75 — SB-2 Owner-Line Rehearsal Entry Baseline (live, EXECUTION_MODE, Hard Gate 0 PASS, 2026-06-01)
75 — SB-2 Owner-Line Rehearsal — Entry Baseline (R1)
Path:
knowledge/dev/reports/architecture/one-roof-governance-technical-addendum-and-implementation-index-2026-06-01/Doc: 75. Role: Entry baseline (R1) for the SB-2 ownership-substrate author-modeBEGIN..ROLLBACKrehearsal. First doc of the SB-2 rehearsal-RESULTS bundle (75–81). This is the step GPT authorized ingpt-review-gcos-build-intake-pass-authorize-sb2-rehearsal-next-2026-06-01.md(close W6: SB-2 had not yet been rehearsed; it is a prerequisite for the owner/apply line). Status: REHEARSAL RESULTS. Author-modeBEGIN..ROLLBACKonly. ZERO COMMIT. ZERO persistent mutation. Entry==exit certified in doc 79. Build remains NO-GO (os_proposal_approvals = 0 ⇒ COMMIT_FORBIDDEN). Date: 2026-06-01. Channel: read-only viaquery_pgMCP; DDL/DML rehearsal via operator author-modessh contabo → docker exec -i postgres psql -U workflow_admin -d directus(PG 16.13).
75.0 State-recovery verdict (read before any execution)
Read in order: muc-tieu-mo house law (knowledge/dev/laws/prompt-muc-tieu-mo-for-claude-code.md); index doc 00; SB-2 design docs 17 + 18 (live evidence) + 19 (prepared rehearsal script) + 23 (C-1/C-2 packet); gate docs 68 + 70; GPT delegated ruling (gpt-delegated-ruling-…-c1-c2-c7-authorize-rehearsal-no-commit-2026-06-01.md); GPT review authorizing SB-2 next (gpt-review-gcos-build-intake-pass-authorize-sb2-rehearsal-next-2026-06-01.md).
- SB-2 design target (doc 17): HYBRID = additive
governance_object_ownership(storage) +governance_responsibility_scope(tiny scope ref) +v_object_effective_owner/v_object_owner_gap(resolution + gap views) + reuse ofregistry_changelog/event_outboxfor audit/event. Express who is the accountable owner of a governed object/axis, per responsibility scope (M-DEF-3); container-grain inheritance (Δtotal=0 at 10⁸); do not widen thegovernance_relationsCHECK. - Delegated authorization scope: GPT delegated ruling C-1 = SB-2 ownership pattern APPROVED for author-mode rehearsal (additive table + scope ref + resolution view; one accountable owner per scope; supporting/delegated/exception must not masquerade as accountable). This is a delegated technical/council ruling — NOT sovereign build approval, NOT an
approval_requests/apr_approvals/os_proposal_approvalsrecord, NOT permission to COMMIT. - What is authorized: author-mode
BEGIN..ROLLBACKrehearsal ofgovernance_responsibility_scope,governance_object_ownership, the resolution view/pattern, owner-per-scope uniqueness, supporting/delegated/exception roles, missing-owner + double-owner detection — each ending inROLLBACKwith entry==exit proof. - What is forbidden: COMMIT; persistent PG mutation; production build; event emit; DOT registration as live; approval-row creation; self-approval; law enactment/version/status change; Directus/Qdrant/Nuxt mutation; Phase-B handler activation; schema/table/view/function/trigger left behind; hardcode; hidden local governance island.
- Exact rollback proof method: each rehearsal is one transaction ending in
ROLLBACK; proof is (a) same-session post-ROLLBACKto_regclass/count check and (b) an independentquery_pg(separate session) re-read; numeric pre == post for every touched object;idle_in_transaction=0; zeroworkflow_adminsessions left.
