chore: add spec-drift detection commands and pre-commit hook

[ciscoRankush]

This pull request addresses

Adding automated SDD (Spec-Driven Development) documentation drift detection tooling to ensure ai-docs stay in sync with source code.

by making the following changes

• .claude/commands/spec-drift.md — Full scan command that auto-discovers all ai-docs folders, spawns parallel checker agents, and validates 7 drift categories (file tree, method/API, types, events, architecture, links, code examples)
• .claude/commands/spec-drift-changed.md — Incremental scan that only validates ai-docs affected by staged/unstaged file changes, with verification marker creation
• .claude/hooks/check-ai-docs-drift.sh — Pre-commit blocking hook that prevents committing when ai-docs drift is unverified

Change Type

• Tooling change

The following scenarios were tested

• Verified spec-drift command discovers all ai-docs folders and produces a categorized report
• Verified spec-drift-changed detects changed files and maps them to their ai-docs
• Verified pre-commit hook blocks commits with unverified ai-docs changes (exit code 2)
• Verified hook passes after spec-drift-changed creates verification marker
• Verified hook is transparent for commits without ai-docs-related changes

The GAI Coding Policy And Copyright Annotation Best Practices

• GAI was used to create a draft that was subsequently customized or modified
• Tool used for AI assistance (GitHub Copilot / Other - specify)
  • Other - Claude Code (Anthropic)
• This PR is related to
  • Automation

I certified that

• I have read and followed contributing guidelines
• I discussed changes with code owners prior to submitting this pull request
• I have not skipped any automated checks
• All existing and new tests passed
• I have updated the documentation accordingly

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 17636199d6

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

[chatgpt-codex-connector]

Detect commit invocations beyond literal git commit

The hook only enforces validation when the command string starts with git commit, so commit flows like git -c user.name=... commit ..., HUSKY=0 git commit ..., or chained commands such as git add . && git commit ... will bypass this guard and allow unverified contact-center changes to be committed. Since this script is meant to be the blocking gate, matching only one command shape leaves a real enforcement hole.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Bind verification marker to staged content, not paths

The marker hash is derived from git diff --cached --name-only output, which means it changes only when the set of staged file paths changes; if a developer runs /spec-drift-changed, then edits and restages the same files, the existing marker still matches and the commit is allowed without re-validating docs against the new content. This weakens the drift check and can let stale verification pass.

Useful? React with 👍 / 👎.

[aws-amplify-us-east-2]

This pull request is automatically being deployed by Amplify Hosting (learn more).

Access this pull request here: https://pr-649.d1b38q61t1z947.amplifyapp.com

[Shreyas281299]

Review Summary

Severity	Count
High	3
Medium	3
Low	6

Recommendation: Request Changes -- The 3 High severity issues should be addressed before merge:

1. Register the hook in settings.json (otherwise the hook is dead code)
2. Fix "Task tool" -> "Agent tool" references (otherwise the commands will fail)
3. Add python3 availability check (otherwise the hook silently becomes a no-op)

Positive Observations

• Well-structured command files with clear step-by-step instructions and output format templates
• The 7-category drift detection framework is comprehensive and well-defined
• Good use of severity levels (Blocking/Important/Medium/Minor) in the drift report
• The incremental scan (spec-drift-changed) is a practical addition for pre-commit workflows
• The shell hook logic is concise and handles the common cases correctly

[Shreyas281299]

HIGH: Hook is not registered in settings.json -- dead code

How will we set this? The hook script exists but the PR does NOT include any changes to .claude/settings.json or .claude/settings.local.json to register it as a PreToolUse hook. The current .claude/settings.local.json only contains permissions -- no hooks configuration. Without registration, this hook will never execute and the entire gating mechanism is non-functional.

Suggested fix: Add hook registration to .claude/settings.json:

{
  "hooks": {
    "PreToolUse": [
      {
        "matcher": "Bash",
        "command": ".claude/hooks/check-ai-docs-drift.sh"
      }
    ]
  }
}

[Shreyas281299]

HIGH: Silent failure when python3 is unavailable

The script uses python3 -c to parse JSON from stdin, with 2>/dev/null suppressing errors. If python3 is not installed, COMMAND silently becomes an empty string, the case statement falls through to *) exit 0, and the hook always passes -- silently disabling the gate with no warning.

Suggested fix: Add a prerequisite check before this line:

command -v python3 >/dev/null 2>&1 || { echo "python3 required for spec-drift hook" >&2; exit 0; }

Alternatively, use jq or pure bash string matching for the simpler JSON structure.

[Shreyas281299]

HIGH: References non-existent "Task tool" instead of "Agent tool"

While a TaskCreate tool exists in Claude Code, it is for task list/progress tracking and does not accept a subagent_type parameter. The subagent_type: "Explore" parameter belongs to the Agent tool. Claude would fail or do the wrong thing when trying to follow this instruction.

Suggested fix:

Suggested change

	- Use the Task tool with `subagent_type: "Explore"` for checker agents
	- Use the Agent tool with `subagent_type: "Explore"` for checker agents

[Shreyas281299]

HIGH: References non-existent "Task tool" instead of "Agent tool"

Same issue as in spec-drift-changed.md. TaskCreate is for task tracking, not for spawning agents. The subagent_type: "Explore" parameter belongs to the Agent tool.

Suggested fix:

Suggested change

	Use the Task tool to spawn agents. **All agents run in parallel.**
	Use the Agent tool to spawn agents. **All agents run in parallel.**

[Shreyas281299]

HIGH: Same "Task tool" → "Agent tool" fix needed here

Suggested fix:

Suggested change

	- Use the Task tool with `subagent_type: "Explore"` for all checker agents
	- Use the Agent tool with `subagent_type: "Explore"` for all checker agents

[Shreyas281299]

LOW: Overly broad case pattern for commit detection

The pattern git\ commit* matches any command starting with "git commit", including git plumbing commands like git commit-tree. While unlikely to cause issues in practice, a more precise pattern would be:

case "$COMMAND" in
  "git commit"|git\ commit\ *) ;;  # Match 'git commit' standalone or with args
  *) exit 0 ;;
esac

[Shreyas281299]

LOW: shasum portability across platforms

shasum (SHA-1 default) is macOS-native. On some Linux distributions, only sha256sum is available. For cross-platform teams, consider a fallback:

HASH=$(echo "$STAGED_CC" | sort | (shasum 2>/dev/null || sha256sum) | cut -d' ' -f1)

[Shreyas281299]

LOW: Hardcoded widget path mappings

The mapping for task widget source files to ai-docs is hardcoded to 4 specific widgets (CallControl, IncomingTask, OutdialCall, TaskList). New widgets added to task/src/widgets/ would not be automatically detected.

Suggested fix: Add a dynamic pattern instruction:

For any widget under packages/contact-center/task/src/widgets/{WidgetName}/*,
map to packages/contact-center/task/ai-docs/widgets/{WidgetName}/ if the
ai-docs folder exists.

[Shreyas281299]

LOW: Marker created regardless of blocking findings (design observation)

This rule makes the tool purely advisory -- even "Blocking" severity findings (described as "wrong API that would cause runtime errors") won't actually block the commit. Consider documenting this advisory-only nature more prominently in the report output, so developers understand the tool's stance.

[Shreyas281299]

LOW: Hardcoded ai-docs inventory is exemplary but could be clearer

The inventory table lists 12+ specific paths and ends with "... (discover all that exist on the current branch)". While clearly intended as illustrative, consider adding an explicit label like "Example inventory (actual results may vary):" to prevent any ambiguity.