -0
  46. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-itsg-33-template.md +228 -0
  47. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-ocap-template.md +205 -0
  48. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-ola-template.md +171 -0
  49. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-pia-template.md +193 -0
  50. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-pspc-template.md +214 -0
  51. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-soia-template.md +219 -0
  52. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/capability-map-template.md +125 -0
  53. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/competitors-template.md +113 -0
  54. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/conformance-assessment-template.md +507 -0
  55. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-mesh-contract-template.md +851 -0
  56. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-model-template.md +1043 -0
  57. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-source-profile-template.md +80 -0
  58. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/datascout-template.md +546 -0
  59. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/devops-template.md +961 -0
  60. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dfd-template.md +161 -0
  61. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dld-review-template.md +427 -0
  62. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dos-requirements-template.md +506 -0
  63. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dpia-template.md +1200 -0
  64. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-ai-act-template.md +227 -0
  65. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-cra-template.md +176 -0
  66. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-data-act-template.md +175 -0
  67. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-dora-template.md +197 -0
  68. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-dsa-template.md +183 -0
  69. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-nis2-template.md +196 -0
  70. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-rgpd-template.md +198 -0
  71. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/evaluation-criteria-template.md +719 -0
  72. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/finops-template.md +662 -0
  73. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-algorithme-public-template.md +162 -0
  74. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-anssi-carto-template.md +196 -0
  75. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-anssi-template.md +190 -0
  76. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-code-reuse-template.md +190 -0
  77. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-dinum-template.md +195 -0
  78. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-dr-template.md +187 -0
  79. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-ebios-template.md +209 -0
  80. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-irn-template.md +311 -0
  81. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-marche-public-template.md +178 -0
  82. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-pssi-template.md +270 -0
  83. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-rgpd-template.md +195 -0
  84. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-secnumcloud-template.md +188 -0
  85. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/framework-overview-template.md +247 -0
  86. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gap-analysis-template.md +198 -0
  87. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcloud-clarify-template.md +340 -0
  88. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcloud-requirements-template.md +370 -0
  89. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcp-research-template.md +585 -0
  90. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/glossary-template.md +117 -0
  91. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-code-search-template.md +213 -0
  92. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-landscape-template.md +271 -0
  93. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-reuse-template.md +214 -0
  94. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/grants-template.md +131 -0
  95. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/hld-review-template.md +760 -0
  96. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/jsp-936-template.md +1394 -0
  97. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/maturity-model-template.md +297 -0
  98. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/mlops-template.md +720 -0
  99. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/mod-secure-by-design-template.md +784 -0
  100. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/operationalize-template.md +1016 -0
  101. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/pages-template.html +5121 -0
  102. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/platform-design-template.md +1610 -0
  103. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/presentation-template.md +270 -0
  104. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/principles-compliance-assessment-template.md +389 -0
  105. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/project-plan-template.md +421 -0
  106. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/rationalization-template.md +208 -0
  107. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/requirements-template.md +1026 -0
  108. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/research-findings-template.md +939 -0
  109. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/risk-register-template.md +883 -0
  110. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/roadmap-template.md +787 -0
  111. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/service-assessment-prep-template.md +448 -0
  112. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/servicenow-design-template.md +273 -0
  113. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/sobc-template.md +1127 -0
  114. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/sow-template.md +785 -0
  115. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/stakeholder-drivers-template.md +493 -0
  116. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/story-template.md +889 -0
  117. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tcop-review-template.md +593 -0
  118. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tech-note-template.md +59 -0
  119. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tenders-template.md +124 -0
  120. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/traceability-matrix-template.md +360 -0
  121. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/transition-architecture-template.md +286 -0
  122. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ai-autonomy-tier-template.md +97 -0
  123. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ai-charter-template.md +81 -0
  124. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-classification-template.md +86 -0
  125. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-cloud-residency-template.md +136 -0
  126. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-data-sharing-template.md +105 -0
  127. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-digital-records-template.md +97 -0
  128. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ias-template.md +109 -0
  129. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-pdpl-template.md +105 -0
  130. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-priorities-alignment-template.md +99 -0
  131. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-procurement-template.md +115 -0
  132. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-uaepass-template.md +129 -0
  133. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-zero-bureaucracy-template.md +85 -0
  134. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-consumer-duty-board-report-template.md +49 -0
  135. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-consumer-duty-template.md +362 -0
  136. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-ctp-dependency-register-template.md +24 -0
  137. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-ctp-dependency-template.md +321 -0
  138. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-safeguarding-reconciliation-template.md +77 -0
  139. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-safeguarding-template.md +348 -0
  140. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-sca-rts-exemption-matrix-template.md +47 -0
  141. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-sca-rts-template.md +273 -0
  142. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-gov-ai-playbook-template.md +942 -0
  143. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-gov-atrs-template.md +1087 -0
  144. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-mdr-classification-template.md +307 -0
  145. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-case-template.md +214 -0
  146. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-hazard-template.md +217 -0
  147. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-safety-template.md +78 -0
  148. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-template.md +13 -0
  149. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-case-template.md +207 -0
  150. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-hazard-template.md +290 -0
  151. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-safety-template.md +81 -0
  152. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-template.md +13 -0
  153. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dtac-template.md +341 -0
  154. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ukgov-secure-by-design-template.md +1031 -0
  155. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-ai-impact-template.md +212 -0
  156. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-ai-rmf-template.md +232 -0
  157. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fedramp-readiness-template.md +209 -0
  158. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fedramp-ssp-template.md +352 -0
  159. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fisma-categorization-template.md +145 -0
  160. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-icam-template.md +216 -0
  161. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-nist-800-53-template.md +222 -0
  162. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-privacy-pia-template.md +191 -0
  163. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-sbom-eo-14028-template.md +253 -0
  164. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-zero-trust-template.md +234 -0
  165. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/vendor-profile-template.md +88 -0
  166. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/vendor-scoring-template.md +332 -0
  167. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-climate-template.md +269 -0
  168. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-doctrine-template.md +299 -0
  169. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-gameplay-template.md +346 -0
  170. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-map-template.md +587 -0
  171. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-value-chain-template.md +256 -0
  172. arckit_cli-6.1.1.data/data/share/arckit/CHANGELOG.md +3554 -0
  173. arckit_cli-6.1.1.data/data/share/arckit/VERSION +1 -0
  174. arckit_cli-6.1.1.data/data/share/arckit/docs/DEPENDENCY-MATRIX.md +929 -0
  175. arckit_cli-6.1.1.data/data/share/arckit/docs/README.md +322 -0
  176. arckit_cli-6.1.1.data/data/share/arckit/docs/WORKFLOW-DIAGRAMS.md +1088 -0
  177. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/adm-preliminary.md +72 -0
  178. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/adr.md +60 -0
  179. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-design.md +71 -0
  180. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-governance.md +61 -0
  181. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-integration.md +59 -0
  182. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-inventory.md +60 -0
  183. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-maturity.md +84 -0
  184. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-security.md +63 -0
  185. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ai-playbook.md +103 -0
  186. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/analyze.md +57 -0
  187. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/application-inventory.md +71 -0
  188. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/application-rationalization.md +71 -0
  189. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-board.md +60 -0
  190. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-change.md +73 -0
  191. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-repository.md +62 -0
  192. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/artifact-health.md +228 -0
  193. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-bvergg.md +86 -0
  194. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-dsgvo.md +75 -0
  195. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-nisg.md +94 -0
  196. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/atrs.md +98 -0
  197. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-aescsf.md +45 -0
  198. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ai-assurance.md +84 -0
  199. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-disp-attestation.md +90 -0
  200. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-dss.md +76 -0
  201. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-e8-posture.md +73 -0
  202. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-energy-compliance.md +47 -0
  203. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-federal-overlay.md +199 -0
  204. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ism-controls.md +78 -0
  205. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ndb-playbook.md +80 -0
  206. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ot-security.md +39 -0
  207. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-pia.md +72 -0
  208. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-pspf.md +81 -0
  209. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-soci-cirmp.md +40 -0
  210. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/autoresearch.md +334 -0
  211. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/aws-research.md +160 -0
  212. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/azure-research.md +157 -0
  213. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/backlog.md +58 -0
  214. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/build.md +132 -0
  215. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/business-capability-map.md +68 -0
  216. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/business-case.md +68 -0
  217. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/c4-layout-science.md +280 -0
  218. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-aia.md +81 -0
  219. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-atip.md +79 -0
  220. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-charter.md +81 -0
  221. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-cloud-residency.md +91 -0
  222. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-fitaa.md +81 -0
  223. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-gc-digital-standards.md +93 -0
  224. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-itsg-33.md +80 -0
  225. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-ocap.md +91 -0
  226. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-ola.md +80 -0
  227. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-pia.md +83 -0
  228. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-pspc.md +96 -0
  229. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-soia.md +87 -0
  230. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/codes-of-practice.md +154 -0
  231. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/competitors.md +202 -0
  232. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/conformance.md +153 -0
  233. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/create.md +61 -0
  234. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/custom-commands.md +236 -0
  235. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/customize.md +108 -0
  236. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-mesh-contract.md +239 -0
  237. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-model.md +69 -0
  238. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-quality-framework.md +118 -0
  239. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/datascout.md +162 -0
  240. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/declaration.md +59 -0
  241. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/design-review.md +66 -0
  242. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/devops.md +96 -0
  243. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dfd.md +187 -0
  244. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/diagram.md +118 -0
  245. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dld-review.md +102 -0
  246. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dos.md +109 -0
  247. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dpia.md +80 -0
  248. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/enterprise-scale.md +260 -0
  249. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-ai-act.md +82 -0
  250. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-cra.md +90 -0
  251. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-data-act.md +85 -0
  252. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-dora.md +83 -0
  253. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-dsa.md +85 -0
  254. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-nis2.md +82 -0
  255. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-rgpd.md +76 -0
  256. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/evaluate.md +115 -0
  257. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/export-okf.md +70 -0
  258. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/finops.md +117 -0
  259. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-algorithme-public.md +86 -0
  260. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-anssi-carto.md +69 -0
  261. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-anssi.md +79 -0
  262. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-code-reuse.md +86 -0
  263. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-dinum.md +83 -0
  264. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-dr.md +88 -0
  265. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-ebios.md +84 -0
  266. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-irn.md +103 -0
  267. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-marche-public.md +94 -0
  268. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-pssi.md +87 -0
  269. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-rgpd.md +75 -0
  270. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-secnumcloud.md +80 -0
  271. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/framework.md +234 -0
  272. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gap-analysis.md +70 -0
  273. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-clarify.md +108 -0
  274. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-competitors.md +61 -0
  275. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-search.md +106 -0
  276. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcp-research.md +169 -0
  277. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/glossary.md +190 -0
  278. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-code-search.md +119 -0
  279. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-landscape.md +114 -0
  280. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-reuse.md +112 -0
  281. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/govs-007-security.md +93 -0
  282. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/grants.md +106 -0
  283. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/graph-report.md +77 -0
  284. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/health.md +234 -0
  285. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/hld-review.md +110 -0
  286. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/hooks.md +121 -0
  287. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/impact.md +68 -0
  288. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/import-okf.md +67 -0
  289. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/init.md +159 -0
  290. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/jsp-936.md +60 -0
  291. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/knowledge-compounding.md +140 -0
  292. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/maturity-model.md +186 -0
  293. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mcp-servers.md +329 -0
  294. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/migration.md +333 -0
  295. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mlops.md +126 -0
  296. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mod-secure.md +124 -0
  297. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/national-data-strategy.md +115 -0
  298. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/navigator.md +86 -0
  299. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/operationalize.md +143 -0
  300. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pages.md +227 -0
  301. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pinecone-mcp.md +128 -0
  302. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/plan.md +66 -0
  303. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/platform-design.md +600 -0
  304. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/presentation.md +137 -0
  305. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pricing.md +62 -0
  306. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/principles-compliance.md +63 -0
  307. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/principles.md +55 -0
  308. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/procurement.md +57 -0
  309. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/productivity.md +217 -0
  310. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/remote-control.md +151 -0
  311. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/requirements.md +61 -0
  312. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/research.md +65 -0
  313. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/review.md +61 -0
  314. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/risk-management.md +70 -0
  315. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/risk.md +132 -0
  316. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roadmap.md +58 -0
  317. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/README.md +68 -0
  318. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/business-analyst.md +70 -0
  319. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/business-architect.md +70 -0
  320. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/cdo.md +59 -0
  321. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/ciso.md +61 -0
  322. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/cto-cdio.md +59 -0
  323. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/data-architect.md +68 -0
  324. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/data-governance-manager.md +59 -0
  325. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/delivery-manager.md +63 -0
  326. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/devops-engineer.md +55 -0
  327. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/enterprise-architect.md +84 -0
  328. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/it-service-manager.md +55 -0
  329. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/network-architect.md +58 -0
  330. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/performance-analyst.md +67 -0
  331. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/product-manager.md +62 -0
  332. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/security-architect.md +78 -0
  333. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/service-owner.md +58 -0
  334. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/solution-architect.md +75 -0
  335. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/technical-architect.md +68 -0
  336. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/score.md +91 -0
  337. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot1.md +61 -0
  338. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot2.md +62 -0
  339. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot3.md +62 -0
  340. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/search.md +71 -0
  341. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/secure.md +181 -0
  342. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/security-hooks.md +200 -0
  343. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/security.md +62 -0
  344. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/service-assessment.md +47 -0
  345. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/service-design.md +71 -0
  346. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/servicenow.md +152 -0
  347. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/session-memory.md +100 -0
  348. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sobc.md +129 -0
  349. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sow.md +125 -0
  350. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/stakeholder-analysis.md +51 -0
  351. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/stakeholders.md +138 -0
  352. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/start.md +276 -0
  353. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/story.md +61 -0
  354. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/strategy.md +211 -0
  355. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/submission-pack.md +72 -0
  356. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/supplier-profile.md +70 -0
  357. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/tcop.md +124 -0
  358. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/template-builder.md +125 -0
  359. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/tenders.md +193 -0
  360. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/testing-plugin-branches.md +79 -0
  361. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/traceability.md +58 -0
  362. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/transition-architecture.md +69 -0
  363. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/trello.md +139 -0
  364. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ai-autonomy-tier.md +84 -0
  365. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ai-charter.md +89 -0
  366. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-classification.md +73 -0
  367. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-cloud-residency.md +84 -0
  368. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-data-sharing.md +84 -0
  369. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-digital-records.md +71 -0
  370. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ias.md +93 -0
  371. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-overlay-maintenance.md +154 -0
  372. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-overlay.md +208 -0
  373. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-pdpl.md +73 -0
  374. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-priorities-alignment.md +82 -0
  375. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-procurement.md +71 -0
  376. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-uaepass.md +83 -0
  377. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-zero-bureaucracy.md +80 -0
  378. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-consumer-duty.md +178 -0
  379. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-ctp-dependency.md +181 -0
  380. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-payments-overlay.md +216 -0
  381. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-safeguarding.md +176 -0
  382. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-sca-rts.md +164 -0
  383. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/ai-playbook.md +56 -0
  384. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/algorithmic-transparency.md +44 -0
  385. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/digital-marketplace.md +55 -0
  386. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/secure-by-design.md +51 -0
  387. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/standards-map.md +108 -0
  388. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/technology-code-of-practice.md +63 -0
  389. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-mdr-classification.md +59 -0
  390. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-mod/secure-by-design.md +54 -0
  391. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-clinical-safety-overlay.md +214 -0
  392. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dcb0129.md +64 -0
  393. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dcb0160.md +62 -0
  394. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dtac.md +55 -0
  395. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/upgrading.md +130 -0
  396. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-ai-impact.md +71 -0
  397. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-ai-rmf.md +70 -0
  398. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-federal-overlay.md +111 -0
  399. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fedramp-readiness.md +69 -0
  400. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fedramp-ssp.md +71 -0
  401. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fisma-categorization.md +68 -0
  402. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-icam.md +70 -0
  403. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-nist-800-53.md +70 -0
  404. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-privacy-pia.md +74 -0
  405. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-sbom-eo-14028.md +71 -0
  406. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-zero-trust.md +68 -0
  407. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-climate.md +122 -0
  408. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-doctrine.md +120 -0
  409. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-gameplay.md +123 -0
  410. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-value-chain.md +130 -0
  411. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley.md +173 -0
  412. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/.agents/plugins/marketplace.json +20 -0
  413. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/README.md +325 -0
  414. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/VERSION +1 -0
  415. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/docs/DEPENDENCY-MATRIX.md +616 -0
  416. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/arckit-codex-hook.mjs +1270 -0
  417. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-inject.mjs +1497 -0
  418. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-rollups.mjs +247 -0
  419. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-utils.mjs +363 -0
  420. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/hook-utils.mjs +383 -0
  421. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/hooks.json +80 -0
  422. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/okf-frontmatter.mjs +279 -0
  423. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/project-context-builder.mjs +168 -0
  424. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/sync-guides.mjs +1120 -0
  425. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/README.md +68 -0
  426. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/VERSION +1 -0
  427. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/docs/DEPENDENCY-MATRIX.md +616 -0
  428. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/LICENSE +21 -0
  429. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/README.md +65 -0
  430. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/VERSION +1 -0
  431. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/docs/DEPENDENCY-MATRIX.md +616 -0
  432. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/opencode.json +25 -0
  433. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/.mcp.json +63 -0
  434. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/LICENSE +26 -0
  435. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/README.md +407 -0
  436. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/VERSION +1 -0
  437. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/vibe-config.toml +62 -0
  438. arckit_cli-6.1.1.data/data/share/arckit/scripts/README.md +680 -0
  439. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/000-global/ARC-000-PRIN-v1.0.md +120 -0
  440. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/001-test-project/ARC-001-STKE-v1.0.md +100 -0
  441. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/001-test-project/README.md +15 -0
  442. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/program-selfharness.md +748 -0
  443. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/program.md +269 -0
  444. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/check-prerequisites.sh +250 -0
  445. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/common.sh +359 -0
  446. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/create-project.sh +408 -0
  447. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/generate-document-id.sh +146 -0
  448. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/list-projects.sh +359 -0
  449. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/migrate-filenames.sh +553 -0
  450. arckit_cli-6.1.1.data/data/share/arckit/scripts/bump-version.sh +293 -0
  451. arckit_cli-6.1.1.data/data/share/arckit/scripts/check_doctype_collisions.py +30 -0
  452. arckit_cli-6.1.1.data/data/share/arckit/scripts/check_recipes.py +94 -0
  453. arckit_cli-6.1.1.data/data/share/arckit/scripts/check_references.py +144 -0
  454. arckit_cli-6.1.1.data/data/share/arckit/scripts/convert_vibe_agents.py +198 -0
  455. arckit_cli-6.1.1.data/data/share/arckit/scripts/convert_vibe_skills.py +499 -0
  456. arckit_cli-6.1.1.data/data/share/arckit/scripts/converter.py +2002 -0
  457. arckit_cli-6.1.1.data/data/share/arckit/scripts/create-sdg-repo.py +820 -0
  458. arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-arckit-architecture-hero.py +317 -0
  459. arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-arckit-hero.py +278 -0
  460. arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-release-notes.sh +112 -0
  461. arckit_cli-6.1.1.data/data/share/arckit/scripts/managed-agents/README.md +105 -0
  462. arckit_cli-6.1.1.data/data/share/arckit/scripts/managed-agents/arckit-agent.py +418 -0
  463. arckit_cli-6.1.1.data/data/share/arckit/scripts/push-extensions.sh +424 -0
  464. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/apply_doc_control_marker.py +50 -0
  465. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/common.py +288 -0
  466. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/create-project.py +373 -0
  467. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/generate-document-id.py +96 -0
  468. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/list-projects.py +238 -0
  469. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/migrate_classification.py +94 -0
  470. arckit_cli-6.1.1.data/data/share/arckit/scripts/render-brand-pngs.py +72 -0
  471. arckit_cli-6.1.1.data/data/share/arckit/scripts/standardise-colon.py +128 -0
  472. arckit_cli-6.1.1.data/data/share/arckit/scripts/sync-claude-plugin-layout.py +159 -0
  473. arckit_cli-6.1.1.data/data/share/arckit/scripts/sync-shared-assets.py +132 -0
  474. arckit_cli-6.1.1.data/data/share/arckit/scripts/tag-plugins.sh +65 -0
  475. arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-doc-types-dual-registration.mjs +57 -0
  476. arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-fde-templates.mjs +100 -0
  477. arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-regime-registration.mjs +65 -0
  478. arckit_cli-6.1.1.dist-info/METADATA +1966 -0
  479. arckit_cli-6.1.1.dist-info/RECORD +482 -0
  480. arckit_cli-6.1.1.dist-info/WHEEL +4 -0
  481. arckit_cli-6.1.1.dist-info/entry_points.txt +2 -0
  482. arckit_cli-6.1.1.dist-info/licenses/LICENSE +26 -0
@@ -0,0 +1,3554 @@
1
+ # Changelog
2
+
3
+ All notable changes to ArcKit will be documented in this file.
4
+
5
+ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
6
+ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
7
+
8
+ ## [Unreleased]
9
+
10
+ ## [6.1.0] — 2026-06-30
11
+
12
+ ### Added
13
+
14
+ - **TOGAF ADM and agent architecture overlays.** Added the community
15
+ `arckit-togaf-adm` and `arckit-agent-architecture` plugins, plus the
16
+ supporting doc types, templates, recipes, release wiring, and contributors
17
+ page coverage.
18
+
19
+ ## [6.0.0] — 2026-06-30
20
+
21
+ ### Added
22
+
23
+ - **Single Claude Code marketplace repo.** Added release tooling and metadata
24
+ so `tractorjuice/arckit-claude` publishes the core plugin plus regional,
25
+ sector, tooling, and supplier overlays from one structured repo.
26
+
27
+ ### Changed
28
+
29
+ - **Claude marketplace install path.** Updated user-facing documentation,
30
+ test-repo templates, and release guidance to prefer
31
+ `tractorjuice/arckit-claude` for Claude Code installs.
32
+
33
+ ## [5.15.2] — 2026-06-30
34
+
35
+ ### Fixed
36
+
37
+ - **Discord invite links (#623).** Updated Discord invite links across the
38
+ documentation site.
39
+
40
+ ### Changed
41
+
42
+ - **Health output documentation (#620).** Clarified that `/arckit:health`
43
+ writes `docs/health.json` as part of its normal reporting flow.
44
+ - **Documentation site updates.** Added the ArcKit usage thank-you article and
45
+ GA4 site tag.
46
+
47
+ ## [5.15.1] — 2026-06-29
48
+
49
+ ### Added
50
+
51
+ - **OpenCode extension metadata.** Added a description to the standalone
52
+ `arckit-opencode` extension manifest.
53
+
54
+ ### Fixed
55
+
56
+ - **Codex hook runner resolution (#619).** Codex lifecycle hooks now resolve the
57
+ hook runner from `CODEX_PLUGIN_ROOT` or the installed plugin cache instead of
58
+ assuming Codex was started from the extension directory. The converter and
59
+ Codex tests now guard both bundled plugin hooks and generated standalone
60
+ config hooks against cwd-dependent runner paths.
61
+ - **Self-Harness utility hardening (#617).** Hardened the Self-Harness support
62
+ utilities added in v5.15.0.
63
+ - **Standalone extension release tags (#607).** Fixed extension release
64
+ publishing so standalone extension repos receive release tags consistently.
65
+ - **Documentation site rendering.** Corrected SVG font-family syntax in the new
66
+ ArcKit Architects hero image.
67
+
68
+ ### Changed
69
+
70
+ - **Documentation and article index updates.** Added the ArcKit Architects, OKF,
71
+ and Self-Harness articles, moved ArcKit Architects to the first article slot,
72
+ refreshed article indexes, `llms.txt`, sitemap metadata, getting-started
73
+ assistant coverage, and community footer links.
74
+ - **Extension validation coverage (#608).** Added full extension suites to keep
75
+ generated targets aligned with the converter.
76
+
77
+ ## [5.15.0] — 2026-06-19
78
+
79
+ ### Added
80
+
81
+ - **Self-Harness autoresearch implementation.** Added a Self-Harness enhanced
82
+ autoresearch program based on arXiv:2606.09498v1, plus tracer, weakness-miner,
83
+ harness-proposer, and harness-validator utilities for iterative harness
84
+ improvement.
85
+ - **Open Knowledge Format interoperability.** Added `/arckit:export-okf` and
86
+ `/arckit:import-okf` plus shared OKF frontmatter helpers. Export writes copied
87
+ OKF-compatible Markdown bundles without mutating source ARC files. Import scans
88
+ OKF Markdown, writes `.arckit/tmp/okf-import-report.json`, and materializes
89
+ valid non-duplicate entries as `RSCH` review notes by default.
90
+ - **Optional OKF source frontmatter stamping.** `provenance-stamp.mjs` can now
91
+ merge OKF metadata into native ARC artifacts when explicitly enabled with
92
+ `ARCKIT_OKF_FRONTMATTER=1` or `.arckit/config.json` containing
93
+ `{ "okfFrontmatter": true }`. Stamping is off by default and idempotent.
94
+
95
+ ### Changed
96
+
97
+ - **OKF documentation coverage.** Updated remaining extension READMEs, getting
98
+ started docs, guide index, remote-control docs, MCP setup docs, and copied
99
+ dependency matrices so all current documentation surfaces mention the OKF
100
+ import/export workflow consistently.
101
+
102
+ ## [5.14.0] — 2026-06-17
103
+
104
+ ### Added
105
+
106
+ - **Mistral Vibe CLI extension support (#598).** ArcKit now ships a Vibe
107
+ extension with converted ArcKit skills, Vibe agent TOML, bundled templates,
108
+ scripts, schemas, references, and MCP configuration. The generated payload is
109
+ published to the standalone
110
+ [`tractorjuice/arckit-vibe`](https://github.com/tractorjuice/arckit-vibe)
111
+ repository, matching the existing separate Codex, Gemini, OpenCode, Copilot,
112
+ and Paperclip extension repo model.
113
+
114
+ ## [5.13.2] — 2026-06-17
115
+
116
+ ### Fixed
117
+
118
+ - **STALE-EXT scans `external/` recursively (#595).** `/arckit:health` now
119
+ includes files nested under project `external/` subdirectories and reports
120
+ their relative paths, instead of only checking direct children. Claude, Codex,
121
+ and Gemini session/context external-document listings use the same recursive
122
+ scan.
123
+ - **Documentation site search metadata improved.** The generated site now ships
124
+ refreshed SEO metadata, cache headers, sitemap entries, and the AI CLI harness
125
+ article so search and social previews index the current documentation.
126
+ - **External context supports subtitle/transcript files (#600).** Project
127
+ `external/` guidance, scaffolding, and project context handling now include
128
+ `.srt` and `.vtt` transcript files alongside PDFs, Word documents, Markdown,
129
+ images, CSV, and SQL references.
130
+ - **Manifest auto-update tolerates legacy entries without `documentId` (#601).**
131
+ `hooks/update-manifest.mjs` now deduplicates existing manifest entries by
132
+ `documentId` when present and falls back to the entry path basename when
133
+ older `docs/manifest.json` rows omit `documentId`, avoiding non-blocking
134
+ PostToolUse warnings after `/arckit:principles` writes global artifacts.
135
+
136
+ ## [5.13.1] — 2026-06-11
137
+
138
+ ### Changed
139
+
140
+ - **Claude Code minimum-version floor raised v2.1.156 → v2.1.172.** v2.1.172 fixed wildcard-domain `WebFetch` permission rules (`WebFetch(domain:*.gov.uk)`) that never matched subdomains on earlier clients — the exact shape ArcKit's security-hooks guide recommends for confining research-agent traffic in OFFICIAL-SENSITIVE deployments, so the floor makes that shipped guidance actually hold. v2.1.172 also carries the Claude Fable 5 runtime (GA in v2.1.170); ArcKit defaults to the latest model tier. Updated every floor reference: `version-check.mjs` (`MIN_CLAUDE_CODE_VERSION` + warning bullets), `CLAUDE.md`, `README.md`, `docs/guides/enterprise-scale.md` (`requiredMinimumVersion` example), `hooks/README.md`, and the repo/test-repo `.claude/settings.json` `minimumVersion` (#593).
141
+
142
+ ## [5.13.0] — 2026-06-10
143
+
144
+ ### Added
145
+
146
+ - **arckit-uk-gcloud** (13th marketplace plugin) — Proprietary, Claude-Code-only supplier-side G-Cloud bid-authoring overlay: 11 commands (supplier-profile, service-design, sdd-lot1/2/3, declaration, pricing, security, gcloud-competitors, review, submission-pack), 8 doc-types (SUPP/SVCD/SDD/DECL/PRIC/SECA/GCMP/GCRV), 3 skills (gcloud-framework, cloud-security, sfia-skills), and the uk-gcloud-submission build recipe. Requires arckit core. Ported from the standalone gcloud-kit plugin. Not distributed to the non-Claude extension formats (proprietary).
147
+
148
+ ## [5.12.1] — 2026-06-10
149
+
150
+ ### Fixed
151
+
152
+ - **Secret scanner no longer false-positives on code/IaC references to secrets**
153
+ (#590). The generic key-value rules in `secret-file-scanner.mjs` and
154
+ `secret-detection.mjs` matched any non-whitespace value, so legitimate
155
+ assignments that *reference* a secret rather than hardcoding it —
156
+ `secret = module.sm.secret_ids["x"]` (Terraform), `password = var.db_password`,
157
+ `api_key = process.env.API_KEY`, Pulumi `config.requireSecret(...)`, Kubernetes
158
+ `secretKeyRef.name`, CDK `Token.fromAsset(...)` — were blocked. A structural
159
+ reference guard now exempts values that are an identifier followed by a property
160
+ access, index, or call, or a `${...}`/`$(...)` interpolation. Literal/unquoted
161
+ secrets and provider token formats (`sk-`, `ghp_`, `AIza`, PEM, …) are still
162
+ caught. The two hooks' pattern libraries were realigned to be byte-identical and
163
+ are now covered by `tests/plugin/scanner-reference-guard.test.mjs`, which also
164
+ guards against future drift between them.
165
+
166
+ ## [5.12.0] — 2026-06-09
167
+
168
+ ### Added
169
+
170
+ - **`arckit-fde` plugin (12th marketplace plugin)** — a lean, Claude Code only ArcKit
171
+ plugin with one command, `/arckit-fde:create`, that interviews the user and renders a
172
+ brandable, GitHub-Pages-ready Forward Deploy Engineering consulting website into `docs/`.
173
+ Clone-and-substitute templates (scalar `{{TOKEN}}`s plus `<!-- BEGIN/END -->` list
174
+ regions; brand colour via a single `:root` CSS custom property), `uk-public-sector` and
175
+ `generic` market presets, a saved `fde-site.config.yaml` for repeatable re-renders, and
176
+ discovery metadata (`llms.txt`, `sitemap.xml`, `robots.txt`, `.nojekyll`). Not wired into
177
+ the converter (Claude-only), no governance doc-types, no dependencies. Includes a
178
+ `scripts/tests/test-fde-templates.mjs` consistency guard and a launch article. The
179
+ officially-maintained command baseline is unchanged; `/arckit-fde:create` is a tooling
180
+ command.
181
+
182
+ ## [5.11.2] — 2026-06-08
183
+
184
+ ### Changed
185
+
186
+ - **Generated non-Claude extension dirs moved under `extensions/`.** The five converter-output dirs (`arckit-codex`, `arckit-opencode`, `arckit-copilot`, `arckit-gemini`, `arckit-paperclip`) now live under `extensions/` instead of the repo root, decluttering the top level and mirroring the `plugins/` grouping used for Claude Code plugin sources. The dirs remain gitignored generated content (only hand-authored files per extension are tracked); `arckit-claude` is still the single source of truth — run `python scripts/converter.py` after pulling. Build tooling (`scripts/converter.py`, `scripts/bump-version.sh`, `scripts/push-extensions.sh`), packaging (`pyproject.toml` shared-data, CLI data-path resolution — installed wheel layout now `share/arckit/extensions/<ext>`), CI, tests and docs were updated accordingly. Published-extension repos and install commands are unchanged.
187
+
188
+ ## [5.11.1] — 2026-06-07
189
+
190
+ Maintenance release — repository restructure and hygiene only. **Plugin content is unchanged**; installation and usage are identical to 5.11.0.
191
+
192
+ ### Changed
193
+
194
+ - **Plugin sources moved under `plugins/`** (#585). All 11 Claude Code plugin source directories (`arckit-claude` + 10 community overlays) now live under `plugins/` (e.g. `plugins/arckit-claude/`); `marketplace.json` points each entry at `./plugins/<name>`. The generated, gitignored non-Claude extension dirs stay at the repo root. Release tooling, CI, tests and docs were updated accordingly.
195
+ - **Generated distribution formats are no longer tracked** (#581). The five non-Claude extension dirs (`arckit-codex`, `arckit-opencode`, `arckit-copilot`, `arckit-gemini`, `arckit-paperclip`) are regenerated by `scripts/converter.py` and published to their own repos by `scripts/push-extensions.sh`, so their ~2,600 generated files are now gitignored rather than committed. `arckit-claude` is the single source of truth — run `python scripts/converter.py` after pulling.
196
+ - Gitignored the `docs/superpowers/` dev-workflow process artefacts (#583); noted that `tools/wardley-lsp/` now lives in its own repository (#582).
197
+
198
+ ### Removed
199
+
200
+ - **`docs/proposals/`** confidential partnership material removed from the public repo and gitignored (#584).
201
+
202
+ ## [5.11.0] — 2026-06-05
203
+
204
+ ### Added
205
+
206
+ - **End-of-turn traceability nudge** (#578). The `Stop` hook (`session-learner.mjs`) now emits one gentle, non-blocking next-step suggestion via `hookSpecificOutput.additionalContext` when a session's commits leave a curated traceability-chain gap — `REQ`→no `TRAC` (`/arckit:traceability`), `STKE`→no `REQ` (`/arckit:requirements`), `REQ`→no `DATA` (`/arckit:data-model`), `ADR`→no `DIAG` (`/arckit:diagram`). It reacts to the just-finished turn, distinct from the SessionStart stale-artifact monitor and `/arckit:navigator`/`health`. Version-gated to Claude Code v2.1.163+ (older clients treat a `Stop` `additionalContext` as a hook error): `version-check.mjs` persists the detected client version to `.arckit/memory/.cc-version` at SessionStart and the nudge stays silent below the gate, on `StopFailure`, or when `ARCKIT_NO_NUDGE` is set. The decision logic is the pure, unit-tested `selectNudge` in `session-nudge.mjs`.
207
+ - **Per-agent telemetry attribution** (#579). `telemetry.mjs` stamps `agent_id`/`agent_type` (Claude Code v2.1.145+) onto latency and MCP records when a tool runs inside a subagent, so the session summary and `docs/telemetry.json` now break tool activity down **by agent** (e.g. `arckit-research` vs the main thread). New pure `telemetry-rollup.mjs` (`summariseTelemetry`/`rollupTelemetry`) adds a `byAgent` breakdown and the `/arckit:pages` "Recent Sessions" panel surfaces the busiest subagent. `parent_agent_id` is not exposed to hooks, so activity is attributed per agent rather than reconstructing the dispatch tree.
208
+ - **`minimumVersion` floor guidance** (#575). The below-floor `version-check.mjs` warning now recommends adding `"minimumVersion"` to `.claude/settings.json` so background auto-updates / `claude update` cannot drift below ArcKit's Claude Code floor — distinct from the org-only managed `requiredMinimumVersion`. Dogfooded in this repo and the test-repo scaffold.
209
+
210
+ ### Changed
211
+
212
+ - **Documentation — Claude Code v2.1.161–v2.1.163 adoption** (#576). New "Fleet & Version Governance (managed settings)" section in the enterprise-scale guide (`requiredMinimumVersion`/`requiredMaximumVersion`, `pluginSuggestionMarketplaces`, `OTEL_RESOURCE_ATTRIBUTES`); the MCP guide notes the sub-1000 ms per-server `timeout` floor and that `claude mcp` now redacts secrets; the autoresearch guide documents `--fallback-model`; the security-hooks guide documents scoping research-agent `WebFetch` to approved domains; the custom-commands guide documents the `\$` literal-dollar escape; `/plugin list --enabled` noted in the install guide.
213
+ - **Documentation — effort-tier accuracy** (#577). Corrected the `effort:` frontmatter description: `max` is supported on Opus 4.6/4.7/4.8 and `xhigh` is the tier Opus 4.7/4.8 add. Verified ArcKit's `effort: max` commands run as `max` on Opus 4.8 (no code change needed).
214
+
215
+ ## [5.10.0] — 2026-06-04
216
+
217
+ ### Added
218
+
219
+ - **AU Federal visual-evidence enrichment** (derived from #569). The `arckit-au` Federal commands and templates now compose with ArcKit's existing architecture and evidence tooling — `/arckit:diagram`, `/arckit:dfd`, `/arckit:data-model`, `/arckit:servicenow`, `/arckit:risk`, `/arckit:traceability`, `/arckit:graph-report` and `/arckit:maturity-model` — via embedded enrichment handoffs and an "ArcKit Architecture Evidence Map" section in each command. A standard **Visual Evidence Decision Rule** is applied across all ten Federal templates: generate companion visuals only when the evidence has enough structure for real nodes and relationships; generate a clearly marked draft visual with `Pending Input` labels when evidence is partial but structurally useful; otherwise record a **Visual Evidence Gap** and list the minimum inputs needed. The guidance stays cross-sector (SOCI/OT is not made energy-specific). The `au-federal` recipe gains default visual/evidence targets (DIAG, DFD, ServiceNow, maturity, traceability) and a `graph-report` post-build hook, plus synthetic eval fixtures for the complete / partial / sparse evidence scenarios.
220
+ - **`MMOD` (Maturity Model Assessment) doc-type registered.** The core `/arckit:maturity-model` command has always emitted `ARC-*-MMOD-*` document IDs, but `MMOD` was never registered in `config/doc-types.mjs` or the `/arckit:pages` allow-list, so maturity artefacts were not recognised by graph-inject or the documentation site. Registered as a regime-neutral `Governance` type (severity `HIGH`, matching sibling governance types such as `RISK` and `TRAC`).
221
+
222
+ ### Fixed
223
+
224
+ - **`findRepoRoot` no longer mis-detects an unrelated `projects/` directory as the repo root** (#572). Hooks now treat a `projects/` directory as the ArcKit repo root only when it contains a numbered project entry (`NNN` / `NNN-…`, e.g. `000-global`), so an empty or unrelated `projects/` higher up the tree is ignored. Also normalises Windows path separators in `allow-plugin-internals` so the plugin-internals allowlist works on Windows. Adds a dedicated `findRepoRoot` unit test, wired into CI.
