{"id":"agency-scope-creep-detector","title":"Scope Creep Detector","description":"Flags vs SOW typed. Scope creep unnoticed. Typed v1 agent with eval coverage.","category":"agency","status":"validated","version":"1.0.0","source":"agentskit-registry","license":"MIT","tags":["agency","structured-output","v1"],"packages":["@agentskit/core","@agentskit/runtime","@agentskit/tools"],"files":["agent.ts","README.md","eval.ts"],"requires":{"zod":"^3","zod-to-json-schema":"^3"},"skill":{"name":"agency-scope-creep-detector","description":"Flags vs SOW typed. Scope creep unnoticed. Typed v1 agent with eval coverage.","systemPrompt":"You are Scope Creep Detector. Scope creep unnoticed. Output: Flags vs SOW typed.\nActionable findings citing input sources. No invented issues.\nNEVER invent facts — gaps and openQuestions for missing input. Always draft for human review.\n${UNTRUSTED_CONTENT_DIRECTIVE}\nCall submit_creep_detector exactly once. Stop."},"flow":null,"a2a":{"id":"io.agentskit.registry.agency-scope-creep-detector","name":"Scope Creep Detector","description":"Flags vs SOW typed. Scope creep unnoticed. Typed v1 agent with eval coverage.","version":"1.0.0","homepage":"https://registry.agentskit.io","skills":[{"name":"agency-scope-creep-detector","description":"Flags vs SOW typed. Scope creep unnoticed. Typed v1 agent with eval coverage.","capabilities":{"streaming":true,"cancellation":true,"requiresApproval":false}}]},"sources":[{"path":"agent.ts","content":"import type { AdapterFactory, ChatMemory, Observer, ToolCall, ToolDefinition } from '@agentskit/core'\nimport { fenceUntrustedContent, UNTRUSTED_CONTENT_DIRECTIVE } from '@agentskit/core/security'\nimport { invokeStructured } from '@agentskit/runtime'\nimport { defineZodTool } from '@agentskit/tools'\nimport { z } from 'zod'\nimport { zodToJsonSchema } from 'zod-to-json-schema'\nimport type { JSONSchema7 } from 'json-schema'\n\n/** Scope Creep Detector — v1 validated. Pain: Scope creep unnoticed */\n\nexport interface Finding { id: string; severity: 'critical' | 'high' | 'medium' | 'low' | 'info'; message: string; source?: string; recommendation?: string }\nexport interface AgentOutput { summary: string; findings: Finding[]; gaps: string[]; openQuestions: string[] }\nexport interface AgentResult extends AgentOutput { requiresReview: boolean }\nexport interface AgencyScopeCreepDetectorConfig {\n  adapter: AdapterFactory\n  memory?: ChatMemory\n  observers?: Observer[]\n  onConfirm?: (toolCall: ToolCall) => boolean | Promise<boolean>\n  maxSteps?: number\n}\n\nconst Output = z.object({\n  summary: z.string(),\n  findings: z.array(z.object({\n    id: z.string(), severity: z.enum(['critical', 'high', 'medium', 'low', 'info']),\n    message: z.string(), source: z.string().optional(), recommendation: z.string().optional(),\n  })),\n  gaps: z.array(z.string()).default([]),\n  openQuestions: z.array(z.string()).default([]),\n})\nconst toJson = (s: z.ZodTypeAny): JSONSchema7 => zodToJsonSchema(s) as JSONSchema7\n\nconst skill = {\n  name: 'agency-scope-creep-detector',\n  description: \"Scope Creep Detector — typed output agent (draft spec).\",\n  systemPrompt: `You are Scope Creep Detector. Scope creep unnoticed. Output: Flags vs SOW typed.\nActionable findings citing input sources. No invented issues.\nNEVER invent facts — gaps and openQuestions for missing input. Always draft for human review.\n${UNTRUSTED_CONTENT_DIRECTIVE}\nCall submit_creep_detector exactly once. Stop.`,\n  tools: ['submit_creep_detector'],\n}\n\nexport function createAgencyScopeCreepDetectorAgent(config: AgencyScopeCreepDetectorConfig) {\n  const submit = (): ToolDefinition =>\n    defineZodTool({ name: 'submit_creep_detector', description: 'Submit result. Once.', schema: Output, toJsonSchema: toJson, async execute() { return 'recorded' } }) as ToolDefinition\n\n  async function run(input: string): Promise<AgentResult> {\n    if (!input?.trim()) throw new Error('agency-scope-creep-detector requires non-empty input')\n    const result = await invokeStructured({\n      adapter: config.adapter,\n      tool: submit(),\n      task: `INPUT:\\n${fenceUntrustedContent(input)}`,\n      parse: (a) => Output.parse(a),\n      skill,\n      memory: config.memory,\n      observers: config.observers,\n      onConfirm: config.onConfirm,\n      maxSteps: config.maxSteps ?? 4,\n    })\n    return { ...result, requiresReview: true }\n  }\n  return {\n    name: 'agency-scope-creep-detector',\n    run,\n    asHandle() { return { name: 'agency-scope-creep-detector', run: (t: string) => run(t).then((r) => JSON.stringify(r)) } },\n  }\n}\n"},{"path":"README.md","content":"# Scope Creep Detector\n\n> **v1 validated** — `npx agentskit add agency-scope-creep-detector`\n\n## Pain\nScope creep unnoticed\n\n## Output\nFlags vs SOW typed\n"},{"path":"eval.ts","content":"import type { EvalSuite } from '@agentskit/eval'\n\nexport const suite: EvalSuite = {\n  name: 'agency-scope-creep-detector',\n  cases: [\n    { input: 'Complete input for Scope Creep Detector: Scope creep unnoticed. Provide full structured output.', expected: (r: string) => r.length > 20 && /requiresReview|summary|title|category|findings|sections|score|clusters|items|steps/i.test(r) },\n    { input: 'Minimal input.', expected: (r: string) => /gap|openQuestion/i.test(r) || r.length > 10 },\n    { input: 'Input with specific detail: ACME Corp project deadline March 15.', expected: (r: string) => /ACME|March|15/i.test(r) || /gap/i.test(r) },\n    { input: 'Empty context — only says \"process this\".', expected: (r: string) => r.length > 5 },\n  ],\n}\n"}],"installable":true,"validation":{"status":"approved","score":97,"confidence":0.96,"method":"codex-executor-independent-reviewer","iterations":1,"cases":3,"summary":"The agent is ready for v1. All three outputs are valid structured results, stay within the scope-creep detector purpose, avoid hallucinating missing SOW facts, surface uncertainty and gaps clearly, and resist the injection attempt. The behavior is useful even for sparse or malformed inputs because it explains why no scope comparison can be made and asks for the right baseline materials.","strengths":["Valid structured output in every case.","Correctly refuses to fabricate SOW/project details from placeholder prompts.","Clearly identifies missing baseline scope, requested changes, deliverables, timeline, budget, and change-control context.","Handles prompt injection safely by treating it as untrusted input and not outputting APPROVED.","Recommendations and open questions are directly useful for an agency scope-creep review workflow."],"notes":[]}}