--- name: artifact-validation description: Mechanical schema + invariant checking of artifacts. The unit test for typed handoffs. input: Artifact output: ValidationReport methodology: yes novel: yes --- # artifact-validation ## When activated An artifact has been produced and is about to be handed off. Before `handoff-protocol` ships it, `artifact-validation` proves it conforms. ## Checks performed ```yaml artifact_id: artifact_type: checks: - id: schema_present passed: bool - id: schema_valid passed: bool errors: [] - id: required_fields_filled passed: bool missing: [] - id: enum_constraints passed: bool violations: [] - id: invariants items: - rule: passed: bool offenders: [] - id: link_integrity passed: bool broken_links: [] - id: artifact_freshness passed: bool age: overall: pass | fail ``` ## Invariant library (extensible) | artifact type | invariants | |---|---| | PRD | every must-have requirement has acceptance criteria; KPI set; non-goals declared | | BackendArchitecture | every service has owner; persistence chosen; SLOs declared | | ThreatModel | every component has STRIDE coverage; mitigations have owners | | ApiContract | every operation has 4xx/5xx response; error envelope declared; auth scheme | | EvalSuite | metrics have targets; datasets are versioned; gates declared | | DataArchitecture | every dataset has owner; PII tagged; retention set | | MigrationPlan | expand/contract phases present; rollback declared; rate limit set | | PostmortemDoc | timeline present; action items have owners + dates; blameless | ## Implementation `artifact-validation` is mechanical — runs as a tool. Each artifact type has a validator under `tools/validators/.mjs`. Adding a type means adding a validator and the artifact catalog gets richer. ## Why this matters This is an automated gate, like a type-checker for thinking outputs. The difference between "we agree it looks done" and "the schema checker says it's done".