Sentinel is a ruleset and execution system that transforms AI coding tools into disciplined, test-driven collaborators. It acts as a programmable operating system for development, enforcing structure, context, and test-first implementation through a set of non-negotiable engineering principles defined in .cursorrules.
Sentinel doesn't just assist you. It governs your workflow, ensuring quality and consistency.
Modern AI tools are powerful code generators, but often lack context, violate architectural boundaries, and bypass essential engineering practices. This leads to technical debt, rework, and systems that are hard to maintain.
Sentinel fixes this. It makes AI obey your engineering system—not undermine it. Key benefits include:
- Strict TDD Enforcement: No code is written before a failing test exists and passes. The Red-Green-Refactor cycle is mandatory.
- Git Flow Discipline: Enforces proper branch creation, merging, and commit hygiene for every task.
- Architectural Compliance: Code must align with defined boundaries (
docs/architecture.mermaid) and quality standards (CODE_QUALITY). - Task-Driven Flow: Every action is linked to a clearly defined task in
tasks/tasks.md. - Explicit Modes: Operates in distinct modes (
PLANNER_MODE,TDD_ENFORCEMENT,ARCHITECTURE_MODE, etc.) for clarity. - Process Violation Logging: Deviations aren't ignored—they're logged with timestamps (
docs/log.md,docs/status.md) and require resolution. - Context Awareness: Leverages project documentation (
docs/*) to maintain context and ensure alignment. - Automated Quality Gates: Enforces checks like passing tests, linting, code review, and tech debt analysis before task completion.
- World-Class Research & Planning: Comprehensive research-driven onboarding with iterative validation loops and multi-domain intelligence gathering.
- Enhanced Task Validation: CODE_REVIEWER_MODE task validation loop ensures tasks align with requirements and research.
- Dual Operating Modes: CODE_REVIEWER_MODE operates in both code review and research validation modes with brutal honesty assessment.
Want to start a new project with Sentinel in Cursor? Just do this:
-
Copy the rules file:
- Download or copy
RULES.mdfrom this repo into your new project directory as.cursorrules.
- Download or copy
-
Open Cursor in your project directory.
-
Trigger onboarding:
- Type: "I want to build [YOUR PROJECT IDEA]" in the Cursor chat.
- Sentinel will enter PROJECT_ONBOARDING_MODE with comprehensive research-driven process:
- Interactive Q&A to understand your project vision
- COMPREHENSIVE_RESEARCH_MODE identifies 3-5 critical knowledge domains
- Multi-domain research with targeted searches across architecture, tech stack, scaling, security
- CODE_REVIEWER_MODE research validation with brutal honesty assessment (1-10 rating)
- Iterative research loop until quality gates are met
- Generates all required docs (
docs/PRD.md,docs/technical.md,docs/architecture.mermaid,docs/unit_testing_guideline.md,tasks/tasks.md) - Creates
.gitignoretailored to your tech stack - Initializes git repository with first commit
-
Review and approve the generated docs.
-
You're ready to plan and build—Sentinel will guide you step by step!
Already using Cursor? See the Quick Start above for the fastest way to begin!
- Install Your AI Tool: Sentinel works with tools like Cursor, Winsurf, etc. (Install your preferred tool).
- Clone Sentinel (or Copy Rules):
git clone git@github.com:dominno/sentinel.git cp sentinel/RULES.md YOUR_PROJECT/.cursorrules # Or .winsurfrules, etc. - Create Required Project Files & Directories: Sentinel relies on a specific structure.
mkdir -p docs tasks src docs/research # Add other source dirs as needed touch \ docs/PRD.md \ docs/technical.md \ docs/architecture.mermaid \ docs/unit_testing_guideline.md - Define Test + Lint Commands: Add your project's specific test and lint commands to
docs/unit_testing_guideline.md. Sentinel will not run without these commands defined. - Install and Configure MCP Time Server: Sentinel uses a Model Context Protocol (MCP) time server for consistent timestamps in logs.
- Install the server: Follow instructions at https://github.com/modelcontextprotocol/servers/tree/main/src/time
- Configure your AI tool (Cursor, Winsurf, etc.) to use it. For Cursor, you would update
~/.cursor/mcp.jsonlike this:{ "mcpServers": { "time": { "command": "uvx", "args": ["mcp-server-time", "--local-timezone=Europe/Warsaw"] } } }
- Populate Initial Docs: Fill in
docs/PRD.md,docs/technical.md,docs/architecture.mermaid, anddocs/unit_testing_guideline.mdwith your project's specifics.
