governance: add Quiet Shell/No Streaming policy; update AGENTS templates; add audit advisory for noisy commands; log in DevLog
Some checks failed
ci / test (push) Has been cancelled
Some checks failed
ci / test (push) Has been cancelled
This commit is contained in:
@@ -230,3 +230,11 @@ This log is concise and structured for quick machine parsing and summarization.
|
|||||||
- Enhanced audit script to check sequencing gates and warn when pending
|
- Enhanced audit script to check sequencing gates and warn when pending
|
||||||
- next:
|
- next:
|
||||||
- Await “Approved for Plan” on 02-branching proposal before executing the plan
|
- Await “Approved for Plan” on 02-branching proposal before executing the plan
|
||||||
|
|
||||||
|
## 2025-09-17T17:34Z
|
||||||
|
- context: Silence chat streaming of file contents/diffs
|
||||||
|
- actions:
|
||||||
|
- Strengthened system prompts and templates with “Quiet Shell/No Streaming” rules
|
||||||
|
- Added audit advisory to flag usage of `cat`/`sed -n` in scripts
|
||||||
|
- next:
|
||||||
|
- Avoid printing file contents via shell; log details to DevLog when needed
|
||||||
|
|||||||
@@ -4,6 +4,7 @@
|
|||||||
- Gates: human `.md` must include exact phrases — Questions: "Approved for Proposal"; Proposal: "Approved for Plan"; Plan: "Approved to Implement".
|
- Gates: human `.md` must include exact phrases — Questions: "Approved for Proposal"; Proposal: "Approved for Plan"; Plan: "Approved to Implement".
|
||||||
- Read `.llm.md` only; write both `.md` and `.llm.md` siblings for collab artifacts.
|
- Read `.llm.md` only; write both `.md` and `.llm.md` siblings for collab artifacts.
|
||||||
- Chat ≤5 lines; default “Updated <filepath>…”; no diffs; announce only collab file changes; log details in `docs/devlog/`.
|
- Chat ≤5 lines; default “Updated <filepath>…”; no diffs; announce only collab file changes; log details in `docs/devlog/`.
|
||||||
|
- Quiet shell: avoid `cat`/`sed` outputs; use silent checks; log details to DevLog files.
|
||||||
- Keep changes minimal and focused; adopt TDD (tests first); require unit/integration tests for all features; consistent style.
|
- Keep changes minimal and focused; adopt TDD (tests first); require unit/integration tests for all features; consistent style.
|
||||||
- Git: Conventional Commits; branch `main`; optional tags `YYYY-MM-DD-HHMM`.
|
- Git: Conventional Commits; branch `main`; optional tags `YYYY-MM-DD-HHMM`.
|
||||||
- Tools: file-first; use `rg`; read ≤250 lines; respect sandbox/approvals; preface grouped commands.
|
- Tools: file-first; use `rg`; read ≤250 lines; respect sandbox/approvals; preface grouped commands.
|
||||||
|
|||||||
@@ -38,6 +38,7 @@ Note: This is a template copied into generated projects. Customize as needed for
|
|||||||
- Default message: `Updated <filepath>. Read/edit and let me know.`
|
- Default message: `Updated <filepath>. Read/edit and let me know.`
|
||||||
- Keep chat ≤5 lines; no diffs or large pastes.
|
- Keep chat ≤5 lines; no diffs or large pastes.
|
||||||
- Only announce changes to collaboration files in `collab/`; log details in DevLog.
|
- Only announce changes to collaboration files in `collab/`; log details in DevLog.
|
||||||
|
- Quiet shell: avoid streaming file contents/diffs; prefer silent checks and log details to DevLog.
|
||||||
|
|
||||||
## Tooling and Safety
|
## Tooling and Safety
|
||||||
- Use filesystem-first workflow; prefer `rg` for search; read files in ≤250-line chunks.
|
- Use filesystem-first workflow; prefer `rg` for search; read files in ≤250-line chunks.
|
||||||
|
|||||||
@@ -48,3 +48,7 @@
|
|||||||
|
|
||||||
-- Audits --
|
-- Audits --
|
||||||
- Run regular audits and prompt user before release tags. Record results in `docs/audits/`; summarize in DevLog.
|
- Run regular audits and prompt user before release tags. Record results in `docs/audits/`; summarize in DevLog.
