§1–4
Engineering Foundation
The reproducible environment, static correctness, architecture boundaries, and pre-commit / CI gates that make any change reviewable.
pillar-014 clauses · 33 rules
Specification › Pillars overview
Seven pillars, twenty-nine clauses.
The seven pillars
Section titled “The seven pillars”The pillar names, descriptions, icons, and clause ranges below come from
AI-CONTRIBUTOR-RULE-CATALOG.json. This page owns the presentation only.
§5–9
Security
Secrets handling, dependency and CI/CD security, authorization boundaries, and threat modeling.
pillar-025 clauses · 38 rules
§10–14
Quality & Reliability
Runtime validation, testing strategy, accessibility, failure handling and observability, and performance and reliability.
pillar-035 clauses · 33 rules
§15–16
Release
Supply-chain transparency, branch protection, and release governance.
pillar-042 clauses · 17 rules
§17–20
AI Agents
How AI agents, shared skills, MCP servers, and delegated agents are governed in the repository.
pillar-054 clauses · 47 rules
§21–22
AI Risk
AI-specific risks (prompt injection, untrusted input, capability scoping, allowlists, cost ceilings) and data protection for AI workflows.
pillar-062 clauses · 28 rules
§23–29
Oversight
Human approval, guardrail evidence, policy ownership, AI licensing and attribution, AI credential lifecycle, model/provider changes, and AI incident response.
pillar-077 clauses · 44 rules
Clause coverage
Section titled “Clause coverage”Each pillar is a contiguous clause range in the catalog. Follow the clause links to the full specification for the rule text and audit level.