npm - @a5c-ai/krate - Versions diffs - 5.0.1-staging.f672fe79b - Mend

@a5c-ai/krate 5.0.1-staging.f672fe79b

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (174) hide show

package/Dockerfile +29 -0
package/README.md +183 -0
package/bin/krate-demo.mjs +23 -0
package/bin/krate-server.mjs +14 -0
package/dist/krate-controller-ui.json +2407 -0
package/dist/krate-lifecycle.json +201 -0
package/dist/krate-runtime-snapshot.json +2955 -0
package/dist/krate-summary.json +687 -0
package/docs/README.md +61 -0
package/docs/agents/README.md +83 -0
package/docs/agents/acceptance-test-matrix.md +193 -0
package/docs/agents/agent-mux-adapter-contract.md +167 -0
package/docs/agents/agent-mux-source-map.md +310 -0
package/docs/agents/agent-run-memory-import-spec.md +256 -0
package/docs/agents/agent-stack-management-spec.md +421 -0
package/docs/agents/api-contract-spec.md +309 -0
package/docs/agents/artifacts-writeback-spec.md +145 -0
package/docs/agents/chart-packaging-spec.md +128 -0
package/docs/agents/ci-orchestration-spec.md +140 -0
package/docs/agents/context-assembly-spec.md +219 -0
package/docs/agents/controller-reconciliation-spec.md +255 -0
package/docs/agents/crd-schema-spec.md +315 -0
package/docs/agents/decision-log-open-questions.md +169 -0
package/docs/agents/developer-implementation-checklist.md +329 -0
package/docs/agents/dispatching-design.md +262 -0
package/docs/agents/glossary.md +66 -0
package/docs/agents/implementation-blueprint.md +324 -0
package/docs/agents/implementation-rollout-slices.md +251 -0
package/docs/agents/memory-context-integration-spec.md +194 -0
package/docs/agents/memory-ontology-schema-spec.md +253 -0
package/docs/agents/memory-operations-runbook.md +121 -0
package/docs/agents/mvp-vertical-slice-spec.md +146 -0
package/docs/agents/observability-audit-spec.md +265 -0
package/docs/agents/operator-runbook.md +174 -0
package/docs/agents/org-memory-api-payload-examples.md +333 -0
package/docs/agents/org-memory-controller-sequence-spec.md +181 -0
package/docs/agents/org-memory-e2e-fixture-plan.md +161 -0
package/docs/agents/org-memory-ui-implementation-map.md +114 -0
package/docs/agents/org-memory-vertical-slice-spec.md +168 -0
package/docs/agents/org-resource-model-delta-spec.md +111 -0
package/docs/agents/org-route-resource-model-spec.md +183 -0
package/docs/agents/org-scoping-namespace-spec.md +114 -0
package/docs/agents/rbac-secrets-management-spec.md +406 -0
package/docs/agents/repository-page-integration-spec.md +255 -0
package/docs/agents/resource-contract-examples.md +808 -0
package/docs/agents/resource-relationship-map.md +190 -0
package/docs/agents/security-threat-model.md +188 -0
package/docs/agents/shared-memory-company-brain-spec.md +358 -0
package/docs/agents/storage-migration-spec.md +168 -0
package/docs/agents/subagent-orchestration-spec.md +152 -0
package/docs/agents/system-overview.md +88 -0
package/docs/agents/tools-mcp-skills-spec.md +189 -0
package/docs/agents/traceability-matrix.md +79 -0
package/docs/agents/ui-flow-spec.md +211 -0
package/docs/agents/ui-ux-system-spec.md +426 -0
package/docs/agents/workspace-lifecycle-spec.md +166 -0
package/docs/architecture-spec.md +78 -0
package/docs/components/control-plane.md +78 -0
package/docs/components/data-plane.md +69 -0
package/docs/components/hooks-events.md +67 -0
package/docs/components/identity-rbac-policy.md +73 -0
