docs(entire-cli): enrich 4 guide files with production diagrams from issue #802
6 additions across ai-traceability, ai-ecosystem, third-party-tools, security-hardening. - ai-traceability.md: full hook architecture diagram (sans/avec Entire), real checkpoint structure (entire/checkpoints/v1/ tree), orphan branch diagram, Go/No-Go thresholds table with 2h spike commands - ai-ecosystem.md: agent handoffs flow diagram (Claude → Gemini, no cold start) - third-party-tools.md: delta table vs existing setups (JSONL, attribution, handoffs) + evaluation stop criteria - security-hardening.md: approval gate flow diagram (policy check → low/high risk → approve/reject → audit trail) Source: github.com/methode-aristote/app/issues/802 Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Florian BRUNIAUX
parent
0bdb34b2a4
commit
2b9c654f0f
5 changed files with 180 additions and 8 deletions
|
|
@ -327,6 +327,63 @@ entire init
|
|||
entire capture --agent="claude-code"
|
||||
```
|
||||
|
||||
**How It Works (Hook Architecture):**
|
||||
|
||||
```
|
||||
WITHOUT ENTIRE
|
||||
==============
|
||||
|
||||
Developer Agent (Claude/Gemini/Codex) Git
|
||||
--------- --------------------------- ---
|
||||
prompt ---------> reasons + edits files
|
||||
tool calls (Bash, Read, Edit...)
|
||||
prompt ---------> continues...
|
||||
"looks good" ---> session ends
|
||||
|
||||
git commit -----> ----------------------------------------> commit on feature/branch
|
||||
(code only, zero context)
|
||||
|
||||
Result: the code is there, but WHY and HOW are lost.
|
||||
No record of prompts, reasoning, or abandoned approaches.
|
||||
|
||||
|
||||
WITH ENTIRE
|
||||
===========
|
||||
|
||||
Developer Agent (Claude/Gemini/Codex) Entire Hooks Git
|
||||
--------- --------------------------- ------------ ---
|
||||
|
||||
entire enable ---> installs 7 hooks automatically (once per repo)
|
||||
|
||||
[SESSION START] -----------------------------------------> hook SessionStart
|
||||
|
||||
prompt ---------> reasons + edits ---------> hook UserPromptSubmit
|
||||
tool calls... ---------> hook PreToolUse/PostToolUse
|
||||
|
||||
[AGENT ENDS] -------------------------------------------------> hook Stop
|
||||
|
|
||||
CHECKPOINT created on
|
||||
shadow branch:
|
||||
entire/2b4c177-a5e3f2
|
||||
|
|
||||
Contains:
|
||||
- full transcript
|
||||
- user prompts
|
||||
- file diffs
|
||||
- tool calls
|
||||
- token usage
|
||||
- human vs AI attribution %
|
||||
|
||||
git commit -----> ----------------------------------------> commit on feature/branch
|
||||
+ auto-added trailer:
|
||||
"Entire-Checkpoint: a3b2c4"
|
||||
|
||||
git push -------> ----------------------------------------> code pushed normally
|
||||
shadow → entire/checkpoints/v1
|
||||
(orphan branch, zero conflicts)
|
||||
shadow branch auto-deleted
|
||||
```
|
||||
|
||||
**Workflow with Claude Code:**
|
||||
|
||||
```bash
|
||||
|
|
@ -409,18 +466,26 @@ entire approve --approver="jane@company.com"
|
|||
|
||||
**Architecture:**
|
||||
|
||||
Entire stores data in `.entire/` directory with separate git branch:
|
||||
Entire stores checkpoints on an orphan branch — no common ancestor with `main`, so no merge conflicts and no history pollution:
|
||||
|
||||
```
|
||||
project/
|
||||
├─ .entire/
|
||||
│ ├─ config.yaml # Configuration
|
||||
│ ├─ sessions/ # Session metadata
|
||||
│ └─ checkpoints/ # Named checkpoints
|
||||
└─ .git/
|
||||
└─ refs/heads/entire/checkpoints/v1
|
||||
entire/checkpoints/v1/ ← orphan branch (no common ancestor with main)
|
||||
├─ a/b2c4d5e6f7/ ← checkpoint ID (random hex)
|
||||
│ ├─ metadata.json ← summary, attribution %, token count
|
||||
│ └─ 0/
|
||||
│ ├─ full.jsonl ← complete session transcript
|
||||
│ ├─ prompt.txt ← user prompts
|
||||
│ └─ context.md ← generated context summary
|
||||
└─ c/d4e5f6a7b8/ ← another checkpoint
|
||||
└─ ...
|
||||
|
||||
main ----o----o----o----o----> (normal code history, untouched)
|
||||
|
||||
entire/checkpoints/v1 ----x----x----x----> (no common ancestor = no merge conflicts)
|
||||
```
|
||||
|
||||
Why orphan branch: `git clone --single-branch` ignores checkpoints (zero overhead for consumers). Multiple devs can push in parallel without conflicts (checkpoint IDs are unique).
|
||||
|
||||
**Limitations:**
|
||||
|
||||
- Very new (launched Feb 10-12, 2026) - limited production feedback
|
||||
|
|
@ -436,6 +501,33 @@ project/
|
|||
- ✅ Governance gates (approval required before actions)
|
||||
- ⚠️ Personal projects: May be overkill (simple `Co-Authored-By` suffices)
|
||||
|
||||
**Go/No-Go evaluation thresholds (run a 2h spike before team rollout):**
|
||||
|
||||
```bash
|
||||
# Install on a throwaway branch
|
||||
entire enable
|
||||
|
||||
# After 2-3 normal sessions, measure:
|
||||
du -sh .git/refs/heads/entire/ # Storage overhead per session
|
||||
time git push # Push time including condensation
|
||||
ls .git/hooks/ # Check for conflicts with existing hooks
|
||||
```
|
||||
|
||||
| Metric | Green (proceed) | Red (stop) |
|
||||
|--------|----------------|-----------|
|
||||
| Checkpoint size | < 10 MB/session | > 10 MB → storage risk |
|
||||
| Push overhead | < 5s | > 5s → daily friction |
|
||||
| Repo growth | < 100 MB/week | > 100 MB/week |
|
||||
| Hook compatibility | No conflicts | Timeout or conflict → blocker |
|
||||
|
||||
**Team size guidance:**
|
||||
|
||||
| Team | Recommendation |
|
||||
|------|---------------|
|
||||
| Solo dev | `Co-Authored-By` trailer suffices |
|
||||
| 2-5 devs | Justified if multi-agent workflows or shared audit trail needed |
|
||||
| 5+ devs / enterprise | Strong fit (shared checkpoints, governance, compliance) |
|
||||
|
||||
### 5.2 Automated Attribution Hook
|
||||
|
||||
Add `Assisted-by` trailer automatically when Claude Code commits:
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue