@jterrats/open-orchestra 1.2.0 → 1.2.2

package/docs/e2e-test-batteries.md

@@ -16,25 +16,34 @@ entry points a user or CI runner actually executes.
   flows.
 - External provider, GitHub, Sonar, or network-dependent paths must be opt-in
   and must report skipped or deferred evidence when offline.
+- Local provider smokes must default to mock or loopback/private endpoints,
+  reject public internet egress unless a trusted-provider policy explicitly
+  allows it, and record redacted provider provenance instead of credentials,
+  raw prompts, hostnames, or ports.
+- Stubbed provider/MCP batteries are contract evidence only. They may block PRs
+  when CLI/API/workflow contracts regress, but they must not satisfy
+  real-provider acceptance criteria for hosted auth, latency, rate limits,
+  provider-side failures, or production model behavior.
 - A release can ship only when P0 batteries pass or a release-manager accepted
   risk records the unavailable environment and compensating evidence.
 
 ## Product Journey Coverage Matrix
 
-| Journey                         | Primary surface              | Environment model                                                      | Expected result                                                                                                 | Evidence strategy                                                                                                   | Current battery                           | Child story recommendation            |
-| ------------------------------- | ---------------------------- | ---------------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------- | ----------------------------------------- | ------------------------------------- |
-| First workspace setup           | CLI                          | Local `/tmp` workspace, source and packaged binary                     | User can initialize a project, preserve existing files, and see target runtime guidance                         | Assert exit codes, generated files, managed block boundaries, package version, and human/JSON output                | Local and installed CLI onboarding        | GH-533-A source/package setup parity  |
-| Runtime-specific guidance regen | CLI + generated docs         | Simulated Codex, Claude, Cursor, VS Code, Windsurf, generic workspaces | `init --force` regenerates missing managed guidance without mixing target-specific instructions                 | Filesystem diffs plus QA coverage JSON proving regenerated artifacts map back to acceptance criteria                | Init refresh environments                 | GH-533-B runtime regen matrix         |
-| Workflow delivery lifecycle     | CLI workflow                 | Isolated local workspace                                               | Task, estimate, phase handoffs, gate pause/resume, QA failback, evidence, and release readiness work end to end | JSON event stream, handoff artifacts, review/evidence records, and release-readiness before/after assertions        | Workflow lifecycle CLI                    | GH-533-C workflow evidence lifecycle  |
-| Runtime delegation              | CLI runtime actions          | Local runtime queue with detached sessions                             | Manual and multi-squad delegation queue safely, preserve parent availability, and reconcile lifecycle state     | Spawn request artifacts, lifecycle commands, runtime session lists, queue state, and completion events              | Runtime manual queue, multi-squad runtime | GH-533-D runtime delegation contracts |
-| Web console operator flow       | Browser app + API            | Local web server and persisted test workspace                          | Operator can inspect tasks, costs, providers, delegation, workflow progress, recovery, and artifacts            | Playwright visible assertions, API persistence checks, responsive/keyboard coverage, screenshots/traces on failure  | Browser console                           | GH-533-E web console operator journey |
-| Chat and provider flow          | Browser app + API + provider | Stubbed provider by default, opt-in local provider                     | Chat sends scoped messages, streams usable status, records provider provenance, and handles failures safely     | API response assertions, SSE/event trace, DOM state, provider request fixture, redacted logs                        | Browser console, provider opt-in          | GH-533-F chat provider E2E            |
-| Public docs and site discovery  | Browser site                 | Local static/site build                                                | Users can find docs, navigate core concepts, inspect architecture, and read mobile-safe pages                   | Playwright navigation, search, docs catalog, responsive text-fit, and no raw GitHub dead-end assertions             | Public site, docs/site content source     | GH-533-G docs discovery E2E           |
-| Security-sensitive operations   | CLI + API + browser          | Local sandbox with hostile fixtures                                    | Unsafe file paths, shell patterns, secrets, stack traces, and telemetry leaks are blocked or redacted           | Hostile fixture assertions, redacted command/API evidence, browser-visible safe errors                              | Security-sensitive operations             | GH-533-H security boundary E2E        |
-| Packaged renderer behavior      | CLI package path             | Built package artifacts                                                | Diagram/report commands use packaged paths and produce user-safe output without stale source-only assumptions   | Compiled command output, package file list, XML/SVG/HTML/source invariant checks, and explicit missing messaging    | Renderer packaged paths                   | GH-540 packaged artifact E2E          |
-| Benchmark/dashboard reporting   | CLI metrics + dashboard JSON | Isolated workflow telemetry with completed and measurable stories       | Velocity, calibration, and dashboard distinguish completed stories from measurable actuals without fake duration | CLI JSON assertions, dashboard metric assertions, actual source checks, and calibration sample-size checks           | Benchmark dashboard duration smoke        | GH-541 benchmark dashboard E2E        |
-| MCP scoped OAuth diagnostics    | CLI + web API                | Runtime-scoped MCP config in an isolated workspace                      | CLI and web API report matching runtime OAuth state, redact secrets, and hide cross-workspace MCP config        | CLI/API JSON comparisons, redaction assertions, scoped workspace config checks                                      | MCP scoped OAuth smoke                    | GH-542 MCP OAuth E2E                  |
-| Release candidate readiness     | CLI + CI artifacts           | Local dry run, CI/self-hosted runner                                   | Candidate package contents, version/tag policy, release matrix, and quality gates are release-ready             | `npm pack --dry-run`, release check JSON, CI run links/logs, and accepted-risk records for unavailable environments | Package release dry run, source quality   | GH-533-J release candidate E2E        |
+| Journey                         | Primary surface              | Environment model                                                      | Expected result                                                                                                                          | Evidence strategy                                                                                                             | Current battery                           | Child story recommendation            |
+| ------------------------------- | ---------------------------- | ---------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------- | ------------------------------------- |
+| First workspace setup           | CLI                          | Local `/tmp` workspace, source and packaged binary                     | User can initialize a project, preserve existing files, and see target runtime guidance                                                  | Assert exit codes, generated files, managed block boundaries, package version, and human/JSON output                          | Local and installed CLI onboarding        | GH-533-A source/package setup parity  |
+| Runtime-specific guidance regen | CLI + generated docs         | Simulated Codex, Claude, Cursor, VS Code, Windsurf, generic workspaces | `init --force` regenerates missing managed guidance without mixing target-specific instructions                                          | Filesystem diffs plus QA coverage JSON proving regenerated artifacts map back to acceptance criteria                          | Init refresh environments                 | GH-533-B runtime regen matrix         |
+| Workflow delivery lifecycle     | CLI workflow                 | Isolated local workspace                                               | Task, estimate, phase handoffs, gate pause/resume, QA failback, evidence, and release readiness work end to end                          | JSON event stream, handoff artifacts, review/evidence records, and release-readiness before/after assertions                  | Workflow lifecycle CLI                    | GH-533-C workflow evidence lifecycle  |
+| Runtime delegation              | CLI runtime actions          | Local runtime queue with detached sessions                             | Manual and multi-squad delegation queue safely, preserve parent availability, and reconcile lifecycle state                              | Spawn request artifacts, lifecycle commands, runtime session lists, queue state, and completion events                        | Runtime manual queue, multi-squad runtime | GH-533-D runtime delegation contracts |
+| Web console operator flow       | Browser app + API            | Local web server and persisted test workspace                          | Operator can inspect tasks, costs, providers, delegation, workflow progress, recovery, and artifacts                                     | Playwright visible assertions, API persistence checks, responsive/keyboard coverage, screenshots/traces on failure            | Browser console                           | GH-533-E web console operator journey |
+| Chat and provider flow          | Browser app + API + provider | Stubbed provider by default, opt-in local provider                     | Chat sends scoped messages, streams usable status, records provider provenance, and handles failures safely                              | API response assertions, SSE/event trace, DOM state, provider request fixture, redacted logs                                  | Browser console, provider opt-in          | GH-533-F chat provider E2E            |
+| Stubbed provider + MCP contract | CLI + web API + workflow     | Built-in fake provider and scoped MCP config in an isolated workspace  | PR-safe provider/MCP contract proves fake-provider routing, scoped MCP status, redacted evidence, and hosted provider fail-closed policy | CLI/API JSON comparisons, workflow executor provenance, redacted contract evidence report, hosted-provider negative assertion | Stubbed provider MCP contract             | GH-551 GH-528A PR-safe contract E2E   |
+| Public docs and site discovery  | Browser site                 | Local static/site build                                                | Users can find docs, navigate core concepts, inspect architecture, and read mobile-safe pages                                            | Playwright navigation, search, docs catalog, responsive text-fit, and no raw GitHub dead-end assertions                       | Public site, docs/site content source     | GH-533-G docs discovery E2E           |
+| Security-sensitive operations   | CLI + API + browser          | Local sandbox with hostile fixtures                                    | Unsafe file paths, shell patterns, secrets, stack traces, and telemetry leaks are blocked or redacted                                    | Hostile fixture assertions, redacted command/API evidence, browser-visible safe errors                                        | Security-sensitive operations             | GH-533-H security boundary E2E        |
+| Packaged renderer behavior      | CLI package path             | Built package artifacts                                                | Diagram/report commands use packaged paths and produce user-safe output without stale source-only assumptions                            | Compiled command output, package file list, XML/SVG/HTML/source invariant checks, and explicit missing messaging              | Renderer packaged paths                   | GH-540 packaged artifact E2E          |
+| Benchmark/dashboard reporting   | CLI metrics + dashboard JSON | Isolated workflow telemetry with completed and measurable stories      | Velocity, calibration, and dashboard distinguish completed stories from measurable actuals without fake duration                         | CLI JSON assertions, dashboard metric assertions, actual source checks, and calibration sample-size checks                    | Benchmark dashboard duration smoke        | GH-541 benchmark dashboard E2E        |
+| MCP scoped OAuth diagnostics    | CLI + web API                | Runtime-scoped MCP config in an isolated workspace                     | CLI and web API report matching runtime OAuth state, redact secrets, and hide cross-workspace MCP config                                 | CLI/API JSON comparisons, redaction assertions, scoped workspace config checks                                                | MCP scoped OAuth smoke                    | GH-542 MCP OAuth E2E                  |
+| Release candidate readiness     | CLI + CI artifacts           | Local dry run, CI/self-hosted runner                                   | Candidate package contents, version/tag policy, release matrix, and quality gates are release-ready                                      | `npm pack --dry-run`, release check JSON, CI run links/logs, and accepted-risk records for unavailable environments           | Package release dry run, source quality   | GH-533-J release candidate E2E        |
 
