An AI orchestrator for spec-driven development. Write specs, run decree process, get working code.
AI coding assistants are powerful but ad hoc. You prompt, you review, you prompt again. Nothing is repeatable, nothing is tracked, and multi-step workflows need constant babysitting.
Decree treats AI work like database migrations. You write spec files describing what you want built. Routines define how AI processes each spec — implement, build, test, fix. Processing runs them in order, one at a time, each building on the last. Everything is logged.
The result: you focus on what to build. The routines handle how.
cargo install decree
decree init # scaffold project, pick your AI toolThis creates .decree/ with routines, prompts, config, and a router.
Interactive prompt templates live in .decree/prompts/. They inject project context — processed migrations, available routines, config — so your AI conversations start informed:
decree prompt sow # plan a new statement of work for a new project
decree prompt routine # get help writing a new routine (flow)
decree prompt migration # plan next batch of specs1. Write specs
Create migration files in .decree/migrations/, numbered for ordering:
.decree/migrations/
├── 01-auth-system.spec.md
├── 02-user-profiles.spec.md
└── 03-api-endpoints.spec.md
Each spec is markdown with optional YAML frontmatter:
---
routine: develop
---
# Auth System
Implement email/password authentication with session tokens.
## Requirements
- POST /auth/register creates a user
- POST /auth/login returns a session token
- Sessions expire after 24 hours
## Acceptance Criteria
- Registration with duplicate email returns 409
- Invalid credentials return 401
- Expired tokens are rejected2. Process
decree processEach spec is processed in order through the assigned routine. The default develop routine invokes your AI tool twice — once to implement, once to verify acceptance criteria. Failed specs retry with prior attempt logs as context.
3. Review
decree status # see what's been processed
decree log 01 # see execution output for a specSpecs work well as blackbox test cases. Define inputs and expected outputs. The routine implements code to satisfy them. You never describe how — only what.
Write specs around observable behavior:
# Markdown Parser
Parse markdown to HTML.
## Acceptance Criteria
- `# Hello` produces `<h1>Hello</h1>`
- `**bold**` produces `<strong>bold</strong>`
- Empty input produces empty output
- Nested lists render correctlyThe AI figures out the implementation. The acceptance criteria are the tests.
Routines are shell scripts in .decree/routines/ that define how work gets done. They receive the spec as a message file and call your AI tool directly.
The default develop routine:
- Sends the spec to your AI tool for implementation
- Sends it again for verification against acceptance criteria
The rust-develop routine adds build and test steps:
- AI implements the spec
cargo build --release && cargo test- AI reads build/test output and fixes failures
Write your own routines for any workflow — linting passes, documentation generation, image creation, data pipelines. A routine is just a bash script that calls whatever tools you need.
decree routine # list available routines
decree routine-sync # sync routine registry with filesystem
decree verify # check all routine pre-checks passBuild a library of routines and share them across projects. Set routine_source in config to point at a shared directory:
routine_source: "~/.decree/routines"Project-local routines in .decree/routines/ take precedence. Shared routines are fallbacks. The same layering applies to prompts.
Routines are tracked in a registry in config.yml. Discovery runs automatically at decree init, decree process, and decree daemon — or manually with decree routine-sync:
routines:
develop:
enabled: true
rust-develop:
enabled: true
shared_routines:
deploy:
enabled: true
notify:
enabled: falseNew project-local routines default to enabled. New shared routines default to disabled. Routines whose files disappear are marked deprecated. Hooks bypass the registry — they only need the script to exist on disk.
Routines can write follow-up messages to .decree/outbox/. Decree processes them depth-first before moving to the next migration. This enables multi-step pipelines:
market-analysis → competitive-landscape → financial-model → executive-summary
One spec in, four documents out.
Your AI tool needs permission to read and write files in the repo. Configure this per-project so routines can operate non-interactively.
For Claude Code, create .claude/settings.local.json:
{
"permissions": {
"allow": [
"Bash(cargo build:*)",
"Bash(cargo test:*)",
"Read",
"Write",
"Edit",
"Glob",
"Grep"
]
}
}Other tools have similar mechanisms — check your AI tool's docs for non-interactive / headless permissions.
Configure hooks in .decree/config.yml for cross-cutting concerns:
hooks:
beforeEach: git-baseline
afterEach: git-stash-changes
onDeadLetter: notify-failureThe built-in git hooks stash a baseline before each spec and checkpoint changes after. Failed specs restore to baseline before retrying. Every attempt is preserved as a named stash.
onDeadLetter fires exactly once when a message is moved to inbox/dead/ after exhausting all retries. It does not fire on beforeEach failures.
