Merge pull request #5 from shobman/feature/aidos-versioning

shobman · web-flow · commit 894f49da989f · 2026-04-16T13:49:30.000+10:00
feat(versioning): introduce AIDOS framework versioning and migrations
diff --git a/.gitattributes b/.gitattributes
@@ -0,0 +1 @@
+VERSION text eol=lf
diff --git a/.gitignore b/.gitignore
@@ -9,3 +9,7 @@ Thumbs.db
 *.swo
 *~
 skills/dist/
+
+# Internal planning artifacts — not shipped in the public repo
+.claude/
+docs/superpowers/
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -35,3 +35,17 @@ separate session.
 ```
 
 The `.aidos/manifest.json` in your project configures both the GitHub MCP Connector's `write` strategy and the Confluence publish target (if used). See each connector's README for the manifest fields.
+
+## Migrations
+
+When modifying templates, rubrics, naming conventions, or artifact structure in `src/prompts/`, `src/templates/`, `src/rubrics/`, `src/framework.md`, or `skills/`:
+
+1. Determine if the change affects the structure or naming of generated artifacts, or the metadata block. If yes, this is a **minor** version bump.
+2. Increment the middle segment in the repo-root `VERSION` file (e.g. `1.0.0` → `1.1.0`).
+3. Create a migration file at `src/migrations/vX.Y.Z-to-vX.Y+1.0.md` (e.g. `v1.0.0-to-v1.1.0.md`) following the format in `src/migrations/README.md`. Write the instructions so an AI agent can apply them to a single artifact file at a time.
+4. Update the `**AIDOS Version:** X.Y.Z` placeholder in any affected template to keep it in sync with `VERSION`.
+5. If the change is wording-only with no structural impact (rubric clarifications, prompt tweaks), it's a **patch** bump — increment the last segment of `VERSION`. No migration file needed.
+
+Major version bumps (e.g. `1.x.x` → `2.0.0`) are reserved for fundamental redesigns where automated migration may not be feasible. If you think you're looking at a major bump, stop and discuss it before proceeding — major bumps are not in scope for the current framework generation.
+
+After a version bump, tag the repo: `git tag vX.Y.Z`.
diff --git a/VERSION b/VERSION
@@ -0,0 +1 @@
+1.0.0
diff --git a/skills/auditor/SKILL.md b/skills/auditor/SKILL.md
@@ -31,6 +31,7 @@ When the user presents an artifact for review, you:
 | `rubrics/definition.md` | Definition rubric (F1–F8). Maintenance lens criteria for post-delivery Definitions. |
 | `templates/retrospective.md` | Retrospective template for rubric evolution. |
 | `CONTRIBUTING.md` | How to propose rubric changes — the contribution model for evolving the framework. |
+| `VERSION` | **Framework version.** Plain-text file containing the current AIDOS framework semver (e.g. `1.0.0`). Read on session start — used to compare against the audited file's `AIDOS Version` metadata. |
 
 ## Environment
 
diff --git a/skills/build.ps1 b/skills/build.ps1
@@ -21,6 +21,7 @@ function Fix-PromptPaths {
     $content = Get-Content $File -Raw
     $content = $content -replace '`src/rubrics/', '`rubrics/'
     $content = $content -replace '`src/templates/', '`templates/'
+    $content = $content -replace '`src/migrations/', '`migrations/'
     $content = $content -replace '`src/framework\.md`', '`framework.md`'
     Set-Content $File $content -NoNewline
 }
@@ -67,6 +68,15 @@ try {
     Copy-To (Join-Path $root "src\templates\retrospective.md")      (Join-Path $b "templates\retrospective.md")
     Copy-To (Join-Path $root "CONTRIBUTING.md")                    (Join-Path $b "CONTRIBUTING.md")
 
+    Copy-To (Join-Path $root "VERSION")                            (Join-Path $b "VERSION")
+
+    $migSrc = Join-Path $root "src\migrations"
+    if (Test-Path $migSrc) {
+        Get-ChildItem $migSrc -File | ForEach-Object {
+            Copy-To $_.FullName (Join-Path $b "migrations\$($_.Name)")
+        }
+    }
+
     Fix-PromptPaths (Join-Path $b "builder-prompt.md")
 
     New-SkillZip -Name "aidos-builder" -StagingDir $b -OutPath (Join-Path $dist "aidos-builder.zip")
@@ -86,6 +96,8 @@ try {
     Copy-To (Join-Path $root "src\templates\retrospective.md")     (Join-Path $a "templates\retrospective.md")
     Copy-To (Join-Path $root "CONTRIBUTING.md")                   (Join-Path $a "CONTRIBUTING.md")
 
+    Copy-To (Join-Path $root "VERSION")                           (Join-Path $a "VERSION")
+
     Fix-PromptPaths (Join-Path $a "auditor-prompt.md")
 
     New-SkillZip -Name "aidos-auditor" -StagingDir $a -OutPath (Join-Path $dist "aidos-auditor.zip")
diff --git a/skills/builder/SKILL.md b/skills/builder/SKILL.md
@@ -34,6 +34,8 @@ When the user describes work they want to deliver, you:
 | `templates/definition.md` | Definition artifact template with section-to-rubric mapping. |
 | `templates/retrospective.md` | Retrospective template for rubric evolution. |
 | `CONTRIBUTING.md` | How to propose rubric changes — the contribution model for evolving the framework. |
+| `VERSION` | **Framework version.** Plain-text file containing the current AIDOS framework semver (e.g. `1.0.0`). Read on session start and before opening each existing artifact — used to stamp new artifacts and compare against existing files' `AIDOS Version` metadata. |
+| `migrations/` | Directory of `vX.Y.Z-to-vX.Y+1.0.md` files (e.g. `v1.0.0-to-v1.1.0.md`) describing how to upgrade artifacts across minor framework bumps. Read only when a file is behind and the user accepts an upgrade. |
 
 ## Environment
 
diff --git a/src/connectors/confluence/README.md b/src/connectors/confluence/README.md
@@ -32,7 +32,7 @@ on:
 
 jobs:
   publish:
-    uses: shobman/aidos/.github/workflows/confluence-publish.yml@main
+    uses: shobman/aidos/.github/workflows/confluence-publish.yml@v1.0.0
     with:
       manifest-path: .aidos/manifest.json
       dry-run: ${{ github.event_name == 'pull_request' }}
@@ -41,6 +41,8 @@ jobs:
       confluence_token: ${{ secrets.CONFLUENCE_TOKEN }}
 ```
 
