Concept
What RCF covers, and what it doesn’tCopy link
The methodology, as published today, scopes the build-side of the lifecycle: everything between an agreed PRD and TAD, and a feature shipped with traceability intact. Upstream of that, and downstream of that, are both deliberately out of frame. This page is the honest map.
Every methodology page I’ve read either oversells the bit the author cares about, or quietly assumes the bits they don’t. RCF is no different in that risk, so this page exists to make the scope explicit before a reader gets to the substantive pages and starts pattern-matching against what their project actually looks like.
The wider lifecycle, at a glanceCopy link
A rough sketch of where RCF sits:
Discovery → Shaping → PRD/TAD agreement → Build sequence → FBS → Build cycle → Deploy gates → Operate and Learn → loop back into shaping.
The bold span is where the methodology currently focuses. PRD/TAD agreement (upstream) and deploy gates (downstream) are on the RCF roadmap; the chain extends in both directions as those workstreams ship. Discovery, shaping, and operate-and-learn sit outside the methodology entirely. Operate-and-learn lives with the digital operator, a separate Stravica concept that runs alongside RCF rather than inside it.
What is in scopeCopy link
RCF, as it currently stands, covers the build-side of the software lifecycle. Concretely, that means everything from “the PRD and TAD are agreed and signed off” through to “the feature is built, tested, and shipped, with traceability from a business decision to the line of code that satisfies it.”
Inside that frame, the methodology is reasonably complete. The document chain defines the artefacts. The build cycle defines the operating loop. The AC-as-contract mechanism defines how intent becomes machine-checkable. The traceability rules define how the chain stays interrogable as the project evolves. These pieces hang together and have been used in anger.
What is deliberately out of scopeCopy link
Two whole bands of work: upstream of the PRD and TAD being agreed, and downstream of ship. Both omissions are purposeful, not accidental.
Upstream: discovery and PRD/TAD agreementCopy link
Everything that happens before the PRD and TAD are agreed. The discovery work that identifies a product worth building, the multi-stakeholder negotiation that turns a vague idea into a structured PRD, the architectural shaping that turns a PRD into a TAD. The role-mix that does that work properly: product management, design, technical architecture, compliance, infrastructure, security, devops, sometimes legal, sometimes finance. None of that is in the current pages.
The upstream work is genuinely multi-role and multi-stakeholder. An RCF project still has one owner, but many roles feed into the PRD and TAD state, and the agreement among them is its own discipline. That discipline gets a separate treatment, with its own pages, its own tooling, and its own mechanism for the human signature at the approval gates. It’s on the roadmap. It isn’t on this site yet.
Downstream: PR, merge, deploy gates (and operate-and-learn beyond)Copy link
Two distinct things live downstream of the build cycle. First, the gates that turn a tests-green slice into a feature actually running in production: PR review, merge protocol, CI pipelines, deployment mechanics, the deploy-gate audit trail. Second, operate-and-learn: monitoring, alerting, on-call, incident response, and the feedback loop that turns telemetry from a shipped feature back into the next slice’s requirements.
The deploy-gates piece is on the RCF roadmap. The chain extends naturally past the build cycle’s Finalise stage; making PR / merge / deploy gates first-class participants in the trace is the next workstream below the build cycle. RCF assumes a green CI run before Finalise commits today, but it doesn’t yet prescribe how the gates beyond that work.
Operate-and-learn is not on the RCF roadmap. That work lives with the digital operator, a separate Stravica concept that sits alongside the methodology rather than inside it. RCF describes how to build software; the digital operator describes how the role that runs and learns from it gets done. The two compose at the loop-back from operate back into shaping. They are not the same project.
For a reader landing here from a DevOps or platform-engineering background, the practical answer is: pick whatever CI, deploy, and ops stack suits your context. RCF will plug into it cleanly at the Finalise gate today, and into the deploy-gates layer once that workstream ships.
What that excludes for certain project typesCopy link
A reader landing on a methodology page that assumes a PRD already exists will reasonably ask whether the methodology has anything to say about their kind of work. Honest answers, in order:
Platform and infrastructure work. Often there’s no classical PRD because there’s no end-user surface. RCF still applies once you decide what the platform is for and what it must do: that becomes the PRD, and the rest of the chain runs the same. The shape of the requirements changes (more non-functional, fewer user stories that look human-shaped); the mechanism doesn’t. The upstream work of writing that PRD is what’s missing.
Research and exploration. Genuinely exploratory work where the question is “is this idea worth pursuing” sits upstream of RCF entirely. Build something, learn, throw it away. The methodology kicks in if and when the exploration produces something worth productising. Don’t wrap a spike in nine artefacts. That’s the methodology being misused.
Bug fixes and security patches. A single-AC slice through the existing chain, run through the normal build cycle, against the AC the bug exposed. RCF covers this; the surface is smaller because the upstream work was done when the original feature shipped. If the bug exposes a missing AC, write the AC, then fix the code against it. The chain accumulates as you touch it.
Open source and consulting work. Same answer as platform work. Once there’s a thing the work is for, RCF runs. The upstream who-agrees-what is different (maintainers and contributors, or client and stakeholders, instead of internal product management), but the build-side mechanism is the same.
In short: the build-side mechanism is the same shape regardless of project type. The upstream work is where the variation lives. RCF currently sits where the variation has settled out into a PRD and TAD that the team agrees to build against. If you’re upstream of that point, the methodology has limited grip on your work today. That’s the gap the next workstream closes.
Why ship the build-side firstCopy link
Two reasons, both honest.
First, the build-side is where AI agents are doing the work right now and where the trust problem is most acute. The discipline that makes AI agent output trustworthy is the discipline of the document chain, the build cycle, and the AC-as-contract rule. If we’d started upstream or downstream, the build-side would still be a wild west and the project would have stayed agent-unsafe.
Second, the upstream and downstream bands are both harder, not easier. Multi-role agreement on a PRD and TAD touches organisational shape, role authority, sign-off politics, and the social mechanism by which the human signature on the PRD actually means something. The deploy-gates piece touches the entire CI/CD blast radius and the audit trail that turns a tested slice into a deployed feature without losing the chain. Both deserve a proper treatment, not a tacked-on chapter. They’re the next substantial pieces, not footnotes.
What this means for the trust mechanismCopy link
A fair worry, looking at the published methodology, is that if AI drafts the acceptance criteria (which the AC-as-contract page concedes is a sweet spot for AI assistance), the contract risks becoming a contract between two AIs with a human signature attached. The signature is theatre, the argument runs, unless something structural anchors it.
The answer is real, and it lives at the approval gates. The same gates that live in the upstream work also live at every layer of the chain: PRD approval, TAD approval, AC review, FBS sign-off, test review. The mechanism that stops the signature being theatre is the same mechanism at every layer, and it gets its own page: theatre risk and the human signature. Read that one alongside this one. The two pages together answer the “where does trust live” question.
What to read nextCopy link
If you’re landing here because you’re unsure RCF fits your work, the next two pages worth reading are the document chain (what the build-side mechanism actually is) and theatre risk and the human signature (how the chain stays anchored to a real human commitment rather than drifting into self-report). After those, the FAQ covers the questions that come up most often.