docs(planning): T-008 Metrics Schema Design

[rjmurillo-bot]

Summary

Phase 2 metrics collection schema design for Issue #169 (P2 priority).

Specification References

Type	ID	Title
Issue	#169	Metrics Collection and Performance Monitoring Dashboard
Plan	T-008	Design Metrics Collection Schema
Phase	2	Enhancement PROJECT-PLAN.md

Changes

• Add comprehensive T-008 metrics schema design plan (1180 lines)
• 3 governance documents specification (schema, protocol, report format)
• 11 metrics taxonomy (M-001 to M-008, P-001 to P-003)
• YAML schema design with validation rules
• Mechanized enforcement strategy (scripts + hooks)
• Collection point mapping (6 collection points)

Type of Change

• Documentation (planning artifacts)
• Bug fix
• New feature
• Breaking change

Testing

• Markdownlint validation passed
• No code changes (design only)

Agent Review

N/A - Planning document only, no code implementation

Checklist

• Plan answers all 7 PRD clarifying questions
• Follows Phase 2 traceability governance patterns
• Issue feat: Add Metrics Collection and Performance Monitoring Dashboard #169 updated with plan link
• Ready for future implementation (T-009, T-010)

Related Issues

Closes #169 (design phase complete, implementation deferred to P2)

🤖 Generated with Claude Code

[gemini-code-assist]

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

[github-actions]

PR Validation Report

Tip

✅ Status: PASS

Description Validation

Check	Status
Description matches diff	PASS

QA Validation

Check	Status
Code changes detected	False
QA report exists	N/A

---

_{Powered by PR Validation workflow}

[github-actions]

AI Quality Gate Review

Tip

✅ Final Verdict: PASS

Walkthrough

This PR was reviewed by six AI agents in parallel, analyzing different aspects of the changes:

• Security Agent: Scans for vulnerabilities, secrets exposure, and security anti-patterns
• QA Agent: Evaluates test coverage, error handling, and code quality
• Analyst Agent: Assesses code quality, impact analysis, and maintainability
• Architect Agent: Reviews design patterns, system boundaries, and architectural concerns
• DevOps Agent: Evaluates CI/CD, build pipelines, and infrastructure changes
• Roadmap Agent: Assesses strategic alignment, feature scope, and user value

Review Summary

Agent	Verdict	Category	Status
Security	PASS	N/A	✅
QA	PASS	N/A	✅
Analyst	PASS	N/A	✅
Architect	PASS	N/A	✅
DevOps	PASS	N/A	✅
Roadmap	PASS	N/A	✅

💡 Quick Access: Click on individual agent jobs (e.g., "🔒 security Review", "🧪 qa Review") in the workflow run to see detailed findings and step summaries.

Analyst Review Details

Now I have enough context to complete my analysis. Let me review the key aspects of this PR.

Code Quality Score

Criterion	Score (1-5)	Notes
Readability	5	Clear structure, consistent headers, well-organized sections
Maintainability	5	Modular design with separate sections for schema, protocol, and format
Consistency	5	Follows established traceability governance doc patterns exactly
Simplicity	4	Comprehensive but necessarily detailed for 11 metrics

Overall: 4.75/5

Impact Assessment

• Scope: Module-wide (.agents/governance/ and .agents/planning/)
• Risk Level: Low (design document only, no code changes)
• Affected Components: .agents/planning/T-008-metrics-schema-design.md (1 file added)

Findings

Priority	Category	Finding	Location
Low	Documentation	Plan references 3 governance docs as deliverables but they are not created in this PR	T-008-metrics-schema-design.md
Low	Scope	PR description says "Closes #169" but this is design phase only; implementation is T-009/T-010	PR description
Low	Traceability	Relative link format [SESSION-PROTOCOL](.agents/planning/enhancement-PROJECT-PLAN.md) may need leading slash verification	Line 7

Recommendations

1. Update PR description to use "Advances feat: Add Metrics Collection and Performance Monitoring Dashboard #169" or "Relates to feat: Add Metrics Collection and Performance Monitoring Dashboard #169" instead of "Closes feat: Add Metrics Collection and Performance Monitoring Dashboard #169" since this is design-only.
2. The 3 governance deliverables (metrics-schema.md, metrics-protocol.md, metrics-report-format.md) are documented as future deliverables, not created by this PR. PR title correctly indicates this is the "design plan" not the actual governance docs.

