KB-554F
IU Core 8000x — Input Contract Matrix (19 branches, 4 EXECUTABLE_NOW done)
10 min read Revision 1
iu-corev0.68000xinput-contract-matrixauthority-packexecutable-nowblocked-external-authoritydeferred
IU Core 8000x — Input Contract Matrix
For each branch: branch | required_authority | live_evidence | exact_command_path_tool | rollback_disable | allowed_action | forbidden_action | decision.
| # | Branch | Required authority | Live evidence | Exact command / path / tool | Rollback / disable | Decision |
|---|---|---|---|---|---|---|
| 1 | Migration 026 author files in repo | repo write | git status clean before, files staged + committed 46bef0e |
Write tool from harness | git checkout -- sql/iu-core/026_* |
EXECUTABLE_NOW (done) |
| 2 | DOT scan (runtime/110) SSOT bump | repo write | grep shows fn 52→54, total 144→146 | Edit tool | revert edit | EXECUTABLE_NOW (done) |
| 3 | tests/* function count bump | repo write | grep tests/*.py for `'function',52 | 54` | sed via bash + targeted Edit for raw-string variants | revert edits |
| 4 | Full test suite local run | repo + python | pytest tests -q → 1212 passed in 0.77s |
python3 -m pytest tests -q --no-header |
n/a | EXECUTABLE_NOW (done) |
| 5 | pg_dump backup before mutation | VPS SSH + pg user | no harness SSH-exec tool | OPERATOR: pg_dump -Fc --no-owner directus > directus-pre-iucore-8000x-…dump |
n/a (artifact is the backup) | BLOCKED_EXTERNAL_AUTHORITY |
| 6 | Apply migration 026 to production | sovereign PG (DDL) | pg_proc SELECT returns 0 for fn_iu_supersede/retire |
OPERATOR: psql -d directus -v ON_ERROR_STOP=on -f sql/iu-core/026_compensation_primitives.sql |
psql -d directus -f sql/iu-core/rollback/026_*.rollback.sql |
BLOCKED_EXTERNAL_AUTHORITY |
| 7 | Run sandbox/250 probe (after migration applied) | sovereign PG (SELECT + EXECUTE on new fns) | sandbox file ready | OPERATOR: psql -d directus -v ON_ERROR_STOP=on -f sql/iu-core/sandbox/250_*.sql |
BEGIN/ROLLBACK in-file | BLOCKED_EXTERNAL_AUTHORITY (after 6) |
| 8 | Author manifest_envelope + 86 manifest_unit_block | sovereign PG (INSERT on cutter_governance) | Directus 403, MCP query_pg read-only | OPERATOR: psql -d directus -v ON_ERROR_STOP=on -f ops/governance-promotion-package-8000x/01_author_manifest.sql |
04_rollback.sql per-IU OR pg_dump restore |
BLOCKED_EXTERNAL_AUTHORITY |
| 9 | Create review_decision row | sovereign PG (INSERT on cutter_governance) | Directus 403 | OPERATOR: psql … -f 02_create_review_decision.sql |
per-IU rollback or restore | BLOCKED_EXTERNAL_AUTHORITY |
| 10 | Lifecycle promotion fn_iu_enact per IU | sovereign PG (EXECUTE fn_iu_enact) | MCP query_pg cannot PERFORM function with side effects | OPERATOR: psql … -f 03_promote_candidates.sql |
04_rollback.sql (fn_iu_retire per IU) |
BLOCKED_EXTERNAL_AUTHORITY |
| 11 | Qdrant onboarding preflight (dry_run=True) | python + PG read | preflight is read-only | OPERATOR: python3 -m ops.qdrant_onboarding_package_8000x.run_onboarding --dry-run |
n/a | EXECUTABLE_IF_GATE_PASS (after 10) |
| 12 | Qdrant onboarding live (dry_run=False) | sovereign + vector_sync gate | gate currently false | OPERATOR: same script without --dry-run |
targeted delete by actor filter + truncate iu_vector_sync_point | BLOCKED_EXTERNAL_AUTHORITY |
| 13 | Directus smoke verify post-promotion | Directus REST read | non-governance collections OK from harness | OPERATOR or harness: GET /items/information_unit?filter=… | n/a | BLOCKED_EXTERNAL_AUTHORITY (after 10) |
| 14 | Qdrant retrieval smoke | Qdrant query | retrieval is read | OPERATOR: cutter_agent retrieval test set | n/a | BLOCKED_EXTERNAL_AUTHORITY (after 12) |
| 15 | AgentData reports upload + verify | KB upload | mcp__claude_ai_Incomex_KB__upload_document works |
Harness: 7 KB reports uploaded under …/v0.6-iu-core-8000x-…/ |
KB delete | EXECUTABLE_NOW (done in task I) |
| 16 | Rollback / compensation proof | sovereign PG (call fn_iu_retire) | 04_rollback.sql ready |
OPERATOR: psql -f ops/governance-promotion-package-8000x/04_rollback.sql |
full restore from pg_dump | READY_FOR_OPERATOR |
| 17 | PR #669 merge | frontend/DevOps | gh pr view 669 state=OPEN/MERGEABLE |
external owner | revert PR | BLOCKED_EXTERNAL_AUTHORITY |
| 18 | VPS Linux-host cron timer | DevOps | KB doc 6000x — Mac cron is pilot only | external owner installs systemd unit | uninstall | BLOCKED_EXTERNAL_AUTHORITY |
| 19 | Retention enable (iu_core.retention_enabled='true') |
operator | dry-run says 0 eligible until 2026-06-22 | OPERATOR: UPDATE dot_config SET value='true' WHERE key='iu_core.retention_enabled' |
flip back to false | DEFERRED |
Summary
- EXECUTABLE_NOW in macro: 4 branches (1–4) — DONE
- EXECUTABLE_NOW after upload: 1 branch (15) — DONE in task I
- BLOCKED_EXTERNAL_AUTHORITY: 13 branches (5–14, 16–18)
- DEFERRED: 1 branch (19)
This 8000x macro closes the "author everything safe" surface. The 13 BLOCKED branches are gated only by the absence of a harness-side write channel, not by any unresolved design question.