Execution artifacts are repo-linked companion files used for long, multi-step, or high-risk work. They tighten implementation bounds without replacing GitHub issues or pull requests as the system of record.
Active plan bundles live under plans/<issue-id>-<slug>/ and contain:
task-contract.jsonEXEC_PLAN.md
Templates live under plans/templates/.
Execution artifacts are required when either of these is true:
- the PR spans more than one non-docs architectural plane;
- the PR risk class is
high.
They are recommended for other long-running single-plane work where a second implementer would need an explicit execution contract.
task-contract.json is machine-validated against
schemas/contracts/v1/task-contract-v1.json. It records:
- the GitHub issue id and URL;
- the issue-derived branch name;
- the primary architectural plane and owning subsystem;
- architectural references, allowed touchpoints, and explicit non-goals;
- scope, target paths, acceptance criteria, validation commands, and validation artifacts;
- rollback path;
- whether an ExecPlan is required and where it lives.
EXEC_PLAN.md uses fixed ## headings in this exact order:
SummaryTask ContractScope BoundariesImplementation SlicesValidation PlanRollout and RollbackOpen Questions
The file is meant for implementer handoff and review. Keep it decision-complete and repository local.
Repository-owned validation runs through:
cargo xtask github validate-execution-artifacts --issue-id <id> --branch <branch> --risk-class <low|medium|high>
cargo xtask github validate-pr --event-path "$GITHUB_EVENT_PATH" --config .github/governance.tomlUse cargo verify-repo for the canonical non-UI local validation surface before opening or
refreshing a PR.