Verdict

VERDICT: PASS
MESSAGE: Comprehensive design plan following established governance patterns. Documentation-only change with clear handoff to T-009/T-010 implementation phases.

QA Review Details

Based on my review of the PR description and the changed file content:

---

QA Review Verdict

VERDICT: PASS
MESSAGE: Documentation-only PR with comprehensive planning artifacts; no executable code requires testing.

PR TYPE: DOCS
FILES: .agents/planning/T-008-metrics-schema-design.md (1186 lines added)

EVIDENCE:
- Tests found: N/A - DOCS only (no executable code)
- Edge cases: N/A - planning document, not code
- Error handling: N/A - no executable code
- Blocking issues: 0

---

Analysis Summary

Check	Status	Notes
PR Type Classification	DOCS	Single markdown file in .agents/planning/
Executable Code	None	Design document with pseudocode examples only
Test Requirements	N/A	Documentation does not require tests
Schema Validation	N/A	No config files modified
Broken Links	Not detected	Internal references appear valid

Document Quality Assessment

Criterion	Status
Structure follows governance patterns	[PASS]
11 metrics defined with complete taxonomy	[PASS]
YAML schema examples provided	[PASS]
Validation rules documented	[PASS]
Collection points mapped	[PASS]
Success criteria defined	[PASS]

Regression Risk Assessment

• Risk Level: Low
• Rationale: Planning document only; no code, configuration, or workflow changes
• Affected Components: None (design artifact for future T-009/T-010 implementation)
• Breaking Changes: None

---

Recommendation: Merge approved. This is a well-structured design document that follows the established three-document governance pattern. The PowerShell script examples are pseudocode for future implementation (T-009), not executable code in this PR.

Architect Review Details

Based on my review of the T-008 Metrics Schema Design document and relevant ADRs, I can now provide my architectural assessment.

---

Design Quality Assessment

Aspect	Rating (1-5)	Notes
Pattern Adherence	5	Follows established 3-document governance pattern from traceability work. SOLID principles respected.
Boundary Respect	5	Clear T-008 (design) vs T-009 (implementation) separation. Design-only scope maintained.
Coupling	4	Metrics loosely coupled to session logs. Minor concern: 11 metrics may create tight coupling to many collection points.
Cohesion	5	Each governance doc has single responsibility. Metrics grouped by logical category.
Extensibility	5	Validation algorithm is language-agnostic pseudocode. P0/P1 prioritization supports phased adoption.

Overall Design Score: 4.8/5

---

Architectural Concerns

Severity	Concern	Location	Recommendation
Low	11 metrics tracked at 6 collection points creates O(n*m) complexity	Lines 129-214	Document metric-to-collection-point mapping matrix for T-009 implementers.
Low	Dual storage (YAML + JSON) adds sync risk	Lines 797-800	Ensure JSON cache is derived from YAML (single source of truth), never bidirectional.
Low	__REQUIRED__ placeholder pattern is novel	Lines 378-400	Document validation regex pattern explicitly to avoid T-009 regex bugs like traceability had.

---

Breaking Change Assessment

• Breaking Changes: No
• Impact Scope: None
• Migration Required: No
• Migration Path: N/A - Design document only, no implementation changes.

---

Technical Debt Analysis

• Debt Added: Low (design documentation has no runtime cost)
• Debt Reduced: Medium (standardized schema prevents ad-hoc metrics implementations)
• Net Impact: Improved

---

ADR Assessment

• ADR Required: No
• Decisions Identified: (1) Dual storage strategy, (2) 6 collection points, (3) Mechanized enforcement
• Existing ADR: Covered by ADR-005 (PowerShell-only for T-009 scripts), ADR-006 (thin workflows for CI aggregation), ADR-014 (distributed handoff)
• Recommendation: N/A - No new ADR needed. Existing ADRs govern implementation decisions.