- docs/PRD.md: Product Requirements Document. Should include Product Vision, Goals & Success Criteria, User Personas/Stakeholders, User Flow (step-by-step or diagram of what the user sees and can do), User Stories/Use Cases, Features & Requirements, Out of Scope, Constraints & Assumptions, Acceptance Criteria, and Metrics/KPIs.
- docs/technical.md: Technical guidelines and engineering standards. Should specify design patterns, architectural constraints, code quality principles (SOLID, DRY, KISS), and any technology-specific requirements or recommendations.
- docs/architecture.mermaid: System boundaries and data flows, expressed as a Mermaid diagram. Should show modules, their relationships, and how data moves through the system.
- docs/unit_testing_guideline.md: How to run tests, what test/lint commands to use, and expectations for test coverage and style (e.g., TDD, edge cases, error handling).
Not sure how to create these files? Use the Quick Start onboarding above! Just copy the rules file, open Cursor, and describe your project idea. Sentinel will guide you through generating all required docs interactively.
Sentinel relies on these key files for context and governance:
| File | Role |
|---|---|
docs/PRD.md |
Product reasoning — the "why" |
docs/technical.md |
Constraints and engineering standards |
docs/architecture.mermaid |
System boundaries and data flows |
docs/unit_testing_guideline.md |
TDD style and expectations |
docs/status.md |
Project status (progress, issues, major decisions & rationale in Decision History) |
docs/log.md |
Granular, time-stamped log of every action/event, violation, or retrospective. |
tasks/tasks.md |
All implementation plans (checklists). Task entries include: Task ID, title, description, explicit statuses (`Planned |
tasks/[TASK-ID].md |
Detailed summary of a completed task: what was done, code/test links, review results, PRD alignment. |
docs/research/[TASK-ID].md |
(Optional) Research summary generated by the AI for complex or unknown tasks, detailing findings on best practices or relevant libraries. |
docs/research/[domain][topic].md |
Individual domain research files created during comprehensive onboarding, containing focused research on specific knowledge domains. |
docs/research/ONBOARDING_COMPREHENSIVE.md |
Consolidated research findings from multi-domain analysis during project onboarding, containing executive summary, domain analysis, and implementation recommendations. |
.cursorrules/.winsurfrules |
The core Sentinel ruleset |
(Note: Decision History in status.md is strictly for major decisions; log.md captures all other events.)
Interact with your AI assistant using specific prompts that trigger Sentinel's modes and enforcement.
Mandatory Steps Before Starting Any Task:
- Context Restore: Load all required docs (
status.md,tasks.md, etc.). - Dependency Violation Check: Before any other setup, Sentinel checks if all listed dependencies for the task in
tasks/tasks.mdhave a status ofDone. If not, it entersFAIL_SAFE_MODEwith a warning and does not proceed with the task. - Git Flow: Checkout
developand create/switch to a new feature branch (feature/[task-id]-[slug]). - Confirm Test/Lint Commands: Ensure they are defined.
- No Work Before Branch & Checks: Absolutely no code, directories, or artifacts are created before the correct branch exists and dependency checks have passed.
Starting a New Feature (Defined in tasks/tasks.md):
Use the FEATURE_WORK_PROMPT_TEMPLATE defined in .cursorrules. Expand it fully:
Work on feature [FEATURE NAME or TASK-ID] following these non-negotiable rules:
**Context & Setup:**
- Restore full context before any work (status.md, tasks.md, technical.md, architecture.mermaid, unit_testing_guideline.md)
- If context cannot be restored, STOP and enter FAIL_SAFE_MODE immediately
- Create and switch to a new feature branch from develop before any code creation
- Confirm test command and linting rules are defined
**TDD Workflow - Strict Test-First:**
- For EACH checklist item, follow the complete TDD loop:
1. Write ONE failing test BEFORE implementation code (except for project structure tasks)
2. Run the test IMMEDIATELY to verify it fails for the expected reason
3. Write MINIMAL code to pass the test
4. Run the test again to verify it passes
5. Refactor while keeping tests passing
6. Run all tests before moving to next item
- NEVER create multiple test files in sequence without running tests between them
- If TDD order is violated, STOP immediately and log as process violation
**Code Quality Standards:**
- Follow SOLID, KISS, DRY principles
- Avoid magic numbers, use constants/configs
- Extract shared logic, keep functions < 30 LOC
- Maintain strict module boundaries per architecture.mermaid
- Document public methods with JSDoc
**Autonomous Decision Making:**
- Proceed WITHOUT asking when implementing clear checklist items, writing tests, or making small refactors
- STOP and ASK when instructions are unclear, multiple interpretations exist, or architectural boundaries might be crossed
- Act with speed when clear, ask when uncertain
**Task Completion:**
- Run full test suite before marking complete
- Explicitly review all DEFINITION_OF_DONE criteria
- Perform tech debt check and log any findings
- Update status.md and tasks.md with canonical timestamps
- Merge feature branch to develop after all checks pass
Log all work meticulously and STOP immediately if any rule is violated.
