dot-iu-cutter v0.5 WS-Q5 — Seed + Privilege REVISED Command Package Report

Phase: v0_5_WS_Q5_seed_privilege_revised_command_package · Nature: command_package_revision_only / no_execution · Date: 2026-05-18 Authority consumed (NOT reopened): GPT command-review …WS-Q5-seed-privilege-authoring-gpt-command-review-2026-05-18 (PASS_WITH_RULINGS_AND_REQUIRED_REVISION).

⚠️ GATING BANNER

dml_executed: none ; grant_executed: none ; revoke_executed: none   # QG8
production_write: none ; schema_alter: none ; directus_mutation: none
readonly_catalog_used: yes (USAGE/roles preflight only)
execution_authorized: false ; self_advance: PROHIBITED
decision_authority: GPT / User ONLY

1. Executive summary

Revised the WS-Q5 seed + privilege command package to apply every GPT command-review ruling. Output: 6 files in …/v0.5-ws-q5-seed-privilege-revised-command-package/ — revised seed (INSERT-only, authorized subset), revised seed rollback (R-A/R-B), revised GRANT (SELECT/INSERT only, no UPDATE(lifecycle), explicit USAGE handling), revised REVOKE (1:1 inverse), revised verification plan (updated counts/matrix), this report. Nothing executed. Only contact with production was a read-only schema-USAGE/roles preflight. Package is READY for GPT command-review; execution remains separately gated.

2. What changed from the previous package

seed:
  - source_family_registry: 6 non-document families REMOVED from the
    executable set and listed as an EXPLICIT deferral block (was an inline
    commented block) — OD-SF1 SEED_AUTHORIZED_SUBSET_ONLY
  - entity_kind_registry: WS-2 D5 set only retained (no illustrative extras)
    — OD-EK1 KEEP_WS2_D5_SEED_SET_ONLY  (already so; reaffirmed)
  - metadata_key_registry: idempotency_key only — OD-MK1 (already so; reaffirmed)
  - matcher rows: kept (all trace to WS-2 D3 profile level matcher_ref);
    detection=DEFERRED retained as explicit deferral, not speculative — OD-MC1
  - status markers: kept exact UTF-8 (U+2705/U+1F4CB) — OD-SM1
privilege:
  - REMOVED all 8 `GRANT UPDATE (lifecycle)` lines — OD-PV1 DEFER_FROM_BATCH_1
  - cutter_verify: SELECT-only confirmed — OD-PV2
  - schema USAGE: added explicit read-only preflight + observed-present finding
    + conditional (inert) listed GRANT USAGE — OD-PV3 (no silent add)
  - seed execution role: defined = workflow_admin — OD-PV4
verification:
  - expected counts/key-sets/grant-matrix updated; added negative checks
    NPV-1 (no exec UPDATE) / NPV-3 (verify SELECT-only) / NPV-6 (USAGE inert);
    added SV-K7 negative (none of the 6 deferred families present)
net_executable_seed: 31 rows / 8 tables (unchanged — the 6 families were
  already non-executable; revision makes the exclusion explicit & enforced)

3. What was kept / deferred

KEPT (executable, GPT-approved):
  3 source families  : internal_incomex_constitution, internal_incomex_law,
                       external_government_law
  5 entity kinds     : sql_entity, code_module, git_file, directus_item, report_path
  1 metadata key     : idempotency_key
  8 matcher configs  : mc.icx.{nguyen_tac,kien_truc,dieu} + mc.vn.{chuong,dieu,khoan,diem,doan}
  2 address templates, 2 grammar profiles, 8 grammar levels, 2 status markers
  grants             : cutter_ro SELECT x12 ; cutter_exec SELECT+INSERT x12 ;
                       cutter_verify SELECT x12
DEFERRED (explicitly excluded from execution package):
  6 source families  : internal_process, sql_entity, code_artifact, report,
                       lesson, architecture_note  (OD-SF1 — separate gate)
  UPDATE(lifecycle)  : separate later privilege cycle (OD-PV1)
  3 empty registries : entity_reference / source_document / _version (OD-SEQ1)
  authority_override : 0 rows (WS-2 D4 — only for a real misclassified IU)

