docs(CHG36): update skills and CLAUDE.md for flag-based CLI

Author: Mearman

.claude/skills/audit-system/SKILL.md

@@ -0,0 +1,141 @@
+---
+name: audit-system
+description: Use when checking whether a live codebase still matches its SysProM document — detects drift, missing nodes, orphaned references, undocumented decisions, and constraint violations
+user-invocable: true
+allowed-tools: Bash(spm *), Read, Glob, Grep, Agent
+---
+
+# Audit System
+
+Compare a live system against its SysProM document to detect drift. Finds nodes that no longer match reality, code that has no provenance, and invariants that are no longer enforced.
+
+## When to Use
+
+- Periodic health check after a period of development
+- Before a release, to confirm provenance is current
+- After onboarding new contributors who may not have updated the SysProM
+- When the SysProM feels stale or incomplete
+
+## Process
+
+```dot
+digraph audit {
+  rankdir=TB;
+  load [label="1. Load existing\nSysProM document" shape=box];
+  scan [label="2. Scan codebase\n(parallel subagents)" shape=box];
+  compare [label="3. Compare document\nvs reality" shape=box];
+  report [label="4. Present\naudit report" shape=box];
+  fix [label="5. Fix drift\n(user-approved)" shape=diamond];
+  validate [label="6. Validate & sync" shape=box];
+
+  load -> scan -> compare -> report -> fix;
+  fix -> validate [label="approved"];
+  fix -> report [label="more issues"];
+}
+```
+
+### Step 1: Load existing document
+
+```bash
+spm validate
+spm stats
+```
+
+Review the current state — how many nodes, which types, any existing validation issues.
+
+### Step 2: Scan codebase (parallel subagents)
+
+Dispatch subagents to check each audit dimension. Each subagent reads the SysProM document AND explores the codebase, returning discrepancies.
+
+**Dispatch these in parallel:**
+
+| Subagent | What to check |
+|----------|--------------|
+| Ghost nodes | Nodes in SysProM that reference files, modules, or concepts that no longer exist |
+| Undocumented code | Significant modules, services, or APIs in the codebase with no corresponding SysProM node |
+| Decision drift | Decisions recorded in SysProM whose selected option no longer matches reality (e.g. "chose SQLite" but codebase uses Postgres) |
+| Invariant enforcement | Invariants claimed in SysProM that are not actually enforced (no lint rule, no test, no type constraint) |
+| Relationship accuracy | Relationships that are structurally wrong (A depends_on B but no import exists, A refines B but they are unrelated) |
+| Staleness | Nodes with outdated descriptions, names that no longer match, or statuses that should have progressed |
+
+**Subagent prompt template:**
+
+> You are auditing a codebase against its SysProM provenance document.
+>
+> First, read the SysProM document:
+> ```bash
+> spm query nodes
+> spm query rels
+> ```
+>
+> Then explore the codebase to check for [AUDIT DIMENSION].
+>
+> For each finding, report:
+> - **Issue**: What is wrong
+> - **Severity**: critical / warning / info
+> - **Node**: Which SysProM node is affected (or "none" for undocumented code)
+> - **Evidence**: File path, line, or command output proving the drift
+> - **Suggested fix**: What should change in the SysProM document
+
+### Step 3: Compare document vs reality
+
+Collate subagent findings into a structured comparison. Cross-reference to avoid duplicates (e.g. a ghost node and a broken relationship pointing to the same removed module).
+
+### Step 4: Present audit report
+
+Present findings grouped by severity:
+
+```
+## Audit Report
+
+### Critical (must fix)
+- [ ] EL5 "Redis Cache" — module removed in commit abc123, node still present
+- [ ] INV3 "No any types" — 14 uses of `any` found in src/legacy/
+
+### Warnings (should fix)
+- [ ] D7 "Use REST" — codebase now also has GraphQL endpoints (undocumented)
+- [ ] CP3 → EL8 relationship: EL8 was renamed to EL12
+
+### Info (consider)
+- [ ] src/analytics/ has no SysProM coverage (3 modules, ~2000 LOC)
+- [ ] CH19 status is "introduced" but all tasks are complete
+```
+
+**Wait for user to review before making any changes.**
+
+### Step 5: Fix drift (user-approved)
+
+For each approved fix, use the appropriate CLI command:
+
+| Drift type | Fix |
+|-----------|-----|
+| Ghost node | `spm remove <id>` or `spm update node <id> --status retired` |
+| Undocumented code | `spm add <type> --name "<name>" --description "<desc>"` |
+| Decision drift | `spm update node <id> --description "<updated>"` or add new decision |
+| Broken invariant | Update invariant description, or add enforcement, or retire |
+| Wrong relationship | `spm update remove-rel <from> <type> <to>` then `spm update add-rel <from> <type> <to>` |
+| Stale status | `spm update node <id> --status <new-status>` |
+
+### Step 6: Validate and sync
+
+```bash
+spm validate
+spm json2md .spm.json .spm
+```
+
+Confirm zero validation errors after fixes.
+
+## Severity Guide
+
+| Severity | Criteria |
+|----------|---------|
+| **Critical** | Node references something that does not exist, or invariant is actively violated |
+| **Warning** | Document is incomplete or inaccurate but not misleading |
+| **Info** | Opportunity to improve coverage or update stale metadata |
+
+## Common Mistakes
+
+- **Fixing without approval** — Always present the full report and wait for the user to approve changes. Some "drift" is intentional.
+- **Over-reporting** — Not every file needs a node. Apply the same granularity standards as `discover-system`.
+- **Ignoring relationship drift** — Relationships rot faster than nodes. A refactored module may still exist but its dependencies have changed completely.
+- **Treating warnings as critical** — Incomplete coverage is normal for living systems. Only flag genuinely misleading provenance as critical.

