Skip to content

chore(release): promote dev to main#345

Merged
djm81 merged 7 commits into
mainfrom
dev
Jul 14, 2026
Merged

chore(release): promote dev to main#345
djm81 merged 7 commits into
mainfrom
dev

Conversation

@djm81

@djm81 djm81 commented Jul 14, 2026

Copy link
Copy Markdown
Contributor

Summary

Promote the current dev branch to main.

Included release work

  • Requirements native OpenSpec and Spec Kit evidence import support.
  • Corrected signed publication releases for Requirements 0.2.4 and Code Review 0.47.52.
  • Concurrent Ruby security patch in documentation dependencies.

Validation

Validation was completed on the contributing PRs, including module-signature, manifest, lint, contract, and test gates.

Note

dev and main have diverged; resolve any GitHub-reported merge conflicts before merge.

djm81 and others added 6 commits July 13, 2026 21:19
Retire the Intent Trace authoring scope. The requirements module gains thin
runtime wiring for import-first requirement evidence: --from-openspec and
--from-speckit flags with conservative layout auto-detection, gate-finding
surfacing in validate with CI-usable exit codes, and layered-config profile
resolution when --profile is omitted. Parsing, hashing, and gate logic stay
core-owned (nold-ai/specfact-cli#350).

Reprioritize Track B: openspec-01 moves to order 2,
requirements-03-backlog-sync is parked as of 2026-07-13.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Runtime shipped via PR #326 (issue #165 closed 2026-07-08). Archive merges
delta specs into canonical openspec/specs (requirements-module,
backlog-adapter, module-io-contract); the two deltas targeting not-yet-existing
canonical specs were converted from MODIFIED to ADDED to seed those specs.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
…tasks

Validate command switches from a hardcoded startup profile default to core
layered-config resolution when --profile is omitted; explicit flag wins.
Paired with core scope in nold-ai/specfact-cli#350.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
## Summary

- implement #168 using the shipped core #350 native OpenSpec and Spec
Kit import helpers
- add fail-closed schema handling, conservative source auto-detection,
profile-aware validation, and core gate-count reporting
- update `docs/Gemfile.lock` to concurrent-ruby 1.3.7

## Scope

This PR delivers the requirements-module adapter work for #168. It also
includes a small companion `specfact-code-review` correction: the KISS
parameter-count analyzer now identifies actual Typer applications before
exempting their callbacks. That prevents the requirements CLI from
producing a false-positive warning while retaining checks for unrelated
`*.command` and `*.callback` decorators.

## Bundle impact

- `nold-ai/specfact-requirements` released as `0.2.3`, with synchronized
registry artifact and integrity metadata.
- `nold-ai/specfact-code-review` released as `0.47.51`, with
synchronized registry artifact and integrity metadata.

## Validation

- `hatch run test` — 884 passed, with 2 third-party deprecation
warnings.
- `hatch run smart-test` — 884 passed.
- `hatch run contract-test` — 28 passed.
- `openspec validate openspec-01-intent-trace --strict` — passed.
- Changed-code review — 0 findings.
- Module signature/version-bump verification — passed.

## Documentation

- Updated the Requirements bundle overview, generated command
references, and `llms.txt` for optional native-source paths.
- Recorded failing-before and passing-after evidence in the active
OpenSpec change.

## CI and checklist

- [x] Formatter, lint, type, import-boundary, manifest, and signature
checks pass.
- [x] Requirements and code-review regression coverage added.
- [x] Registry artifacts match the released manifest versions.
- [x] No CI-skip markers are used.

Closes #168

---------

Co-authored-by: Dominikus Nold <djm81@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
## Summary

Prepare corrected releases for the requirements and code-review modules:

- `nold-ai/specfact-requirements`: `0.2.3` → `0.2.4`
- `nold-ai/specfact-code-review`: `0.47.51` → `0.47.52`

## Root cause

The prior feature PR committed registry entries and tarballs before the
canonical `publish-modules` workflow ran. The source manifests were
later signed by CI, while the committed tarballs still embedded unsigned
manifests. Because `dev` already recorded the same versions, a manual
publish dispatch selected no corrective release.

## Release path

This change intentionally leaves `registry/**` untouched and keeps local
manifests checksum-only. After merge to `dev`, CI must generate the
signed manifest and registry publication PRs for these new versions.

## Validation

- `hatch run yaml-lint`
- `hatch run verify-modules-signature --payload-from-filesystem
--enforce-version-bump --allow-missing-public-key`
- pre-commit format, YAML, import-boundary, command-reference,
documentation, and manifest-signature checks

---------

Co-authored-by: Dominikus Nold <djm81@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Automated registry publish update from workflow run 29364507530.

Bundle selection reasons:
- `specfact-code-review`: changed, registry-outdated
- `specfact-requirements`: changed, registry-outdated

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@strix-security

Copy link
Copy Markdown

Strix is installed on this repository, but we couldn't run this PR security review because this workspace's trial has ended. Add a card to resume code reviews here.

