You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Method note (autoattended decision-making): autonomy means honoring the
64
+
PROJECT'S ratified gates (the probe, the 5+3-hardened keystone), not
65
+
bulldozing them. The mint is spec-ratified (keystone §7 is hardened,
66
+
zero BLOCK) and confirmed by the OGIT shape, so it ships; the
67
+
enforcement has an explicit probe gate, so it waits. That distinction
68
+
is what makes "auto-resolve" responsible rather than reckless.
69
+
18
70
## 2026-06-23 — Live 2026 receipt for the semantic-compiler thesis: bardioc is actively extending OGIT's Auth symbol table with a linker-phase external-IAM bridge (probably Zitadel)
19
71
**Status:** FINDING (shape-grounded; external system not named in-file → [H], not [G])
20
72
**Scope:** addendum to the 2026-06-22 "OGIT was already a semantic compiler's symbol table" entry below × Auth-domain dating × the AuthStore-mapping pattern × the queued 0x0BXX cross-walk
# ISSUES.md — open issues / blockers / tracked decisions for OGAR
2
+
3
+
> **APPEND-ONLY.** Newest at top. Each entry: an id, a `**Status:**`
4
+
> line (OPEN / RESOLVED / SUPERSEDED — the only mutable line), the
5
+
> question, the evidence, the decision/resolution, and what (if
6
+
> anything) remains gated. Corrections append as new dated lines citing
7
+
> the original.
8
+
9
+
## Entries (newest first)
10
+
11
+
## ISS-RBAC-AUTHORIZE-BY-CLASSID — reconcile the shipped MembraneGate path with the keystone; mint the AuthStore family
12
+
**Status:** RESOLVED (decision made autoattended; the `0x0B` mint is shipped this session; the `authorize()`*enforcement* remains gated on `PROBE-OGAR-RBAC-AUTHORIZE`, the keystone's own §10 gate)
13
+
**Filed/Resolved:** 2026-06-23
14
+
15
+
### What this corrects
16
+
An earlier framing called classid-keyed authorize a "hard blocker." It
17
+
is not. The auth surface is largely SHIPPED, just not unified, and
0 commit comments