 ## Regeneration Plan
 
@@ -59,39 +68,40 @@ clear skip/deferred signal and owner.
 
 ## P0 Release-Blocking Batteries
 
-| Battery                   | Scope                                                                                                | Command                                                             | Minimum Assertions                                                                                                                                                                                                                                                              | Evidence                                                           |
-| ------------------------- | ---------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------ |
-| Source quality            | Static checks, build, unit tests, workflow validation, secret scan, security audit                   | `npm run ci:quality`                                                | exit code 0, no leaks, no audit blockers, workflow valid                                                                                                                                                                                                                        | command log                                                        |
-| Local CLI onboarding      | Current source CLI in `/tmp` workspaces                                                              | `ORCHESTRA_NODE_SCRIPT=$PWD/bin/orchestra.js npm run test:e2e:init` | `--version`, `init`, `status`, `validate`, first-use task, handoff, evidence, release readiness                                                                                                                                                                                 | stdout/stderr, JSON output, filesystem assertions                  |
-| Installed CLI onboarding  | Installed or packaged CLI in `/tmp` workspaces                                                       | `npm run test:e2e:init` after installing the candidate package      | same assertions as local CLI onboarding, proving the packaged binary matches source behavior                                                                                                                                                                                    | stdout/stderr, JSON output, filesystem assertions, package version |
-| Browser console           | Web console task, cost, provider, delegation, recovery, evidence, workflow, accessibility, artifacts | `npm run test:e2e`                                                  | visible state, API persistence, evidence attachment, lifecycle transitions, responsive/keyboard behavior                                                                                                                                                                        | Playwright report, screenshots/traces on failure                   |
-| Public site               | Documentation/site navigation, docs catalog, architecture viewer, mobile fit                         | `npm run test:e2e`                                                  | navigation order, local docs catalog search, no raw GitHub redirect for docs, mobile content fit                                                                                                                                                                                | Playwright report                                                  |
-| Runtime manual queue      | Manual runtime delegation in a `/tmp` workspace                                                      | `npm run test:e2e:runtime`                                          | two active sessions, third manual `spawn-request` materializes `queued`, artifact includes lifecycle commands, `runtime sessions` lists queued session                                                                                                                          | stdout/stderr, JSON output, artifact content                       |
-| Init refresh environments | Simulated generic, Codex, Claude, Cursor, VS Code/GitHub Copilot, and Windsurf workspaces            | `npm run test:e2e:init`                                             | missing runtime guidance files regenerate on `init --force`, user content is preserved, managed blocks/frontmatter are updated only inside managed ranges, target-specific metadata excludes wrong-target content, generated-artifact evidence maps back to acceptance criteria | filesystem diff assertions, QA coverage JSON                       |
-| Workflow lifecycle CLI    | CLI workflow run, gate, resume, QA failback, release readiness                                       | `node --test e2e/workflow-lifecycle-cli.test.js`                    | task phases create handoffs, blocked QA routes back, routine gate resumes immediately, release readiness maps acceptance to evidence                                                                                                                                            | JSON output, events, handoffs                                      |
-| Renderer packaged paths   | Diagram lint command, artifact previews, and report renderer package contracts                       | `npm run build && node --test test/renderer-compiled-path.test.js e2e/packaged-renderer-smoke.test.js` | compiled CLI path emits Mermaid install guidance without stack traces, candidate package includes compiled renderer modules, previews preserve draw.io/Mermaid/ERD/TSX invariants, report render command absence is explicit | stdout/stderr, JSON output, package file list, XML/SVG/HTML/source invariant checks |
+| Battery                   | Scope                                                                                                | Command                                                                                                | Minimum Assertions                                                                                                                                                                                                                                                              | Evidence                                                                                                                            |
+| ------------------------- | ---------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------- |