package/docs/components/kubevela-oam.md +70 -0
package/docs/components/operations-publishing.md +81 -0
package/docs/components/runners-ci.md +66 -0
package/docs/components/web-ui.md +94 -0
package/docs/external/README.md +47 -0
package/docs/external/bidirectional-sync-design.md +134 -0
package/docs/external/cicd-interface.md +64 -0
package/docs/external/external-backend-controllers.md +170 -0
package/docs/external/external-backend-crds.md +234 -0
package/docs/external/external-backend-ui-spec.md +151 -0
package/docs/external/external-backend-ux-flows.md +115 -0
package/docs/external/external-object-mapping.md +125 -0
package/docs/external/git-forge-interface.md +68 -0
package/docs/external/github-integration-design.md +151 -0
package/docs/external/issue-tracking-interface.md +66 -0
package/docs/external/provider-capability-manifests.md +204 -0
package/docs/external/provider-catalog.md +139 -0
package/docs/external/provider-rollout-testing.md +78 -0
package/docs/external/research-results.md +48 -0
package/docs/external/security-auth-permissions.md +81 -0
package/docs/external/sync-state-machines.md +108 -0
package/docs/external/unified-external-backend-model.md +107 -0
package/docs/external/user-facing-changes.md +67 -0
package/docs/gaps.md +161 -0
package/docs/install.md +94 -0
package/docs/krate-design.md +334 -0
package/docs/local-minikube.md +55 -0
package/docs/ontology/README.md +32 -0
package/docs/ontology/bounded-contexts.md +29 -0
package/docs/ontology/events-and-hooks.md +32 -0
package/docs/ontology/oam-kubevela.md +32 -0
package/docs/ontology/operations-and-release.md +25 -0
package/docs/ontology/personas-and-actors.md +32 -0
package/docs/ontology/policies-and-invariants.md +33 -0
package/docs/ontology/problem-space.md +30 -0
package/docs/ontology/resource-contracts.md +40 -0
package/docs/ontology/resource-taxonomy.md +42 -0
package/docs/ontology/runners-and-ci.md +29 -0
package/docs/ontology/solution-space.md +24 -0
package/docs/ontology/storage-and-data-boundaries.md +29 -0
package/docs/ontology/validation-matrix.md +24 -0
package/docs/ontology/web-ui-excellent-flows.md +32 -0
package/docs/ontology/workflows.md +39 -0
package/docs/ontology/world.md +35 -0
package/docs/product-requirements.md +62 -0
package/docs/roadmap-mvp.md +87 -0
package/docs/system-requirements.md +90 -0
package/docs/tests/README.md +53 -0
package/docs/tests/agent-qa-plan.md +63 -0
package/docs/tests/browser-ui-tests.md +62 -0
package/docs/tests/ci-quality-gates.md +48 -0
package/docs/tests/coverage-model.md +64 -0
package/docs/tests/e2e-scenario-tests.md +53 -0
package/docs/tests/fixtures-test-data.md +63 -0
package/docs/tests/observability-reliability-tests.md +54 -0
package/docs/tests/product-test-matrix.md +145 -0
package/docs/tests/qa-adoption-roadmap.md +130 -0
package/docs/tests/qa-automation-plan.md +101 -0
package/docs/tests/security-compliance-tests.md +57 -0
package/docs/tests/test-framework-tools.md +88 -0
package/docs/tests/test-suite-layout.md +121 -0
package/docs/tests/unit-integration-tests.md +48 -0
package/docs/todo-kyverno +714 -0
package/docs/user-stories.md +78 -0
package/examples/minikube-demo.yaml +190 -0
package/examples/oam-application.yaml +23 -0
package/examples/policy-kyverno-pr-title.yaml +18 -0
package/package.json +63 -0
package/scripts/build.mjs +29 -0
package/scripts/setup-minikube.mjs +65 -0
package/scripts/smoke.mjs +37 -0
