feat(claims): ground the two PARTIAL honesty claims after verifying the code#91
Merged
Merged
Conversation
…he code Continues prx-qhuv. Verified both PARTIAL claims against the actual linked repos before grounding any term (cross-repo evidence check, not assumption): - Provenance claim: ocap-provenance/slsa.ts emits in-toto Statement v1 + SLSA Provenance v1; prx verify.ts/merge-guard.ts verify; anchored-chain is the content-addressed derivation ledger; workflow.ts canEnterReadyToMerge fails closed on unsigned. GAP (why PARTIAL): emission/enforcement is opt-in until Sigstore lands. - Broker claim: keeperd/daemon.ts holds the key and performs the push; the agent holds only a socket; claude-box CAPABILITIES.md is credential-free. GAP (why PARTIAL): macOS TCP transport is weaker than unix-socket possession; not sandbox-hardened. Each grounding term is tagged PARTIAL with its verified file + the named gap, so the source stays honest; the visible PARTIAL grade carries the gap. The two ASPIRATIONAL claims (converge, contracts-honest) stay body — bets, not grounded. audit-gate --strict 0 errors, content.mjs 23/23, build/structure/semantic/shacl green locally. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What
Continues prx-qhuv. Grounds the two PARTIAL honesty claims as string-audit
claimsymbols — but only after verifying the mechanisms against the actual linked repos (cross-repo evidence check, two parallel agents, not assumption).ocap-provenance/slsa.ts(in-toto Statement v1 + SLSA Provenance v1),prx/.../verify.ts+merge-guard.ts,anchored-chaincontent-addressed ledger,workflow.ts canEnterReadyToMergefails closed on unsigned. Gap (why PARTIAL): emission/enforcement opt-in until Sigstore lands.keeperd/daemon.tsholds the key + performs the push, agent holds only a socket,claude-box CAPABILITIES.mdcredential-free. Gap: macOS TCP transport weaker than unix-socket possession; not sandbox-hardened.Each grounding term in
content/grounding.jsonis tagged PARTIAL with its verified file + the named gap, so the source itself stays honest; the visible PARTIAL grade carries the gap.Honesty line held
The two ASPIRATIONAL claims (converge, contracts-honest) stay
body— bets, not grounded. So now 4/6 honesty claims are grounded claim symbols; 2 remain honest bets.Verified
audit-gate --strict0 errors,content.mjs --check23/23, build / structure / semantic / shacl green locally.🤖 Generated with Claude Code