The design explicitly references ADR-005 compliance (lines 1059-1060) and ADR-007/ADR-014 alignment (lines 1062-1069).

---

Recommendations

1. Add explicit regex pattern for __REQUIRED__ placeholder validation (e.g., /__REQUIRED__/) to prevent T-009 implementation bugs.
2. Consider reducing initial metric count to P0 only (4 metrics) for faster T-009 delivery, with P1 as Phase 2.
3. Document that JSON cache is always regenerated from YAML, never the reverse.

---

Verdict

VERDICT: PASS
MESSAGE: Design document follows established governance patterns. No code changes introduced. Clear handoff to T-009 with explicit script specifications and enforcement hierarchy. Aligns with ADR-005, ADR-006, ADR-007, and ADR-014.

Security Review Details

Based on my review, this is a DOCS-only PR containing a planning document for metrics schema design.

PR Type Detection

Category	Files Changed
DOCS	.agents/planning/T-008-metrics-schema-design.md (1 file, 1180 lines)

Analysis

Secret Detection

No secrets detected:

• No API keys, tokens, or credentials
• PowerShell script examples contain placeholder/template code only
• No environment variable values exposed

Security-Relevant Content Review

The document contains:

• Pseudocode and PowerShell script specifications (design only, not executable)
• YAML schema examples with placeholder values (__REQUIRED__, $commitSha)
• No executable code (all examples are for future T-009 implementation)

Findings

Severity	Category	Finding	Location	CWE
None	-	No security issues found	-	-

Observations

1. Script examples use proper validation patterns (exit codes, input validation)
2. PowerShell examples follow secure coding practices (parameterized inputs)
3. No hardcoded credentials or sensitive data
4. Design documents reference existing security governance (PROJECT-CONSTRAINTS.md)

VERDICT: PASS
MESSAGE: Documentation-only PR with planning artifacts. No code changes, no secrets, no security concerns.

DevOps Review Details

Based on the PR description, this is a DOCS-only PR adding a planning document for T-008 Metrics Schema Design. Let me verify by checking the planning directory.

The PR adds T-008-metrics-schema-design.md to the planning directory. This is a DOCS-only PR (planning documentation).

---

DevOps Review: T-008 Metrics Schema Design

Pipeline Impact Assessment

Area	Impact	Notes
Build	None	No code changes, documentation only
Test	None	No test files modified
Deploy	None	No deployment configuration changes
Cost	None	No CI/CD runtime impact

CI/CD Quality Checks

Check	Status	Location
YAML syntax valid	N/A	No workflow files modified
Actions pinned	N/A	No actions modified
Secrets secure	N/A	No secret references
Permissions minimal	N/A	No workflow changes
Shell scripts robust	N/A	No scripts modified

Findings

Severity	Category	Finding	Location	Fix
—	—	No DevOps concerns	—	—

Template Assessment

• PR Template: Adequate (properly completed)
• Issue Templates: Not modified
• Template Issues: None

Automation Opportunities

Opportunity	Type	Benefit	Effort
None identified	—	—	—

The planning document describes future metrics collection infrastructure, but implementation is deferred to T-009/T-010. No immediate automation needed.

Recommendations

1. None. This is a design document that does not affect CI/CD infrastructure.

Verdict

VERDICT: PASS
MESSAGE: DOCS-only PR. Planning document (1186 lines) with no CI/CD, workflow, or script changes. No DevOps review required per scope detection rules.

Roadmap Review Details

Based on my review, I can now provide the strategic alignment assessment.

---

Strategic Alignment Assessment

Criterion	Rating	Notes
Aligns with project goals	High	Directly addresses Issue #169, Phase 2 metrics enhancement in PROJECT-PLAN
Priority appropriate	Medium	P2 per Issue #169; metrics deferred behind traceability (T-001-T-007 now COMPLETE)
User value clear	Medium	Metrics enable performance monitoring, but value is internal/operational, not user-facing
Investment justified	High	6-8 hours design effort; establishes foundation for T-009/T-010 implementation

Feature Completeness

• Scope Assessment: Right-sized
• Ship Ready: Yes (design document only, no code implementation)
• MVP Complete: Yes for T-008 scope; explicit T-009/T-010 handoff documented
• Enhancement Opportunities: None identified; comprehensive coverage of 11 metrics, 5 validation rules, 6 collection points