package/scripts/validate-doc-coverage.mjs +152 -0
package/scripts/validate-package.mjs +93 -0
package/scripts/validate-ui.mjs +207 -0
package/src/agent-approval-controller.js +123 -0
package/src/agent-context-bundles.js +242 -0
package/src/agent-dispatch-controller.js +86 -0
package/src/agent-mux-client.js +280 -0
package/src/agent-permission-review.js +162 -0
package/src/agent-stack-controller.js +296 -0
package/src/agent-trigger-controller.js +108 -0
package/src/api-controller.js +206 -0
package/src/argocd-gitops.js +43 -0
package/src/auth.js +265 -0
package/src/component-catalog.js +41 -0
package/src/control-plane.js +136 -0
package/src/controller-client.js +38 -0
package/src/controller-ui.js +538 -0
package/src/data-plane.js +178 -0
package/src/gitea-backend.js +95 -0
package/src/handoff.js +98 -0
package/src/hooks-events.js +63 -0
package/src/http-server.js +151 -0
package/src/identity-policy.js +86 -0
package/src/index.js +30 -0
package/src/kubernetes-controller.js +812 -0
package/src/kubernetes-resource-gateway.js +48 -0
package/src/operations.js +112 -0
package/src/resource-model.js +203 -0
package/src/runners-ci.js +48 -0
package/src/runtime.js +196 -0
package/src/web-ui.js +40 -0
package/tests/agent-approval-controller.test.js +173 -0
package/tests/agent-context-bundles.test.js +278 -0
package/tests/agent-dispatch-controller.test.js +176 -0
package/tests/agent-mux-client.test.js +204 -0
package/tests/agent-permission-review.test.js +209 -0
package/tests/agent-resources.test.js +212 -0
package/tests/agent-stack-controller.test.js +221 -0
package/tests/agent-trigger-controller.test.js +211 -0
package/tests/deployment.test.js +395 -0
package/tests/e2e/lifecycle.test.js +117 -0
package/tests/krate.test.js +727 -0

package/docs/agents/org-memory-api-payload-examples.md ADDED Viewed

@@ -0,0 +1,333 @@
+# Org memory API payload examples
+## Purpose
+This document provides implementation-ready request and response examples for the org-scoped company brain memory vertical slice. The examples are intentionally explicit about org, namespace, commit, digest, redaction, and validation fields so API, UI, controller, and test work can share the same contract.
+## `GET /api/orgs/[org]/agents/summary`
+Response:
+```json
+{
+  "organization": "a5c",
+  "namespace": "krate-org-a5c",
+  "agents": {
+    "dispatchRuns": { "running": 2, "failed": 1, "succeeded24h": 12 },
+    "approvals": { "pending": 3 },
+    "blockedStacks": 1
+  },
+  "memory": {
+    "repository": "org-company-brain",
+    "phase": "Ready",
+    "currentCommit": "abcdef1234567890",
+    "ontologyDigest": "sha256:ontology",
+    "indexDigest": "sha256:index",
+    "importsAwaitingReview": 2,
+    "updatesAwaitingReview": 1,
+    "lastIndexedAt": "2026-05-11T08:00:00Z"
+  }
+}
+```
+## `POST /api/orgs/[org]/agents/memory/resolve-ref`
+Request for current memory:
+```json
+{
+  "memoryRepository": "org-company-brain",
+  "mode": "current",
+  "requested": "main"
+}
+```
+Request for memory at a timestamp:
+```json
+{
+  "memoryRepository": "org-company-brain",
+  "mode": "ref-at-time",
+  "requestedAt": "2026-05-09T08:00:00Z",
+  "resolutionPolicy": "latest-commit-before-or-at",
+  "requireApprovedCommit": true
+}
+```
+Response:
+```json
+{
+  "organization": "a5c",
+  "memoryRepository": "org-company-brain",
+  "mode": "ref-at-time",
+  "requestedAt": "2026-05-09T08:00:00Z",
