feat(team): comprehensive PR-gate + 100% coverage + e2e + identity-tag mechanics #7

Merged

claude-ceo-assistant merged 1 commits from feat/team-ops-comprehensive-spine into main

2026-05-09 06:47:56 +00:00

Author	SHA1	Message	Date
claude-ceo-assistant (Claude Opus 4.7 on Hongming's MacBook)	5cfeb65fc1	feat(team): comprehensive PR-gate + 100% coverage + e2e + identity-tag mechanics Per Hongming's audit directive (2026-05-09): make the core team operate-by-mechanism rather than self-report. ## SHARED_RULES.md §PR Merge Approval Gate (extended) - Tag prefix corrected: `[<team>-qa-agent]` etc., not bare `[qa-agent]`. Bare unprefixed tags rejected by lint. Each persona has its own Gitea identity (post-2026-05-06; feedback_per_agent_gitea_identity_default), so the tag reflects who actually authored. - Coverage bar bumped 80% → 100% per-changed-file. Aggregate doesn't satisfy. Doc-only files exempt. - e2e gate added: PRs touching workspace-server/canvas/workspace/ controlplane/plugins MUST run the matching tests/e2e/test_*.sh and the QA approval comment MUST report `e2e: <suite>=pass`. - §Issue Discipline tightened to a 5-min SLA. The orchestrator cross-checks Loki finding-events vs Gitea issue creates and files a [missed-finding] issue when a finding event has no matching issue. - §PR Template requirement added (links to .gitea/pull_request_template.md in internal + molecule-core; scripts-lint enforces). - §Identity Tag updated: "GitHub" → "Gitea"; mechanical-parsing rationale spelled out. ## dev-lead/core-lead/schedules/orchestrator-pulse.md (rewritten) - Replaces "merge CI-green PRs FIRST" with the four-condition gate-check sequence (CI green AND [core-qa-agent] ✅ AND [core-security-agent] ✅ AND [core-uiux-agent] ✅-or-N/A). - Force-merge call-out: explicitly fires incident.force_merge to Loki and reports to orchestrator (audit-force-merge.scripts). - Reviewer-rotation §SOP-10 check before approving. - Structured-logging report at end of each pulse so the orchestrator can monitor team behavior in Loki. - Fixes duplicate "Step 2" (was both SCAN TEAM STATE and REVIEW OPEN PRs). ## dev-lead/core-lead/core-qa/system-prompt.md - IDENTITY TAG header points at the gate-parsing role. - 100% per-changed-file coverage codified. - e2e mandatory on platform-touching PRs. - New §PR Review section: required comment-on-every-open-PR each cycle with one of three exact forms (APPROVED/CHANGES/N-A). ## dev-lead/core-lead/core-security/system-prompt.md - Same identity-tag fix. - File findings as Gitea issues (was "GitHub issues") within 5 min. - Required PR review on every PR touching auth/middleware/db/handlers/ plugin-install; quick-N/A on the rest. - New §PR Review section with the three exact comment forms. Tier: medium (changes how 9 personas behave; spine of dev tree). Verification: - Markdown structurally consistent - All edits surgical — no per-engineer prompt changes (those follow naturally from SHARED_RULES.md) - live verification deferred to Layer C (when workspaces actually boot with the new prompts)	2026-05-08 23:47:28 -07:00

Author

SHA1

Message

Date

claude-ceo-assistant (Claude Opus 4.7 on Hongming's MacBook)

5cfeb65fc1

feat(team): comprehensive PR-gate + 100% coverage + e2e + identity-tag mechanics

Per Hongming's audit directive (2026-05-09): make the core team
operate-by-mechanism rather than self-report.

## SHARED_RULES.md §PR Merge Approval Gate (extended)
- Tag prefix corrected: `[<team>-qa-agent]` etc., not bare `[qa-agent]`.
  Bare unprefixed tags rejected by lint. Each persona has its own
  Gitea identity (post-2026-05-06; feedback_per_agent_gitea_identity_default),
  so the tag reflects who actually authored.
- Coverage bar bumped 80% → 100% per-changed-file. Aggregate
  doesn't satisfy. Doc-only files exempt.
- e2e gate added: PRs touching workspace-server/canvas/workspace/
  controlplane/plugins MUST run the matching tests/e2e/test_*.sh
  and the QA approval comment MUST report `e2e: <suite>=pass`.
- §Issue Discipline tightened to a 5-min SLA. The orchestrator
  cross-checks Loki finding-events vs Gitea issue creates and files
  a [missed-finding] issue when a finding event has no matching
  issue.
- §PR Template requirement added (links to .gitea/pull_request_template.md
  in internal + molecule-core; scripts-lint enforces).
- §Identity Tag updated: "GitHub" → "Gitea"; mechanical-parsing
  rationale spelled out.

## dev-lead/core-lead/schedules/orchestrator-pulse.md (rewritten)
- Replaces "merge CI-green PRs FIRST" with the four-condition
  gate-check sequence (CI green AND [core-qa-agent] ✅ AND
  [core-security-agent] ✅ AND [core-uiux-agent] ✅-or-N/A).
- Force-merge call-out: explicitly fires incident.force_merge to
  Loki and reports to orchestrator (audit-force-merge.scripts).
- Reviewer-rotation §SOP-10 check before approving.
- Structured-logging report at end of each pulse so the
  orchestrator can monitor team behavior in Loki.
- Fixes duplicate "Step 2" (was both SCAN TEAM STATE and REVIEW
  OPEN PRs).

## dev-lead/core-lead/core-qa/system-prompt.md
- IDENTITY TAG header points at the gate-parsing role.
- 100% per-changed-file coverage codified.
- e2e mandatory on platform-touching PRs.
- New §PR Review section: required comment-on-every-open-PR each
  cycle with one of three exact forms (APPROVED/CHANGES/N-A).

## dev-lead/core-lead/core-security/system-prompt.md
- Same identity-tag fix.
- File findings as Gitea issues (was "GitHub issues") within 5 min.
- Required PR review on every PR touching auth/middleware/db/handlers/
  plugin-install; quick-N/A on the rest.
- New §PR Review section with the three exact comment forms.

Tier: medium (changes how 9 personas behave; spine of dev tree).

Verification:
- Markdown structurally consistent
- All edits surgical — no per-engineer prompt changes (those
  follow naturally from SHARED_RULES.md)
- live verification deferred to Layer C (when workspaces actually
  boot with the new prompts)

2026-05-08 23:47:28 -07:00

feat(team): comprehensive PR-gate + 100% coverage + e2e + identity-tag mechanics #7

1 Commits