225
+
226
+ ### Changed
227
+
228
+ - **All command cross-references standardised on the colon namespace `/arckit:<command>`** (~5,600 references across ~600 files). This matches the official Claude Code plugin invocation syntax (plugin skills use a `plugin-name:skill-name` namespace) and replaces the previous mixed convention where templates, guides, the README, scripts and several overlays used the non-runnable dot form `/arckit.<command>`. Wardley sub-commands correctly keep the dot before the sub-command (`/arckit:wardley.gameplay`). File paths and the Codex/OpenCode `arckit.<name>.md` filenames are unaffected; Codex (`$arckit-<command>`) and Copilot (`/arckit-<command>`) per-target forms are unchanged. `CLAUDE.md`, `AGENTS.md` and `CONTRIBUTING.md` are corrected (they had wrongly documented Claude and OpenCode as using the dot form). A CI guard (`scripts/standardise-colon.py --check`) now fails the build if a dot-form reference is reintroduced. Historical CHANGELOG entries and published articles are intentionally left as written.
229
+
230
+ ## [5.9.2] — 2026-06-03
231
+
232
+ ### Fixed
233
+
234
+ - **`CMPT` and `TNDR` now sequence correctly in `generate-document-id.sh`** (#566). The bundled helper hardcoded `MULTI_INSTANCE_TYPES` without `CMPT` or `TNDR` (both added in 5.9.0), so `/arckit:competitors` and `/arckit:tenders` received document IDs with **no sequence number** (e.g. `ARC-001-CMPT-v1.0`) and collided on every run. The plugin copy (`arckit-claude/scripts/bash/`) — the one the plugin cache actually executes — had drifted from the already-fixed CLI copy (`scripts/bash/`), despite the script's own "keep in sync with `doc-types.mjs`" comment. Added `TNDR CMPT` after `DSCT` to match `config/doc-types.mjs MULTI_INSTANCE_TYPES` and regenerated the codex / copilot / opencode / gemini copies via the converter.
235
+
236
+ ### Changed
237
+
238
+ - **Writer-subagent writes pre-authorised in the dev repo** (#566). The five writer subagents (`competitors` / `tenders` / `gov-reuse` / `datascout` / `grants`) hold `Write`/`Edit` but run non-interactively, so a gated `Write` is auto-denied — a subagent cannot surface an approval prompt. Added scoped `Write(//workspaces/arc-kit/projects/**)` + `Edit(...)` rules to `.claude/settings.json`. Least-privilege: the writers have no web/MCP tools and the orchestrator schema-validates payloads before they run, so this only authorises the boundary the reader/writer split already enforces.
239
+
240
+ ## [5.9.1] — 2026-06-03
241
+
242
+ ### Fixed
243
+
244
+ - **All MCP-backed subagents can now reach their plugin MCP servers** (#564, #565). `/arckit:tenders` and `/arckit:competitors` (#564), and then every other MCP-backed agent (#565), were falling through to empty/degraded paths because their reader/research subagents could not call the bundled MCP servers. Two root causes, both required, confirmed against the Claude Code docs:
245
+ - **Tool-name prefix.** Plugin-bundled MCP tools surface at runtime as `mcp__plugin_arckit_<server>__<tool>`, but the agents' `tools:` allowlists used the bare `mcp__<server>__` form, which matches nothing in a subagent allowlist. Prefixed the tool names in 8 agents: `arckit-tenders-reader` (#564) plus `arckit-aws-research`, `arckit-azure-research`, `arckit-gcp-research`, `arckit-gov-code-search`, `arckit-gov-landscape`, `arckit-gov-reuse-reader`, `arckit-datascout-reader` (#565).
246
+ - **Deferred servers don't reach subagents.** A deferred (non-`alwaysLoad`) plugin MCP server is not injected into subagent context — only the main agent can load it on demand — so a subagent needs `alwaysLoad: true` to see it. Added `alwaysLoad` to `uk-tenders` (#564), `govreposcrape`, `google-developer-knowledge` and `datacommons-mcp` (#565), joining `aws-knowledge` / `microsoft-learn` which already had it. For the two keyed servers, a keyless user's session attempts the connection at startup; per the docs an auth failure marks the server failed and the session continues, bounded by the 5s connect timeout.
247
+ - **Codex extension `sync-guides.mjs` drift** (#562). Re-synced the hand-maintained `sync-guides.mjs` between `arckit-claude` and `arckit-codex` — restored the NHS clinical-safety block and the `{{REPO_OWNER}}` substitution that had drifted out of the Codex copy.
248
+
249
+ ### Changed
250
+
251
+ - **Per-page canonical / Open Graph metadata for arckit.org viewers** (#561), plus the `pages-template.html` head, so generated documentation sites and the article viewers emit correct canonical and OG tags.
252
+ - **`/arckit:start` workflow-trigger note** corrected for the Claude Code v2.1.160 `workflow` → `ultracode` keyword rename (#522 item 59, #560).
253
+
254
+ ## [5.9.0] — 2026-06-02
255
+
256
+ ### Added
257
+
258
+ - **`/arckit:competitors` — Competitor Landscape** (#556). Rival suppliers, awarded-value market share, head-to-head and concentration analysis from the same ~677,000 UK contracting processes as `/arckit:tenders`. Shares the `arckit-tenders-reader` subagent (same MCP reader, different orchestrator/writer lens). Outputs `CMPT` artefact; feeds into `risk` (supplier-concentration/single-supplier-dependency risk), `sobc` (market-context benchmark), `research` (award-evidence grounding), `score` (Company Experience evidence) — all regime-gated handoffs under `governance_framework: UK Gov`.
259
+ - **Assurance wiring — TNDR/CMPT artefacts** (#556). Four existing commands now consume TNDR and/or CMPT artefacts as optional inputs: `risk` (supplier-concentration risk section), `sobc` (Economic Case market-context benchmarks), `research` (award-evidence grounding in the build-vs-buy analysis), `score` (Company Experience evidence in the vendor-evaluation scorecard). All wiring is regime-gated (UK Gov `governance_framework`) and added as optional `handoffs:` to the producing commands, plus `## Context` blocks in the consuming commands.
260
+ - **`/arckit:tenders` — Procurement Market Intelligence** (#556). Award-value benchmarks, top suppliers, incumbency and concentration from ~677,000 UK contracting processes (Find a Tender Service, Contracts Finder, Public Contracts Scotland, Sell2Wales, eTendersNI). Three-tier reader/orchestrator/writer subagent split; reader allowlists 7 read-only tools; `query_sql` never allowlisted (prompt-injection surface). Outputs `TNDR` artefact; feeds into `sobc` (Economic Case benchmarks), `risk` (concentration risk), `research` (build-vs-buy context). Shares `arckit-tenders-reader` with `/arckit:competitors`.
261
+ - **`uk-tenders` bundled MCP server** (#556). Keyless `http` MCP at `https://tenders.run.cns.me/mcp`, deferred (no `alwaysLoad`). 11 tools; 7 allowlisted by `arckit-tenders-reader`; `query_sql` documented-only and never allowlisted. Nightly refresh, best-effort single Cloud Run, no formal SLA — degrades gracefully. Data re-published under OGL v3.0.
262
+ - **`TNDR` + `CMPT` doc-types** (#556). `TNDR` (Procurement Market Intelligence, regime UK) and `CMPT` (Competitor Landscape, regime UK) registered in `config/doc-types.mjs` and `commands/pages.md`. Both now live.
263
+
264
+ ## [5.8.0] — 2026-06-01
265
+
266
+ ### Added
267
+
268
+ - **`arckit-au-energy` community overlay — first Australian sector overlay (11th marketplace plugin).** Adds the Australian Energy Sector overlay as a standalone sector plugin layered on the `arckit-au` jurisdiction baseline, mirroring how `arckit-uk-finance` / `arckit-uk-nhs` layer sectors on the UK baseline (rather than bundling the sector menu inside the jurisdiction overlay). Two commands — `au-aescsf` (AESCSF maturity assessment) and `au-energy-compliance` (AER ring-fencing, AEMC NER/NGR, AEMO interfaces, DERMS/DOE, CSIP-AUS, SOCI escalation) — plus the `au-energy` build recipe (22 targets, optional default-off `SERVICE_INVENTORY`). The recipe composes federal-layer targets (`AU_E8`, `AU_ISM`, `AU_OT`, `AU_SOCI`, `AU_PIA`, `AU_NDB`) from `arckit-au`, so the plugin manifest declares dependencies on **both** `arckit` core and `arckit-au` — the marketplace's first community→community plugin dependency. Doc types `AUAESCSF` + `AUENERGY` (regime AU, HIGH severity). Ships public synthetic evaluation fixtures (`tests/fixtures/au-energy/`) — an applicable DNSP case and a non-SOCI supplier negative case — with deterministic pytest coverage. Register/evidence-heavy energy review composes existing skills (`data-model`, `servicenow`, `dfd`, `diagram`, `risk`, `maturity-model`, `traceability`, `graph-report`) instead of a new inventory command. Original work by @royster70 (#549), repackaged from a stacked-on-#539 draft into a clean standalone sector plugin. Also corrected the `arckit-au` marketplace description from "8 commands" to "10 commands" (OT security + SOCI/CIRMP landed in #539).
269
+ - **govreposcrape dependency-intelligence tools wired into the gov agents** (#550). Following the upstream expansion of the `govreposcrape` MCP server from 1 tool to 9, two of the new dependency-intelligence tools are now consumed by ArcKit:
270
+ - **`dependency_compare` → `/arckit:gov-reuse`.** The `arckit-gov-reuse-reader` subagent runs pairwise dependency-overlap between candidate repositories that share a capability and emits the results in a new optional `dependency_comparisons` array on the gov-reuse handoff schema. The orchestrator (`commands/gov-reuse.md`) uses overlap ≥ 60% to collapse near-duplicate / forked candidates — keeping the higher-scored repo as the primary recommendation and avoiding double-counting effort savings — and the writer renders a new **Dependency Overlap Analysis** section in the GOVR artefact. Reader budget capped at 3 `dependency_compare` calls / 5 comparison entries per dispatch.
271
+ - **`vulnerability_exposure` → `/arckit:gov-landscape`.** The `arckit-gov-landscape` agent now scans the domain's major organisations and dominant packages for known-CVE blast-radius (via the SBOM graph + live OSV.dev) and renders a new **Supply-Chain & Vulnerability Exposure** section (exposure by organisation, exposure by dominant package, end-of-life flags). Flagged as a landscape-level signal, not a per-repo audit — points users to `/arckit:secure` / `/arckit:risk` for adoption decisions.
272
+ - Both tools added to the respective agents' `tools:` frontmatter allowlists. `docs/MCP-CATALOGUE.md` updated to mark them as consumed (17 of 23 tools now wired). Non-Claude formats regenerated via `scripts/converter.py`.
273
+ - **Cross-sector OT security and SOCI/CIRMP commands added to the `arckit-au` federal overlay** (#539), taking it to 10 commands. `au-ot-security` (ASD operational technology cyber security assessment for connected OT/ICS/SCADA environments) and `au-soci-cirmp` (SOCI Act Critical Infrastructure Risk Management Program governance + evidence pack). Both are general Australian critical-infrastructure capabilities — optional default-off `AU_OT` / `AU_SOCI` targets in the `au-federal` recipe — and are reused (not redefined) by the new `arckit-au-energy` overlay. Doc types `AUOT` + `AUSOCI` (regime AU, HIGH severity).
274
+
275
+ ### Fixed
276
+
277
+ - **Windows validation paths** (#548). Normalised plugin-root path comparisons in `allow-plugin-internals.mjs` and the generated `arckit-codex-hook.mjs` (`\` → `/` before prefix-matching, a no-op on POSIX) so the `isUnderPluginRoot` gate works on Windows; imported `doc-types.mjs` via `pathToFileURL()` in the dual-registration validator so Node ESM dynamic import works on Windows absolute paths. Also ignores local `.agents/skills/` and `.claude/worktrees/` dev folders.
278
+
279
+ ### Changed
280
+
281
+ - **Removed references to the retired `tractorjuice/arckit-book` repository** (#536/#554). The repo is no longer available, so the README link 404'd. Dropped the "ArcKit Book" section from `README.md` and repointed the `.devin/wiki.json` authoritative-overview note at `CLAUDE.md` + `README.md` (the live canonical sources). Historical CHANGELOG entries recording the original move (#324/#325) left intact.
282
+ - Documentation: noted Claude Code v2.1.157's "workflow" keyword trigger on the start guide (#552); split the homepage stat cards into Jurisdictions / Sectors / Agents (#547).
283
+
284
+ ## [5.7.0] — 2026-05-29
285
+
286
+ ### Fixed
287
+
288
+ - **US regime registration** (#545, #546). `regime: 'US'` was declared on 10 doc-types (FedRAMP/FISMA/NIST 800-53/CISA Zero Trust/ICAM/AI RMF/PIA/SBOM) but `'US'` was missing from the exported `REGIMES` array and `REGIME_LABELS` in `arckit-claude/config/doc-types.mjs`. The sole consumer, `hooks/graph-inject.mjs`, iterates `REGIMES` directly, so US compliance artefacts were silently dropped from the "Compliance Artifact Presence" listing and never scored in the readiness scorecard despite validating on disk. Added `'US'` + `US: 'USA Federal'`. Same failure class as the CA omission fixed in #441.
289
+ - **`arckit-uk-finance` restored to extension conversion** (#546). `scripts/converter.py` `PLUGIN_SOURCES` omitted `arckit-uk-finance`, so its four `uk-fs-*` commands were absent from all five non-Claude extensions (Codex/OpenCode/Gemini/Copilot/Paperclip) from v5.3.0 onward. Added it and regenerated every extension. Also mirrored the eight `uk-fs` templates into `.arckit/templates/` (CLI package data — `arckit init` users had missed them) and removed a stray tracked `arckit-uk-finance/templates/.gitkeep` the converter was copying into extension dirs as noise.
290
+ - Refreshed stale overlay-enumeration lists in the test suite (`tests/plugin/test_template_consistency.py`, `tests/paperclip/test_commands_json.py`, `tests/codex/test_codex_extension.py`) to include the `us` / `uk-finance` / `uk-nhs` overlays.
291
+
292
+ ### Added
293
+
294
+ - **Regime-registration guard test** (`scripts/tests/test-regime-registration.mjs`, wired into CI `lint-markdown.yml`). Asserts every declared doc-type `regime:` is present in both `REGIMES` and `REGIME_LABELS` — the invariant whose absence let the US gap (and the earlier CA gap) ship silently.
295
+
296
+ ## [5.6.0] — 2026-05-29
297
+
298
+ ### Changed
299
+
300
+ - **Minimum Claude Code version bumped to v2.1.156** (from v2.1.144). The new floor pulls in two Opus 4.8-era improvements ArcKit now depends on: the **v2.1.156** fix for Opus 4.8 thinking blocks being modified and causing API errors (relevant to `/arckit:*` commands and the research agents that use extended thinking), and **v2.1.154** which shipped Opus 4.8 GA plus the `defaultEnabled` plugin manifest field (below). Updated in `arckit-claude/hooks/version-check.mjs`, `README.md` (install note, "Why v2.1.156?" callout, requirements line), `CLAUDE.md` (monitors floor note), and `docs/getting-started.html`.
301
+ - **Opus 4.7 → Opus 4.8 documentation refresh** (items 43/44 of #522). `CLAUDE.md` now describes the `effort:` `xhigh` tier as covering Opus 4.7 and 4.8 (4.8 defaults to `high`) and the `/fast` backing model as Opus 4.8 as of v2.1.154 (was 4.7 on v2.1.142–v2.1.153). The `start.md` getting-started guide's token-constrained recommendation updated from "Opus 4.6 or 4.7" to "Opus 4.7 or 4.8" across all distribution copies. (Historical feature-gate references to Opus 4.7 in the README "Why?" callouts and `version-check.mjs` are intentionally left as-is — they record which version first shipped 4.7's `xhigh`/`/context`.)
302
+
303
+ ### Added
304
+
305
+ - **`defaultEnabled: false` on all 9 community overlays** (`arckit-uae`, `arckit-fr`, `arckit-ca`, `arckit-eu`, `arckit-at`, `arckit-au`, `arckit-us`, `arckit-uk-finance`, `arckit-uk-nhs`). Adopts the Claude Code v2.1.154 plugin manifest field so installing the marketplace surfaces the overlays without auto-enabling all nine. Users now opt in to only the jurisdiction or sector they need; core `arckit` stays default-enabled. Formalises the "install only what you need" model already documented in `CLAUDE.md`. Addresses item 42 of #522.
306
+
307
+ ### Fixed
308
+
309
+ - **UK accessibility target corrected from WCAG 2.1 AA to WCAG 2.2 AA.** UK public sector bodies are now monitored against WCAG 2.2 AA — GDS has tested against 2.2 since October 2024, and the *Public Sector Bodies (Websites and Mobile Applications) Accessibility (Amendment) (EU Exit) Regulations 2022* (SI 2022/1097) replaced the fixed WCAG version reference with a rolling reference to "the latest published version of WCAG" (currently 2.2). The `/arckit:service-assessment` command (GDS Service Standard Point 5 evidence checks) and several core templates were still hard-coded to "WCAG 2.1 AA", causing generated UK artefacts to cite the superseded standard. Updated: `service-assessment` (5 references), `backlog` command, and the `requirements`, `sow`, `research-findings`, `platform-design`, and `backlog` templates, plus the NHS example on `docs/use-cases.html`. Non-Claude formats regenerated via `scripts/converter.py`.
310
+ - **Jurisdictional overlays intentionally left unchanged** (verified against current 2026 mandates): France `fr-dinum` correctly maps RGAA 4.1.2 → WCAG **2.1** AA (RGAA 5 / 2.2 expected end-2026, not yet in force); Canada `ca-gc-digital-standards` correctly anchors WCAG **2.1** AA via CAN/ASC-EN 301 549:2024; Australia `au-dss` already targets WCAG **2.2** AA (Digital Experience Policy, 1 Jan 2025).
311
+
312
+ ## [5.5.0] — 2026-05-28
313
+
314
+ ### Brand reposition
315
+
316
+ Significant identity refresh. No functional changes to commands, agents, hooks, or recipes — purely brand surfaces, assets, and positioning copy.
317
+
318
+ ### Changed
319
+
320
+ - **Tagline**: "Enterprise Architecture Governance & Vendor Procurement Toolkit" → **"The Enterprise Architecture Governance Harness"**. Drops the loaded "Toolkit" category and elevates "Harness" — the structural metaphor that better matches how ArcKit actually behaves (it harnesses an AI assistant against a template-driven governance frame). Updated across every brand surface: root `README.md`, plugin `plugin.json`, marketplace `marketplace.json`, Gemini extension JSON, Codex / Copilot / OpenCode / Paperclip READMEs, `CLAUDE.md`, `docs/llms.txt`, `docs/index.html` (meta description + OG + Twitter + JSON-LD + footer + hero), all 10 docs `*.html` pages, all 6 start guides, the published article on government code discovery, the FDE pitch deck, the business plan, the CLI `__init__.py` docstring + `TAGLINE` constant + Typer help text, and the SDG repo scaffold script.
321
+ - **Category positioning**: "Architecture · Vendor Procurement · Compliance" → **"Strategy · Architecture · Delivery · Assurance"**. Reflects the actual 71-command surface, where procurement is one cluster of ~6 commands among seven; the new four-bucket framing makes Strategy (principles/SOBC/risk/Wardley/roadmap/story/framework), Architecture (ADRs/diagrams/HLD-DLD/data-mesh-contract/platform-design/data-model/backlog/servicenow), Delivery (devops/mlops/finops/operationalize/pages/presentation), and Assurance (analyze/conformance/traceability/health/navigator/maturity-model + all compliance commands) each load-bear an equivalent share of the surface. Procurement (sow, dos, evaluate, score, gcloud-*) is preserved as functional content — the SOW command, plan-template Gantt phases, procurement guide, use-case index entry — but no longer leads positioning.
322
+
323
+ ### Added
324
+
325
+ - **New logo family — Bracket-B2**. Replaces the previous arc-with-three-nodes "arc-kit" mark. Built from three semantic elements that depict an AI harness: angle brackets `⟨ ⟩` (harness frame / prompt structure), inner caret `^` (prompt indicator), linchpin cursor (teal terminal anchors flanking a navy centre pin — the AI output baseline). Selected from six concept directions explored under `docs/assets/concepts/` (Bracket A/B/C, Linchpin A/B, Hybrid) and three Bracket-B grafts (B1 anchor-nodes / B2 linchpin-cursor / B3 linchpin-fan). Full asset family in production paths: `ArcKit_Mark_Light/Dark.svg`, `ArcKit_Logo_Horizontal_Light/Dark.svg`, `ArcKit_Logo_Stacked_Light/Dark.svg`, `arckit-banner-light/dark.svg`, `og-card.svg`, `favicon.svg` (large, navy 96-radius tile), `favicon-small.svg` (16/32 stripped variant).
326
+ - **Dark banner** — `arckit-banner-dark.svg` was missing from the library entirely. Added.
327
+ - **OG card** — `docs/assets/og-card.svg` 1200×630 hero with the new mark, wordmark, tagline, and four-bucket subtitle. Replaces `docs/og-image.png` content so the existing `https://arckit.org/og-image.png` URL serves the new design without breaking inbound shares.
328
+ - **Favicon set** — `favicon.svg`, `favicon-512.png`, `favicon-192.png`, `favicon-32.png`, `favicon-16.png`, plus a simplified `favicon-small.svg` for the 16/32 sizes. Wired into all 10 docs `*.html` pages via `<link rel="icon">` block placed after each page's canonical link.
329
+ - **Render script** — `scripts/render-brand-pngs.py` (uses `cairosvg`) regenerates all 22 PNG exports from the SVG sources. Run after any SVG edit to keep raster exports in sync.
330
+ - **Concept directory retained** — `docs/assets/concepts/` (six initial concept thumbnails + three B-grafts + `v2/` full Bracket-B2 family pre-promotion) kept in-repo as design source-of-truth for future iteration.
331
+ - **Brand-motif documentation** — `docs/assets/README.md` "Brand motif" section rewritten to describe the Bracket-B2 design and its colour-role assignments (`#0B1F33` navy for structure, `#1ED3C6` teal for the AI/active layer).
332
+
333
+ ### Changed (external)
334
+
335
+ - GitHub repo description updated via `gh repo edit` to match the new tagline.
336
+ - **Not done by this release**: GitHub social-preview image. The repo's social-preview image is not exposed via `gh` CLI or REST API. Upload `docs/assets/og-card.png` manually at GitHub → Settings → General → Social preview.
337
+
338
+ ## [5.4.0] — 2026-05-27
339
+
340
+ ### Fixed
341
+
342
+ - **`desktop_notifications` SessionStart hook no longer raises `plugin option "desktop_notifications" isnt set` on fresh installs.** The `${user_config.desktop_notifications}` argv substitution in `arckit-claude/hooks/hooks.json` aborts the hook when the user has never set the field, even with a `"default": "false"` declared in the userConfig (the default does not propagate through argv substitution on at least some Claude Code versions). The hook now reads the value from the `CLAUDE_PLUGIN_OPTION_DESKTOP_NOTIFICATIONS` env var — the documented parallel access path — which degrades cleanly to `undefined` when the field is unset. Opt-in behaviour for users who set `desktop_notifications: "true"` is unchanged.
343
+ - **`/arckit:pages` now surfaces NHS clinical-safety artefacts**. Marcus Baw's `SAFETY.md` / `SAFETY-CASE.md` / `HAZARD-LOG.md` files (and their `clinical-safety/deployment/` companions from `/arckit:uk-nhs-dcb0160`) deliberately do not carry the `ARC-` prefix, so they were skipped by the manifest scanner in `arckit-claude/hooks/sync-guides.mjs`. The scanner now picks up any `.md` file in `projects/{NNN}/clinical-safety/` and `projects/{NNN}/clinical-safety/deployment/` under category `Clinical Safety`, using the file's first heading as the title. Marcus's filenames are preserved verbatim — only the manifest entry is added.
344
+
345
+ ### Added
346
+
347
+ - **`arckit-uk-nhs` community plugin** — second **sector-specific** ArcKit overlay (following [`arckit-uk-finance`](#530--2026-05-27) which shipped in v5.3.0; jurisdiction overlays continue to cover legal territories). 4 commands covering NHS clinical safety (`uk-nhs-dcb0129` manufacturer, `uk-nhs-dcb0160` deployer), NHS DTAC v3 (`uk-nhs-dtac`), and UK MDR 2002 + EU MDR 2017/745 software-as-medical-device classification (`uk-mdr-classification`). Adopts [Dr Marcus Baw's SAFETY.md spec](https://github.com/pacharanero/SAFETY.md) verbatim for DCB0129/0160 file naming and YAML-frontmatter hazard log (3-file output: `SAFETY.md`, `SAFETY-CASE.md`, `HAZARD-LOG.md` inside `projects/{NNN}/clinical-safety/`). Closes part of #424.
348
+ - **`uk-nhs-clinical-safety` build recipe** (44 targets across 8 build waves) — composes with the UK SaaS baseline rather than replacing it (NHS digital products still need TCoP, Secure by Design, DPIA, ATRS).
349
+ - **2 new doc-type codes** registered in `arckit-claude/config/doc-types.mjs`: `NHSDTAC`, `NHSMDR`. Both regime `UK`, category `Compliance`, severity `HIGH`. Dual-registered in `arckit-claude/commands/pages.md` allow-list per existing dual-registration pattern.
350
+ - **Spec doc and decision log** at [`docs/superpowers/specs/2026-05-19-uk-nhs-overlay-design.md`](docs/superpowers/specs/2026-05-19-uk-nhs-overlay-design.md) — every locked decision traces back to its source; §0 written specifically for Marcus Baw to review before committing as proposed domain co-maintainer.
351
+
352
+ ### Changed
353
+
354
+ - **Top-level command count** moves from **139** to **143** (71 official + 72 community-contributed). Community count: `arckit-uae` 12 + `arckit-fr` 12 + `arckit-ca` 12 + `arckit-eu` 7 + `arckit-at` 3 + `arckit-au` 8 + `arckit-us` 10 + `arckit-uk-finance` 4 + `arckit-uk-nhs` 4 = 72.
355
+ - **`scripts/bump-version.sh`** — added `arckit-uk-nhs` to jurisdictions loop and to verification output.
356
+ - **`scripts/converter.py`** — added `arckit-uk-nhs` to `PLUGIN_SOURCES`. All extension formats (Codex Extension, Codex Skills, OpenCode CLI, Gemini CLI, Copilot, Paperclip) now include the 4 NHS commands.
357
+ - **`.claude-plugin/marketplace.json`** — added 10th plugin entry for `arckit-uk-nhs` (alongside `arckit-uk-finance` from v5.3.0).
358
+
359
+ ### Notes for Marcus Baw
360
+
361
+ Marcus's SAFETY.md / SAFETY-CASE.md / HAZARD-LOG.md files deliberately do NOT carry the `ARC-` prefix or a doc-type code — they pass through the `validate-arc-filename` hook untouched and are cross-referenced by relative path (`clinical-safety/SAFETY-CASE.md`) rather than document ID. This preserves his spec's "convention over configuration" principle while keeping the files inside an ArcKit project subdirectory so multi-project monorepos work. The Document Control block prepended to each file is the only addition to his spec.
362
+
363
+ ## 5.3.0 — 2026-05-27
364
+
365
+ ### Added
366
+
367
+ - **`arckit-uk-finance` community plugin** — first sector-specific overlay. Jurisdictional overlays cover countries (UAE, France, Canada, EU, Austria, Australia, USA federal civilian); sector overlays cover industry verticals. Four commands for architects at established UK PSPs / EMIs / PIs scaling regulated payment operations: SCA-RTS exemption design (`uk-fs-sca-rts`, `FSSCA`), EMI/PI safeguarding assessment (`uk-fs-safeguarding`, `FSSAFE`, CRITICAL severity flag), FCA Consumer Duty board report (`uk-fs-consumer-duty`, `FSCD`), Critical Third Parties dependency assessment (`uk-fs-ctp-dependency`, `FSCTP`). Recipe: `uk-fs-payments` (multi-wave payment system modernization). Ships EXPERIMENTAL; help-wanted call open for a UK FS domain co-maintainer (regulatory counsel / MLRO / Head of Architecture background welcome). See spec: `docs/superpowers/specs/2026-05-26-arckit-uk-finance-overlay-design.md`. See plan: `docs/superpowers/plans/2026-05-26-arckit-uk-finance-overlay.md`.
368
+ - Four new doc-types registered in `arckit-claude/config/doc-types.mjs`: `FSSCA` (SCA-RTS), `FSSAFE` (Safeguarding), `FSCD` (Consumer Duty), `FSCTP` (Critical Third Parties).
369
+ - New recipe `uk-fs-payments.yaml` in `arckit-claude/skills/arckit-build/recipes/`.
370
+ - Five user-facing guides in `docs/guides/uk-fs-*.md` (one per-command + one overlay-level maintenance guide with citation register).
371
+ - Site integration: UK Finance sector card on landing page (`docs/index.html`), accordion section in guides (`docs/guides.html`), filter option and 4 command rows on commands page (`docs/commands.html`).
372
+
373
+ ## 5.1.0 — 2026-05-23
374
+
375
+ ### Added
376
+
377
+ - **`arckit-us`** community plugin — USA Federal Civilian Overlay with 10 commands (`us-fisma-categorization`, `us-nist-800-53`, `us-fedramp-ssp`, `us-fedramp-readiness`, `us-zero-trust`, `us-icam`, `us-ai-rmf`, `us-ai-impact`, `us-privacy-pia`, `us-sbom-eo-14028`) and the `us-federal` recipe. See [`arckit-us/CHANGELOG.md`](arckit-us/CHANGELOG.md).
378
+ - 10 new doc-type codes registered in `arckit-claude/config/doc-types.mjs`: `FIPS199`, `NIST`, `FRSSP`, `FRRR`, `ZTA`, `ICAM`, `AIRMF`, `AIIA`, `USPIA`, `SBOM`.
379
+ - 11 central guides under `docs/guides/us-*.md` (10 per-command + 1 overlay-level maintenance guide with citation register).
380
+ - USA section in `docs/guides.html`, `docs/commands.html`, `docs/index.html`.
381
+
382
+ ### Changed
383
+
384
+ - All 8 plugin manifests now at lockstep `5.1.0` (was 5.0.5).
385
+ - Community overlay count: 6 → 7. Total command count: 125 → 135 (71 official + 64 community).
386
+ - `scripts/bump-version.sh` jurisdiction loop now includes `us`; verification block now includes `arckit-au` and `arckit-us` (the `arckit-au` addition fixes a pre-existing verification gap).
387
+ - `scripts/converter.py` `AGENT_CONFIG` extended with `arckit-us` source.
388
+
389
+ ### Statutory currency note
390
+
391
+ This release ships the USA overlay against the **post-EO-14110-revocation** policy landscape: OMB M-24-10 (use of AI) and OMB M-25-21 (acquisition of AI) are the active AI assurance mandates, FedRAMP completed the Rev 5 transition in 2024, and OMB M-22-18 / M-23-16 secure-software attestation has been active since 2024.
392
+
393
+ ## [5.0.5] - 2026-05-23
394
+
395
+ ### Fixed
396
+
397
+ - `owm-to-mermaid.mjs` no longer mis-parses `evolve` lines whose quoted component name contains an embedded number (#508). The target-evolution regex is now anchored at end-of-line, so `evolve "Foo (Project 003)" 0.74` is converted faithfully instead of truncating the name and dropping the real target.
398
+ - `owm-to-mermaid.mjs` now passes inline `(build)` / `(buy)` / `(outsource)` decorators through to the Mermaid output (#508), alongside the existing `(inertia)` support. Authors no longer need to add trailing standalone `build "<Name>"` / `buy "<Name>"` / `outsource "<Name>"` directives to get sourcing decorators on the converted Mermaid map.
399
+ - `/arckit:health` now flags **DRAFT staleness** and **overdue reviews** — the two signals the session-start `stale-artifact-scan` monitor was already reporting (#509). Adds two detection rules: `STALE-DRAFT` (MEDIUM, status=DRAFT unchanged for > 30 days by default, configurable via `STALE_DRAFT_DAYS=N`) and `REVIEW-OVERDUE` (HIGH, Document Control `Next Review Date` in the past on non-DRAFT/SUPERSEDED/ARCHIVED artifacts). The monitor's draft threshold moves from 14 days to 30 to match. Both surfaces now agree on the same set of artifacts.
400
+
401
+ ## [5.0.4] - 2026-05-22
402
+
403
+ ### Added
404
+
405
+ - **Opt-in OWM label tidying** for `/arckit:wardley`. New `--tidy-owm` flag rewrites the canonical ` ```wardley ` (OnlineWardleyMaps) block's component `label [x, y]` offsets so labels do not overlap when rendered at <https://create.wardleymaps.ai>. Backed by `owm-tidy.mjs` — a sibling of the mermaid `wardley-tidy.mjs` that reuses the same placement engine with the OnlineWardleyMaps renderer geometry (recovered from `tractorjuice/onlinewardleymaps`). Opt-in by design: the OWM block is the author-edited source of truth and OWM is an interactive drag editor, so it is never rewritten by a silent hook (unlike the Mermaid `wardley-beta` block). Collision-free authored offsets are kept; only overlapping or untuned labels move.
406
+
407
+ ## [5.0.3] - 2026-05-22
408
+
409
+ ### Added
410
+
411
+ - **Auto-tidy Wardley Map labels** (#506). New `tidy-wardley-labels` PostToolUse hook rewrites Mermaid `wardley-beta` component-label offsets after every Write/Edit, so clustered components no longer collide into an unreadable pile. Backed by a pure, deterministic placement engine that projects the map to pixels, generates 32 candidate slots per label, scores each against a weighted collision penalty, places the most-constrained labels first, and converges to an idempotent result.
412
+
413
+ ### Documentation
414
+
415
+ - New articles: the v5 plugin-split token budget (#502) and the Wardley label-tidy placement algorithm (#500, #506). Per-article `sitemap.xml` and `llms.txt` entries backfilled (#503, #504, #505).
416
+
417
+ ## [5.0.2] - 2026-05-19
418
+
419
+ ### Added
420
+
421
+ - **`desktop_notifications` userConfig flag + `notify-stale-artifacts` SessionStart hook** (#497). Opt-in `terminalSequence` (Claude Code v2.1.141+) desktop notifications when stale ArcKit artefacts are detected at session start. Stacks OSC 9 (iTerm2 / Windows Terminal / WezTerm / ConEmu) and OSC 777 (urxvt / Ghostty / Warp) escapes; terminals silently drop unsupported codes per the documented allowlist. Complements (does not replace) the existing `stale-artifact-scan` background monitor.
422
+ - **"What it costs" README section** (#499). Documents the measured plugin footprint from `claude plugin details arckit`: ~10,042 always-on tokens per session plus on-invoke costs tiered (Lightweight <2K, Standard 2–7K, Heavy 7–15K, Research-heavy 15–25K, Specialist >25K).
423
+
424
+ ### Changed
425
+
426
+ - **All 6 community-overlay READMEs** (`arckit-uae`, `arckit-fr`, `arckit-ca`, `arckit-eu`, `arckit-at`, `arckit-au`) now call out the v2.1.143 plugin dependency enforcement: `claude plugin disable arckit` surfaces a disable-chain hint instead of silently breaking the overlay (#497).
427
+
428
+ ### Fixed
429
+
430
+ - **32 AU community-plugin guide files** under `arckit-{codex,copilot,opencode,paperclip}/docs/guides/au-*.md` are now tracked. They had been generated by `scripts/converter.py` and pushed to the published extension repos via `push-extensions.sh`, but stayed untracked in the monorepo, causing 32 "new" files at every release (#498).
431
+ - **Runtime cache `.gitignore` cleanup** (#498). `.arckit/memory/.last-session`, `.arckit/memory/.telemetry.jsonl`, and `docs/telemetry.json` are now gitignored — closes the loose end from the #494 close discussion. `.last-session` was previously tracked one commit deep; `git rm --cached` untracks it while leaving the file on disk for the running hook.
432
+
433
+ ## [5.0.1] - 2026-05-19
434
+
435
+ ### Changed
436
+
437
+ - **Minimum Claude Code version bumped to v2.1.144** (from v2.1.139). Adopts items 1, 3, 5, 8 from #495 — see `arckit-claude/CHANGELOG.md` for the full plugin entry.
438
+
439
+ ### Fixed
440
+
441
+ - `CLAUDE.md` and `README.md` agent-count corrected from "13 agents" to **16 agents** (10 single-tier + 6 reader/writer subagents). Discovered during the #495 item 10 subagent-slug audit.
442
+
443
+ ## [5.0.0] - 2026-05-18
444
+
445
+ ### BREAKING
446
+
447
+ - **Community overlays moved to separate plugins**. The monolithic `arckit` plugin shipped 117 commands (71 core + 46 community). v5.0.0 splits community commands into six per-jurisdiction marketplace plugins: `arckit-uae` (12 commands + 2 recipes), `arckit-fr` (12), `arckit-ca` (12 + 1 recipe), `arckit-eu` (7), `arckit-at` (3), and `arckit-au` (8 + 1 recipe — new in v5.0.0). Users now install only the jurisdictions they need. Total surface: 125 commands across 7 plugins.
448
+ - **Migration:** after upgrading, install the community plugins you previously used. A one-shot SessionStart banner reads `.arckit/manifest.json` and prints the exact `claude plugin install ...` command for your project. Acknowledge with `touch .arckit/v5-migration-acked`.
449
+ - **Token savings:** UK-only users save ~5K tokens per SessionStart system reminder (estimate — to be replaced with measured figures in Task 16).
450
+ - **No functional change** for users who install all 6 plugins — the full 117-command surface is intact, just spread across plugins.
451
+
452
+ ### Added
453
+
454
+ - `scripts/check_recipes.py` — CI gate validating every recipe's structure and dep references.
455
+ - `scripts/check_doctype_collisions.py` — CI gate asserting every doc-type code in `arckit-claude/config/doc-types.mjs` is unique.
456
+ - `scripts/tag-plugins.sh` — creates native `<plugin>--vX.Y.Z` tags per release (idempotent).
457
+ - `arckit-claude/hooks/v5-migration-banner.mjs` — one-shot SessionStart hook suggesting per-jurisdiction installs based on prior project artefacts.
