// Start a new tracked change. Scaffolds all required artifacts, classifies the change by risk tier, commissions the right agents in order, and runs cdd-kit gate. Args: <change description in natural language>
[HINT] Download the complete skill directory including SKILL.md and all related files
| name | cdd-new |
| description | Start a new tracked change. Scaffolds all required artifacts, classifies the change by risk tier, commissions the right agents in order, and runs cdd-kit gate. Args: <change description in natural language> |
contracts/ = the single source of truth (live ??always reflects current system behaviour)tests/ = proof the contracts hold (live)specs/changes/<id>/ = why we decided this back then (passive archive ??read only when investigating history, never as input to planning)CLAUDE.md = what this project is and how to start workEvery artifact under specs/changes/<id>/ answers WHAT and WHY, not HOW.
Soft caps (guidance, not gate-enforced):
spec.md ??200 linesdesign.md ??150 linestest-plan.md ??100 linesci-gates.md ??80 linesForbidden in spec artifacts (these belong in code/tests, not specs):
test-plan.md should contain:
design.md should contain:
The skill argument is the user's change description in natural language (e.g., "add JWT authentication to the API" or "redesign the dashboard homepage").
If no description is provided, ask the user: "Please describe the change you want to make."
Non-engineers often submit ambiguous requests like "fix the slow report" or "make it nicer". These cost a full classifier round-trip when the right move is to ask back. Before scaffolding anything, verify the request contains all three elements below. Rephrase the request internally in this shape:
| Element | Example | Required? |
|---|---|---|
| 1. Affected surface | "the order export page", "the JWT login flow" | always |
| 2. Desired behavior change | "complete in <10s", "support 2FA via TOTP" | always |
| 3. Observable success criterion | "1000-row export finishes without timeout", "user with 2FA can log in end-to-end" | always |
If any element is missing or ambiguous, STOP. Do NOT call cdd-kit new or
the classifier. Ask the user back in this exact shape:
Before I start a tracked change, I need to lock down three things:
Affected surface: <best guess from request, or empty>
Desired behavior: <best guess, or empty>
Success criterion: <empty ??please fill>
Could you confirm or fill in the missing pieces?
Only proceed to Step 1 once all three are answered or the user explicitly says
"proceed without success criterion". Record the user's clarifications verbatim
in change-request.md 禮 Original Request.
The cost of this step: 1 short message round-trip. The cost of skipping it: one full classifier+contract-reviewer cycle, often 5-10? more tokens, plus an inevitable re-classification when the agents discover the ambiguity.
This distinction is critical ??follow it for every step:
| Agent type | Who writes artifact files | Who writes optional handoff notes | Who updates tasks.yml |
|---|---|---|---|
Read-only agents (no Edit tool): change-classifier, contract-reviewer, qa-reviewer, visual-reviewer, dependency-security-reviewer, ui-ux-reviewer | YOU (main Claude) | YOU, only when useful | YOU (main Claude) |
Write-capable agents (have Edit): backend-engineer, frontend-engineer, e2e-resilience-engineer, monkey-test-engineer, stress-soak-engineer, ci-cd-gatekeeper, test-strategist, spec-architect | The agent itself | The agent itself, only when useful | YOU (main Claude) |
Rule: After EVERY agent completes (whether it writes itself or you write for it), YOU must update the relevant tasks.yml task status: from pending to done.
Agent-log pointer rule: When you or an agent writes artifacts[].pointer,
follow references/agent-log-protocol.md. If the text before the first : contains /, treat it as one repo-relative file path, and one pointer names one file only. File pointers must not
include parenthetical notes on the path, and slash-containing labels such as
I/O: or WARNING/OVERDUE: must not be used as pointer prefixes. Put extra
explanation in notes or a separate non-path artifact pointer instead.
Durable learning rule: During /cdd-new, agents record evidence and
findings in artifacts and optional handoff notes only. Do not promote durable lessons
while the change is still active. Durable learning promotion happens only during
/cdd-close Step 3, where main Claude cross-checks evidence and writes approved
rules to contracts/ or project guidance (CLAUDE.md/CODEX.md).
Only create optional artifacts (current-behavior.md, proposal.md, spec.md, design.md, qa-report.md, regression-report.md) when the classifier's change-classification.md explicitly marks them as yes.
Note: archive.md is created during /cdd-close, not during /cdd-new ??it is not part of the classifier's opt-in surface.
If the classifier marks an artifact as no or leaves it blank, do not create the file ??even if a review agent could contribute to it.
The 6 always-required artifacts are: change-request.md, change-classification.md, test-plan.md, ci-gates.md, tasks.yml, and context-manifest.md.
