Delegation Chains

Delegation chains allow a role to assign sub-tasks to other roles within a governed run. The delegating role defines the charter, the delegate executes it, and the delegating role reviews the results.

This enables hierarchical authority in governed delivery: an engineering director can decompose work, delegate slices to specialists, and review the outcomes — all within the same governed run with full audit trail.

How It Works

A delegation chain has three phases:

Delegate: A role's turn result includes a delegations array specifying sub-tasks for other roles
Execute: Each delegate receives a turn with the charter and acceptance contract in their dispatch context
Review: After all delegations complete, the delegating role gets a review turn with aggregated results

director (turn 1) → delegates to dev, qa
    ↓
dev (turn 2) → executes delegation del-001
    ↓
qa (turn 3) → executes delegation del-002
    ↓
director (turn 4) → reviews both delegation results

Delegating Work

To delegate, include a delegations array in your turn result:

{
  "schema_version": "1.0",
  "run_id": "run_abc123",
  "turn_id": "turn_0001",
  "role": "eng_director",
  "status": "completed",
  "summary": "Decomposed auth refactor into implementation and testing slices",
  "delegations": [
    {
      "id": "del-001",
      "to_role": "dev",
      "charter": "Implement JWT-based auth middleware replacing session tokens",
      "acceptance_contract": [
        "All existing auth tests pass",
        "New JWT validation tests added",
        "No breaking changes to API endpoints"
      ]
    },
    {
      "id": "del-002",
      "to_role": "qa",
      "charter": "Security review of the new JWT auth implementation",
      "acceptance_contract": [
        "Token expiry handling verified",
        "No token leakage in logs or responses"
      ]
    }
  ],
  "decisions": [],
  "objections": [],
  "files_changed": [],
  "verification": { "status": "skipped" },
  "artifact": { "type": "review", "ref": null },
  "proposed_next_role": "dev"
}

Delegation Fields

Field	Type	Description
`id`	string	Unique ID within the turn, pattern `del-NNN`
`to_role`	string	Target role (must exist in config, must be routing-legal)
`charter`	string	Scope of the delegated work
`acceptance_contract`	string[]	What the delegate must achieve

Constraints

Maximum 5 delegations per turn
A role cannot delegate to itself
to_role must be in allowed_next_roles for the current phase
delegations is mutually exclusive with run_completion_request
Delegation review turns cannot contain further delegations (no recursive delegation in v1)

Executing Delegated Work

When a delegate receives their turn, the dispatch bundle includes a Delegation Context section:

## Delegation Context

You are executing a delegated sub-task.

- **Delegated by:** eng_director (turn turn_0001)
- **Charter:** Implement JWT-based auth middleware replacing session tokens
- **Acceptance contract:**
  - All existing auth tests pass
  - New JWT validation tests added
  - No breaking changes to API endpoints

Focus exclusively on the charter above. Do not expand scope beyond the delegation.

The ASSIGNMENT.json also includes a delegation_context object with the full delegation metadata.

Delegated turns are normal governed turns — they go through the same validation, acceptance, and hook pipeline. The only difference is the additional charter context.

Reviewing Delegations

After all delegations from a parent turn complete, the delegating role automatically receives a delegation review turn. The dispatch bundle includes:

## Delegation Review

Your delegated sub-tasks have been completed. Review the results below.

### del-001 → dev
- **Charter:** Implement JWT-based auth middleware
- **Status:** completed
- **Summary:** Implemented JWT validation with RS256 signing...
- **Files changed:** src/auth.js, src/middleware.js, test/auth.test.js
- **Verification:** pass

### del-002 → qa
- **Charter:** Security review of JWT auth implementation
- **Status:** completed
- **Summary:** Verified token handling, no leakage found...
- **Verification:** pass

Evaluate whether each delegation met its acceptance contract.

The review turn is a normal governed turn. The reviewing role can:

Accept the delegation outcomes and propose the next phase
Raise objections against specific delegation results
Delegate further work if issues were found (in a new turn, not the review turn itself)

Role Resolution Priority

When delegations are active, role resolution follows this priority order:

Pending delegation review → routes to the delegating (parent) role
Pending delegation → routes to the next delegate's to_role
Normal resolution → next_recommended_role / entry_role / first role

An explicit --role override still works but emits a warning if it skips a pending delegation.