+  "resolvedCommit": "13579bdf2468",
+  "resolvedRef": "refs/heads/main",
+  "currentCommit": "abcdef1234567890",
+  "staleBySeconds": 172800,
+  "ontologyDigest": "sha256:ontology-at-commit",
+  "indexDigest": "sha256:index-at-commit",
+  "conditions": [
+    { "type": "Resolved", "status": "True", "reason": "CommitFound" }
+  ]
+}
+```
+## `POST /api/orgs/[org]/agents/memory/query`
+Request:
+```json
+{
+  "memoryRepository": "org-company-brain",
+  "requestedRef": "main",
+  "resolvedCommit": "abcdef1234567890",
+  "query": {
+    "text": "playwright flaky checks in krate",
+    "modes": ["graph", "grep"],
+    "graph": {
+      "kinds": ["Runbook", "Decision", "Incident", "AgentPractice", "BabysitterRun"],
+      "edgeDepth": 2
+    },
+    "grep": {
+      "paths": ["runbooks/**", "babysitter/runs/**", "babysitter/retrospectives/**"],
+      "maxMatches": 25,
+      "includeLineContext": true
+    }
+  },
+  "limits": {
+    "maxBytes": 64000,
+    "maxRecords": 40
+  }
+}
+```
+Response:
+```json
+{
+  "organization": "a5c",
+  "snapshotPreview": {
+    "memoryRepository": "org-company-brain",
+    "resolvedCommit": "abcdef1234567890",
+    "queryManifestDigest": "sha256:query",
+    "selectedRecordsDigest": "sha256:records",
+    "selectedExcerptsDigest": "sha256:excerpts"
+  },
+  "records": [
+    {
+      "kind": "Runbook",
+      "id": "runbook:ci-playwright-flake",
+      "path": "runbooks/ci/playwright-flake.md",
+      "title": "Playwright flake triage",
+      "owners": ["team:platform"],
+      "digest": "sha256:record"
+    }
+  ],
+  "excerpts": [
+    {
+      "path": "babysitter/retrospectives/01KR1Z.md",
+      "lineStart": 18,
+      "lineEnd": 24,
+      "text": "Redacted bounded excerpt suitable for prompt preview.",
+      "digest": "sha256:excerpt"
+    }
+  ],
+  "redaction": { "status": "redacted", "secretPatternCount": 0 },
+  "limits": { "truncated": false, "bytes": 18340 }
+}
+```
+## `POST /api/orgs/[org]/agents/dispatch`
+Request:
+```json
+{
+  "repository": "krate",
+  "ref": "refs/heads/main",
+  "source": {
+    "kind": "manual-code-dispatch",
+    "path": "docs/agents"
+  },
+  "agentStack": "claude-code-ci-repair",
+  "task": {
+    "kind": "docs-update",
+    "prompt": "Improve the agent memory docs."
+  },
+  "memory": {
+    "repositoryRef": "org-company-brain",
+    "requestedRef": "main",
+    "queryMode": "graph-and-grep",
+    "queryText": "krate agent memory docs"
+  }
+}
+```
+Response:
+```json
+{
+  "organization": "a5c",
+  "dispatchRun": "adr-01hx",
+  "attempt": "ada-01hx-1",
+  "contextBundle": "acb-01hx",
+  "memorySnapshot": "ams-01hx",
+  "phase": "Queued",
+  "links": {
+    "runDetail": "/orgs/a5c/agents/runs/adr-01hx",
+    "repositoryRuns": "/orgs/a5c/repositories/krate/runs"
+  }
+}
+```
+## `GET /api/orgs/[org]/agents/runs/[run]`
+Response excerpt:
+```json
+{
+  "organization": "a5c",
+  "run": {
+    "name": "adr-01hx",
+    "phase": "Running",
+    "repository": "krate",
+    "agentStack": "claude-code-ci-repair"
+  },
+  "attempts": [
+    { "name": "ada-01hx-1", "phase": "Running", "agentMuxSessionId": "mux-session-123" }
+  ],
+  "contextBundle": {
+    "name": "acb-01hx",
+    "digest": "sha256:context",
+    "memorySnapshot": "ams-01hx"
+  },
+  "memorySnapshot": {
+    "name": "ams-01hx",
+    "memoryRepository": "org-company-brain",
+    "requestedRef": "main",