Derive a change-id from the description:
add-jwt-auth, redesign-dashboard-home, fix-order-export-timeoutCheck that specs/changes/<change-id>/ does not already exist. If it does, append -2 (or next available suffix).
Create the scaffold with the CLI so every provider gets the same templates:
cdd-kit new <change-id>
cdd-kit new auto-runs cdd-kit context-scan when specs/context/ indexes are missing or stale. Do not run a second scan unless the command warned that context-scan failed, or you intentionally used --skip-scan.
Verify these files exist:
specs/changes/<change-id>/context-manifest.mdspecs/context/project-map.mdspecs/context/contracts-index.mdIf either context index is still missing, run:
cdd-kit context-scan
Do not use broad search or ad hoc reads to classify the change before context-scan has completed.
The generated scaffold contains the artifacts listed in the table below. All
templates are written from disk by cdd-kit new ??do not paste template bodies
into this prompt. The on-disk source of truth lives in specs/templates/ of
the kit and is bundled into every install.
| File | Source | Your job |
|---|---|---|
change-request.md | specs/templates/change-request.md | Fill the ## Original Request section with the user's exact description before invoking the classifier; leave the rest blank |
change-classification.md | specs/templates/change-classification.md | Replace blank template with classifier output (Step 2) |
test-plan.md | specs/templates/test-plan.md | test-strategist writes this directly |
ci-gates.md | specs/templates/ci-gates.md | ci-cd-gatekeeper writes this directly |
tasks.yml | specs/templates/tasks.yml | Tick checkboxes as agents complete; backfill tier: frontmatter from classifier (Step 2.4) |
context-manifest.md | specs/templates/context-manifest.md | Replace from classifier ## Context Manifest Draft (Step 2) |
If cdd-kit new reports a missing template, run cdd-kit upgrade --yes.
Invoke change-classifier agent with:
specs/changes/<change-id>/change-request.mdspecs/changes/<change-id>/context-manifest.mdspecs/context/project-map.mdspecs/context/contracts-index.mdDo not authorize the classifier to read contracts/, src/, tests/, or broad repository search during initial classification. It must use the context indexes to propose candidate paths.
The classifier must include a ## Context Manifest Draft section with:
change-classifier is read-only ??it will return its output as text.
## Atomic Split ProposalThe classifier has decided this request is too big for a single change. Do
NOT proceed with the rest of /cdd-new. Instead:
## Atomic Split Proposal table verbatim.cdd-kit new <change-id> with
the listed --depends-on./cdd-new
against the first one now?" ??wait for confirmation; do not auto-loop.force-monolithic appended to the
change-request and proceed with whatever Tier the classifier returns.cdd-kit list.Before writing any files, verify the classifier response contains:
## Tier followed by - N where N is a single digit 0-5 (NOT 0 / 1 / 2 / 3 / 4 / 5 ??that is the unfilled placeholder).## Required Agents with at least one agent name.## Inferred Acceptance Criteria with at least one filled `AC-1: ?圳 line.If any of these are missing or still hold the literal placeholder text, STOP. Re-prompt the classifier with the missing pieces named explicitly. Do NOT write classification.md ??gate will reject it as a stub anyway and you will have wasted the round-trip.
specs/changes/<change-id>/change-classification.md ??replace the blank template with the classifier's classification output.specs/changes/<change-id>/agent-log/change-classifier.yml only if the classifier returned useful handoff evidence.specs/changes/<change-id>/context-manifest.md from the classifier's ## Context Manifest Draft.tasks.yml frontmatter: set tier: <N> to the classifier's tier digit. This is now the authoritative source for quality-gate tier checks (the classification.md ## Tier section is fallback only).tasks.yml item 1.1.Wait until these five writes are done before continuing.
After writing change-classification.md: read the classifier's ## Tasks Not Applicable list. For each listed task ID (e.g., 2.2, 4.2), update tasks.yml to change that item's status: from pending to skipped. Do this before invoking any other agent.
Read change-classification.md to determine the tier. Then invoke agents in the exact order below.
For each read-only agent: wait for its text response ??YOU write its artifact file(s) ??YOU write an optional handoff note when useful ??YOU tick relevant tasks.yml item(s).
For each write-capable agent: wait for it to confirm completion ??YOU tick relevant tasks.yml item(s).
If any agent reports blocked, halt immediately and surface its concrete next action to the user ??do not proceed to subsequent agents.
When invoking any agent, always begin the prompt with:
CURRENT_CHANGE_ID: <change-id>
Change directory: specs/changes/<change-id>/
This ensures the agent's Read scope restriction points to the correct directory.
