@riddledc/riddle-proof 0.8.52 → 0.8.54

package/dist/{chunk-2CZORYB7.js → chunk-S5DX7Z6X.js}

@@ -3,7 +3,7 @@ import {
   appendStageHeartbeat,
   createRunState,
   setRunStatus
-} from "./chunk-M3IE3VNC.js";
+} from "./chunk-WDIKPIMB.js";
 import {
   noImplementationModeFor
 } from "./chunk-EKZXU6MU.js";

package/dist/{chunk-M3IE3VNC.js → chunk-WDIKPIMB.js}

@@ -1,6 +1,6 @@
 import {
   createRiddleProofRunCard
-} from "./chunk-RBAU2M4S.js";
+} from "./chunk-JJ4IWRMJ.js";
 import {
   compactRecord,
   isTerminalStatus,

package/dist/cli/index.js

@@ -1,12 +1,12 @@
-import "../chunk-FWHJN3QG.js";
+import "../chunk-ECLGGGAI.js";
 import "../chunk-DI2XNGEZ.js";
 import "../chunk-6KYXX4OE.js";
 import "../chunk-EX7TO4I5.js";
-import "../chunk-WURLFN72.js";
-import "../chunk-M3IE3VNC.js";
-import "../chunk-RBAU2M4S.js";
+import "../chunk-IV4DVWPR.js";
+import "../chunk-WDIKPIMB.js";
+import "../chunk-JJ4IWRMJ.js";
 import "../chunk-EKZXU6MU.js";
-import "../chunk-AXWJJ2LC.js";
+import "../chunk-BLM5EIBA.js";
 import "../chunk-JFQXAJH2.js";
 import "../chunk-73EBR3YL.js";
 import "../chunk-VY4Y5U57.js";

package/dist/cli.cjs

@@ -3678,12 +3678,13 @@ function statePathsForRunState(state, engineStatePath2) {
 function responseSchemaForAuthorPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "payload", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "payload", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3711,12 +3712,13 @@ function responseSchemaForAuthorPacket() {
 function responseSchemaForProofAssessmentPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3752,12 +3754,13 @@ function responseSchemaForProofAssessmentPacket() {
 function responseSchemaForReconPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3785,12 +3788,13 @@ function responseSchemaForReconPacket() {
 function responseSchemaForImplementationPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3818,12 +3822,13 @@ function responseSchemaForImplementationPacket() {
 function responseSchemaForAdvancePacket(stage) {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3849,6 +3854,20 @@ function resumeTokenFor(input) {
   const hash = import_node_crypto.default.createHash("sha256").update(JSON.stringify(input)).digest("hex").slice(0, 24);
   return `rpchk_${hash}`;
 }
+function packetIdentityPayload(packet) {
+  const { packet_id: _packetId, ...identityPayload } = packet;
+  return identityPayload;
+}
+function checkpointPacketIdentity(packet) {
+  const hash = import_node_crypto.default.createHash("sha256").update(stableJson(packetIdentityPayload(packet))).digest("hex").slice(0, 24);
+  return `rppkt_${hash}`;
+}
+function withPacketIdentity(packet) {
+  return {
+    ...packet,
+    packet_id: checkpointPacketIdentity(packet)
+  };
+}
 function artifactsFromState(state) {
   const artifacts = [];
   for (const role of ["before", "prod", "after"]) {
@@ -3921,7 +3940,7 @@ function buildStageCheckpointPacket(input) {
   const checkpointContract = recordValue(input.engineResult.checkpointContract);
   const summary = nonEmptyString(input.engineResult.summary) || nonEmptyString(fullState.stage_summary) || `${stage} checkpoint needs a supervising decision.`;
   const kind = packetKindForStage(stage, checkpoint);
-  return {
+  return withPacketIdentity({
     version: RIDDLE_PROOF_CHECKPOINT_PACKET_VERSION,
     run_id: runId,
     state_path: input.runState.state_path,
@@ -3970,7 +3989,7 @@ function buildStageCheckpointPacket(input) {
       stage
     }),
     created_at: input.created_at || timestamp()
-  };
+  });
 }
 function buildAuthorCheckpointPacket(input) {
   const checkpoint = nonEmptyString(input.engineResult.checkpoint) || "author_supervisor_judgment";
@@ -3983,7 +4002,7 @@ function buildAuthorCheckpointPacket(input) {
   const reconResults = recordValue(fullState.recon_results);