+> **Pin a tag, not `@main` or `@sha`.** AIDOS releases are tagged using semver (`vX.Y.Z`). Pinning to a tag means your workflow stays on a known-good version and only moves when you bump the pin. The tag to use is the current AIDOS framework version — see the `VERSION` file at the root of the AIDOS repo.
+
 PRs dry-run (preview in the Actions log), merges to main publish for real.
 
 If your repo has multiple `.aidos/` folders (e.g. a monorepo), omit `manifest-path` and the workflow will auto-discover all `manifest.json` files.
@@ -186,6 +188,30 @@ Each connector reads only its own key and ignores the rest.
 
 Validate your manifest against `manifest.schema.json` in this directory.
 
+## Org-Restricted Environments
+
+Some organisations block all public GitHub Actions by policy. If your org's workflow policy rejects `uses: shobman/aidos/...@v1.0.0`, you have two options:
+
+### Option 1 — Vendor the workflow
+
+Fork the AIDOS repo into your org, or copy `.github/workflows/confluence-publish.yml` and `src/connectors/confluence/` into an internal repo. Reference it by internal path instead:
+
+```yaml
+    uses: your-org/internal-aidos/.github/workflows/confluence-publish.yml@v1.0.0
+```
+
+Tag your internal fork with the same version as the upstream AIDOS release it's based on. When upstream cuts a new release, pull the changes in and re-tag.
+
+### Option 2 — Inline the workflow
+
+If forking isn't practical, write a workflow in your consuming repo that runs the publish script directly. You'll need to vendor `src/connectors/confluence/publish.js` (and its dependencies) into your repo as well. Track which upstream version you're based on in the workflow file's comments — the AIDOS version in your artifact files tells you which release's publish script to align with.
+
+### Tracking alignment
+
+In either option, the `**AIDOS Version:**` field in your artifact files is the source of truth for "what AIDOS version should this workflow be running". If artifacts are on v1.1.0, the workflow should be on the v1.1.0 release. Minor-version mismatches between artifacts and the workflow are not guaranteed compatible — migrate artifacts first, then bump the workflow pin. Patch-version drift is safe.
+
+---
+
 ## Develop
 