458
+ - 6 new plugin directories: `arckit-uae/`, `arckit-fr/`, `arckit-ca/`, `arckit-eu/`, `arckit-at/`, `arckit-au/`, each with their own `plugin.json`, `README.md`, `VERSION`, `commands/`, `templates/`, and (where applicable) `recipes/`.
459
+ - **`arckit-au`** Australian Federal / DISP-supplier overlay — 8 commands (`au-e8-posture`, `au-pia`, `au-dss`, `au-ism-controls`, `au-ndb-playbook`, `au-pspf`, `au-ai-assurance`, `au-disp-attestation`), 8 templates, and the `au-federal` recipe (35 targets, 9 waves). 8 new doc-type codes registered in `arckit-claude/config/doc-types.mjs` (`AUE8`, `AUISM`, `AUPIA`, `AUNDB`, `AUDSS`, `AUPSPF`, `AUAIA`, `AUDISP`). Adds `AU` regime; also adds `CA` retroactively (CA shipped doc-types in v4.15.0 but was missing from `REGIMES`). Domain co-maintainer: @royster70. Supersedes #441.
460
+
461
+ ### Changed
462
+
463
+ - `arckit-build` skill: new three-tier recipe lookup precedence — project override → core plugin → sibling community plugins via glob.
464
+ - `scripts/converter.py` walks all 6 plugin source dirs and merges into one extension output per non-Claude format. Non-Claude extensions stay monolithic per the v5 design.
465
+ - `scripts/bump-version.sh` updates 6 plugin manifests + `marketplace.json` (all `.plugins[]` entries) instead of just one.
466
+ - `docs/RELEASING.md` updated with multi-plugin release flow.
467
+ - `CONTRIBUTING.md` adds a two-part PR rule for new doc-types (command in community plugin, doc-type registration in core).
468
+
469
+ ### Note on doc-types
470
+
471
+ All doc-type codes remain in `arckit-claude/config/doc-types.mjs` — community plugins ship commands and recipes only. This keeps `validate-arc-filename.mjs` single-sourced.
472
+
473
+ ### Note on plugin dependencies (Claude Code v2.1.110+)
474
+
475
+ All 6 community plugins (`arckit-uae`, `arckit-fr`, `arckit-ca`, `arckit-eu`, `arckit-at`, `arckit-au`) declare an exact (`=`) dependency on the `arckit` core plugin. Installing any community plugin auto-installs core; uninstalling with `--prune` cleans it up. The exact pin keeps the 6 plugins shipping as a coherent set — `scripts/bump-version.sh` updates `.version` and `.dependencies[arckit].version` in lockstep on every release.
476
+
477
+ ## [4.22.0] - 2026-05-17
478
+
479
+ ### Added
480
+
481
+ - **New build recipe: `uae-agentic-transformation`**. Focused 24-month playbook for the 23 April 2026 UAE Cabinet framework targeting 50% of federal services on agentic AI by April 2028. Distinct from the broader `uae-federal-ai` recipe — ADRs reshaped around agentic architecture (orchestration framework, human-in-the-loop boundaries, foundation-model selection, observability for autonomous decisions, kill-switch / rollback), `UAE_ZERO_BUREAUCRACY` positioned as the framework-mandated process-redesign artefact, `PLAN` + `ROADMAP` timeboxed to the 24-month window with the 50%-portfolio target. Includes all 12 UAE community commands plus core ArcKit governance; uses canonical doc-type codes from `config/doc-types.mjs`. 49 targets.
482
+
483
+ ## [4.21.0] - 2026-05-15
484
+
485
+ ### Added
486
+
487
+ - **PostCompact hook re-injects project context** (#475). Companion to `keep-coding-instructions: true` — static command bodies were already preserved across `/compact`, but dynamic filesystem-derived state (active projects, ARC-* artefacts, external docs, global policies) was lost. The new `postcompact-rehydrate.mjs` hook closes that gap by reusing `buildProjectContext` from the existing context-injection builder.
488
+ - **Effort tier captured + surfaced** (#471). `session-learner.mjs` and `telemetry.mjs` now read the session's effort tier from hookInput `effort.level` or `$CLAUDE_EFFORT` (Claude Code v2.1.133+); recorded per-event in the telemetry JSONL, per-session in `sessions.md` and `docs/telemetry.json`. The `/arckit:pages` dashboard's Session Telemetry panel gains an "Effort mix" row and a per-session effort chip.
489
+ - **Autoresearch explicit stop conditions** (#474). The optimisation loop now self-terminates on score-target hit (`best >= 9.5`), iteration budget (`iter >= 30`), or double-plateau detection. No more loop-forever — token budget bounded by default; thresholds tunable inline.
490
+ - **Cross-reference linter** (#464). `scripts/check_references.py` validates `${CLAUDE_PLUGIN_ROOT}` paths, `handoffs[].command` slugs, and `${user_config.KEY}` keys against disk. Wired into `.github/workflows/lint-markdown.yml`.
491
+ - **MCP catalogue** (#465). Documentation listing the 5 bundled MCP servers, what they're for, and how each plugs into the relevant ArcKit command. Closes #442 item 15.
492
+
493
+ ### Changed
494
+
495
+ - **Hook config migrated to `args: string[]` exec form** (#467). All 16 entries in `arckit-claude/hooks/hooks.json` use the v2.1.139 exec form (`command: "node"` + `args: ["..."]`) instead of the legacy shell-string. The harness now execs `node <path>` directly, eliminating shell-quoting and metacharacter pitfalls in `${CLAUDE_PLUGIN_ROOT}`-substituted paths.
496
+ - **PostToolUse hooks set `continueOnBlock: true`** (#470). The 4 observational PostToolUse entries (`update-manifest`, `provenance-stamp` ×2, `telemetry`) can no longer derail the user's turn if they ever emit `decision: block`. Block-as-gate semantics retained for the genuine PreToolUse / UserPromptSubmit guards.
497
+ - **Minimum Claude Code version bumped to v2.1.139** (from v2.1.129). Required by the `args` exec form and `continueOnBlock`. Also picks up v2.1.133 subagent skill discovery fix (relevant to ArcKit's 13 agents) and v2.1.136 SessionStart env staleness fix.
498
+ - **Docs: `/fast` Opus 4.7 default + `MCP_TOOL_TIMEOUT` env var** (#473). CLAUDE.md captures the v2.1.142 `/fast` default change. New "Optional: MCP per-request timeout" section in `docs/guides/mcp-servers.md` recommends `MCP_TOOL_TIMEOUT=300000` for corporate networks with TLS-inspecting proxies; one-line cross-references added to each of the 3 cloud-research guides.
499
+ - **AGENTS.md repository guidelines** (#463). New top-level `AGENTS.md` documenting the agent-development conventions used in this repo.
500
+
501
+ ### Site
502
+
503
+ - **Launch ArcKit FDE** (#460), nav/footer link to FDE (#458), GOV.UK Design System credit removed from footers (#459), opening-paragraph polish + "agentic AI" positioning (#461, #462).
504
+
505
+ ## [4.20.3] - 2026-05-11
506
+
507
+ ### Fixed
508
+
509
+ - **Plugin `monitors` key wrapped under `experimental` block** (#453). Claude Code v2.1.129 moved the `monitors` (and `themes`) keys under a top-level `experimental` block in plugin manifests. ArcKit's `stale-artifact-scan` background monitor was declared at the top level and would not load on v2.1.129+ clients. The manifest is now compliant with the new schema.
510
+ - **`validate-arc-filename` hook now soft-blocks via `{decision, reason}` JSON** (#454). The unknown-doc-type-code rejection path previously used `process.exit(2)` + stderr, surfacing as a hard permission error visible only to the user. The model received nothing actionable and could not self-correct. Migrated to the modern soft-block pattern (already used by `score-validator.mjs`) so Claude is told the rejection reason — including the offending filename, the valid-codes list, and an explicit "rename and retry" instruction — and can self-correct on the next turn without human intervention.
511
+
512
+ ### Changed
513
+
514
+ - **Minimum Claude Code version bumped to v2.1.129** (from v2.1.121). Required by the `monitors`-under-`experimental` migration above. Also picks up the v2.1.129 fix to `ENABLE_PROMPT_CACHING_1H` (which was silently downgrading the 1-hour prompt cache TTL back to 5 minutes on earlier versions). The SessionStart version-check hook and the README/CLAUDE.md/PLATFORM-COMPARISON.md docs all reflect the new floor.
515
+
516
+ ## [4.20.2] - 2026-05-11
517
+
518
+ ### Changed
519
+
520
+ - **Wardley Mermaid rendering now targets Mermaid 11.15.0.** Generated ArcKit pages load `mermaid@11.15.0`, picking up the latest `wardley-beta` fixes for unquoted hyphenated component names and Wardley label text handling. Wardley guidance and templates now describe `wardley-beta` as available from Mermaid 11.14.0 onward while continuing to quote non-simple names for cross-version compatibility.
521
+
522
+ ## [4.20.0] - 2026-05-10
523
+
524
+ ### Added
525
+
526
+ - **Codex plugin bundle with lifecycle hooks.** `arckit-codex/` now ships a Codex plugin manifest, MCP config, hook wiring, and a native hook runner for context injection, prompt secret checks, file guardrails, MCP approval policy, artifact graph context, provenance stamping, manifest maintenance, and Stop-session memory.
527
+ - **Codex marketplace metadata and CI.** Adds `.agents/plugins/marketplace.json` pointing at the standalone `tractorjuice/arckit-codex` repo, plus a focused Codex plugin workflow that checks hook syntax, CLI syntax, and Codex extension tests.
528
+ - **Codex schemas and validators.** The Codex bundle now includes deterministic handoff schemas, scoring rubrics, `validate-handoff.mjs`, and `owm-to-mermaid.mjs` so research and Wardley workflows work in standalone extension installs.
529
+
530
+ ### Changed
531
+
532
+ - **Extension generation now preserves Codex-native behavior.** The converter generates Codex plugin metadata, Codex MCP config, hook-enabled `config.toml`, hyphen-safe skill names, rewritten template override paths, and refreshed standalone extension assets.
533
+ - **Release tooling now fails on extension push errors.** `scripts/push-extensions.sh` now treats commit or push failures as real failures instead of reporting a false success.
534
+
535
+ ### Fixed
536
+
537
+ - **Codex CLI project scaffolding now installs hooks and validators.** `arckit init --ai codex` copies `.codex/hooks/`, `.arckit/schemas/`, and `.arckit/scripts/validate-handoff.mjs`, and keeps `.codex/agents/**` and `.codex/hooks/**` unignored.
538
+
539
+ ## [4.19.2] - 2026-05-07
540
+
541
+ ### Changed
542
+
543
+ - **`/arckit:wardley` now invokes a vendored OWM → wardley-beta converter instead of regenerating Mermaid syntax by hand.** Adds `arckit-claude/scripts/owm-to-mermaid.mjs` (363 lines, kebab-cased). The script originated as `tests/mermaid-wardley/convert.mjs` in this repo (PRs #339, #340, #341, #344), was untracked in #348, and evolved at `tractorjuice/wardleymap_math_model` with explicit-block pipeline handling and evolution-stage quoting before being re-vendored here. The wardley command's "Mermaid Wardley Map (Enhanced)" section (previously 30 lines of fragile syntax-translation rules) is replaced with a three-step procedure: write OWM to a temp file, run `node ${CLAUDE_PLUGIN_ROOT}/scripts/owm-to-mermaid.mjs <file>`, paste stdout verbatim into the `<details>` block. Sourcing decorators (`build`/`buy`/`outsource`/`inertia`) flow from OWM directives the converter already reads. Hand-rolled `wardley-beta` was brittle — the parser eagerly tokenises hyphens as `->`, treats bare numeric words (`NIS 2031`) as numeric literals, and matches keywords (`label`, `evolve`, `pipeline`) at any word boundary. The converter sidesteps all of these by emitting every name as a double-quoted STRING.
544
+
545
+ ### Notes
546
+
547
+ - Claude-only this release. Non-Claude extensions (Codex / Gemini / OpenCode / Copilot) of `/arckit:wardley` reference `${CLAUDE_PLUGIN_ROOT}/scripts/owm-to-mermaid.mjs`, which gets path-rewritten by `scripts/converter.py` but the script itself is not yet copied to those extensions (the converter currently propagates `scripts/{bash,python}` only). Follow-up patch will widen the converter's copy list to include `arckit-claude/scripts/`.
548
+
549
+ ## [4.19.1] - 2026-05-07
550
+
551
+ ### Fixed
552
+
553
+ - **Auto-allow hook now matches `gov-reuse` tempfiles.** The v4.18.1 broadened regex in `allow-plugin-internals.mjs` accepted tempfile patterns like `/tmp/grants-handoff*.json` and `/tmp/datascout-handoff-energy.json`, but its agent-name segment `[a-z][a-z0-9]*` excluded hyphens — so `/tmp/gov-reuse-handoff*.json` (and any future hyphenated agent name) failed to match, triggering a permission prompt for every per-capability dispatch in `/arckit:gov-reuse`. Widened to `[a-z][a-z0-9-]*` to allow hyphens in the agent name while still rejecting paths starting with hyphen, hidden files, and other negative cases. Verified against 18 path patterns including `/tmp/gov-reuse-handoff-appointment-booking.json`, `/tmp/aws-research-handoff.json`, `/tmp/gov-code-search-handoff.json` (positive) and `/etc/passwd`, `/tmp/-handoff.json`, hidden files (negative).
554
+
555
+ ## [4.19.0] - 2026-05-07
556
+
557
+ ### Added
558
+
559
+ - **`/arckit:gov-reuse` reader/orchestrator/writer split** (Claude Code plugin only — non-Claude extensions remain at the prior single-tier shape until a follow-up release). Third command after `/arckit:datascout` (v4.16.0) and `/arckit:grants` (v4.18.0) to adopt the three-tier subagent pattern. Reader (`arckit-gov-reuse-reader`, `WebFetch` + `mcp__govreposcrape__search_uk_gov_code` only — no Write/Edit/Bash/Agent/WebSearch) searches govreposcrape per capability and fetches GitHub repo evidence. Orchestrator validates each reader payload via `validate-handoff.mjs`, scores deterministically from the YAML rubric, assigns a reuse strategy band (`Fork` / `Library` / `Reference` / `None`) by score thresholds (`>= 80 / 60-79 / 40-59 / < 40`) with licence overrides for AGPL/Proprietary/Unlicensed → forced `None`. Writer (`arckit-gov-reuse-writer`, `Read`/`Write`/`Edit` only) renders the GOVR artefact and spawns one tech-note per Fork or Library candidate.
560
+ - **Gov-reuse handoff schema** (`arckit-claude/schemas/gov-reuse-handoff.schema.json`). 19 licence types in the allowlist, 22 languages, 28 framework hints, 15 installation methods. No `score`, `rank`, or `recommended_strategy` field — there is nowhere for a judgement to land.
561
+ - **Gov-reuse scoring rubrics** (`arckit-claude/schemas/scoring-rubrics/gov-reuse-{generic,uk-gov}.yaml`). 5 weighted criteria summing to 100: `license_compatibility` 25 / `code_quality` 20 / `documentation` 20 / `tech_stack_alignment` 20 / `activity_maintenance` 15. UK-Gov overlay bumps OGL above MIT/Apache and adds a `trusted_org_bonus` (alphagov, NHSDigital, dfe-digital, hmrc-digital, ministryofjustice, ONSdigital, etc.) applied additively to the `code_quality` per-criterion score before weighting.
562
+ - **CI coverage for gov-reuse schema.** New `tests/plugin/test_validate_gov_reuse_handoff.mjs` runs 2 valid + 5 reject fixtures (extra-property, oversized-summary, off-allowlist licence, injection-inflated-score, injection-extra-language) through the shared `validate-handoff.mjs`. Wired into `.github/workflows/lint-markdown.yml`.
563
+
564
+ ### Removed
565
+
566
+ - Single-tier `arckit-claude/agents/arckit-gov-reuse.md` (Claude plugin only). The orchestrator role moved to the slash command body; reader and writer live in their own subagent files.
567
+
568
+ ## [4.18.2] - 2026-05-07
569
+
570
+ ### Added
571
+
572
+ - **`inject-agent-context.mjs` PreToolUse hook** — closes the gap where ArcKit subagents dispatched via the `Agent` tool ran without project context. UserPromptSubmit hooks fire only on real user prompts, so any orchestrator-style subagent whose body assumed "the ArcKit Project Context hook has already detected all projects, artifacts" silently lost that context when invoked indirectly. The new PreToolUse hook (matcher: `Agent`) builds the same context block as `arckit-context.mjs` and prepends it to `tool_input.prompt` via `updatedInput` (the only PreToolUse return-field that propagates into the dispatched subagent's context — `additionalContext` stays in the parent thread). Scoped to `arckit-*` subagent_types; skips reader/writer subagents (their schema-validated JSON payloads must stay clean) and skips general-purpose / Plan / Explore / claude-code-guide / etc. (no spam).
573
+ - **`project-context-builder.mjs`** — extracted the project-scanning logic from `arckit-context.mjs` into a shared module so both the UserPromptSubmit hook and the new PreToolUse hook produce identical context blocks.
574
+
575
+ ## [4.18.1] - 2026-05-07
576
+
577
+ ### Fixed
578
+
579
+ - **Auto-allow hook now matches per-bucket grants tempfiles.** `allow-plugin-internals.mjs` previously only matched `/tmp/datascout-handoff*.json` and `/tmp/arckit-{name}-handoff*.json`, but at runtime the LLM names per-funder-category dispatch tempfiles like `/tmp/grants-handoff-open-data.AbCdEf.json` (suffixing the bucket name for traceability across multiple Bash invocations). The regex now broadens to `(?:arckit-)?[a-z][a-z0-9]*-handoff(?:-[a-z][a-z0-9-]*)?...`, accepting an optional `arckit-` prefix and an optional hyphenated qualifier between `-handoff` and the random tail. Read auto-allow remains scoped to /tmp and read-only.
580
+
581
+ ## [4.18.0] - 2026-05-07
582
+
583
+ ### Added
584
+
585
+ - **`/arckit:grants` reader/orchestrator/writer split.** Second command (after `/arckit:datascout` in v4.16.0) to adopt the three-tier subagent pattern documented in `arckit-claude/agents/READER-PATTERN.md`. The reader (`arckit-grants-reader`, WebSearch+WebFetch only, no Write/Edit/Bash/Agent) fetches programme evidence per `funder_category` bucket; the orchestrator (in the slash-command body, since plugin subagents cannot dispatch further subagents) validates the reader's JSON via `validate-handoff.mjs`, scores deterministically from a YAML rubric, then dispatches the writer (`arckit-grants-writer`, Read+Write+Edit only) which renders the GRNT artefact and one tech-note per scored programme.
586
+ - **Grants handoff schema** (`arckit-claude/schemas/grants-handoff.schema.json`). 15-value `funder_type` allowlist, allowlist enums for organisation type / sector / geography / application status / complexity. No `score`, `rank`, or `recommendation` field — there is nowhere for a judgement to land in the schema even if the reader is overridden.
587
+ - **Grants scoring rubrics** (`arckit-claude/schemas/scoring-rubrics/grants-{generic,uk-gov}.yaml`). Six criteria summing to 100: `eligibility_fit` 35 (composite of organisation type / sector overlap / TRL band) / `funding_size_fit` 20 / `timing_fit` 15 (status + deadline proximity) / `complexity_burden` 10 / `historic_traction` 10 / `match_funding_burden` 10. UK-Gov overlay adds `funder_type_bonus` (UKRI / Innovate UK / NIHR / DSIT / DASA preferred) and `geography_bonus` (uk-wide preferred) as additive adjustments to the eligibility_fit per-criterion score before weighting.
588
+ - **CI coverage for the grants schema.** New `tests/plugin/test_validate_grants_handoff.mjs` (mirrors the datascout validator test) runs 2 valid + 5 reject fixtures (extra-property, oversized-field, off-allowlist funder_type, injection-inflated-score, injection-extra-org-type) through the shared `validate-handoff.mjs`. Wired into `.github/workflows/lint-markdown.yml`.
589
+
590
+ ### Removed
591
+
592
+ - Single-tier `arckit-claude/agents/arckit-grants.md` and the stale generated extension agent files (`arckit-codex/agents/arckit-grants.{md,toml}`, `arckit-copilot/agents/arckit-grants.agent.md`, `arckit-gemini/agents/arckit-grants.md`, `arckit-opencode/agents/arckit-grants.md`). The orchestrator role lives in `arckit-claude/commands/grants.md` from this release onward.
593
+
594
+ ## [4.17.1] - 2026-05-06
595
+
596
+ ### Fixed
597
+
598
+ - **`/arckit:pages` now enumerates data-source profiles** introduced in v4.17.0. Wired the new `data-sources/{provider-slug}-profile.md` files through `sync-guides.mjs` (manifest scan + count + llms.txt entries), `pages-template.html` (sidebar section + search index category), and `commands/pages.md` (KPI table + manifest schema docs).
599
+
600
+ ## [4.17.0] - 2026-05-06
601
+
602
+ ### Added
603
+
604
+ - **Datascout spawns per-source profile files.** `/arckit:datascout` now produces one `projects/{P}-{NAME}/data-sources/{provider-slug}-profile.md` per scored data source (in addition to the main DSCT artefact), mirroring the `Spawned Knowledge` pattern from `/arckit:research`. Each profile carries the full reader-extracted evidence with citation links, the deterministic weighted score breakdown, and the project requirement IDs that pointed to that source. Re-running datascout on the same project applies merge rules (preserving narrative prose, replacing factual evidence + scores with the current run, appending project references). New template at `arckit-claude/templates/data-source-profile-template.md`.
605
+
606
+ ## [4.16.6] - 2026-05-06
607
+
608
+ ### Fixed
609
+
610
+ - **Telemetry now collects in plugin-only test repos.** `telemetry.mjs` and `session-learner.mjs` were silently exiting when `.arckit/` didn't exist — but plugin-only installs (test repos that use `extraKnownMarketplaces` and never run `arckit init`) only have `projects/`. Both hooks now treat either directory as a valid "ArcKit project" indicator and create `.arckit/memory/` on demand for the first telemetry write.
611
+
612
+ ## [4.16.5] - 2026-05-06
613
+
614
+ ### Fixed
615
+
616
+ - **Auto-allow hook now matches `${CLAUDE_PLUGIN_ROOT}` literal in commands** (was previously only matching the resolved absolute path; the orchestrator emits the env-var form which Claude Code passes through unexpanded to the hook).
617
+ - **Auto-allow `Read` of `/tmp/datascout-handoff*.json` tempfiles** so the orchestrator can re-inspect its own validator payloads without per-file prompts.
618
+ - **Forbid orchestrator from writing ad-hoc helper scripts.** LLM was hallucinating `dsct-score.mjs`, `dsct-build-writer-input.mjs`, etc. — added an explicit guardrail. All scoring math and payload assembly happens directly in conversation; the only bundled executables are the validator and `scripts/bash/*.sh` helpers.
619
+
620
+ ## [4.16.4] - 2026-05-06
621
+
622
+ ### Fixed
623
+
624
+ - **Auto-allow hook for plugin-internal Read/Bash now actually fires.** v4.16.2 registered `allow-plugin-internals.mjs` under `PermissionRequest`, but that event only fires for some tools and only when a permission dialog is about to show. Switched to `PreToolUse` with `permissionDecision: "allow"` in `hookSpecificOutput` — the documented pattern for blanket auto-allow on built-in Read/Bash. The datascout slash command's plugin-internal `Read`s and `Bash` invocations of bundled scripts now auto-approve.
625
+
626
+ ## [4.16.3] - 2026-05-06
627
+
628
+ ### Fixed
629
+
630
+ - **Datascout orchestrator moved from agent file to slash command.** Earlier 4.16.x releases placed orchestration in a subagent that dispatched reader/writer subagents — but Claude Code plugins forbid nested subagent dispatch (*"Subagents cannot spawn other subagents"*), so users hit *"Agent tool unavailable"* errors. Resolution: orchestration moved to `arckit-claude/commands/datascout.md` (the slash command runs in the main thread where `Agent` works). Reader and writer subagents and all security allowlists unchanged. `arckit-claude/agents/arckit-datascout.md` deleted.
631
+
632
+ ## [4.16.2] - 2026-05-06
633
+
634
+ ### Added
635
+
636
+ - `arckit-claude/hooks/allow-plugin-internals.mjs` — `PermissionRequest` hook that auto-approves the plugin's own internal Read/Bash patterns (any file under `${CLAUDE_PLUGIN_ROOT}/`, plus invocations of the bundled validator and `scripts/bash/*.sh` helpers). Stops the per-session permission prompts that the datascout orchestrator (and any future helper-script-using command) was triggering; non-plugin Read/Bash still falls through to the normal prompt.
637
+
638
+ ## [4.16.1] - 2026-05-06
639
+
640
+ ### Fixed
641
+
642
+ - **datascout: validator no longer requires `npm install` in plugin cache.** Rewrote `validate-handoff.mjs` as a pure-Node JSON Schema 2020-12 partial validator with zero npm dependencies, and removed `ajv` / `ajv-formats` from runtime deps. v4.16.0 had them in `package.json` but the plugin marketplace doesn't run `npm install`, so users hit `Error: Cannot find module 'ajv'` on first `/arckit:datascout` run. Also drops the orchestrator's "ajv-missing → legacy single-agent fallback" path, which had been surfacing a confusing secondary error about `.arckit/templates/`.
643
+
644
+ ## [4.16.0] - 2026-05-06
645
+
646
+ ### Security
647
+
648
+ - **datascout reader/orchestrator/writer split (#442 item 1).** `arckit-datascout` is now a three-tier agent: a reader subagent fetches external content with allowlist `WebSearch/WebFetch/MCP/Read` only (no `Write`/`Bash`/`Agent`), an orchestrator validates each reader's output against a JSON Schema and scores deterministically using a YAML rubric, and a writer subagent holds the only `Write` tool. Falls back to legacy single-agent mode when ajv is not installed. New files: `arckit-claude/agents/arckit-datascout-{reader,writer}.md`, `arckit-claude/agents/READER-PATTERN.md`, `arckit-claude/schemas/datascout-handoff.schema.json`, `arckit-claude/schemas/scoring-rubrics/{generic,uk-gov}.yaml`, `arckit-claude/scripts/validate-handoff.mjs`. New deps: `ajv` ^8, `ajv-formats` ^3.
649
+
650
+ ### Added
651
+
652
+ - `arckit-claude/agents/READER-PATTERN.md` — reference doc for applying the three-tier split to other research agents.
653
+ - `arckit-claude/scripts/validate-handoff.mjs` — shared Node + ajv validator for any future handoff schema.
654
+
655
+ - **Prompt-injection hardening across all 10 research agents (#442).** Adopts patterns from `anthropics/financial-services` reference plugins:
656
+ - **Tools allowlist (item 18).** Every research agent (`research`, `datascout`, `grants`, `aws-research`, `azure-research`, `gcp-research`, `gov-reuse`, `gov-code-search`, `gov-landscape`, `framework`) migrated from `disallowedTools: ["Edit"]` (denylist) to explicit `tools:` allowlist. New tools added to the Claude Code harness in future versions no longer auto-grant to existing agents. MCP entries enumerated per server (glob unsupported in plugin agent frontmatter — verified against current Claude Code docs).
657
+ - **Guardrails section (item 1, partial).** Each agent body now opens with `## Guardrails` covering three primitives: untrusted-input boundary (web/MCP results never executed as instructions), citation discipline (every figure traceable to a URL or `[UNSOURCED]`), and human-decision boundary (named accountable officer per agent — SRO for research, bid director for grants, architecture board for cloud-research, etc.). The third financial-services primitive — write-tool isolation — defers to the future reader/orchestrator/writer split (#442 item 1, full).
658
+ - **`What you produce` output contract.** Each agent body now front-loads its deliverable spec — "Given X, you deliver: 1, 2, 3" — replacing the scattered output description that previously lived inside `Your Core Responsibilities` and the Process steps.
659
+ - **`Toolchain` trailing index.** Each agent body now ends with a flat list of templates, helper scripts, MCP servers, external tools, and related ArcKit commands — the equivalent of financial-services' `Skills this agent uses` adapted to ArcKit's reality (our agents don't dispatch sub-skills).
660
+ - **Converter:** `tools` added to `CLAUDE_ONLY_AGENT_FIELDS` so the allowlist strips cleanly when generating Codex/OpenCode/Gemini/Copilot/Paperclip extensions (which have their own tool models). `Guardrails`, `What you produce`, and `Toolchain` body sections propagate unchanged to all 6 downstream formats.
661
+ - **CLAUDE.md:** corrected outdated guidance — `tools` is now a valid plugin agent frontmatter field (allowlist), with `disallowedTools` applied first then the allowlist resolved against what remains.
662
+
663
+ ## [4.15.2] - 2026-05-05
664
+
665
+ Documentation-only patch.
666
+
667
+ ### Fixed
668
+
669
+ - **Citation traceability now covers MCP queries and web fetches (#283, #437).** `arckit-claude/references/citation-instructions.md` previously only covered files under `external/`, `policies/`, `vendors/`, leaving the External References section empty for the 10 research agents (`gov-reuse`, `research`, `datascout`, `aws-research`, `azure-research`, `gcp-research`, `gov-code-search`, `gov-landscape`, `grants`, `framework`) whose evidence is mostly MCP-sourced or web-fetched. The same Document Register / Citations / Unreferenced Documents tables now cover three source types: **Document** (unchanged), **MCP Query** (per-server prefix `GRSC` / `AWSK` / `MSL` / `GDK` / `DC` plus `Q`-index, one row per unique query), and **Web URL** (`WEB-N`, one row per unique fetched URL). WebSearch remains exploratory and does not produce citations. Two new categories added: `Reuse Evidence` and `Market Evidence`. No template changes — the existing 5-column structure is reused; only the per-cell semantics extend. No agent file changes — all 10 research agents already point at `citation-instructions.md` via a shared one-line directive. Extension copies regenerated by `scripts/converter.py`.
670
+
671
+ ## [4.15.1] - 2026-05-05
672
+
673
+ Documentation-only patch.
674
+
675
+ ### Documentation
676
+
677
+ - **Remote Control + push notifications adoption (#426, closes #369).** Adds a "Long runs: Remote Control + push notifications" section to the six research-heavy command guides (`research`, `datascout`, `aws-research`, `azure-research`, `gcp-research`, `grants`) — each tailored to that command's typical decision points. Adds a "Phone pings via Remote Control" subsection to `autoresearch.md`, sibling to the existing Monitor guidance, oriented at overnight runs paired with `ENABLE_PROMPT_CACHING_1H=1`. Adds a "Remote Control + push notifications (user-facing)" section to `CLAUDE.md` under the Monitor Tool docs, including pairing with the `stale-artifact-scan` monitor. Floor reference correctly states v2.1.121 (current minimum) covers the v2.1.110 RC requirement.
678
+
679
+ ## [4.15.0] - 2026-05-05
680
+
681
+ Ships the Canada Federal Overlay alongside the v4.14.0 platform-capability adoption from earlier the same day.
682
+
683
+ ### Added
684
+
685
+ - **Canada Federal Overlay (community)** — 12 new `ca-*` commands covering FITAA, PIA, ATIP, AIA, Charter, ITSG-33, SOIA, GC sovereign cloud residency, GC Digital Standards, Official Languages Act, federal procurement (PSPC + PSAB), and First Nations OCAP®.
686
+ - 12 new templates (`.arckit/templates/ca-*-template.md` plus plugin mirrors).
687
+ - 12 new guides (`docs/guides/ca-*.md` plus plugin mirrors).
688
+ - 12 new type codes registered in `arckit-claude/config/doc-types.mjs`: `FITAA`, `PIA`, `ATIP`, `AIA`, `CHRT`, `ITSG`, `SOIA`, `CACR`, `DIGSTD`, `OLA`, `PROC`, `OCAP`.
689
+ - `ca-federal-fitaa` build recipe with execution chains and Mermaid flow diagrams.
690
+ - Codex / OpenCode / Copilot / Paperclip extension formats regenerated.
691
+
692
+ ### Changed
693
+
694
+ - Total command count: 104 → 116 (70 official + 46 community).
695
+
696
+ ## [4.14.0] - 2026-05-05
697
+
698
+ Adopts Claude Code v2.1.117–v2.1.128 high-value capabilities (#427). Plugin minimum bumped to **v2.1.121**; plugin auto-update applies the new floor on next `claude plugin update`.
699
+
700
+ ### Added
701
+
702
+ - **MCP `alwaysLoad` on `aws-knowledge` and `microsoft-learn` (#428, v2.1.121+).** Skips tool-search deferral so research commands see the MCP tools on turn 1 of `/arckit:aws-research` and `/arckit:azure-research`. Removes a discovery round-trip per session.
703
+ - **PostToolUse `hookSpecificOutput.updatedToolOutput` on `provenance-stamp.mjs` and `update-manifest.mjs` (#429, v2.1.121+).** The model now sees a one-line summary of what each silent file-mutating hook did — effort requested vs. effective (with downgrade reason if any), manifest sync confirmation. Closes a long-standing visibility gap; the auditable downgrade signal that issue #407 was filed for is now in-band, not just stamped on disk.
704
+ - **Session telemetry — `telemetry.mjs` hook + session-learner aggregation (#430, v2.1.84 / v2.1.119+).** Captures `duration_ms` for every tool call, `mcp__govreposcrape__*` calls (server, tool, sanitised args), and `TaskCreated` agent spawns. Aggregated into a one-line `**Telemetry:**` summary on every `sessions.md` entry — p50/p95 latency, top-3 agents, MCP call counts.
705
+ - **Dashboard surface for telemetry (#431).** Two new panels on the Architecture Governance Dashboard — *Session Telemetry* (aggregate KPIs across last 10 sessions) and *Recent Sessions* (last 5 with detail). Fed by `docs/telemetry.json` written by `session-learner.mjs` when `docs/` exists.
706
+ - **Community-recipes call article (#425).** "Wanted: Community Recipes" published at `docs/articles/` with hero PNG.
707
+
708
+ ### Changed
709
+
710
+ - **Documented Claude Code minimum bumped from v2.1.117 to v2.1.121 (#430).** `version-check.mjs` SessionStart hook updated; warning copy lists the four new feature dependencies (`alwaysLoad`, `updatedToolOutput`, `duration_ms`, `claude plugin tag`).
711
+ - **Release flow uses `claude plugin tag --dry-run` (#428, v2.1.118+).** Validates plugin/marketplace version agreement before `git tag` runs — catches version drift across the 15 version files. `claude plugin prune --dry-run` also documented for orphaned-dependency cleanup.
712
+ - **`scripts/converter.py` filters `alwaysLoad` from generated Codex `config.toml` (#428).** Claude-only MCP fields no longer leak into other extensions; introduces a `CLAUDE_ONLY_MCP_FIELDS` set for future Claude-only keys.
713
+ - **Session housekeeping (#419).** Memory log cleanup, plugin enablement, and `.gitignore` refinement.
714
+
715
+ ## [4.13.1] - 2026-05-03
716
+
717
+ Same-day follow-up to v4.13.0. All additive enhancements to the build harness.
718
+
719
+ ### Added
720
+
721
+ - **`uae-federal-ai` recipe (#414).** Third built-in recipe for UAE Cabinet agentic AI decree compliance: 48 targets, all 12 UAE community commands, integrated research wave.
722
+ - **Research wave on `uk-saas` and `uk-mod-sovereign` (#417).** Default-on per-project research targets (RESEARCH, AWS, Azure, GCP, GOV_REUSE for UK only, DATASCOUT optional). Both recipes now ship 38 targets each.
723
+ - **`ORG_RESEARCH` upstream target (#417, #414 amendment).** New first-wave target on all three built-in recipes. Researches the target organisation once per repo, output to `projects/000-global/research/`, shared across every project.
724
+
725
+ ### Documentation
726
+
727
+ - `/arckit:build` listed in `commands.html`, `guides.html`, and `DEPENDENCY-MATRIX.md` (#416).
728
+ - `sitemap.xml`, `llms.txt`, and `getting-started.html` refreshed for v4.13.0+ (#415).
729
+ - Getting-started recipe-count banner updated to reflect the post-research-wave shape.
730
+
731
+ ## [4.13.0] - 2026-05-03
732
+
733
+ ### Added
734
+
735
+ - **`/arckit:build` parallel build harness (#410).** New plugin skill and slash command for end-to-end ArcKit artefact generation. Reads a YAML recipe, dispatches one subagent per target per wave in parallel, commits each wave as one atomic git commit, and persists progress to `projects/{P}/.arckit/state.json` for resumability. Ships two built-in recipes: `uk-saas` (31 targets) and `uk-mod-sovereign` (32 targets). Custom recipes go in `.arckit/recipes/{name}.yaml`. Claude Code only — depends on parallel Agent tool dispatch which other targets do not support.
736
+ - **Provenance stamping hook (#409).** `provenance-stamp.mjs` injects a machine-readable `## Build Provenance` block into every ArcKit artefact, recording build recipe / wave / target plus requested vs effective effort levels. Auditable trail for governance reviewers.
737
+ - **Build harness launch article (#411).** New essay at `docs/articles/2026-05-03-build-harness-parallel-architecture-generation.md` with hero image. Surfaced on `articles.html` and `index.html`.
738
+ - **`uk-mod-sovereign` recipe.** Sovereign / air-gapped variant for MOD and accredited environments. Replaces civilian SbD with MOD Secure by Design, adds JSP 936 AI assurance, drops Service Standard assessment, rewrites all eight ADR topics for sovereign deployment.
739
+
740
+ ### Fixed
741
+
742
+ - **CLAUDE.md ADR/DIAG path documentation (#408).** The project structure tree now shows ADRs in `decisions/` and diagrams in `diagrams/` subfolders, matching what `/arckit:adr` and `/arckit:diagram` actually produce.
743
+
744
+ ## [4.12.3] - 2026-05-01
745
+
746
+ ### Fixed
747
+
748
+ - **`/arckit:traceability` actually now reports correct coverage (#389).** Previous v4.12.2 attempt fixed regex namespace collisions but the actual bug was elsewhere: `formatTraceability` reads `node.reqIds` for every non-REQ artifact to build the coverage `refMap`, but `node.reqIds` is only assigned by `scanAllArtifacts` when the caller passes `withNodeMetadata: true`. The traceability recipe did not request that flag, so `reqIds` was always `undefined` and `refMap` always empty. Verified end-to-end against the issue's reproduction repo: coverage now reports 41 of 53 requirements (77%) with proper citation lists per requirement.