   const checkpointContract = recordValue(input.engineResult.checkpointContract);
   const summary = nonEmptyString(input.engineResult.summary) || nonEmptyString(fullState.author_summary) || "Author checkpoint needs a supervising proof packet.";
-  return {
+  return withPacketIdentity({
     version: RIDDLE_PROOF_CHECKPOINT_PACKET_VERSION,
     run_id: runId,
     state_path: input.runState.state_path,
@@ -4032,7 +4051,7 @@ function buildAuthorCheckpointPacket(input) {
       stage
     }),
     created_at: input.created_at || timestamp()
-  };
+  });
 }
 function visualDeltaFromState(fullState) {
   const bundle = recordValue(fullState.evidence_bundle);
@@ -4103,7 +4122,7 @@ function buildProofAssessmentCheckpointPacket(input) {
   const evidenceIssueCode2 = visualDeltaIssueCode(visualDelta, visualDeltaRequired);
   const summary = nonEmptyString(input.engineResult.summary) || nonEmptyString(fullState.verify_summary) || "Verify captured evidence and needs a supervising proof assessment.";
   const recoveryHint = evidenceIssueCode2 ? "Required visual_delta evidence is incomplete. Keep this same run in verify/evidence recovery with decision=revise_capture and continue_with_stage=verify unless the evidence proves an implementation or recon problem." : "Assess whether the current artifacts prove the requested change, then choose the next stage.";
-  return {
+  return withPacketIdentity({
     version: RIDDLE_PROOF_CHECKPOINT_PACKET_VERSION,
     run_id: runId,
     state_path: input.runState.state_path,
@@ -4163,7 +4182,7 @@ function buildProofAssessmentCheckpointPacket(input) {
       stage
     }),
     created_at: input.created_at || timestamp()
-  };
+  });
 }
 function buildCheckpointPacketForEngineResult(input) {
   const checkpoint = nonEmptyString(input.engineResult.checkpoint) || "";
@@ -4192,6 +4211,7 @@ function normalizeCheckpointResponse(value) {
     version: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION,
     run_id: runId,
     checkpoint,
+    packet_id: nonEmptyString(record.packet_id),
     resume_token: nonEmptyString(record.resume_token),
     decision,
     summary,
@@ -4279,6 +4299,7 @@ function createCheckpointResponseTemplate(packet, input = {}) {
     version: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION,
     run_id: packet.run_id,
     checkpoint: packet.checkpoint,
+    packet_id: packet.packet_id,
     resume_token: packet.resume_token,
     decision,
     summary: input.summary || `TODO: explain checkpoint decision ${decision}.`,
@@ -4312,6 +4333,9 @@ function checkpointSummaryFromState(state, engineStatePath2) {
   const latestResponseEntry = [...responses].reverse().find((entry) => entry.response);
   const latestPacket = state.checkpoint_packet || latestPacketEntry?.packet;
   const latestResponse = latestResponseEntry?.response;
+  const latestPacketId = latestPacket?.packet_id || null;
+  const latestResponsePacketId = latestResponse?.packet_id || null;
+  const packetIdMatches = !latestResponse ? null : latestPacketId && latestResponsePacketId ? latestPacketId === latestResponsePacketId : latestPacketId || latestResponsePacketId ? false : null;
   const latestResumeToken = latestPacket?.resume_token || null;
   const latestResponseToken = latestResponse?.resume_token || null;
   const tokenMatches = !latestResponse ? null : latestResumeToken && latestResponseToken ? latestResumeToken === latestResponseToken : latestResumeToken || latestResponseToken ? false : null;
@@ -4326,6 +4350,9 @@ function checkpointSummaryFromState(state, engineStatePath2) {
     latest_decision: latestResponse?.decision || null,
     latest_packet_summary: latestPacket?.summary || null,
     latest_response_summary: latestResponse?.summary || null,
+    latest_packet_id: latestPacketId,
+    latest_response_packet_id: latestResponsePacketId,