+| Source quality            | Static checks, build, unit tests, workflow validation, secret scan, security audit                   | `npm run ci:quality`                                                                                   | exit code 0, no leaks, no audit blockers, workflow valid                                                                                                                                                                                                                        | command log                                                                                                                         |
+| Local CLI onboarding      | Current source CLI in `/tmp` workspaces                                                              | `ORCHESTRA_NODE_SCRIPT=$PWD/bin/orchestra.js npm run test:e2e:init`                                    | `--version`, `init`, `status`, `validate`, first-use task, handoff, evidence, release readiness                                                                                                                                                                                 | stdout/stderr, JSON output, filesystem assertions                                                                                   |
+| Installed CLI onboarding  | Installed or packaged CLI in `/tmp` workspaces                                                       | `npm run test:e2e:init` after installing the candidate package                                         | same assertions as local CLI onboarding, proving the packaged binary matches source behavior                                                                                                                                                                                    | stdout/stderr, JSON output, filesystem assertions, package version                                                                  |
+| Browser console           | Web console task, cost, provider, delegation, recovery, evidence, workflow, accessibility, artifacts | `npm run test:e2e`                                                                                     | visible state, API persistence, evidence attachment, lifecycle transitions, responsive/keyboard behavior                                                                                                                                                                        | Playwright report, screenshots/traces on failure                                                                                    |
+| Public site               | Documentation/site navigation, docs catalog, architecture viewer, mobile fit                         | `npm run test:e2e`                                                                                     | navigation order, local docs catalog search, no raw GitHub redirect for docs, mobile content fit                                                                                                                                                                                | Playwright report                                                                                                                   |
+| Runtime manual queue      | Manual runtime delegation in a `/tmp` workspace                                                      | `npm run test:e2e:runtime`                                                                             | two active sessions, third manual `spawn-request` materializes `queued`, artifact includes lifecycle commands, `runtime sessions` lists queued session                                                                                                                          | stdout/stderr, JSON output, artifact content                                                                                        |
+| Init refresh environments | Simulated generic, Codex, Claude, Cursor, VS Code/GitHub Copilot, and Windsurf workspaces            | `npm run test:e2e:init`                                                                                | missing runtime guidance files regenerate on `init --force`, user content is preserved, managed blocks/frontmatter are updated only inside managed ranges, target-specific metadata excludes wrong-target content, generated-artifact evidence maps back to acceptance criteria | filesystem diff assertions, QA coverage JSON                                                                                        |
+| Workflow lifecycle CLI    | CLI workflow run, gate, resume, QA failback, release readiness                                       | `node --test e2e/workflow-lifecycle-cli.test.js`                                                       | task phases create handoffs, blocked QA routes back, routine gate resumes immediately, release readiness maps acceptance to evidence                                                                                                                                            | JSON output, events, handoffs                                                                                                       |
+| Renderer packaged paths   | Diagram lint command, artifact previews, and report renderer package contracts                       | `npm run build && node --test test/renderer-compiled-path.test.js e2e/packaged-renderer-smoke.test.js` | compiled CLI path emits Mermaid install guidance without stack traces, candidate package includes compiled renderer modules, previews preserve draw.io/Mermaid/ERD/TSX invariants, report render command absence is explicit                                                    | stdout/stderr, JSON output, package file list, XML/SVG/HTML/source invariant checks                                                 |
+| Stubbed provider MCP      | Built-in fake provider, scoped MCP fixture, provider/MCP web API status, and contract evidence       | `npm run test:e2e:init` or `npm run build && node --test e2e/stubbed-provider-mcp-contract.test.js`    | fake provider routing is visible through CLI/API, scoped MCP CLI/API status matches, hosted provider execution fails before direct provider API use, evidence is redacted and labeled contract evidence, and no hosted provider secret is required                              | CLI/API JSON output, workflow events, `.agent-workflow/evidence/*-report.md`, `reports/stubbed-provider-mcp-contract-evidence.json` |
 