749
+
750
+ ## [4.12.2] - 2026-05-01
751
+
752
+ ### Fixed
753
+
754
+ - **`/arckit:traceability` reported 0% coverage on legacy projects with 1-2 digit REQ IDs (#389).** The v4.12.1 fix loosened the REQ-doc heading extractor but kept the universal `REQ_ID_PATTERN` strict at `\d{3}` to avoid namespace collisions with non-REQ artifacts. Side-effect: cross-references like `BR-1, FR-3, NFR-SEC-7` in `RSCH` / `RISK` / `STKE` / `SOBC` / `WARD` / UAE-overlay compliance assessments were not extracted, so `node.reqIds` came back empty and `formatTraceability` reported zero coverage even when 14 sibling artifacts genuinely cited the requirements. Universal scanner now also accepts `\d{1,3}`.
755
+ - **`templates/azure-research-template.md`** — Azure Security Benchmark "Backup & Recovery (BR)" row renamed to `BCK-N` to remove the namespace collision with Business-Requirement IDs. Previously `BR-1, BR-2, BR-3` in the ASB control table would, after the loose-pattern fix, be picked up as REQ cross-references. AWS and GCP research templates checked and confirmed clean (no equivalent collisions).
756
+
757
+ ### Known limitations
758
+
759
+ - `templates/fr-anssi-carto-template.md` line 144 still uses `INT-01` for network-interconnection IDs, which collides with the REQ Integration namespace. Currently affects only French ANSSI cartography artifacts. Will be addressed in a follow-up.
760
+
761
+ ## [4.12.1] - 2026-05-01
762
+
763
+ ### Fixed
764
+
765
+ - **Templates aligned to 3-digit REQ IDs** — `requirements-template.md`, `traceability-matrix-template.md`, `hld-review-template.md`, and `jsp-936-template.md` previously used `BR-1` / `FR-1` / `NFR-P-1` placeholder form. 24 of 27 surveyed test-repo REQ documents already use 3-digit zero-padded form (`BR-001`); only the most recent 3 followed the templates literally and broke the hook. Templates now consistently use the 3-digit form. Affects all template copies (`arckit-claude`, `.arckit`, and the five extension templates regenerated by `scripts/converter.py`). `azure-research-template.md` (Azure Security Benchmark `BR-N` namespace) and `fr-anssi-carto-template.md` (`INT-NN` network-interconnection IDs) were intentionally left unchanged — different namespaces (#386).
766
+ - **`hooks/hook-utils.mjs`** — `extractRequirementDetails` heading regex now accepts 1-3 digit numeric suffixes (`### BR-1:`, `#### FR-12:`, `### BR-001:`). Previously hardcoded `\d{3}`, which silently dropped requirements from any REQ document using non-padded IDs — leaving `/arckit:traceability` with an empty graph and forcing the manual fallback. The universal `REQ_ID_PATTERN` scanner stays strict at `\d{3}` to avoid false positives in non-REQ artifacts that use the same prefix in a different namespace (#386).
767
+ - **`hooks/graph-inject.mjs`** — `formatTraceability` now emits a diagnostic message when no requirements can be extracted from a project that has artifacts, instead of returning `null` silently. The hook bail-out is now visible in the prompt context so the failure mode looks like a hook problem rather than a missing hook (#386).
768
+ - **`hooks/graph-inject.mjs`** — `DR-\d{3}` data-requirement detector loosened to `DR-\d{1,3}` so the "missing data-model" recommendation correctly fires for projects with shorter `DR-N` IDs.
769
+
770
+ ## [4.12.0] - 2026-05-01
771
+
772
+ ### Added
773
+
774
+ - **Document Map + Dashboard graph health rollups (#383).** The `/arckit.pages` dashboard now visualises the same health/coverage/compliance signals that `/arckit.navigator` and `/arckit.graph-report` compute, sourced from a shared rollup module so there is no duplicate scan.
775
+ - **`arckit-claude/hooks/graph-rollups.mjs`** — new shared module exporting `tagNodeHealth()`, `computeAllProjectRollups()`, and the canonical `HIGH_SEVERITY_TYPES` / `ESSENTIAL_TYPES` / `CONTEXTUAL_TYPES` / `STALE_THRESHOLD_DAYS` constants used by both `graph-inject.mjs` and `sync-guides.mjs`.
776
+ - **`manifest.json` enrichments** (written by `sync-guides`):
777
+ - `dependencyGraph.nodes[*].health = { stale, draft, orphan, ageDays }` per node.
778
+ - `manifest.projectHealth` block with per-project coverage %, compliance readiness %, density, recommendations (top 3), stale/draft/orphan counts.
779
+ - **Document Map** tints nodes by health (stale = red border, draft = amber dashed, orphan = existing dashed); legend extended with three health swatches; tooltip shows a `⚠ Stale (151d) · Draft` row when any flag is set.
780
+ - **New "Project Health & Next Steps" dashboard panel** renders one card per project with coverage / compliance gauges, health badges, and the top 3 recommended commands.
781
+ - **`docs/llms.txt`** gains an opt-in `## Project status` section — one line per project with coverage %, compliance %, draft/stale/orphan counts, and the top recommended next command. Lets external agents fetch llms.txt and answer "where is this repo at" without scraping the dashboard.
782
+
783
+ ### Changed
784
+
785
+ - **`graph-inject.mjs` constants extracted** to `graph-rollups.mjs` (no behaviour change). All `/arckit.navigator`, `/arckit.graph-report`, `/arckit.health`, `/arckit.analyze`, `/arckit.traceability` outputs are byte-stable.
786
+ - **`sync-guides.mjs`** now passes `{ withNodeMetadata: true }` to `scanAllArtifacts` so dependency-graph nodes carry version, owner, classification, and `reqIds`. Manifest size grows roughly 50–60% on typical projects (e.g. 80 KB → 127 KB for a 38-artifact project).
787
+ - **Hooks guide** (`docs/guides/hooks.md` + `arckit-claude/docs/guides/hooks.md`) refreshed: the per-command `*-scan.mjs` rows that were superseded in v4.11.0 are now replaced with a single `graph-inject` row listing all seven matchers; `graph-rollups.mjs` added to the Utility Files table; `sync-guides` description updated to mention the new manifest enrichments.
788
+
789
+ ### Internal
790
+
791
+ - All seven `pages-template.html` copies (plugin + `.arckit/templates/` + 5 generated extension copies) propagated via `python scripts/converter.py` after the plugin source change. The `.arckit/templates/` CLI fallback was 10 days behind the plugin source and has been re-synced.
792
+
793
+ ### Breaking changes
794
+
795
+ None. Manifest schema is additive — older dashboard JS that does not read `dependencyGraph.nodes[*].health` or `manifest.projectHealth` continues to render correctly. Non-Claude distributions (Codex / Copilot / OpenCode / Gemini / Paperclip) ship the new template but do not run the hook, so `manifest.projectHealth` is absent and the new panel renders nothing — no regression. Wiring those distributions into the rollup is a separate piece of work.
796
+
797
+ ## [4.11.0] - 2026-05-01
798
+
799
+ ### Added
800
+
801
+ - **`/arckit.navigator` (Live, Utility)** — project-level GPS that surfaces coverage against the essential ArcKit baseline, flags DRAFT / stale / orphan artifacts, and recommends the next slash command to run. Read-only diagnostic; no files written. Driven by the new `graph-inject` hook.
802
+ - **`/arckit.graph-report` (Live, Utility)** — governance metrics dashboard across every working project under `projects/`. Reports coverage by category, cross-reference density, compliance readiness, and project comparison. Read-only diagnostic; no files written.
803
+ - **`graph-inject.mjs` hook** (`arckit-claude/hooks/graph-inject.mjs`) — single graph-builder pass that consolidates what used to be five per-command scan hooks (`search-scan`, `impact-scan`, `traceability-scan`, `health-scan`, `governance-scan`). Search / impact / traceability / health / analyze commands now consume the unified graph.
804
+ - **`graph-utils` v2** (`arckit-claude/hooks/graph-utils.mjs`) — additive opts for the graph-builder API: `withNodeMetadata`, `withContent`, `withPreview`. Backward compatible — existing callers continue to work without change; the new opts are opt-in only.
805
+ - New guides: `docs/guides/navigator.md`, `docs/guides/graph-report.md` (mirrored to `arckit-claude/guides/`).
806
+
807
+ ### Changed
808
+
809
+ - **Hook architecture consolidation.** `/arckit.search`, `/arckit.impact`, `/arckit.traceability`, `/arckit.health`, and `/arckit.analyze` migrated from per-command scan hooks onto the unified `graph-inject` pipeline. Net effect: one graph build per session instead of five separate scans, simpler maintenance, identical user-visible output.
810
+ - Officially-maintained baseline: 68 → **70 commands**. Community-contributed overlays unchanged at 34 (EU 7 + FR 12 + AT 3 + UAE 12). Total commands available across all tiers: 104.
811
+
812
+ ### Internal
813
+
814
+ - 8 PRs merged earlier today: #360, #362, #363, #364, #365, #366, #367, plus replacement PRs #377 (search) and #378 (matrix doc). All source code already on `main` before this docs/release follow-up.
815
+
816
+ ### Breaking changes
817
+
818
+ None. All hook migrations are output-equivalent; the new commands are additive.
819
+
820
+ ## [4.10.1] - 2026-04-30
821
+
822
+ ### Changed
823
+
824
+ - **UAE Federal Overlay reclassified from official-baseline to community-contributed.** The 12 `uae-*` commands shipped earlier today as part of the officially-maintained baseline (68 → 80). Within hours the maintainer reclassified them to community-contributed; v4.10.1 lands the corrective metadata. Officially-maintained baseline returns to 68; community-contributed overlays grow from 21 (EU + FR + AT) to 33; total commands available across all tiers stays at 101.
825
+
826
+ Reason: solo CODEOWNERS at the official tier is not a sustainable maintenance posture for fast-moving UAE federal regulatory text without a UAE domain co-maintainer. The official-tier citation-accuracy SLA (quarterly review across the federal corpus, regression sweep across 47 reference repositories, output that an architect can hand to counsel without a paragraph of caveats) needs more than one pair of eyes on regulatory text that is still settling. The community marker is the responsible reading frame; recruiting a UAE domain co-maintainer remains the v4.11 priority. Once one joins, the overlay becomes a candidate for official-tier promotion in a future release.
827
+
828
+ What changed (metadata only):
829
+ - `[COMMUNITY]` prefix added to the `description:` frontmatter on all 12 `uae-*` command files (matching the `eu-*`, `fr-*`, `at-*` pattern).
830
+ - Inline warning banner added immediately after the YAML frontmatter on each command body, listing UAE Cabinet / PDPL / IAS / Cybersecurity Council as the citation authorities to verify against.
831
+ - `Template Origin: Community` set on all 24 `uae-*` template files (12 in `arckit-claude/templates/`, 12 in `.arckit/templates/`).
832
+ - `EXPERIMENTAL` status tag in place of `LIVE` on the two UAE guides on `docs/guides.html`, and on the 12 UAE rows on `docs/commands.html` (`data-status="experimental"`, prefixed `[COMMUNITY]` descriptions, matching the existing 21 community rows).
833
+ - README "UAE Federal Overlay" section heading changed from "(Official Baseline)" to "(Community-contributed)" with updated banner copy; `docs/index.html`, `docs/articles.html`, and the launch and decree articles in `docs/articles/` updated to community framing.
834
+ - `arckit-claude/config/doc-types.mjs` UAE block comment updated to reflect community-contributed status with co-maintainer recruiting note.
835
+ - `.github/CODEOWNERS` UAE block comment updated to flag community-contributed status with promotion gated on co-maintainer commitment.
836
+
837
+ What did NOT change (fully backwards-compatible):
838
+ - All 12 command names (`/arckit.uae-*`).
839
+ - All UAE doc-type codes (`PDPL`, `IAS`, `SDC`, `NCSP`, `UPS`, `ZBUR`, `DREC`, `DSHR`, `NPRA`, `AICH`, `AAUT`, `UPRC`).
840
+ - All frontmatter `handoffs:` chains.
841
+ - All template structures and section bodies.
842
+ - The Document Control conditional rendering rules and the `<!-- DOC-CONTROL-HEADER -->` marker mechanism.
843
+ - The Smart Data classification ladder rendering when `governance_framework: UAE Federal` and `classification_scheme: UAE Smart Data` are set.
844
+ - The canonical chain across the 12 commands.
845
+ - The dual-registration test (`scripts/tests/test-doc-types-dual-registration.mjs`).
846
+ - The `arckit migrate-classification` one-time CLI helper.
847
+
848
+ ## [4.10.0] - 2026-04-30
849
+
850
+ ### Added
851
+
852
+ - 12-command UAE Federal Overlay as official baseline (68 → 80 commands):
853
+ - Federal data + security: `uae-classification`, `uae-pdpl`, `uae-ias`, `uae-cloud-residency`
854
+ - Federal identity: `uae-uaepass`
855
+ - Cabinet instruments: `uae-zero-bureaucracy`, `uae-digital-records`, `uae-data-sharing`, `uae-priorities-alignment`
856
+ - AI governance: `uae-ai-charter`, `uae-ai-autonomy-tier`
857
+ - Procurement: `uae-procurement`
858
+ - New `classification_scheme` plugin userConfig (UK or UAE Smart Data).
859
+ - `arckit migrate-classification` one-time CLI helper for migrating existing artefacts from UK ladder to UAE Smart Data.
860
+ - Dual-registration CI test catching `doc-types.mjs`/`pages.md` drift.
861
+ - New guide `docs/guides/uae-overlay.md` and maintenance doc `docs/guides/uae-overlay-maintenance.md`.
862
+
863
+ ### Changed
864
+
865
+ - `governance_framework` userConfig description extended to recommend `UAE Federal` as a third value.
866
+ - All ~83 templates per directory: Document Control table replaced with `<!-- DOC-CONTROL-HEADER -->` marker resolved at command-execution time.
867
+
868
+ ### Breaking changes
869
+
870
+ None. Non-UAE projects produce byte-identical Document Control output to v4.9.4.
871
+
872
+ ### Deferred to v4.11 / v5.0
873
+
874
+ - Bilingual Arabic / English (`uae-translate`).
875
+ - Federal Mandate doc-types category (currently the four Cabinet instruments sit under `Governance`).
876
+ - Sector overlays (ADHICS, Dubai ISR) as community contributions.
877
+
878
+ ## [4.9.4] - 2026-04-28
879
+
880
+ ### Docs
881
+
882
+ - Added `arckit-claude/docs/guides/custom-commands.md` (mirrored to `docs/guides/custom-commands.md`) — authoring guide for contributors adding new `/arckit.*` commands. Covers the converter fan-out from the plugin source to six target formats, frontmatter reference, the `$ARGUMENTS` placeholder rewriting table, template-handling differences between Paperclip (embedded) and other targets (verbatim copy), a worked `/arckit.sla` example, the commands/skills/agents/hooks decision table, and a testing checklist. Indexed in `docs/README.md` under a new Contributing subsection. Authored by @Yumstezy (#111, #357)
883
+
884
+ ### Fixed
885
+
886
+ - `arckit-claude/hooks/allow-mcp-tools.mjs` now auto-allows `mcp__govreposcrape__` tool calls. Four of the five bundled MCPs were already in the auto-allow list — govreposcrape was missing, so every `/arckit.gov-reuse`, `/arckit.gov-code-search`, and `/arckit.gov-landscape` run was hitting a permission dialog on every tool call (#215, #358)
887
+ - `scripts/converter.py` no longer recreates `arckit-paperclip/scripts/bash` and `arckit-paperclip/scripts/python` on every run. PR #353 deleted these script directories in favor of the TS-native `src/lib/arckit.ts`, but the converter's `copy_extension_files` loop kept blindly copying them back. New `copy_scripts_to_extension` flag (defaults `True`) on `AGENT_CONFIG` is set to `False` for paperclip; other extensions are unaffected (#356)
888
+
889
+ ## [4.9.3] - 2026-04-28
890
+
891
+ ### Added
892
+
893
+ - `/arckit.pages` dashboard now surfaces HTML deck artifacts (e.g. `ARC-001-DECK-v1.0.html`) alongside markdown documents in project artifact lists. New `DECK` doc-type code registered in `arckit-claude/config/doc-types.mjs` and the `sync-guides` hook (#354)
894
+
895
+ ### Changed
896
+
897
+ - `arckit-paperclip` plugin restructured to align with the Paperclip TS plugin authoring-guide spec. Helper bash and python scripts replaced by `src/lib/arckit.ts` library; `manifest.ts`, `command-tools.ts`, `utility-tools.ts`, and `worker.ts` simplified accordingly. Net `-2,507` LOC across the plugin, removes script-execution surface, unblocks future TS-native tool additions (#353)
898
+ - `arckit-claude/.claude-plugin/plugin.json` declares `"$schema": "https://json.schemastore.org/claude-code-plugin-manifest.json"` for editor autocomplete and IDE-side validation. Recognised by `claude plugin validate` since Claude Code v2.1.120; forward-compatible because Claude Code ignores `$schema` at load time, so no minimum-version bump (#215, #355)
899
+
900
+ ## [4.9.2] - 2026-04-24
901
+
902
+ ### Changed
903
+
904
+ - Documented minimum Claude Code version bumped from v2.1.112 to **v2.1.117**. The v2.1.117 release fixes Opus 4.7's `/context` calculation to use the model's native 1M window (was 200K, causing ArcKit's long deep-research and synthesis sessions to autocompact prematurely) and loads agent frontmatter `mcpServers` for `--agent` sessions (lets research agents declare their own MCP surface). Also pulls in the v2.1.116 `gh` rate-limit hint surfacing (benefits 10 research agents and govreposcrape callers), faster MCP startup with multiple stdio servers, and the WebFetch hang fix on very large HTML pages. Updated: `arckit-claude/hooks/version-check.mjs` (`MIN_CLAUDE_CODE_VERSION`), README "Why" blocks, and `mcp-servers.md` prerequisites in plugin + 5 extension dirs (#215, #352)
905
+ - `/guides` page now lists all 110 guides; articles page font and hero colour fixed (#350)
906
+
907
+ ### Postmortem context
908
+
909
+ The v2.1.117 floor independently clears all three Claude Code regressions described in [Anthropic's April 23 postmortem](https://www.anthropic.com/engineering/april-23-postmortem) (effort default lowered Mar 4 – Apr 7, thinking-cache clearing bug Mar 26 – Apr 10 fixed in v2.1.101, "≤25 words between tool calls" verbosity rule Apr 16 – Apr 20 fixed in v2.1.116). Users on v2.1.117+ are clear of all three. ArcKit users who saw thin or context-disconnected outputs from `/arckit.requirements`, `/arckit.research`, `/arckit.sobc`, or `/arckit.autoresearch` between Mar 26 and Apr 20 should re-run on v2.1.117+ for restored quality.
910
+
911
+ ## [4.9.1] - 2026-04-22
912
+
913
+ ### Fixed
914
+
915
+ - `/arckit.wardley` and `/arckit.wardley.value-chain` quoting rule now treats any whitespace-separated pure-digit word as non-simple, forcing quotes on names like `NIS 2031 FDI Outcomes Reporting`, `ISO 27001 Controls`, `Windows 11 Deployment`, and `Log4j 2024 CVE`. The mermaid `wardley-beta` parser tokenises bare numeric words as numeric literals and fails rendering with `Expecting token of type '[' but found '2031'` (#349)
916
+ - `validate-wardley-math.mjs` Stop-hook now runs a 4th check against `mermaid` / `wardley-beta` blocks: scans `component` / `anchor` / `evolve` / `pipeline` / `->` lines, strips quoted and decorator segments, and blocks Stop on any remaining bare-digit word — catches regressions before the rendered page errors (#349)
917
+
918
+ ### Changed
919
+
920
+ - `docs/guides/enterprise-scale.md` now copied into the 4 extension directories (`arckit-codex`, `arckit-copilot`, `arckit-opencode`, `arckit-paperclip`) that were missing it (converter catch-up) (#349)
921
+
922
+ ## [4.9.0] - 2026-04-21
923
+
924
+ ### Added
925
+
926
+ - OWM → Mermaid `wardley-beta` conversion fidelity suite: `tests/mermaid-wardley/test-fidelity.mjs` parses every Wardley map in `swardley/WARDLEY-MAP-REPOSITORY`, converts via `convert.mjs`, re-parses, and reports component / anchor / link retention, `|Δε|`, `|Δν|`, pooled drift distribution. Methodology modelled on `tractorjuice/wardleymap_math_model/skills/wardley-map-workspace/compare_all_25.py`. Current result: 100% component / anchor / link retention, `|Δε|` = 0 exactly across 4,905 matched pairs (#339)
927
+
928
+ ### Fixed
929
+
930
+ - Wardley converter now handles OWM's hybrid `pipeline X [min, max] { 1-D children }` syntax and `evolve` names containing `/.X`. Real-world parse rate 144/147 → 146/147 (the remaining failure is an upstream source-data typo unfixable at the converter layer) (#340)
931
+ - Wardley command guidance (`/arckit.wardley`, `/arckit.wardley.value-chain`) plus converter adopt **conditional quoting** based on the `wardley-beta` grammar's `NAME_WITH_SPACES` terminal. Quote names that fall outside `[A-Za-z][A-Za-z0-9_()&]*(?:[ \t]+[A-Za-z(][A-Za-z0-9_()&]*)*` — hyphens, dots, slashes, leading digits — or whose first word matches / prefixes a reserved keyword (`labelling`, `marketplace`, `evolved`, `build release cycle`). Previously-unquoted hyphenated names like `Real-Time Data Processing` or `GPT-4 LLM Service` broke rendering because Mermaid's lexer read the `-` as the start of `->` (#341)
932
+ - Wardley converter preserves `label [x, y]` offsets from OWM sources across all three emission sites (top-level components, explicit pipeline-block children, auto-injected pipeline children). Previously every label was silently dropped — 20 lost in `sustainability/introduction example` alone. Respects the three `wardley-beta` grammar rules found along the way: label offsets must be integers (rounded at emission), `anchor` doesn't accept `label` (dropped silently), and `label` must precede decorators on a component line (#344)
933
+
934
+ ### Changed
935
+
936
+ - Pages-template CDN bumped `mermaid@11.4.1` → `mermaid@11.14.0` across all six `pages-template.html` files (plugin + 5 extensions + `.arckit/templates/`). Mermaid 11.14.0 (2026-04-01) ships the `wardley-beta` diagram type, so generated `docs/index.html` pages now render Wardley maps inline (#337)
937
+ - Test suite `tests/mermaid-wardley/` moves from the `pkg.pr.new/mermaid@7147` pre-release build to official `mermaid@^11.14.0`. No behaviour drift — 18/18 synthetic fixtures + 144/147 real-world maps pass, same as pre-release (#338)
938
+
939
+ ### Companion
940
+
941
+ - Published [`tractorjuice/wardley-maps-mermaid`](https://github.com/tractorjuice/wardley-maps-mermaid) — a public mirror of `swardley/WARDLEY-MAP-REPOSITORY` with each of the 147 maps converted to Mermaid `wardley-beta` alongside the OWM source. All 147 render cleanly under Mermaid 11.14.0. Includes `tools/convert.mjs` + `tools/regenerate.mjs` for local regeneration. Content licensed CC-BY-SA 4.0 matching upstream
942
+
943
+ ## [4.8.0] - 2026-04-20
944
+
945
+ ### Added (Community-contributed)
946
+
947
+ > ⚠️ The 3 Austrian regulatory commands below are a seed contribution. The verification pass in #333 resolved the majority of `[NEEDS VERIFICATION]` markers with domain-authoritative citations (NISG BGBl. I Nr. 94/2025, VO 2023/2495 thresholds, three-tier CERT reporting, §107 BVergG accessibility). Remaining flagged items (DSB enforcement positions, Land competence boundaries, command-prompt internals) should still be reviewed by an Austrian practitioner (DPO / CISO / Vergabejurist) before external reliance. See #304 for the overlay design.
948
+
949
+ - `/arckit.at-dsgvo` — [COMMUNITY] assess Austrian DSG / DSGVO obligations — Datenschutzbehörde patterns, §§12–13 DSG image processing, ELGA/GTelG health, §96a ArbVG employee monitoring, age 14 consent
950
+ - `/arckit.at-nisg` — [COMMUNITY] assess Austrian NISG (idF BGBl. I Nr. 94/2025 — NIS2 transposition) — Essential/Important designation, three-tier CERT reporting (Sectoral → CERT.at → GovCERT), KSÖ, AT sectoral authorities
951
+ - `/arckit.at-bvergg` — [COMMUNITY] generate Austrian BVergG 2018 procurement documentation — Oberschwellen/Unterschwellen (€221K / €443K / €5,538K per VO 2023/2495), ANKÖ, Bestbieterprinzip, BVwG review
952
+ - `/arckit.fr-irn` — [COMMUNITY] structure an IRN (Indice de Résilience Numérique) self-assessment following the aDRI framework — 8 resilience pillars × 5 organisational layers. References the official methodology at gitlab.com/digitalresilienceinitiative/adri-irn rather than reproducing scoring criteria (CC BY-NC-ND 4.0 licence incompatible with ArcKit's MIT licence; living standard that evolves actively). Generates `ARC-{id}-IRN-v1.0.md` with scoring scaffold, pre-populated context from existing project artifacts, and clear handoff to the official aDRI evaluation grid (#322)
953
+
954
+ Registered 3 new doc type codes (ATDSG, ATNISG, BVERGG) in both `arckit-claude/config/doc-types.mjs` and `arckit-claude/commands/pages.md` (dual-registration pattern established in #317). @gtonic added as Austrian domain maintainer; CODEOWNERS lines for `at-*` staged but left commented pending explicit acceptance.
955
+
956
+ ### Fixed
957
+
958
+ - Extensions: propagate the `.guide-status.community` CSS rule to `pages-template.html` so community-contributed guides render with the correct visual marker in the generated dashboard (#327)
959
+ - `sync-guides` hook: register the 18 EU/FR community guide stems so `/arckit.pages` includes them when syncing guide cards into the dashboard
960
+ - AT DSG template drift: `arckit-claude/templates/at-dsgvo-template.md` was left at the 220-line seed after #333 enriched only the `.arckit/` copy, which would have served plugin and extension users the pre-verification template. Mirrored the enriched `.arckit/` copy into `arckit-claude/` and re-ran `scripts/converter.py` to propagate to the 4 extension copies
961
+
962
+ ### Docs
963
+
964
+ - Added @gtonic as a code contributor and Austrian domain maintainer in `docs/contributors.html` (hero stat 8 → 9, Community Impact refreshed to include Austrian regulatory coverage) (#328)
965
+ - Moved the architecture book, research, and plan content out to a dedicated `tractorjuice/arckit-book` repo and updated pointers in `wiki.json` accordingly (#324, #325)
966
+ - Added `.devin/wiki.json` to steer DeepWiki generation
967
+ - Added a Star History chart to `README.md` above Quick Start, with cache-buster query to keep the badge fresh
968
+ - Tidied `docs/superpowers/`: deleted shipped plans/specs and added a README explaining the directory's purpose (#326)
969
+ - Added design spec and implementation plan for consolidating the dual artifact-type registry (`arckit-claude/config/doc-types.mjs` + the `/arckit.pages` allow-list) into a single source of truth — design only, not yet implemented
970
+
971
+ ## [4.7.2] - 2026-04-19
972
+
973
+ ### Added
974
+
975
+ - `## Key References` tables in all 18 EU/French community commands pointing to authoritative regulatory sources (EUR-Lex, ANSSI, CNIL, EDPB, ENISA, MITRE), following the existing pattern used by official ArcKit commands (#321)
976
+ - 36 new usage guides (18 commands × 2 locations: `docs/guides/` + `arckit-claude/docs/guides/`) for the EU/FR community commands, all carrying `Guide Origin: Community` to preserve provenance. Each guide follows the standard ArcKit guide format: inputs table, syntax, document structure, one-page workflow, review checklist (#321)
977
+ - `tests/plugin/test_template_consistency.py` — parametrised test asserting every command-referenced template exists in both `arckit-claude/templates/` and `.arckit/templates/`, and that the two directories stay in sync (#321)
978
+ - `tests/plugin/test_commands_structure.py` — `STRICT_COMMANDS` set covering the 18 community commands; enforces presence of `## User Input`, `## Instructions`, `## Success Criteria`, `## Example Usage`, labelled code fences, and no trailing spaces (#321)
979
+ - Spec and implementation plan for adding a dedicated community-commands table to `docs/commands.html` (not yet implemented)
980
+
981
+ ### Fixed
982
+
983
+ - Multiple stale command-count references across `docs/`: `commands.html` hero stat, `<h2>` heading, meta tags, schema, and filter UI all showed `67` instead of the correct baseline of `68` (the `/arckit.grants` row was also missing from the main table and has been added). `docs/getting-started.html` updated from "67 commands" to "68 commands" in 5 locations
984
+ - Internal inconsistency in `docs/DEPENDENCY-MATRIX.md`: REQ fan-in was listed as "36 commands" in one place and "37 commands" in another (list contains 37); stakeholders fan-out was listed as both "22 commands" and "23 commands" (list contains 23). Corrected to match the actual lists
985
+ - Stale historical reference "all 40 commands across 16 tiers" in `docs/WORKFLOW-DIAGRAMS.md` updated to 68
986
+
987
+ ### Changed
988
+
989
+ - `README.md` and `docs/DEPENDENCY-MATRIX.md` updated to document the 18 EU/FR community commands: README adds a `### Phase 14.5: Compliance Assessment (EU and French Government)` workflow section (top-line count stays at 68 — community counted separately per policy); DEPENDENCY-MATRIX adds a `2026-04-19` changelog entry with dependency graph and typical compliance paths (#321)
990
+ - Regenerated extension artefacts for the 18 community commands via `scripts/converter.py`: Paperclip `src/data/commands.json` refreshed to include new Key References; 90 community guide files copied into extension directories (`arckit-codex/docs/guides/`, `arckit-copilot/docs/guides/`, `arckit-gemini/docs/guides/`, `arckit-opencode/docs/guides/`, `arckit-paperclip/docs/guides/`)
991
+
992
+ ## [4.7.1] - 2026-04-19
993
+
994
+ ### Fixed
995
+
996
+ - `/arckit.pages` was silently omitting the 18 v4.7.0 community-contributed type codes (RGPD, NIS2, AIACT, DORA, CRA, DSA, DATAACT, CNIL, SECNUM, MARPUB, DINUM, EBIOS, ANSSI, CARTO, DR, ALGO, PSSI, REUSE) from the rendered dashboard. The `update-manifest.mjs` hook correctly recorded the artifacts in `docs/manifest.json` (it reads from `arckit-claude/config/doc-types.mjs`), but the `/arckit.pages` prompt has its own hardcoded "Only include these known artifact types" allow-list at `arckit-claude/commands/pages.md:198` that was missing the new codes. Added all 18 to the table grouped by category, plus a note pointing back to `doc-types.mjs` as the single source of truth (#317)
997
+
998
+ ### Documentation
999
+
1000
+ - `arckit-claude/config/doc-types.mjs` — added a prominent `⚠️ DUAL REGISTRATION REQUIRED` warning at the top so future contributors know to update both `doc-types.mjs` and `pages.md` when adding new type codes (#317)
1001
+
1002
+ ## [4.7.0] - 2026-04-19
1003
+
1004
+ ### Added (Community-contributed)
1005
+
1006
+ > ⚠️ The 18 EU and French regulatory commands below are community-contributed and have not yet been validated against current ANSSI / CNIL / EU regulatory text. Output should be reviewed by qualified DPO / RSSI / legal counsel before reliance. Citations may lag the current source — verify before use. Domain maintainer: [@thomas-jardinet](https://github.com/thomas-jardinet) — auto-requested for review on `eu-*` / `fr-*` changes via `.github/CODEOWNERS`.
1007
+
1008
+ - `/arckit.eu-rgpd` — [COMMUNITY] generate GDPR (EU 2016/679) compliance assessment for EU/EEA data processing — member-state-neutral, covers all DPAs, cross-border transfers, breach notification
1009
+ - `/arckit.eu-nis2` — [COMMUNITY] assess NIS2 Directive compliance obligations for EU member state operators of essential services and important entities
1010
+ - `/arckit.eu-ai-act` — [COMMUNITY] assess EU AI Act (Regulation 2024/1689) compliance, risk classification, and conformity requirements
1011
+ - `/arckit.eu-dora` — [COMMUNITY] assess DORA (EU 2022/2554) compliance for financial sector entities operating in the EU
1012
+ - `/arckit.eu-cra` — [COMMUNITY] assess EU Cyber Resilience Act (Regulation 2024/2847) for products with digital elements
1013
+ - `/arckit.eu-dsa` — [COMMUNITY] assess EU Digital Services Act (Regulation 2022/2065) for online intermediaries, platforms, and VLOPs
1014
+ - `/arckit.eu-data-act` — [COMMUNITY] assess EU Data Act (Regulation 2023/2854) for connected products, data holders, and DAPS
1015
+ - `/arckit.fr-secnumcloud` — [COMMUNITY] assess SecNumCloud 3.2 qualification for French sovereign cloud procurement and OIV/OSE obligations
1016
+ - `/arckit.fr-marche-public` — [COMMUNITY] generate French public procurement documentation aligned with code de la commande publique, UGAP catalogue, and DINUM standards
1017
+ - `/arckit.fr-dinum` — [COMMUNITY] assess French digital administration standards: RGI, RGAA, RGESN, RGS, and DINUM doctrine cloud de l'État
1018
+ - `/arckit.fr-rgpd` — [COMMUNITY] French CNIL-specific GDPR layer: cookies, HDS, age 15, CNIL référentiels — supplements `/arckit.eu-rgpd`
1019
+ - `/arckit.fr-ebios` — [COMMUNITY] EBIOS Risk Manager 5-workshop study following the ANSSI methodology
1020
+ - `/arckit.fr-anssi` — [COMMUNITY] assess compliance with the ANSSI Guide d'hygiène informatique (42 measures) and cloud recommendations
1021
+ - `/arckit.fr-anssi-carto` — [COMMUNITY] ANSSI-methodology IS cartography across business / application / system / network levels
1022
+ - `/arckit.fr-dr` — [COMMUNITY] Diffusion Restreinte handling compliance (II 901/SGDSN/ANSSI)
1023
+ - `/arckit.fr-algorithme-public` — [COMMUNITY] public algorithm transparency notice (Article L311-3-1 CRPA)
1024
+ - `/arckit.fr-pssi` — [COMMUNITY] generate an Information System Security Policy (PSSI) per ANSSI/RGS
1025
+ - `/arckit.fr-code-reuse` — [COMMUNITY] public code reuse assessment (code.gouv.fr, SILL, EUPL) before building
1026
+
1027
+ ### Added
1028
+
1029
+ - `.github/CODEOWNERS` — establishes domain ownership; `@thomas-jardinet` is auto-requested for review on changes to `eu-*` / `fr-*` commands and templates. Repo owner `@tractorjuice` remains final approver via the default `*` rule.
1030
+ - README — new "EU & French Regulatory Compliance (Community)" section listing all 18 commands with maintainer credit (#316)
1031
+ - `docs/contributors.html` — new card for `@thomas-jardinet` (Code Contributor + Domain Maintainer EU & FR); contributor count 7 → 8 (#316)
1032
+
1033
+ ### Fixed
1034
+
1035
+ - `validate-arc-filename.mjs` PreToolUse hook was blocking every Write call from the new EU and FR commands with exit code 2 ("Unknown document type code"). Registered all 18 codes (RGPD, NIS2, AIACT, DORA, CRA, DSA, DATAACT, CNIL, SECNUM, MARPUB, DINUM, EBIOS, ANSSI, CARTO, DR, ALGO, PSSI, REUSE) in `arckit-claude/config/doc-types.mjs` — the single source of truth that all 6 ArcKit hooks import for display names and categorisation. The 7 EU commands shipped via #314 had been broken at the hook layer until #316 hotfixed them (#316)
1036
+
1037
+ ## [4.6.13] - 2026-04-19
1038
+
1039
+ ### Fixed
1040
+
1041
+ - `stale-artifact-scan` monitor exited 1 mid-loop in real ArcKit repos. Two bundled fixes in `arckit-claude/scripts/bash/detect-stale-artifacts.sh`: (a) dropped an unused `source common.sh` line that was leaking `errexit + pipefail` into the monitor and aborting the script the first time a `grep | sed | tr` pipeline returned no match; (b) made the Document Control `Status` grep robust to `**markdown bold**` and anchored it so it no longer accidentally matches `| status |` rows in entity-attribute tables further down the file. Net effect: monitor now exits 0 and surfaces both review-overdue *and* DRAFT-unchanged artifacts (the latter were silently skipped before) (#307)
1042
+
1043
+ ## [4.6.12] - 2026-04-18
1044
+
1045
+ ### Fixed
1046
+
1047
+ - Plugin manifest rejected by Claude Code v2.1.114 with `userConfig.*.type` and `userConfig.*.title` validation errors. Added the newly-required `title` and `type: "string"` fields to all five `userConfig` entries in `arckit-claude/.claude-plugin/plugin.json`. Without this fix the plugin fails to install on Claude Code v2.1.114+ (#302)
1048
+
1049
+ ## [4.6.11] - 2026-04-18
1050
+
1051
+ ### Added
1052
+
1053
+ - `keep-coding-instructions: true` on 5 long-running commands (`requirements`, `research`, `sobc`, `datascout`, `framework`) — persists the command's instructions across `/compact` so Claude Code doesn't drop the template and traceability rules mid-run. Requires Claude Code v2.1.94+; the converter already strips the field for non-Claude extensions (Phase 1 work, now activated) (#215, #301)
1054
+
1055
+ ## [4.6.10] - 2026-04-18
1056
+
1057
+ ### Added
1058
+
1059
+ - Plugin `monitors` manifest key (Claude Code v2.1.105+) with a `stale-artifact-scan` monitor that runs at session start. The monitor (`arckit-claude/scripts/bash/detect-stale-artifacts.sh`) scans `projects/` for ARC-*.md artifacts whose Document Control `Next Review Date` is overdue or whose `Status: DRAFT` is 14+ days old, emitting one notification per stale file (capped at 10). Silent in non-ArcKit repos (#215, #300)
1060
+ - Autoresearch guide documents the built-in `Monitor` tool (v2.1.98+) for streaming overnight autoresearch progress from a second session without blocking the experiment loop (#215, #300)
1061
+
1062
+ ## [4.6.9] - 2026-04-18
1063
+
1064
+ ### Added
1065
+
1066
+ - SessionStart version check now warns when the Claude Code client is below the documented minimum (v2.1.112). Detection prefers `$CLAUDE_CODE_VERSION` env var and falls back to `spawnSync('claude', ['--version'])` with a 2s timeout. Warning lists features lost on older clients (userConfig, hook `if:`, skill `paths:`, Opus 4.7 `xhigh`/Auto mode). Silent on detection failure (#215, #299)
1067
+
1068
+ ## [4.6.8] - 2026-04-18
1069
+
1070
+ ### Added
1071
+
1072
+ - Plugin `userConfig` (Claude Code v2.1.83+) — plugin prompts at enable time for `GOOGLE_API_KEY` / `DATA_COMMONS_API_KEY` (both sensitive, stored in system keychain) plus org defaults (`organisation_name`, `default_classification`, `governance_framework`). `.mcp.json` uses `${user_config.KEY}` placeholders; the converter rewrites these to `${KEY}` shell env vars for Codex/Gemini/OpenCode/Copilot targets (#215, #298)
1073
+
1074
+ ### Changed
1075
+
1076
+ - Existing users enabling v4.6.8+ in Claude Code will be prompted once for MCP API keys and org defaults; existing `GOOGLE_API_KEY` / `DATA_COMMONS_API_KEY` shell env vars continue to work for non-plugin contexts (Codex / Gemini / OpenCode / Copilot).