+    packet_id_matches: packetIdMatches,
     latest_resume_token: latestResumeToken,
     latest_response_token: latestResponseToken,
     token_matches: tokenMatches,
@@ -4342,6 +4369,7 @@ function checkpointResponseIdentity(response) {
   const logicalResponse = compactRecord({
     run_id: response.run_id,
     checkpoint: response.checkpoint,
+    packet_id: response.packet_id,
     resume_token: response.resume_token,
     decision: response.decision,
     summary: response.summary,
@@ -5115,6 +5143,32 @@ function isReadyShipGate(result) {
 function proofAssessmentRequestsShip(payload) {
   return String(payload.decision || "").trim() === "ready_to_ship";
 }
+var TRUSTED_PROOF_ASSESSMENT_READY_SOURCES = /* @__PURE__ */ new Set([
+  "supervising_agent",
+  "supervisor",
+  "openclaw_auto_ship_mode_none"
+]);
+function proofAssessmentSourceTrustedForShip(payload) {
+  const source = nonEmptyString(payload.source)?.toLowerCase();
+  if (!source) return true;
+  return TRUSTED_PROOF_ASSESSMENT_READY_SOURCES.has(source);
+}
+function proofAssessmentSourceBlocker(input) {
+  if (!proofAssessmentRequestsShip(input.payload)) return null;
+  if (proofAssessmentSourceTrustedForShip(input.payload)) return null;
+  const source = nonEmptyString(input.payload.source) || "unknown";
+  return {
+    code: input.code || "proof_assessment_source_not_trusted",
+    checkpoint: input.checkpoint || null,
+    message: `Riddle Proof cannot mark ready_to_ship from untrusted proof assessment source: ${source}.`,
+    details: compactRecord({
+      stage: input.stage || null,
+      proofAssessment: input.payload,
+      checkpoint_response_source: input.response?.source || null,
+      response: input.response || null
+    })
+  };
+}
 function proofAssessmentHardBlockers(state, payload) {
   const blockers = proofAssessmentHardBlockersForState(state || {});
   if (Array.isArray(payload.hard_blockers)) {
@@ -5145,6 +5199,15 @@ function stageFromCheckpointResponse(response, packet) {
   const stage = response.continue_with_stage || nonEmptyString(payload.continue_with_stage) || nonEmptyString(payload.recommended_stage) || nonEmptyString(resume?.continue_with_stage) || (response.decision === "retry_stage" ? packet.stage : "");
   return stage ? stage : null;
 }
+function proofAssessmentSourceFromCheckpointResponse(response) {
+  const kind = nonEmptyString(response.source?.kind)?.toLowerCase();
+  if (!kind) return "supervising_agent";
+  if (kind === "human") return "supervisor";
+  if (kind === "codex" || kind === "openclaw-main" || kind === "claude-code") {
+    return "supervising_agent";
+  }
+  return `checkpoint_response:${kind}`;
+}
 function proofAssessmentPayloadFromCheckpointResponse(response) {
   if (![
     "ready_to_ship",
@@ -5165,7 +5228,7 @@ function proofAssessmentPayloadFromCheckpointResponse(response) {
     continue_with_stage: stage || void 0,
     escalation_target: nonEmptyString(payload.escalation_target) || "agent",
     reasons: Array.isArray(response.reasons) ? response.reasons : Array.isArray(payload.reasons) ? payload.reasons : [],
-    source: "supervising_agent",
+    source: proofAssessmentSourceFromCheckpointResponse(response),
     checkpoint_response_source: response.source || null,
     checkpoint_response_created_at: response.created_at
   }));
@@ -5492,6 +5555,22 @@ function checkpointResponseContinuation(state, value) {
       }
     };
   }
+  if (packet.packet_id && response.packet_id !== packet.packet_id) {
+    return {
+      blocker: {
+        code: "checkpoint_response_packet_id_mismatch",
+        checkpoint: packet.checkpoint,
+        message: "Checkpoint response packet_id does not match the pending checkpoint packet.",
+        details: {
+          stage: packet.stage,
+          expected_packet_id: packet.packet_id,