 ## P1 High-Risk Regression Batteries
 
-| Battery                        | Scope                                                                 | Command                                                               | Minimum Assertions                                                                                                                                                     | Evidence                                                     |
-| ------------------------------ | --------------------------------------------------------------------- | --------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------ |
-| Multi-squad runtime            | Parallel squad delegation with queue and threshold policy             | `npm run test:e2e:runtime`                                            | independent sessions, non-blocking parent, queued sessions do not fall back to parent, completion order reconciles                                                     | JSON output, lifecycle events                                |
-| Acceptance evidence            | CLI, API, browser, and deferred integration evidence                  | `node --test e2e/acceptance-evidence.test.js`                         | evidence maps to named acceptance criteria, deferred external validation requires owner and rationale                                                                  | evidence artifacts                                           |
-| Recovery and repair            | Interrupted runs, stale locks, failed provider phases                 | `node --test e2e/recovery-cli.test.js` plus browser recovery coverage | recovery detects issue, repair requires confirmation, repaired state is observable                                                                                     | JSON output, before/after state                              |
-| Docs/site content source       | Site content generated from docs and manifest                         | `npm run site:build && npm run test:e2e -- --grep docs`               | docs render as human-friendly catalog, no markdown-only dead ends, search works                                                                                        | Playwright report                                            |
-| Security-sensitive operations  | File paths, shell execution, web writes, secrets, telemetry redaction | `npm run test:e2e:security`                                           | path traversal blocked, unsafe writes rejected, secret-like data redacted, no raw stack traces                                                                         | command/API evidence                                         |
-| Ollama provider-backed runtime | Local OpenAI-compatible Ollama provider route in a `/tmp` workspace   | `npm run test:e2e:runtime:ollama`                                     | `model connect --provider ollama`, provider-backed developer phase, OpenAI-compatible request shape, provider provenance, no runtime subagent credentials in artifacts | stdout/stderr, JSON output, mock provider request, event log |
+| Battery                        | Scope                                                                 | Command                                                                 | Minimum Assertions                                                                                                                                                     | Evidence                                                     |
+| ------------------------------ | --------------------------------------------------------------------- | ----------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------ |
+| Multi-squad runtime            | Parallel squad delegation with queue and threshold policy             | `npm run test:e2e:runtime`                                              | independent sessions, non-blocking parent, queued sessions do not fall back to parent, completion order reconciles                                                     | JSON output, lifecycle events                                |
+| Acceptance evidence            | CLI, API, browser, and deferred integration evidence                  | `node --test e2e/acceptance-evidence.test.js`                           | evidence maps to named acceptance criteria, deferred external validation requires owner and rationale                                                                  | evidence artifacts                                           |
+| Recovery and repair            | Interrupted runs, stale locks, failed provider phases                 | `node --test e2e/recovery-cli.test.js` plus browser recovery coverage   | recovery detects issue, repair requires confirmation, repaired state is observable                                                                                     | JSON output, before/after state                              |
+| Docs/site content source       | Site content generated from docs and manifest                         | `npm run site:build && npm run test:e2e -- --grep docs`                 | docs render as human-friendly catalog, no markdown-only dead ends, search works                                                                                        | Playwright report                                            |
+| Security-sensitive operations  | File paths, shell execution, web writes, secrets, telemetry redaction | `npm run test:e2e:security`                                             | path traversal blocked, unsafe writes rejected, secret-like data redacted, no raw stack traces                                                                         | command/API evidence                                         |
+| Ollama provider-backed runtime | Local OpenAI-compatible Ollama provider route in a `/tmp` workspace   | `npm run test:e2e:runtime:ollama`                                       | `model connect --provider ollama`, provider-backed developer phase, OpenAI-compatible request shape, provider provenance, no runtime subagent credentials in artifacts | stdout/stderr, JSON output, mock provider request, event log |
 | Benchmark dashboard duration   | Benchmark-derived velocity, calibration, and delivery dashboard JSON  | `npm run build && node --test e2e/benchmark-dashboard-duration.test.js` | completed stories are counted separately from stories with actual duration, completed-without-duration is visible, calibration sample size excludes null actuals       | CLI JSON output, dashboard JSON, calibration JSON            |
 | MCP scoped OAuth smoke         | Runtime-scoped MCP integration status through CLI and web API         | `npm run build && node --test e2e/mcp-scoped-oauth-smoke.test.js`       | CLI and web API agree for `--runtime claude-cli`, diagnostics redact OAuth/API-key material, cross-workspace MCP config is not exposed                                 | CLI/API JSON output, scoped config fixture, redaction checks |
 
 ## P2 Extended Confidence Batteries
 
-| Battery                    | Scope                                                                                               | Command                                                       | Minimum Assertions                                                                                                                                  | Evidence                     |
-| -------------------------- | --------------------------------------------------------------------------------------------------- | ------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------------- |
-| Tracker and GitHub sync    | Issue import/export and close readiness                                                             | opt-in CI job with network credentials                        | labels, comments, close gate, release readiness, no secret exposure                                                                                 | sanitized logs               |
-| Sonar quality loop         | Local or remote Sonar import and release gate mapping                                               | configured Sonar workflow or local compose job                | insights imported, release readiness reflects quality gate, unavailable token is explicit                                                           | artifact import report       |
-| Provider-backed delegation | OpenAI, Anthropic, Gemini, Ollama, fake/local provider-backed routes plus runtime-native separation | opt-in provider E2E plus focused wrapper/unit coverage        | registry routing, explicit direct API policy, forbidden fallback, budget and scheduler blocks, redacted evidence, no silent runtime-native fallback | redacted provider provenance |
-| Package release dry run    | npm package contents and release check                                                              | `npm pack --dry-run --json && orchestra release check --json` | generated/private state excluded, version/tag policy valid, release readiness complete                                                              | package list, release report |
+| Battery                    | Scope                                                                                               | Command                                                       | Minimum Assertions                                                                                                                                                                                            | Evidence                     |
+| -------------------------- | --------------------------------------------------------------------------------------------------- | ------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------------- |
+| Tracker and GitHub sync    | Issue import/export and close readiness                                                             | opt-in CI job with network credentials                        | labels, comments, close gate, release readiness, no secret exposure                                                                                                                                           | sanitized logs               |
+| Sonar quality loop         | Local or remote Sonar import and release gate mapping                                               | configured Sonar workflow or local compose job                | insights imported, release readiness reflects quality gate, unavailable token is explicit                                                                                                                     | artifact import report       |
+| Provider-backed delegation | OpenAI, Anthropic, Gemini, Ollama, fake/local provider-backed routes plus runtime-native separation | opt-in provider E2E plus focused wrapper/unit coverage        | registry routing, explicit direct API policy, forbidden fallback, local-provider public egress rejection, timeout handling, budget and scheduler blocks, redacted evidence, no silent runtime-native fallback | redacted provider provenance |
+| Package release dry run    | npm package contents and release check                                                              | `npm pack --dry-run --json && orchestra release check --json` | generated/private state excluded, version/tag policy valid, release readiness complete                                                                                                                        | package list, release report |
 