1077
+
1078
+ ## [4.6.7] - 2026-04-18
1079
+
1080
+ ### Added
1081
+
1082
+ - `docs/llms.txt` — LLM-friendly site index for arckit.org following the [llmstxt.org](https://llmstxt.org/) standard. Indexes the homepage, getting started, command/guide catalogue, DDaT role guides, use cases, and source distributions. Added to `sitemap.xml`.
1083
+ - `/arckit.pages` now generates `docs/llms.txt` in downstream ArcKit project repositories alongside `index.html` and `manifest.json`. Uses `raw.githubusercontent.com` URLs for project markdown artifacts and relative paths for the site-local dashboard and guides. Hand-curated `docs/llms.txt` files (without the ArcKit generation marker) are preserved across re-runs.
1084
+ - Document `ENABLE_PROMPT_CACHING_1H=1` (Claude Code v2.1.108+) recommendation in MCP setup and autoresearch guides for long ArcKit workflows and overnight optimisation runs (#215)
1085
+ - Phase 1 adoption of Claude Code v2.1.84+ plugin capabilities (#215, #297):
1086
+ - `paths:` globs on all 4 plugin skills (`architecture-workflow`, `mermaid-syntax`, `plantuml-syntax`, `wardley-mapping`) for sharper auto-activation on ArcKit artifact patterns
1087
+ - `if:` conditions (v2.1.85+) on `validate-arc-filename`, `score-validator`, and `update-manifest` hooks to narrow triggering to `projects/**` writes and avoid unnecessary Node process spawns
1088
+ - `CLAUDE.md` documents new command frontmatter (`keep-coding-instructions`, `xhigh` effort value), agent frontmatter (`initialPrompt`), skill frontmatter (`paths:`), and hook `if:` field with permission rule syntax examples
1089
+
1090
+ ### Changed
1091
+
1092
+ - Bump minimum Claude Code version to v2.1.112 to unlock Opus 4.7 `xhigh` effort tier and Auto mode for deep-research agents and synthesis commands (#215)
1093
+ - `scripts/converter.py` extends Claude-only-field stripping for non-Claude targets: commands drop `keep-coding-instructions` and `paths`; agents drop `initialPrompt`, `maxTurns`, and `disallowedTools` in addition to `effort`; reference skills copied to extension dirs have `paths:` stripped post-copy (#215, #297)
1094
+
1095
+ ## [4.6.6] - 2026-04-09
1096
+
1097
+ ### Added
1098
+
1099
+ - Managed agent deployment — deploy any of the 10 ArcKit agents as Claude Managed Agents via the Anthropic API (`scripts/managed-agents/arckit-agent.py`) (#282)
1100
+ - 3 MCP servers registered on managed agents with `always_allow` permission (AWS Knowledge, Microsoft Learn, govreposcrape)
1101
+ - 4 custom skills uploaded to managed agents (architecture-workflow, mermaid-syntax, plantuml-syntax, wardley-mapping)
1102
+
1103
+ ### Changed
1104
+
1105
+ - Bump minimum Claude Code version to v2.1.97 (#215)
1106
+
1107
+ ## [4.6.5] - 2026-04-08
1108
+
1109
+ ### Fixed
1110
+
1111
+ - Pages dashboard not showing global project documents from subdirectories (research, diagrams, decisions, wardley-maps, data-contracts, reviews)
1112
+
1113
+ ## [4.6.4] - 2026-04-07
1114
+
1115
+ ### Added
1116
+
1117
+ - `/arckit.grants` command (68th command) — research UK government grants, charitable funding, and accelerator programmes with eligibility scoring (#277)
1118
+ - `arckit-grants` agent (10th agent) — autonomous web research across UKRI, Innovate UK, NIHR, DSIT, DASA, Wellcome, Nesta, Health Foundation, 360Giving/GrantNav, and accelerators
1119
+ - `GRNT` document type for grants research reports (Research category, `research/` subdirectory)
1120
+ - Grants template with project funding profile, per-grant eligibility scoring, comparison table, recommended strategy, and citation traceability
1121
+
1122
+ ## [4.6.3] - 2026-04-06
1123
+
1124
+ ### Added
1125
+
1126
+ - Document version badges in pages sidebar — every document shows its version (e.g., v1.0) with an inline dropdown selector when multiple versions of the same document exist
1127
+ - Citation traceability for external documents — inline citation markers (`[DOC-CN]`) and structured "External References" section with Document Register, Citations, and Unreferenced Documents tables (#158, #207)
1128
+ - Shared citation instructions file referenced by all 43 commands and 7 research agents
1129
+
1130
+ ## [4.6.2] - 2026-04-05
1131
+
1132
+ ### Added
1133
+
1134
+ - Mermaid `wardley-beta` test suite — 98% pass rate on 147 real-world maps, ArcKit syntax 100% valid (#271)
1135
+ - Hooks documentation guide (`docs/guides/hooks.md`) across all distribution formats
1136
+ - Paperclip plugin scaffolding with TypeScript source, bash/python scripts, and VERSION file
1137
+
1138
+ ### Fixed
1139
+
1140
+ - Resolve 6 hook bugs and add hooks documentation (#271)
1141
+ - Add `name` field to generated Codex agent `.toml` files — Codex CLI requires a non-empty name (#269)
1142
+ - Flatten `[agents.roles.X]` to `[agents.X]` in Codex `config.toml` to prevent `roles` being misinterpreted as a malformed agent role (#269)
1143
+ - Bump minimum Claude Code version to v2.1.90 across all documentation
1144
+
1145
+ ## [4.6.1] - 2026-03-28
1146
+
1147
+ ### Fixed
1148
+
1149
+ - Trim all 4 skill descriptions to under 250 characters for Claude Code v2.1.86 context cap (#215)
1150
+
1151
+ ## [4.6.0] - 2026-03-24
1152
+
1153
+ ### Changed
1154
+
1155
+ - All 9 agents now use `model: inherit` instead of hardcoded `sonnet` — agents use whatever model the user is running (Opus users get Opus, Sonnet users get Sonnet)
1156
+ - Added `effort: high` to 10 commands: analyze, dfd, diagram, gcloud-clarify, gcloud-search, impact, principles, principles-compliance, servicenow, story (58 of 67 commands now have effort set)
1157
+ - Autoresearch: `effort:` and `model:` are now tuneable parameters alongside prompt text
1158
+ - Autoresearch: plateau threshold increased from 5 to 15 consecutive discards
1159
+ - Autoresearch: results.tsv now tracks effort and model columns
1160
+
1161
+ ### Fixed
1162
+
1163
+ - Preserve accented characters in `slugify()` function — use locale-aware `[:alnum:]` instead of `[a-z0-9]`
1164
+
1165
+ ## [4.5.3] - 2026-03-24
1166
+
1167
+ ### Fixed
1168
+
1169
+ - Update agent count from 6 to 9 in README, plugin README, and remote-control guides
1170
+ - Update MCP server count from 4 to 5 in plugin README (add govreposcrape)
1171
+ - Update automation hook count from 4 to 5 in README
1172
+ - Update Copilot prompt file and agent counts in README
1173
+ - Merge optimised gov agent prompts (gov-reuse 9.4, gov-code-search 8.8, gov-landscape 8.6)
1174
+
1175
+ ## [4.5.2] - 2026-03-23
1176
+
1177
+ ### Fixed
1178
+
1179
+ - Add govreposcrape MCP server to Gemini extension
1180
+ - Update command count from 64 to 67 across all docs, HTML pages, plugin manifests, and extension configs
1181
+ - Update agent count from 6 to 9 and hook count from 4 to 5 in docs
1182
+
1183
+ ## [4.5.0] - 2026-03-23
1184
+
1185
+ ### Added
1186
+
1187
+ - **govreposcrape MCP server** — Semantic search over 24,500+ UK government repositories (no API key required)
1188
+ - `/arckit.gov-reuse` command and agent — Discover reusable UK government code before building from scratch
1189
+ - `/arckit.gov-code-search` command and agent — Search UK government repositories using natural language queries
1190
+ - `/arckit.gov-landscape` command and agent — Map the UK government code landscape for a domain
1191
+ - Government Code Reuse Check step in `/arckit.research` agent — adds "Reuse Government Code" as 5th build-vs-buy option
1192
+ - Government Code for Data Integration step in `/arckit.datascout` agent — discovers existing API client libraries
1193
+ - Government Implementation Patterns step in AWS, Azure, and GCP research agents — checks for government precedent
1194
+ - Document type codes: GOVR (Government Reuse Assessment), GCSR (Government Code Search Report), GLND (Government Landscape Analysis)
1195
+ - GOVR, GCSR, GLND added to `/arckit.pages` artifact type list
1196
+
1197
+ ## [4.4.0] - 2026-03-21
1198
+
1199
+ ### Added
1200
+
1201
+ - Wardley map mathematical model metrics in commands and autoresearch
1202
+ - Git worktree isolation for autoresearch
1203
+ - Autoresearch guide for self-improving command prompts
1204
+ - Rate limit display in statusline
1205
+
1206
+ ### Fixed
1207
+
1208
+ - Sync guides between arckit-claude and docs directories
1209
+
1210
+ ## [4.3.1] - 2026-03-18
1211
+
1212
+ ### Added
1213
+
1214
+ - Mermaid `wardley-beta` dual output for Wardley map commands — generates both OWM syntax and Mermaid diagram blocks
1215
+ - Mermaid wardley-beta examples added to mapping references
1216
+ - Mermaid viewing guidance added to wardley and value chain guides
1217
+ - Claude Code v2.1.78 agent frontmatter support (`effort`, `maxTurns`, `disallowedTools`) and `StopFailure` hook
1218
+ - Mermaid special character escaping guidance for diagram command
1219
+
1220
+ ### Fixed
1221
+
1222
+ - Missing component declaration for pipeline parent in Mermaid example
1223
+
1224
+ ## [4.3.0] - 2026-03-16
1225
+
1226
+ ### Added
1227
+
1228
+ - `/arckit.wardley.value-chain` command — Decompose user needs into value chains
1229
+ - `/arckit.wardley.doctrine` command — Assess organizational doctrine maturity (4 phases, 40+ principles)
1230
+ - `/arckit.wardley.gameplay` command — Analyze strategic plays from 60+ gameplay patterns with D&D alignment
1231
+ - `/arckit.wardley.climate` command — Assess 32 climatic patterns across 6 categories
1232
+ - Wardley reference files enriched from 3 Wardley Mapping books (doctrine, gameplays, climatic patterns)
1233
+ - 4 new document types: WVCH, WDOC, WGAM, WCLM
1234
+ - 4 new document templates and usage guides
1235
+
1236
+ ### Fixed
1237
+
1238
+ - `wardley.md` hook reference corrected from `python3 .py` to `node .mjs`
1239
+
1240
+ ## [4.2.11] - 2026-03-16
1241
+
1242
+ ### Added
1243
+
1244
+ - Systems thinking foundations in framework command: Ashby's Law of Requisite Variety, Conant-Ashby Good Regulator Theorem, Gall's Law, and Conway's Law integrated into agent guidance, template, and quality checks
1245
+ - Version check SessionStart hook: compares local plugin version against latest GitHub release and notifies users when an update is available
1246
+
1247
+ ## [4.2.10] - 2026-03-15
1248
+
1249
+ ### Added
1250
+
1251
+ - Add GitHub issue forms for bugs, features, and questions (#171)
1252
+
1253
+ ### Fixed
1254
+
1255
+ - Correct 9 dependency matrix discrepancies from audit (#170)
1256
+ - Wrap mermaid.run() in try-catch to prevent page crash on bad diagrams (#172)
1257
+
1258
+ ## [4.2.4] - 2026-03-11
1259
+
1260
+ ### Fixed
1261
+
1262
+ - Moved STORY doc type from Other to Planning category
1263
+
1264
+ ## [4.2.3] - 2026-03-11
1265
+
1266
+ ### Fixed
1267
+
1268
+ - Deduplicated cross-reference edges in dependency graph
1269
+
1270
+ ## [4.2.2] - 2026-03-11
1271
+
1272
+ ### Fixed
1273
+
1274
+ - Dependency map always shows 000-global documents when filtering by project
1275
+
1276
+ ## [4.2.1] - 2026-03-11
1277
+
1278
+ ### Fixed
1279
+
1280
+ - Dependency map grid layout wrapping, null property crashes, and filtered hidden files from manifest
1281
+
1282
+ ## [4.2.0] - 2026-03-11
1283
+
1284
+ ### Added
1285
+
1286
+ - Interactive dependency map visualization in pages dashboard with SVG rendering, category-layered layout, hover/click interactions, project filtering, and orphan detection
1287
+
1288
+ ### Fixed
1289
+
1290
+ - Explicit UTF-8 encoding on all Python file I/O operations to prevent encoding issues on non-English systems
1291
+
1292
+ ## [4.1.1] - 2026-03-11
1293
+
1294
+ ### Added
1295
+
1296
+ - `/arckit.search` command for keyword, type, and requirement ID search across all project artifacts with pre-processing hook
1297
+ - `/arckit.score` command for structured vendor scoring with JSON storage, comparison, sensitivity analysis, and audit trail
1298
+ - `/arckit.impact` command for blast radius analysis and reverse dependency tracing
1299
+ - GitHub Copilot extension (`arckit-copilot/`) — new distribution format with `.prompt.md` files and custom agents
1300
+ - GitHub Copilot tab added to `docs/index.html` and `getting-started.html`
1301
+ - Session learner skill for capturing and replaying session insights
1302
+
1303
+ ## [4.0.2] - 2026-03-08
1304
+
1305
+ ### Added
1306
+
1307
+ - `/arckit.framework` command for transforming architecture artifacts into a structured, reusable framework (agent-delegating)
1308
+ - `/arckit.glossary` command for generating comprehensive project glossary with terms, definitions, and cross-references
1309
+ - `/arckit.maturity-model` command for generating capability maturity model with current-state assessment and improvement roadmap
1310
+ - Missing guides for `dfd`, `health`, and `init` commands
1311
+ - `dfd` command added to DEPENDENCY-MATRIX with row and column
1312
+
1313
+ ### Fixed
1314
+
1315
+ - Framework command referenced wrong template filename (`framework-template.md` → `framework-overview-template.md`)
1316
+ - Stale command counts (53 → 57) across all docs, guides, commands.html, and extension copies
1317
+ - Stale agent counts (5 → 6) in MCP servers and remote control guides
1318
+
1319
+ ## [2.22.6] - 2026-03-05
1320
+
1321
+ ### Changed
1322
+
1323
+ - Add .worktrees/ to gitignore
1324
+
1325
+ ## [2.22.5] - 2026-03-01
1326
+
1327
+ ### Fixed
1328
+
1329
+ - **Template status line showed ambiguous Version label** — renamed `**Version**: [VERSION]` to `**ArcKit Version**: [VERSION]` on the status blockquote line across all 50 templates so AI correctly fills the ArcKit version instead of the document version
1330
+ - **Tech-note and vendor-profile templates missing status line** — added the `> **Template Status**: Live | **ArcKit Version**: [VERSION] | **Command**: ...` blockquote to align with the other 48 templates
1331
+ - **Health command always writes docs/health.json** — ensures dashboard integration works even when docs directory already exists
1332
+
1333
+ ## [2.22.4] - 2026-03-01
1334
+
1335
+ ### Fixed
1336
+
1337
+ - **Traceability hook missed FR and NFR requirements** — heading regex only matched h3 (`###`) but the requirements template uses h4 (`####`) for FR, NFR, INT, and DR sections (plugin fix, see plugin CHANGELOG for details)
1338
+
1339
+ ---
1340
+
1341
+ ## [2.22.0] - 2026-03-01
1342
+
1343
+ ### Added
1344
+
1345
+ - **Centralized doc type config** — `arckit-claude/config/doc-types.mjs` is the single source of truth for all 49 document type codes, replacing duplicated data across 5+ files
1346
+ - **Research subdirectory routing** — research types (RSCH, AWRS, AZRS, GCRS, DSCT) are now multi-instance and auto-route to `research/` with sequence numbers
1347
+ - **GAPS and VEND doc type codes** — Gap Analysis (Governance) and Vendor Evaluation (Procurement)
1348
+
1349
+ ### Fixed
1350
+
1351
+ - **Command filename mismatches** — HLD→HLDR, DLD→DLDR, `data-mesh-contracts/`→`data-contracts/`
1352
+ - **Inconsistent categories** — DSCT (Discovery), PLAT (Architecture), DFD (Architecture) standardized across all hooks
1353
+
1354
+ ### Changed
1355
+
1356
+ - **Research agents use inline filenames** — removed `generate-document-id.py` calls from 5 agents; PreToolUse hook handles filename correction
1357
+ - **Multi-instance types updated** — `generate-document-id.sh` and `.py` (both copies) now list all 10 multi-instance types
1358
+
1359
+ ---
1360
+
1361
+ ## [2.21.0] - 2026-03-01
1362
+
1363
+ ### Added
1364
+
1365
+ - **Traceability pre-processor hook** — automatically extracts requirements from project artifacts and computes coverage metrics before the traceability command runs
1366
+
1367
+ ---
1368
+
1369
+ ## [2.20.5] - 2026-02-28
1370
+
1371
+ ### Fixed
1372
+
1373
+ - **Hooks false-positive on unrelated commands** — smart guards prevent pages/health hooks firing when other commands mention them in body text
1374
+
1375
+ ---
1376
+
1377
+ ## [2.20.4] - 2026-02-28
1378
+
1379
+ ### Fixed
1380
+
1381
+ - **Pages command ignores hook stats** — removed all tools from allowed-tools and strengthened hook output to prevent AI from reading manifest
1382
+
1383
+ ---
1384
+
1385
+ ## [2.20.3] - 2026-02-28
1386
+
1387
+ ### Fixed
1388
+
1389
+ - **Hooks fail via Skill tool** — removed redundant regex guards from pages and health hooks
1390
+
1391
+ ---
1392
+
1393
+ ## [2.20.2] - 2026-02-28
1394
+
1395
+ ### Fixed
1396
+
1397
+ - **ANAL files missing from pages manifest** — fixed category mismatch and prevented AI from overwriting hook-generated manifest
1398
+
1399
+ ---
1400
+
1401
+ ## [2.20.1] - 2026-02-28
1402
+
1403
+ ### Fixed
1404
+
1405
+ - **Analysis report type code** — standardized `ANLZ` → `ANAL` across all commands and guides
1406
+
1407
+ ---
1408
+
1409
+ ## [2.20.0] - 2026-02-28
1410
+
1411
+ ### Added
1412
+
1413
+ - **Health pre-processor hook** — `/arckit:health` fully handled by hook (20-50+ Read tool calls → zero)
1414
+
1415
+ ---
1416
+
1417
+ ## [2.19.0] - 2026-02-28
1418
+
1419
+ ### Added
1420
+
1421
+ - **Pages pre-processor hook** — `/arckit:pages` fully handled by hook (~310 tool calls → zero)
1422
+
1423
+ ---
1424
+
1425
+ ## [2.18.0] - 2026-02-28
1426
+
1427
+ ### Added
1428
+
1429
+ - **Guide sync hook** — `/arckit:pages` guide sync via native fs hook instead of Read+Write tool calls
1430
+
1431
+ ---
1432
+
1433
+ ## [2.17.0] - 2026-02-28
1434
+
1435
+ ### Added
1436
+
1437
+ - **Tiered deviation classification** for conformance assessment — GREEN/YELLOW/RED tiers overlay on PASS/FAIL, classifying FAIL findings by actionability (#95)
1438
+ - **Conversational gathering rules** (max 2 rounds) on 15 commands (#94)
1439
+ - **STANDALONE/SUPERCHARGED degradation** for cloud research commands (#93)
1440
+
1441
+ ---
1442
+
1443
+ ## [2.16.0] - 2026-02-28
1444
+
1445
+ ### Added
1446
+
1447
+ - **Quality checklist** — shared `references/quality-checklist.md` with 10 common checks and 47 per-type checks for artifact verification before write (#92)
1448
+ - **`argument-hint` frontmatter** on all 53 plugin commands
1449
+
1450
+ ---
1451
+
1452
+ ## [2.15.1] - 2026-02-28
1453
+
1454
+ ### Fixed
1455
+
1456
+ - Markdown lint CI now recurses into subdirectories correctly
1457
+ - Suppress MD038 false positive for intentional space-in-code-span in DEPENDENCY-MATRIX.md
1458
+
1459
+ ---
1460
+
1461
+ ## [2.15.0] - 2026-02-28
1462
+
1463
+ ### Added
1464
+
1465
+ - **Markdown linting CI** — `.markdownlint-cli2.jsonc` config + `.github/workflows/lint-markdown.yml` enforcing consistent markdown formatting; auto-fix of 39K+ violations across 571 files
1466
+
1467
+ ### Fixed
1468
+
1469
+ - Markdown formatting across all templates, commands, guides, agents, and documentation files
1470
+
1471
+ ---
1472
+
1473
+ ## [2.14.0] - 2026-02-28
1474
+
1475
+ ### Added
1476
+
1477
+ - **Handoffs frontmatter** — 16 plugin commands declare `handoffs:` for machine-readable workflow navigation; converter renders as `## Suggested Next Steps` in Codex/OpenCode/Gemini output
1478
+ - **Release automation** — `generate-release-notes.sh` + GitHub Actions workflow for automatic releases on tag push
1479
+ - **Version automation** — `bump-version.sh` updates all version files in one command
1480
+
1481
+ ### Changed
1482
+
1483
+ - **Config-driven converter** — `scripts/converter.py` refactored to use `AGENT_CONFIG` dictionary and PyYAML for frontmatter parsing
1484
+
1485
+ ---
1486
+
1487
+ ## [2.13.2] - 2026-02-28
1488
+
1489
+ ### Fixed
1490
+
1491
+ - **Node.js hooks** — rewrote all 7 plugin hooks from Python to Node.js (.mjs) for Windows compatibility (#86)
1492
+ - Version bump across all distribution formats
1493
+
1494
+ ---
1495
+
1496
+ ## [2.13.1] - 2026-02-27
1497
+
1498
+ ### Fixed
1499
+
1500
+ - **Cross-platform commands & agents** — removed bash-only patterns from 7 commands and 5 agents, replacing with Glob/Read/Write tool instructions and Python scripts for full Windows compatibility
1501
+ - Regenerated all Codex/OpenCode/Gemini formats via converter
1502
+ - Version bump across all distribution formats
1503
+
1504
+ ---
1505
+
1506
+ ## [2.13.0] - 2026-02-27
1507
+
1508
+ ### Added
1509
+
1510
+ - **NCSC VMS, Cyber Action Plan & Cyber Profession** — `/arckit:secure` updated with VMS enrollment (CAF C2, Section 6.1), Cyber Action Plan Alignment (Section 9.4), and Government Cyber Security Profession (Section 11)
1511
+ - **Structured vulnerability management** — `/arckit:operationalize` Section 11 expanded with vulnerability scanning (VMS integration), remediation SLAs, and patch management subsections
1512
+ - **Critical Vulnerability Remediation runbook** (6.7) — new runbook in `/arckit:operationalize` for critical CVEs and VMS alerts
1513
+
1514
+ ### Changed
1515
+
1516
+ - GovS 007 mapping updated for principles 5 and 8 in `/arckit:secure`
1517
+ - Handover checklist and NCSC guidance include VMS items in `/arckit:operationalize`
1518
+ - Version bump across all distribution formats
1519
+
1520
+ ---
1521
+
1522
+ ## [2.12.3] - 2026-02-26
1523
+
1524
+ ### Changed
1525
+
1526
+ - **Pages header: Repository icon** — replaced text link with GitHub icon next to theme toggle
1527
+ - **Pages header: version badge** — ArcKit version displayed in header menu
1528
+ - Version bump across all distribution formats
1529
+
1530
+ ---
1531
+
1532
+ ## [2.12.2] - 2026-02-26
1533
+
1534
+ ### Fixed
1535
+
1536
+ - **Pages template: GitHub Pages fallback** (#80) — tries relative paths first, falls back to `raw.githubusercontent.com` for GitHub Pages
1537
+ - Version bump across all distribution formats
1538
+
1539
+ ---
1540
+
1541
+ ## [2.12.1] - 2026-02-26
1542
+
1543
+ ### Changed
1544
+
1545
+ - **Pages template: relative paths instead of GitHub raw URLs** (#79) — site now works on any static hosting provider
1546
+ - **Pages command: hosting-agnostic language** (#79) — updated from "GitHub Pages" to generic "documentation site"
1547
+ - **Pages error handling: safe DOM methods** (#79) — simplified to generic "Document not found" message
1548
+ - Version bump across all distribution formats
1549
+
1550
+ ---
1551
+
1552
+ ## [2.12.0] - 2026-02-26
1553
+
1554
+ ### Added
1555
+
1556
+ - **STALE-EXT detection rule for `/arckit:health`** (#77) — flags external files newer than project artifacts with command recommendations
1557
+ - **External file detection hooks** (#77) — SessionStart hook auto-detects new external files; context hook flags them as **NEW**
1558
+ - **PlantUML Syntax Reference skill** (`plantuml-syntax`) (#78) — 10 reference files with C4-PlantUML layout conflict rules
1559
+ - **Format-specific syntax loading in `/arckit:diagram`** (#78) — loads PlantUML or Mermaid references based on selected format
1560
+ - **Mermaid ERD syntax rules** (#78) — prevents invalid `PK_FK` key type
1561
+
1562
+ ### Changed
1563
+
1564
+ - Version bump across all distribution formats
1565
+
1566
+ ---
1567
+
1568
+ ## [2.11.0] - 2026-02-26
1569
+
1570
+ ### Added
1571
+
1572
+ - **Mermaid Syntax Reference skill** (`mermaid-syntax`) — 30 official Mermaid syntax reference files covering all 23 diagram types plus configuration and theming
1573
+ - `/arckit.start` onboarding command with project detection and workflow routing
1574
+ - 10 Mermaid-generating commands now read type-specific syntax references before generating Mermaid code
1575
+
1576
+ ### Changed
1577
+
1578
+ - Getting Started guide now covers both `/arckit.start` and `/arckit.init` in a single combined guide
1579
+ - GitHub Pages Getting Started section updated with `/arckit.start` and `/arckit.init` steps
1580
+ - `/arckit.pages` command — added 5 missing guides to category and status tables
1581
+ - Moved `c4-diagram-reference.md` to `skills/mermaid-syntax/references/c4-layout-science.md`
1582
+ - Version bump across all distribution formats
1583
+
1584
+ ---
1585
+
1586
+ ## [2.10.0] - 2026-02-25
1587
+
1588
+ ### Added
1589
+
1590
+ - **DDaT Role Guides** (#75) — 18 role-based guides mapping ArcKit commands to UK Government DDaT Capability Framework roles (Architecture, Chief Digital and Data, Product and Delivery, Data, IT Operations, Software Development)
1591
+ - "Roles" nav link in GitHub Pages template with dedicated roles index page
1592
+ - `roleGuides` array in manifest.json for role guide discovery
1593
+
1594
+ ### Changed
1595
+
1596
+ - Version bump across all distribution formats
1597
+
1598
+ ---
1599
+
1600
+ ## [2.9.0] - 2026-02-25
1601
+
1602
+ ### Added
1603
+
1604
+ - `/arckit.conformance` command for architecture conformance assessment — validates ADR decisions against designs, checks architecture drift, tracks technical debt, and enforces custom constraint rules (#55)
1605
+
1606
+ ### Changed
1607
+
1608
+ - Version bump across all distribution formats
1609
+
1610
+ ---
1611
+
1612
+ ## [2.8.8] - 2026-02-25
1613
+
1614
+ ### Fixed
1615
+
1616
+ - **Markdown escaping for `<` and `>` in generated documents** (#67) — added instruction to all 49 document-generating commands and 5 agents to space-separate less-than/greater-than comparisons (e.g., `< 3 seconds` instead of `<3 seconds`) so markdown renderers don't misinterpret them as HTML tags or emoji
1617
+
1618
+ ### Changed
1619
+
1620
+ - Version bump across all distribution formats
1621
+
1622
+ ---
1623
+
1624
+ ## [2.8.7] - 2026-02-25
1625
+
1626
+ ### Added
1627
+
1628
+ - **PlantUML rendering in Pages** — pages template renders PlantUML code blocks as SVG diagrams via PlantUML server, with interactive pan/zoom, dark mode, and fullscreen support
1629
+
1630
+ ### Changed
1631
+
1632
+ - Version bump across all distribution formats
1633
+
1634
+ ---
1635
+
1636
+ ## [2.8.6] - 2026-02-25
1637
+
1638
+ ### Fixed
1639
+
1640
+ - **Mermaid label compatibility for presentations** (#73, #70) — ASCII-only, no-hyphens, no-special-characters rules for Mermaid labels
1641
+ - **Diagram command UX** (#71, #65) — ask both questions in single prompt, clarified skip rules
1642
+
1643
+ ### Added
1644
+
1645
+ - **Mermaid Compatibility section** in presentation guide
1646
+ - **Plugin setup guide and Productivity Guide** synced to OpenCode extension
1647
+
1648
+ ### Changed
1649
+
1650
+ - Version bump across all distribution formats (CLI, plugin, Gemini extension, OpenCode extension, marketplace)
1651
+
1652
+ ---
1653
+
1654
+ ## [2.8.5] - 2026-02-24
1655
+
1656
+ ### Added
1657
+
1658
+ - **PlantUML C4 output format for `/arckit.diagram`** (#65) — C4 diagram types now offer PlantUML C4 as an alternative to Mermaid
1659
+ - **Platform support documentation** (#71) — README and docs note Linux as primary platform, devcontainer/WSL2 for Windows
1660
+ - **Pages template support for `/arckit:customize`** (#72)
1661
+
1662
+ ### Changed
1663
+
1664
+ - Version bump across all distribution formats (CLI, plugin, Gemini extension, OpenCode extension, marketplace)
1665
+
1666
+ ---
1667
+
1668
+ ## [2.8.4] - 2026-02-24
1669
+
1670
+ ### Added
1671
+
1672
+ - **Interactive zoom/pan for Mermaid diagrams** — scroll to zoom, drag to pan, double-click to zoom in, toolbar controls (zoom-in, zoom-out, reset, fullscreen), keyboard shortcuts (`+`/`-`/`0`/`f`/`Escape`), and touch pinch-to-zoom via svg-pan-zoom library
1673
+ - **Diagram fullscreen mode** — expand any diagram to a full-screen overlay with `f` key or toolbar button
1674
+ - **Accessible diagram controls** — focusable viewports with ARIA labels, keyboard navigation, always-visible controls on mobile/touch devices
1675
+
1676
+ ### Changed
1677
+
1678
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1679
+
1680
+ ---
1681
+
1682
+ ## [2.8.3] - 2026-02-20
1683
+
1684
+ ### Added
1685
+
1686
+ - **Dark mode for pages template** — CSS-variable-driven dark theme with sun/moon toggle in header, system preference detection (`prefers-color-scheme`), and localStorage persistence
1687
+ - **Auto-sync guides from plugin** — `/arckit.pages` now copies all guides from the plugin to `docs/guides/` before scanning, ensuring repos always have the latest guides
1688
+ - **4 missing guides synced to plugin** — `artifact-health`, `c4-layout-science`, `knowledge-compounding`, `security-hooks`
1689
+
1690
+ ### Changed
1691
+
1692
+ - Replaced ~35 hardcoded colour values in pages template with semantic CSS variables
1693
+ - Mermaid diagrams switch between default/dark theme based on mode
1694
+ - SVG donut chart text colour reads from CSS variable for dark mode compatibility
1695
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1696
+
1697
+ ---
1698
+
1699
+ ## [2.8.2] - 2026-02-20
1700
+
1701
+ ### Added
1702
+
1703
+ - **Health dashboard panel in `/arckit.pages`** — pages template loads `docs/health.json` (when present) and renders an Artifact Health panel with severity bars, findings-by-type breakdown, and a per-project Health column with traffic-light colours
1704
+ - **`JSON=true` flag for `/arckit.health`** — writes machine-readable `docs/health.json` for dashboard integration alongside the console report
1705
+
1706
+ ### Fixed
1707
+
1708
+ - **All 64 guides now listed in pages command** — added 19 missing guides to category/status tables and corrected status discrepancies (sow/evaluate/customize → live, pages → alpha per README)
1709
+
1710
+ ### Changed
1711
+
1712
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1713
+
1714
+ ---
1715
+
1716
+ ## [2.8.1] - 2026-02-20
1717
+
1718
+ ### Added
1719
+
1720
+ - **Vendor profiles & tech notes in `/arckit.pages`** — pages command and HTML template now discover, index, and display vendor profiles (`vendors/*-profile.md`) and tech notes (`tech-notes/*.md`) with search, dashboard metrics, Knowledge column, and sidebar navigation (#62)
1721
+
1722
+ ### Changed
1723
+
1724
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1725
+
1726
+ ---
1727
+
1728
+ ## [2.8.0] - 2026-02-20
1729
+
1730
+ ### Added
1731
+
1732
+ - **Knowledge compounding from research** — `/arckit.research` now spawns standalone vendor profiles (`vendors/`) and tech notes (`tech-notes/`) from research findings; use `--no-spawn` to skip (#59, thanks @DavidROliverBA)
1733
+ - **`/arckit.health` command** (51st command) — scans projects for stale research, forgotten ADRs, unresolved review conditions, orphaned artifacts, missing traceability, and version drift (#60, thanks @DavidROliverBA)
1734
+ - **Security hooks** — three new hooks for secret and sensitive file protection: prompt secret detection, file content scanning, and sensitive file path blocking (#56, thanks @DavidROliverBA)
1735
+ - **C4 layout science for `/arckit.diagram`** — research-backed layout reference template (Sugiyama algorithm, tier-based ordering, edge crossing targets) and 6-criterion diagram quality gate (#57, thanks @DavidROliverBA)
1736
+
1737
+ ### Changed
1738
+
1739
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1740
+
1741
+ ---
1742
+
1743
+ ## [2.7.1] - 2026-02-20
1744
+
1745
+ ### Added
1746
+
1747
+ - **Wardley Map validation Stop hook** — per-command Stop hook on `/arckit.wardley` validates generated maps for stage-evolution alignment, coordinate ranges, and OWM syntax consistency against Component Inventory tables before finalizing
1748
+
1749
+ ### Changed
1750
+
1751
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1752
+
1753
+ ---
1754
+
1755
+ ## [2.7.0] - 2026-02-19
1756
+
1757
+ ### Added
1758
+
1759
+ - **UK Government Cyber Security Standard integration** — `/arckit.secure` template now includes GovAssure Status, Secure by Design Confidence Rating, and CSS Exception Register sections (#13)
1760
+ - **GovS 007: Security alignment** — `/arckit.secure` template now includes GovS 007 Alignment Summary with principle-to-CAF mapping and named security roles (SSRO, DSO, SIRO) (#14)
1761
+ - **National Data Strategy reference guide** — new `docs/guides/national-data-strategy.md` mapping NDS 5 missions and 4 pillars to ArcKit commands (#15)
1762
+ - **Government Data Quality Framework reference guide** — new `docs/guides/data-quality-framework.md` mapping DQF 5 principles, 6 dimensions, and maturity model to ArcKit artefacts (#16)
1763
+ - **UK Government Codes of Practice reference guide** — new `docs/guides/codes-of-practice.md` mapping Rainbow of Books (Magenta, AQuA, Rose, Commercial Playbooks) to ArcKit commands (#17)
1764
+ - **New `/arckit.presentation` command** — generates MARP-format slide decks from existing project artifacts for governance boards, stakeholder briefings, and gate reviews; supports 4 focus modes (Executive, Technical, Stakeholder, Procurement) with configurable slide counts (#32)
1765
+ - **Data Commons MCP integration for `/arckit.datascout`** — datascout agent now uses Data Commons MCP tools to discover and validate UK statistical data before web research (#40)
1766
+ - **Pinecone MCP integration for `/arckit.wardley`** — wardley command now searches the Wardley Mapping book corpus via Pinecone for strategic context and case studies (#43)
1767
+ - New templates, guides, and reference materials for all above features
1768
+
1769
+ ### Changed
1770
+
1771
+ - Converter output synced across all distribution formats (Codex, OpenCode, Gemini)
1772
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1773
+
1774
+ ---
1775
+
1776
+ ## [2.6.0] - 2026-02-17
1777
+
1778
+ ### Added
1779
+
1780
+ - **SessionStart hook for version injection** — new `hooks/arckit-session.sh` fires once at session start, injecting the ArcKit plugin version into Claude's context and exporting `ARCKIT_VERSION` as an environment variable; also detects whether a `projects/` directory exists
1781
+ - **OpenCode CLI support** — 4th distribution format via `arckit init --ai opencode`; adds `arckit-opencode/` extension directory, `.opencode/commands/` for CLI usage, `scripts/converter.py` generates OpenCode markdown alongside Codex and Gemini formats, 48 commands + 5 agents + MCP servers (AWS Knowledge, Microsoft Learn, Google Developer Knowledge)
1782
+
1783
+ ### Changed
1784
+
1785
+ - **Removed per-command VERSION file reads from 46 commands** — commands no longer instruct Claude to read `${CLAUDE_PLUGIN_ROOT}/VERSION`; the version is now provided via `{ARCKIT_VERSION}` from the SessionStart hook context, eliminating a redundant Read tool call on every command invocation
1786
+ - Version bump across all distribution formats (CLI, plugin, extension, marketplace)
1787
+
1788
+ ---
1789
+
1790
+ ## [2.5.1] - 2026-02-17
1791
+
1792
+ ### Changed
1793
+
1794
+ - **Removed `generate-document-id.sh` calls from 29 commands** — replaced bash script invocations with inline document ID format strings (e.g., `ARC-{PROJECT_ID}-REQ-v{VERSION}`); the PreToolUse hook now auto-corrects ARC filenames, making script calls redundant
1795
+
1796
+ ---
1797
+
1798
+ ## [2.5.0] - 2026-02-17
1799
+
1800
+ ### Added
1801
+
1802
+ - **UserPromptSubmit hook for project context** — new `arckit-context.sh` hook automatically detects all projects, artifacts, external documents, and global policies before any `/arckit:` command runs, injecting structured context via `systemMessage`
1803
+
1804
+ ### Changed
1805
+
1806
+ - **Refactored 39 commands to use hook-provided context** — removed boilerplate directory scanning, `ARC-*-TYPE-*.md` glob patterns, verbose external docs blocks, and `list-projects.sh` calls; replaced with compact hook-aware references (net -1,071 lines, 66% boilerplate reduction)
1807
+
1808
+ ---
1809
+
1810
+ ## [2.4.5] - 2026-02-15
1811
+
1812
+ ### Added
1813
+
1814
+ - **New `/arckit.dfd` command** — Data Flow Diagram (DFD) generation with multi-instance support, document control, and DFD-specific templates across all distribution formats (plugin, Codex, Gemini extension)
1815
+ - **DFD multi-instance document type** — `DFD` added to `generate-document-id.sh` for sequential numbering (ARC-001-DFD-001, ARC-001-DFD-002, etc.)
