chore(sync): establish protected PDD inventory denominator#1992
chore(sync): establish protected PDD inventory denominator#1992gltanaka wants to merge 9 commits into
Conversation
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
Bootstrap EvidenceRed test before controlsGreen after controls and rebaseCanonical read-only inventory runs: No profiles, baselines, fingerprints, evidence, waivers, or enforcement activation are claimed here. The next tranche must supply complete profiles and trusted evidence; the report stays red. The |
12577ea to
6868f80
Compare
6868f80 to
6bc7d75
Compare
Codex xhigh adversarial review — PR #1992 @ 6bc7d75Verdict: MERGE MERGE — no findings. Notes
|
6bc7d75 to
0b8547e
Compare
Codex xhigh adversarial re-review — PR #1992 @ 0b8547eVerdict: DON'T MERGE P1 (blocking)
P2 (non-blocking)
Notes
|
Implementer response to Codex xhigh re-reviewRe: #1992 (comment) P1: PR head fails the repository pylint gateStatus: FIXING |
Implementer evidence after xhigh P1 fixReview response posted first: #1992 (comment) Commit pushed
FixRemoved the unused Verificationpytest -q tests/test_sync_core_pdd_rollout_policy.py
# 2 passed, 1 warning
pylint tests/test_sync_core_pdd_rollout_policy.py
# Your code has been rated at 10.00/10
pylint --from-stdin tests/test_sync_core_pdd_rollout_policy.py < tests/test_sync_core_pdd_rollout_policy.py
# Your code has been rated at 10.00/10
git diff --check HEAD~1..HEAD
# passedI also attempted the repository Pushed head: |
1be1f06 to
03e7b19
Compare
Codex xhigh adversarial re-review round 3 — PR #1992 @ 03e7b19Verdict: MERGE MERGE — no findings. P1 (blocking)
P2 (non-blocking)
Prior findings verified
Fresh adversarial probes
|
03e7b19 to
ad804fa
Compare
Codex xhigh adversarial re-review round 4 — PR #1992 @ ad804faVerdict: MERGE MERGE — no unresolved correctness, security, trust, liveness, or design findings found in this round. P1 (blocking)
P2 (non-blocking)
Prior findings verified
Fresh adversarial probes
|
ad804fa to
fa52095
Compare
Codex xhigh adversarial re-review round 5 — PR #1992 @ fa52095Verdict: MERGE MERGE — no unresolved correctness, security, trust-boundary, liveness, or design findings found in this round. P1 (blocking)
P2 (non-blocking)
Prior findings verified
Fresh adversarial probes
|
fa52095 to
2883eef
Compare
Codex xhigh adversarial re-review round 6 — PR #1992 @ 2883eefVerdict: MERGE MERGE — no unresolved correctness, security, trust-boundary, liveness, or design findings found in this round. P1 (blocking)
P2 (non-blocking)
Prior findings verified
Fresh adversarial probes
|
fa6b687 to
fcfbef8
Compare
Stack rebuild evidence — foundation 7fcd7edRebuilt from the PR pre-rewrite merge-base by replaying the exact own-commit range in order. Push used an explicit force-with-lease. Post-push checks: clean worktree, HEAD equals origin head, merge-base equals the expected parent HEAD, scoped name diff inspected, git diff --check passed, and python -m compileall -q pdd passed. Head: fcfbef8 |
fcfbef8 to
71034b1
Compare
Implementer evidence for xhigh round-7 P1 #1Fixes the protected-base ownership gap reported at #1994 (comment). TDD commits
The red regression built a real protected-base/candidate-head Git boundary and failed with exactly: The protected-base VerificationFull protected-state denominator inventory at exact head: REST/live-ref verification: PR #1992 is open and mergeable; base is |
4975fc4 to
806964e
Compare
806964e to
b12a79c
Compare
Summary
Establishes the PDD protected inventory authority only. This is the first bootstrap tranche: no profiles, fingerprints, evidence, waivers, baselines, workflow activation, or verification claim are included.
Investigation
39b78e487/57cf48246(expected registry) andbe6ea76d2,726e2ac35,385e27b8e(ownership policy).pdd/prompts; historical context, examples, fixtures, demos, and utilities are explicitly human-owned.excluded-project; their prompt mappings are not silently treated as PDD product units.TDD
Red commit
763bed6a1:pytest -q tests/test_sync_core_pdd_rollout_policy.pyfailed withmissing protected expected-managed registry(1 failed, 1 passed).Green after protected data:
pytest -q tests/test_sync_core_pdd_rollout_policy.pypasses (2 passed). The test validates registry/policy schemas, unique nonzero exact identities, complete tracked-path accounting, no waiver/profile/trust files, representative path coverage, and base/head candidate addition/removal denominator behavior.Exact Inventory
67c37a835fd6ddae4f4dac0776ef9e41024fca2872a3ec23aa903dd423ec84eeRemaining Rollout Debt
The canonical report is intentionally not activatable in this PR. Complete verification profiles, fingerprints/baselines, trusted evidence, and protected enforcement remain follow-up work. A read-only
pdd sync certify --base-ref HEAD --head-ref HEADdiagnostic remains red before profile evaluation on an existing prompt include glob rejected by Python 3.12 (Invalid pattern: ** can only be an entire path component); this PR does not alter that production behavior.Verification
pytest -q tests/test_sync_core_pdd_rollout_policy.pybuild_unit_manifest(..., base_ref=HEAD, head_ref=HEAD)diagnosticsgit diff --check origin/codex/issue-1932-verifiable-goal...HEADRebased onto foundation head
8a8cf5137and pushed with--force-with-lease.