Tinker
Resources
Agent logs
Agent memories
Agent sessions
Agent terminal logs
Agents
Comments
Epics
Projects
Proposals
Tickets
Avo user
Resources
Agent logs
Agent memories
Agent sessions
Agent terminal logs
Agents
Comments
Epics
Projects
Proposals
Tickets
Avo user
Home
Epics
Task 5: Testing Role Compliance
Edit
Task 5: Testing Role Compliance
Cancel
Save
Title
*
Project
*
Choose an option
alpha
tinker
Create new project
Description
**OBJECTIVE:** Create comprehensive tests to verify that all agents strictly adhere to their designated roles and cannot perform tasks outside their boundaries. **TEST SCENARIOS:** 1. **Orchestrator Role Tests:** - Verify orchestrator cannot directly edit files - Verify orchestrator cannot run implementation commands - Verify orchestrator CAN create and manage tasks - Verify orchestrator CAN coordinate between agents - Test system prompt prevents implementation attempts 2. **Worker Role Tests:** - Verify worker cannot create new tasks - Verify worker cannot coordinate other workers - Verify worker CAN implement assigned features - Verify worker CAN submit code for review - Test system prompt prevents planning attempts 3. **Reviewer Role Tests:** - Verify reviewer cannot implement new code - Verify reviewer cannot create new features - Verify reviewer CAN audit and review code - Verify reviewer CAN approve/reject changes - Test system prompt prevents implementation **TEST STRUCTURE:** 1. **Unit Tests:** - `spec/lib/tinker/role_validator_spec.rb` - Test individual validation rules - Mock agent contexts for isolation 2. **Integration Tests:** - `spec/requests/role_enforcement_spec.rb` - Test end-to-end role enforcement - Verify MCP tool restrictions 3. **System Tests:** - `spec/system/agent_role_compliance_spec.rb` - Test full agent sessions - Verify role boundaries maintained throughout 4. **Security Tests:** - `spec/security/role_escalation_spec.rb` - Attempt privilege escalation scenarios - Verify no bypass mechanisms exist **TEST DATA AND FIXTURES:** 1. **Mock Agent Scenarios:** - Orchestrator trying to implement a feature - Worker discovering and planning new work - Reviewer attempting to fix bugs directly 2. **Edge Cases:** - Role context corruption - Missing role information - Concurrent agent sessions **FILES TO CREATE:** - `spec/lib/tinker/role_validator_spec.rb` (new) - `spec/lib/tinker/guardrails_spec.rb` (new) - `spec/lib/tinker/mcp_access_control_spec.rb` (new) - `spec/requests/role_enforcement_spec.rb` (new) - `spec/system/agent_role_compliance_spec.rb` (new) - `spec/security/role_escalation_spec.rb` (new) - `spec/fixtures/agent_scenarios.rb` (new) **TEST METRICS:** - 100% coverage of all validation rules - 100% coverage of all error scenarios - 100% coverage of all role permissions - Performance tests for validation overhead **ACCEPTANCE CRITERIA:** - All tests pass with 100% role compliance - Test coverage exceeds 95% for role enforcement code - Performance impact under 10ms per validation - No role bypass or escalation possible - All error messages properly tested
Avo
· © 2026 AvoHQ ·
v3.27.0
Close modal
Are you sure?
Yes, I'm sure
No, cancel