Hooks receive these additional env vars:
| Variable | Available in |
|---|---|
DECREE_HOOK |
All hooks |
DECREE_TRIGGER |
All hooks — inbox, cron:<stem>, or chain |
DECREE_ATTEMPT |
beforeEach, afterEach, onDeadLetter |
DECREE_MAX_ATTEMPTS |
beforeEach, afterEach, onDeadLetter |
DECREE_ROUTINE_EXIT_CODE |
afterEach, onDeadLetter |
DECREE_FINAL_ATTEMPT |
afterEach only — "true" on the last attempt |
For recurring work, run the daemon:
decree daemonIt polls .decree/cron/ for scheduled messages and .decree/inbox/ for new work. Cron messages use standard cron syntax in frontmatter:
---
cron: "0 9 * * 1-5"
routine: daily-review
---
Run the morning code review.Inspect live schedule status for all cron files:
decree cron listOutput shows each cron file with its schedule, inferred routine, how long ago it last ran, and the countdown to its next fire:
FILE SCHEDULE ROUTINE LAST RUN NEXT
daily-review.md 0 9 * * 1-5 daily-review 2m ago 23h
hourly-sync.md 0 * * * * gmail-sync never 13m
Individual routines can override the global max_attempts and add a timeout_s cap:
routines:
gmail-sync:
enabled: true
max_attempts: 5
actual-budget:
enabled: true
timeout_s: 60When timeout_s is set, the process is killed with SIGTERM after that many seconds and the attempt is treated as exit code 1.
When a migration's inbox message exhausts all retries and is dead-lettered, decree process stops immediately and exits non-zero. Subsequent migrations are not started. Non-migration inbox messages (inline drains) are unaffected.
After a non-zero routine exit, Decree scans the run log for usage limit + reset. If found:
- Parses the reset time (falls back to +1 hour if unparseable)
- Prints a waiting message and sleeps until reset (SIGINT exits with code 130)
- Removes the migration from
processed.mdand any dead-letter copy - Retries the migration from scratch
On the retry, DECREE_PREVIOUS_SESSION_ID is set to the Claude session ID from the previous run (extracted from Session ID: <id> in the run log). Routines opt in:
resume_flag=""
if [ -n "${DECREE_PREVIOUS_SESSION_ID:-}" ]; then
resume_flag="--resume $DECREE_PREVIOUS_SESSION_ID"
fi
claude $resume_flag -p "$prompt"The default develop.sh and rust-develop.sh templates use this pattern.
After every completed run (success or dead-letter), Decree writes run.json to the run directory:
{
"message_id": "D0001-0900-01-add-auth-0",
"routine": "rust-develop",
"trigger": "inbox",
"migration": "01-add-auth.md",
"attempts": 2,
"exit_code": 0,
"start": "2026-04-29T09:00:00Z",
"end": "2026-04-29T09:03:42Z",
"duration_s": 222
}trigger is one of inbox, cron:<stem>, or chain. migration is omitted for non-migration messages.
Run decree in a container with no local install. The Docker image installs your AI tool on startup:
services:
decree:
image: ghcr.io/jtmckay/decree:latest
volumes:
- .:/work
environment:
- DECREE_AI=opencode # opencode, claude, or copilot
- DECREE_DAEMON=true
- DECREE_INTERVAL=2
restart: unless-stoppedMount a shared routine library:
volumes:
- .:/work
- ~/.decree/routines:/routinesSee examples/docker/ for a working setup.
Install Decree guidance into your AI assistant so it understands the Decree project layout, conventions, and workflow:
# Install for Claude Code (project scope)
decree skill --scope project --target claude
# Install for GitHub Copilot (project scope)
decree skill --scope project --target copilot
# Install for Claude Code (user scope — applies to all projects)
decree skill --scope user --target claude| Scope | Target | Installed path |
|---|---|---|
project |
claude |
.claude/skills/decree/SKILL.md |
project |
copilot |
.github/skills/<name>/SKILL.md |
user |
claude |
~/.claude/skills/decree/SKILL.md |
user |
copilot |
Not supported |
The command is idempotent — it no-ops if the installed file already matches the bundled template. Use --force to overwrite a file that has diverged.
.decree/
├── config.yml # AI tool config, retries, hooks, routine registry
├── router.md # instructions for automatic routine selection
├── processed.md # tracks completed migrations
├── migrations/ # spec files (your input)
├── routines/ # shell scripts (your workflows)
├── prompts/ # interactive prompt templates
├── cron/ # scheduled messages
├── inbox/ # messages being processed
├── outbox/ # follow-up messages from routines
├── runs/ # execution logs (the audit trail)
│ └── <id>/ # per-run directory: logs, message.md, run.json
└── dead/ # exhausted messages for review