Just use
Work on [FEATURE NAME or TASK-ID] use FEATURE_WORK_PROMPT_TEMPLATE
Requesting a New Feature (Not in tasks/tasks.md):
"I have an idea: users should reset passwords via email"
Sentinel will:
- Enter
PLANNER_MODE. - Load relevant PRD/architecture.
- Ask clarifying questions if needed.
- Generate a task shell in
tasks/tasks.mdfollowing the template andCODE_QUALITYprinciples. - CODE_REVIEWER_MODE Task Validation Loop: Reviews all tasks for alignment with PRD.md, technical.md, and research docs, completeness, clarity, and sufficiency for implementation.
- Ask for your approval before proceeding.
- Once approved, use the
FEATURE_WORK_PROMPT_TEMPLATEto start implementation.
Mandatory Steps Before Marking Any Task Complete:
- All Tests Pass: The full test suite runs successfully.
- Checklist/Criteria Met: All items in
tasks/tasks.mdare complete. - Code Quality Checks: Code is linted, formatted, documented.
- Reviews Performed:
CODE_REVIEWER_MODEandTECH_DEBT_REFACTORcompleted, results logged. - Git Flow: Feature branch is merged into
develop. - Logs/Status Updated:
status.md,log.md, andtasks/tasks.mdreflect completion with canonical timestamps. - Branch Discipline Verified: Task was started and completed on its dedicated feature branch.
After Task Completion:
Once a task fully meets its DEFINITION_OF_DONE (including merge to develop and final log/status updates):
-
Task Completion Summary Generation:
- Sentinel automatically generates a detailed Markdown summary for the completed task.
- This summary is saved to
tasks/[COMPLETED_TASK_ID].md. - Contents include: What was done, PRD alignment, links/paths to implemented code and written tests, final review results (from
CODE_REVIEWER_MODEandTECH_DEBT_REFACTOR), and a link to the main log entry. - AI confirms: "Task summary created at
tasks/[COMPLETED_TASK_ID].md."
-
Next Task Suggestion Logic:
- After summary generation, Sentinel parses
tasks/tasks.mdto identify the next high-priority, unblocked task (Status:Planned, all dependenciesDone). - It prompts: "✅ Task [Previous TASK-ID] completed. Next up is [TASK-ID]: [Title] (Priority: [Priority]). Proceed?"
- If confirmed, Sentinel initiates the new task (Git Flow, TDD loop).
- If declined or no suitable task is found, Sentinel awaits further user instruction.
- After summary generation, Sentinel parses
Sentinel can help you break down high-level ideas from your docs/PRD.md, docs/technical.md, and docs/architecture.mermaid into actionable tasks in tasks/tasks.md. This is typically a two-stage process involving ARCHITECTURE_MODE (for larger features) and PLANNER_MODE.
1. High-Level Design with ARCHITECTURE_MODE (Optional, for complex features)
If you're introducing a significant new feature or module that might impact your system's architecture:
- Invoke
ARCHITECTURE_MODE:"Design the new [Feature/Module Name] based on docs/PRD.md and docs/technical.md" - Process:
- Sentinel will load
docs/architecture.mermaidand other relevant documents. - It will ask clarifying questions about scale, data flow, and constraints.
- It will propose design options and, upon approval, update
docs/architecture.mermaidand outline major components.
- Sentinel will load
- Outcome: A clearer architectural vision and potential high-level epics or areas of work. This output then serves as a more refined input for
PLANNER_MODE.
2. Detailed Task Scaffolding with PLANNER_MODE
Once you have a clear idea (either directly from your PRD or refined through ARCHITECTURE_MODE), use PLANNER_MODE to generate detailed, actionable tasks:
- Invoke
PLANNER_MODE:Or, if a task doesn't exist when you try to work on it:"Create tasks for [Feature/User Story description] based on docs/PRD.md, docs/technical.md, and the updated docs/architecture.mermaid. Ensure tasks align with docs/unit_testing_guideline.md.""Work on [Non-existent Task Name/ID]" // Sentinel will automatically switch to PLANNER_MODE - Process:
- Sentinel enters
PLANNER_MODE. - It loads the specified documents (
docs/PRD.md,docs/technical.md,docs/architecture.mermaid,docs/unit_testing_guideline.md). - (AI) Complexity & Unknowns Analysis: The AI estimates the complexity of the requested feature/task on a 1-10 scale. If complexity is high (>7) or if the task involves significant "unknowns" (either AI-inferred or user-flagged), Sentinel will:
- Prompt: "Should I research best practices or relevant libraries first?"