1816
+
1817
+ ### Changed
1818
+
1819
+ - **Explicit VERSION file path in all commands and agents** — all 49 commands and 5 agents now reference `${CLAUDE_PLUGIN_ROOT}/VERSION` instead of bare `VERSION`, ensuring the ArcKit version is always read from the plugin's authoritative file regardless of project state
1820
+
1821
+ ---
1822
+
1823
+ ## [2.4.4] - 2026-02-12
1824
+
1825
+ ### Fixed
1826
+
1827
+ - **Windows cp1252 encoding fix** — added explicit `encoding='utf-8'` to all file I/O operations in `arckit init` to prevent `UnicodeEncodeError` on Windows when writing files containing Unicode box-drawing characters (fixes #49)
1828
+
1829
+ ---
1830
+
1831
+ ## [2.4.3] - 2026-02-11
1832
+
1833
+ ### Added
1834
+
1835
+ - **Data Commons MCP server for Gemini extension** — added `datacommons-mcp` to the Gemini extension MCP configuration
1836
+
1837
+ ### Changed
1838
+
1839
+ - Version bump to 2.4.3 across all distribution formats
1840
+
1841
+ ---
1842
+
1843
+ ## [2.4.1] - 2026-02-10
1844
+
1845
+ ### Added
1846
+
1847
+ - **Gemini CLI native extension** (`arckit-gemini/`) — install via `gemini extensions install https://github.com/tractorjuice/arckit-gemini` for zero-config experience with automatic updates and bundled MCP servers
1848
+ - Published as separate repo [`tractorjuice/arckit-gemini`](https://github.com/tractorjuice/arckit-gemini), generated by `scripts/converter.py`
1849
+ - Extension manifest (`gemini-extension.json`) with MCP servers (AWS Knowledge, Microsoft Learn via mcp-remote) and optional Google API Key setting
1850
+ - Context file (`GEMINI.md`) with extension paths, document control standard, and project structure reference
1851
+ - All 48 commands with paths rewritten to `~/.gemini/extensions/arckit/`
1852
+
1853
+ ### Fixed
1854
+
1855
+ - **Gemini extension workspace sandbox fix**: Extension commands now instruct the model to use `run_shell_command` (e.g., `cat`, `bash`) for accessing extension files at `~/.gemini/extensions/arckit/`, since Gemini CLI's `read_file` tool is restricted to the project workspace. Also rewrites `Read` instructions to `cat` commands in extension TOML output.
1856
+ - **CLI/Codex path resolution bug**: `${CLAUDE_PLUGIN_ROOT}` references in generated Codex Markdown files are now rewritten to `.arckit` (project-local paths). Previously these paths were never resolved, breaking template and script references for Codex users.
1857
+
1858
+ ### Changed
1859
+
1860
+ - **CLI is now Codex-only**: Removed Gemini CLI from the CLI package. Gemini users should use the native extension instead (`gemini extensions install https://github.com/tractorjuice/arckit-gemini`). Running `arckit init --ai gemini` now prints a redirect message pointing to the extension.
1861
+ - Deleted `.gemini/` directory from the repo (49 files) — project-local Gemini commands are no longer distributed via the CLI
1862
+ - `scripts/converter.py` now generates 2 output formats: Codex Markdown (`.codex/`) and Gemini extension TOML (`arckit-gemini/`), with path rewriting for each target
1863
+ - Removed `.gemini` from `pyproject.toml` shared-data
1864
+ - Updated all documentation (README, CLAUDE.md, docs/index.html, upgrading guides) to reflect Codex-only CLI
1865
+
1866
+ ---
1867
+
1868
+ ## [2.3.1] - 2026-02-09
1869
+
1870
+ ### Fixed
1871
+
1872
+ - Pass directory argument to `--next-num` in multi-instance commands (wardley, diagram, data-mesh-contract) to prevent unbound variable crash
1873
+ - Added guard in `generate-document-id.sh` to give a clear error message when directory is missing
1874
+ - Replace Mermaid `gitGraph` with `flowchart` in devops template — gitGraph has limited renderer support and fails with "No diagram type detected" errors in GitHub/VS Code
1875
+ - Added diagram guidelines to devops command to prevent gitGraph usage in generated documents
1876
+
1877
+ ---
1878
+
1879
+ ## [2.2.1] - 2026-02-09
1880
+
1881
+ ### Fixed
1882
+
1883
+ - Added explicit `list-projects.sh --json` step to 9 commands (stakeholders, requirements, adr, sow, roadmap, strategy, dpia, platform-design, data-mesh-contract) to prevent wrong script paths in plugin-based repos
1884
+
1885
+ ---
1886
+
1887
+ ## [2.2.0] - 2026-02-09
1888
+
1889
+ ### Added
1890
+
1891
+ - **Wardley Mapping skill** in plugin (`skills/wardley-mapping/`) for conversational Wardley Mapping with interactive AskUserQuestion guidance
1892
+ - 5 shared reference files: evolution stages, doctrine, gameplay patterns, climatic patterns, and mapping examples
1893
+ - Enhanced `/arckit:wardley` command reads shared reference files for deeper doctrine, gameplay, and climatic pattern analysis
1894
+
1895
+ ## [2.1.9] - 2026-02-08
1896
+
1897
+ ### Added
1898
+
1899
+ - Interactive configuration using AskUserQuestion for 8 key commands (backlog, diagram, plan, adr, dpia, sow, sobc, roadmap)
1900
+ - Commands now prompt users for key decision points before generating documents
1901
+ - Questions are automatically skipped when users specify preferences via command arguments
1902
+
1903
+ ### Changed
1904
+
1905
+ - Unified CLI and plugin version numbers (both now 2.1.9)
1906
+
1907
+ ## [2.0.0] - 2026-02-07
1908
+
1909
+ ### Added
1910
+
1911
+ - **New Command: `/arckit.customize`**: Copy templates for customization (46th ArcKit command)
1912
+ - Copy individual templates: `/arckit.customize requirements`
1913
+ - Copy all templates: `/arckit.customize all`
1914
+ - List available templates: `/arckit.customize list`
1915
+ - Default templates in `.arckit/templates/` (refreshed by `arckit init`)
1916
+ - User customizations in `.arckit/templates-custom/` (preserved across updates)
1917
+ - Commands automatically check for custom templates first, falling back to defaults
1918
+ - Common use cases: organization-specific document control, compliance sections, approval workflows
1919
+ - **Template Customization Support**: All 35 document-generating commands now support template overrides
1920
+ - Two-tier template system: defaults + user customizations
1921
+ - Added "Tip" note to each command pointing to `/arckit.customize`
1922
+ - **Init Script Improvements**: `arckit init` now creates `.arckit/templates-custom/` directory with README explaining customization workflow
1923
+ - **New Command: `/arckit.strategy`**: Synthesise strategic artifacts into executive-level Architecture Strategy document (45th ArcKit command)
1924
+ - Reads and synthesises: principles (M), stakeholders (M), wardley (R), roadmap (R), sobc (R), risk (O)
1925
+ - Creates single coherent strategic narrative for executives
1926
+ - Includes strategic vision, drivers, principles summary, current/target state, themes, investment, risks, KPIs
1927
+ - Unique among ArcKit commands: requires TWO mandatory inputs (principles AND stakeholders)
1928
+ - Template: `.arckit/templates/architecture-strategy-template.md`
1929
+ - Guide: `docs/guides/strategy.md`
1930
+ - **New Command: `/arckit.trello`**: Export product backlog to Trello boards (44th ArcKit command)
1931
+ - Reads JSON output from `/arckit.backlog FORMAT=json`
1932
+ - Creates Trello board with sprint-based lists (Product Backlog + per-sprint + In Progress + Done)
1933
+ - Creates priority labels (Must Have=red, Should Have=orange, Could Have=yellow)
1934
+ - Creates type labels (Epic=purple, Story=blue, Task=green)
1935
+ - Creates cards with GDS user story format descriptions, requirements traceability
1936
+ - Adds acceptance criteria as checklists on each card
1937
+ - Rate-limit-aware (100 req/10s Trello limit)
1938
+ - Requires `TRELLO_API_KEY` and `TRELLO_TOKEN` environment variables
1939
+ - **New Guide**: `docs/guides/trello.md` with prerequisites, credential setup, board structure, and troubleshooting
1940
+ - **Multi-AI Support**: Trello command available for Gemini CLI (`.gemini/commands/arckit/trello.toml`) and Codex CLI (`.codex/prompts/arckit/trello.md`)
1941
+
1942
+ - **Converter Codex Generation**: `scripts/converter.py` now generates both Gemini TOML and Codex Markdown from Claude commands
1943
+ - Added `generate_codex()` function alongside existing Gemini generation
1944
+ - Agent-delegating commands (research, datascout, aws-research, azure-research) have full agent prompts inlined for both formats
1945
+ - Codex prompts use YAML frontmatter with `description` field and keep `$ARGUMENTS` syntax
1946
+ - Single `python scripts/converter.py` run produces 92 files (46 Gemini + 46 Codex)
1947
+
1948
+ ### Changed
1949
+
1950
+ - **Claude Code Plugin Migration**: Claude Code distribution migrated from CLI to standalone plugin (`arckit-claude/`). Claude Code users should install via `/plugin marketplace add tractorjuice/arc-kit` instead of `arckit init --ai claude`
1951
+ - **CLI `--ai claude` Redirect**: CLI `--ai claude` option now shows redirect message to plugin marketplace installation
1952
+ - **Plugin MCP Hook Removed**: Removed redundant SessionStart hook that checked for already-bundled MCP servers (AWS Knowledge + Microsoft Learn)
1953
+ - **Test Repo Migration**: All 22 test repos migrated from synced command/agent/template files to plugin marketplace
1954
+ - **Codex Prompt Sync**: All 46 Codex prompts regenerated from Claude source of truth
1955
+ - 5 previously missing commands added: `aws-research`, `customize`, `datascout`, `strategy`, `trello`
1956
+ - All 41 existing prompts updated with latest content (external docs scanning, doc control blocks, doc type codes)
1957
+ - Removed `tags` field from YAML frontmatter (unused by Codex CLI)
1958
+ - **Gemini TOML Sync**: All 46 Gemini TOMLs regenerated with latest Claude command content
1959
+ - **Template References**: 8 commands now explicitly reference their templates with user override support:
1960
+ - `/arckit.analyze` → `analysis-report-template.md`
1961
+ - `/arckit.dos` → `dos-requirements-template.md`
1962
+ - `/arckit.evaluate` → now references both `evaluation-criteria-template.md` and `vendor-scoring-template.md`
1963
+ - `/arckit.jsp-936` → `jsp-936-template.md`
1964
+ - `/arckit.mod-secure` → `mod-secure-by-design-template.md`
1965
+ - `/arckit.plan` → `project-plan-template.md`
1966
+ - `/arckit.principles-compliance` → `principles-compliance-assessment-template.md`
1967
+ - `/arckit.service-assessment` → `service-assessment-prep-template.md`
1968
+ - **Document Control Standardization**: 17 commands now include the standard "Auto-Populate Document Control Fields" block with Generate Document ID, Populate Required Fields, Revision History, and Generation Metadata Footer:
1969
+ - `/arckit.ai-playbook`, `/arckit.analyze`, `/arckit.atrs`, `/arckit.backlog`
1970
+ - `/arckit.data-mesh-contract`, `/arckit.diagram`, `/arckit.dld-review`
1971
+ - `/arckit.dos`, `/arckit.evaluate`, `/arckit.gcloud-clarify`, `/arckit.gcloud-search`
1972
+ - `/arckit.hld-review`, `/arckit.mod-secure`, `/arckit.plan`
1973
+ - `/arckit.roadmap`, `/arckit.strategy`, `/arckit.wardley`
1974
+ - **Document Type Code Standardization**: Fixed 5 mismatches between commands and templates:
1975
+ - `backlog`: BLOG → BKLG (template aligned to command)
1976
+ - `dld-review`: DLD → DLDR (template aligned to command)
1977
+ - `hld-review`: HLD → HLDR (template aligned to command)
1978
+ - `mod-secure`: SECD → SECD-MOD (template aligned to command)
1979
+ - `roadmap`: ROADMAP → ROAD (template aligned to command)
1980
+ - **Document Type Name Fixes**: 8 commands had incorrect or copy-pasted DOCUMENT_TYPE_NAME values:
1981
+ - `tcop`, `sow`, `traceability`, `secure`: Had "Business and Technical Requirements" (copy-paste from requirements)
1982
+ - `ai-playbook`, `dos`, `gcloud-search`, `roadmap`: Mismatched between command and template
1983
+ - **Hardcoded Version Fixes**: `roadmap-template.md` and `architecture-strategy-template.md` had hardcoded `v1.0` instead of `v[VERSION]`
1984
+ - **Duplicate Footer Removal**: `sobc.md` had both standardized doc control block AND old "Populate Metadata Footer" block with wrong command reference
1985
+ - **Pages Command**: Updated doc type codes (BLOG→BKLG, ROADMAP→ROAD, HLD→HLDR, DLD→DLDR), added STRAT, AWRS, AZRS, DSCT types
1986
+ - **Cross-Codebase Consistency**: Updated ~85 files across commands, templates, guides, migration scripts, README, docs/index.html, COMMANDS.md, Codex prompts, and Gemini TOMLs to use correct doc type codes
1987
+ - **docs/manifest.json**: Added 10 missing templates to manifest (now 45 total)
1988
+ - **DEPENDENCY-MATRIX.md**: Added strategy row/column to Tier 3.5 Strategic Planning, added trello row/column to Tier 7.5 Backlog Export
1989
+ - Updated command count to 46 (was 45)
1990
+
1991
+ ### Removed
1992
+
1993
+ - **Claude CLI Directories**: `.claude/commands/` and `.claude/agents/` directories removed from CLI distribution (now exclusively in `arckit-claude/`)
1994
+ - **`--ai claude` CLI Option**: Removed as a valid init target (redirects to plugin installation instructions)
1995
+ - **Orphan Template**: Removed `uk-gov-tcop-template.md` (duplicate of `tcop-review-template.md`)
1996
+ - **Orphaned Codex Subdirectory**: Removed 12 files from `.codex/prompts/arckit/` (obsolete naming convention; all prompts now at `.codex/prompts/arckit.*.md`)
1997
+
1998
+ ---
1999
+
2000
+ ## [1.3.0] - 2026-02-03
2001
+
2002
+ ### Added
2003
+
2004
+ - **External Document Support**: Standardized external document intake across all 39 commands and 4 agents
2005
+ - Commands auto-discover and consume user-provided files (vendor HLDs, policy docs, pen test reports, RFPs, audit reports, existing schemas, architecture diagram images)
2006
+ - Three standard locations: `projects/{project}/external/`, `projects/{project}/vendors/{vendor}/`, `projects/000-global/policies/`
2007
+ - Command-specific extraction guidance for each document type
2008
+ - Non-blocking: external docs enhance output quality but are never required
2009
+ - Generated documents include "External References" table citing consumed external docs
2010
+ - 6 command groups: Vendor (6), Policy & Governance (11), User Specification (8), Research (5), Operational (9), No Changes (4)
2011
+
2012
+ - **External References Table**: Added to all corresponding templates in `.arckit/templates/`
2013
+ - Populated when external docs are used, shows "None provided" otherwise
2014
+ - Columns: Document, Type, Source, Key Extractions, Path
2015
+
2016
+ - **Standard Directories**: CLI and scripts updated to create external document directories
2017
+ - `arckit init` creates `projects/000-global/policies/` directory
2018
+ - `create-project.sh` creates `external/` subdirectory in each numbered project
2019
+ - `.gitkeep` files ensure directories are tracked by git
2020
+
2021
+ - **v20 Test Repository**: `arckit-test-project-v20-uae-moi-ipad` (private) for UAE MOI IPAD Framework
2022
+
2023
+ ### Changed
2024
+
2025
+ - **Dynamic Version Placeholders**: All 44 template metadata lines now use `[VERSION]` placeholder instead of hardcoded version numbers
2026
+ - Template metadata line: `> **Template Status**: [status] | **Version**: [VERSION] | **Command**: [command]`
2027
+ - Commands read the `VERSION` file at generation time and populate the placeholder
2028
+ - Eliminates version drift when bumping ArcKit version — only `VERSION` file needs updating
2029
+
2030
+ - **Command Version Fallbacks**: Updated all 13 commands with version fallbacks from `1.0.0` to current version
2031
+ - Commands that read VERSION file now have accurate fallback values
2032
+
2033
+ - **Converter Improvements** (`scripts/converter.py`): Enhanced agent-delegating command handling for Gemini TOML generation
2034
+
2035
+ - **CLAUDE.md**: Added v20 test repo to table and sync loop, added directory creation to sync script
2036
+
2037
+ ### Fixed
2038
+
2039
+ - Stale `1.0.0` version fallbacks in 13 command files (should have been updated in 1.2.0)
2040
+ - Hardcoded `1.0.0` version in all 44 template metadata lines (now dynamic `[VERSION]` placeholder)
2041
+ - External document sections incorrectly nested inside "Detect Version" steps in 3 commands (story, adr, platform-design)
2042
+
2043
+ ---
2044
+
2045
+ ## [1.2.0] - 2026-02-03
2046
+
2047
+ ### Added
2048
+
2049
+ - **Autonomous Agent System**: Research-heavy commands now delegate to autonomous agents (`.claude/agents/`) that run in isolated context windows via the Task tool
2050
+ - `arckit-research` agent for technology research, vendor evaluation, build vs buy, TCO analysis
2051
+ - `arckit-datascout` agent for data source discovery, API catalogue search, scoring
2052
+ - `arckit-aws-research` agent for AWS service research via AWS Knowledge MCP
2053
+ - `arckit-azure-research` agent for Azure service research via Microsoft Learn MCP
2054
+ - **Agent documentation**: CLAUDE.md updated with agent system architecture, file structure, and when to create agents
2055
+ - **CLI agent support**: `arckit init` now copies `.claude/agents/` directory to new projects
2056
+
2057
+ ### Changed
2058
+
2059
+ - **Command refactoring**: `/arckit.research`, `/arckit.datascout`, `/arckit.aws-research`, `/arckit.azure-research` slash commands refactored to thin wrappers that delegate to agents with fallback to direct execution
2060
+ - **Template updates**: Research templates updated with document control footer
2061
+ - **All command guides**: Updated with agent delegation notes
2062
+ - **README.md**: Added agent architecture to Supported AI Agents section, fixed missing example links (stakeholders, risk, sobc, azure-research, aws-research, gcloud-search), fixed broken platform-design v8 link, corrected Wardley Maps/ServiceNow/Diagrams prose references
2063
+ - **docs/index.html**: Matching example link fixes, updated Multi-AI Support section with agent information
2064
+ - **COMMANDS.md**: Updated command reference
2065
+
2066
+ ### Fixed
2067
+
2068
+ - Broken platform-design v8 example link (pointed to non-existent `gaap-ecosystem-analysis.md` instead of `ARC-001-GAAP-v1.0.md`)
2069
+ - Wardley Maps prose incorrectly referenced v1-m365 and v9-cabinet-office (neither has Wardley maps)
2070
+ - ServiceNow prose incorrectly referenced v7-nhs and v1-m365 (neither has ServiceNow files)
2071
+ - Diagrams prose incorrectly referenced v2-hmrc and v6-patent (neither has diagram folders)
2072
+ - Missing example links for 6 commands across README.md and docs/index.html
2073
+
2074
+ ---
2075
+
2076
+ ## [1.1.0] - 2026-02-01
2077
+
2078
+ ### Added
2079
+
2080
+ - **New Command: `/arckit.datascout`**: Data source discovery command (43rd ArcKit command)
2081
+ - Discovers external data sources (APIs, datasets, open data portals, commercial providers) to fulfil project requirements
2082
+ - Data needs extraction from DR/FR/INT/NFR requirements
2083
+ - Dynamic category detection (Geospatial, Financial, Company, Demographics, Weather, Health, Transport, Energy, Education, Property, Identity, Crime, Reference)
2084
+ - Weighted evaluation scoring (Requirements Fit 25%, Data Quality 20%, License & Cost 15%, API Quality 15%, Compliance 15%, Reliability 10%)
2085
+ - UK Government open data prioritisation (data.gov.uk, ONS, NHS Digital, Companies House, OS Data Hub, Environment Agency, Land Registry, Police API)
2086
+ - TCoP Point 10 compliance (Make Better Use of Data)
2087
+ - Gap analysis for unmet data needs
2088
+ - Data model impact assessment (new entities, attributes, sync strategy)
2089
+ - Requirements traceability (every DR-xxx mapped to a source or flagged as gap)
2090
+ - Bidirectional with data-model command
2091
+ - **New Template**: `datascout-template.md` for data source discovery outputs
2092
+ - **New Guide**: `docs/guides/datascout.md` with usage documentation
2093
+
2094
+ ### Changed
2095
+
2096
+ - Updated command count to 43 (was 42)
2097
+ - Updated DEPENDENCY-MATRIX.md with datascout row/column
2098
+ - Updated WORKFLOW-DIAGRAMS.md with datascout node in all 5 workflow paths
2099
+ - Updated critical paths in DEPENDENCY-MATRIX.md to include datascout after requirements
2100
+
2101
+ ---
2102
+
2103
+ ## [1.0.4] - 2026-01-31
2104
+
2105
+ ### Added
2106
+
2107
+ - **v18-smart-meter test project**: UK Smart Meter Data Consumer Mobile App added to test repos
2108
+ - **Example links**: Added v17-fuel-prices and v18-smart-meter example links across README command tables (principles, stakeholders, requirements, risk, data-model, research, plan, dpia, diagram, backlog, azure-research, aws-research, secure, pages)
2109
+
2110
+ ### Changed
2111
+
2112
+ - **Pages template header**: Replaced left-title/centre-stats/right-meta header with G-Cloud Kit navigation style — brand link on left, nav links (stats, GitHub, ArcKit) on right using BEM class naming
2113
+ - **Pages command**: Rewrote Step 3 to mandate reading `pages-template.html` as the source of truth before generating `docs/index.html` — previously the template was an optional fallback buried at the bottom of the command, causing the AI to generate HTML from scratch instead of using the template
2114
+ - **Mobile responsiveness**: Added hamburger navigation with backdrop overlay, reduced heading font sizes on mobile, fixed TOC overlay on small screens
2115
+ - **MCP configuration**: Renamed `mcp.json` to `.mcp.json` (dotfile convention), added to test repo sync
2116
+ - **DEPENDENCY-MATRIX.md**: Aligned tier descriptions with actual command dependencies
2117
+ - **CLAUDE.md**: Added note about re-running `/arckit.pages` after template changes
2118
+
2119
+ ### Fixed
2120
+
2121
+ - Multiple layout issues in `docs/index.html` (mobile navigation, TOC overlay, heading sizes)
2122
+
2123
+ ---
2124
+
2125
+ ## [1.0.3] - 2026-01-29
2126
+
2127
+ ### Added
2128
+
2129
+ - **New Command: `/arckit.aws-research`**: AWS-specific technology research using AWS Knowledge MCP server
2130
+ - Requires AWS Knowledge MCP server (mandatory prerequisite)
2131
+ - Uses official AWS documentation via MCP tools (`search_documentation`, `read_documentation`, `get_regional_availability`, `list_regions`, `recommend`)
2132
+ - AWS service recommendations mapped to requirements
2133
+ - AWS Well-Architected Framework assessment (6 pillars including Sustainability)
2134
+ - AWS Security Hub / Foundational Security Best Practices mapping
2135
+ - UK Government compliance (G-Cloud, eu-west-2 London region, NCSC principles)
2136
+ - Real-time regional availability checks for eu-west-2
2137
+ - Cost estimates with optimization recommendations
2138
+ - CloudFormation/CDK/Terraform implementation templates
2139
+ - AWS CodePipeline examples
2140
+ - **New Template**: `aws-research-template.md` for AWS research outputs
2141
+ - **New Guide**: `docs/guides/aws-research.md` with usage documentation
2142
+
2143
+ ### Changed
2144
+
2145
+ - Updated command count to 42 (was 41)
2146
+
2147
+ ---
2148
+
2149
+ ## [1.0.2] - 2026-01-29
2150
+
2151
+ ### Added
2152
+
2153
+ - **New Command: `/arckit.azure-research`**: Azure-specific technology research using Microsoft Learn MCP server
2154
+ - Requires Microsoft Learn MCP server (mandatory prerequisite)
2155
+ - Uses official Microsoft documentation via MCP tools (`microsoft_docs_search`, `microsoft_docs_fetch`, `microsoft_code_sample_search`)
2156
+ - Azure service recommendations mapped to requirements
2157
+ - Azure Well-Architected Framework assessment (5 pillars)
2158
+ - Azure Security Benchmark mapping (12 control domains)
2159
+ - UK Government compliance (G-Cloud, UK regions, NCSC principles)
2160
+ - Cost estimates with optimization recommendations
2161
+ - Bicep/Terraform implementation templates
2162
+ - Azure DevOps pipeline examples
2163
+ - **New Template**: `azure-research-template.md` for Azure research outputs
2164
+ - **New Guide**: `docs/guides/azure-research.md` with usage documentation
2165
+
2166
+ ### Changed
2167
+
2168
+ - Updated command count to 41 (was 40)
2169
+
2170
+ ---
2171
+
2172
+ ## [1.0.1] - 2026-01-28
2173
+
2174
+ ### Added
2175
+
2176
+ - **Migration Guide**: New `docs/guides/migration.md` with comprehensive documentation for file migration
2177
+ - **Research Subdirectory**: Multi-instance research documents now stored in `research/` directory
2178
+ - **Auto-migrate Principles**: Migration script automatically migrates principles from legacy `.arckit/memory/` location
2179
+
2180
+ ### Changed
2181
+
2182
+ - **Migration Script Enhancements**:
2183
+ - Add `--global` flag to migrate only 000-global directory
2184
+ - Handle root-level ADR, diagram, wardley, and research files
2185
+ - Add alternative filename mappings (tcop-assessment.md, hld.md, dld.md, digital-marketplace-dos.md)
2186
+ - Handle `procurement/` subdirectory files
2187
+ - Fix nullglob bug causing incorrect sequence numbers
2188
+ - Add version-suffixed traceability file handling
2189
+
2190
+ - **Pages Command Updates**:
2191
+ - Add `reviews`, `wardleyMaps`, `dataContracts`, `research` arrays to manifest
2192
+ - Support new subdirectory structure in navigation
2193
+
2194
+ - **Templates**:
2195
+ - Reverted Power-Interest grids to ASCII format (Mermaid quadrantChart had readability issues)
2196
+ - Reverted Risk matrices to ASCII 5×5 format
2197
+
2198
+ ### Fixed
2199
+
2200
+ - Fixed `v8-cabinet-office-genai` → `v9-cabinet-office-genai` typo in documentation
2201
+ - Added missing v7-nhs-appointment and v16-doctors-appointment to public repos list
2202
+
2203
+ ---
2204
+
2205
+ ## [1.0.0] - 2026-01-28
2206
+
2207
+ ### Release Highlights
2208
+
2209
+ **ArcKit reaches 1.0.0** - This release marks ArcKit as production-ready for enterprise architecture governance workflows.
2210
+
2211
+ ### What's Included
2212
+
2213
+ - **40 Slash Commands**: Complete toolkit for architecture governance, vendor procurement, and design review
2214
+ - **UK Government Compliance**: TCoP, Service Standard, Secure by Design, AI Playbook, ATRS, JSP 936
2215
+ - **HM Treasury Frameworks**: Green Book (SOBC), Orange Book (Risk Management)
2216
+ - **Multi-AI Support**: Claude Code, OpenAI Codex CLI, Gemini CLI
2217
+ - **Template-Driven Generation**: Comprehensive templates for all document types
2218
+ - **Traceability Chain**: Stakeholders → Goals → Requirements → Design → Tests
2219
+
2220
+ ### Stability
2221
+
2222
+ - All 14 Live-status commands extensively tested across 16 test repositories
2223
+ - 18 Beta-status commands feature-complete and actively refined
2224
+ - 4 Alpha-status commands working with limited testing
2225
+ - 5 Experimental commands for early adopters
2226
+
2227
+ ---
2228
+
2229
+ ## [0.2.0] - 2026-01-28
2230
+
2231
+ ### Changed
2232
+
2233
+ - **BREAKING: Standardized Document Filenames**: All 40 commands now output files using Document ID pattern
2234
+ - Format: `ARC-{PROJECT_ID}-{TYPE}-v{VERSION}.md` (e.g., `ARC-001-REQ-v1.0.md`)
2235
+ - Multi-instance types (ADR, DIAG, WARD, DMC): `ARC-{PROJECT_ID}-{TYPE}-{NUM}-v{VERSION}.md`
2236
+ - Unified output locations with subdirectories: `decisions/`, `diagrams/`, `wardley-maps/`, `data-contracts/`, `reviews/`
2237
+ - Architecture principles now use `ARC-000-PRIN-v1.0.md` (000 = global document)
2238
+
2239
+ - **Updated `generate-document-id.sh`**: Added `--filename` and `--next-num` flags
2240
+ - `--filename`: Returns ID with `.md` extension
2241
+ - `--next-num DIR`: Auto-determines next sequence number for multi-instance types
2242
+
2243
+ - **Updated `create-project.sh`**: Project README now documents new filename patterns
2244
+ - JSON output includes new filename patterns
2245
+ - Creates subdirectories for multi-instance types
2246
+
2247
+ - **Updated `common.sh`**: `create_project_dir()` now creates all subdirectories
2248
+
2249
+ ### Added
2250
+
2251
+ - **`migrate-filenames.sh`**: Migration script for existing projects
2252
+ - Renames old filenames to new Document ID pattern
2253
+ - Creates backups before changes
2254
+ - Supports `--dry-run`, `--all`, `--force` options
2255
+
2256
+ ### Removed
2257
+
2258
+ - **Duplicate guide**: Removed `docs/guides/wardley-mapping.md` (duplicate of `wardley.md`)
2259
+
2260
+ ### Type Code Reference
2261
+
2262
+ | Command | Type Code | Output Pattern |
2263
+ |---------|-----------|----------------|
2264
+ | requirements | REQ | `ARC-{PID}-REQ-v1.0.md` |
2265
+ | stakeholders | STKE | `ARC-{PID}-STKE-v1.0.md` |
2266
+ | risk | RISK | `ARC-{PID}-RISK-v1.0.md` |
2267
+ | sobc | SOBC | `ARC-{PID}-SOBC-v1.0.md` |
2268
+ | principles | PRIN | `ARC-000-PRIN-v1.0.md` |
2269
+ | adr | ADR | `ARC-{PID}-ADR-{NUM}-v1.0.md` |
2270
+ | diagram | DIAG | `ARC-{PID}-DIAG-{NUM}-v1.0.md` |
2271
+ | wardley | WARD | `ARC-{PID}-WARD-{NUM}-v1.0.md` |
2272
+ | data-model | DATA | `ARC-{PID}-DATA-v1.0.md` |
2273
+ | research | RSCH | `ARC-{PID}-RSCH-v1.0.md` |
2274
+ | traceability | TRAC | `ARC-{PID}-TRAC-v1.0.md` |
2275
+ | ... | ... | See full list in CLAUDE.md |
2276
+
2277
+ ---
2278
+
2279
+ ## [0.11.2] - 2026-01-26
2280
+
2281
+ ### Added
2282
+
2283
+ - **Dynamic Version in Commands**: 29 commands now read VERSION file and update template metadata
2284
+ - Generated documents automatically show current ArcKit version
2285
+ - Template status remains static (Live/Beta/Alpha/Experimental)
2286
+
2287
+ - **Template Metadata**: All 41 templates now include status/version blockquote
2288
+ - Format: `> **Template Status**: [status] | **Version**: [version] | **Command**: [command]`
2289
+ - Status indicates maturity: Live (14), Beta (18), Alpha (4), Experimental (5)
2290
+
2291
+ - **New Templates**: Added templates for 5 commands that previously generated inline
2292
+ - `analysis-report-template.md` for `/arckit.analyze`
2293
+ - `project-plan-template.md` for `/arckit.plan`
2294
+ - `dos-requirements-template.md` for `/arckit.dos`
2295
+ - `gcloud-clarify-template.md` for `/arckit.gcloud-clarify`
2296
+ - `gcloud-requirements-template.md` for `/arckit.gcloud-search`
2297
+
2298
+ ### Changed
2299
+
2300
+ - **Pages Template**: Moved "On this page" (TOC) from right side to left side of content
2301
+ - Better reading flow with navigation on left
2302
+ - Content remains left-aligned
2303
+
2304
+ ### Removed
2305
+
2306
+ - **Unused Templates**: Removed 5 internal speckit templates not referenced by any commands
2307
+ - plan-template.md, checklist-template.md, tasks-template.md, spec-template.md, agent-file-template.md
2308
+
2309
+ ### Fixed
2310
+
2311
+ - **Legacy Template Paths**: Fixed arckit.secure.md and arckit.tcop.md using old `.specify/templates/` paths
2312
+
2313
+ ---
2314
+
2315
+ ## [0.11.1] - 2026-01-24
2316
+
2317
+ - **GitHub Pages Manifest**: Added `docs/manifest.json` for programmatic document index access
2318
+ - Lists all guides, templates, and documentation
2319
+ - Enables future document viewer integration
2320
+
2321
+ ### Changed
2322
+
2323
+ - **Template Footer Standardization**: All 36 templates now use consistent footer format
2324
+ - Standard fields: Generated by, Generated on, ArcKit Version, Project, Model
2325
+ - Updated: adr-template, dpia-template, platform-design-template, roadmap-template, story-template
2326
+
2327
+ - **Documentation**: Updated CLAUDE.md with standard footer format specification
2328
+ - Added footer format to Document Control Standard section
2329
+ - Updated test repo count to 16
2330
+
2331
+ ### Fixed
2332
+
2333
+ - Inconsistent footer formats across templates (some used bullet lists, some had no footer)
2334
+
2335
+ ---
2336
+
2337
+ ## [0.11.0] - 2026-01-23
2338
+
2339
+ ### Added
2340
+
2341
+ - **Enhanced `arckit init`**: New flags and documentation copying
2342
+ - `--all-ai` flag: Install commands for all AI assistants (Claude, Gemini, Codex)
2343
+ - `--minimal` flag: Skip copying docs and guides for lightweight install
2344
+ - Now copies `docs/guides/` with command usage documentation
2345
+ - Now copies `docs/README.md` as documentation index
2346
+ - Now copies `DEPENDENCY-MATRIX.md` for command dependencies
2347
+ - Now copies `WORKFLOW-DIAGRAMS.md` for visual workflows
2348
+
2349
+ - **New Command**: `/arckit.pages` (40th ArcKit command) - Generate GitHub Pages documentation site
2350
+ - **Auto-Discovery**: Scans repository for all known ArcKit artifacts across all projects
2351
+ - **Document Categories**: Discovery, Planning, Architecture, Governance, Compliance, Operations, Procurement, Diagrams, Decisions
2352
+ - **Mermaid Support**: Auto-renders all Mermaid diagrams (flowcharts, sequence, C4, ERD, Gantt, state, class)
2353
+ - **GOV.UK Styling**: Professional government design system (GOV.UK Frontend 5.13.0)
2354
+ - **Manifest Generation**: Creates `docs/manifest.json` for programmatic access to document index
2355
+ - **Hash-Based Routing**: Shareable URLs to specific documents (`#projects/001-name/requirements.md`)
2356
+ - **Mobile Responsive**: Works on all screen sizes with collapsible sidebar
2357
+ - **Lazy Loading**: Documents fetched on demand with in-memory caching
2358
+ - **Template**: `pages-template.html` - Full HTML/CSS/JS single-page application
2359
+ - **Guide**: `docs/guides/pages.md` - Usage guide with workflow and setup instructions
2360
+ - **Workflow Position**: Tier 12: Documentation Publishing (utility command)
2361
+ - **Use Cases**: Project documentation portals, architecture documentation sites, stakeholder communication
2362
+
2363
+ - **Command Guides**: Added 21 comprehensive guides for complete command coverage
2364
+ - All 40 commands now have dedicated playbooks in `docs/guides/`
2365
+ - Each guide includes: inputs, command usage, outputs, workflow position, review checklist, key principles
2366
+ - Guides for: ai-playbook, analyze, atrs, backlog, data-mesh-contract, devops, dld-review, dos, dpia, evaluate, finops, gcloud-clarify, gcloud-search, hld-review, jsp-936, mlops, mod-secure, operationalize, pages, platform-design, servicenow
2367
+
2368
+ ### Changed
2369
+
2370
+ - **Documentation Site**: Enhanced `docs/index.html` with interactive features
2371
+ - Added Mermaid.js for workflow diagram rendering
2372
+ - Made Command and Status columns sticky for better navigation
2373
+ - Reduced table row height with tighter padding
2374
+ - Expanded example links to show multiple test projects per command
2375
+ - Changed workflow diagram to vertical layout for better readability
2376
+
2377
+ - **Dependency Matrix**: Updated to include pages command
2378
+ - Added pages column with Recommended (R) dependencies on all document-producing commands
2379
+ - Added Tier 12: Documentation Publishing
2380
+ - Total commands: 40
2381
+
2382
+ ### Fixed
2383
+
2384
+ - Mermaid diagram syntax for cross-subgraph connections
2385
+ - DOS and G-Cloud commands status changed to experimental
2386
+ - Missing example links in command reference tables
2387
+
2388
+ ## [0.10.0] - 2026-01-21
2389
+
2390
+ ### Added
2391
+
2392
+ - **New Command**: `/arckit.finops` (39th ArcKit command) - Create FinOps strategy for cloud financial management
2393
+ - **Cost Visibility**: Tagging strategy, cost allocation, reporting cadence, dashboards
2394
+ - **Cost Optimization**: Rightsizing, reserved instances/savings plans, spot instances, storage tiering
2395
+ - **Commitment Management**: RI/SP inventory, utilization tracking, purchase recommendations
2396
+ - **Showback/Chargeback**: Allocation methodology, unit economics, internal billing processes
2397
+ - **Budgeting & Forecasting**: Budget types, alert thresholds, forecasting methodology
2398
+ - **Anomaly Detection**: Alert configuration, investigation workflow, escalation matrix
2399
+ - **Governance**: Cloud policies, approval workflows, exception processes
2400
+ - **Sustainability**: Carbon footprint visibility, green region preferences, sustainable practices
2401
+ - **UK Government Context**: Cabinet Office spend controls, Treasury Green Book, G-Cloud tracking
2402
+ - **Template**: `finops-template.md` (800+ lines) with 16 comprehensive sections
2403
+ - **Workflow Position**: Run AFTER /arckit.devops (Tier 8: Operations)
2404
+ - **Use Cases**: Cloud cost management, FinOps maturity assessment, cost optimization initiatives
2405
+
2406
+ - **New Command**: `/arckit.operationalize` (36th ArcKit command) - Create operational readiness pack for production services
2407
+ - **SRE Best Practices**: SLIs, SLOs, error budgets, golden signals monitoring
2408
+ - **Support Model**: Tiered support (L1/L2/L3), escalation procedures, on-call rotations
2409
+ - **Runbook Library**: 6 detailed runbooks (startup, shutdown, backup/restore, incident response, scaling, failover)
2410
+ - **DR/BCP**: Disaster recovery procedures, business continuity planning, RTO/RPO targets
2411
+ - **Operational Handover**: Knowledge transfer, training materials, handover checklists
2412
+ - **UK Government Context**: Service Standard operations alignment, NCSC CAF operational security
2413
+ - **Template**: `operationalize-template.md` (1,000+ lines) with 17 comprehensive sections
2414
+ - **Workflow Position**: Run AFTER /arckit.servicenow (Tier 8: Operations)
2415
+ - **Use Cases**: Production readiness, operations handover, SRE implementation, support model design
2416
+
2417
+ - **New Command**: `/arckit.devops` (35th ArcKit command) - Create comprehensive DevOps strategy
2418
+ - **CI/CD Pipeline Design**: Build automation, testing strategy, quality gates, artifact management
2419
+ - **Infrastructure as Code**: Terraform/Pulumi/CloudFormation patterns, module structure, state management
2420
+ - **Container Strategy**: Docker, container registries, image scanning, orchestration (Kubernetes/ECS)
2421
+ - **GitOps**: ArgoCD/Flux patterns, deployment strategies (blue-green, canary, rolling)
2422
+ - **DevSecOps**: Shift-left security, SAST/DAST/SCA integration, compliance as code
2423
+ - **Developer Experience**: Local development, devcontainers, inner loop optimization, self-service
2424
+ - **DORA Metrics**: Deployment frequency, lead time, MTTR, change failure rate tracking
2425
+ - **UK Government Context**: Cloud First (TCoP Point 5), open standards, Digital Marketplace compatibility
2426
+ - **Template**: `devops-template.md` (1,200+ lines) with 17 comprehensive sections
2427
+ - **Workflow Position**: Run AFTER /arckit.servicenow (Tier 8: Operations)
2428
+
2429
+ - **New Command**: `/arckit.mlops` (34th ArcKit command) - Create MLOps strategy for AI/ML projects
2430
+ - **Model Lifecycle**: Training, serving, monitoring, retirement workflows
2431
+ - **Training Pipeline**: Experiment tracking, hyperparameter optimization, model versioning
2432
+ - **Feature Engineering**: Feature stores, data versioning, feature quality checks
2433
+ - **Model Registry**: Model storage, metadata, approval workflow, promotion stages
2434
+ - **Model Monitoring**: Data drift, concept drift, performance degradation, fairness monitoring
2435
+ - **Retraining Strategy**: Automated triggers, champion-challenger deployment, rollback procedures
2436
+ - **LLM/GenAI Operations**: Prompt management, guardrails, token monitoring, RAG pipelines
2437
+ - **Responsible AI**: Bias detection, explainability (SHAP/LIME), human oversight mechanisms
2438
+ - **UK Government Context**: AI Playbook principles, ATRS compliance, JSP 936 for MOD projects
2439
+ - **Template**: `mlops-template.md` (1,100+ lines) with 15 comprehensive sections
2440
+ - **Workflow Position**: Run AFTER /arckit.devops for AI projects (Tier 8: Operations)
2441
+
2442
+ - **New Command**: `/arckit.platform-design` (33rd ArcKit command) - Design multi-sided platforms using Platform Design Toolkit (PDT) methodology
2443
+ - **8 PDT Canvases**: Ecosystem Canvas, Entity-Role Portraits, Motivations Matrix, Transactions Board, Learning Engine Canvas, Platform Experience Canvas, MVP Canvas, Platform Design Canvas
2444
+ - **Platform Economics**: Transaction cost reduction analysis (search, information, negotiation, coordination, enforcement costs)
2445
+ - **Network Effects**: Same-side, cross-side, data, and learning network effects for defensibility
2446
+ - **Auto-Population**: Extracts stakeholders → entity portraits, requirements → platform capabilities, Wardley maps → build vs buy, principles → governance
2447
+ - **Ecosystem Mapping**: Supply side, demand side, supporting entities with Mermaid relationship diagrams
2448
+ - **Entity Portraits**: 3-5 detailed portraits with context, performance pressures, goals, gains (pain relievers, gain creators)
2449
+ - **Motivations Matrix**: Cross-entity synergies and conflicts with mitigation strategies
2450
+ - **Transactions Board**: 10-20 transactions with cost analysis, data flows, platform services that reduce each cost
2451
+ - **Learning Engine**: 5+ services that help ecosystem participants improve (data sources, feedback loops, network learning effects)
2452
+ - **Platform Experience**: 2+ journey maps (onboarding, transaction, touchpoints, emotions, business model, unit economics)
2453
+ - **MVP Canvas**: Assumption-risk matrix, minimum feature set, liquidity bootstrapping strategy, validation metrics
2454
+ - **Liquidity Bootstrapping**: Solves chicken-and-egg problem (seed supply, incentivize demand, staged rollout, validation strategy)
2455
+ - **UK Government Context**: Government as a Platform (GaaP), TCoP Point 8 (share/reuse/collaborate), Digital Marketplace integration
2456
+ - **Template**: `platform-design-template.md` (1,800+ lines) with all 8 canvases, comprehensive PDT methodology
2457
+ - **Guide**: `docs/guides/platform-design.md` - What is PDT, when to use, 8 canvas explanations, GaaP context, examples, common pitfalls
2458
+ - **Workflow Position**: Run AFTER /arckit.requirements (Tier 3.5: Strategic Planning), BEFORE detailed design (Tier 4)
2459
+ - **Use Cases**: Government as a Platform services, data marketplaces, multi-sided platforms, NHS appointment booking, training marketplaces
2460
+ - **Based on**: Platform Design Toolkit v2.2.1 from Boundaryless.io (CC-BY-SA license)
2461
+
2462
+ ### Changed
2463
+
2464
+ ### Fixed
2465
+
2466
+ ### Removed
2467
+
2468
+ ## [0.9.1] - 2025-11-12
2469
+
2470
+ ### Added
2471
+
2472
+ - **Document Control Standard**: New reference in `docs/templates/document-control.md` plus README cross-links so every command references the same metadata expectations (Document ID, classification, review cadence, distribution, revision history, etc.).