.claude/skills/discover-system/SKILL.md

@@ -0,0 +1,154 @@
+---
+name: discover-system
+description: Use when onboarding an existing codebase or project into SysProM for the first time — bootstraps a new document by exploring the system and populating it with discovered intent, concepts, capabilities, elements, decisions, invariants, and relationships
+user-invocable: true
+allowed-tools: Bash(spm *), Read, Glob, Grep, Agent
+---
+
+# Discover System
+
+Bootstrap a SysProM document from an existing codebase. Explores the system systematically, extracts provenance information, and populates a new document with discovered nodes and relationships.
+
+## When to Use
+
+- Starting SysProM on a project that already has code, docs, and history
+- Onboarding to an unfamiliar codebase and want structured understanding
+- Creating provenance documentation retrospectively
+
+## Process
+
+```dot
+digraph discover {
+  rankdir=TB;
+  init [label="1. Init empty document" shape=box];
+  explore [label="2. Explore system\n(parallel subagents)" shape=box];
+  review [label="3. Review discoveries\nwith user" shape=diamond];
+  populate [label="4. Populate nodes\nvia spm CLI" shape=box];
+  relate [label="5. Add relationships" shape=box];
+  validate [label="6. Validate & sync" shape=box];
+
+  init -> explore -> review;
+  review -> populate [label="approved"];
+  review -> explore [label="gaps found"];
+  populate -> relate -> validate;
+}
+```
+
+### Step 1: Initialise
+
+Create an empty SysProM document in the project root.
+
+```bash
+spm init --path .spm.json --format json --title "<Project Name>" --author "<Author>"
+```
+
+### Step 2: Explore (dispatch parallel subagents)
+
+Launch exploration subagents to discover each node type. Each subagent searches the codebase and returns a structured summary — it does NOT write to the document.
+
+**Dispatch these in parallel:**
+
+| Subagent | What to find | Where to look |
+|----------|-------------|---------------|
+| Intent | Project purpose, goals, mission | README, CLAUDE.md, AGENTS.md, docs/, package.json description, repo description |
+| Concepts | Domain models, key abstractions, bounded contexts | src/ type definitions, interfaces, schemas, domain models, glossaries |
+| Capabilities | Features, APIs, services, what the system can do | Route handlers, exported functions, CLI commands, public API surface |
+| Elements | Modules, packages, key files, infrastructure | Directory structure, package.json workspaces, build config, Dockerfiles |
+| Decisions | Architectural choices, technology selections, trade-offs | ADRs (docs/adr/, docs/decisions/), commit messages, config file choices (tsconfig, eslint, framework config), CLAUDE.md conventions |
+| Invariants | Rules that must always hold, constraints, policies | Lint rules, type constraints, test assertions, CI checks, validation schemas, CLAUDE.md rules |
+
+**Subagent prompt template:**
+
+> You are exploring a codebase to discover [NODE TYPE] for a SysProM provenance document. Search thoroughly using Glob, Grep, and Read. Return a structured list of discoveries in this format:
+>
+> For each discovery:
+> - **Suggested ID**: [TYPE_PREFIX][N] (e.g. I1, CN3, CP5, EL12, D7, INV4)
+> - **Name**: Short descriptive name
+> - **Description**: What it is and why it matters
+> - **Evidence**: File path and line or source where you found it
+> - [Type-specific fields: options/selected/rationale for decisions, conditions for invariants, etc.]
+>
+> Be thorough but avoid duplicates. Group related items. Aim for the right level of granularity — not every file is an element, not every function is a capability.
+
+### Step 3: Review with user
+
+Present a summary table of all discoveries, grouped by type. Ask the user to:
+
+- Confirm, reject, or modify each discovery
+- Identify gaps ("what about the caching layer?")
+- Adjust granularity ("these three should be one capability")
+- Add context the code doesn't reveal ("we chose X because...")
+
+**Do not proceed to population without user approval.**
+
+### Step 4: Populate nodes
+
+For each approved discovery, create the node via the CLI:
+
+```bash
+# Intent
+spm add intent --name "<name>" --description "<description>"
+
+# Concepts
+spm add concept --name "<name>" --description "<description>"
+
+# Capabilities
+spm add capability --name "<name>" --description "<description>"
+
+# Elements
+spm add element --name "<name>" --description "<description>"
+
+# Decisions (with options and rationale)
+spm add decision --name "<name>" --context "<context>" \
+  --option "OPT-A:<description>" --option "OPT-B:<description>" \
+  --selected OPT-A --rationale "<rationale>"
+
+# Invariants
+spm add invariant --name "<name>" --description "<description>"
+```
+
+### Step 5: Add relationships
+
+Connect nodes with typed relationships based on what the exploration revealed:
+
+```bash
+spm update add-rel <from> <type> <to>
+```
+
+Common relationship types to look for:
+
+| Pattern | Relationship |
+|---------|-------------|
+| Intent → Concept | `refines` |
+| Concept → Capability | `refines` |
+| Capability → Element | `realises` |
+| Element → Element | `depends_on` |
+| Decision → Element | `affects` |
+| Decision → Invariant | `must_preserve` |
+| Invariant → Capability | `constrains` |
+
+### Step 6: Validate and sync
+
+```bash
+spm validate
+spm json2md .spm.json .spm
+```
+
+Review any validation warnings and fix before finishing.
+
+## Granularity Guide
+
+| Too coarse | Right level | Too fine |
+|-----------|------------|---------|
+| "The backend" | "Authentication service" | "validatePassword function" |
+| "We use TypeScript" | "Strict TypeScript with no `any`" (invariant) | "tsconfig.json line 4" |
+| "The API" | "REST API for user management" | "GET /users/:id endpoint" |
+
+Aim for nodes that a developer would recognise as meaningful architectural units.
+
+## Common Mistakes
+
+- **Populating without review** — Always present discoveries to the user first. Code exploration misses context that humans know.
+- **Too many elements** — Not every file is an element. Focus on modules, packages, and architectural boundaries.
+- **Missing decisions** — The most valuable nodes are often decisions, which are hardest to discover from code alone. Ask the user about choices that shaped the system.
+- **Forgetting relationships** — A graph without edges is just a list. Relationships capture the structure that makes SysProM useful.

