agent-rules 0.1.0

Convention and validation for prescribed policy in AI agent instruction files
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194

# agent-rules spec

Format specification for prescribed policy in AI agent instruction files. Rules are declarative statements that shape agent behavior -- conventions, constraints, architecture decisions, and tool configuration.

## File Locations

Rules live in the instruction file for your tool:

| Location | Tool(s) |
|----------|---------|
| `CLAUDE.md` | Claude Code |
| `AGENTS.md` | Codex, Claude Code |
| `.cursorrules` | Cursor |
| `.cursor/rules/*.mdc` | Cursor (scoped) |
| `.windsurfrules` | Windsurf |
| `.windsurf/rules/*.md` | Windsurf (scoped) |
| `.github/copilot-instructions.md` | GitHub Copilot |
| `GEMINI.md` | Gemini CLI |
| `CONVENTIONS.md` | Aider |

Per-directory instruction files (e.g., `src/api/CLAUDE.md`) override or extend root-level rules for that subtree.

## Recommended Sections

Organize rules into these sections within your instruction file:

### Conventions

Coding standards and patterns the agent should follow.

```markdown
## Conventions

- Use snake_case for Python modules and functions.
- Prefer `Result<T, E>` over panicking in library code.
- Name test files `*_test.go`, not `test_*.go`.
```

**Guideline:** Start each rule with an imperative verb (use, prefer, name, write, keep).

### Constraints

Hard boundaries the agent must not cross.

```markdown
## Constraints

- Never commit `.env` files or cleartext secrets.
- Never use `unsafe` without a `// SAFETY:` comment.
- Do not add dependencies without checking the license.
```

**Guideline:** Start with "Never", "Do not", or "Always" to signal the rule is non-negotiable.

### Architecture

Decisions that explain why the system is shaped the way it is.

```markdown
## Architecture

- PostgreSQL for persistence (JSONB support, mature ecosystem).
- Event sourcing for the order pipeline; CRUD for user management.
- Monorepo with workspace packages under `packages/`.
```

**Guideline:** Include the *why* in parentheses or a short clause. This prevents the agent from suggesting alternatives that violate existing decisions.

### Tool Configuration

How to invoke project tooling.

```markdown
## Tool Configuration

- Lint: `cargo clippy --all-targets`
- Test: `make test` (runs unit + integration)
- Pre-commit: follow `.agent/runbooks/precommit.md`
```

**Guideline:** Keep commands concrete. Reference runbooks for multi-step procedures instead of inlining them.

### Project Structure

Brief layout reference so the agent knows where things live.

```markdown
## Project Structure

- `src/` -- application source
- `tests/` -- integration tests
- `migrations/` -- database migrations (never modify existing ones)
```

**Guideline:** Only include paths that affect agent behavior. This is not documentation -- it is navigation context.

## Validation Rules

When auditing instruction files for rule quality:

### 1. Actionable content

Every rule should contain an imperative verb that directs agent behavior. Informational content (tables of data, architecture diagrams, API reference) should be externalized to separate files and referenced.

**Pass:** "Use snake_case for all Python functions."
**Fail:** A 50-line table of environment variables with no directive.

### 2. Line budget

Combined instruction files in a project should stay under 1000 lines. Beyond that, externalize procedures to runbooks and reference material to separate files.

### 3. No machine-local paths

Rules must not contain paths that only resolve on one machine:

**Fail:** `~/projects/myapp/bin/lint`
**Pass:** `./bin/lint` or `make lint`

### 4. No large code blocks

Code blocks over 10 lines suggest a procedure or reference that belongs in a runbook or external file, not inline in the instruction file.

### 5. Declarative, not imperative

Rules state policy. If a rule reads like a numbered procedure ("Step 1... Step 2..."), it belongs in a runbook.

**Fail:** "1. Run `make test`. 2. Check the output. 3. If tests pass, run `make build`."
**Pass:** "Run `make check` before committing (see `.agent/runbooks/precommit.md`)."

## Portability Guidelines

### Write tool-agnostic content

Rule content should be plain markdown that works in any instruction file. Avoid tool-specific syntax (e.g., Cursor's `@file` references, Windsurf's frontmatter tags) in the rule text itself. Use tool-specific wrappers around portable content.

### Use relative paths

Reference project files with relative paths (`./src/`, `tests/`), not absolute paths. This keeps rules valid across machines and CI environments.

### Separate policy from procedure

Keep the instruction file focused on *what* and *why*. Move *how* into runbooks. This makes the instruction file portable -- procedures often reference tool-specific commands, but policy transfers cleanly.

### Keep rules atomic

Each rule should be a single, self-contained statement. Compound rules ("Use snake_case and also run the linter and make sure tests pass") should be split into separate items.

## Agentic Contracts

Promises the agent makes when interacting with instruction files governed by this spec.

### When validating rules

The agent promises to:

- Check all files in scope -- never silently skip an instruction file.
- Report line numbers for each issue found.
- Apply every validation rule in the "Validation Rules" section above.

### When applying rules

The agent promises to:

- Follow all constraints in scope for the current working directory.
- Never add rules to an instruction file without user consent.
- Flag conflicts between rules (e.g., contradictory constraints across per-directory files).

### When authoring rules

The agent promises to:

- Use imperative voice -- every rule starts with a verb or "Never"/"Always"/"Do not".
- Keep content actionable -- no informational-only sections in the instruction file.
- Externalize procedures to runbooks and reference material to separate files.

## Evals

Tests that verify agent behavior against this spec. Each eval is a scenario with expected outcomes.

| Eval | File | Tests |
|------|------|-------|
| Actionable detection | [`evals/actionable_detection.md`](evals/actionable_detection.md) | Does `check_actionable` correctly flag informational sections? |
| Tree path validation | [`evals/tree_path_validation.md`](evals/tree_path_validation.md) | Does `check_tree_paths` catch missing files? |
| Cross-tool portability | [`evals/cross_tool_portability.md`](evals/cross_tool_portability.md) | Do rules written for one tool work across all supported tools? |

## Relationship to Other Specs

| Spec | Content Type | Format |
|------|-------------|--------|
| **agent-rules** (this spec) | Prescribed policy | Sections in instruction file |
| **[agent-runbooks](https://github.com/btakita/agent-runbooks)** | Imperative procedures | One file per procedure |
| **[agent-memories](https://github.com/btakita/agent-memories)** | Learned lessons | One file per memory with frontmatter |

Together these three specs cover the full lifecycle: rules prescribe policy upfront, runbooks detail procedures on demand, and memories capture lessons from experience.