Design Philosophy¶
Slipway is a small governance control plane for local AI-assisted development. It does not replace an AI coding tool, a project tracker, or Git. It makes agent work legible by binding every change to a lifecycle, a current authority file, and evidence that can be inspected after the session ends.
Principles¶
| Principle | Meaning |
|---|---|
| Local-first | The repository contains the active state and audit trail. A hosted service can be useful later, but it is not required to understand a change. |
| One authority | change.yaml owns current lifecycle state. Lifecycle logs explain how state changed; they do not replace current state. |
| Bounded autonomy | Agents can move work forward, but Slipway exposes gates, blockers, review requirements, and done-ready proof. |
| Adapter thinness | Claude, Codex, Cursor, Gemini, and OpenCode surfaces route into the CLI. They should not become separate governance engines. |
| Artifact traceability | Intent, research, requirements, decisions, tasks, execution evidence, review evidence, and assurance remain connected. |
| Fresh verification | A completion claim is valid only when current evidence proves the current worktree state. |
Architecture Model¶
flowchart TB
Human["Human operator"] --> CLI["slipway CLI"]
Agent["AI coding tool"] --> Adapter["Generated adapter<br/>skills / commands / hooks / prompts"]
Adapter --> CLI
CLI --> Authority["change.yaml<br/>current state authority"]
CLI --> Trace["events/lifecycle.jsonl<br/>append-only lifecycle trace"]
CLI --> Artifacts["Markdown artifacts<br/>intent / research / requirements / decision / tasks / assurance"]
CLI --> Evidence["verification/*.yaml<br/>skill and review evidence"]
Authority --> Next["next / status / validate<br/>read-only views"]
Artifacts --> Next
Evidence --> Next
CLI --> Run["run / done<br/>state-mutating progression"]The separation matters. next, status, and validate can recompute readiness without mutating lifecycle authority. run and done are explicit mutation surfaces. Generated host files help AI tools discover the right action, but the CLI remains the execution authority.
Design Boundaries¶
Slipway's durable design is expressed through its own authority boundaries, not through ongoing comparison with upstream tools. Adjacent workflow and agent systems can still be useful research inputs, but they do not define Slipway's runtime contract.
| Boundary | Slipway stance |
|---|---|
| Runtime authority | Keep change.yaml as current-state authority and lifecycle events as trace. |
| State mutation | Keep next, status, and validate read-only; reserve state changes for explicit mutation commands such as run and done. |
| Adapter surfaces | Generate host files as handoff aids. The stable contract is the generated path plus CLI command, not host-specific governance state. |
| Installation guidance | Document Slipway-owned release and initialization paths without making adapter installation a governance source of truth. |
| Execution evidence | Treat task evidence, review evidence, and final verification as first-class Slipway artifacts bound to the current run. |
| Scope discipline | Reuse small primitives when they fit, but avoid importing lane schedulers, dashboards, or project-management runtimes into the governance kernel. |
Non-Goals¶
- Slipway does not infer a full project plan without governed artifacts.
- Slipway does not make AI-tool generated files authoritative over CLI state.
- Slipway does not treat a green test run as sufficient closeout when review or assurance evidence is missing.
- Slipway does not hide local state mutations behind read-only commands.
What Counts As Complete¶
A governed change is complete only when the worktree, artifact bundle, verification records, and lifecycle state all agree.
- The objective is represented in
intent.mdand the requirements contract. - Implementation files and docs satisfy the requirements.
- Task evidence is fresh for the current execution run.
- Spec and quality review records pass.
- Final verification proves the stated acceptance criteria.
slipway donearchives the terminal state after done-ready closeout.