.claude/skills/init-document/SKILL.md

@@ -9,27 +9,28 @@ user-invocable: true
 
 Create a new SysProM document with metadata and directory structure. This sets up a blank document ready for building provenance records.
 
-## Arguments
+## Options
 
-- `[path]` — Output path for the document (optional, defaults to `.spm`)
+- `--path <value>` — Output path for the document (optional, defaults to current directory)
+- `--title <value>` — Document title
+- `--scope <value>` — Document scope
+- `--format <value>` — Output format: `json`, `md`, or `dir`
 
 ## Steps
 
 1. Gather document metadata:
    - Document title
    - Description
-   - Author name
-   - Project or organisation
-   - Initial version
+   - Scope
 
 2. Create a new document in Markdown format:
    ```bash
-   spm init --path .spm --title "<arg1>" --author "<arg2>" --description "<arg3>"
+   spm init --path .spm --title "My Project" --scope system
    ```
 
 3. Or create in JSON format:
    ```bash
-   spm init --path .spm.json --format json --title "<arg1>"
+   spm init --path .spm.json --format json --title "My Project"
    ```
 
 4. Review the generated structure:

.claude/skills/json-to-markdown/SKILL.md

@@ -9,10 +9,11 @@ user-invocable: true
 
 Convert a SysProM document from JSON format (`.spm.json`) to human-readable Markdown format (`.spm/` folder or `.spm.md` single file).
 
-## Arguments
+## Options
 
-- `[jsonPath]` — Path to `.spm.json` file
-- `[outputPath]` — Output directory or file path (optional)
+- `--input <value>` — Path to `.spm.json` file
+- `--output <value>` — Output directory or file path
+- `--single-file` — Force single-file output format
 
 ## Steps
 
@@ -22,12 +23,12 @@ Convert a SysProM document from JSON format (`.spm.json`) to human-readable Mark
 
 2. Convert to multi-file Markdown (in folder):
    ```bash
-   spm json2md <arg1> .spm
+   spm json2md --input .spm.json --output .spm
    ```
 
 3. Or convert to single-file Markdown:
    ```bash
-   spm json2md <arg1> .spm.md --single-file
+   spm json2md --input .spm.json --output .spm.md --single-file
    ```
 
 ## Output Structure

.claude/skills/markdown-to-json/SKILL.md

@@ -9,10 +9,10 @@ user-invocable: true
 
 Convert a SysProM document from Markdown format (`.spm/` folder or `.spm.md` file) to machine-parseable JSON format (`.spm.json`).
 
-## Arguments
+## Options
 
-- `[markdownPath]` — Path to `.spm/` folder or `.spm.md` file
-- `[outputPath]` — Output JSON file path (optional, defaults to `.spm.json`)
+- `--input <value>` — Path to `.spm/` folder or `.spm.md` file
+- `--output <value>` — Output JSON file path
 
 ## Steps
 
@@ -22,12 +22,12 @@ Convert a SysProM document from Markdown format (`.spm/` folder or `.spm.md` fil
 
 2. Convert multi-file Markdown to JSON:
    ```bash
-   spm md2json .spm .spm.json
+   spm md2json --input .spm --output .spm.json
    ```
 
 3. Or convert single-file Markdown to JSON:
    ```bash
-   spm md2json .spm.md .spm.json
+   spm md2json --input .spm.md --output .spm.json
    ```
 
 ## Output Structure