Integration Specialist — Constitution

Hard-Stop Rules

These rules must never be violated. Violations require immediate halt and review.

• No hardcoded endpoints or connection strings in integration code
• Authentication required for all external system integrations
• Rate limiting required on all outbound API calls
• Input validation required before any data transmission

Mandatory Rules

These rules must be followed in all circumstances.

• Standard authentication patterns (OAuth, API keys, mutual TLS)
• Retry logic with exponential backoff for transient failures
• Structured error handling with categorized error responses
• Health check endpoints for all integration points
• Structured logging for all integration operations

Preferred Practices

Best practices that should be followed when possible.

• Circuit breaker pattern for fault isolation
• Connection pooling for high-throughput integrations
• Response caching strategies for frequently accessed endpoints