09 — Next Macro Prompt Pack (10, paste-ready, open-goal)

Each prompt is self-contained after a context clear. Host = contabo VPS; read via query_pg role context_pack_readonly db directus; apply (if safe) via ssh contabo → docker exec -i postgres psql -U workflow_admin -d directus. All carry Hard Gate 0, forbidden lists, dress-rehearse→commit→fresh-verify method, and completion pressure. They do not over-prescribe.

Shared Hard Gate 0 (all prompts): confirm host=contabo, container=postgres, db=directus, read role, apply identity via SELECT; require fn_iu_gate_verify_closed() all_safe=true + never_flip_intact=true; snapshot baseline; author rollback before any apply; if rollback impossible → branch becomes authority-pack. Shared forbidden (all prompts): no 4 Mothers runtime, no Nuxt/UI, no Directus mutation, no Qdrant/vector write, no iu_enact.allow_no_review_decision=true, no iu_core.vector_sync_enabled=true, no gate left open, no hidden second SoT, no law enactment, no production review_decision self-mint, no unsafe P-pub hard-block.

---

Prompt 1 — IU_PILOT_LIVE_ADOPTION_RUN_300000X

Operate the IU limited-production pilot on real (non-test) production IU under a Đ32 adoption approval. Pre-flight per doc 01 §2; enumerate the production canonical_addresses in scope; for each op use the bounded gate protocol (open→single-op→close→verify); rollback via fn_iu_retire/supersede, never delete; produce a daily health report (gate state, deltas, DLQ depth, audit rows). If no adoption approval row exists, run drills only and produce the approval request. Pass = ≥1 real governed op committed + durable-verified + every gate closed.

Prompt 2 — IU_CANDIDATE_REGISTRY_GOVERNED_BIRTH_LIVE_FOUNDATION_500000X

Apply doc 02 DDL through the birth contract. For each new family (field_registry, input_form_registry, tier_registry): write the collection_registry + birth_registry + governance_registry + species rows, obtain/record the Đ32 approval, then create the table inside a dress-rehearsed transaction; verify in a fresh connection. For the 5 reuse families, create the read-only superset views (v_output_table_registry, v_dot_function_registry, v_ui_product_template_registry, + workflow/task template layers). Rollback = DROP TABLE/VIEW + delete registration rows. Pass = registries born + registered + verify_closed intact.

Prompt 3 — IU_KG_RELATION_BACKFILL_AND_VOCAB_EXPANSION_LIVE_300000X

Build on the live iu_relation enrichment (provenance/confidence/evidence/assertion_mode/valid_time) + v_kg_edges_all. Create a governed iu_relation_type_vocab (8 atom rules IDENTITY/BELONGS_TO/CONTAINS/DEPENDS_ON/USED_BY/TRANSITIVE/PEERS/SIMILAR + symmetry/transitivity flags) under Đ39. Backfill provenance/confidence for the 60 contains edges from operation_ref/lifecycle evidence. Author a gated fn_iu_relation_assert(...) enforcing provenance-or-quarantine on new edges. Extend v_kg_edges_all with a graph_layer discriminator. Vector stays OFF. Pass = vocab live + 60 edges backfilled + assert fn gated + no SoT duplication.

Prompt 4 — IU_MASTER_DESIGN_REV5_RECONCILIATION_PATCH_APPLY_150000X

Apply doc 04 R1–R15 reconciliation as surgical doc edits to knowledge/dev/design/v0.6-iu-4mothers-event-foundation-rev2/ docs 00/03/04/07/10 (and KB copies). Promote machinery claims (gate protocol, DOT wrappers, durable run, DLQ, KG-live) to LIVE; flag the 4 governance gaps (factory rows, human roles, P-pub authority, prod review_decision). No design rewrite — surgical edits each citing this bundle. Pass = patched docs at rev+1 with reconciliation table embedded.

Prompt 5 — IU_PPUB_S1_WARN_AND_VOCAB_EXPANSION_LIVE_200000X

Apply P-pub Stage S1 safely: create dot_config iu_create.ppub.enforcement_mode='warn'; expand publication vocab (authorities: domain_admin, company_admin, sovereign, automated_agent; types: report, protocol, spec, proposal, record) as additive dot_config rows. Do NOT change fn_iu_create yet (S2). Author the fn_iu_create authority-param overload spec as authority pack. Rollback = delete the key + vocab rows. Pass = warn mode live + vocab expanded + verify_closed intact.

Prompt 6 — IU_PPUB_S2_BLOCK_NEW_AUTHORITY_CONTRACT_300000X (council-gated)

Implement P-pub Stage S2: add p_publication_authority_ref text DEFAULT NULL to fn_iu_create (additive overload), update the gateway canonical_function in lockstep, and enforce block_new (reject new creates lacking authority) keyed by enforcement_mode. Requires a council approval reference. Full test plan (create-with/without authority, existing-enact still passes). Rollback to warn. Pass = block_new enforced for new creates only + council approval recorded + gateway consistent.

Prompt 7 — IU_PROD_REVIEW_DECISION_BUILDER_COUNCIL_AUTHORED_400000X (council-gated, needs human-org-role)

Author the production review_decision builder per doc 06 §3 in cutter_governance under council privilege (not agent): manifest_envelope artifact-hash binding, ≥2 distinct human cross-signers, reviewer_role resolved against human_org_role, automated_agent→RAISE, full audit. Agent must NOT self-mint a production review_decision. Pass = builder exists + invariants proven by negative tests (agent reject, single-signer reject, forged-manifest reject) + no-agent-approve intact.

Prompt 8 — IU_HUMAN_ORG_ROLE_LAW_RATIFY_AND_BIRTH_500000X (council/sovereign-gated)

Ratify doc 07 (Điều 37-H) and birth the human_org_role + human_org_permission tables through the birth contract; seed the 7 roles × 5 verbs matrix; map to Directus policies (approve enforced in PG, not Directus). No conflict with Đ37 factory roles. Pass = law ratified + 2 tables born + matrix seeded + Directus policy map applied + ai_agent approve-deny proven.

Prompt 9 — IU_EVENT_QUEUE_HARDENING_FOR_4MOTHERS_400000X

Harden event/queue substrate for Mother-scale: register iu.* + mother.* event types in event_type_registry (currently 31, none mother-scoped); prove DLQ replay at volume on test routes; validate executor/idempotency/retry policy registries (paper today); confirm route allowlist still empty for real delivery; emit_enabled stays gated. Vector OFF. Pass = event types registered + DLQ replay proven at volume + executor registries specified + gates intact.

Prompt 10 — IU_4MOTHERS_FACTORY_REGISTRATION_AND_SUBSTRATE_DESIGN_600000X (still no UI/runtime)

Design the 4 Mothers substrate and register them as Đ37 factories: insert (governed) 4 governance_registry rows (gov_type='factory', output_target per Mother), define each Mother's read-set (which registries) and write-set (which born objects), the per-Mother can_create/can_reference/must_not_own matrix, and the industrial birth contract for their outputs. No Nuxt, no runtime generation. Pass = 4 factory rows specified (live-applied only if G1/G2/G3 cleared) + substrate design complete + birth contracts defined.

---

Sequencing: P2 ∥ P3 ∥ P5 first (independent, mostly safe-live); P4 anytime (doc-only); P8 then P7 (P7 needs P8); P6 after P5; P9 parallel; P10 last (needs P2/P7/P8). P1 runs independently whenever an adoption approval exists.