+          actual_packet_id: response.packet_id || null,
+          expected_resume_token: packet.resume_token || null,
+          actual_resume_token: response.resume_token || null
+        }
+      }
+    };
+  }
   if (!packet.allowed_decisions.includes(response.decision)) {
     return {
       blocker: {
@@ -5600,6 +5679,14 @@ function checkpointResponseContinuation(state, value) {
   if (packet.kind === "assess_proof" || packet.kind === "recover_evidence" || packet.stage === "verify") {
     const assessment = proofAssessmentPayloadFromCheckpointResponse(response);
     if (assessment) {
+      const sourceBlocker = proofAssessmentSourceBlocker({
+        checkpoint: packet.checkpoint,
+        stage: packet.stage,
+        payload: assessment,
+        response,
+        code: "checkpoint_response_source_not_trusted"
+      });
+      if (sourceBlocker) return { blocker: sourceBlocker };
       appendCheckpointResponse(state, response);
       if (state.request.ship_mode !== "ship" && proofAssessmentRequestsShip(assessment)) {
         const result = {
@@ -6158,6 +6245,25 @@ async function routeCheckpoint(request, state, result, agent, input) {
         }
       };
     }
+    const sourceBlocker = proofAssessmentSourceBlocker({
+      checkpoint,
+      stage: "verify",
+      payload,
+      code: "proof_assessment_source_not_trusted"
+    });
+    if (sourceBlocker) {
+      recordEvent(state, {
+        kind: "agent.proof_assessment.source_blocked",
+        checkpoint,
+        stage: "verify",
+        summary: sourceBlocker.message,
+        details: compactRecord({
+          proof_assessment: payload,
+          agent_duration_ms: durationMs
+        })
+      });
+      return { blocker: sourceBlocker };
+    }
     const visualBlocker = proofAssessmentVisualBlocker({
       ...context.fullRiddleState || {},
       verification_mode: context.fullRiddleState?.verification_mode || request.verification_mode
@@ -18760,6 +18866,7 @@ function formatCheckpointMarkdown(input) {
     `Status: ${input.status || "awaiting_checkpoint"}`,
     `Stage: ${packet.stage}`,
     `Checkpoint: ${packet.checkpoint}`,
+    `Packet ID: ${packet.packet_id || "legacy"}`,
     `Kind: ${packet.kind}`,
     "",
     "## Goal",

package/dist/cli.js

@@ -1,13 +1,13 @@
 #!/usr/bin/env node
-import "./chunk-FWHJN3QG.js";
+import "./chunk-ECLGGGAI.js";
 import "./chunk-DI2XNGEZ.js";
 import "./chunk-6KYXX4OE.js";
 import "./chunk-EX7TO4I5.js";
-import "./chunk-WURLFN72.js";
-import "./chunk-M3IE3VNC.js";
-import "./chunk-RBAU2M4S.js";
+import "./chunk-IV4DVWPR.js";
+import "./chunk-WDIKPIMB.js";
+import "./chunk-JJ4IWRMJ.js";
 import "./chunk-EKZXU6MU.js";
-import "./chunk-AXWJJ2LC.js";
+import "./chunk-BLM5EIBA.js";
 import "./chunk-JFQXAJH2.js";
 import "./chunk-73EBR3YL.js";
 import "./chunk-VY4Y5U57.js";

package/dist/engine-harness.cjs

@@ -3680,12 +3680,13 @@ function statePathsForRunState(state, engineStatePath2) {
 function responseSchemaForAuthorPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "payload", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "payload", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3713,12 +3714,13 @@ function responseSchemaForAuthorPacket() {
 function responseSchemaForProofAssessmentPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3754,12 +3756,13 @@ function responseSchemaForProofAssessmentPacket() {
 function responseSchemaForReconPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3787,12 +3790,13 @@ function responseSchemaForReconPacket() {
 function responseSchemaForImplementationPacket() {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3820,12 +3824,13 @@ function responseSchemaForImplementationPacket() {
 function responseSchemaForAdvancePacket(stage) {
   return {
     type: "object",
