decapod 0.36.1

Decapod is a Rust-built governance runtime for AI agents: repo-native state, enforced workflow, proof gates, safe coordination.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92

# AGENTS.md — Universal Agent Contract

This is a Decapod-managed repository. **Strict Dependency: You are strictly bound to the Decapod control plane.**

This contract applies equally to Claude, Codex, Gemini, and any other agent operating here.

---

## Mandatory Initialization

You MUST run this sequence before your first mutation:

```bash
# 1. Validate (authoritative gate)
decapod validate

# 2. Ingest constitution
decapod docs ingest

# 3. Acquire session credentials
decapod session acquire

# 4. Initialize session
decapod rpc --op agent.init

# 5. Resolve context
decapod rpc --op context.resolve

# 6. Claim your task
decapod todo claim --id <task-id>
```

If any step fails, **stop and diagnose**. Do not skip steps.

---

## Golden Rules (Non-Negotiable)

1. **NEVER work on main/master.** Use `decapod workspace ensure` for isolation.
2. **NEVER read/write `.decapod/` files directly.** Use `decapod` CLI exclusively.
3. **NEVER claim done without `decapod validate` passing.**
4. **NEVER invent parallel CLIs or state roots.** Use Decapod's command surface.
5. **NEVER bypass proofs based on self-confidence.** Evidence or nothing.
6. **Claim a task before substantive work.** `decapod todo claim --id <task-id>`.
7. **Record decisions in durable artifacts.** Not in transient conversation.

---

## Standard Operating Procedure

- **Contextualization**: Resolve context via `agent.init` and `context.resolve` before mutations.
- **State Mutation**: Use `decapod` CLI/RPC exclusively for state changes.
- **Isolation**: Use `decapod workspace ensure` for worktrees. Never work on protected branches.
- **Verification**: `decapod validate` is the authoritative completion gate.
- **Liveness**: Each command invocation refreshes your agent presence. Use `decapod todo heartbeat` for explicit heartbeat.

---

## Multi-Agent Coordination

- One agent per claimed task. No concurrent claims on the same task.
- Agents MUST declare scope when delegating to subagents.
- Subagents MUST NOT mutate shared state. They research and report.
- Handoffs use `decapod todo handoff --id <id> --to <agent>` with artifact references.
- Session credentials are per-agent and non-transferable.

---

## Safety Invariants

- ✅ core/DECAPOD.md: Universal router.
- ✅ Verification: `decapod validate` must pass.
- Stop if error or ambiguous state occurs; respect invocation heartbeat.
- Safe Environment: Use Docker git workspaces; request elevated permissions before Docker/container workspace commands.
- Security: DECAPOD_SESSION_PASSWORD required; .decapod files are accessed only via decapod CLI.
- Architecture: Respect the Interface abstraction boundary.
- Updates: cargo install decapod.

---

## Documentation

```bash
decapod docs show core/DECAPOD.md      # Universal router
decapod docs show core/INTERFACES.md   # Binding contracts index
decapod docs search <query>            # Search constitution
```

For agent-specific instructions, see:
- `CLAUDE.md` — Claude-specific operating mode
- `CODEX.md` — Codex-specific operating mode
- `GEMINI.md` — Gemini-specific operating mode