2473
+ - **Guides**: Added roadmap and ADR playbooks under `docs/guides/` to document the new workflows released in 0.9.0 and highlight where document control fits in those processes.
2474
+
2475
+ ### Changed
2476
+
2477
+ - **Template Alignment**: All Markdown templates in `.arckit/templates/` now share the canonical Document Control table and revision history format, with doc-specific fields (e.g., ADR Number, Financial Years) appended below the standard block.
2478
+ - **Command Updates**: Claude/Codex/Gemini instructions explicitly reference the new standard, require `generate-document-id.sh`, and ensure commands populate metadata before writing body content.
2479
+ - **Dynamic Version Metadata**: `/arckit.sobc` and `/arckit.service-assessment` prompts (for every agent) read `.arckit/VERSION` so generated artifacts always show the current ArcKit release.
2480
+ - **Docs Refresh**: README, docs index, workflow diagrams, dependency matrix, and command references updated to advertise v0.9.1 as the latest release.
2481
+
2482
+ ### Fixed
2483
+
2484
+ - **Version Drift**: Removed remaining hardcoded `v0.9.0` strings so prompts either reference `.arckit/VERSION` or historical sections only.
2485
+
2486
+ ## [0.9.0] - 2025-01-06
2487
+
2488
+ ### Added
2489
+
2490
+ - **New Command**: `/arckit.data-mesh-contract` (32nd ArcKit command) - Create federated data product contracts for mesh architectures
2491
+ - **ODCS Compliance**: Open Data Contract Standard v3.0.2 with full YAML export
2492
+ - **10 Core Sections**: Fundamentals, Schema, Data Quality, SLA, Access Methods, Security, Governance, Consumer Obligations, Pricing, Infrastructure
2493
+ - **Auto-Population**: Extracts entities from data-model.md (→ objects), DR-xxx requirements (→ quality rules), NFR-xxx (→ SLA targets), stakeholders (→ ownership roles)
2494
+ - **Schema Management**: Semantic versioning (MAJOR.MINOR.PATCH), breaking change policy with 90-day notice, backward compatibility guarantees
2495
+ - **Data Quality**: ODCS-compatible automated rules (null_check, uniqueness, referential_integrity, regex, range) executable by data quality engines
2496
+ - **SLA Commitments**: Availability (99.9%), response time (p95 <200ms), freshness (<5min), retention policies
2497
+ - **Access Methods**: REST API, GraphQL, SQL query, data lake, event streams with authentication, rate limits, consumer onboarding
2498
+ - **GDPR Compliance**: PII inventory, legal basis, data subject rights, cross-border transfers, DPIA integration, audit logging
2499
+ - **Federated Governance**: Change management (minor 7-day notice, major 90-day notice), quarterly reviews, deprecation policy
2500
+ - **Consumer Obligations**: Attribution, usage constraints, quality feedback, security requirements
2501
+ - **UK Government Context**: Technology Code of Practice alignment, National Data Strategy pillars, Data Quality Framework (5 dimensions)
2502
+ - **Template**: `data-mesh-contract-template.md` (1,100+ lines) with 16 sections, ODCS YAML export, comprehensive guidance
2503
+ - **Guide**: `docs/guides/data-mesh-contract.md` - What is data mesh, domain ownership, data as product, computational governance
2504
+ - **Workflow Position**: Run AFTER /arckit.data-model (entities → objects) and /arckit.requirements (DR-xxx → quality rules)
2505
+ - **Use Cases**: Data mesh architectures, federated data ownership, data product management, multi-domain data sharing, self-serve analytics
2506
+
2507
+ - **New Command**: `/arckit.dpia` (30th ArcKit command) - Generate Data Protection Impact Assessment for UK GDPR Article 35 compliance
2508
+ - **ICO 9-Criteria Screening**: Automated assessment (evaluation, automated decisions, monitoring, sensitive data, large scale, dataset matching, vulnerable subjects, innovative tech, rights prevention)
2509
+ - **Auto-Population**: Extracts entities, PII, special category data from data-model.md; processing purposes from requirements.md; data subjects from stakeholder-drivers.md
2510
+ - **Risk Assessment**: Focus on impact on individuals (privacy harm, discrimination, physical harm, financial loss), not organizational risk
2511
+ - **Likelihood × Severity Matrix**: Remote/Possible/Probable × Minimal/Significant/Severe = Low/Medium/High risk
2512
+ - **Risk Register Integration**: Bidirectional links with DPIA-xxx risk IDs in risk register
2513
+ - **Mitigation Extraction**: Links security controls from secure-by-design-assessment.md as DPIA mitigations
2514
+ - **Data Subject Rights**: Implementation checklist for SAR, rectification, erasure, portability, objection, restriction, automated decision-making
2515
+ - **Children's Data Assessment**: Age verification, parental consent, best interests, child-friendly privacy notices
2516
+ - **AI/ML Assessment**: Algorithmic bias, explainability, human oversight, links to ai-playbook and ATRS
2517
+ - **ICO Prior Consultation**: Automatic flagging when residual high risks require ICO consultation before processing
2518
+ - **International Transfers**: Safeguards assessment (SCCs, BCRs, adequacy decisions)
2519
+ - **Template**: `dpia-template.md` (1,000+ lines) with 16 sections following ICO guidance
2520
+ - **Legal Context**: UK GDPR Article 35 REQUIRES DPIAs for high-risk processing; failure to conduct when required can result in ICO enforcement
2521
+ - **Workflow Position**: Run AFTER /arckit.data-model (needs data inventory), BEFORE /arckit.research (must assess privacy risks before tech selection)
2522
+ - **Use Cases**: Health data processing, AI/ML systems, large-scale profiling, children's services, vulnerable groups, cross-border transfers
2523
+
2524
+ - **New Command**: `/arckit.principles-compliance` (31st ArcKit command) - Assess project compliance with architecture principles
2525
+ - **Dynamic Principle Extraction**: Extracts ALL principles from architecture-principles.md (supports 5, 10, 20+ principles - never assumes fixed count)
2526
+ - **RAG Status System**: Four-level assessment (🟢 GREEN: Fully compliant | 🟠 AMBER: Partial compliance | 🔴 RED: Non-compliant | ⚪ NOT ASSESSED: Insufficient evidence)
2527
+ - **Evidence-Based Assessment**: All RAG statuses must link to specific file:section:line references from project artifacts
2528
+ - **Validation Gates**: Each principle's validation checklist assessed individually with PASS/FAIL/N/A status
2529
+ - **Comprehensive Evidence Search**: Requirements coverage, design evidence (HLD/DLD), implementation artifacts, compliance assessments (TCoP, Secure by Design), validation results
2530
+ - **Gap Identification**: For AMBER/RED principles - specific gaps with impact, severity, remediation plan, responsible owner, target date
2531
+ - **Exception Management**: Time-bound waivers with CTO/CIO approval workflow, expiry dates, quarterly review process
2532
+ - **Point-in-Time Assessment**: Run at project gates (Discovery, Alpha, Beta, Live) and quarterly for ongoing compliance monitoring
2533
+ - **Gate Decision Support**: Overall recommendation (❌ BLOCK / ⚠️ CONDITIONAL APPROVAL / ✅ PROCEED) with prioritized action plan
2534
+ - **Template**: `principles-compliance-assessment-template.md` (340+ lines) with executive summary, compliance scorecard, detailed assessments, exception register
2535
+ - **Integration**: Feeds into /arckit.analyze and /arckit.service-assessment for comprehensive quality/compliance checks
2536
+ - **Use Cases**: Project gate reviews, quarterly compliance audits, architecture governance, demonstrating principles adoption, identifying architecture drift
2537
+ - **Workflow Position**: Run AFTER design reviews when evidence exists, BEFORE major project gates for go/no-go decisions
2538
+
2539
+ - **New Command**: `/arckit.story` (29th ArcKit command) - Generate comprehensive project story with timeline analysis
2540
+ - **Timeline Analysis**: 4 visualization types (Gantt chart, linear flowchart, detailed table, phase duration pie chart)
2541
+ - **Timeline Metrics**: Project duration, velocity, phase analysis, critical path identification
2542
+ - **Complete Timeline**: All events from git log or file modification dates with days-from-start
2543
+ - **8 Narrative Chapters**: Foundation → Business Case → Requirements → Research → Procurement → Design → Delivery → Compliance
2544
+ - **Traceability Demonstration**: End-to-end chains with Mermaid diagrams showing stakeholder → goals → requirements → stories → sprints
2545
+ - **Governance Achievements**: Showcase compliance (TCoP, Service Standard, NCSC CAF), risk management, decision rationale
2546
+ - **Strategic Context**: Wardley Map insights, build vs buy decisions, vendor selection rationale
2547
+ - **Lessons Learned**: Pacing analysis, timeline deviations, recommendations for future projects
2548
+ - **Comprehensive Appendices**: Artifact register, chronological activity log, DSM, command reference, glossary
2549
+ - **Template**: `story-template.md` (1,200+ lines) with timeline-first approach
2550
+ - **Use Cases**: Project milestones, completion reporting, stakeholder communication, portfolio reporting, demonstrating ArcKit governance value
2551
+
2552
+ ### Changed
2553
+
2554
+ - **LICENSE**: Updated copyright holder from "GitHub" to "Mark Craddock"
2555
+ - **Project README template**: Now documents all 30 commands (previously only 8)
2556
+ - Added Phase 15: Project Story & Reporting with `/arckit.story` command
2557
+ - Added 10 organized categories: Project Planning, Core Workflow, Vendor Procurement, Design Review, Architecture Diagrams, Sprint Planning, Service Management, Traceability & Quality, UK Government Compliance, Security Assessment
2558
+ - Improves command discoverability for new ArcKit projects
2559
+ - **DEPENDENCY-MATRIX.md**: Added story command as Tier 11 (final reporting tier)
2560
+ - All dependencies are optional (O) - scans whatever artifacts exist
2561
+ - Added to all 5 critical paths as final reporting step
2562
+ - 29×29 matrix now complete
2563
+ - **WORKFLOW-DIAGRAMS.md**: Added story command to all 5 workflow diagrams
2564
+ - Added as gold/yellow box (Tier 11: Reporting)
2565
+ - Updated legend to include gold boxes for reporting tier
2566
+ - Story command is final step in all workflow paths
2567
+
2568
+ ### Removed
2569
+
2570
+ - **Obsolete documentation files** (7 files, ~123KB):
2571
+ - `PUSH-TO-GITHUB.md` - Initial push instructions (no longer needed)
2572
+ - `OPENAI-INTEGRATION-PLAN.md` - Planning doc (implemented in .codex/)
2573
+ - `UI-IMPLEMENTATION-PLAN.md` - Future planning (not current priority)
2574
+ - `arckit-backlog-command-design.md` - Design doc (command implemented)
2575
+ - `gds-service-assessment-command-design.md` - Design doc (command implemented)
2576
+ - `ARTICLE.md` - Marketing article draft
2577
+ - `GITHUB-DISCUSSION-POST.md` - Discussion post draft
2578
+
2579
+ ## [0.8.3] - 2025-11-02
2580
+
2581
+ ### Fixed
2582
+
2583
+ - **Command Template Synchronization**: Ensured all 28 commands are synchronized across Claude Code, Codex CLI, and Gemini CLI platforms
2584
+ - Fixed missing dependency checks in command templates
2585
+ - Validated all M/R/O dependencies are properly enforced
2586
+
2587
+ ### Changed
2588
+
2589
+ - **Documentation Cleanup**: Removed completed dependency gap analysis files
2590
+ - Removed `DEPENDENCY-GAPS-SUMMARY.md` (Phase 1-2 fixes complete)
2591
+ - Removed `DEPENDENCY-MATRIX-GAPS.md` (all critical gaps resolved)
2592
+ - Updated `README.md` to remove gap file references
2593
+ - Updated `CHANGELOG.md` to note Phase 1-2 completion
2594
+ - Updated `CLAUDE.md` developer documentation
2595
+ - Gap analysis preserved in git history (commits 4a3f631, 5da8a62, 561902d)
2596
+
2597
+ - **Test Repository Updates**: All 10 arckit-test-project repositories synchronized with v0.8.3
2598
+ - Updated all commands, templates, and scripts
2599
+ - Pushed WORKFLOW-DIAGRAMS.md with Phase 2 R-level dependency visualizations
2600
+ - Removed obsolete gap analysis files
2601
+ - Repository rename: arckit-test-project-v8-cabinet-office-genai → v9-cabinet-office-genai
2602
+
2603
+ ## [0.8.2] - 2025-11-01
2604
+
2605
+ ### Fixed
2606
+
2607
+ - **Dependency Matrix Accuracy**: Corrected 4 critical (M-level) dependency errors
2608
+ - `dos` now correctly requires principles (M) - ensures evaluation framework aligned with architecture governance
2609
+ - `evaluate` now correctly requires principles (M) - ensures vendor scoring criteria match organizational standards
2610
+ - `hld-review` now correctly requires principles (M) - validates design decisions against documented principles
2611
+ - `dld-review` now correctly requires principles (M) - ensures implementation adheres to architectural standards
2612
+
2613
+ - **High-Priority Dependencies**: Added 9 recommended (R-level) dependencies to improve quality
2614
+ - `plan` now recommends stakeholders (R), requirements (R), principles (R), sobc (R), risk (R) - creates realistic timelines based on project scope
2615
+ - `principles` now recommends gcloud-search (R) for G-Cloud procurement - ensures search criteria align with principles
2616
+ - `stakeholders` now recommends research (R), dos (R) - better procurement strategy and vendor requirements
2617
+ - `data-model` now recommends research (R) - data modeling informed by vendor research and technology choices
2618
+ - `service-assessment` now recommends plan (R) - validates timelines and delivery approach
2619
+
2620
+ - **Artifact Summary Counts**: Corrected consumer counts in dependency matrix
2621
+ - `principles.md` consumer count: 10 → 14 commands (added dos, gcloud-search, service-assessment)
2622
+ - `stakeholders.md` consumer count: 7 → 9 commands (added research, dos, service-assessment)
2623
+
2624
+ ### Added
2625
+
2626
+ - **Comprehensive Dependency Documentation** (3 new documents):
2627
+ - `DEPENDENCY-MATRIX.md` (191 lines) - 28×28 Dependency Structure Matrix showing all command dependencies
2628
+ - Matrix legend (M=Mandatory, R=Recommended, O=Optional)
2629
+ - 10-tier dependency hierarchy (Tier 0: Foundation → Tier 10: Compliance)
2630
+ - 5 critical paths (Standard, UK Gov, UK Gov AI, MOD Defence, MOD Defence AI)
2631
+ - Artifact fan-in/fan-out analysis (requirements.md consumed by 22 commands)
2632
+ - Design notes explaining dependency rationale
2633
+ - All critical and high-priority dependencies implemented (Phase 1-2 complete)
2634
+ - `WORKFLOW-DIAGRAMS.md` (431 lines) - Visual workflow diagrams for all 5 project paths
2635
+ - Mermaid flowcharts showing decision gates and command flows
2636
+ - Standard Project workflow (12 steps)
2637
+ - UK Government Project workflow (16 steps)
2638
+ - UK Government AI Project workflow (15 steps)
2639
+ - MOD Defence Project workflow (16 steps)
2640
+ - MOD Defence AI Project workflow (17 steps)
2641
+
2642
+ ### Changed
2643
+
2644
+ - **Command Template Enforcement**: Updated 4 command templates to enforce critical dependencies
2645
+ - `.claude/commands/arckit.dos.md` - Added principles (M) check with guidance
2646
+ - `.claude/commands/arckit.evaluate.md` - Added principles (M) check with guidance
2647
+ - `.claude/commands/arckit.hld-review.md` - Added principles (M) check with guidance
2648
+ - `.claude/commands/arckit.dld-review.md` - Added principles (M) check with guidance
2649
+
2650
+ ### Why This Matters
2651
+
2652
+ The dependency matrix work ensures ArcKit commands are executed in the correct order, preventing:
2653
+
2654
+ - **Quality Issues**: Running evaluate without principles means vendor scoring isn't aligned with organizational standards
2655
+ - **Rework**: Running hld-review/dld-review without principles means design decisions may violate governance
2656
+ - **Incomplete Analysis**: Running plan without requirements means timelines don't reflect actual scope
2657
+ - **Procurement Failures**: Running dos without stakeholders means vendor requirements don't address real needs
2658
+
2659
+ The comprehensive dependency documentation provides:
2660
+
2661
+ - **Clear Guidance**: 5 workflow diagrams showing exactly which commands to run for different project types
2662
+ - **Traceability**: Complete dependency chain from foundation commands to final compliance assessments
2663
+ - **Quality Assurance**: Artifact fan-in analysis shows requirements.md consumed by 22 commands (highest)
2664
+
2665
+ This release completes the dependency analysis initiative (Issue #9) with:
2666
+
2667
+ - Phase 1: 4 critical (M-level) fixes ✅
2668
+ - Phase 2: 9 high-priority (R-level) enhancements ✅
2669
+ - Phase 3: 26 optional (O-level) enhancements (future work)
2670
+
2671
+ ## [0.8.1] - 2025-11-01
2672
+
2673
+ ### Fixed
2674
+
2675
+ - **Installation compatibility**: Added fallback path for system-wide pip installs
2676
+ - Resolves issues when ArcKit installed globally vs in virtual environment
2677
+ - Improved template and script discovery across different installation methods
2678
+
2679
+ ## [0.8.0] - 2025-11-01
2680
+
2681
+ ### Added
2682
+
2683
+ - **Enterprise document control system**: Complete version control and document management
2684
+ - Document metadata (version, status, approvers, classification)
2685
+ - Comprehensive change log tracking
2686
+ - Version control best practices
2687
+ - Distribution and access control
2688
+ - Applied to all generated documents
2689
+
2690
+ - **Enhanced backlog template**: Updated with document control metadata
2691
+
2692
+ ### Fixed
2693
+
2694
+ - **Package distribution**: Added .arckit directory to package distribution
2695
+ - Templates and scripts now properly included in pip/uv installs
2696
+ - Fixed missing templates issue in fresh installations
2697
+
2698
+ - **Script paths**: Corrected script paths in all command files
2699
+ - Scripts now reference correct `/scripts/` directory
2700
+ - Improved script execution reliability
2701
+
2702
+ ### Changed
2703
+
2704
+ - **Repository organization**: Consolidated scripts to root /scripts directory
2705
+ - Removed duplicate root templates directory
2706
+ - Cleaner repository structure
2707
+ - Improved maintainability
2708
+
2709
+ ## [0.7.0] - 2025-10-31
2710
+
2711
+ ### Added
2712
+
2713
+ - **`/arckit.jsp-936` command**: MOD JSP 936 AI assurance documentation generator
2714
+ - Comprehensive JSP 936 (Dependable Artificial Intelligence in Defence) compliance documentation
2715
+ - 5 Ethical Principles assessment: Human-Centricity, Responsibility, Understanding, Bias & Harm Mitigation, Reliability
2716
+ - AI ethical risk classification using likelihood × impact matrix (1-5 scale)
2717
+ - 5 Risk Classification Levels (Critical/Severe/Major/Moderate/Minor) with approval pathways
2718
+ - 8 AI Lifecycle Phases: Planning, Requirements, Architecture, Algorithm Design, Model Development, V&V, Integration & Use, Quality Assurance
2719
+ - Governance structure documentation (RAISOs, Ethics Managers, Independent Assurance)
2720
+ - Approval pathways (2PUS/Ministerial → Defence-Level JROC/IAC → TLB-Level)
2721
+ - Human-AI teaming strategy (human-in-loop, human-on-loop, human-out-of-loop models)
2722
+ - AI-specific security threats and controls (adversarial examples, data poisoning, model extraction, model inversion, backdoors, drift)
2723
+ - Supplier assurance for third-party AI components
2724
+ - Continuous monitoring and re-assessment plan (drift detection, retraining triggers, annual review)
2725
+ - Comprehensive compliance matrix (27 JSP 936 requirements)
2726
+ - Output: `.arckit/jsp-936/jsp-936-assessment.md`
2727
+
2728
+ - **docs/guides/jsp-936.md**: Comprehensive 1,000+ line user guide
2729
+ - JSP 936 framework overview (5 principles, 5 risk levels, 8 lifecycle phases, governance)
2730
+ - When to run JSP 936 assessment (Discovery/Alpha/Beta/Live phases)
2731
+ - AI component types identified (7 categories: ML models, AI algorithms, autonomous systems, decision support, NLP, computer vision, generative AI)
2732
+ - Ethical risk assessment methodology (likelihood × impact matrix)
2733
+ - Five ethical principles deep dive (requirements, assessment approach)
2734
+ - Human-AI teaming models explained (HIL/HOL/HOOL with examples)
2735
+ - AI-specific security threats (6 categories with mitigations)
2736
+ - Continuous monitoring and re-assessment requirements
2737
+ - Approval pathways for each risk classification
2738
+ - Integration with other ArcKit commands
2739
+ - Common JSP 936 patterns (image classification, decision support, autonomous vehicles, LLMs)
2740
+ - JSP 936 compliance checklist
2741
+ - FAQs (mandatory assessment, timelines, roles, COTS AI, JSP 440 relationship, risk escalation, monitoring, human control)
2742
+ - Example scenarios (satellite imagery analysis, predictive maintenance, autonomous drone)
2743
+ - Additional resources (MOD references, UK Government AI guidance, international standards)
2744
+
2745
+ - **`.arckit/templates/jsp-936-template.md`**: Complete JSP 936 assessment template
2746
+ - Executive summary structure
2747
+ - AI system inventory with detailed component cataloging
2748
+ - Ethical risk assessment matrices for each AI component
2749
+ - Five ethical principles compliance sections
2750
+ - Eight AI lifecycle phase documentation structures
2751
+ - Governance and approval tracking
2752
+ - Human-AI teaming strategy documentation
2753
+ - Secure by Design evidence structure
2754
+ - Supplier assurance section
2755
+ - Continuous monitoring plan
2756
+ - JSP 936 compliance matrix (27 requirements)
2757
+ - 10 appendices (risk methodology, checklists, model cards, bias reports, V&V reports, security tests, training materials, dashboards)
2758
+
2759
+ ### Changed
2760
+
2761
+ - **Command count**: 27 → 28 commands
2762
+ - **README.md**:
2763
+ - Added `/arckit.jsp-936` to Security Assessment commands table
2764
+ - Added JSP 936 information to MOD Projects section
2765
+ - Added JSP 936 example usage
2766
+ - Added MOD JSP 936 AI Assurance to Built-in UK Government Support list
2767
+ - **docs/index.html**: To be updated with JSP 936 command (28 commands)
2768
+ - **Version**: Updated from v0.6.0 to v0.7.0
2769
+
2770
+ ### Why This Matters
2771
+
2772
+ JSP 936 (Dependable Artificial Intelligence in Defence), published November 2024, establishes the UK Ministry of Defence's mandatory framework for safe and responsible adoption of AI/ML systems. Defence projects using AI must complete JSP 936 assessments to receive approval at the appropriate level (2PUS/Ministerial for Critical, Defence-Level for Severe/Major, TLB-Level for Moderate/Minor).
2773
+
2774
+ Without JSP 936 compliance, defence AI projects face:
2775
+
2776
+ - Approval blockages (no deployment without JSP 936 assessment)
2777
+ - Ethical risks unidentified until late stages
2778
+ - Unclear accountability for AI decisions
2779
+ - Inadequate bias testing and harm mitigation
2780
+ - Missing security controls for AI-specific threats
2781
+ - No continuous monitoring or drift detection
2782
+
2783
+ The `/arckit.jsp-936` command automates the creation of comprehensive JSP 936 compliance documentation, guiding project teams through:
2784
+
2785
+ - Systematic identification of all AI/ML components
2786
+ - Ethical risk classification using MOD's likelihood × impact methodology
2787
+ - Assessment against all 5 ethical principles (Human-Centricity, Responsibility, Understanding, Bias & Harm Mitigation, Reliability)
2788
+ - Documentation for all 8 AI lifecycle phases
2789
+ - Human-AI teaming strategy design
2790
+ - AI-specific security threat assessment
2791
+ - Continuous monitoring and re-assessment planning
2792
+
2793
+ This command ensures MOD AI projects have the documentation required for approval while embedding best practices for responsible AI throughout the lifecycle.
2794
+
2795
+ ## [0.6.0] - 2025-10-30
2796
+
2797
+ ### Added
2798
+
2799
+ - **`/arckit.backlog` command**: Product backlog generation from ArcKit artifacts
2800
+ - Automatically converts requirements to GDS-format user stories ("As a... I want... So that...")
2801
+ - Multi-factor prioritization (MoSCoW + risk + value + dependencies)
2802
+ - Groups stories into epics (from Business Requirements)
2803
+ - Generates technical tasks from NFRs and infrastructure needs
2804
+ - Creates sprint plan with capacity balancing (60% features, 20% technical, 15% testing, 5% buffer)
2805
+ - Respects dependencies (auth before features, database before operations)
2806
+ - Maintains traceability matrix (requirements → stories → sprints)
2807
+ - Exports to multiple formats: markdown, CSV (Jira/Azure DevOps), JSON (API integration)
2808
+ - Time savings: 75%+ reduction (4-6 weeks manual → 3-5 days)
2809
+ - Output: `projects/{project-dir}/backlog.md` (+ optional CSV/JSON)
2810
+
2811
+ - **docs/guides/backlog.md**: Comprehensive 700+ line guide
2812
+ - GDS user story format and best practices
2813
+ - Multi-factor prioritization explained (algorithms and examples)
2814
+ - Sprint planning and capacity allocation strategies
2815
+ - Velocity calibration and story point estimation
2816
+ - Backlog management best practices (refinement schedule, DoD)
2817
+ - Real-world example (NHS Appointment Booking with 8 sprints)
2818
+ - Dependency management and risk-based prioritization
2819
+ - Tool integration (Jira, Azure DevOps, GitHub Projects)
2820
+ - Common issues and solutions
2821
+ - FAQs and tips for success
2822
+
2823
+ - **arckit-backlog-command-design.md**: 15,000+ word design specification
2824
+ - Research findings from GDS Service Manual on user stories and backlog management
2825
+ - Conversion algorithms (FR→Story, NFR→Task, BR→Epic)
2826
+ - Multi-factor prioritization algorithm (weighted scoring)
2827
+ - Sprint planning algorithm with dependency checking
2828
+ - Story point estimation guidelines (Fibonacci 1-13)
2829
+ - Template structures and output formats
2830
+ - Integration with other ArcKit commands
2831
+ - Success criteria and future enhancements
2832
+
2833
+ - **`.arckit/templates/backlog-template.md`**: Complete backlog template
2834
+ - Executive summary structure
2835
+ - Epic breakdown format
2836
+ - User story template (GDS format)
2837
+ - Sprint plan structure
2838
+ - Appendices (traceability, dependencies, DoD)
2839
+
2840
+ ### Changed
2841
+
2842
+ - **Command count**: 26 → 27 commands
2843
+ - **README.md**: Added `/arckit.backlog` as Phase 10 (Sprint Planning), renumbered subsequent phases
2844
+ - **docs/index.html**: To be updated with backlog command in phase sections
2845
+ - **Version**: Updated from v0.5.0 to v0.6.0 across all files
2846
+
2847
+ ### Why This Matters
2848
+
2849
+ Product backlog creation is one of the most time-consuming tasks when transitioning from design (Alpha) to implementation (Beta). Teams spend 4-6 weeks manually converting requirements into user stories, estimating effort, prioritising work, and organising into sprints. This command automates that process in minutes, saving 75%+ of the time while maintaining GDS compliance and best practices.
2850
+
2851
+ The backlog command bridges the gap between ArcKit's design phase commands (`/arckit.requirements`, `/arckit.hld`) and implementation, providing a sprint-ready backlog that development teams can immediately use for sprint planning.
