|
140 | 140 | "severity_class": "critical", |
141 | 141 | "non_goal": "Not a single-run runtime fault outside deterministic replay validation.", |
142 | 142 | }, |
| 143 | + "CAPABILITY_BOUNDARY_LOSS": { |
| 144 | + "operational_meaning": "Reconstructed replay state no longer preserves an explicit capability, resource, or tool boundary present in the original operational state.", |
| 145 | + "observable_trigger": "Capability-boundary replay contract, fixture expectation, or validator reports missing boundary nodes or boundary edges after reconstruction.", |
| 146 | + "contract_or_invariant_type": "capability_boundary", |
| 147 | + "severity_class": "safety", |
| 148 | + "non_goal": "Not a runtime exploitability claim, live access-control verdict, or external security-breach assertion.", |
| 149 | + }, |
| 150 | + "UNAUTHORIZED_CAPABILITY_PATH": { |
| 151 | + "operational_meaning": "Reconstructed replay state introduces an explicit capability, tool, or resource path absent from the original allowed capability boundary.", |
| 152 | + "observable_trigger": "Capability-boundary replay contract, fixture expectation, or validator reports added boundary edges or capability nodes that create a new explicit path.", |
| 153 | + "contract_or_invariant_type": "capability_boundary", |
| 154 | + "severity_class": "safety", |
| 155 | + "non_goal": "Not an intent inference, exploitability judgment, or authorization conclusion derived from prose or unstated policy.", |
| 156 | + }, |
| 157 | + "APPROVAL_GATE_LOSS": { |
| 158 | + "operational_meaning": "Replay reconstruction drops an explicit approval, validation, or human-gate commitment required before a guarded action.", |
| 159 | + "observable_trigger": "Fixture expectation, ordering artifact, capability-boundary artifact, or validator reports that a required approval or validation gate is missing before a guarded action path.", |
| 160 | + "contract_or_invariant_type": "governance_gate", |
| 161 | + "severity_class": "governance", |
| 162 | + "non_goal": "Not a requirement for live human-in-the-loop runtime behavior and not a clinical, legal, or production approval claim.", |
| 163 | + }, |
| 164 | + "POLICY_ENFORCEMENT_GAP": { |
| 165 | + "operational_meaning": "Reconstructed replay state preserves an action or dependency while losing the explicit policy enforcement condition that constrained it.", |
| 166 | + "observable_trigger": "Fixture expectation, policy-order contract, capability-boundary artifact, or validator reports a missing policy or guard condition while the related action path remains present.", |
| 167 | + "contract_or_invariant_type": "policy_enforcement", |
| 168 | + "severity_class": "governance", |
| 169 | + "non_goal": "Not a live policy-engine bypass claim, external compliance assertion, or runtime exploitability determination.", |
| 170 | + }, |
143 | 171 | "CONSTRAINT_DRIFT": { |
144 | 172 | "operational_meaning": "Constraint preservation falls below full deterministic survival.", |
145 | 173 | "observable_trigger": "constraint_survival_rate < 1.0 in replay metrics.", |
|
0 commit comments