10 - SUPERTRACK J — Cross-Impact Map (all refined RP)

Columns: RP | affected docs | affected DDL/contracts | affected manifests | affected hashes | affected readiness gates | affected bypass vectors | affected Directus/read path | affected rollback | affected no-hardcode guard | affected PG-native scorecard | new Codex design edit | T1 impl blocked.

RP	docs	DDL/contracts	manifests	hashes	readiness gates	bypass vectors	Directus/read	rollback	no-hardcode guard	PG-native scorecard	Codex edit	T1 blocked
RP-01 runtime evidence	07,09,10 + gate-adapter spec	12 new category-(c) tables (signoff_binding, capability_run/measurement/artifact/environment, gate_fact_result, bypass_vector_fact_result, quorum_vote, denied_attempt_evidence, dashboard_export, level_b_packet_execution, post_activation_verifier_state)	#06,#07,#09,#12,#13,#14,#15,#16,#17,#19,#23; evidence/principal/identity registries; manifest_activation	H04, H05, H02 (H06 unaffected; H01 unaffected)	SIGNOFF_AUTHENTIC, CAPABILITY_BEHAVIORAL, NO_BYPASS_ALL_BLOCKED, DEPENDENCY_TRUTH; all gates emit gate_fact_result	ACTIVE BYPASS_VECTOR set via bypass_vector_fact_result; closes "unenumerated evidence table" vector	none (control-plane evidence; Directus no access)	append-only; reversal drops empty candidate tables per RP-03 order	closes routed-later instance layer; exact-set runtime_evidence_object_set	strengthens PG-driven (facts in PG, generic-guard-derived pass/blocked)	YES	YES
RP-02 retention	06,09,02,11	storage_class_manifest #05 +retention fields (primary) OR new #28	#05 (or #28); evidence_registry.storage_class_item_id; RP-01 high-vol tables	storage_class item → manifest_set → H01,H02; (#28 → HASH_COMPONENT denom)	SCALE_SAFE, READINESS_MANIFEST_EXACT	mutable-denominator vector closed	none	retention change = new sealed version	removes uncounted-surface finding	values sealed not literal	YES	YES
RP-03 constraint catalog	02,03,04,09,10 + #20	authority_scope_manifest #20 +expected_constraint_set_sha256; consolidated CREATE+ALTER order	#20; every qt001_cp table's constraints	authority_scope item → H01,H02	OBJECT_AUTHORITY_IMMUTABLE, READINESS_MANIFEST_EXACT	authority/constraint-drift vector closed	none	consolidated order defines reversal; dropped ALTER → fail-closed	pg_constraint/pg_index structural truth (not source-text)	strong PG-native (catalog truth)	YES	YES
RP-04 catalog-family coverage	03,04,05,06	code_catalog families: reference_contract(exists)+operand_column_contract+structural_literal_class	code_catalog root; operator_operand_compatibility; all catalog-typed cols	catalog payload → H01,H02	READINESS_MANIFEST_EXACT, CAPABILITY_BEHAVIORAL, TIER_POLICY_PASS, SIGNOFF_AUTHENTIC	unmapped-column / unclassified-literal disguised-hardcode vector closed	none	catalog change = new sealed version	makes anti-hardcode root provably complete	seal fns no-literal + SA15 fail-closed	YES	YES
RP-05 item_payload	04,06 + analyzer spec	adapter_input_contract (allowed columns); SA15 scan rule	code_catalog_item; operator_primitive/analyzer manifests; analyzer_run	H06 (adapter→column edges); input-contract → H01,H02	DEPENDENCY_TRUTH, READINESS_MANIFEST_EXACT	"hidden policy in catalog payload" vector (recommend explicit named vector)	none	none new	converts latent risk C to enforced fail-closed	adapter reads only sealed typed cols	YES	YES
RP-06 same-human	10 + RP-01 tables	signoff_binding/quorum_vote slot UNIQUE; manifest-driven separation	#08 principal_separation, #19 quorum, #06 class; principal/identity registries	H04 (bound identities)	SIGNOFF_AUTHENTIC; activation quorum (H07)	same-human-two-slots separation bypass closed (no over-block)	none	none new	separation stays data (must_differ)	manifest-driven trigger/seal-check	YES (advisory)	YES
RP-07 retire-evidence FK	04,09,02/RP-03	code_catalog_item.retired_reason_evidence_id → evidence_registry FK (deferred ALTER)	code_catalog_item; evidence_registry; #20 expected-constraint	none direct; in #20 constraint hash → H01,H02	OBJECT_AUTHORITY_IMMUTABLE, READINESS_MANIFEST_EXACT	"retire-with-fake-evidence" root-integrity bypass closed	none	retire needs real evidence; in RP-03 order	closes root-integrity gap	FK RESTRICT + existing CHECK	YES	YES
RP-08 Directus observation	08 + cutover runbook	sealed directus read-contract + sealed freshness field	privilege_set_manifest #21 (+read-pattern); evidence rows	read-contract → H01,H02; smoke hashes = evidence	FIX7b cutover preflight/smoke (not a steady-state gate); touches GATEWAY_PASS/OBJECT_AUTHORITY_IMMUTABLE via authority-zero	under-captured-read feasibility bypass closed	THIS is the Directus read-path control (path A)	CP-07 rollback unchanged	removes hardcoded-window risk	sealed read-contract + both-EXCEPT, no literal window	YES (advisory)	YES

Cross-RP dependencies

• RP-06 depends on RP-01 (signoff_binding / quorum_vote tables).
• RP-02 depends on RP-01 (high-volume tables bind storage_class).
• RP-07 depends on RP-03 (its deferred ALTER belongs in the consolidated order + expected-constraint set) and on evidence_registry (doc 09).
• RP-03 expected-constraint catalog covers the FK constraints created/altered by RP-01, RP-02, RP-04, RP-07 → must be authored LAST in the edit pass (after the final constraint set is known).
• RP-04 families and RP-05 input-contract both extend code_catalog → author together to keep one catalog version.

Net surface accounting

• New AUTHORITY surfaces created: ZERO (RP-02 reuses #05, RP-03 reuses #20, RP-04 reuses code_catalog root, RP-08 reuses #21). If Codex elects RP-02 option (ii), exactly ONE counted surface (#28 retention) is added with full parity and all "27"→"28" statements updated.
• New NON-authority runtime-evidence tables (RP-01): up to 12, owner-only / append-only / hash-bound / exact-set enumerated; explicitly NOT authority surfaces and NOT among the 27.
• New readiness gates: ZERO (existing 14 gates extended in behavior only).
• New hash contracts: ZERO (existing 7; refinements flow through manifest_set/control-state hashing).