 ## Required `/tmp` Fixture Patterns
 
@@ -122,7 +132,9 @@ the packaging/install path is wrong.
 3. Add `e2e/workflow-lifecycle-cli.test.js` for workflow run, gate, failback,
    resume, and release readiness.
 4. Add `e2e/runtime-multi-squad.test.js` for async background squad behavior.
-5. Add focused security and acceptance-evidence E2E only where unit tests cannot
+5. Add `e2e/stubbed-provider-mcp-contract.test.js` for PR-safe provider/MCP
+   contract evidence that cannot be confused with real-provider evidence.
+6. Add focused security and acceptance-evidence E2E only where unit tests cannot
    prove the user-visible contract.
 
 ## Executable Child Story Recommendations
@@ -138,8 +150,9 @@ the packaging/install path is wrong.
 | GH-533-G | Docs discovery E2E           | Split docs/site grep coverage into catalog, search, architecture, and mobile scenarios                    | Users can find docs without raw repository dead ends, and mobile pages have no clipping or overlap                                  |
 | GH-533-H | Security boundary E2E        | Add hostile fixture coverage for paths, shell-like input, secrets, telemetry, and stack traces            | Unsafe operations fail closed and all user-facing/API evidence is redacted                                                          |
 | GH-540   | Packaged artifact E2E        | Promote compiled renderer/package assertions into a package-candidate smoke                               | Packaged commands do not depend on source-only paths and produce inspectable artifacts or explicit unavailable messages             |
-| GH-541   | Benchmark dashboard E2E      | Add velocity, calibration, and dashboard JSON assertions for completed stories without measured duration   | Reports count completed work without inventing duration and calibration uses only measurable actuals                               |
-| GH-542   | MCP OAuth scoped E2E         | Add CLI/API status parity assertions for runtime-scoped MCP OAuth diagnostics                              | Scoped OAuth status is consistent across CLI/API and diagnostics stay redacted without cross-workspace leakage                     |
+| GH-541   | Benchmark dashboard E2E      | Add velocity, calibration, and dashboard JSON assertions for completed stories without measured duration  | Reports count completed work without inventing duration and calibration uses only measurable actuals                                |
+| GH-542   | MCP OAuth scoped E2E         | Add CLI/API status parity assertions for runtime-scoped MCP OAuth diagnostics                             | Scoped OAuth status is consistent across CLI/API and diagnostics stay redacted without cross-workspace leakage                      |
+| GH-551   | Stubbed provider/MCP E2E     | Add fake-provider workflow plus MCP dry-run CLI assertions in an isolated workspace                       | PR-safe contract evidence proves provider/MCP integration without secrets or network calls and never replaces real-provider smoke   |
 | GH-533-J | Release candidate E2E        | Add a release dry-run evidence bundle around package contents, tag readiness, CI logs, and release matrix | Release candidate proves package contents, version/tag policy, quality gate, rollback evidence, and accepted-risk records           |
 
 ## Opt-In Provider Runtime Batteries
@@ -152,6 +165,25 @@ workflow provenance, and no-secret behavior without requiring a real Ollama
 daemon. A separate real-model smoke can be run with `ORCHESTRA_OLLAMA_SMOKE=1`
 when validating a local model installation.
 
+## Stubbed Provider And MCP Contract Evidence
+
+`e2e/stubbed-provider-mcp-contract.test.js` is the default PR/push-safe provider
+and MCP contract suite. It is included in `npm run test:e2e:init`, which the
+normal CI dogfood job runs without hosted provider secrets. The focused command
+is:
+
+```bash
+npm run build && node --test e2e/stubbed-provider-mcp-contract.test.js
+```
+
+The suite uses the built-in `fake` provider and workspace-scoped MCP config in a
+temporary workspace. It asserts real CLI and web API outputs, records a
+redacted report through `orchestra evidence add`, and labels that report
+`contract evidence`. That evidence proves the local provider/MCP contract only.
+It must not be used as acceptance evidence for real OpenAI, Anthropic, Gemini,
+Ollama, or hosted MCP behavior. Real-provider acceptance remains covered only by
+protected/manual smoke suites with explicit secrets and trusted-run policy.
+
 ## Definition Of Done
 
 An E2E battery is complete only when it has:

package/docs/runtime-adapters.md

@@ -499,6 +499,10 @@ parent-agent fallback reason. `subagents` requires runtime-native support and
 fails fast if the runtime cannot satisfy it. `single-agent` forces the parent
 agent path and records that choice in phase provenance.
 