+    "resolvedCommit": "abcdef1234567890",
+    "queryManifestDigest": "sha256:query",
+    "selectedRecordsDigest": "sha256:records",
+    "selectedExcerptsDigest": "sha256:excerpts"
+  },
+  "artifacts": []
+}
+```
+## `POST /api/orgs/[org]/agents/memory/import-babysitter-run`
+Request:
+```json
+{
+  "source": {
+    "kind": "babysitter-run",
+    "repository": "krate",
+    "runId": "01KR1ZCPQVVPJAJDNBQHGPWZZY",
+    "sessionId": "019e-example",
+    "a5cRunPath": ".a5c/runs/01KR1ZCPQVVPJAJDNBQHGPWZZY"
+  },
+  "memoryRepository": "org-company-brain",
+  "retentionTier": "summary-only",
+  "include": {
+    "memoryMd": true,
+    "sessionSummary": true,
+    "journal": "none",
+    "taskResults": "summarized",
+    "artifactManifests": "digest-only",
+    "retrospectives": true
+  },
+  "targetPath": "babysitter/runs/01KR1ZCPQVVPJAJDNBQHGPWZZY",
+  "validationPolicy": {
+    "redactSecrets": true,
+    "detectPromptInjection": true,
+    "requireReview": true
+  }
+}
+```
+Response:
+```json
+{
+  "organization": "a5c",
+  "import": "import-01kr1z",
+  "phase": "Collecting",
+  "sourceDigest": "sha256:source",
+  "retentionTier": "summary-only",
+  "links": {
+    "detail": "/orgs/a5c/agents/memory/imports/import-01kr1z"
+  }
+}
+```
+## `GET /api/orgs/[org]/agents/memory/imports/[import]`
+Response excerpt:
+```json
+{
+  "organization": "a5c",
+  "import": {
+    "name": "import-01kr1z",
+    "phase": "AwaitingReview",
+    "retentionTier": "summary-only",
+    "sourceDigest": "sha256:source",
+    "redactionDigest": "sha256:redaction",
+    "validationReportDigest": "sha256:validation",
+    "targetBranch": "krate/memory-import/01kr1z",
+    "pullRequestRef": "a5c-ai/company-brain/124"
+  },
+  "generatedFiles": [
+    { "path": "babysitter/runs/01KR1Z/run.yaml", "digest": "sha256:run" },
+    { "path": "babysitter/sessions/2026/05/11/019e-example.md", "digest": "sha256:session" }
+  ],
+  "conditions": [
+    { "type": "SecretsRedacted", "status": "True", "reason": "NoSecretsDetected" },
+    { "type": "OntologyValid", "status": "True", "reason": "ValidationPassed" },
+    { "type": "ReviewReady", "status": "True", "reason": "PullRequestCreated" }
+  ]
+}
+```
+## Error examples
+Cross-org denial:
+```json
+{
+  "error": {
+    "code": "CROSS_ORG_REF_DENIED",
+    "message": "Referenced memory repository is not in the requested organization.",
+    "referenceKind": "AgentMemoryRepository",
+    "organization": "a5c"
+  }
+}
+```
+Missing organization route:
+```json
+{
+  "error": {
+    "code": "ORG_REQUIRED",
+    "message": "Choose an organization before opening repository memory.",
+    "path": "/api/orgs/{org}/memory"
+  }
+}
+```
+Redaction blocked import:
+```json
+{
+  "error": {
+    "code": "MEMORY_IMPORT_REDACTION_BLOCKED",
+    "message": "Import removed too much sensitive content to create a useful memory summary.",
+    "import": "import-01kr1z",
+    "condition": "RedactionTooBroad"
+  }
+}
+```

package/docs/agents/org-memory-controller-sequence-spec.md ADDED Viewed

@@ -0,0 +1,181 @@
+# Org memory controller sequence spec
+## Purpose
+This document defines the controller and API sequences for org-scoped company brain memory. It ties together `Organization`, namespace binding, memory repository bootstrap, memory context query, historical refs, Agent Mux dispatch, `.a5c` import, and memory update review.