-    required: ["version", "run_id", "checkpoint", "decision", "summary", "created_at"],
+    required: ["version", "run_id", "checkpoint", "packet_id", "decision", "summary", "created_at"],
     additionalProperties: false,
     properties: {
       version: { const: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION },
       run_id: { type: "string" },
       checkpoint: { type: "string" },
+      packet_id: { type: "string" },
       resume_token: { type: "string" },
       decision: {
         type: "string",
@@ -3851,6 +3856,20 @@ function resumeTokenFor(input) {
   const hash = import_node_crypto.default.createHash("sha256").update(JSON.stringify(input)).digest("hex").slice(0, 24);
   return `rpchk_${hash}`;
 }
+function packetIdentityPayload(packet) {
+  const { packet_id: _packetId, ...identityPayload } = packet;
+  return identityPayload;
+}
+function checkpointPacketIdentity(packet) {
+  const hash = import_node_crypto.default.createHash("sha256").update(stableJson(packetIdentityPayload(packet))).digest("hex").slice(0, 24);
+  return `rppkt_${hash}`;
+}
+function withPacketIdentity(packet) {
+  return {
+    ...packet,
+    packet_id: checkpointPacketIdentity(packet)
+  };
+}
 function artifactsFromState(state) {
   const artifacts = [];
   for (const role of ["before", "prod", "after"]) {
@@ -3923,7 +3942,7 @@ function buildStageCheckpointPacket(input) {
   const checkpointContract = recordValue(input.engineResult.checkpointContract);
   const summary = nonEmptyString(input.engineResult.summary) || nonEmptyString(fullState.stage_summary) || `${stage} checkpoint needs a supervising decision.`;
   const kind = packetKindForStage(stage, checkpoint);
-  return {
+  return withPacketIdentity({
     version: RIDDLE_PROOF_CHECKPOINT_PACKET_VERSION,
     run_id: runId,
     state_path: input.runState.state_path,
@@ -3972,7 +3991,7 @@ function buildStageCheckpointPacket(input) {
       stage
     }),
     created_at: input.created_at || timestamp()
-  };
+  });
 }
 function buildAuthorCheckpointPacket(input) {
   const checkpoint = nonEmptyString(input.engineResult.checkpoint) || "author_supervisor_judgment";
@@ -3985,7 +4004,7 @@ function buildAuthorCheckpointPacket(input) {
   const reconResults = recordValue(fullState.recon_results);
   const checkpointContract = recordValue(input.engineResult.checkpointContract);
   const summary = nonEmptyString(input.engineResult.summary) || nonEmptyString(fullState.author_summary) || "Author checkpoint needs a supervising proof packet.";
-  return {
+  return withPacketIdentity({
     version: RIDDLE_PROOF_CHECKPOINT_PACKET_VERSION,
     run_id: runId,
     state_path: input.runState.state_path,
@@ -4034,7 +4053,7 @@ function buildAuthorCheckpointPacket(input) {
       stage
     }),
     created_at: input.created_at || timestamp()
-  };
+  });
 }
 function visualDeltaFromState(fullState) {
   const bundle = recordValue(fullState.evidence_bundle);
@@ -4105,7 +4124,7 @@ function buildProofAssessmentCheckpointPacket(input) {
   const evidenceIssueCode2 = visualDeltaIssueCode(visualDelta, visualDeltaRequired);
   const summary = nonEmptyString(input.engineResult.summary) || nonEmptyString(fullState.verify_summary) || "Verify captured evidence and needs a supervising proof assessment.";
   const recoveryHint = evidenceIssueCode2 ? "Required visual_delta evidence is incomplete. Keep this same run in verify/evidence recovery with decision=revise_capture and continue_with_stage=verify unless the evidence proves an implementation or recon problem." : "Assess whether the current artifacts prove the requested change, then choose the next stage.";
-  return {
+  return withPacketIdentity({
     version: RIDDLE_PROOF_CHECKPOINT_PACKET_VERSION,
     run_id: runId,
     state_path: input.runState.state_path,
