FIX7 N7 / N8 / P7 Seal Readiness Matrix (Self-Codex, 2026-06-10)
FIX7 N7 / N8 / P7 Seal Readiness Matrix (Self-Codex)
- Date: 2026-06-10 · Authority of THIS doc: provisional-non-authority self-audit. T1 verifies the seal REQUESTS are Codex-ready; T1 does NOT author or seal N7/N8/P7.
- Question answered: if Codex reads only these files, is each seal artifact well-formed, are all candidate inputs exact, and is every authority-only field correctly marked MISSING with an exact actor?
N7 — Approval-Event Input Envelope
| Check | Finding | Verdict |
|---|---|---|
| All required seal-input fields listed | A1 approval_event_id · A2 approver_identity (owner+Codex) · A3 approval_event_timestamp · A4 sealed sub-digests · A5 owner blueprint decision · A6 envelope_manifest_sha256 itself |
✅ |
| Candidate values exact | packet tree b95df0a5…ca6d; rev3 49c386a9…b734d0 / revision 3 / 38756 bytes; membership f2bda8…fe251 — all match live KB + T1 recompute |
✅ |
| Missing fields marked MISSING, not fabricated | A1–A5 = MISSING_AUTHORITY_INPUT; A6 = NOT_COMPUTABLE_AS_SEAL |
✅ |
| Exact actor for every missing input | A1 Codex · A2 owner+Codex · A3 Codex · A4 Codex · A5 owner · A6 Codex | ✅ |
| No field incorrectly marked present | none; only engineering-verified candidates (§2/§3) are marked present | ✅ |
| No T1-authored seal | explicit non-self-approval statement §1; encoder fail-closed BLOCKED_NEEDS_SEALED_INPUTS; rehearsal N7 in packet labelled rehearsal |
✅ |
| JSON mirror == MD | codex_sealed_values_present:false, rehearsal_only:true, identical A1–A6 actors and candidate values |
✅ |
N7 readiness: READY FOR CODEX. Exact remaining action: owner supplies A2 (approver identity) + A5 (blueprint decision) and authorizes the seal event; Codex mints A1/A3, binds A4 sealed sub-digests, then runs the deterministic fail-closed encoder to compute A6. Blocks implementation: YES (no seal → no implementation).
N8 — Detached Seal Request
| Check | Finding | Verdict |
|---|---|---|
| Object of seal exact | (1) packet V3 tree b95df0a5…ca6d (32 files); (2) canonicalizer rev3 doc / revision 3 / 38756 bytes / 49c386a9…b734d0; (3) N7 envelope manifest once Codex computes it |
✅ |
| Hash / revision / tree exact | all three match live KB + T1 recompute | ✅ |
| Signer / authority field NOT fabricated | "T1 CANNOT author N8"; detached_seal_sha256 = SEAL_AT_CODEX_RECHECK class; CODEX-only |
✅ |
| Seal body ready for Codex/authority | what-to-seal, why-engineering-ready (Codex V3 §8 quote, attributed), what-remains-outside-engineering all present | ✅ |
| T1-cannot-author statement explicit | §4 explicit; codex_sealed_values_present:false |
✅ |
N8 readiness: READY FOR CODEX (request only). Exact remaining action: Codex authors the detached seal value after the authorized N7/P7 event. Blocks implementation: YES.
P7 — Codex Re-seal Request
| Check | Finding | Verdict |
|---|---|---|
| Canonicalizer rev3 path/revision/bytes/hash exact | document_id, revision 3, 38756 bytes, 49c386a9…b734d0 — all match live KB + T1 recompute |
✅ |
| Packet V3 tree hash exact | b95df0a5…ca6d |
✅ |
| Codex V3 report + checkpoint linked | both rev1 paths present and live-resolvable | ✅ |
| Blocker disposition exact | references ledger rev4 (authority-only); live ledger confirmed rev4 | ✅ |
| No official pin claimed before Codex | §4 "value remains a candidate until Codex authors the P7 seal. T1 asserts reproducibility, not authority." | ✅ |
| Requested procedure is sound | fresh-fetch SSOT @ rev3 → recompute SHA-256 → if equal seal value+revision → record event for N7 to bind | ✅ |
P7 readiness: ENGINEERING-READY, AUTHORITY-BLOCKED. Exact remaining action: Codex fresh-hashes the KB bytes at revision 3 and seals value+revision. (T1 already performed the reproducibility half: the candidate hashes match.) Blocks implementation: YES.
Summary
| Item | Form | Self-Codex verdict | Exact actor for the act T1 cannot do |
|---|---|---|---|
| N7 | input envelope | READY (candidates exact; A1–A6 missing+actored) | owner inputs A2/A5 + Codex compute A1/A3/A4/A6 |
| N8 | request only | READY (request well-formed) | Codex authors detached seal |
| P7 | request only | READY (candidate reproducible; pin un-authored) | Codex seals rev3 value+revision |
Must NOT be inferred by Codex from these files: that any seal already exists; that owner has approved the blueprint; that the rev3 hash is an authoritative pin (it is a candidate); that T1 holds any authority. All three artifacts correctly carry these negations.