+## Sequence principles
+- Resolve org before any resource lookup that can cross tenant boundaries.
+- Use the org namespace for all ServiceAccount, Secret, ConfigMap, runner, and workspace side effects.
+- Resolve Git refs to commits before context assembly or memory import review.
+- Store digests for every selected memory source, generated import file, validation report, and update patch.
+- Keep Agent Mux execution behind Krate admission; Agent Mux never decides org access.
+- Treat company brain memory as untrusted context until redacted and rendered with provenance.
+## Org bootstrap sequence
+```text
+admin creates Organization
+  -> org-controller validates slug and namespaceName
+  -> org-controller creates or verifies namespace
+  -> org-controller writes OrgNamespaceBinding
+  -> RBAC controller creates org admin RoleBindings
+  -> memory controller creates optional AgentMemoryRepository skeleton
+  -> UI shows org dashboard and empty repository/agents/memory states
+```
+Required status conditions:
+- `NamespaceReady`;
+- `OrgRbacReady`;
+- `DefaultPoliciesReady`;
+- `MemoryRepositoryReady` when memory bootstrap is enabled;
+- `Ready`.
+## Memory repository bootstrap sequence
+```text
+admin creates AgentMemoryRepository
+  -> memory controller verifies organizationRef and namespace
+  -> memory controller creates/adopts internal Git repo
+  -> memory controller commits default layout and ontology when empty
+  -> indexer builds graph/search/ontology reports
+  -> status records currentCommit, ontologyDigest, indexDigest
+  -> UI enables /orgs/[org]/agents/memory
+```
+Failure handling:
+- Git repo unavailable: `Ready=False`, `reason=MemoryRepositoryUnavailable`.
+- Layout invalid: `Ready=False`, `reason=MemoryLayoutInvalid`.
+- Ontology invalid: reads may be degraded, update merges blocked.
+## Dispatch with current memory sequence
+```text
+user opens /orgs/[org]/repositories/[repo]/code
+  -> UI requests dispatch preview
+  -> API resolves org, repo, stack, memory source policy
+  -> permission review checks repo, stack, runner, secrets, config, memory
+  -> memory controller resolves default branch to commit
+  -> context assembler queries graph/frontmatter/grep sources
+  -> redactor bounds and redacts results
+  -> AgentMemorySnapshot and AgentMemoryQuery are created
+  -> AgentContextBundle stores memory snapshot digests
+  -> AgentDispatchRun and AgentDispatchAttempt are created
+  -> Agent Mux launch receives admitted tool/session options
+  -> run detail streams events and shows memory provenance
+```
+Idempotency key:
+```text
+org + repository + source event + stack generation + memory resolved commit + context digest + attempt number
+```
+## Dispatch with historical memory sequence
+```text
+user selects memory from two days ago
+  -> UI converts relative input to absolute timestamp
+  -> API calls resolve-ref with mode ref-at-time
+  -> memory controller selects latest approved commit <= timestamp
+  -> UI shows resolved commit, age, and diff summary against current
+  -> context assembly uses historical commit for all memory queries
+  -> memory tools are scoped to historical AgentMemorySnapshot
+  -> run retry reuses same snapshot unless user refreshes memory
+```
+Blocking cases:
+- no commit exists before timestamp;
+- commit exists but failed ontology validation and policy requires valid ontology;
+- selected stack requires current-only memory;
+- actor lacks `memory.snapshots.diff` for preview diff.
+## Agent memory tool call sequence
+```text
+agent calls memory.docs.grep through Agent Mux
+  -> Agent Mux forwards tool request to Krate memory tool gateway
+  -> gateway resolves dispatch attempt and AgentMemorySnapshot
+  -> gateway checks tool grant and snapshot path/kind scope
+  -> memory query runs against pinned commit
+  -> result is redacted, bounded, digested, and audited
+  -> response returns excerpts with source paths and commit
+```
+The gateway must reject tool calls that ask for current branch state when the run is pinned to a historical snapshot unless the user explicitly refreshed context.
