CONTRIBUTING.md

Contributing

Workflow

Katra v2 is being developed in the open through issues and pull requests.

Current expectations:

• open new work through the repository issue form
• follow the Branch Protection policy for main (see "Branch Protection" below)
• every pull request should reference an issue
• use the repository pull request template
• keep pull requests focused and reviewable

Branch Protection

The main branch is intended to stay protected so the branch history remains reviewable and predictable.

Current protection expectations:

• direct pushes to main are disabled
• force pushes to main are disabled
• branch deletion is disabled for main
• conversation resolution is required before merge
• admins are also subject to branch protection

At the moment, an approving review is not required because the repository is being maintained through a single authenticated GitHub account in this workflow. That rule can be tightened later when the review flow supports it cleanly.

Required status checks are part of the policy as well. The current required status check for pull requests is the GitHub Actions check labeled PR Validation / validate (workflow name + job name) as shown in the branch protection settings and in the PR Checks tab.

Conventional Commits

Katra uses Conventional Commits for commit messages—especially pull request titles (used as squash-merge commit titles)—to keep merge history and release automation consistent.

Expected format:

type(scope optional): short summary

Examples:

feat(chat): add conversation node scaffolding
fix(auth): handle expired Fortify sessions
docs: rewrite the README for Katra v2
chore: sanitize Boost MCP configuration

Preferred Types

• feat: a user-facing feature or capability
• fix: a bug fix
• perf: a performance improvement
• refactor: an internal code change without intended behavior change
• docs: documentation-only work
• test: test-only work
• ci: CI or automation changes
• build: build, packaging, or dependency-system changes
• chore: repository maintenance or non-product changes

Breaking Changes

Breaking changes should be called out explicitly using Conventional Commits syntax.

Examples:

feat!: replace the conversation node schema
feat(api)!: redesign graph query responses

You can also describe the break in the commit body or PR body with:

BREAKING CHANGE: explanation

Pull Requests And Merge Strategy

Because Katra intends to automate version bumps and releases from merges to main, pull requests should be merged in a way that keeps the final history predictable.

Current policy:

• the pull request title should follow Conventional Commits
• the final merged commit on main should clearly describe the released change

In practice, this means the pull request title matters. Release automation reads the first-parent history on main.

• for GitHub merge commits, the workflow reads the first non-empty conventional commit line in the merge commit message, which should match the pull request title
• for squash merges, the squash commit title should remain a valid conventional commit

Semantic Versioning

Katra uses Semantic Versioning with tags in the format:

vX.Y.Z

Examples:

v0.1.0
v0.2.3
v1.0.0

Version Bump Rules

The intended release policy is:

• feat => minor version bump
• fix => patch version bump
• perf => patch version bump
• commits marked with ! or BREAKING CHANGE: => major version bump

The following commit types should not create a product release by themselves unless they also include a breaking change:

• docs
• test
• chore
• ci
• build
• refactor

Release Policy

Katra intends to automate tags and GitHub releases from merges into main.

Target behavior:

• a pull request is merged into main
• release automation evaluates the conventional commit on main
• the next semantic version is calculated automatically
• because v1.0.0 preserves the original prototype, the v2 rewrite line on main floors its first automated product release at v2.0.0
• a tag in vX.Y.Z format is created automatically
• the release-tagging workflow creates or updates the GitHub release from the automated tag, including generated release notes
• the separate tagged-release workflow remains available for semantic version tags that are pushed manually outside the main release automation flow

This means contributors should think of pull request titles and merge commits as release inputs, not just review labels.

Notes

• if a pull request contains mixed work, choose the title based on the highest-impact user-facing change
• if a pull request includes a breaking change, make that explicit in the title or body
• if release behavior becomes more specific later, this policy should be updated to match the automation

Feature Flags

Desktop UI rollout work should use Laravel Pennant instead of ad hoc booleans or environment checks.

Current convention:

• desktop UI rollout flags live in App\Features\Desktop\*
• stored Pennant names should use the ui.desktop.* namespace
• desktop shell code should check rollout flags through feature classes or the App\Support\Features\DesktopUi helper, not raw string literals scattered through Blade or controller code

This keeps staged UI work explicit, testable, and easy to disable while mock or feedback-only surfaces are still settling.

UI Components

Desktop UI work should be built from small Blade or Livewire components instead of expanding page-level templates with raw repeated markup.

Current convention:

• prefer reusable components under resources/views/components/desktop/* for desktop shell primitives
• keep component responsibilities narrow so mock surfaces can evolve without rewriting the whole shell
• if Livewire is introduced later, keep the same atomic component mindset instead of rebuilding the desktop UI around large monolithic pages