Documentation Master Index#
This is the central hub for all project documentation. This index is automatically maintained as requirements, specifications, and code evolve.
Quick Links#
- Specification Cross-Reference Table - Track relationships between requirements, specs, code, tests, and diagrams
- Requirements - Project requirements and feature requests
- Specifications - Technical specifications derived from requirements
- Diagrams - Architecture diagrams, threat models, and other visual documentation
- Rules - Project standards and conventions
- History - Decision logs and conversation history
- Templates - Templates for creating new documentation
Documentation Workflow#
This diagram shows how different documentation artifacts flow from requirements through to implementation.
Text Description: Documentation Flow#
Primary Flow:
- Requirements → Define what needs to be built
- Specifications → Technical details of how to build it (includes architecture decisions, data flows, integrations)
- Architecture Diagrams → Visual representations created FROM specifications
- Threat Models → Security risk analysis based on specifications and diagrams
- Tests → Test Drive Development (TDD) basically has tests first. Always follow TDD best practices but ensure it is human understandable and pythonic.
- Code Generation → Implementation based on specifications
Key Insight: Diagrams and threat models are created AFTER specifications because they require knowing the system architecture, data flows, and technical approach.
Relationships:
- Requirements are the starting point for all work
- Specifications serve as the central hub, linking to both implementation (code/tests) and documentation (diagrams/threat models)
- Diagrams and threat models support understanding and security
- Code and tests validate the specification
Mermaid Diagram: Documentation Flow#
📊 View Mermaid Diagram Code
graph LR
A[Requirements] --> B[Specifications]
B --> C[Architecture Diagrams]
B --> D[Threat Models]
B --> E[Tests]
E --> F[Code Generation]ASCII Diagram: Documentation Flow#
┌──────────────┐
│ Requirements │
└──────┬───────┘
│
↓
┌──────────────────────────────────────────────────┐
│ Specifications │
│ (includes architecture, data flows, integrations)│
└──────┬───────────────────────────────────────────┘
│
├──────────────────┬─────────────────┐
│ │ │
↓ ↓ ↓
┌─────────────┐ ┌──────────┐ ┌──────────┐
│Architecture │ │ Tests │ │ Code │
│ Diagrams │ │ (TDD) │ │Generation│
└──────┬──────┘ └────┬─────┘ └────▲─────┘
│ │ │
│ └─────────────────┘
│
↓
┌──────────────┐
│Threat Models │◄───── (requires Spec + Architecture)
│ (STRIDE) │
└──────────────┘
Detailed Flow Explanation#
This documentation workflow ensures traceability and completeness:
- Requirements as foundation: Everything starts with clear, documented requirements that define the problem and acceptance criteria
- Specifications as bridge: Technical specifications translate requirements into actionable plans with architecture decisions, data flows, and security considerations
- Architecture diagrams: Created FROM specifications to visualize system design
- Threat models: Created using specifications and diagrams to identify security risks based on actual system architecture
- Code implementation: Specifications guide code generation using TDD methodology
- Test validation: Tests verify that code meets specification requirements
- Visual documentation: Architecture diagrams provide high-level understanding of system design
- Security analysis: Threat models identify and document security risks and mitigations
All documents are cross-referenced in SPEC-CROSS-REFERENCE.md to maintain traceability throughout the development lifecycle.
See .github/instructions/master-workflow.md for detailed workflow documentation.
Workflow Prompts#
- Requirements → Specification Workflow - Complete orchestration
- Specification → Code Workflow - TDD implementation with reviews
- All Prompts - Individual operation prompts
Quality Gates#
- Quality Checklists - Definition of Done for each stage
Folder Structure#
Requirements (requirements/)#
Source of truth for what needs to be built. Each requirement document should:
- Clearly state the problem or need
- Define acceptance criteria
- Link to related specifications
Specifications (specifications/)#
Technical specifications generated from requirements. Each spec should:
- Reference the originating requirement(s)
- Define technical approach and architecture
- Include security considerations (CodeGuard compliance)
- Link to implementation files and tests
Diagrams (diagrams/)#
Visual documentation including:
architecture-*.md- System architecture diagramsthreat-model-*.md- Threat model diagramssequence-*.md- Sequence diagramserd-*.md- Entity relationship diagrams- Other diagram types as needed
All diagrams use Mermaid format embedded in Markdown.
Rules (rules/)#
Project-specific standards and conventions:
History (history/)#
Decision logs and important conversations that shaped the project. Each entry should be dated and capture the context of major decisions.
Key history files:
- Setup Conversation - How this template was created
- Workflow Usage Guide - Practical examples and step-by-step instructions
Templates (templates/)#
Starting point templates for creating new documentation:
Using This Documentation System#
For Humans#
- Start with requirements - clearly define what you need
- Review or generate specifications from requirements
- Use the cross-reference table to track implementation progress
- Follow the master workflow for the complete development process
For AI Assistants (Claude Code / GitHub Copilot)#
- See .github/instructions/claude-usage.instructions.md
- See .github/instructions/copilot-usage.instructions.md
Maintenance#
This index and all cross-references should be updated:
- When new requirements are added
- When specifications are created or modified
- When code is generated or changed
- When diagrams are created or updated
See automation options in .github/instructions/ for keeping documentation synchronized.