43 — Next Paste-Ready Prompts (GCOS substrate build-prep: C-7, docs 24/25 cross-ref, SB-12/13/10/11 rehearsals, critique; state-recover from this package, design-only, 2026-06-01)
43 — Next Paste-Ready Prompts (GCOS substrate build-prep)
Package:
knowledge/dev/reports/architecture/one-roof-governance-technical-addendum-and-implementation-index-2026-06-01/Status: Design-only. Each prompt below state-recovers from THIS package and stays within its allowed footprint. No prompt authorizes PG/Directus/Qdrant/Nuxt mutation, event registration/emit, DOT registration, approval, or law enactment unless its own gates pass. Date: 2026-06-01.
Shared state-recovery preamble (prepend to every prompt below)
STATE RECOVERY (mandatory). Read, in order:
1. .../00-read-me-first-implementation-index.md
2. .../03-blocker-register-and-gates.md
3. .../35-backfill-handoff-input-control-integration-readiness.md
4. .../38-sb12-... 39-sb13-... 40-sb10-... 41-sb11-... 42-gcos-substrate-integration-and-build-readiness.md
5. the doc(s) named in this prompt's scope.
This index controls. Concept canon > pre-patch design. Round-4 law > earlier wording.
Blockers win over ambition. If unclear, STOP and report.
HARD GATE 0: no PG/Directus/Qdrant/Nuxt mutation; no schema/DOT/UI/API; no event
register/emit; no enactment/version-bump/status-change/registry-write; no approval/
self-approval; no hardcode; no hidden local governance island; no implementation
disguised as design. Live-verify reuse-candidate state read-only (live wins over report).
Write all new docs INSIDE this package. Return doc-00 §0.9 minimum final-report fields.
P1 — C-7 Council Decision Packet (CRITICAL PATH, decision-only)
Goal. Produce a council decision packet (new doc in this package) resolving the four C-7 questions so SB-11/SB-12 activation and the backfill cut-over are unblocked:
- Input-trust policy — min trust level per scope; which sources are trusted; how
untrusted_source(doc 33 state #7) is decided. 2. Ruleset owner + activation policy — who ownsruleset_version(default proposed: GOV-COUNCIL policy / GOV-SIV proposes / APR activates); auto-activate allowlist for pure-additive measurement rows? 3. 60-day legacy cut-over — the backfill seed deadline (extends C-6/A3). 4. Observer-trigger ruling — does a fail-openAFTER INSERTobserver onbirth_registry(doc 32 §4 Option B) count as "modifying Birth"? (recommended NO; default remains Option A cursor-tail). Footprint. Decision packet only; options + defaults + risks; no binding, no self-approval, no mutation. State each default and its risk so the council can rule. Done when. Each of the 4 has options, a recommended default, a risk, and an owner-of-decision;os_proposal_approvals=0 ⇒ no commit.
P2 — Docs 24/25 GCOS cross-reference / consolidated T6/T7 build plan (author-ready follow-up)
Goal. Make GCOS impossible to miss at T6/T7 build (GPT's standing concern). Author either (preferred) a non-destructive "BUILD ADDENDUM" cross-ref header for docs 24 and 25 pointing to docs 31–35 + 38–42, or a new consolidated doc (e.g. 45-t6-t7-gcos-build-plan.md) enumerating the doc 35 §3.2 addenda + the SB-10..13 dependencies as the single build entrypoint.
Footprint. KB docs only. A cross-ref header is an allowed surgical/author-ready patch (law §4F/§4G) — it changes no contract or business meaning and bumps no design revision. Pin the exact addendum count by re-reading doc 35 §3.2 live (resolve the "10 rows vs eleven addenda" discrepancy noted in docs 42 §42.6 / 44).
Done when. Doc 24 and 25 (or doc 45) carry an unmissable GCOS build pointer with the exact, verified addendum list.
