You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A verification-fidelity pass on the unified audit prompt (EN + es), resyncing it
with what the framework learned since the v1 hardening (#261). Schema and the
four finding categories are unchanged; the changes are additive guidance. No CLI
or core change.
Three changes:
- Audit object vs. truth oracle + cross-boundary contracts (closes#303). STRICT
scope now separates *where you report defects* from *what you may read to
validate them*; a client-auditing run must cross-check API/IPC/contract calls
against the real server-side definition even outside the git_range. A
client↔server mismatch is an auditable defect of the client; green client-side
tests do not absolve it (mocks encode the client's assumption).
- Verification fidelity in Step 2 (addresses #306). For each
"verified/resolved/done" claim, ask *against which reality* it was checked
(the condition that matters vs. a proxy: local test, mock, the doc itself),
open the artifact instead of trusting a downstream summary, and flag a contract
consumer that does not reference its defining decision.
- Follow-ups registry as the canonical real_debt destination (was a loose "TDE
doc"), with TDE promotion via `straymark followups promote`.
Bumps fw-4.32.0 (dist-manifest, governance footers ×3 langs, version tables,
CHANGELOG). Audit-prompt v1 → v1.1.
Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
0 commit comments