 ### Get the code
@@ -241,4 +267,4 @@ The script is ~700 lines, self-contained, ESM, uses Node 20+ built-in fetch. Fol
 
 ### Versioning
 
-No semver. The connector is versioned alongside the aidos repo. The GitHub Actions workflow pulls from `shobman/aidos@main` (or a pinned tag if you want stability). Bump the `CONNECTOR_VERSION` constant in `publish.js` to force republish of all pages — useful after output format changes.
+The connector is versioned alongside the aidos repo using semver (`vX.Y.Z`). Consumers pin the GitHub Actions workflow to a tag — see the Install section above for the tag-pinning requirement. Bump the `CONNECTOR_VERSION` constant in `publish.js` to force republish of all pages — useful after output format changes.
diff --git a/src/migrations/.gitkeep b/src/migrations/.gitkeep
diff --git a/src/migrations/README.md b/src/migrations/README.md
@@ -0,0 +1,46 @@
+# AIDOS Migrations
+
+Migration files describe how to upgrade an AIDOS artifact from one framework version to the next. One file per minor version bump.
+
+## File naming
+
+`vX.Y.Z-to-vX.Y+1.0.md` — e.g. `v1.0.0-to-v1.1.0.md`, `v1.1.0-to-v1.2.0.md`.
+
+Patch bumps (v1.0.0 → v1.0.1) never have migrations. Patches are wording-only.
+
+## File format
+
+Each migration is a markdown file with a title and up to four sections. Sections are present only when they apply. Example:
+
+```
+# Migration v1.0.0 → v1.1.0
+
+## Summary
+Brief human-readable description of what changed and why.
+
+## File renames
+- `Problem.md` → `1. Problem.md`
+- `Solution.md` → `2. Solution.md`
+- `Tech Design.md` → `3. Tech Design.md`
+- `Test Strategy.md` → `4. Test Strategy.md`
+
+## Content changes
+- In `1. Problem.md`, rename the heading "## Business Context" to "## Context"
+
+## Metadata changes
+None.
+```
+
+## Who reads these files
+
+The AIDOS builder skill, when it opens an artifact file whose `AIDOS Version` is behind the current framework version. It reads the relevant migration files, applies them to the file in question (only the parts that affect that file), presents a diff for user signoff, then updates the file's `AIDOS Version` metadata.
+
+The AIDOS auditor skill does not read these files. It reads only the `AIDOS Version` metadata field from artifact files and compares it against `VERSION` to warn users about version gaps.
+
+## Who writes these files
+
+Any developer (human or AI) who changes the structure, naming, or shape of AIDOS artifacts. The developer guardrail in the repo's `CLAUDE.md` reminds contributors to create a migration file for any minor-version change.
+
+## Scope rule
+
+Instructions should be written so an AI agent can apply them to a single file at a time. A workspace can have files at mixed versions — each file migrates independently as the user opens it.
diff --git a/src/prompts/auditor-prompt.md b/src/prompts/auditor-prompt.md
@@ -16,6 +16,26 @@ You never write. Auditing is strictly read-only — findings come back as text i
 
 ---
 
+## Versioning
+
+The AIDOS framework is versioned — see the `VERSION` file bundled with this skill for the current version. Each artifact file records the version it was written against in its metadata block as `**AIDOS Version:** X.Y.Z`.
+
+Before auditing, read the file's `AIDOS Version` and compare to the skill's `VERSION`.
+
+| File state | Action |
+|---|---|
+| Match | Audit normally. No message. |
+| Behind, patch only | Audit normally. No message. |
+| Behind, minor or more | Before delivering findings, warn: "This file is on AIDOS v<file-version>. Current framework is v<skill-version>. Consider running `/aidos-builder` to upgrade the file before auditing so rubric and file structure align." Then audit. |
+| Ahead, patch only | Soft warning: "This file was created with a newer patch (v<file-version>). Audit proceeds against v<skill-version> framework." Then audit. |
+| Ahead, minor or more | Hard block. Refuse to audit. Tell the user: "This file requires AIDOS v<file-version>+ to audit accurately. Upgrade your AIDOS skill before auditing." |
+
+If the file has no `AIDOS Version` field, treat it as v1.0.0.
+
+You are read-only. Do not execute migrations. Do not modify files. The builder handles upgrades in a separate session.
+
+---
+
 ## Session Start
 
 Establish the audit scope:
diff --git a/src/prompts/builder-prompt.md b/src/prompts/builder-prompt.md
@@ -39,6 +39,46 @@ You don't pick one mode — the environment does. Inspect what's available and u
 
