Foundation-Factory-Gateway SuperBundle — 00 Overview / Control Tower
FOUNDATION_FACTORY_GATEWAY_SUPERBUNDLE — 00 Overview / Control Tower
Macro: FOUNDATION_FACTORY_GATEWAY_SUPERBUNDLE_CR_KG_PILOT_RECON_4MOTHERS_DESIGN_30000000X
Date: 2026-05-28 · Effort xhigh · Execution multi-track C2/C3/C5
Host: contabo VPS · Container postgres · DB directus · PG 16.13 (172.19.0.3)
Read channel: MCP query_pg role context_pack_readonly · Apply channel: ssh contabo "docker exec -i postgres psql -U workflow_admin -d directus"
0. Verdict
PASS. One safe, reversible, durable live mutation executed (KG provenance backfill of 60 edges). All other branches advanced as design / authority packs / implementation-ready DDL. No forbidden action taken. No gate left open.
1. Hard Gate 0 — preflight result (entry == still-safe)
| Check | Result |
|---|---|
| Host / container / db | contabo / postgres / directus ✓ |
| Read identity | context_pack_readonly @ 172.19.0.3 ✓ |
| Apply identity | workflow_admin (SELECT-verified before write) ✓ |
fn_iu_gate_verify_closed() |
all_safe=true, never_flip_intact=true, all_governed_closed=true ✓ |
| never-flip keys | iu_core.vector_sync_enabled=false, iu_enact.allow_no_review_decision=false ✓ |
Entry snapshot
| Object | Count |
|---|---|
| information_unit | 219 (3 retired) |
| iu_relation | 60 (all relation_type=contains) |
| universal_edges | 2199 (USES 1486 / BELONGS_TO 431 / CONTAINS 282) |
| v_kg_edges_all | 2259 (60 + 2199) |
| dot_iu_command_catalog | 52 |
| dot_iu_command_run | 55 |
| event_type_registry | 31 |
| table_registry / collection_registry | 21 / 168 |
| design_templates / workflows / tasks | 1 / 2 / 10 |
| birth_registry | 881,277 |
| governance_registry | 5 (all council/system; 0 factory, 0 human-role) |
Registry presence (live to_regclass)
- ABSENT (6):
field_registry,input_form_registry,tier_registry,output_table_registry,dot_function_registry,task_template_registry - PRESENT:
species_collection_map,governance_relations,birth_registry,collection_registry,table_registry,design_templates,governance_registry,iu_gate_transition,v_kg_edges_all review_decisionNOT inpublic(lives incutter_governance, privilege-walled)
2. Branch verdicts
| Branch | Title | Verdict | Live change |
|---|---|---|---|
| A | Candidate Registry foundation | DESIGN+AUTHORITY (create deferred: birth-contract+Đ32) | none |
| B | KG backfill + vocab | PASS — LIVE (60 edges backfilled) + vocab=DDL-authority | 60-row UPDATE committed |
| C | IU pilot operating controls | PASS — operator-usable (doc 03) | none |
| D | Master Design reconciliation | PASS — surgical patches (doc 04) | none |
| E | P-pub staged path | AUTHORITY-PACK (enforcement_mode key still absent) | none |
| F | Production review_decision | AUTHORITY-PACK (only test builder live) | none |
| G | Human-org-role law | DRAFT PACK (doc 07) | none |
| H | 4 Mothers substrate/gate | DESIGN PACK (doc 08) | none |
| I | Event/Queue hardening | MAP+AUTHORITY (doc 09) | none |
| J | Next campaign prompts | PASS — 12 prompts (doc 10) | none |
3. The one safe live change (Branch B)
UPDATE iu_relation SET provenance, confidence=1.0, assertion_mode='asserted', valid_time=COALESCE(valid_time,tstzrange(valid_from,valid_to,'[)')) WHERE relation_type='contains' AND provenance IS NULL → 60 rows.
- Method: BEGIN..ROLLBACK dress-rehearse (in-tx 60/60, post-rollback 60/0) → COMMIT → fresh-connection verify (60/60/60/60).
- Safe ∵ iu_relation has 0 triggers, gateway write-guard is on
information_unitonly, columns nullable & previously all-NULL. - Đ39 provenance-or-quarantine: these 60 are now provenance-bearing (no longer quarantine candidates).
- View
v_kg_edges_allnow surfaces 60/60 iu_relation edges with provenance + confidence. - Rollback (documented, reversible):
UPDATE iu_relation SET provenance=NULL, confidence=NULL, assertion_mode=NULL, valid_time=NULL WHERE relation_type='contains' AND provenance->>'backfilled_by'='foundation-factory-gateway-superbundle-2026-05-28';
4. Exit state delta
| Object | Entry | Exit | Δ |
|---|---|---|---|
| iu_relation rows | 60 | 60 | 0 (column values backfilled, no rows added) |
| iu_relation provenance-filled | 0 | 60 | +60 |
| everything else | baseline | baseline | 0 |
all_safe / never_flip_intact / all_governed_closed = true at exit (gates untouched).
5. Document map
- 00 this control tower
- 01 Candidate Registry foundation result
- 02 IU KG backfill / vocab result
- 03 IU pilot operating controls
- 04 Master Design reconciliation patches
- 05 P-pub staged path result
- 06 Production review_decision result
- 07 Human-org-role permission law pack
- 08 4 Mothers substrate / gate pack
- 09 Event/Queue hardening pack
- 10 Next campaign prompts (12)
- 11 Law / forbidden / self-review
6. 4 Mothers gate — current board (detail in doc 08)
| Gate | Requirement | State |
|---|---|---|
| G1 | Candidate Registry birth (CR build) | BLOCKED (6 registries absent, create deferred) |
| G2 | Human-org-role law enacted | BLOCKED (governance_registry has 0 human rows) |
| G3 | Production review path (needs G2) | BLOCKED (only test builder live) |
| G4 | Factory registration rows | BLOCKED (governance_registry has 0 factory rows) |
Design-implementation MAY proceed; runtime/UI remains forbidden.
7. Next macro recommendation
CANDIDATE_REGISTRY_BIRTH_AND_4MOTHERS_FACTORY_REGISTRATION_GOVERNED_LIVE_BUILD — execute Branch A DDL + Branch H factory rows under birth-contract + Đ32 approval, the first gate-opening governed build of the series. See doc 10 Prompt 1 + Prompt 8.