contract + ontology: complete the classid → ClassView resolution (UNICHAR adapter, keystone, OGAR→ontology wiring)

[AdaWorldAPI]

Summary

Completes the classid → ClassView resolution surface of the OGAR Core. After this PR, all three "classid → X" axes resolve from a canonical-node GUID:

Axis	Resolver	Status
read-mode / value-schema	classid_read_mode (via ocr.rs)	already wired
method composition	codegen_manifest::methods_for (the harvested has_function manifest)	this PR (keystone)
ontology shape (fields/labels/template/DOLCE)	OntologyRegistry::class_id_for_guid → RegistryClassView	this PR (wiring)

This dovetails with the just-merged #533 (virtually_overrides as a computed ClassView relation) and the E-ODOO-CORE-FIRST-STRUCTURAL direction (#530): all Core-side resolution, no new flat-ndjson predicates.

What's in it (4 commits)

1. UNICHAR UTF-8 codec — second byte-parity adapter (lance-graph-contract::unichar)
Transcode of Tesseract's ccutil/unichar.cpp: utf8_step (const-fn 256-entry lead-byte table) + utf8_to_utf32. 268/268 byte-identical to a libtesseract oracle (256 exhaustive utf8_step values + 12 decode rows). Proves the transcode generalizes to a 2nd class, and shows why a faithful transcode is mandatory: Tesseract maps 0xC0/0xC1 to step 2 and decodes overlong NUL C0 80 → [0], which core::str::from_utf8 rejects — a native-UTF-8 shortcut would silently diverge (pinned by from_utf8_rejects_what_tesseract_accepts). +8 tests.

2. UniCharSet keystone — classid → ClassView → adapter (lance-graph-contract::unicharset_adapter)
Composes the proven UniCharSet adapter through the OGAR Core's three movable parts — steps 2–3 of PROBE-OGAR-ADAPTER-UNICHARSET. invoke_unicharset(registry, store, classid, call): (1) ClassView composition gate via methods_for, (2) classid-keyed content-store tier (UniCharSetStore; the adapter holds no state), (3) the proven leaf. Byte-parity is inherited; the keystone proves the dispatch path is faithful and there is no Core gap (the doctrine's iron guard holds). +5 tests. Flips the core-first doctrine to proven end-to-end.

3. OGAR → lance-graph-ontology wiring (OntologyRegistry::class_id_for_guid)
Closes a gap an audit this session found: NiblePath::from_guid_prefix (canon GUID→NiblePath fold) and the registry's entity_type ↔ NiblePath bijection were both built with zero callers. class_id_for_guid(&NodeGuid) -> Option<ClassId> lays the join (from_guid_prefix(guid)? → entity_type_of(path)), so a node carrying a classid resolves its ontology class → RegistryClassView. Round-trip test pins the classid_lo ↔ entity_type consistency; zero-fallback + lossy-fold refusal hold. +1 test.

4. Board post-merge hygiene for #521 (PR_ARC + LATEST_STATE)
The post-merge governance entry owed for #521 (the contract MethodSig + UniCharSet PR).

Tests / gates

• lance-graph-contract: 658 lib tests green; clippy --all-targets -D warnings clean; fmt clean.
• lance-graph-ontology: 16 class/bijection/wiring tests green; registry.rs clippy-clean + fmt clean.
• Byte-parity (in-env): UNICHAR 268/268, UniCharSet 112/112 vs a libtesseract oracle.

Notes

• Dropped a redundant commit during rebase: my odoo corpus-regen (inherits_from/validation_kind materialization) was byte-identical to what landed via fix(odoo-spo): #523 review follow-up — multi-emitter deep-reads + _inherit-only models #525–fix(odoo-spo): read selection_add + merge across classes (codex #530 follow-up) #532; main already carries it.
• Pre-existing debt flagged (TD-ONTOLOGY-LINT): lance-graph-ontology has 12 clippy -D warnings errors on toolchain 1.95 in other files (owl.rs / op_emitter.rs / ttl_parse.rs), present on main, un-CI-gated. Not touched here (out of scope); registry.rs itself is clean.

🤖 Generated with Claude Code
https://claude.ai/code/session_016b33swuXE23hKtqxsHu9p1

---

Generated by Claude Code

[coderabbitai]

Warning

Review limit reached

@AdaWorldAPI, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 17 minutes and 36 seconds. Learn how PR review limits work.

Your organization has used up its prepaid credits, and credit purchases are no longer available. Enable the review add-on in the billing tab to keep reviews running — you're only billed for reviews past your plan's rate limits ($0.25/file).

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based credits.

🚦 How do rate limits work?

CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan refill rate.

For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, the refill rate gradually slows as usage increases. The highest same-day bursts are limited more strictly.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 02b56819-1a2f-472a-86a1-b259b3ad26ea

📥 Commits

Reviewing files that changed from the base of the PR and between e55a8cf and 5ed5a1f.

📒 Files selected for processing (10)

• .claude/board/EPIPHANIES.md
• .claude/board/LATEST_STATE.md
• .claude/board/PR_ARC_INVENTORY.md
• .claude/board/TECH_DEBT.md
• .claude/knowledge/core-first-transcode-doctrine.md
• crates/lance-graph-contract/examples/unichar_dump.rs
• crates/lance-graph-contract/src/lib.rs
• crates/lance-graph-contract/src/unichar.rs
• crates/lance-graph-contract/src/unicharset_adapter.rs
• crates/lance-graph-ontology/src/registry.rs

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 7834828a72

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Reject truncated UTF-8 sequences

step only proves that the lead byte is not illegal, but this path still calls first_uni when the slice does not contain all bytes for that character. For malformed OCR input ending in a multibyte lead such as [0xC3], first_uni consumes the one available byte, subtracts the 2-byte offset, and pushes a negative/fabricated codepoint before advancing past the end. Since this public byte-parity decoder accepts length-delimited slices, add a remaining-length check (and return None or otherwise mirror the oracle) before decoding.

Useful? React with 👍 / 👎.