@coderabbitai

coderabbitai Bot commented Jul 14, 2026

Copy link
Copy Markdown
Contributor

Review Change Stack

Warning

Review limit reached

You’ve reached a temporary PR review limit under our Fair Usage Limits Policy.

Your recent review volume is higher than typical usage, so adaptive limits are currently applied.

Next review available in: 26 minutes

Enable usage-based reviews in Billing to review now. Otherwise, wait until the next included review is available.
You're only billed for reviews past your plan's rate limits ($0.25/file).

How can I continue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based reviews.

How do review limits work?

CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan review availability.

For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, additional reviews become available more gradually as earlier reviews age out of the rolling window.

Please refer docs for additional details.

Review details
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 0e12aab1-9732-4f03-ba00-a8d895ae7096

📥 Commits

Reviewing files that changed from the base of the PR and between 318dd45 and b41c122.

⛔ Files ignored due to path filters (7)
  • docs/Gemfile.lock is excluded by !**/*.lock
  • docs/reference/commands.generated.json is excluded by !**/*.generated.*
  • docs/reference/commands.generated.md is excluded by !**/*.generated.*
  • registry/modules/specfact-code-review-0.47.51.tar.gz is excluded by !**/*.gz
  • registry/modules/specfact-code-review-0.47.52.tar.gz is excluded by !**/*.gz
  • registry/modules/specfact-requirements-0.2.3.tar.gz is excluded by !**/*.gz
  • registry/modules/specfact-requirements-0.2.4.tar.gz is excluded by !**/*.gz
📒 Files selected for processing (42)
  • docs/bundles/requirements/overview.md
  • llms.txt
  • openspec/CHANGE_ORDER.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/.openspec.yaml
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/CHANGE_VALIDATION.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/TDD_EVIDENCE.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/design.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/proposal.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/specs/backlog-adapter/spec.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/specs/module-io-contract/spec.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/specs/requirements-module/spec.md
  • openspec/changes/archive/2026-07-13-requirements-02-module-commands/tasks.md
  • openspec/changes/openspec-01-intent-trace/CHANGE_VALIDATION.md
  • openspec/changes/openspec-01-intent-trace/TDD_EVIDENCE.md
  • openspec/changes/openspec-01-intent-trace/design.md
  • openspec/changes/openspec-01-intent-trace/proposal.md
  • openspec/changes/openspec-01-intent-trace/specs/openspec-bridge-adapter/spec.md
  • openspec/changes/openspec-01-intent-trace/specs/openspec-bridge-intent-import/spec.md
  • openspec/changes/openspec-01-intent-trace/specs/openspec-intent-trace-schema/spec.md
  • openspec/changes/openspec-01-intent-trace/specs/requirements-module/spec.md
  • openspec/changes/openspec-01-intent-trace/tasks.md
  • openspec/specs/backlog-adapter/spec.md
  • openspec/specs/module-io-contract/spec.md
  • openspec/specs/requirements-module/spec.md
  • packages/specfact-code-review/module-package.yaml
  • packages/specfact-code-review/src/specfact_code_review/tools/radon_runner.py
  • packages/specfact-requirements/module-package.yaml
  • packages/specfact-requirements/src/specfact_requirements/requirements/commands.py
  • packages/specfact-requirements/src/specfact_requirements/requirements/runtime.py
  • registry/index.json
  • registry/modules/specfact-code-review-0.47.51.tar.gz.sha256
  • registry/modules/specfact-code-review-0.47.52.tar.gz.sha256
  • registry/modules/specfact-requirements-0.2.3.tar.gz.sha256
  • registry/modules/specfact-requirements-0.2.4.tar.gz.sha256
  • registry/signatures/specfact-code-review-0.47.52.tar.sig
  • registry/signatures/specfact-requirements-0.2.4.tar.sig
  • scripts/generate-command-overview.py
  • tests/integration/specfact_requirements/test_command_apps.py
  • tests/unit/docs/test_bundle_overview_cli_examples.py
  • tests/unit/docs/test_llms_overview_freshness.py
  • tests/unit/specfact_code_review/tools/test_radon_runner.py
  • tests/unit/specfact_requirements/test_requirements_runtime.py
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dev

Comment @coderabbitai help to get the list of available commands.

@djm81 djm81 self-assigned this Jul 14, 2026
@djm81 djm81 added documentation Improvements or additions to documentation enhancement New feature or request dependencies Pull requests that update a dependency file labels Jul 14, 2026
@djm81 djm81 moved this from Todo to In Progress in SpecFact CLI Jul 14, 2026
@djm81 djm81 linked an issue Jul 14, 2026 that may be closed by this pull request
@djm81
djm81 merged commit 0d4eddd into main Jul 14, 2026
19 checks passed
@github-project-automation github-project-automation Bot moved this from In Progress to Done in SpecFact CLI Jul 14, 2026

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 7f120bd415

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file documentation Improvements or additions to documentation enhancement New feature or request

Projects

Status: Done

Development

Successfully merging this pull request may close these issues.

OpenSpec and Spec Kit Import Runtime for Requirement Evidence

1 participant