75.1 HARD GATE 0 — execution channel verified (live)
| Probe | Result |
|---|---|
ssh contabo (38.242.240.89, key contabo_vps) |
SSH_OK, host vmi3080463 |
| postgres container | Up 6 weeks (healthy) |
docker exec -i postgres psql -U workflow_admin -d directus |
workflow_admin | directus | PostgreSQL 16.13 |
DDL BEGIN..ROLLBACK probe (throwaway _gcos_sb2_probe_zzz) |
created (visible in-tx=true) → ROLLBACK → after present=false (zero residue) |
| idle-in-transaction (db=directus) | 0 |
Classification: EXECUTION_MODE for rollback-only rehearsal. Authority (C-1 ruling) + execution channel (SSH→docker→psql, DDL-capable, reversible) both pass. COMMIT remains out of scope by ruling/mission; the channel is exercised strictly as BEGIN..ROLLBACK. Transaction discipline on every rehearsal: SET LOCAL statement_timeout='5s', lock_timeout='3s', idle_in_transaction_session_timeout='15s', ending in ROLLBACK.
Hard-Gate-0 sub-confirmations (mission §2): (1) DB=directus, host=vmi3080463 ✔; (2) psql author-mode channel ✔; (3) transaction discipline ✔; (4) entry baseline captured below ✔; (5) no COMMIT anywhere — every script ends ROLLBACK ✔; (6) no event emit — SB-2 creates fresh trigger-less tables only ✔; (7) no approval row creation ✔; (8) no Directus/Qdrant/Nuxt mutation ✔; (9) rollback verification query defined (§75.0) ✔; (10) idle-transaction check defined ✔.
75.2 Entry baseline — live values (read-only via query_pg, 2026-06-01)
SB-2 target objects (all ABSENT ⇒ greenfield):
| Object | to_regclass |
|---|---|
governance_object_ownership |
NULL |
governance_responsibility_scope |
NULL |
v_object_effective_owner |
NULL |
v_object_owner_gap |
NULL |
Spine & reuse counts (entry):
| Object | Entry | Note |
|---|---|---|
governance_registry |
9 | owner_gov_code FK target; codes below |
governance_relations |
8 | the 8 live agency→law edges — must NOT be disturbed |
governance_audit_log |
1 | stale; relation-scoped |
approval_requests / apr_approvals / apr_action_types |
211 / 42 / 6 | must stay identical (no approval/action-type creation) |
os_proposal_approvals |
0 | ⇒ COMMIT_FORBIDDEN (master gate red) |
event_type_registry / governance-domain |
40 / 0 | no governance event domain (SB-4 gap) |
event_outbox governance |
0 | zero-emit baseline |
dot_tools |
309 | no DOT registration target touched |
registry_changelog |
68,572 | organic-growth (audit); not a rehearsal target |
system_issues |
192,326 | organic-growth; not a rehearsal target |
normative_registry |
47 | law table — must stay identical (no law change) |
meta_catalog |
169 | object_type/object_ref no-hardcode vocabulary source |
| idle in transaction (db=directus) | 0 | clean |
governance_registry codes (FK targets for owner_gov_code / default_owner_hint):
| code | status | code | status |
|---|---|---|---|
| GOV-COUNCIL | active | GOV-MOIT | draft |
| GOV-DOT | active | GOV-MOT | draft |
| GOV-KG-SYS | active | GOV-MOUT | draft |
| GOV-NRM-SYS | active | GOV-MOW | draft |
| GOV-SIV | active |
⇒ The four owner agencies the rehearsal references (GOV-COUNCIL, GOV-SIV, GOV-DOT, GOV-MOUT) are all present; FK valid. GOV-MOUT is draft but present (render owner, C-5) — a live owner row for it would later require owner_kind='delegated' with mandatory effective_to (doc 17 §9 failure-mode 4). Live wins over any printed doc value (muc-tieu-mo §1); differences vs docs 18/57 (registry_changelog, system_issues) are organic growth, not residue.
75.3 R1 verdict
PASS. Channel = EXECUTION_MODE (rollback-only). Greenfield confirmed (4 SB-2 targets absent). Master gate os_proposal_approvals=0 ⇒ COMMIT_FORBIDDEN. Idle-in-transaction = 0. FK targets present. Proceed to R2 (doc 76), R3 (doc 77), R4 (doc 78); entry==exit certification: doc 79; readiness verdict + next prompts: doc 80; self-review: doc 81.