4. Schema USAGE finding (read-only, OD-PV3)

preflight_result_2026-05-18 (read-only catalog):
  cutter_ro     USAGE on cutter_governance = true
  cutter_exec   USAGE on cutter_governance = true
  cutter_verify USAGE on cutter_governance = true
  (CREATE=false for all 3; schema owner = workflow_admin)
conclusion: USAGE already present -> NO `GRANT USAGE` proposed/needed.
  A conditional GRANT USAGE is LISTED (grant draft §2) but INERT — to be run
  ONLY if an execution-time preflight shows USAGE missing for a role. Never
  silently added.

5. Open decisions still deferred (none self-resolved)

OD-SF1  6 source families deferred (ratified grammar binding / source_kind
        modeling / schema revision — separate gate; NOT this phase)
OD-PV1  UPDATE(lifecycle) deferred to a separate later privilege cycle
OD-MC1  concrete matcher detection internals — later WS-2 / parser-design
OD-SEQ1 source_document precedence -> 3 registries intentionally empty
BR-A1   ALREADY_LOCKED by GPT ("<DOCPREFIX>/<L1>-<L2>-...-<Lk>") — closed
agent_self_resolved: NONE — all routed; execution separately gated.

6. Ready for GPT command-review?

ready_for_GPT_command_review: YES
  - all 8 command-review rulings applied and traceable
  - seed = GPT-approved subset only; 6 families explicitly deferred
  - no UPDATE(lifecycle); cutter_verify SELECT-only; USAGE explicit; seed
    role = workflow_admin
  - rollback paired (data R-A/R-B + privilege 1:1 REVOKE)
  - verification plan reflects revised counts + negative gates
execution_status: NOT executed; remains separately sovereign-gated after review
recommended_next: GPT command-review of this revised package; on PASS, a
  SEPARATE execution phase (PRE-gate -> seed as workflow_admin -> verify ->
  GRANT -> verify), never combined, never self-advanced.

7. Explicit non-execution statement

No DML executed. No GRANT/REVOKE executed. No production write, no schema ALTER, no Directus mutation, no CUT/VERIFY, no deploy/restart, no git commit, no index DDL, no vocab/Cap-4 change, no generic grammar profile added, no source_family_registry nullability change. Production was contacted ONLY by read-only catalog SELECT (schema USAGE + role existence). The 12 WS-Q5 tables remain empty; no privilege changed.

8. Git / repo access note

working_directory: /Users/nmhuyen  (NOT a git repo)
iu_cutter_code_repo: not present locally; no branch/HEAD/git-status available
git_status_iu_cutter: N/A — no repo in this session
vps_access: SSH alias 'contabo' -> docker exec postgres — READ-ONLY catalog
  only (has_schema_privilege / pg_roles / pg_namespace); zero mutation/write
code_changed: false ; commit_made: false ; deploy: none
no_write_outside_KB_uploads: confirmed (only the 6 KB docs uploaded)

9. Quality-gate self-audit

QG1 revised seed = GPT-approved subset only:        PASS
QG2 deferred 6 source families explicitly listed:   PASS (seed §7, report §3)
QG3 no UPDATE(lifecycle) grants remain:             PASS (removed; NPV-1 guards)
QG4 cutter_verify SELECT-only:                      PASS (NPV-3 guards)
QG5 seed execution role = workflow_admin:           PASS (recorded; not run)
QG6 schema USAGE handling explicit:                 PASS (preflight + inert listed)
QG7 verification plan has revised expected counts:  PASS (§1.1 + matrix + negatives)
QG8 no execution occurred:                          PASS

10. Final status

status: WS_Q5_SEED_PRIVILEGE_REVISED_COMMAND_PACKAGE_AUTHORED__NOT_EXECUTED
ready_for_GPT_command_review: yes
next_action: route to GPT/User for command-review (then separate execution gate)
self_advance: PROHIBITED

Companion: seed-data-revised-draft, seed-rollback-revised-draft, privilege-grant-revised-draft, privilege-rollback-revised-draft, seed-privilege-revised-verification-plan.