+## Babysitter run import sequence
+```text
+user chooses Import run memory from run detail
+  -> API creates AgentRunMemoryImport in org namespace
+  -> import controller verifies run/session/repo org ownership
+  -> import controller collects admitted MEMORY.md, session summary, journal, task, artifact metadata
+  -> source digests are computed
+  -> content is redacted and prompt-injection scanned
+  -> normalized Markdown/YAML files are generated
+  -> ontology/frontmatter/path/owner validation runs
+  -> memory update branch/PR is created
+  -> reviewer approves and merges
+  -> memory index rebuilds
+  -> source run links to merged memory commit
+```
+Idempotency key:
+```text
+organizationRef + source run ID + source digest + retention tier + targetPath
+```
+## Memory update review sequence
+```text
+agent proposes memory update artifact
+  -> artifact controller records digest and source run
+  -> memory controller creates AgentMemoryUpdate
+  -> validation checks ontology, frontmatter, owners, edges, paths, redaction
+  -> reviewer sees diff, source evidence, and validation report
+  -> approval controller records decision
+  -> memory controller merges or rejects update
+  -> memory repository currentCommit and indexes update
+  -> audit links update to source run/session/actor
+```
+Memory updates must not change the context snapshot of the run that proposed them. They only affect future dispatches or explicit refreshed retries.
+## Cross-org denial sequence
+```text
+request references org a5c and memory repo in org other
+  -> API resolves both refs
+  -> admission detects org mismatch
+  -> checks OrgSharingPolicy
+  -> no policy found
+  -> returns CROSS_ORG_REF_DENIED
+  -> audit records denied kind and actor without leaking private target details
+```
+## Watch and event sequence
+Org-scoped watch streams should publish:
+- `AgentMemoryRepository.status` changes;
+- `AgentMemorySnapshot` creation;
+- `AgentMemoryQuery` completion;
+- `AgentRunMemoryImport` phase/condition updates;
+- `AgentMemoryUpdate` review and merge events;
+- `AgentDispatchRun` memory provenance changes.
+Watch payloads must include org and namespace and must be filtered before streaming to the client.
+## Acceptance criteria
+- Each sequence has a clear org resolution step before side effects.
+- Every Git ref is resolved to a commit before context or import review.
+- Every memory or run import write path produces a reviewable update with validation status.
+- Cross-org references fail closed and produce non-leaky errors.
+- Watch streams can update UI without polling and without cross-org leakage.

package/docs/agents/org-memory-e2e-fixture-plan.md ADDED Viewed

@@ -0,0 +1,161 @@
+# Org memory E2E fixture plan
+## Purpose
+This document defines deterministic fixtures for testing the org-scoped memory vertical slice. The fixtures should let future implementation prove org isolation, memory snapshotting, run import, and UI visibility without requiring a live external GitHub organization.
+## Fixture topology
+```text
+Cluster
+  -> Organization a5c / namespace krate-org-a5c
+    -> Repository krate
+    -> AgentStack claude-code-ci-repair
+    -> AgentMemoryRepository org-company-brain
+    -> AgentMemorySource krate-ci-memory
+    -> RunnerPool trusted-linux
+  -> Organization other / namespace krate-org-other
+    -> Repository krate
+    -> AgentMemoryRepository other-company-brain
+```
+The duplicate repository slug is intentional. It tests org-aware routing and legacy ambiguity handling.
