No Duplicate Canonical Authority Recheck

Verdict

NO_DUPLICATE_CANONICAL_AUTHORITY_NEEDS_FIX

The designation of one SSOT and demotion banners is directionally correct, but the no-duplicate guard is asserted rather than executed.

Evidence

The embedded selftest does not scan ACTIVE_AUTHORITY for a second exact, semantic, or structural canonical contract. Scenarios 2, 3, 13, and 14 are reported as computed, but no corresponding executable test appears in the SSOT selftest output/code.

Because the incomplete SSOT lacks production encoding/extractor logic, implementers must still consult the demoted prose to seal the corpus. That prose therefore remains effective authority despite its label, recreating structural duplicate authority.

Required T1 fix

Implement a scoped, deterministic duplicate-authority inventory/check in the runnable SSOT. It must prove exactly one active canonicalizer identity/hash and reject any package or active contract that implements an independent canonical procedure.