 ---
 
+## Versioning
+
+Every artifact template carries an `**AIDOS Version:** X.Y.Z` line in its metadata block. This records which version of the AIDOS framework spec the file was written against. It is the framework spec version — not the artifact's own revision number.
+
+The current framework version is stored in the `VERSION` file bundled with this skill. Read it before opening any artifact. When you scaffold new artifacts, stamp them with the version from `VERSION`. When you open an existing artifact, read the `AIDOS Version` from its metadata and compare to `VERSION`.
+
+Comparison rules:
+
+| File state | Example | Action |
+|---|---|---|
+| Match | File 1.2.0, skill 1.2.0 | Silent. Proceed. |
+| Behind, patch only | File 1.0.0, skill 1.0.2 | Silent. Proceed. |
+| Behind, minor or more | File 1.0.0, skill 1.2.0 | Warn the user: "This file is on AIDOS v1.0.0. Current framework is v1.2.0 — a migration may be available. Want me to upgrade this file?" Proceed whether they accept or decline. |
+| Ahead, patch only | File 1.2.1, skill 1.2.0 | Soft warning: "This file was created with a newer patch (v1.2.1). Proceed with caution." Proceed. |
+| Ahead, minor or more | File 1.3.0, skill 1.2.0 | Hard block. Refuse to modify. Tell the user: "This file requires AIDOS v1.3.0+. Upgrade your AIDOS skill before editing." |
+
+If a file has no `AIDOS Version` field, treat it as v1.0.0 and follow the rules above.
+
+### Per-file upgrade flow
+
+When a file is behind (minor or more) and the user accepts the upgrade offer:
+
+1. Read the migration files from `src/migrations/` in the bundled skill content that sit between the file's version and the current `VERSION`. If any step in the chain has no migration file (e.g. no `v1.0.0-to-v1.1.0.md` exists for the v1.0.0 → v1.1.0 hop), tell the user the automatic upgrade cannot cover that gap and stop. Offer that they upgrade their skill and try again, or migrate manually.
+2. For each migration step, in version order:
+   - Show the user the migration's `Summary` section.
+   - Apply only the instructions that affect the file in question — `File renames` entries whose source matches, `Content changes` entries that target this file, `Metadata changes` that apply to this file.
+   - Present the resulting diff.
+   - Get explicit user approval before writing.
+   - On approval: write the changes and update the file's `**AIDOS Version:**` line to the step's target version.
+   - On rejection: stop. The file keeps the last successfully applied version.
+3. After the last step (or early stop), confirm the final version to the user.
+
+Each file migrates independently. A workspace can have files at mixed versions — this is expected and fine.
+
+### Stamping new artifacts
+
+When scaffolding a new artifact from a template, the template already contains `**AIDOS Version:** 1.0.0` as a placeholder. Replace it with the current version from `VERSION` before saving. If they happen to match, no change is needed.
+
+---
+
 ## Session Start
 
 Figure out where you are:
diff --git a/src/templates/definition.md b/src/templates/definition.md
@@ -53,6 +53,7 @@ Status progression:
 # Definition: [title]
 
 **Status:** DRAFT | REVIEW | ACCEPTED | CURRENT
+**AIDOS Version:** 1.0.0
 **Domain:** [product domain path]
 **Delivered:** [date]
 **Last Updated:** [date]
diff --git a/src/templates/problem.md b/src/templates/problem.md
@@ -56,6 +56,7 @@ Scaling depth:
 # Problem: [title]
 
 **Status:** DRAFT | REVIEW | ACCEPTED
+**AIDOS Version:** 1.0.0
 **Parent:** [link to Epic problem, if this is Feature or Story scale]
 
 ---
diff --git a/src/templates/solution.md b/src/templates/solution.md
@@ -51,6 +51,7 @@ Scaling depth:
 # Solution: [title]
 
 **Status:** DRAFT | REVIEW | ACCEPTED
+**AIDOS Version:** 1.0.0
 **Problem:** [link to Problem artifact]
 
 ---
diff --git a/src/templates/tech-design.md b/src/templates/tech-design.md
@@ -52,6 +52,7 @@ Scaling depth:
 # Tech Design: [title]
 
 **Status:** DRAFT | REVIEW | ACCEPTED
+**AIDOS Version:** 1.0.0
 **Solution:** [link to Solution artifact]
 
 ---
diff --git a/src/templates/testing.md b/src/templates/testing.md
@@ -76,6 +76,7 @@ Coherence check:
 # Testing: [title]
 
 **Status:** DRAFT | REVIEW | ACCEPTED
+**AIDOS Version:** 1.0.0
 **Tech Design:** [link to Tech Design artifact]
 **Solution:** [link to Solution artifact]
 
