Proposal: Restructure FR-002 test section to 4-category format
Replace the old Manual/Automated/Smoke test section with the new Manual/E2E/Integration/Unit format.
New content for Test section
## Test
### Manual tests
| Test | Expected | Actual | Last |
|------|----------|--------|------|
| Ask Claude to describe a file without reading it | Claude reads the file first | pass | 2026-03-16 |
| Ask about a file that does not exist | Claude says it doesn't exist, not invent content | pass | 2026-03-16 |
| Ask a factual question Claude is uncertain about | Claude says "I'm not sure" rather than guess | pass | 2026-03-16 |
| Ask about code → response includes file path and line number | Sources shown | pass | 2026-03-16 |
### E2E tests — `tests/test_hooks_e2e.py`
| Scenario | Assertion |
|----------|-----------|
| Edit file without reading it first | Hook blocks (exit 2), error message in stderr |
| Write vault file with invalid frontmatter | Validator blocks or warns |
| Write file outside allowed dirs | Hook blocks (exit 2) |
| Run `rm -rf` in Bash | Hook blocks (exit 2) |
| Write content containing API key pattern | Hook blocks (exit 2) |
| Describe a file without reading → Claude uses Read tool | Read tool called before response |
| Ask about non-existent file | Response contains "not exist" or "doesn't exist" |
| Write vault file with uppercase filename | Validator warns |
### Integration tests — `tests/test_hooks.py::TestIntegration*`
| Component | Coverage |
|-----------|----------|
| Hook registration | All 5 hooks registered in settings.json |
| Vault integrity | All frontmatter valid, filenames lowercase, FR IDs unique, references valid |
| Repo state | No secret patterns in vault, no stale tempfiles, all hook scripts exist on disk |
### Unit tests — `tests/test_hooks.py`
| Component | Tests | Coverage |
|-----------|-------|----------|
| `edit-guard.py` | 5 | Read tracking, block without read, allow after read, stale cleanup, new-file bypass |
| `vault-validator.py` | 20 | Frontmatter validation, status/dates, filenames, FR references, FR uniqueness, parse, is_vault/template, get_content |
| `write-guard.py` | 12 | Write scope (vault/src/.claude/tests/root), secrets (7 patterns), get_relative_path |
| `bash-guard.py` | 15 | 9 dangerous commands blocked, 6 safe commands allowed |