name	contract-driven-delivery
description	contract-driven delivery workflow for brownfield full-stack systems. use when handling software requests that require specification-driven development, test-driven development, api/css/env/data/business contracts, ci/cd gates, frontend visual review, e2e/resilience/monkey/stress/soak testing, qa fixback loops, or multi-iteration spec drift control.

Contract-Driven Delivery

Purpose

Use this skill to turn software requests into traceable, testable, CI/CD-gated changes. This skill is optimized for brownfield internal production systems such as dashboards, reporting apps, workflow tools, and data-heavy full-stack applications.

Workflow decision tree

Classify the request.
- Use references/workflow-router.md.
- Create or update change-classification.md.
- Invoke change-classifier to perform classification.
Scan project context.
- Use scripts/detect_project_profile.py when useful.
- Capture stack, commands, contracts, tests, and CI/CD.
- Invoke repo-context-scanner to capture project profile and standardization gaps.
Select required artifacts.
- Use templates in templates/.
- Do not force every artifact for tiny changes, but do require change-classification.md, test-plan.md, and ci-gates.md for implementation changes.
Update contracts before or alongside implementation. Invoke contract-reviewer to validate API/CSS/env/data/business/CI-CD contracts before or alongside implementation.
- API: references/api-contract-standard.md
- CSS/UI: references/css-contract-standard.md
- Env: references/env-contract-standard.md
- Data/report shape: references/data-contract-standard.md
- Business logic: references/business-logic-standard.md
- CI/CD: references/ci-cd-policy.md
- Deps/migrations: invoke dependency-security-reviewer whenever the change touches lockfiles, dependency manifests, or database migrations.
Apply SDD + TDD discipline and commission test engineers.
- Use references/sdd-tdd-policy.md.
- Tests should be planned before implementation and should fail first when feasible.
- test-strategist authors the test plan (write target: specs/changes//test-plan.md only).
- e2e-resilience-engineer implements E2E, failure-injection, and data-boundary tests.
- monkey-test-engineer implements adversarial-input, fuzz, and rapid-UI-action tests.
- stress-soak-engineer implements load, soak, and long-running stability tests.
- Invoke the relevant test engineer(s) before or alongside implementation based on the risk tier.
- Each engineer must read the matching standard before authoring tests: e2e-resilience-engineer → references/e2e-standard.md, monkey-test-engineer → references/monkey-operation-standard.md, stress-soak-engineer → references/stress-soak-standard.md.
Implement through the right role.
- Backend/frontend work must follow contracts and tests.
- Before invoking an agent with known concrete read paths, run cdd-kit context check <change-id> --path <paths...> and expand the manifest before the agent reads legitimate missing paths.
- After each agent finishes, verify the required artifact files exist and tick the related tasks.yml items before starting the next agent.
- UI changes require UI/UX and visual review.
- Invoke ui-ux-reviewer for interaction, copy, accessibility, and information hierarchy review whenever UI changes.
- Invoke visual-reviewer for layout, responsive, CSS contract, and screenshot diff review whenever UI changes.
- If implementation reveals an unexpected boundary or architectural constraint, halt and re-invoke spec-architect before continuing.
Run quality gates.
- Use references/qa-gates.md.
- CI/CD gate plan is mandatory.
- qa-reviewer decides release readiness; Tier 1 gates must be green; Tier 3+ gates must be green or explicitly deferred with a recorded promotion policy.
- Invoke ci-cd-gatekeeper to design and enforce the gate plan.
Archive and audit drift.
- Use references/spec-drift-policy.md.
- General agents record evidence and findings only; durable learning promotion happens only during /cdd-close Step 3.
- Durable learnings must be promoted back to contracts/ or project guidance (CLAUDE.md/CODEX.md).
- spec-drift-auditor must run before every release to main and weekly during active multi-iteration development.

Required gates by risk

Low-risk documentation or prompt-only change

classification
affected artifact list
no implementation gate unless code behavior changes

Normal feature or enhancement

classification
current behavior if modifying existing feature
proposal/spec/design as needed
contracts
test-plan
ci-gates
tasks
QA report

UI change

CSS/UI contract review
UI/UX review
visual review evidence
E2E or component interaction coverage
accessibility check
See references/visual-review-standard.md for the required state matrix.

API/backend/data/report change

API contract or data-shape contract
unit, contract, integration tests
route validation and fuzz tests for user-controlled inputs
E2E or smoke path when user-visible
CI/CD gate update

High-risk production-reality change

Required when the change involves report generation, large queries, auto-refresh, cache, queues, workers, DB pools, exports, imports, long-running sessions, or concurrency.

resilience tests
data-boundary tests
monkey-operation tests
stress tests
soak tests or scheduled long-run gate
telemetry and threshold plan

Output discipline

When using this skill, produce concrete artifact content instead of vague recommendations. Include exact files to create/update, exact gates to run, exact commands if detectable, and exact acceptance criteria.

Scripts

scripts/detect_project_profile.py: inspect a repository and emit a Markdown project profile.
scripts/generate_change_scaffold.py: create a change folder from templates.
scripts/validate_contracts.py: check for required contract files.
scripts/validate_env_contract.py: check env contract basics.
scripts/validate_ci_gates.py: check ci-gates.md structure.
scripts/validate_spec_traceability.py: check coarse traceability between spec, tasks, tests, and CI gates.

Run scripts with Python 3 from the repository root.

Output discipline (file formats)

tasks.yml: structured YAML, validated by src/schemas/tasks.schema.ts.
agent-log/<agent>.yml: optional structured handoff note per references/agent-log-protocol.md.
All other change artifacts remain markdown prose.

name	contract-driven-delivery
description	contract-driven delivery workflow for brownfield full-stack systems. use when handling software requests that require specification-driven development, test-driven development, api/css/env/data/business contracts, ci/cd gates, frontend visual review, e2e/resilience/monkey/stress/soak testing, qa fixback loops, or multi-iteration spec drift control.