@@ -4165,7 +4184,7 @@ function buildProofAssessmentCheckpointPacket(input) {
       stage
     }),
     created_at: input.created_at || timestamp()
-  };
+  });
 }
 function buildCheckpointPacketForEngineResult(input) {
   const checkpoint = nonEmptyString(input.engineResult.checkpoint) || "";
@@ -4194,6 +4213,7 @@ function normalizeCheckpointResponse(value) {
     version: RIDDLE_PROOF_CHECKPOINT_RESPONSE_VERSION,
     run_id: runId,
     checkpoint,
+    packet_id: nonEmptyString(record.packet_id),
     resume_token: nonEmptyString(record.resume_token),
     decision,
     summary,
@@ -4225,6 +4245,9 @@ function checkpointSummaryFromState(state, engineStatePath2) {
   const latestResponseEntry = [...responses].reverse().find((entry) => entry.response);
   const latestPacket = state.checkpoint_packet || latestPacketEntry?.packet;
   const latestResponse = latestResponseEntry?.response;
+  const latestPacketId = latestPacket?.packet_id || null;
+  const latestResponsePacketId = latestResponse?.packet_id || null;
+  const packetIdMatches = !latestResponse ? null : latestPacketId && latestResponsePacketId ? latestPacketId === latestResponsePacketId : latestPacketId || latestResponsePacketId ? false : null;
   const latestResumeToken = latestPacket?.resume_token || null;
   const latestResponseToken = latestResponse?.resume_token || null;
   const tokenMatches = !latestResponse ? null : latestResumeToken && latestResponseToken ? latestResumeToken === latestResponseToken : latestResumeToken || latestResponseToken ? false : null;
@@ -4239,6 +4262,9 @@ function checkpointSummaryFromState(state, engineStatePath2) {
     latest_decision: latestResponse?.decision || null,
     latest_packet_summary: latestPacket?.summary || null,
     latest_response_summary: latestResponse?.summary || null,
+    latest_packet_id: latestPacketId,
+    latest_response_packet_id: latestResponsePacketId,
+    packet_id_matches: packetIdMatches,
     latest_resume_token: latestResumeToken,
     latest_response_token: latestResponseToken,
     token_matches: tokenMatches,
@@ -4255,6 +4281,7 @@ function checkpointResponseIdentity(response) {
   const logicalResponse = compactRecord({
     run_id: response.run_id,
     checkpoint: response.checkpoint,
+    packet_id: response.packet_id,
     resume_token: response.resume_token,
     decision: response.decision,
     summary: response.summary,
@@ -5028,6 +5055,32 @@ function isReadyShipGate(result) {
 function proofAssessmentRequestsShip(payload) {
   return String(payload.decision || "").trim() === "ready_to_ship";
 }
+var TRUSTED_PROOF_ASSESSMENT_READY_SOURCES = /* @__PURE__ */ new Set([
+  "supervising_agent",
+  "supervisor",
+  "openclaw_auto_ship_mode_none"
+]);
+function proofAssessmentSourceTrustedForShip(payload) {
+  const source = nonEmptyString(payload.source)?.toLowerCase();
+  if (!source) return true;
+  return TRUSTED_PROOF_ASSESSMENT_READY_SOURCES.has(source);
+}
+function proofAssessmentSourceBlocker(input) {
+  if (!proofAssessmentRequestsShip(input.payload)) return null;
+  if (proofAssessmentSourceTrustedForShip(input.payload)) return null;
+  const source = nonEmptyString(input.payload.source) || "unknown";
+  return {
+    code: input.code || "proof_assessment_source_not_trusted",
+    checkpoint: input.checkpoint || null,
+    message: `Riddle Proof cannot mark ready_to_ship from untrusted proof assessment source: ${source}.`,
+    details: compactRecord({
+      stage: input.stage || null,
+      proofAssessment: input.payload,
+      checkpoint_response_source: input.response?.source || null,
+      response: input.response || null
+    })
+  };
+}
 function proofAssessmentHardBlockers(state, payload) {
   const blockers = proofAssessmentHardBlockersForState(state || {});
   if (Array.isArray(payload.hard_blockers)) {