P3 — SB-12 + SB-13 build-prep rehearsal (author-mode, BEGIN/ROLLBACK, no commit)
Goal. Produce paste-ready, author-mode DDL for governance_ruleset (SB-12, Option B) and gov_worker_cursor (SB-13), wrapped in BEGIN … ROLLBACK, with a green read-only pre-flight (confirm the 2 target tables ABSENT — verified live 2026-06-01; confirm evolution_snapshots/queue_heartbeat/event_pending reuse columns unchanged) + a static additivity proof (Δ to live tables = 0). Author the ruleset_version hash function spec (canonical ordering over enabled measurement_registry rows ⊕ profile/axis/scope) and the type-generalized keyset watermark logic.
Footprint. Author-mode only (law §4E/§4H): the rehearsal SQL is authored, not executed (read-only role AST-rejects DDL); operator handoff documented (ssh contabo → docker exec postgres psql). No commit.
Done when. Reversible DDL + pre-flight + additivity proof authored for both; operator handoff written; rollback script noted.
P4 — SB-10 candidate-state store build-prep rehearsal (author-mode, BEGIN/ROLLBACK)
Goal. Author the governance_candidate_state (+ optional governance_candidate_object) DDL per doc 40, BEGIN/ROLLBACK, with pre-flight (target ABSENT — verified; derived_objects_registry/system_issues reuse cols unchanged) + the group-grain cardinality proof (rows = O(#groups), Δ=0 for inherited children) + the candidate_key = collection_name||':'||entity_code correction (canonical_address universally NULL). Specify the unique keys, the fail-closed G-PROD wiring, and the invariant-v3 closure query.
Footprint. Author-mode only; no commit. Owner-scope columns degrade to null until SB-2 (do not guess).
Done when. Reversible DDL + cardinality/idempotency/invariant proofs authored; operator handoff written.
P5 — SB-11 register-before-emit build-prep (author-mode catalog, NO registration/emit)
Goal. Author the exact event_type_registry rows for the governance domain (families A–E, doc 41 §41.4) with active=false initial state, event_stream, delivery_lane, default_severity, description per row; author the event_subject_table/ref + safe_payload map (doc 41 §41.5); author the event_subscription seed for owner routing. Author only — register nothing, emit nothing (register-before-emit; Điều 45).
Footprint. KB doc only; the insert statements are authored for the gated T7 build, not executed. Cite Điều 45; satisfy all 5 boundaries.
Done when. A complete register-before-emit catalog authored, ready for the T7 build macro after G-C7 + G-RBE.
P6 — GCOS substrate critique / red-team (adversarial, design-only)
Goal. Adversarially attack docs 38–42: find (a) any reuse decision that is actually an island, (b) any hidden hardcode/silent-cap, (c) any "checked-forever" leak in SB-10, (d) any Điều 45 boundary blur in SB-11, (e) any scale break vs 1.04M/78-reg/5 s, (f) any place a verdict could survive a snapshot/ruleset change, (g) any lost-handoff path. Produce a findings table (caught/uncaught, severity, fix). Footprint. Read-only PG re-verification allowed (live wins); KB doc only; no mutation. Done when. Each attack class has a verdict + fix or a confirmed-safe; net GO/NO-GO for proceeding to build-prep rehearsals.
P7 — SB-1 / SB-2 owner-substrate line (parallel decision/build-prep)
Goal. Advance the owner substrate that gates owner-relevant GCOS verdicts/routing: C-1 (governance_object_ownership table) + C-2 (APR action-types Phase-A/B) rulings, and SB-2 build-prep rehearsal (docs 16/17/19). This runs in parallel to P1–P6 and unblocks G-SB2 (degrade-until-live) and G-APPLY (with H-1/H-2/SB-6 + sovereign).
Footprint. Decision packet + author-mode rehearsal; no commit (os_proposal_approvals=0).
Done when. C-1/C-2 packets + SB-2 reversible DDL authored; apply remains NO-GO until quorum + sovereign.
Recommended order
P1 (C-7) ∥ P7 (SB-1/SB-2) on the decision track; P2 (cross-ref) immediately (cheap, removes the GPT risk); then P6 (critique) to harden 38–42; then P3 → P4 → P5 build-prep rehearsals (author-mode). No build/commit until G-DESIGN + G-DDL + G-C7 + G-RBE (+ G-APPLY/H-1/H-2/SB-6 for any apply) are green. Nothing here self-approves.