01 - Legacy Target Authority Recheck

Verdict

LEGACY_TARGET_AUTHORITY_NEEDS_FIX

T1 correctly demoted owner/name scans to diagnostic candidate discovery and proposed sealed identities. However, the final completeness proof remains underspecified.

live-relevant is not a closed PG-native predicate. Forward #11 closure from new entrypoints proves the new path reaches no legacy object, but it cannot by itself discover a directly callable legacy routine that writes protected legacy/QT001 state and is not reachable from the new path.

Required T1 fix:

• Define a closed, machine-checkable relevance universe anchored in protected resources and authority effects: reverse dependency/write-effect closure, dynamic SQL targets, trigger/event/scheduler entrypoints, effective executable/DML principals, and explicit DO_NOT_TOUCH exclusions.
• Both-EXCEPT the sealed set against that derived universe.
• Candidate name scans may only widen discovery, never define or close the universe.
• Resolve the S09/S12 versus S13/PKG-D ordering before claiming the set is sealed.