+Gate mode is independent from execution mode: `--gates none` suppresses human
+gate pauses, while `--phase-execution single-agent` is what prevents detached
+runtime parent actions and subagent lifecycle requirements.
+
 When no task or role executor is configured and the default executor is
 `generic-runtime`, `auto` and strict `subagents` mode infer the active runtime
 from `OPEN_ORCHESTRA_ACTIVE_RUNTIME`, then from

package/docs/runtime-llm-flow.md

@@ -155,9 +155,12 @@ adapter also reads optional `GEMINI_BASE_URL`; the base URL must be HTTPS and
 defaults to `https://generativelanguage.googleapis.com`.
 
 The Ollama adapter defaults to `http://localhost:11434/v1` and uses the
-OpenAI-compatible `/chat/completions` endpoint. Set `OLLAMA_BASE_URL` for a
-custom local or remote endpoint and `OLLAMA_API_KEY` when the endpoint requires
-one.
+OpenAI-compatible `/chat/completions` endpoint. Set `OLLAMA_BASE_URL` only for
+loopback or private-network endpoints; public internet hosts are rejected unless
+a future trusted-provider policy explicitly implements that exception. Endpoint
+URLs must use `http` or `https`, must not include credentials, and are recorded
+in evidence only as redacted local-provider provenance. Set `OLLAMA_API_KEY`
+when the local endpoint requires one.
 
 ## Runtime Execution
 

package/docs/sonar-quality-gates.md

@@ -64,10 +64,13 @@ Optional GitHub variables:
   quality gate fails.
 - `SONAR_RUNNER`: set to `self-hosted` to run the Sonar workflow on a local
   runner that can reach the shared SonarQube runtime directly. When this is set,
-  the workflow uses `http://localhost:9001` by default and skips Cloudflare
-  Access service-token checks.
+  the workflow resolves `SONAR_LOCAL_HOST_URL`, then `SONAR_HOST_URL`, then
+  `http://localhost:9001`. Cloudflare Access service-token checks still run
+  when the resolved URL uses `SONAR_HOST_URL` and Cloudflare credentials are
+  configured.
 - `SONAR_LOCAL_HOST_URL`: optional override for self-hosted runner mode when the
-  runner reaches SonarQube through a different local-only URL.
+  runner reaches SonarQube through a different local-only URL. Prefer this over
+  `SONAR_HOST_URL` when the self-hosted runner should use a direct local path.
 
 The workflow skips analysis when `SONAR_TOKEN` is not configured. This keeps
 forks and offline development usable. For private repositories, keep
@@ -100,6 +103,10 @@ API access, issue API access, and security hotspot API access. It redacts the
 token, host URL, and Cloudflare Access service token values from diagnostic
 output. `hotspots` is a warning when unavailable because some Sonar tokens can
 analyze and read issues while hotspot review permissions are managed separately.
+In local `sonarqube-local` mode, a branch-scoped quality gate `404` falls back
+to the default branch when the project itself is readable, because SonarQube
+Community Edition does not expose branch analysis unless an optional add-on or
+commercial feature is installed.
 
 Common remediation:
 