- If research is approved, the AI uses web search, synthesizes findings, and saves a summary to
docs/research/[TASK-ID].md. It then asks for user direction on how to proceed with planning based on this research.
- (AI) Task Structuring & Expansion: Based on the initial request and any research, the AI generates a task shell in
tasks/tasks.md.- If a task's complexity remains high (>7) even after potential research, the AI will suggest invoking the
TASK_EXPANSION_PROTOCOL. If the user agrees, the complex task is broken down into smaller, numbered sub-tasks (e.g.,[PARENT_TASK_ID].1,[PARENT_TASK_ID].2), and the original parent task is updated intasks/tasks.mdtoStatus: Epic, with its implementation plan listing the new sub-task IDs.
- If a task's complexity remains high (>7) even after potential research, the AI will suggest invoking the
- It may ask further clarifying questions to ensure the generated tasks are well-defined.
- It generates a task shell in
tasks/tasks.mdfor each identified sub-task, including:- Task ID, title, status, priority.
- PRD reference and architectural module.
- A step-by-step TDD-based checklist.
- Acceptance criteria.
- Potential edge cases.
- Sentinel will then ask for your approval for the generated task(s).
- Sentinel enters
- Outcome: Ready-to-implement tasks in
tasks/tasks.md, complete with checklists and acceptance criteria.
Once tasks are approved and exist in tasks/tasks.md, you can begin implementation using the strict TDD_ENFORCEMENT mode by prompting:
"Work on [TASK-ID] use FEATURE_WORK_PROMPT_TEMPLATE"
Sentinel trusts the AI assistant to act autonomously only when instructions are clear and unambiguous. The AI should:
- Proceed Without Asking: For clear checklist items, writing tests for known behavior, refactoring passing code (within the immediate scope of current work), updating logs/status.
- STOP and ASK:
- If instructions are unclear, multiple interpretations exist, or the PRD/plan is missing.
- If a proposed change might violate architecture (AI will state: "This proposed change might violate [specific architectural principle/boundary in @{docs/architecture.mermaid}]. How should I proceed?").
- If a proposed change is a structural refactor affecting multiple modules/files (AI will state potential impact, e.g., "This proposed change is a structural refactor that is estimated to affect [N] modules and/or approximately [M] files... This type of refactor should typically be its own dedicated task or part of a
TECH_DEBT_REFACTORcycle. Shall I create a new task proposal for this refactor, or how should I proceed?"). - If deleting or replacing significant existing logic (AI will confirm: "This will delete/replace substantial existing logic for [feature/module]. Please confirm.").
- Default to Caution: Act with speed when clear, ask when uncertain.
- Fail-Safe: Enter
FAIL_SAFE_MODEif context cannot be restored or ambiguity cannot be resolved.
Sentinel includes mechanisms for learning and process refinement:
- Retrospectives: After each completed task, a brief retrospective (
What went well? What broke? What to change?) is appended todocs/log.md. - Root Cause Analysis: If the same process violation occurs repeatedly, Sentinel mandates a root cause analysis to identify and implement a permanent fix.
- Challenge Comfort Zone: If a task or test seems too simple, Sentinel requires proposing at least one additional edge case, security scenario, or refactor to ensure thoroughness.
To ensure the ruleset itself remains effective and adapts to the project's needs, Sentinel includes RULE_MAINTENANCE_MODE:
- Purpose: Provides a structured feedback loop for iteratively refining
RULES.mdand any associated.cursor/rules/*.mdcfiles. - Triggers: This mode can be:
- Manually invoked by the user.
- Automatically proposed by the AI after a set number of completed tasks.
- Automatically proposed after a threshold of identical process violations is logged.
- Automatically proposed if a
TECH_DEBT_REFACTORcycle identifies inefficiencies linked to rule ambiguity or impracticality.
- Workflow:
- AI Data Collection & Analysis: The AI parses
docs/log.md,docs/status.md, andtasks/tasks.mdto identify patterns, frequent violations, or rule-induced bottlenecks. - AI Hypothesis & Proposal: Based on its analysis, the AI generates 1-3 targeted proposals for rule changes (modifications, additions, clarifications, or deletions), including the evidence and expected positive impact.