Before invoking an agent, preflight any concrete paths you already expect that agent to read:
cdd-kit context check <change-id> --path <repo-relative path> [more paths...]
If the check fails and the paths are legitimate work scope, update
context-manifest.md ## Allowed Paths or approve a Context Expansion Request
before the agent reads them. This keeps read scope explicit before broad source
access, especially for UI components/stores/views or CI workflow files.
After every agent returns, complete the closeout before starting the next agent:
blocked, halt and surface its concrete next actiontasks.yml items immediatelyWhen you announce that you are about to invoke an agent, prefix the announcement with the matching emoji + role tag from the table below. This helps a non-engineer scanning the chat stream tell what stage they are in without reading the full prompt. Use the badges only in your own narration to the user; do not put them inside the prompt sent to the agent.
| Stage | Agent | Badge |
|---|---|---|
| Decision | change-classifier | ? [classifier] |
| Decision | spec-architect | ? [architect] |
| Implementation | backend-engineer | ? [backend] |
| Implementation | frontend-engineer | ? [frontend] |
| Implementation | ci-cd-gatekeeper | ? [ci-cd] |
| Implementation | test-strategist | ? [test-plan] |
| Heavy testing (Tier 0?? only) | e2e-resilience-engineer | ?? [e2e] |
| Heavy testing (Tier 0?? only) | monkey-test-engineer | ?? [monkey] |
| Heavy testing (Tier 0?? only) | stress-soak-engineer | ?? [stress] |
| Review | contract-reviewer | ? [contracts] |
| Review | qa-reviewer | ? [qa] |
| Review | ui-ux-reviewer | ? [ui-ux] |
| Review | visual-reviewer | ? [visual] |
| Review | dependency-security-reviewer | ? [deps-sec] |
| Audit | spec-drift-auditor | ??[drift] |
| Audit | repo-context-scanner | ??[repo-scan] |
Color semantics:
opus)sonnet implementation)sonnet)Format: emoji is followed by a single space, then the bracket-tag, then the human-readable narration.
Examples:
? [classifier] Reading the request and project map??? [contracts] Confirming the API contract is unchanged. (read-only)
? [backend] Implementing the JWT issuance endpoint and writing failing
tests first per TDD policy.
?? [stress] Tier 1 high-risk change ??running soak test for 30 min.
These badges are pure narration. They MUST NOT be sent inside the agent's
prompt; the agent's behavior is defined by the agent prompt files in
.claude/agents/<name>.md, not by this badge.
contract-reviewer (read-only) ??confirm no contracts are touched or all touched ones are already updated.
agent-log/contract-reviewer.yml1.2, applicable items in section 2qa-reviewer (read-only) ??confirm release readiness.
agent-log/qa-reviewer.yml5.4contract-reviewer (read-only) ??update or create contracts in contracts/ before any implementation starts.
agent-log/contract-reviewer.yml1.2, applicable items in section 2test-strategist (write-capable) ??writes specs/changes/<change-id>/test-plan.md directly.
## Inferred Acceptance Criteria list to test-strategist. These become the criterion id column in the Acceptance Criteria ??Test Mapping table.spec-architect (write-capable) ??only if change-classification.md contains Architecture Review Required: yes.
1.3 (if it produced a gate plan)backend-engineer (write-capable) ??if the change touches server, API, data, or business logic. Writes implementation directly; may write an optional handoff note.
4.1 and/or 4.3 based on scopetasks.yml items 3.1??.2 (unit/contract/integration tests) are written by backend-engineer and/or frontend-engineer in TDD fashion ??failing tests first, implementation second. Items 3.3??.5 are written by dedicated test engineers (Tier 0?? only or when classifier explicitly requires them).frontend-engineer (write-capable) ??if the change touches UI, components, or client-side behavior. Writes implementation directly; may write an optional handoff note.
4.2dependency-security-reviewer (read-only) ??if the change touches lockfiles, package manifests, or DB migrations.
change-classification.md lists lockfiles, package manifests, or DB migrations as affected.agent-log/dependency-security-reviewer.ymlui-ux-reviewer (read-only) ??if any UI change (run alongside or after frontend-engineer).
agent-log/ui-ux-reviewer.yml5.1visual-reviewer (read-only) ??if any UI change (run after ui-ux-reviewer).
agent-log/visual-reviewer.yml5.2ci-cd-gatekeeper (write-capable) ??writes specs/changes/<change-id>/ci-gates.md directly.
