# VC-SYS Enhanced Greenfield Fullstack Development Workflow
# Version 3.0 - Market Intelligence + Security First + Accessibility Compliance

workflow:
  name: VC-SYS Greenfield Fullstack Development
  version: 3.0
  description: Enhanced greenfield development with market intelligence, security-first architecture, and accessibility compliance
  enhanced_features:
    - market_intelligence_integration
    - security_first_architecture  
    - accessibility_compliance
    - ai_agent_optimization
    - evidence_based_validation

# Enhanced Workflow Phases
phases:
  # Phase 1: Market Intelligence & Business Foundation
  - name: market_intelligence
    description: Market research, competitive analysis, and business case development
    agents: [market-research-specialist, business-analyst, laboratory]
    deliverables:
      - docs/project-brief.md
      - docs/market-research.md
      - docs/competitor-analysis.md
      - docs/business-case.md
    quality_gates:
      - market_validation_required
      - competitive_analysis_comprehensive
      - business_case_validated_with_stakeholders
    
  # Phase 2: Product Requirements & User Experience
  - name: requirements_definition
    description: Evidence-based product requirements and user experience design
    agents: [product-owner, ux-expert, accessibility-specialist]
    dependencies: [market_intelligence]
    deliverables:
      - docs/prd.md
      - docs/user-personas.md
      - docs/user-journey-maps.md
      - docs/accessibility-requirements.md
    quality_gates:
      - requirements_evidence_based
      - user_research_validated
      - accessibility_compliance_integrated
      - stakeholder_alignment_confirmed

  # Phase 3: Security-First Architecture
  - name: architecture_design
    description: Security-first technical architecture with performance and accessibility
    agents: [technical-architect, security-specialist, performance-specialist]
    dependencies: [requirements_definition]
    deliverables:
      - docs/architecture.md
      - docs/architecture/security-architecture.md
      - docs/architecture/performance-architecture.md
      - docs/architecture/accessibility-architecture.md
      - docs/threat-model.md
    quality_gates:
      - security_architecture_reviewed
      - threat_model_comprehensive
      - performance_requirements_defined
      - accessibility_architecture_compliant

  # Phase 4: Epic Planning & Story Development
  - name: epic_planning
    description: Value-driven epic planning with AI-optimized story development
    agents: [product-owner, technical-architect, scrum-master]
    dependencies: [architecture_design]
    deliverables:
      - docs/epics/epic-*.md
      - docs/stories/story-*.md
      - docs/implementation-plan.md
    quality_gates:
      - epics_value_driven
      - stories_ai_agent_optimized
      - implementation_plan_validated
      - dependencies_clearly_mapped

  # Phase 5: Development Setup & Foundation
  - name: development_foundation
    description: Secure development environment with quality gates
    agents: [technical-architect, integration-specialist, qa-specialist]
    dependencies: [epic_planning]
    deliverables:
      - project_scaffolding
      - ci_cd_pipeline
      - security_scanning_integration
      - testing_framework
      - monitoring_setup
    quality_gates:
      - security_scanning_integrated
      - accessibility_testing_automated
      - performance_monitoring_enabled
      - quality_gates_enforced

  # Phase 6: AI-Optimized Implementation
  - name: implementation
    description: AI agent-optimized development with continuous validation
    agents: [developer, qa-specialist, security-specialist, accessibility-specialist]
    dependencies: [development_foundation]
    deliverables:
      - implemented_features
      - test_suites
      - security_validation
      - accessibility_validation
      - performance_benchmarks
    quality_gates:
      - code_security_validated
      - accessibility_compliance_tested
      - performance_benchmarks_met
      - quality_standards_enforced

  # Phase 7: Quality Validation & Deployment Readiness
  - name: quality_validation
    description: Comprehensive quality validation and deployment preparation
    agents: [qa-specialist, security-specialist, accessibility-specialist, performance-specialist]
    dependencies: [implementation]
    deliverables:
      - security_audit_report
      - accessibility_compliance_report
      - performance_test_results
      - deployment_checklist
    quality_gates:
      - security_audit_passed
      - accessibility_compliance_verified
      - performance_requirements_met
      - deployment_readiness_confirmed

# Enhanced Quality Gates
quality_gates:
  market_validation_required:
    description: Market research and competitive analysis must be comprehensive
    validation_criteria:
      - market_size_quantified
      - competitive_landscape_analyzed
      - user_personas_research_backed
      - business_case_financially_validated
    evidence_required: true

  security_architecture_reviewed:
    description: Security architecture must pass comprehensive review
    validation_criteria:
      - threat_model_comprehensive
      - security_controls_appropriate
      - compliance_requirements_addressed
      - security_testing_integrated
    mandatory: true

  accessibility_compliance_integrated:
    description: Accessibility requirements must be built into all phases
    validation_criteria:
      - wcag_aa_compliance_planned
      - inclusive_design_principles_applied
      - assistive_technology_support_designed
      - accessibility_testing_automated
    compliance_level: WCAG-AA

  ai_agent_optimization:
    description: All deliverables must be optimized for AI agent implementation
    validation_criteria:
      - story_sizing_appropriate
      - implementation_patterns_consistent
      - context_windows_optimized
      - testing_automation_ready
    optimization_level: high

# Success Metrics
success_metrics:
  business_metrics:
    - market_opportunity_score: ">= 7/10"
    - competitive_advantage_score: ">= 8/10"
    - business_case_roi: ">= 20%"
    - stakeholder_alignment_score: ">= 9/10"

  technical_metrics:
    - security_compliance_score: ">= 95%"
    - accessibility_compliance_score: ">= 100% WCAG-AA"
    - performance_benchmark_score: ">= 90%"
    - ai_implementation_readiness: ">= 95%"

  quality_metrics:
    - evidence_validation_score: ">= 100%"
    - test_coverage: ">= 90%"
    - documentation_completeness: ">= 95%"
    - stakeholder_satisfaction: ">= 9/10"

# Risk Management
risk_management:
  market_risks:
    - competitive_pressure_assessment
    - market_timing_analysis
    - user_adoption_risk_evaluation
    
  technical_risks:
    - security_vulnerability_assessment
    - performance_bottleneck_analysis  
    - integration_complexity_evaluation
    
  project_risks:
    - resource_availability_tracking
    - timeline_risk_monitoring
    - stakeholder_alignment_maintenance

# Continuous Improvement
continuous_improvement:
  feedback_loops:
    - user_research_continuous
    - market_intelligence_monitoring
    - competitive_analysis_updates
    - performance_metrics_tracking
    
  optimization_areas:
    - ai_agent_workflow_optimization
    - quality_gate_effectiveness
    - stakeholder_communication_improvement
    - delivery_velocity_enhancement