- User Review & Decision: The user reviews the AI's proposals and can approve, modify, or reject them with reasoning.
- Implementation & Logging: Approved changes are implemented in the relevant rule files (e.g.,
RULES.mdor.cursor/rules/custom.mdc). All changes are meticulously logged indocs/log.mdand a dedicated rule changelog.
- AI Data Collection & Analysis: The AI parses
- Goal: To enhance rule clarity, effectiveness, and efficiency, while actively preventing ruleset bloat and ensuring the rules facilitate, rather than hinder, high-quality development.
Sentinel operates in strict modes. The current mode is always announced.
| Mode | Description | Trigger |
|---|---|---|
TDD_ENFORCEMENT |
Implements feature using strict test-first flow (Test-Code-Refactor) | Feature prompt for existing task |
PLANNER_MODE |
Scaffolds new tasks from idea or PRD. Includes AI-driven complexity estimation (1-10), prompts for research on complex/unknown tasks (output to docs/research/), and can invoke TASK_EXPANSION_PROTOCOL to break down large tasks into sub-tasks, with parent becoming an Epic. |
Feature prompt for non-existing task |
DEBUGGER_MODE |
Investigates and resolves bugs/regressions/repeated errors | Test failures, unexpected errors |
ARCHITECTURE_MODE |
Designs or validates new systems/modules | Request for new system/module design or architectural change |
CODE_REVIEWER_MODE |
Reviews code against quality standards with constructive feedback. Dual Operating Modes: Code Review + Research Validation with brutal honesty assessment (1-10 rating). | Request for review, post-task completion, research validation during COMPREHENSIVE_RESEARCH_MODE |
TECH_DEBT_REFACTOR |
Identifies, logs, and prioritizes technical debt | Post-task completion, identification of refactor opportunity |
CONTEXT_RESTORE |
Loads required documentation before starting any major action | Start of any task/mode, after context loss |
FAIL_SAFE_MODE |
Stops execution if anything is unclear, ambiguous, or context missing | Missing context, unclear instructions, rule ambiguity |
RULE_MAINTENANCE_MODE |
Analyzes system performance against rules and proposes improvements to the ruleset itself. | Manual invocation, periodic schedule, repeated process violations, or insights from TECH_DEBT_REFACTOR. |
RESEARCH_MODE |
Allows user-initiated research for any task. AI uses web search, synthesizes findings, and saves a summary to docs/research/[TASK-ID].md. |
Explicit user command, e.g., "Enter RESEARCH_MODE for [TASK-ID]" or "Research [topic] for [TASK-ID]". |
COMPREHENSIVE_RESEARCH_MODE |
Multi-domain intelligence gathering for project onboarding. Identifies 3-5 critical knowledge domains, executes targeted research, and provides comprehensive documentation with quality assessment. | Automatically triggered during PROJECT_ONBOARDING_MODE, or explicit user command. |
PROJECT_ONBOARDING_MODE |
Comprehensive research-driven onboarding for new projects. Interactive Q&A, multi-domain research, iterative validation loops, and complete project bootstrap from just the rules file. | Detected when core context files are missing or empty, or user intent to start new project. |
A task is only complete when ALL these criteria are met and verified:
- All tests have been run and pass after the final implementation step.
- All acceptance criteria from
tasks/tasks.mdare explicitly met. - All documented edge cases are handled.
- Relevant documentation and code comments are up to date.
- Code is linted, formatted, and passes all static analysis checks.
- Peer review or self-review completed (via
CODE_REVIEWER_MODE). - Tech debt check completed and results logged (via
TECH_DEBT_REFACTOR). - Feature branch has been merged into
develop. - Task was started and completed on its dedicated feature branch.
-
status.mdandlog.mdupdated with completion status and canonical timestamp.
(Sentinel may use a checklist format like ✅ / ❌ / STILL NEED TO CHECK during this verification)
Sentinel is designed for:
- Engineering teams scaling AI-driven development while maintaining quality.
- Founders and leads enforcing consistent engineering practices.
- Developers tired of context-free, low-quality AI code generation.
- Anyone aiming to replace chaotic "code generation" with disciplined "code governance".
It is not ideal for:
- Rapid prototyping where process is secondary.
- Exploratory coding without clear goals.
- Teams unwilling to adhere to strict process discipline.
See Sentinel used in real projects:
- dominno/task-timer: A simple CLI tool for time tracking built entirely using the Sentinel process with an AI assistant.
MIT — use, adapt, and enforce Sentinel in your own projects. Sentinel values discipline and quality.
We drew inspiration from the following resources: