Spec Format
Spec files are markdown documents with YAML frontmatter and structured sections. This page is the canonical reference for the format.
File Location
Specs live in docs/specs/ by default. Configure custom paths via specs.doc_paths in CANON.yaml.
Frontmatter
Every spec begins with YAML frontmatter between --- delimiters:
yaml
---
title: "Feature Name"
status: draft
type: spec
owner: your-name
team: team-name
ticket_project: PROJ
created: 2026-02-01
updated: 2026-02-26
tags: [feature, mvp]
depends_on: [other-spec-slug]
supersedes: old-spec-slug
review_status: in_review
sync: auto
ai_exposure: full
---Fields
| Field | Type | Required | Description |
|---|---|---|---|
title | string | Yes | Human-readable feature name |
status | string | Yes | Overall spec status |
owner | string | No | Person responsible for the spec |
team | string | No | Team that owns this feature |
ticket_project | string | No | Jira project key, Linear team, or GitHub repo |
created | date | No | Date first written (YYYY-MM-DD) |
updated | date | No | Date of last modification |
tags | string[] | No | Tags for filtering and routing |
type | string | No | Document type (default: spec) |
depends_on | string[] | No | Slugs or paths of specs this one depends on |
supersedes | string | No | Slug or path of the spec this document replaces |
review_status | string | No | Review workflow state |
sync | string | No | Ticket sync control (default: auto) |
ai_exposure | string | No | AI agent visibility level (default: full) |
type Values
| Value | Meaning |
|---|---|
spec | Feature or product specification (default) |
proposal | Early-stage idea or RFC draft |
design | Technical design document |
adr | Architecture Decision Record |
review_status Values
| Value | Meaning |
|---|---|
draft | Review not yet requested |
in_review | Actively under review |
approved | Review complete and approved |
sync Values
| Value | Meaning |
|---|---|
auto | Canon decides when to create/update tickets (default) |
true | Always sync this spec's sections to tickets |
false | Never create or update tickets from this spec |
ai_exposure Values
| Value | Meaning |
|---|---|
full | Agents see full spec content (default) |
metadata | Agents see only frontmatter and section headings |
none | Spec is invisible to AI agents |
Status Values
| Status | Meaning |
|---|---|
draft | Initial state — requirements not yet finalized |
todo | Ready for implementation |
in_progress | Work has started on at least one section |
done | All sections complete |
blocked | Waiting on a dependency |
deprecated | No longer relevant |
Sections
Sections use numbered h2 headings. Subsections use h3+:
markdown
## 1. Background
## 2. Requirements
### 2.1 Functional Requirements
### 2.2 Non-Functional Requirements
## 3. Design
## 4. Rollout PlanSection Numbering
- Use integers for top-level sections:
## 1.,## 2., etc. - Use decimal notation for subsections:
### 2.1,### 2.2 - Numbering is used as the stable section identifier for ticket linking
Status Comments
Each section can have a hidden status comment immediately after the heading:
markdown
## 2. Requirements
<!-- canon:system:2 status:todo -->Syntax
<!-- canon:system:<section-id> status:<status> -->section-id: Matches the section number or a custom slugstatus: One ofdraft,todo,in_progress,done,blocked,deprecated
Blocked status can include a dependency:
markdown
<!-- canon:system:3 status:blocked:PAY-200 -->Ticket Links
Link a section to an external ticket:
markdown
<!-- canon:ticket:<system>:<ticket-id> -->Examples:
markdown
<!-- canon:ticket:jira:PAY-142 -->
<!-- canon:ticket:linear:ID-301 -->
<!-- canon:ticket:github:42 -->Acceptance Criteria
Acceptance criteria use markdown checkbox syntax under a ### Acceptance Criteria heading:
markdown
### Acceptance Criteria
- [ ] Email sent on new comment mentioning the user
- [x] Webhook signature verification on all incoming events
- [ ] Rate limit: max 10 emails per user per hour[ ]— Not yet realized[x]— Realized (verified against code)
ACs can appear at any section level. The agent evaluates ACs in the context of their parent section.
