7441c9f298
All findings from the inaugural LeadValidator audit resolved and confirmed. Release gate: PASS. VV_ISSUE_002 (BLOCKER): 15 OpenAPI specs verified present covering all 20 route groups (46 endpoints documented in docs/openapi/) VV_ISSUE_003 (MAJOR): Remove any types from src/db/pool.ts — replaced pool.query shim with unknown[] + Object.defineProperty, zero any types, eslint-disable suppressions removed VV_ISSUE_004 (MAJOR): Remove raw Pool from ScaffoldController and HealthDetailedController — injected AgentRepository/CredentialRepository and DbProbe interface respectively; added CredentialRepository.findActiveClientId() VV_ISSUE_005 (MAJOR): Add unit tests for 5 untested services — ComplianceStatusStore, EventPublisher, MarketplaceService, OIDCTrustPolicyService, UsageService VV_ISSUE_006 (MAJOR): Add integration tests for 7 missing route groups — analytics, billing, tiers, webhooks, marketplace, oidc-trust-policies, oidc-token-exchange VV_ISSUE_001 (MINOR): Create missing design.md and tasks.md in 4 OpenSpec archives — all archives now complete Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2.6 KiB
2.6 KiB
engineering-docs-phase6-update — Task Tracker
All tasks complete. Archive committed 2026-04-04.
WS1 — 05-services.md (9 Phase 3–6 service deep dives)
- 1.1 Add AnalyticsService deep dive (purpose, recordEvent/getTrend/getActivity, Redis keys, analytics_events table)
- 1.2 Add TierService deep dive (getStatus/initiateUpgrade/applyUpgrade, tenant_tiers table, Stripe webhook integration)
- 1.3 Add ComplianceService deep dive (5 AGNTCY controls, ComplianceStatusStore, compliance_status table)
- 1.4 Add FederationService deep dive (federation registry, trust anchors, agent verification)
- 1.5 Add DIDService deep dive (DID:WEB generation, resolution, audit integration)
- 1.6 Add WebhookService deep dive (subscription CRUD, EventPublisher integration, delivery retry)
- 1.7 Add BillingService deep dive (Stripe checkout, webhook handling, tier upgrade flow)
- 1.8 Add OIDCService deep dive (well-known endpoints, agent-info, JWT signing via OIDCKeyService)
- 1.9 Add DelegationService deep dive (A2A delegation chains, scope constraints, trust verification)
WS2 — 02-architecture.md (component diagram + 3 sequence diagrams)
- 2.1 Update component diagram: add tierMiddleware, Next.js portal, Stripe, OIDC provider
- 2.2 Add Mermaid sequence diagram: Analytics Event Capture
- 2.3 Add Mermaid sequence diagram: Tier Enforcement Middleware Chain
- 2.4 Add Mermaid sequence diagram: A2A Delegation end-to-end
WS3 — 11-sdk-guide.md (Rust SDK section)
- 3.1 Add Section 6: Rust SDK (sdk-rust/) — Cargo.toml installation, full working example, client method reference, error types
- 3.2 Renumber old Section 6 (Contribution Guide) to Section 7
WS4 — 09-testing.md (Phase 6 test coverage)
- 4.1 Add AGNTCY Conformance Suite section (4 tests, run command)
- 4.2 Add Tier Enforcement Tests section
- 4.3 Add Analytics Service Tests section
- 4.4 Add Complete Phase 6 Test Matrix
WS5 — Remaining 5 files
- 5.1 Update
01-overview.md— Phase 3–6 roadmap entries + 10 new product feature rows + 3-tier limits table - 5.2 Update
03-tech-stack.md— 5 new ADRs (Stripe, oidc-provider, Next.js 14, bull/kafkajs, did-resolver) - 5.3 Update
04-codebase-structure.md— sdk-rust/, portal/, tests/agntcy-conformance/ added to directory tree - 5.4 Update
06-walkthroughs.md— 3 new walkthroughs (A2A Delegation, Tier Enforcement, Analytics Event Capture) - 5.5 Update
README.md— 17 services, 5 SDKs, ~4 hours total reading time, 5 new Quick Reference rows
QA
- 6.1 QA sign-off — 23/23 gates PASS, no defects