State

Delegation state is tracked in state.json:

{
  "delegation_queue": [
    {
      "delegation_id": "del-001",
      "parent_turn_id": "turn_0001",
      "parent_role": "eng_director",
      "to_role": "dev",
      "charter": "...",
      "acceptance_contract": ["..."],
      "status": "pending",
      "child_turn_id": null,
      "created_at": "2026-04-14T05:00:00Z"
    }
  ],
  "pending_delegation_review": null
}

Delegation queue entries transition through: pending → active → completed or failed.

When all delegations from a parent complete, pending_delegation_review is set and the queue entries for that parent are cleared.

Example: Governed Feature Delivery

# 1. Director decomposes work
agentxchain step --role eng_director
# Director's turn result includes delegations to dev and qa

# 2. Dev executes first delegation (auto-routed)
agentxchain step
# Dev receives delegation context with charter and acceptance contract

# 3. QA executes second delegation (auto-routed)
agentxchain step
# QA receives delegation context with charter

# 4. Director reviews (auto-routed)
agentxchain step
# Director receives delegation review with both results

Failure Handling

When a delegated sub-task fails (status: 'failed' in the turn result), the protocol does not block or escalate. Instead:

The delegation queue entry is marked failed
The system checks if all delegations from the same parent are now done (either completed or failed)
If all are done, delegation review is triggered with mixed results — the parent role receives both successful and failed outcomes
The reviewing role decides how to proceed: accept the partial results, re-delegate failed work, or complete the run

This means delegation failures are surfaced, not swallowed. The reviewing role always sees the full picture including failure details, verification status, and the failed delegation's summary.

## Delegation Review

### del-001 → dev
- **Status:** completed
- **Summary:** Implementation complete, all tests pass

### del-002 → qa
- **Status:** failed
- **Summary:** QA review found critical issues that cannot be resolved
- **Verification:** fail

CLI Proof — Happy Path

A reproducible CLI proof exists at examples/governed-todo-app/run-delegation-proof.mjs.

node examples/governed-todo-app/run-delegation-proof.mjs --json

Recorded proof on 2026-04-14:

adapter: real local_cli adapter backed by a deterministic mock agent
accepted role order: director -> dev -> qa -> director
durable delegate artifacts:
- .agentxchain/proof/delegation/del-001.json
- .agentxchain/proof/delegation/del-002.json
durable review artifact:
- .agentxchain/proof/delegation/review-turn.json
final run status: completed

CLI Proof — Failure Path

A dedicated failure-path proof exists at examples/governed-todo-app/run-delegation-failure-proof.mjs.

node examples/governed-todo-app/run-delegation-failure-proof.mjs --json

Recorded proof on 2026-04-14:

adapter: real local_cli adapter with a deterministic mock agent where QA fails
accepted role order: director -> dev -> qa -> director
dev delegation (del-001): completed successfully
qa delegation (del-002): failed with critical issues
delegation review: parent received mixed results (1 completed, 1 failed)
review artifact confirms failed_count: 1, completed_count: 1
final run status: completed (parent accepted partial success)

This proves the protocol handles delegation failures gracefully: failed delegations still trigger review, the parent sees mixed statuses, and the run can still complete after the reviewing role makes a decision.

Both proofs go through the real agentxchain step lifecycle, not direct state mutation. They exercise delegation enqueueing, delegated turn routing, delegation review routing, and clean run completion through the actual CLI/operator path.

Limitations (v1)

No recursive delegation: A delegation review turn cannot itself contain delegations. If hierarchical decomposition is needed, the reviewing role must issue delegations in a separate subsequent turn.
Sequential execution: Delegations are executed one at a time, not in parallel.
Same phase: Delegations must complete within the current phase. Phase transitions are not allowed while delegations are pending.

How It Works​

Delegating Work​

Delegation Fields​

Constraints​

Executing Delegated Work​

Reviewing Delegations​

Role Resolution Priority​

State​

Example: Governed Feature Delivery​

Failure Handling​

CLI Proof — Happy Path​

CLI Proof — Failure Path​

Limitations (v1)​