AC Strength Modifiers
Acceptance criteria can include an RFC 2119 strength keyword to signal how strictly the requirement must be met:
markdown
### Acceptance Criteria
- [ ] System MUST reject requests without a valid token
- [ ] API MUST_NOT return internal stack traces to clients
- [ ] Dashboard SHOULD refresh automatically every 60 seconds
- [ ] Errors SHOULD_NOT be silently swallowed
- [ ] Users MAY export data as CSVOnly uppercase keywords are recognized — lowercase must or should are treated as plain text per RFC 2119 convention.
| Keyword | Meaning |
|---|---|
MUST | Absolute requirement |
MUST NOT | Absolute prohibition (stored as MUST_NOT) |
SHOULD | Strong recommendation |
SHOULD NOT | Strong discouragement (stored as SHOULD_NOT) |
MAY | Optional feature or behaviour |
The parser extracts the first keyword it finds in the AC text. Strength is also recognized in BDD scenario steps (see below).
BDD Scenarios
Sections can include Gherkin-style scenario blocks for executable specification. Scenarios are introduced by an #### Scenario: heading (h4 only) followed by step lines:
markdown
### 2.1 User Login
#### Scenario: Successful login
- GIVEN a registered user with valid credentials
- WHEN the user submits the login form
- THEN the system MUST redirect to the dashboard
- AND a session cookie MUST be set
#### Scenario: Invalid password
- GIVEN a registered user
- WHEN the user submits an incorrect password
- THEN the system SHOULD increment the failed-attempt counter
- AND the login form SHOULD display an error message
- BUT the account MUST NOT be locked on the first failureScenario Syntax Rules
- The heading must be exactly
#### Scenario: <name>(h4, case-insensitive) - Each step is a list item starting with a BDD keyword:
GIVEN,WHEN,THEN,AND, orBUT - Keywords are case-insensitive in source but normalized to uppercase internally
- Blank lines between steps are allowed; a non-blank, non-step line ends the scenario
- Step ordering is not validated —
AND/BUTmay appear in any position - Strength modifiers (
MUST,SHOULD, etc.) are recognized within step text
BDD Keywords
| Keyword | Role |
|---|---|
GIVEN | Precondition or initial context |
WHEN | Action or event being described |
THEN | Expected outcome |
AND | Continuation of the previous step type |
BUT | Negative continuation or exception |
Realization Evidence
When the agent verifies that code implements an AC, it inserts a realization comment:
markdown
<!-- canon:realized-in:PR#412 src/payments/keys.ts:42-60 -->Syntax
<!-- canon:realized-in:PR#<number> <file>:<start>-<end> -->PR#<number>: The pull request that introduced the implementation<file>:<start>-<end>: File path and line range with the evidence
Complete Example
markdown
---
title: "Payments Overhaul"
status: in_progress
owner: sarah-chen
team: payments
ticket_project: PAY
created: 2025-11-15
updated: 2026-01-28
tags: [payments, infrastructure, q1-priority]
---
# Payments Overhaul
Migrate from legacy payment processor to Stripe.
## 1. Background
<!-- canon:system:1 status:done -->
Our current payment stack has a 0.3% failure rate.
## 2. Stripe Migration
<!-- canon:system:2 status:in_progress -->
<!-- canon:ticket:jira:PAY-142 -->
### 2.1 API Integration
<!-- canon:system:2.1 status:in_progress -->
<!-- canon:ticket:jira:PAY-143 -->
### Acceptance Criteria
- [ ] All checkout flows use Stripe PaymentIntents
- [x] Stripe webhook endpoint verified with signature checking
<!-- canon:realized-in:PR#389 src/webhooks/stripe.py:15-42 -->
- [ ] Existing payment methods migrated to Stripe
### 2.2 Webhook Handler
<!-- canon:system:2.2 status:done -->
<!-- canon:ticket:jira:PAY-144 -->
<!-- canon:realized-in:PR#389 src/webhooks/stripe.py -->
### Acceptance Criteria
- [x] Webhook signature verification on all incoming events
- [x] Idempotent event processing
- [x] Dead letter queue for failed processing