Skip to main content

Working With Contracts

Contracts are the public boundary between FST and the components around it.

They exist so a store, interface, adapter, authorization provider, validator, process pack, or audit sink can be developed and tested without knowing how FST works internally.

Contract Families

FST uses contract families for the main component boundaries:

Contract familyUsed by
CommandCLI, MCP, REST, SDK, UI, workflow callers
ProfileProcess profiles and process packs
StoreLocal, database, or hosted stores
EnvironmentAdapters for external systems and event intake
AuthorizationIdentity, approval, and scope providers
ValidatorTrusted checks and verification components
MaterializationComponents that execute approved protected effects
Trust/install policyComponent trust and capability declarations
Config and secret providerHost configuration and secret references
Artifact storagePayload and blob storage implementations
Export and auditEvidence export, audit, SIEM, and reporting sinks

Each family should define:

  • versioned schemas
  • required and optional fields
  • lifecycle states
  • capability declarations
  • trust declarations where relevant
  • idempotency behavior
  • error and retry behavior
  • compatibility rules
  • examples
  • fixtures
  • conformance tests

Candidate To Acceptance

FST uses a candidate-to-acceptance model.

component submits a candidate
-> FST checks run, profile, trust, scope, and contract validity
-> FST accepts or rejects the candidate for a specific purpose
-> accepted records become official evidence or state

That distinction is important.

A valid artifact is not automatically admitted evidence. A valid approval-shaped record is not automatically authority. A successful adapter call is not automatically a completed protected effect.

FST decides whether a submitted record counts for the active run.

Interface Rule

All actor-facing interfaces should preserve the same command semantics.

For example, these should all represent the same intent:

CLI:  fst run start ...
MCP:  fst.start_run
REST: POST /runs
SDK:  client.startRun(...)

The interface may parse input and present friendly output. It must not change the meaning of the command, route, evidence reference, approval requirement, or blocked state.

Adapter Rule

Adapters connect FST to the outside world.

They may:

  • receive external events
  • normalize source data
  • submit artifact or event candidates
  • execute an approved materialization grant
  • return execution results

They must not:

  • treat an external event as approval by default
  • mark their own output as admitted evidence
  • bypass materialization preflight
  • widen scope because a target API allows it
  • treat connector credentials as process authority

Validator Rule

Validators and check runners produce check result candidates.

They make FST stronger because hard gates can depend on trusted execution rather than agent narration. A validator still does not decide that a process gate passed. It produces a result that FST can accept or reject for the active run and gate.

Store Rule

Stores persist and return official records. They do not decide which records are official.

A store implementation should preserve record identity, versioning, references, digests, idempotency, transaction behavior, redaction, and retrieval semantics defined by the store contract.

Process Pack Rule

Process packs define process knowledge:

  • actions
  • artifacts
  • gates
  • routes
  • approval requirements
  • scenarios
  • materialization rules
  • agent instructions

They should never weaken the FST authority boundary. Hooks, templates, and skills can help produce evidence, but they cannot grant authority by themselves.

Agentic Development Checklist

When an agent develops a contract-based component, require it to produce:

  • a short component purpose statement
  • the contract family it implements
  • records consumed and emitted
  • trust assumptions
  • failure behavior
  • redaction behavior
  • fixture coverage
  • conformance command results
  • known limitations
  • review notes for human approval

The goal is not to make the agent understand FST internals. The goal is to make the agent produce a component that obeys the public contract boundary.