Impact Analysis

Dimension	Assessment	Notes
User Value	Low	Internal tooling for agent performance tracking, not end-user facing
Business Impact	Medium	Enables data-driven decisions on agent effectiveness (RICE/KANO basis)
Technical Leverage	High	Reuses Phase 2 traceability governance pattern; mechanized enforcement philosophy prevents drift
Competitive Position	Neutral	Standard observability practice; differentiator is governance-as-code approach

Concerns

Priority	Concern	Recommendation
Low	1186 lines is substantial for a design doc	Acceptable: comprehensive schema prevents T-009 implementation ambiguity
Low	11 metrics may create maintenance burden	Mitigated: P0/P1 prioritization and quarterly review documented
Low	YAML parsing complexity in PowerShell	Mitigated: flat structures, no deep nesting per design notes

Recommendations

1. Proceed with merge: Design aligns with Phase 2 roadmap, follows established governance patterns
2. Track T-009 timeline: Implementation phase should follow within 2-3 sessions to validate schema usability
3. Bootstrap validation: Consider lightweight YAML validation in T-009 before full enforcement (per migration strategy Phase 1-2-3)

Verdict

VERDICT: PASS
MESSAGE: Design phase for Issue #169 metrics collection aligns with PROJECT-PLAN Phase 2. Comprehensive schema with mechanized enforcement philosophy. Ready for T-009 implementation.

---

Run Details

Property	Value
Run ID	20679413002
Triggered by	pull_request on 742/merge
Commit	8b4d3d867138dfd741b4347e87312fd0813dcf14

_{Powered by AI Quality Gate workflow}

[Copilot]

Pull request overview

This PR introduces a comprehensive design document (T-008) for Phase 2 metrics collection schema following the three-document governance pattern established by the traceability work. The plan defines 11 metrics (M-001 to M-008, P-001 to P-003) with YAML schemas, validation rules, and mechanized enforcement strategies to enable data-driven agent optimization per Issue #169.

Key Changes

• Metrics Taxonomy Design: Defines 11 metrics across 4 categories (Activity, Quality, Performance, Infrastructure) with baseline values, targets, and collection points mapped to the session lifecycle
• Three Governance Documents Specification: Details the structure for metrics-schema.md (~300 lines), metrics-protocol.md (~350 lines), and metrics-report-format.md (~250 lines) following established patterns
• Mechanized Enforcement Strategy: Specifies 5 enforcement mechanisms including auto-generation scripts, pre/post-commit hooks, and validation gates to ensure metrics capture without relying on agent memory

[Copilot]

The validation algorithm has a logic issue where it attempts to access metric.file in line 947, but the pseudocode only stores metric_id = yaml.id and metrics[metric_id] = yaml (line 907). The file path is not stored in the metrics dictionary, so metric.file would be undefined. The algorithm should either store the file path in the metrics dictionary (e.g., yaml.file = file before storing) or maintain a separate mapping of metric_id to file path.

[Copilot]

The regex replacement pattern in lines 509-511 has an issue. The -replace operator uses a script block that references $matches[1], but the $matches automatic variable won't be available in the script block context because it belongs to the outer scope where the match occurred. This will cause a runtime error. The replacement should use the matched group directly in the replacement string, like: $content -replace "commits: (\d+)", { "commits: $([int]$_.Groups[1].Value + 1)" } or use a simpler approach without a script block.

Suggested change

	"commits: $([int]$matches[1] + 1)"
	"commits: $([int]$_.Groups[1].Value + 1)"

[Copilot]

Line 601 retrieves the most recent session log by LastWriteTime, but this approach assumes the most recently modified file is the current session. If multiple sessions are being worked on concurrently, or if an old session file is modified, this will select the wrong session log. A more robust approach would be to detect the current session log by matching the current date in the filename (e.g., matching against today's date pattern) or by passing the session log path explicitly as a required parameter.

Suggested change

	$SessionLogPath = Get-ChildItem ".agents/sessions" -Filter "*session-*.md" |
	Sort-Object LastWriteTime -Descending |
	Select-Object -First 1
	$today = Get-Date -Format 'yyyy-MM-dd'
	$sessionFiles = Get-ChildItem ".agents/sessions" -Filter "$today-session-*.md" | Sort-Object Name
	if ($sessionFiles.Count -eq 1) {
	$SessionLogPath = $sessionFiles[0].FullName
	}
	elseif ($sessionFiles.Count -eq 0) {
	throw "No session log found for today ($today). Please create a session log or specify -SessionLogPath explicitly."
	}
	else {
	throw "Multiple session logs found for today ($today). Please specify the correct log with -SessionLogPath."
	}

[Copilot]

Line 706 states "Post-commit hook auto-injects commit metrics" as the "New (Strong)" approach, but the enforcement table (line 697) shows that post-commit auto-injection does NOT block (Blocks? = "No"). This creates confusion about what "strong" enforcement means. If the post-commit hook fails or encounters an error, it won't prevent the commit from completing, which could lead to missing metrics data. Consider clarifying whether this is acceptable or if error handling should trigger some form of notification.

Suggested change

	| "orchestrator writes agent_invocation" | Post-commit hook auto-injects commit metrics |
	| "Pre-commit validates format" | Pre-commit blocks on missing/incomplete metrics |
	| "Manual session end checklist" | Validation script with exit codes blocks close |
	| "Retrospective extracts metrics" | Metrics already present via automation |
	**Philosophy**:
	- **No trust, only verify**: Scripts enforce, not agent memory
	- **Fail closed**: Missing metrics = blocked commit/session
	- **Auto-capture where possible**: Hooks inject data without agent involvement
	| "orchestrator writes agent_invocation" | Post-commit hook attempts to auto-inject commit metrics (best-effort, non-blocking; see enforcement table) |
	| "Pre-commit validates format" | Pre-commit blocks on missing/incomplete metrics |
	| "Manual session end checklist" | Validation script with exit codes blocks close |
	| "Retrospective extracts metrics" | Metrics already present via automation |
	**Philosophy**:
	- **No trust, only verify**: Scripts enforce, not agent memory
	- **Fail closed**: Missing metrics = blocked commit/session via validation gates (pre-commit, session-end, CI), not via best-effort capture hooks
	- **Auto-capture where possible**: Hooks inject data without agent involvement
	- **Best-effort capture hooks**: Non-blocking hooks (e.g., post-commit auto-injection) MUST log failures and emit clear notifications so that later validation can detect and block missing metrics

[Copilot]

The agents_invoked YAML structure in lines 250-254 uses invalid YAML syntax. It's shown as a list with hyphen prefixes containing key-value pairs (- orchestrator: 1), which creates a list of single-key dictionaries. This should either be a dictionary without hyphens (as shown in line 375 where it's initialized as {}), or a proper list of invocation records. The intended structure appears to be a dictionary mapping agent names to invocation counts, so it should be formatted as:

agents_invoked:
  orchestrator: 1
  planner: 1
  implementer: 3
  qa: 1

This inconsistency will cause parsing errors and must be corrected in all schema examples.

Suggested change

	- orchestrator: 1
	- planner: 1
	- implementer: 3
	- qa: 1
	orchestrator: 1
	planner: 1
	implementer: 3
	qa: 1

[Copilot]

The PowerShell date format strings throughout these script examples use "yyyy-MM-DD" (capital DD) which is incorrect. In PowerShell's Get-Date cmdlet, "dd" represents day (lowercase), while "DD" represents day of year. All occurrences should use "yyyy-MM-dd" to correctly format dates as YYYY-MM-DD. This pattern appears in multiple script examples throughout the document (lines 360, 361, 501, 609, 614) and should be corrected consistently.

Suggested change

	$endTime = Get-Date -Format "yyyy-MM-DD HH:mm:ss"
	$content = $content -replace "end_time: __REQUIRED__", "end_time: $endTime"
	# Auto-calculate duration
	if ($content -match "start_time:\s+(.+)") {
	$startTime = [datetime]::ParseExact($matches[1], "yyyy-MM-DD HH:mm:ss", $null)
	$endTime = Get-Date -Format "yyyy-MM-dd HH:mm:ss"
	$content = $content -replace "end_time: __REQUIRED__", "end_time: $endTime"
	# Auto-calculate duration
	if ($content -match "start_time:\s+(.+)") {
	$startTime = [datetime]::ParseExact($matches[1], "yyyy-MM-dd HH:mm:ss", $null)

[Copilot]

The Collection Point Mapping table (lines 292-299) lists which metrics are fed by each collection point, but M-007 (Vulnerability Discovery Timeline) is not mentioned in any collection point's "Metrics Fed" column. According to the metric taxonomy (line 171), M-007 is collected via "security agent, retrospective", but these collection points are not listed in the mapping table. This creates an inconsistency in the design where M-007 cannot be collected according to the documented collection point architecture.

Suggested change

	| ci_run | Weekly cron job | agent-metrics.yml workflow | All metrics (aggregation) | `.agents/metrics/YYYY-MM-DD-report.md` |
	| security_agent | On security scan / vulnerability detection | Security agent logs / reports | M-007 (vulnerability discovery timeline) | Security scan reports, security-related session logs |
	| retrospective | During incident / release retrospective sessions | Retrospective notes / session logs | M-007 (vulnerability discovery timeline) | `.agents/retrospective/*` session logs |
	| ci_run | Weekly cron job | agent-metrics.yml workflow | All metrics (aggregation over collected M-001–M-008, P-001) | `.agents/metrics/YYYY-MM-DD-report.md` |

[Copilot]

The roles and responsibilities described in lines 74-80 assign specific agents to record metrics (e.g., "orchestrator: Records M-001", "implementer: Tracks P-001"), which contradicts the enforcement philosophy stated later (lines 321-331) that emphasizes "mechanized, unskippable enforcement" with "NO reliance on agent memory or prompts". If agents are expected to manually record metrics, this creates the exact anti-pattern the document warns against. The governance documents should clarify that agents don't manually write metrics - the hooks and scripts automatically capture them.

[Copilot]

Line 294 indicates that P-001 (Token Efficiency) captures "baseline tokens" at session_start, but the metric definition (lines 185-190) states that P-001 is collected at both session_start AND session_end, with the calculation being (baseline_tokens - actual_tokens) / baseline_tokens * 100. The collection point mapping should clarify that session_start captures baseline_tokens and session_end captures actual_tokens, or both collection points should be listed for P-001 in the "Metrics Fed" column.

Suggested change

	| session_end | After QA, before close | Session log Session End | M-006 (end time), M-008 (policy compliance) | Session log final section |
	| session_end | After QA, before close | Session log Session End | M-006 (end time), M-008 (policy compliance), P-001 (actual tokens) | Session log final section |

[Copilot]

This planning document is missing YAML front matter, which is inconsistent with the governance document pattern established by the traceability documents it references as templates. The governance documents (traceability-schema.md, traceability-protocol.md, orphan-report-format.md) all use YAML front matter with version, created date, status, and related document links. This document should include similar metadata to follow the established pattern.

[coderabbitai]

Caution

Review failed

The pull request is closed.

📝 Walkthrough

Walkthrough

Introduces design-phase documentation for metrics collection schema (T-008), including governance documents, metric taxonomy (11 metrics), dual storage approach (YAML frontmatter and JSON cache), validation rules, enforcement mechanisms across tooling, and phased migration guidance.

Changes

Cohort / File(s)

Summary

Metrics Schema Design Documentation ​.agents/planning/T-008-metrics-schema-design.md

Adds comprehensive design specification covering metric taxonomy, YAML/JSON storage architecture, validation schemas, enforcement mechanisms (session log generation, pre-commit validation, post-commit auto-injection, session-end validation, CI aggregation), data-flow mapping, collection-point definitions, example snippets, validation pseudocode, and phased migration phases from T-008 to T-009/T-010.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch feat/t-008-metrics-schema-design

---

📜 Recent review details

Configuration used: Repository YAML (base), Organization UI (inherited)

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0e2a588 and 12a52aa.

📒 Files selected for processing (1)

• .agents/planning/T-008-metrics-schema-design.md

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}