1.3, 4.4, applicable items in section 6qa-reviewer (read-only) ??release readiness decision (always last).
agent-log/qa-reviewer.yml5.4All agents from Tier 2??, plus insert these after frontend-engineer / backend-engineer and before dependency-security-reviewer:
e2e-resilience-engineer (write-capable) ??E2E, failure-injection, data-boundary tests. May write an optional handoff note.
3.3monkey-test-engineer (write-capable) ??adversarial input, fuzz, rapid-UI-action tests. May write an optional handoff note.
3.4stress-soak-engineer (write-capable) ??load, soak, and long-running stability tests. May write an optional handoff note.
3.5Agent commission rules:
frontend-engineer, ui-ux-reviewer, visual-reviewerbackend-engineerqa-report.md; QA may only approve this as approved-with-risk.Resuming from blocked: After the user resolves the blocking issue, re-invoke the blocked agent (do not restart from Step 1). Continue with the remaining agents in their original order.
After all required agents have completed and all tasks.yml items for their sections are ticked:
cdd-kit gate <change-id>
If gate passes:
tasks.yml item 6.1If gate fails ??structured fix-back routing:
Capture gate's full stderr verbatim. Parse error lines and route each to the right owner. The patterns below are exhaustive ??every gate error message matches one of them.
| Error pattern | Route to | Re-invocation prompt seed |
|---|---|---|
| `change-classification.md: ?圳 | change-classifier | "PREVIOUS CLASSIFICATION FAILED GATE: . Re-emit only the failing section." |
| `context-manifest.md: ?圳 | change-classifier | "PREVIOUS MANIFEST FAILED GATE: . Re-emit ## Context Manifest Draft." |
| `tasks.yml: ?圳 (frontmatter / pending) | YOU (main Claude) ??direct edit | n/a ??fix tasks.yml yourself. Don't re-invoke an agent for a file you own. |
dependency <id>: upstream change is not completed | n/a ??STOP | Tell user: "Upstream change <id> must complete before this change can gate. Run /cdd-new <id> first or run cdd-kit archive <id> if it's already done." |
validators returned non-zero | contract-reviewer | "PREVIOUS CONTRACT VALIDATION FAILED: <last 10 lines of validator stderr>. Reconcile contracts." |
Re-invocation prompt template (always use this exact prefix when re-invoking an agent for fix-back):
CURRENT_CHANGE_ID: <change-id>
Change directory: specs/changes/<change-id>/
PREVIOUS GATE FAILURE FOR THIS AGENT (re-invocation):
<the exact gate error line(s) tied to this agent>
FIX TARGET:
<the specific file or section that needs to change>
REFERENCES:
- references/agent-log-protocol.md (optional handoff note format, only if useful)
- references/<agent-specific-standard>.md (if applicable)
Fix this exact issue without re-doing your prior work. Re-output only the
section that changed plus any updated handoff note, if useful.
After re-invoking, re-run cdd-kit gate <change-id>. Repeat up to 3 times. Each
iteration must be on a strictly smaller error set ??if the same error returns
twice, halt and surface to user (an agent stuck in a loop is more expensive
than a human read).
Terminal state after 3 failures: Update tasks.yml frontmatter with
status: gate-blocked and report all remaining errors to the user, grouped
by responsible agent, so they know who to manually direct next.
Output a final summary:
## /cdd-new complete
Change ID: <change-id>
Risk tier: <tier>
Agents invoked: <list in order>
Gate: PASSED
Tasks completed:
- [x] all applicable items have status: done in specs/changes/<change-id>/tasks.yml
All artifacts written to: specs/changes/<change-id>/
Next step:
git add specs/changes/<change-id>/
git add <any implementation files changed>
git commit -m "feat(<change-id>): <one-line description>"
If gate did not pass after 3 iterations:
## /cdd-new ??gate blocked
Change ID: <change-id>
Gate failed after 3 attempts.
Blocking items:
- <item 1>
- <item 2>
Please review the above items and re-run: cdd-kit gate <change-id>
contract-reviewer has completed for Tier 0?? changestest-plan.md for Tier 0?? changesci-gates.md for any implementation changetasks.yml checkbox immediately after each agent completes ??do not batchqa-reviewer always runs last and makes the release-readiness decisionThe /cdd-new workflow is now complete. Return to normal assistant mode immediately. Answer any question the user asks ??including questions unrelated to this change, new feature discussions, debugging help, or general conversation ??without requiring them to use a specific command. The git commit shown in the report is a suggestion, not a required next step; do not wait for it before resuming normal behavior.
When the change is merged and ready to close, run /cdd-close <change-id> to promote durable learnings to contracts/ or project guidance (CLAUDE.md/CODEX.md) and archive the change directory.