@@ -266,12 +273,12 @@ cd ~/dev/sonarqube_jterrats_dev
 docker compose up -d
 ```
 
-When `SONAR_RUNNER=self-hosted`, the workflow resolves SonarQube to
-`http://localhost:9001` unless `SONAR_LOCAL_HOST_URL` is set. This intentionally
-ignores `SONAR_HOST_URL`, so organization-level Cloudflare tunnel secrets do not
-pull local machine analysis back through Zero Trust. Cloudflare Access remains
-available for human remote browser usage and for GitHub-hosted runner access to
-private SonarQube only. The CI scan uses
+When `SONAR_RUNNER=self-hosted`, the workflow resolves SonarQube in this order:
+`SONAR_LOCAL_HOST_URL`, `SONAR_HOST_URL`, then `http://localhost:9001`.
+Use `SONAR_LOCAL_HOST_URL` to force a direct local path and avoid accidentally
+pulling local machine analysis back through Zero Trust. When no local URL is
+set and `SONAR_HOST_URL` points at a Cloudflare Access protected hostname, the
+workflow enables the service-token proxy before preflight. The CI scan uses
 `continue-on-error` on the scanner step so Orchestra can still import and upload
 Sonar evidence when the quality gate fails; a final workflow step re-fails the
 job after evidence is captured.
@@ -299,6 +306,9 @@ Expected result:
 - Sonar authentication returns `{"valid":true}`.
 - `npm run sonar:preflight:local` passes `auth`, `project`, `qualityGate`, and
   `issues`; `hotspots` may warn when the token lacks hotspot read access.
+- Pull request runs on local SonarQube Community Edition may report
+  `quality-gate-readable-default-branch` when branch-scoped quality gate status
+  is unavailable but default-branch quality gate access is valid.
 
 If the runner is online but jobs stay queued, verify the workflow labels match
 the runner labels exactly. If Sonar preflight fails, fix the token/project

package/docs/verifier-contracts.md

@@ -0,0 +1,87 @@
+# Verifier Contracts
+
+Verifier contracts are task metadata that describe how a workflow run proves an
+accepted outcome. They are used by agents, QA, and release gates to avoid
+treating simulated handoffs or unmapped evidence as proof.
+
+## Fields
+
+Each verifier entry is stored under `task.verifierContract.entries`:
+
+- `id`: stable verifier id, unique within the task.
+- `surface`: one of `cli`, `api`, `web`, `mobile`, `desktop`, `db`, `cloud`,
+  `workflow`, or `generated-artifact`.
+- `setup`: environment or data setup required before verification.
+- `action`: command, request, workflow action, or user action to execute.
+- `expectedObservable`: observable result that must be proven.
+- `assertionType`: `equals`, `contains`, `matches`, `exists`, or `custom`.
+- `evidenceArtifact`: expected file, command output, trace, screenshot, log, or
+  report reference.
+- `ownerRole`: role responsible for producing or reviewing evidence.
+- `required`: defaults to `true`; optional verifiers are advisory.
+- `acceptanceCriteria`: optional criteria references covered by the verifier.
+
+## CLI
+
+Add a verifier while creating a task:
+
+```bash
+orchestra task add --id STORY-001 --title "Generate manifest" --owner developer \
+  --verifier-id cli-manifest \
+  --verifier-surface cli \
+  --verifier-setup "package installed" \
+  --verifier-action "run manifest command" \
+  --verifier-expected "manifest generated" \
+  --verifier-evidence "manifest.json" \
+  --verifier-owner qa
+```
+
+Add or update an entry later. Updates merge by verifier id:
+
+```bash
+orchestra task update --id STORY-001 \
+  --verifier-id cli-manifest \
+  --verifier-surface cli \
+  --verifier-setup "package installed" \
+  --verifier-action "orchestra commands manifest --json" \
+  --verifier-expected "manifest generated" \
+  --verifier-evidence "manifest.json" \
+  --verifier-owner qa
+```
+
+Inspect with:
+
+```bash
+orchestra task show --id STORY-001 --json
+orchestra context --task STORY-001 --json
+```
+
+## Evidence Mapping
+
+Prefer explicit mapping:
+
+```bash
+orchestra evidence add --task STORY-001 --role qa --type command \
+  --summary "manifest.json generated" \
+  --command "orchestra commands manifest --json" \
+  --exit-code 0 \
+  --surface cli \
+  --assertions "exit code 0; stdout contains manifest generated; stderr empty; artifact manifest.json written; final state manifest generated" \
+  --verifier-contract-id cli-manifest
+```
+
+Legacy evidence can still match by task, surface, observable assertions, and
+artifact reference. Explicit `--verifier-contract-id` is less ambiguous.
+
+## Gate Behavior
+
+Tasks without verifier contracts keep existing behavior.
+
+For tasks with required verifier entries, `qa-release` and `release-readiness`
+block when evidence is missing, failed, or lacks observable outcome validation.
+Missing keys use stable names such as:
+
+- `verifierContract.<id>.evidence`
+- `verifierContract.<id>.observableOutcome`
+
+Optional verifiers are rendered in context and handoffs but do not block gates.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@jterrats/open-orchestra",
-  "version": "1.2.0",
+  "version": "1.2.2",
   "type": "module",
   "workspaces": [
     "extensions/vscode-open-orchestra",
@@ -16,7 +16,7 @@
     "test": "npm run build && node --test test/**/*.js extensions/**/*.test.cjs",
     "test:coverage": "npm run build && c8 --reporter=lcov --reports-dir coverage --exclude \"test/**\" --exclude \"e2e/**\" --exclude \"extensions/**/test/**\" --exclude \"dist/assets/**\" --exclude \"dist/web-console/**\" node --test test/**/*.js extensions/**/*.test.cjs",
     "test:e2e": "npm run build && npm run site:build && playwright test",
-    "test:e2e:init": "node --test e2e/init-onboarding.test.js e2e/runtime-instruction-flow.test.js",
+    "test:e2e:init": "node --test --test-concurrency=1 e2e/stubbed-provider-mcp-contract.test.js e2e/init-onboarding.test.js e2e/runtime-instruction-flow.test.js",
     "test:e2e:runtime": "node --test e2e/runtime-manual-queue.test.js e2e/runtime-multi-squad.test.js",
     "test:e2e:security": "npm run build && node --test e2e/security-boundaries.test.js",
     "test:e2e:runtime:ollama": "npm run build && node --test e2e/runtime-ollama-provider.test.js",