@@ -5058,6 +5111,15 @@ function stageFromCheckpointResponse(response, packet) {
   const stage = response.continue_with_stage || nonEmptyString(payload.continue_with_stage) || nonEmptyString(payload.recommended_stage) || nonEmptyString(resume?.continue_with_stage) || (response.decision === "retry_stage" ? packet.stage : "");
   return stage ? stage : null;
 }
+function proofAssessmentSourceFromCheckpointResponse(response) {
+  const kind = nonEmptyString(response.source?.kind)?.toLowerCase();
+  if (!kind) return "supervising_agent";
+  if (kind === "human") return "supervisor";
+  if (kind === "codex" || kind === "openclaw-main" || kind === "claude-code") {
+    return "supervising_agent";
+  }
+  return `checkpoint_response:${kind}`;
+}
 function proofAssessmentPayloadFromCheckpointResponse(response) {
   if (![
     "ready_to_ship",
@@ -5078,7 +5140,7 @@ function proofAssessmentPayloadFromCheckpointResponse(response) {
     continue_with_stage: stage || void 0,
     escalation_target: nonEmptyString(payload.escalation_target) || "agent",
     reasons: Array.isArray(response.reasons) ? response.reasons : Array.isArray(payload.reasons) ? payload.reasons : [],
-    source: "supervising_agent",
+    source: proofAssessmentSourceFromCheckpointResponse(response),
     checkpoint_response_source: response.source || null,
     checkpoint_response_created_at: response.created_at
   }));
@@ -5405,6 +5467,22 @@ function checkpointResponseContinuation(state, value) {
       }
     };
   }
+  if (packet.packet_id && response.packet_id !== packet.packet_id) {
+    return {
+      blocker: {
+        code: "checkpoint_response_packet_id_mismatch",
+        checkpoint: packet.checkpoint,
+        message: "Checkpoint response packet_id does not match the pending checkpoint packet.",
+        details: {
+          stage: packet.stage,
+          expected_packet_id: packet.packet_id,
+          actual_packet_id: response.packet_id || null,
+          expected_resume_token: packet.resume_token || null,
+          actual_resume_token: response.resume_token || null
+        }
+      }
+    };
+  }
   if (!packet.allowed_decisions.includes(response.decision)) {
     return {
       blocker: {
@@ -5513,6 +5591,14 @@ function checkpointResponseContinuation(state, value) {
   if (packet.kind === "assess_proof" || packet.kind === "recover_evidence" || packet.stage === "verify") {
     const assessment = proofAssessmentPayloadFromCheckpointResponse(response);
     if (assessment) {
+      const sourceBlocker = proofAssessmentSourceBlocker({
+        checkpoint: packet.checkpoint,
+        stage: packet.stage,
+        payload: assessment,
+        response,
+        code: "checkpoint_response_source_not_trusted"
+      });
+      if (sourceBlocker) return { blocker: sourceBlocker };
       appendCheckpointResponse(state, response);
       if (state.request.ship_mode !== "ship" && proofAssessmentRequestsShip(assessment)) {
         const result = {
@@ -6071,6 +6157,25 @@ async function routeCheckpoint(request, state, result, agent, input) {
         }
       };
     }
+    const sourceBlocker = proofAssessmentSourceBlocker({
+      checkpoint,
+      stage: "verify",
+      payload,
+      code: "proof_assessment_source_not_trusted"
+    });
+    if (sourceBlocker) {
+      recordEvent(state, {
+        kind: "agent.proof_assessment.source_blocked",
+        checkpoint,
+        stage: "verify",
+        summary: sourceBlocker.message,
+        details: compactRecord({
+          proof_assessment: payload,
+          agent_duration_ms: durationMs
+        })
+      });
+      return { blocker: sourceBlocker };
+    }
     const visualBlocker = proofAssessmentVisualBlocker({
       ...context.fullRiddleState || {},
       verification_mode: context.fullRiddleState?.verification_mode || request.verification_mode