Cathedral Audit

A structured process for measuring and closing spec-code drift in the Cathedral C# codebase.

When to Run

After a build wave (multiple features/refactors landed)
Before starting a new major feature (establish baseline)
When spec-code drift is suspected
Periodically as a health check (not on a calendar — trigger on events)

Process Overview

1. Forward Audit (specs → code)
2. Reverse Audit (code → specs)
3. Consolidation & Prioritization
4. Execution
5. Verification

Step 1: Forward Audit (Specs → Code)

For each spec in kitty-specs/, compare what the spec says against what the code does.

Output per spec: One of: - ✅ Conformant — code matches spec - ⚠️ Divergent — code exists but differs from spec - ❌ Missing — spec describes something not built

Deliverable: kitty-specs/000-project-context/spec-audit-YYYY-MM-DD.md

Use parallel CC agents (one per spec batch) for speed if memory allows. On memory-constrained hosts (e.g., WSL2), run sequentially — two concurrent CC sessions will OOM. Provide each agent read-only access.

Step 2: Reverse Audit (Code → Specs)

Scan all .cs files in src/Cathedral.Core/ and src/Cathedral.TestHarness/. For each file/subsystem, determine:

Is it covered by a spec?
Does it match what the spec says?
Is it dead/orphaned code?

Output sections: 1. Executive Summary — counts with delta from previous audit 2. Unspecced Code — files/subsystems with no spec coverage 3. Architectural Divergences — code takes a fundamentally different path than spec 4. Code Exceeding Spec — code has features the spec doesn't document 5. Dead/Orphaned Code — files with no callers or references 6. Bugs Discovered — runtime, data, or logic bugs found during review 7. Comparison with Previous Audit — what improved, what remains

Deliverable: kitty-specs/000-project-context/reverse-audit-YYYY-MM-DD.md

Use parallel CC agents (group files by directory/subsystem) for speed if memory allows. Run sequentially on memory-constrained hosts.

Step 3: Consolidation & Prioritization

Merge findings from both audits into a prioritized action plan:

Priority	Category	Criteria
P0	Bug fixes	Runtime impact — broken endpoints, data corruption, crashes
P1	Dead code removal	Safe deletes that reduce confusion and LOC
P2	Data quality fixes	Dropped data, wrong defaults, double-logging
P3	Spec coverage	Write new specs for unspecced code (no code changes)
P4	Spec accuracy	Update existing specs to document code-exceeding-spec features
P5	Mechanical refactors	Renames, wiring, entity-scoping completion
P6	Architectural gaps	V2 features where code diverges from spec by design (defer)

Rules: - Bugs always get their own section with severity ratings - "Code exceeding spec" = spec update, not code change - Architectural divergences that are intentionally deferred (V2 work) go to P6 and are documented but not actioned - Each priority level should be achievable in a single CC session

Deliverable: Recommendations section in the reverse audit report.

Step 4: Execution

Execute fixes by priority tier (P0 first, P6 last or deferred).

Per priority tier: 1. Log intent to memory/YYYY-MM-DD.md — tier name, CC session name, what's being attempted 2. Write a task briefing for CC (see references/cc-task-template.md) 3. Launch CC session: cat /tmp/task.md | claude -p --allowedTools 'Edit,Write,Read,Bash' 4. Set up monitoring cron (every 5 min) 5. When CC completes: log results to daily memory — files changed, what was done, any issues 6. Verify build before committing — dotnet build must pass 7. If CC gets killed (OOM): check git diff --stat, verify build manually, fix any issues, log the incident 8. Commit with descriptive message referencing the priority tier 9. Log commit hash to daily memory

Hard rules: - ⚠️ ALWAYS verify dotnet build passes before committing. No exceptions. CC may get OOM-killed mid-build-check. - ⚠️ ALWAYS log to daily memory file at every step. Log intent before launch, results after completion, commit hash after commit. If the session dies, the log survives for recovery. - One commit per priority tier (or logical grouping)

Logging template for daily memory:

## [Priority Tier Name]
- CC session: [name] (launched ~HH:MM CST)
- Task: [brief description]
- Status: [RUNNING | ✅ COMPLETE | ❌ FAILED | ⚠️ KILLED]
- Files changed: [count]
- Key actions: [what was done]
- Issues: [any problems encountered]
- Committed as [hash]

Step 5: Verification

After all tiers are complete, optionally run a quick re-audit to measure improvement:

Compare counts: unspecced, divergent, dead code, bugs
Verify delta matches expectations
Document remaining gaps and whether they're P6/deferred or newly discovered

Deliverable: Updated audit files with comparison section.

Logging

Every audit produces a complete trail in memory/YYYY-MM-DD.md:

Audit launch — which audits are being run, baseline reference
Audit results — summary counts, key findings
Each priority tier — intent, CC session, results, issues, commit hash
Final summary — total commits, total lines changed, what's resolved vs deferred

This is non-negotiable. The Feb 17-18 amnesia incident proved that unlogged work is lost work. Log-then-act: write what you're about to do BEFORE doing it, then update with results.

Baseline Tracking

Always compare against the previous audit. Store audits as:

kitty-specs/000-project-context/
  spec-audit-YYYY-MM-DD.md      (forward)
  reverse-audit-YYYY-MM-DD.md   (reverse)

The executive summary table with deltas is the key metric:

| Category | Previous | Current | Delta |
|----------|----------|---------|-------|
| Unspecced Code | 38 | 24 | -14 |
| Divergences | 12 | 7 | -5 |
| Dead Code | 14 | 8 | -6 |
| Bugs | 0 | 8 | +8 |
| Conformant | ~60 | ~120 | +60 |

CC Task Briefing Template

See references/cc-task-template.md for the standard format for CC task briefings.

cathedral-audit

Installation