decapod 0.47.21

Decapod is the daemonless, local-first control plane that agents call on demand to align intent, enforce boundaries, and produce proof-backed completion across concurrent multi-agent work. 🦀
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102

# API_DESIGN.md - API Design Standards

**Authority:** guidance (API design conventions)
**Layer:** Architecture
**Binding:** No
**Scope:** REST, GraphQL, and RPC API design standards

---

## 1. API Design Principles

### REST APIs
- **Resource-oriented:** URLs represent resources, not actions
- **CRUD mapping:**
  - `GET /resources` - List
  - `GET /resources/:id` - Get one
  - `POST /resources` - Create
  - `PUT /resources/:id` - Update
  - `DELETE /resources/:id` - Delete
- **Stateless:** Every request contains all context
- **Consistent naming:** snake_case for URLs, camelCase for JSON

### GraphQL
- **Schema-first:** Define schema before implementation
- **Nested relationships:** Leverage graph structure
- **Pagination:** Cursor-based for large datasets
- **N+1 prevention:** Use DataLoader patterns

### RPC
- **Protocol buffers:** Use for type safety
- **Versioning:** Major version in path
- **Streaming:** Use for real-time data

---

## 2. Request/Response Standards

### Request Headers
```
Content-Type: application/json
Accept: application/json
Authorization: Bearer <token>
```

### Response Envelope
```json
{
  "data": { },
  "meta": {
    "request_id": "uuid",
    "timestamp": "ISO8601"
  },
  "errors": []
}
```

### Error Response
```json
{
  "error": {
    "code": "RESOURCE_NOT_FOUND",
    "message": "Human readable message",
    "details": {}
  }
}
```

---

## 3. Versioning Strategy

- **URL versioning:** `/v1/`, `/v2/`
- **Deprecation policy:** 2 versions maintained, 6 month sunset
- **Breaking changes:** Only in major version bumps

---

## 4. Authentication & Authorization

- **Authentication:** Bearer tokens (JWT preferred)
- **Authorization:** Scope-based permissions
- **Rate limiting:** Standardized headers (`X-RateLimit-*`)

---

## 5. Documentation

All APIs must have:
- OpenAPI/Swagger spec
- Example requests/responses
- Error code reference
- Authentication requirements

---

## 6. Agent Guidelines

When agents design APIs:
1. Follow existing patterns in the codebase
2. Document all endpoints
3. Include OpenAPI specs in PR
4. Add integration tests for critical paths