2852
+
2853
+ ## [0.5.0] - 2025-10-30
2854
+
2855
+ ### Added
2856
+
2857
+ - **`/arckit.service-assessment` command**: GDS Service Standard assessment preparation
2858
+ - Analyzes evidence against all 14 Service Standard points
2859
+ - Generates RAG (Red/Amber/Green) ratings per point and overall readiness score
2860
+ - Provides phase-appropriate gap analysis (alpha/beta/live)
2861
+ - Creates actionable recommendations with priorities (Critical/High/Medium) and timelines
2862
+ - Includes comprehensive assessment day preparation guidance
2863
+ - Maps all ArcKit artifacts to Service Standard evidence requirements
2864
+ - Output: `projects/{project-dir}/service-assessment-{phase}-prep.md`
2865
+
2866
+ - **docs/guides/service-assessment.md**: Comprehensive 600+ line guide
2867
+ - GDS Service Standard overview (14 points explained)
2868
+ - Assessment process and timings (alpha/beta/live)
2869
+ - Phase-appropriate evidence requirements
2870
+ - Complete workflow (Week 0 to assessment day)
2871
+ - Real-world examples (NHS Appointment Booking alpha prep)
2872
+ - Common pitfalls and how ArcKit helps
2873
+ - Integration with other ArcKit commands
2874
+ - Tips for success and assessment day guidance
2875
+
2876
+ - **gds-service-assessment-command-design.md**: 800+ line design specification
2877
+ - Research findings from actual GDS assessment reports
2878
+ - Design rationale and decision log
2879
+ - Evidence discovery algorithm
2880
+ - Phase-specific evidence matrices (alpha/beta/live)
2881
+ - Recommendation generation approach
2882
+ - Success criteria and future enhancements
2883
+
2884
+ ### Changed
2885
+
2886
+ - **Command count**: 25 → 26 commands
2887
+ - **README.md**: Added service-assessment to Phase 13 (UK Government Compliance)
2888
+ - **docs/index.html**: Added new "UK Government Compliance" section with service-assessment command
2889
+ - **Version**: Updated from v0.4.1 to v0.5.0 across all files
2890
+
2891
+ ### Deployment
2892
+
2893
+ Deployed to 6 test repositories:
2894
+
2895
+ - arckit-test-project-v1-m365
2896
+ - arckit-test-project-v2-hmrc-chatbot
2897
+ - arckit-test-project-v3-windows11
2898
+ - arckit-test-project-v6-patent-system
2899
+ - arckit-test-project-v7-nhs-appointment
2900
+ - arckit-test-project-v8-cabinet-office-genai (new)
2901
+
2902
+ ## [0.4.1] - 2025-10-29
2903
+
2904
+ ### Added
2905
+
2906
+ - **CONTRIBUTING.md**: Comprehensive contribution guide (241 lines)
2907
+ - Getting started workflow (fork, clone, branch)
2908
+ - Types of contributions (bugs, features, docs, commands, code)
2909
+ - Command structure and standards
2910
+ - Documentation style guidelines (UK English, GOV.UK principles)
2911
+ - Commit message conventions (conventional commits)
2912
+ - Pull request process
2913
+ - Testing guidelines
2914
+ - UK Government standards compliance requirements
2915
+ - Command naming conventions
2916
+ - Code of conduct
2917
+
2918
+ ### Changed
2919
+
2920
+ - **docs/index.html**: Complete redesign using GOV.UK Design System v5.13.0
2921
+ - Professional, accessible, mobile-responsive design
2922
+ - Official GDS components: phase banner, buttons, tags, typography, grid
2923
+ - Reduced file size 45% (978 → 542 lines)
2924
+ - CDN-hosted GOV.UK Frontend assets
2925
+ - WCAG 2.1 AA accessibility compliance
2926
+ - Progressive enhancement with js-enabled detection
2927
+
2928
+ - **Documentation Expansion** (+1,336 lines across 4 guides):
2929
+ - **docs/guides/analyze.md**: 535 → 876 lines (+341)
2930
+ - Added "Integration with Other Requirements" section (145 lines)
2931
+ - Added "Common Gaps and How to Fix Them" section (8 gaps, 192 lines)
2932
+ - **docs/guides/diagram.md**: 525 → 857 lines (+332)
2933
+ - Added "Integration with Other Requirements" section (139 lines)
2934
+ - Added "Common Gaps and How to Fix Them" section (8 gaps, 208 lines)
2935
+ - **docs/guides/traceability.md**: 639 → 808 lines (+169)
2936
+ - Added "Integration with Other Requirements" section (163 lines)
2937
+ - **docs/guides/wardley-mapping.md**: 112 → 606 lines (+494)
2938
+ - Added "Integration with Other Requirements" section (168 lines)
2939
+ - Added "Common Gaps and How to Fix Them" section (8 gaps, 323 lines)
2940
+
2941
+ - **scripts/converter.py**: Moved from root to scripts/ directory
2942
+ - Better organization alongside other tools
2943
+ - Updated all references in documentation
2944
+ - Added comprehensive section to scripts/README.md
2945
+
2946
+ - **scripts/bash/create-project.sh**: Removed empty file creation
2947
+ - Commands use Write tool to create files with content
2948
+ - Empty touch commands removed (requirements.md, sow.md, etc.)
2949
+ - Enhanced project README template with complete GDS workflow
2950
+
2951
+ ### Fixed
2952
+
2953
+ - **Font Licensing Compliance**: GDS Transport font override for non-gov.uk domains
2954
+ - GDS Transport licensed only for *.gov.uk,*.service.gov.uk, *.blog.gov.uk
2955
+ - Added explicit system font override: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto, Helvetica, Arial
2956
+ - Complies with GDS typography guidelines for non-government services
2957
+ - Transparent footer note explaining font choice
2958
+ - Reference: https://design-system.service.gov.uk/styles/typeface/
2959
+
2960
+ - **Broken Links**: Created missing CONTRIBUTING.md (was returning 404)
2961
+
2962
+ ### Removed
2963
+
2964
+ - **SETUP.md**: Deleted outdated development artifact (329 lines)
2965
+ - Referenced only 8 templates (now 25 commands)
2966
+ - Had TODOs for already-implemented commands
2967
+ - Superseded by README.md, .claude/COMMANDS.md, .codex/README.md
2968
+
2969
+ - **docs/index.html from test repositories**: Removed from all 8 test projects
2970
+ - Website hosting only needed in main arc-kit repository
2971
+ - Test projects are for testing commands, not hosting website
2972
+
2973
+ - **arckit.digital-marketplace command**: Deprecated command fully removed
2974
+ - Replaced by focused commands: `/arckit.dos` and `/arckit.gcloud-search`
2975
+ - Removed from Claude, Codex, and Gemini command sets
2976
+ - Total commands reduced from 26 to 25
2977
+
2978
+ ## [0.4.0] - 2025-10-28
2979
+
2980
+ ### Added
2981
+
2982
+ - **`/arckit.plan`**: Comprehensive project planning command
2983
+ - Generates project plans with GDS Agile Delivery phases (Discovery → Alpha → Beta → Live)
2984
+ - Mermaid Gantt charts with timeline visualization
2985
+ - Workflow diagrams showing decision gates
2986
+ - Phase-by-phase activity tables with ArcKit command recommendations
2987
+ - Approval criteria for each phase
2988
+ - Risk mitigation strategies
2989
+ - Resource allocation planning
2990
+ - Success metrics and KPIs
2991
+ - Comprehensive 660-line planning guide
2992
+
2993
+ ### Changed
2994
+
2995
+ - **Documentation Guides**: Expanded procurement and design-review guides
2996
+ - **docs/guides/procurement.md**: Enhanced with detailed DOS and G-Cloud workflows
2997
+ - **docs/guides/design-review.md**: Added comprehensive 10-section assessment checklist
2998
+
2999
+ - **Multi-AI Deployment**: Plan command deployed to all three AI systems
3000
+ - `.claude/prompts/arckit.plan.md` - Claude Code version
3001
+ - `.codex/prompts/arckit.plan.md` - Codex CLI version
3002
+ - `.gemini/commands/arckit/plan.toml` - Gemini CLI version
3003
+
3004
+ - **Workflow Enhancement**: Added Phase 0 (Planning) to GDS Agile Delivery framework
3005
+ - Updated all documentation to show: Phase 0 → Discovery → Alpha → Beta → Live
3006
+ - Planning phase runs before Discovery to establish project foundation
3007
+
3008
+ ### Fixed
3009
+
3010
+ - **Version Consistency**: Synchronized all version references to v0.4.0
3011
+ - VERSION file: Updated to 0.4.0
3012
+ - pyproject.toml: version = "0.4.0"
3013
+ - README.md: Latest Release links
3014
+ - docs/README.md: ArcKit Version
3015
+ - .codex/README.md: version and What's New
3016
+
3017
+ ## [0.3.6] - 2025-10-27
3018
+
3019
+ ### Added
3020
+
3021
+ - **Gemini CLI Support**: Full support for Google Gemini CLI across all commands
3022
+ - Added `scripts/converter.py` to convert Claude markdown commands to Gemini TOML format
3023
+ - All 24 commands now available for Gemini CLI (`.gemini/commands/arckit/*.toml`)
3024
+ - Automatic conversion maintains command functionality and arguments
3025
+ - Complete parity: Claude, Codex, and Gemini now have identical command sets
3026
+ - Credit: @umag (PR #5)
3027
+
3028
+ - **Digital Marketplace Command Split**: Split monolithic command into three focused commands
3029
+ - **`/arckit.dos`** - Digital Outcomes and Specialists (custom development)
3030
+ - ~400 lines (focused, clean - down from 754 lines)
3031
+ - Covers 95% of arc-kit use cases
3032
+ - Essential vs desirable skills extraction
3033
+ - Evaluation framework (40% Technical, 30% Team, 20% Quality, 10% Value)
3034
+ - Technology-agnostic success criteria
3035
+ - No branching logic (DOS only)
3036
+ - **`/arckit.gcloud-search`** - G-Cloud with Live Marketplace Search
3037
+ - ~500 lines with WebSearch integration
3038
+ - **Live Digital Marketplace search** using WebSearch
3039
+ - Searches: `site:digitalmarketplace.service.gov.uk g-cloud [keywords]`
3040
+ - Finds actual services with suppliers, prices, features, links
3041
+ - Service comparison table (top 3-5 services)
3042
+ - Recommendations based on requirements match
3043
+ - Covers 5% of use cases (cloud services only)
3044
+ - **`/arckit.gcloud-clarify`** - G-Cloud Service Validation (NEW!)
3045
+ - **Bridge between search and evaluation** - validates services before supplier engagement
3046
+ - Systematic gap analysis (MUST/SHOULD requirements vs service descriptions)
3047
+ - Detects three gap types: ✅ Confirmed, ⚠️ Ambiguous, ❌ Not mentioned
3048
+ - Generates prioritised questions (🔴 Critical / 🟠 High / 🔵 Medium / 🟢 Low)
3049
+ - Risk assessment matrix for each service
3050
+ - Email templates for supplier engagement
3051
+ - Evidence requirements specification
3052
+ - Completes the G-Cloud workflow: Search → Clarify → Evaluate
3053
+
3054
+ ### Changed
3055
+
3056
+ - **Command Count**: Now 25 commands per AI assistant (22 original + 3 new G-Cloud commands)
3057
+ - **README**: Updated to reflect new DOS, G-Cloud search, and G-Cloud clarify commands
3058
+ - **Complete G-Cloud Workflow**: Requirements → Search → Clarify → Engage → Evaluate → Award
3059
+
3060
+ ### Benefits
3061
+
3062
+ - **Clearer Purpose**: No framework confusion (DOS vs G-Cloud)
3063
+ - **More Powerful**: G-Cloud search finds actual services, not just requirements
3064
+ - **Complete Validation**: Gap analysis identifies missing/ambiguous requirements before supplier engagement
3065
+ - **Risk Mitigation**: Identifies blockers BEFORE contacting suppliers
3066
+ - **Better UX**: Users know which command to use at each workflow stage
3067
+ - **Easier Maintenance**: Smaller, focused templates (400-500 lines vs 754)
3068
+ - **Time Savings**:
3069
+ - G-Cloud search: 30+ minutes of manual marketplace searching automated
3070
+ - G-Cloud clarify: 30-60 minutes of manual gap analysis automated
3071
+ - Total: 1-2 hours saved per procurement
3072
+ - **Structured Process**: End-to-end G-Cloud workflow from discovery to contract award
3073
+
3074
+ ## [0.3.5] - 2025-10-26
3075
+
3076
+ ### Added
3077
+
3078
+ - **Codex CLI Integration**: Full support for OpenAI Codex CLI in `arckit init`
3079
+ - Added `codex` to AGENT_CONFIG with proper installation URL
3080
+ - Automatic `.envrc` generation for Codex projects with `CODEX_HOME` environment variable
3081
+ - Auto-creates `.gitignore` entries to exclude auth tokens while preserving prompts
3082
+ - Copies slash commands to `.codex/prompts/` directory
3083
+ - Added Codex to interactive AI assistant selection menu
3084
+ - Enhanced next steps output with Codex-specific setup instructions (direnv recommended)
3085
+ - Added `.envrc` and updated `.gitignore` for main arc-kit repository
3086
+
3087
+ ### Changed
3088
+
3089
+ - Updated `arckit init` help text to include `codex` as supported AI assistant option
3090
+ - Commands are now copied for both Claude and Codex (previously Claude-only)
3091
+
3092
+ ## [0.3.4] - 2025-10-23
3093
+
3094
+ ### Fixed
3095
+
3096
+ - **Critical Installation Bug**: Fixed package distribution to properly include markdown files
3097
+ - Added `[tool.hatch.build.targets.wheel.shared-data]` configuration to pyproject.toml
3098
+ - Templates, scripts, and .claude commands now correctly packaged in wheel
3099
+ - Enhanced `get_data_paths()` function to locate installed package data:
3100
+ - Supports uv tool installs (`~/.local/share/uv/tools/arckit-cli/share/arckit/`)
3101
+ - Supports pip installs (site-packages)
3102
+ - Supports platformdirs locations
3103
+ - Fallback to source directory for development mode
3104
+ - Added debug output showing resolved data paths during `arckit init`
3105
+ - Added warning messages if templates/scripts/commands not found
3106
+ - Fixed: `arckit init` now works correctly when installed via pip or uv
3107
+ - Credit: @umag (PR #3)
3108
+
3109
+ ### Added
3110
+
3111
+ - **UI Implementation Plan**: Comprehensive plan for building a web-based user interface
3112
+ - Next.js 14 + FastAPI architecture for hybrid CLI/UI approach
3113
+ - Interactive dashboard with project visualization and status tracking
3114
+ - Requirements management interface with filtering, sorting, and graph views
3115
+ - Traceability matrix visualization (interactive graph + table views)
3116
+ - Diagram viewers for Mermaid diagrams and Wardley Maps
3117
+ - Vendor comparison dashboard with side-by-side evaluation
3118
+ - AI assistant chat integration for executing slash commands from UI
3119
+ - Real-time sync between CLI and UI using file watchers and WebSockets
3120
+ - 5-phase implementation roadmap (12-16 weeks)
3121
+ - Multiple deployment options: local web server, desktop app (Electron), cloud
3122
+ - Maintains markdown files as source of truth (no database lock-in)
3123
+ - Full technical specifications, API design, and risk assessment
3124
+
3125
+ ### Documentation
3126
+
3127
+ - Added `UI-IMPLEMENTATION-PLAN.md` with complete architecture and implementation strategy
3128
+ - Detailed backend API specifications with FastAPI endpoints
3129
+ - Frontend component structure and technology stack recommendations
3130
+ - Data flow diagrams showing CLI-to-UI synchronization
3131
+ - Risk assessment and mitigation strategies
3132
+ - Budget and resource requirements
3133
+ - Success metrics and KPIs
3134
+
3135
+ ## [0.3.2] - 2025-10-21
3136
+
3137
+ ### Changed
3138
+
3139
+ - **BREAKING CHANGE: MOD Secure by Design - RMADS Removed**:
3140
+ - `/arckit.mod-secure` updated to align with current MOD framework (August 2023)
3141
+ - RMADS (Risk Management and Accreditation Documentation Set) REMOVED
3142
+ - Point-in-time accreditation process REPLACED with continuous assurance
3143
+ - **CAAT** (Cyber Activity and Assurance Tracker): Self-assessment tool now mandatory
3144
+ - All programmes must register on CAAT in Discovery/Alpha
3145
+ - Based on 7 SbD Principles question sets
3146
+ - Continuously updated throughout lifecycle (not one-time submission)
3147
+ - Available through MOD Secure by Design portal (DefenceGateway account)
3148
+ - **New Roles**:
3149
+ - Delivery Team Security Lead (DTSL): Owns security (First Line of Defence)
3150
+ - Security Assurance Coordinator (SAC): Supports DTSL
3151
+ - IAO/IAA roles replaced/redefined
3152
+ - **Terminology Changes**:
3153
+ - "Accreditation" → "Continuous assurance"
3154
+ - "Accreditation blockers" → "Deployment blockers"
3155
+ - "RMADS documentation submitted" → "CAAT self-assessment completed"
3156
+ - "Accreditation approval" → "Security governance review"
3157
+ - Supplier attestation required for vendor-delivered systems (ISN 2023/10)
3158
+ - SROs and capability owners accountable (not delegated to accreditation authority)
3159
+ - Cyber security is a "licence to operate" - cannot be traded out
3160
+
3161
+ - **Enhanced Analysis Command**:
3162
+ - `/arckit.analyze` updated to analyze all artifacts from v0.2.1-v0.3.1
3163
+ - **New Detection Passes**:
3164
+ - **E. Stakeholder Traceability Analysis** (if stakeholder-drivers.md exists):
3165
+ - Requirements traced to stakeholder goals
3166
+ - Orphan requirements (not linked to stakeholder goals)
3167
+ - Requirement conflicts documented and resolved
3168
+ - RACI governance alignment (risk owners, data owners from RACI)
3169
+ - **F. Risk Management Analysis** (if risk-register.md exists):
3170
+ - High/Very High risks have mitigation in requirements/design
3171
+ - Risk owners aligned with RACI matrix
3172
+ - Risk-SOBC alignment (strategic risks, financial risks in Economic Case)
3173
+ - Risk-requirements alignment (mitigation actions to requirements)
3174
+ - **G. Business Case Alignment** (if sobc.md exists):
3175
+ - Benefits traced to stakeholder goals and requirements
3176
+ - Benefits measurable and verifiable
3177
+ - Option analysis quality (Do Nothing baseline, build vs buy)
3178
+ - SOBC-requirements alignment (drivers, benefits, budget, delivery)
3179
+ - SOBC-risk alignment (risks in Management Case Part E)
3180
+ - **H. Data Model Consistency** (if data-model.md exists):
3181
+ - DR-xxx requirements mapped to entities
3182
+ - Data model-design alignment (schemas match entities, CRUD aligns)
3183
+ - Data governance alignment (owners from RACI, PII identified, GDPR)
3184
+ - Data model quality (ERD renderable, complete specs, relationships)
3185
+ - **J. MOD Secure by Design Compliance** (if mod-secure-by-design.md exists):
3186
+ - 7 SbD Principles assessment
3187
+ - NIST CSF coverage (Identify, Protect, Detect, Respond, Recover)
3188
+ - CAAT continuous assurance process (registration, self-assessment)
3189
+ - Three Lines of Defence implementation
3190
+ - Supplier attestation (ISN 2023/10)
3191
+ - Classification-specific requirements
3192
+ - **Enhanced Report Structure**:
3193
+ - Stakeholder Traceability Analysis section
3194
+ - Risk Management Analysis section
3195
+ - Business Case Analysis section
3196
+ - Data Model Analysis section
3197
+ - MOD Secure by Design Analysis section (separate from UK Gov TCoP)
3198
+ - **New Severity Criteria**:
3199
+ - CRITICAL: Orphan requirements, high/very high risks unmitigated, benefits not traced, DR-xxx unmapped, PII not identified, CAAT not registered
3200
+ - HIGH: Conflicts unresolved, medium risks unmitigated, benefits not measurable, schema mismatch, SbD gaps
3201
+ - MEDIUM: Missing stakeholder/risk/SOBC/data-model artifacts (recommended)
3202
+ - **Updated Metrics Dashboard**:
3203
+ - Stakeholder traceability score
3204
+ - Risk management score
3205
+ - Business case score
3206
+ - Data model score
3207
+ - MOD SbD score (separate from UK Gov compliance)
3208
+
3209
+ ### Documentation
3210
+
3211
+ - Updated MOD Secure by Design command documentation with:
3212
+ - CAAT continuous assurance process
3213
+ - ISN 2023/09 and ISN 2023/10 references
3214
+ - JSP 453 Digital Policies
3215
+ - https://www.digital.mod.uk/policy-rules-standards-and-guidance/secure-by-design
3216
+ - Updated analysis command documentation with new detection passes and report sections
3217
+ - Deployed to all 7 test repositories
3218
+
3219
+ ### Resources
3220
+
3221
+ - MOD Secure by Design portal: https://www.digital.mod.uk/policy-rules-standards-and-guidance/secure-by-design
3222
+ - Launched 28 July 2023, mandatory from August 2023
3223
+ - Replaces point-in-time accreditation with continual assurance
3224
+
3225
+ ## [0.3.1] - 2025-10-21
3226
+
3227
+ ### Added
3228
+
3229
+ - **Data Modeling Command**: `/arckit.data-model` for comprehensive data modeling with ERD, GDPR compliance, and data governance
3230
+ - Visual Entity-Relationship Diagram (ERD) using Mermaid syntax
3231
+ - Detailed entity catalog (E-001, E-002, etc.) with attributes, types, validation rules
3232
+ - PII identification and GDPR/DPA 2018 compliance (retention, erasure, subject access rights)
3233
+ - Data governance matrix (business owners from stakeholder RACI, stewards, custodians)
3234
+ - CRUD matrix showing which components Create/Read/Update/Delete each entity
3235
+ - Data integration mapping (upstream sources, downstream consumers)
3236
+ - Sector-specific compliance (PCI-DSS for payments, HIPAA for health, FCA for finance, Government classifications)
3237
+ - Data quality framework with measurable metrics (accuracy, completeness, consistency, timeliness, uniqueness)
3238
+ - Complete traceability: DR-xxx requirements → Entities → Attributes → Stakeholders
3239
+ - `templates/data-model-template.md` (720 lines) - Comprehensive data modeling template
3240
+ - `.claude/commands/arckit.data-model.md` - Data modeling command specification
3241
+ - `.codex/prompts/arckit.data-model.md` - Data modeling command for OpenAI Codex CLI
3242
+
3243
+ ### Changed
3244
+
3245
+ - **WORKFLOW UPDATE**: Data modeling now positioned after requirements, before vendor selection
3246
+ - Old workflow: Requirements → SOW → Vendor selection
3247
+ - New workflow: Requirements → **Data Model** → SOW → Vendor selection
3248
+ - Total command count increased from 19 to 20
3249
+
3250
+ ### Documentation
3251
+
3252
+ - Updated `README.md`:
3253
+ - Added Phase 5.5: Data Modeling
3254
+ - Updated feature list to include data modeling, risk management, and SOBC
3255
+ - Added data-model to Core Commands table
3256
+ - Updated payment gateway example workflow to include data modeling step
3257
+ - Updated project structure to include data-model.md
3258
+ - Renumbered subsequent phases (6→7, 7→8, 8→9, 9→10)
3259
+ - Updated `.claude/COMMANDS.md`:
3260
+ - Added section 6 for `/arckit.data-model`
3261
+ - Renumbered subsequent sections (6→7, 7→8, 8→9, 9→10, 10→11)
3262
+ - Updated workflow overview and best practices
3263
+ - Updated common patterns to include data modeling
3264
+ - Updated `.codex/README.md`:
3265
+ - Added Phase 5.5: Data Model
3266
+ - Updated to v0.3.1 with 20 commands
3267
+ - Updated file structure to show data-model files
3268
+ - Deployed to all 7 test repositories
3269
+
3270
+ ### Integration
3271
+
3272
+ - Data model integrates with:
3273
+ - **Input**: Requires `requirements.md` (extracts DR-xxx Data Requirements)
3274
+ - **Input**: Uses `stakeholder-drivers.md` (for data ownership RACI matrix)
3275
+ - **Input**: References `sobc.md` (for data-related costs and benefits)
3276
+ - **Output**: Feeds into `/arckit.hld-review` (validates database technology choices)
3277
+ - **Output**: Feeds into `/arckit.dld-review` (validates schema design, indexes, query patterns)
3278
+ - **Output**: Supports `/arckit.traceability` (DR-xxx → Entity → Attribute → HLD Component)
3279
+
3280
+ ## [0.3.0] - 2025-10-21
3281
+
3282
+ ### Added
3283
+
3284
+ - **Strategic Outline Business Case (SOBC) Command**: `/arckit.sobc` implementing HM Treasury Green Book 5-case model
3285
+ - Strategic Case: Problem, drivers, stakeholder goals, scope
3286
+ - Economic Case: Options analysis (Do Nothing, Minimal, Balanced, Comprehensive), benefits mapping, NPV, ROI
3287
+ - Commercial Case: Procurement strategy, Digital Marketplace routes (UK Gov)
3288
+ - Financial Case: Budget, TCO, affordability, Value for Money
3289
+ - Management Case: Governance, delivery, change management, benefits realization, risk management
3290
+ - **Risk Management Command**: `/arckit.risk` implementing HM Treasury Orange Book 2023 framework
3291
+ - Part I: 5 Risk Management Principles (Governance, Integration, Collaboration, Risk Processes, Continual Improvement)
3292
+ - Part II: Risk Control Framework (4-pillar structure)
3293
+ - 6 risk categories: Strategic, Operational, Financial, Compliance, Reputational, Technology
3294
+ - 4Ts response framework: Tolerate, Treat, Transfer, Terminate
3295
+ - 5×5 risk matrix: Inherent vs Residual risk (Likelihood × Impact)
3296
+ - Complete stakeholder integration (risk owners from RACI matrix)
3297
+ - Risk appetite compliance monitoring
3298
+ - `templates/sobc-template.md` (1,012 lines) - Comprehensive Green Book 5-case business case template
3299
+ - `templates/risk-register-template.md` (900 lines) - Comprehensive Orange Book risk register template
3300
+ - `.codex/prompts/arckit.sobc.md` - SOBC command for OpenAI Codex CLI
3301
+ - `.codex/prompts/arckit.risk.md` - Risk command for OpenAI Codex CLI
3302
+
3303
+ ### Changed
3304
+
3305
+ - **CRITICAL WORKFLOW CHANGE**: Risk assessment and business case now come BEFORE requirements
3306
+ - Old workflow: Principles → Stakeholders → Requirements
3307
+ - New workflow: Principles → Stakeholders → **Risk** → **SOBC** → Requirements
3308
+ - Updated `/arckit.requirements` to reference SOBC approval as prerequisite
3309
+ - Enhanced SOBC to use risk register for:
3310
+ - Strategic Case urgency ("Why Now?" uses strategic risks)
3311
+ - Economic Case risk-adjusted costs (optimism bias from risk scores)
3312
+ - Management Case Part E (full risk register included)
3313
+ - Recommendation (high-risk profile influences option selection)
3314
+ - Total command count increased from 17 to 19
3315
+
3316
+ ### Documentation
3317
+
3318
+ - Updated `README.md`:
3319
+ - Added Phase 3: Risk Assessment
3320
+ - Added Phase 4: Business Case Justification (SOBC)
3321
+ - Renumbered all subsequent phases
3322
+ - Added risk and SOBC to Core Commands table
3323
+ - Updated payment gateway example workflow
3324
+ - Updated project structure to include risk-register.md and sobc.md
3325
+ - Updated `.claude/COMMANDS.md`:
3326
+ - Added section 3: Risk Management (Orange Book) - 220+ lines
3327
+ - Added section 4: Strategic Outline Business Case (SOBC)
3328
+ - Renumbered all subsequent sections (requirements=5, sow=6, evaluate=7, hld=8, dld=9, traceability=10)
3329
+ - Updated workflow overview
3330
+ - Updated Best Practices to include risk and SOBC
3331
+ - Updated Common Patterns examples
3332
+ - Updated file structure reference
3333
+ - Updated `.codex/README.md`:
3334
+ - Added Phase 3: Risk Assessment (NEW - v0.3.0)
3335
+ - Added Phase 4: Business Case (updated from v0.2.3)
3336
+ - Renumbered subsequent phases
3337
+ - Added Orange Book and Green Book framework overviews
3338
+ - Documented SOBC-risk integration
3339
+ - Deployed to all 7 test repositories:
3340
+ - arckit-test-project-v0-mod-chatbot
3341
+ - arckit-test-project-v1-m365
3342
+ - arckit-test-project-v2-hmrc-chatbot
3343
+ - arckit-test-project-v3-windows11
3344
+ - arckit-test-project-v4
3345
+ - arckit-test-project-v5
3346
+ - arckit-test-project-v6-patent-system
3347
+
3348
+ ### UK Government Compliance
3349
+
3350
+ - **Green Book Compliance**: Full 5-case business case model for investment appraisal
3351
+ - Options analysis with do-nothing baseline
3352
+ - Benefits mapping to stakeholder goals
3353
+ - Digital Marketplace procurement routes
3354
+ - Social value (minimum 10% weighting)
3355
+ - Green Book discount rates (3.5% standard)
3356
+ - Optimism bias adjustment from risk assessment
3357
+ - Whole-life costs (3-year TCO)
3358
+ - **Orange Book Compliance**: Comprehensive risk management framework
3359
+ - Systematic risk identification (6 categories)
3360
+ - Inherent vs Residual risk assessment
3361
+ - 4Ts response framework (Tolerate, Treat, Transfer, Terminate)
3362
+ - Risk appetite and tolerance monitoring
3363
+ - Risk ownership from stakeholder RACI matrix
3364
+ - Continual improvement and monitoring framework
3365
+ - UK-specific risks included:
3366
+ - Strategic: Policy/ministerial changes, machinery of government, parliamentary scrutiny
3367
+ - Compliance: HMT spending controls, NAO audits, PAC scrutiny, FOI, judicial review
3368
+ - Reputational: Media scrutiny, citizen complaints, select committees
3369
+ - Operational: GDS Service Assessment, CDDO controls, security clearances
3370
+
3371
+ ### Integration
3372
+
3373
+ - Complete traceability chain: Stakeholder → Driver → Goal → Risk → Benefit → Requirement
3374
+ - Risk register feeds into SOBC Management Case Part E
3375
+ - Financial risks inform Economic Case cost contingency (optimism bias)
3376
+ - Strategic risks demonstrate urgency in Strategic Case
3377
+ - Stakeholder RACI matrix provides risk owners
3378
+ - Risk appetite compliance enables go/no-go decisions
3379
+
3380
+ ### Bug Fixes
3381
+
3382
+ - Fixed command ordering in `.claude/COMMANDS.md` (stakeholders correctly positioned before risk/SOBC)
3383
+ - Improved documentation commit messages for clarity
3384
+ - Corrected workflow documentation alignment across all files
3385
+
3386
+ ## [0.2.2] - 2025-10-20
3387
+
3388
+ ### Added
3389
+
3390
+ - **OpenAI Codex CLI Support**: Complete `.codex/` folder structure with 17 prompts for OpenAI Codex CLI users
3391
+ - `.codex/README.md` - Comprehensive 400+ line setup guide for Codex CLI
3392
+ - `OPENAI-INTEGRATION-PLAN.md` - Integration strategy document comparing Codex CLI to alternative approaches
3393
+ - Codex CLI support deployed to all 7 test repositories
3394
+ - All ArcKit commands now available with `/prompts:arckit.*` format for Codex CLI users
3395
+
3396
+ ### Changed
3397
+
3398
+ - Updated `README.md` to list OpenAI Codex CLI as supported AI agent
3399
+ - Updated `.codex/README.md` version to v0.2.2
3400
+ - Added Codex CLI usage examples throughout documentation
3401
+ - Supported AI agents increased from 4 to 5 (added Codex CLI)
3402
+
3403
+ ### Documentation
3404
+
3405
+ - Updated version references throughout documentation
3406
+
3407
+ ## [0.2.1] - 2025-10-19
3408
+
3409
+ ### Added
3410
+
3411
+ - **Stakeholder Analysis Command**: `/arckit.stakeholders` for comprehensive stakeholder driver analysis
3412
+ - `templates/stakeholder-drivers-template.md` (400+ lines) - Stakeholder analysis template with:
3413
+ - Power-Interest Grid for stakeholder identification
3414
+ - 7 types of drivers (STRATEGIC, OPERATIONAL, FINANCIAL, COMPLIANCE, PERSONAL, RISK, CUSTOMER)
3415
+ - Driver → Goal → Outcome traceability mapping
3416
+ - Conflict analysis and resolution framework
3417
+ - RACI matrix for governance
3418
+ - Engagement plan templates
3419
+ - **Conflict Resolution Framework** in requirements workflow:
3420
+ - Systematic identification of conflicting requirements
3421
+ - Trade-off analysis tables
3422
+ - 4 resolution strategies (PRIORITIZE, COMPROMISE, PHASE, INNOVATE)
3423
+ - Stakeholder management documentation (who won/lost)
3424
+ - Decision authority tracking
3425
+
3426
+ ### Changed
3427
+
3428
+ - **CRITICAL WORKFLOW CHANGE**: Stakeholder analysis now comes **BEFORE** requirements
3429
+ - Old workflow: Principles → Requirements → Design
3430
+ - New workflow: Principles → **Stakeholders** → Requirements → Design
3431
+ - Enhanced `/arckit.requirements` command to:
3432
+ - Check for stakeholder analysis first (recommends `/arckit.stakeholders` if missing)
3433
+ - Trace requirements back to stakeholder goals
3434
+ - Identify requirement conflicts stemming from stakeholder conflicts
3435
+ - Document conflict resolutions with stakeholder impact
3436
+ - Updated `templates/requirements-template.md` with:
3437
+ - "Requirement Conflicts & Resolutions" section
3438
+ - Stakeholder traceability references
3439
+ - 6 common conflict patterns with example resolutions
3440
+
3441
+ ### Documentation
3442
+
3443
+ - Updated `README.md` workflow to show stakeholders before requirements
3444
+ - Updated `.claude/COMMANDS.md` with stakeholder analysis step
3445
+ - Updated all 7 test repositories with:
3446
+ - New `/arckit.stakeholders` command
3447
+ - Enhanced requirements template
3448
+ - Updated README files showing 17 total commands
3449
+
3450
+ ## [0.2.0] - 2025-10-14
3451
+
3452
+ ### Added
3453
+
3454
+ - **UK Government Compliance Support**: Comprehensive support for UK Government frameworks
3455
+ - `/arckit.tcop` - Technology Code of Practice assessment (13 mandatory points)
3456
+ - `/arckit.ai-playbook` - AI Playbook compliance assessment (10 principles + 6 ethical themes)
3457
+ - `/arckit.atrs` - Algorithmic Transparency Recording Standard assessment
3458
+ - `/arckit.mod-secure` - MOD Secure by Design review (JSP 440, IAMM)
3459
+ - `templates/uk-gov-tcop-template.md` (718 lines) - TCoP assessment structure
3460
+ - `templates/uk-gov-ai-playbook-template.md` (853 lines) - AI Playbook assessment structure
3461
+ - `templates/uk-gov-atrs-template.md` - ATRS transparency documentation
3462
+ - `templates/mod-secure-by-design-template.md` - MOD security review template
3463
+
3464
+ ### Documentation (6,000+ lines added)
3465
+
3466
+ - `docs/principles.md` (527 lines) - Architecture Principles Guide
3467
+ - `docs/requirements.md` (628 lines) - Requirements Guide
3468
+ - `docs/procurement.md` (503 lines) - Vendor Procurement Guide
3469
+ - `docs/design-review.md` (668 lines) - Design Review Guide
3470
+ - `docs/traceability.md` (639 lines) - Traceability Guide
3471
+ - `docs/uk-government-digital-marketplace.md` (684 lines) - Digital Marketplace Guide
3472
+
3473
+ ### Changed
3474
+
3475
+ - Updated `README.md` with UK Government support section
3476
+ - Added UK Government example workflows
3477
+ - Updated supported commands from 7 to 14
3478
+
3479
+ ## [0.1.0] - 2025-10-13
3480
+
3481
+ ### Added
3482
+
3483
+ - Initial release of ArcKit
3484
+ - `/arckit.principles` - Create architecture principles
3485
+ - `/arckit.requirements` - Define comprehensive requirements
3486
+ - `/arckit.wardley` - Create Wardley Maps for strategic planning
3487
+ - `/arckit.diagram` - Generate architecture diagrams with Mermaid
3488
+ - `/arckit.sow` - Generate Statement of Work for RFPs
3489
+ - `/arckit.evaluate` - Create vendor evaluation frameworks
3490
+ - `/arckit.hld-review` - Review High-Level Design
3491
+ - `/arckit.dld-review` - Review Detailed Design
3492
+ - `/arckit.secure` - UK Government Secure by Design review
3493
+ - `/arckit.traceability` - Generate requirements traceability matrix
3494
+ - `/arckit.analyze` - Analyze architecture complexity
3495
+ - `/arckit.servicenow` - Export to ServiceNow CMDB
3496
+
3497
+ ### Templates
3498
+
3499
+ - `templates/architecture-principles-template.md`
3500
+ - `templates/requirements-template.md`
3501
+ - `templates/wardley-map-template.md`
3502
+ - `templates/architecture-diagram-template.md`
3503
+ - `templates/sow-template.md`
3504
+ - `templates/evaluation-criteria-template.md`
3505
+ - `templates/vendor-scoring-template.md`
3506
+ - `templates/hld-review-template.md`
3507
+ - `templates/dld-review-template.md`
3508
+ - `templates/ukgov-secure-by-design-template.md`
3509
+ - `templates/traceability-matrix-template.md`
3510
+
3511
+ ### CLI Tool
3512
+
3513
+ - `arckit init` command to bootstrap new projects
3514
+ - Support for Claude Code, OpenAI Codex CLI, and Gemini CLI
3515
+ - Bash and PowerShell script support
3516
+
3517
+ ### Documentation
3518
+
3519
+ - Comprehensive README.md with examples
3520
+ - Quick start guide
3521
+ - Agent compatibility matrix
3522
+
3523
+ ---
3524
+
3525
+ ## Release Links
3526
+
3527
+ - [v1.3.0](https://github.com/tractorjuice/arc-kit/releases/tag/v1.3.0) - External Document Support & Dynamic Version Placeholders
3528
+ - [v1.2.0](https://github.com/tractorjuice/arc-kit/releases/tag/v1.2.0) - Autonomous Agent System
3529
+ - [v1.0.0](https://github.com/tractorjuice/arc-kit/releases/tag/v1.0.0) - Production Release - Enterprise Architecture Governance Toolkit
3530
+ - [v0.3.1](https://github.com/tractorjuice/arc-kit/releases/tag/v0.3.1) - Data Modeling with ERD, GDPR Compliance, and Data Governance
3531
+ - [v0.3.0](https://github.com/tractorjuice/arc-kit/releases/tag/v0.3.0) - Green Book & Orange Book Edition (SOBC + Risk Management)
3532
+ - [v0.2.2](https://github.com/tractorjuice/arc-kit/releases/tag/v0.2.2) - OpenAI Codex CLI Support & Enhanced Stakeholder Analysis
3533
+ - [v0.2.1](https://github.com/tractorjuice/arc-kit/releases/tag/v0.2.1) - Stakeholder Analysis & Conflict Resolution
3534
+ - [v0.2.0](https://github.com/tractorjuice/arc-kit/releases/tag/v0.2.0) - UK Government Compliance Edition
3535
+ - [v0.1.0](https://github.com/tractorjuice/arc-kit/releases/tag/v0.1.0) - Initial Release
3536
+
3537
+ ---
3538
+
3539
+ ## Version Numbering
3540
+
3541
+ ArcKit follows [Semantic Versioning](https://semver.org/):
3542
+
3543
+ - **MAJOR** version (X.0.0): Incompatible API changes or breaking workflow changes
3544
+ - **MINOR** version (0.X.0): New features added in a backward-compatible manner
3545
+ - **PATCH** version (0.0.X): Backward-compatible bug fixes and documentation updates
3546
+
3547
+ **Examples**:
3548
+
3549
+ - v0.1.0 → v0.2.0: Added UK Government support (new features)
3550
+ - v0.2.0 → v0.2.1: Added stakeholder analysis (new feature)
3551
+ - v0.2.1 → v0.2.2: Added Codex CLI support (new feature)
3552
+ - v0.2.2 → v0.3.0: Added Green Book SOBC + Orange Book risk management (significant new features)
3553
+ - v0.3.0 → v0.3.1: Added data modeling command (new feature)
3554
+ - v0.x.x → v1.0.0: Production release with 40 commands, complete governance toolkit (major)