|
||||||
|
|
||||||
|
-- Quiet Shell/No Streaming --
|
||||||
|
- Never stream file contents/diffs in chat. Avoid `cat`/`sed` outputs.
|
||||||
|
- Use silent checks (exit codes, `grep -q`); log details in DevLog files.
|
||||||
|
|||||||
@@ -31,6 +31,11 @@ You are a coding agent running in the Codex CLI (terminal-based). Be precise, sa
|
|||||||
- Only announce changes to `collab/questions/`, `collab/proposals/`, and `collab/plan/`. Log all other details in `docs/devlog/`.
|
- Only announce changes to `collab/questions/`, `collab/proposals/`, and `collab/plan/`. Log all other details in `docs/devlog/`.
|
||||||
- Provide brief preambles before grouped tool calls.
|
- Provide brief preambles before grouped tool calls.
|
||||||
|
|
||||||
|
## Quiet Shell and No Streaming
|
||||||
|
- Do not stream file contents or diffs into chat. Avoid `cat`/`sed` output in chat.
|
||||||
|
- Prefer silent checks (e.g., `grep -q`, exit codes) and write details to DevLog files if needed.
|
||||||
|
- If content must be inspected, avoid printing it to chat; summarize findings in DevLog and reference the file.
|
||||||
|
|
||||||
## Dev Logs and Docs
|
## Dev Logs and Docs
|
||||||
- Maintain `docs/devlog/DEVLOG_LLM.md` and `docs/devlog/DEVLOG_HUMAN.md`. Add an entry for each meaningful change.
|
- Maintain `docs/devlog/DEVLOG_LLM.md` and `docs/devlog/DEVLOG_HUMAN.md`. Add an entry for each meaningful change.
|
||||||
- Keep `README.md` up to date for quickstart and usage.
|
- Keep `README.md` up to date for quickstart and usage.
|
||||||
|
|||||||
@@ -38,6 +38,13 @@ check "Gitea workflow exists" test -f .gitea/workflows/ci.yml
|
|||||||
# Docker compose for local parity
|
# Docker compose for local parity
|
||||||
check "docker/compose.yml exists" test -f docker/compose.yml
|
check "docker/compose.yml exists" test -f docker/compose.yml
|
||||||
|
|
||||||
|
# Quiet shell policy (advisory): ensure no scripted chat streaming helpers exist
|
||||||
|
if command -v rg >/dev/null 2>&1; then
|
||||||
|
if rg -n "\b(cat|sed\s+-n)\b" scripts 2>/dev/null | grep -v audit.sh >/dev/null 2>&1; then
|
||||||
|
echo "[warn] scripts contain cat/sed -n; ensure these are not used to stream contents into chat" >&2
|
||||||
|
fi
|
||||||
|
fi
|
||||||
|
|
||||||
# Sequencing gates: for each plan, ensure corresponding proposal approved; for each proposal, ensure questions approved
|
# Sequencing gates: for each plan, ensure corresponding proposal approved; for each proposal, ensure questions approved
|
||||||
status_warn=0
|
status_warn=0
|
||||||
for plan in collab/plan/*.md; do
|
for plan in collab/plan/*.md; do
|
||||||
|
|||||||
@@ -19,6 +19,7 @@ This file is copied by scaffolding into new projects. Edit to suit the project w
|
|||||||
## Chat Output Policy
|
## Chat Output Policy
|
||||||
- Default: `Updated <filepath>. Read/edit and let me know.`
|
- Default: `Updated <filepath>. Read/edit and let me know.`
|
||||||
- Keep chat ≤5 lines; no diffs; announce only collab file changes; log details in DevLog.
|
- Keep chat ≤5 lines; no diffs; announce only collab file changes; log details in DevLog.
|
||||||
|
- Quiet shell: avoid printing file contents/diffs; prefer silent checks and DevLog summaries.
|
||||||
|
|
||||||
## Coding, Tests, and Git
|
## Coding, Tests, and Git
|
||||||
- Minimal, focused changes; adopt TDD (write tests first) and require unit/integration tests for all features; consistent style.
|
- Minimal, focused changes; adopt TDD (write tests first) and require unit/integration tests for all features; consistent style.
|
||||||
|
|||||||
Reference in New Issue
Block a user