home/roleplay/prd-compliance-audit

Prd Compliance Audit

GPTClaudeGemini··1,012 copies·updated 2026-07-14
prd-compliance-audit.prompt
# PRD Compliance Audit
## Phase: Hardening
## Purpose: Validate that the implemented system fulfills the PRD requirements
## Status: draft
## Version: 1.0.0

---

## Context

You are auditing a completed MVP implementation against its Product Requirements Document (PRD).
The goal is to produce a gap analysis that identifies:
- Requirements that are fully implemented
- Requirements that are partially implemented (with specifics on what's missing)
- Requirements that are not implemented at all
- Implementation that exists but was not specified in the PRD (scope creep or emergent needs)

---

## Inputs Required

Before starting, read these files in order:
1. `/docs/PRD.md` — The source of truth for what should exist
2. `/docs/architecture.md` — The technical design
3. `/docs/agent-state.md` — Current implementation status
4. `/docs/implementation-plan.md` — Planned slices and their scope
5. Source code (routes, services, pages) — What actually exists

---

## Audit Process

### Step 1: Extract PRD Requirements

Parse the PRD and extract every discrete requirement, user story, or acceptance criterion.
Assign each a unique ID (PRD-001, PRD-002, etc.) if not already numbered.

### Step 2: Map Requirements to Implementation

For each requirement, determine:
- **IMPLEMENTED** — Code exists, tests pass, feature is accessible
- **PARTIAL** — Some aspects work, others are missing or incomplete
- **NOT IMPLEMENTED** — No code exists for this requirement
- **DEFERRED** — Explicitly marked as Phase 2+ in implementation plan

### Step 3: Identify Unspecified Implementation

Review the codebase for features or behaviors that exist but are NOT in the PRD:
- Were they emergent needs discovered during implementation?
- Are they technical necessities (rate limiting, pagination) that should be in the PRD?
- Are they scope creep that should be removed or formally added?

### Step 4: Assess Operational Gaps

Check for operational requirements that may be implicit in the PRD:
- Authentication mode (dev credentials vs. production SSO)
- Log levels and noise in production
- Error handling and user-facing messages
- Performance requirements (response times, concurrent users)
- Data retention and cleanup policies

---

## Output Format

when to use it

Community prompt sourced from the open-source GitHub repo Product-Engineering-Team/copilot-agent-framework (no explicit license). A "Prd Compliance Audit" style prompt — adapt the placeholders and specifics to your task. Imported as-is and not independently retested here, so check the output before relying on it.

tags

roleplaycommunitygeneral

source

Product-Engineering-Team/copilot-agent-framework · no explicit license