03 — Clone Baseline Verification

Verdict: PASS — clone is a faithful, isolated mirror of production governance state.

1. DB name non-production: current_database()=directus_gov_test_20260602 (prefix directus_gov_test_). Step-A seed hard-guards abort if name != directus_gov_test_%.
2. Governance baseline mirrors prod exactly: own=0|gap=210|ospa=0|gov_emit=0|ruleset=0|scan_run=0|inventory=35|containment=35|scopes=6|apr_action_types=14|dot_tools=309 — identical to prod entry.
3. Required Phase-1 objects present: ownership, responsibility_scope(6), ruleset, candidate_state, candidate_object, candidate_scan_run, gov_worker_cursor, event_outbox, event_type_registry, system_issues; views inventory(35)/containment(35)/effective_owner/owner_gap(210)/owner_conflict.
4. Schema fidelity proven functionally identical: all governance table column fingerprints identical (diff empty); 4/5 view defs byte-identical; only delta is v_governance_object_inventory and it is a cosmetic Postgres array-cast rendering (prod ARRAY[...]::text[] vs clone ARRAY[...::text]) — semantically identical, both compute 35/210. Aggregate gov_schema_md5 differs (47f968e7… clone vs 6800392… prod) SOLELY from that cosmetic delta; computed results identical.
5. No external dispatch: all 7 governance event_type_registry rows active=false; event_outbox BEFORE-INSERT trigger fn_event_type_validate rejects inactive/unknown ⇒ no governance emit. No worker/daemon connects.
6. No app points to clone: Directus DB_DATABASE=directus; live connections to clone = none besides transient checks; MCP query_pg blocked.
7. Rollback/drop ready (see 09).

Constraints captured: governance_object_ownership NOT-NULL(object_type,object_ref,scope,owner_kind,owner_gov_code); FK owner→governance_registry(code), scope→governance_responsibility_scope; CHECK owner_kind∈{accountable,supporting,delegated,exception}, lifecycle∈{active,superseded,revoked,expired}; partial unique uq_gov_obj_accountable(object_type,object_ref,scope) WHERE accountable&active; 0 triggers. candidate_scan_run PK(run_id), scan_mode∈{event_driven,incremental,periodic_full}, status∈{running,completed,failed,throttled}, FK ruleset+source_snapshot_ref→evolution_snapshots. governance_candidate_state PK(group_key,ruleset_version). governance_candidate_object PK(candidate_key,ruleset_version), FK(group_key,ruleset_version)→candidate_state, materialization_reason∈{indep_authoritative,open_finding,exception,high_risk_write}. gov_worker_cursor PK(worker_name,source_name). evolution_snapshots 1 row (id=1).