+## Memory repository fixture
+`org-company-brain` initial tree:
+```text
+.company-brain/
+  README.md
+  babysitter/MEMORY.md
+  ontology/node-kinds.yaml
+  ontology/edge-kinds.yaml
+  runbooks/ci/playwright-flake.md
+  repositories/krate.md
+  babysitter/retrospectives/seed.md
+  indexes/ontology-report.json
+```
+`runbooks/ci/playwright-flake.md` frontmatter:
+```yaml
+id: runbook:ci-playwright-flake
+kind: Runbook
+title: Playwright flake triage
+status: approved
+owners: [team:platform]
+repoRefs: [repository:krate]
+tags: [ci, playwright]
+updatedAt: 2026-05-11T08:00:00Z
+```
+## `.a5c` run fixture
+Fixture path:
+```text
+.a5c/runs/01KR-FIXTURE/
+  run.json
+  journal/000001.json
+  journal/000002.json
+  tasks/task-1/task.json
+  tasks/task-1/result.json
+```
+Minimum `run.json` fields:
+```json
+{
+  "id": "01KR-FIXTURE",
+  "organizationRef": "a5c",
+  "repository": "krate",
+  "process": "docs-memory-fixture",
+  "status": "completed",
+  "startedAt": "2026-05-11T08:00:00Z",
+  "completedAt": "2026-05-11T08:15:00Z"
+}
+```
+Journal fixture should include one harmless event and one secret-like value to prove redaction:
+```json
+{
+  "sequence": 2,
+  "eventType": "task.output",
+  "timestamp": "2026-05-11T08:05:00Z",
+  "message": "Token-like content sk-test-fixture-redact-me must be redacted."
+}
+```
+## Seed resources
+Required resources:
+- `Organization/a5c`;
+- `OrgNamespaceBinding/a5c`;
+- `Organization/other`;
+- `OrgNamespaceBinding/other`;
+- `Repository/krate` in both orgs;
+- `AgentStack/claude-code-ci-repair` in `a5c`;
+- `AgentMemoryRepository/org-company-brain` in `a5c`;
+- `AgentMemorySource/krate-ci-memory` in `a5c`;
+- `AgentServiceAccount/agent-claude-code-ci-repair` in `a5c`;
+- `RunnerPool/trusted-linux` in `a5c`.
+## Test cases
+### Org route ambiguity
+1. Request legacy `/repositories/krate/code`.
+2. Fixture has `krate` in `a5c` and `other`.
+3. Expect an explicit org picker or `ORG_REQUIRED`, not silent selection.
+### Memory query preview
+1. Request `/api/orgs/a5c/agents/memory/query` for `playwright flaky checks`.
+2. Expect `runbook:ci-playwright-flake` and no `other` org records.
+3. Expect resolved commit and digests.
+### Manual dispatch with memory
+1. Dispatch from `/orgs/a5c/repositories/krate/code`.
+2. Expect `AgentMemorySnapshot`, `AgentContextBundle`, and `AgentDispatchRun`.
+3. Expect run detail to show memory commit and selected records.
+### Summary-only run import
+1. Import `.a5c/runs/01KR-FIXTURE` with `summary-only` tier.
+2. Expect secret-like journal content not present in generated memory.
+3. Expect `SecretsRedacted=True`, `OntologyValid=True`, `ReviewReady=True`.
+4. Expect generated run/session summary files and artifact manifest digest only.
+### Cross-org memory denial
+1. Dispatch in `a5c` requests `other-company-brain`.
+2. Expect `CROSS_ORG_REF_DENIED`.
+3. Expect no content from `other` in preview, context, transcript, tool output, or audit details.
+### Historical memory pin
+1. Resolve `refAt` before a fixture update commit.
+2. Dispatch with resolved historical commit.
+3. Update current memory.
+4. Retry run.
+5. Expect retry to use original commit and show stale warning.
+## Assertions
+- Every created resource includes `organizationRef`.
+- Every UI route includes `/orgs/a5c` or `/orgs/other`.
+- Every memory source includes resolved commit and digest fields.
+- Every redacted import omits raw secret-like values.
+- Every cross-org denial emits an audit event with org and denied kind but no private target content.
+## Out of scope for fixture
+- External GitHub API calls.
+- Real Agent Mux runtime execution.
+- Raw artifact byte retention.
+- Cross-org sharing policy allow path.
+- Vector search.