--- description: "Enforces naming, frontmatter, and organization standards for all .cursor/ configuration files" globs: [".cursor/**"] --- # .cursor/ Configuration Standards ## Rule Files (.cursor/rules/) - Kebab-case filenames, `.mdc` extension - Must have YAML frontmatter with `description` + either `alwaysApply` or `globs` - Keep under 500 lines; split large rules into multiple focused files ## Skill Files (.cursor/skills/*/SKILL.md) - Must have `name` and `description` in frontmatter - Body under 500 lines; use `references/` directory for overflow content - Templates live under their skill's `templates/` directory ## Command Files (.cursor/commands/) - Plain markdown, no frontmatter - Kebab-case filenames ## Agent Files (.cursor/agents/) - The `.cursor/agents/` directory is intentionally empty. Per `.cursor/rules/no-subagents.mdc`, the main agent does not delegate to subagents in this workspace. Do not add agent files here without a corresponding rule change. ## Security - All `.cursor/` files must be scanned for hidden Unicode before committing (see cursor-security.mdc) ## Quality Thresholds (canonical reference) All rules and skills must reference the single source of truth below. Do NOT restate different numeric thresholds in individual rule or skill files. | Concern | Threshold | Enforcement | |---------|-----------|-------------| | Test coverage on business logic | 75% | Aim (warn below); critical-path floor enforced separately (next row) | | Test coverage on critical paths | 90% floor / 100% aim | **90% is the enforcement floor** in CI gates, refactor verification, and release pre-flight. **100% is the aim** — drift below 100% but at-or-above 90% is acceptable; drift below 90% blocks. Critical paths = code paths where a bug would cause data loss, security breach, financial error, or system outage; identify from `acceptance_criteria.md` (must-have) and `_docs/00_problem/security_approach.md`. | | Test scenario coverage (vs AC + restrictions) | 75% | Blocking in test-spec Phase 1 and Phase 3 | | CI coverage gate | 75% overall, 90% critical-path | Fail build below either threshold | | Lint errors (Critical/High) | 0 | Blocking pre-commit | | Code-review auto-fix | Low + Medium (Style/Maint/Perf) + High (Style/Scope) | Critical and Security always escalate. Full categorization: see `.cursor/skills/implement/SKILL.md` § "Auto-Fix eligibility matrix" | When a skill or rule needs to cite a threshold, link to this table instead of hardcoding a different number. The full auto-fix eligibility matrix (severity × category) lives in `implement/SKILL.md`; cite that file rather than re-tabulating the matrix.