@riddledc/riddle-proof 0.8.53 → 0.8.55

package/dist/adapters/codex-exec-agent.js

@@ -3,8 +3,8 @@ import {
   createCodexExecAgentAdapter,
   createCodexExecJsonRunner,
   runCodexExecAgentDoctor
-} from "../chunk-73EBR3YL.js";
-import "../chunk-VY4Y5U57.js";
+} from "../chunk-SONWF3FQ.js";
+import "../chunk-W44XEGYW.js";
 import "../chunk-MLKGABMK.js";
 export {
   createCodexExecAgentAdapter,

package/dist/adapters/codex.js

@@ -3,8 +3,8 @@ import {
   createCodexExecAgentAdapter,
   createCodexExecJsonRunner,
   runCodexExecAgentDoctor
-} from "../chunk-73EBR3YL.js";
-import "../chunk-VY4Y5U57.js";
+} from "../chunk-SONWF3FQ.js";
+import "../chunk-W44XEGYW.js";
 import "../chunk-MLKGABMK.js";
 export {
   createCodexExecAgentAdapter,

package/dist/adapters/local-agent.js

@@ -3,8 +3,8 @@ import {
   createCodexExecAgentAdapter,
   createCodexExecJsonRunner,
   runCodexExecAgentDoctor
-} from "../chunk-73EBR3YL.js";
-import "../chunk-VY4Y5U57.js";
+} from "../chunk-SONWF3FQ.js";
+import "../chunk-W44XEGYW.js";
 import "../chunk-MLKGABMK.js";
 export {
   createCodexExecAgentAdapter as createLocalAgentAdapter,

package/dist/adapters/openclaw.js

@@ -3,11 +3,11 @@ import {
   parseOpenClawAssertions,
   parseOpenClawJsonObjectOrArray,
   toRiddleProofRunParams
-} from "../chunk-LNWJAHAQ.js";
-import "../chunk-WDIKPIMB.js";
-import "../chunk-JJ4IWRMJ.js";
-import "../chunk-BLM5EIBA.js";
-import "../chunk-VY4Y5U57.js";
+} from "../chunk-J2ZNL3H3.js";
+import "../chunk-Q5GYD5RG.js";
+import "../chunk-NYRMPWJB.js";
+import "../chunk-QUK3SG24.js";
+import "../chunk-W44XEGYW.js";
 import "../chunk-MLKGABMK.js";
 export {
   openClawIntegrationContext,

package/dist/advanced/engine-harness.cjs

@@ -3520,6 +3520,9 @@ function normalizeTerminalMetadata(input) {
     pr_state: prState,
     marked_ready: markedReady,
     left_draft: leftDraft,
+    ship_held: firstBoolean(riddleState.ship_held, result.ship_held, result.shipHeld, details.ship_held, details.shipHeld, shipReport.ship_held, shipReport.shipHeld),
+    shipping_disabled: firstBoolean(riddleState.shipping_disabled, result.shipping_disabled, result.shippingDisabled, details.shipping_disabled, details.shippingDisabled, shipReport.shipping_disabled, shipReport.shippingDisabled),
+    ship_authorized: firstBoolean(riddleState.ship_authorized, result.ship_authorized, result.shipAuthorized, details.ship_authorized, details.shipAuthorized, shipReport.ship_authorized, shipReport.shipAuthorized),
     ci_status: firstNonEmptyString(riddleState.ci_status, result.ci_status, result.ciStatus, details.ci_status, details.ciStatus, shipReport.ci_status),
     ship_commit: firstNonEmptyString(riddleState.ship_commit, result.ship_commit, result.shipCommit, details.ship_commit, details.shipCommit, shipReport.shipped_commit, shipReport.ship_commit),
     ship_remote_head: firstNonEmptyString(riddleState.ship_remote_head, result.ship_remote_head, result.shipRemoteHead, details.ship_remote_head, details.shipRemoteHead, shipReport.ship_remote_head),
@@ -3553,6 +3556,9 @@ function applyTerminalMetadata(state, metadata) {
   if (prBranch) state.pr_branch = prBranch;
   if (typeof metadata.marked_ready === "boolean") state.marked_ready = metadata.marked_ready;
   if (typeof metadata.left_draft === "boolean") state.left_draft = metadata.left_draft;
+  if (typeof metadata.ship_held === "boolean") state.ship_held = metadata.ship_held;
+  if (typeof metadata.shipping_disabled === "boolean") state.shipping_disabled = metadata.shipping_disabled;
+  if (typeof metadata.ship_authorized === "boolean") state.ship_authorized = metadata.ship_authorized;
   const ciStatus = nonEmptyString(metadata.ci_status);
   if (ciStatus) state.ci_status = ciStatus;
   const shipCommit = nonEmptyString(metadata.ship_commit);
@@ -3584,12 +3590,53 @@ function applyTerminalMetadata(state, metadata) {
   if (typeof metadata.finalized === "boolean") state.finalized = metadata.finalized;
   return state;
 }
+function shipControlStateFor(input) {
+  const state = input.state;
+  const status = input.status || state.status;
+  const raw = recordValue(input.raw) || {};
+  const shipReport = recordValue(state.ship_report) || {};
+  const prState = recordValue(state.pr_state) || {};
+  const shippingDisabled = firstBoolean(
+    raw.shipping_disabled,
+    raw.shippingDisabled,
+    state.shipping_disabled,
+    shipReport.shipping_disabled,
+    shipReport.shippingDisabled
+  ) ?? state.request?.ship_mode === "none";
+  const explicitAuthorized = firstBoolean(
+    raw.ship_authorized,
+    raw.shipAuthorized,
+    state.ship_authorized,
+    shipReport.ship_authorized,
+    shipReport.shipAuthorized
+  );
+  const authorizationEvidence = Boolean(
+    status === "shipped" || state.marked_ready === true || shipReport.marked_ready === true || prState.status === "merged" || state.merge_commit || state.merged_at
+  );
+  const inferredAuthorized = explicitAuthorized ?? authorizationEvidence;
+  const rawHeld = firstBoolean(raw.ship_held, raw.shipHeld);
+  const inferredHeld = status === "ready_to_ship" && shippingDisabled && !inferredAuthorized;
+  const shipHeld = rawHeld ?? (state.ship_held === true || inferredHeld);
+  return {
+    ship_held: shipHeld,
+    shipping_disabled: shippingDisabled,
+    ship_authorized: shipHeld ? false : inferredAuthorized
+  };
+}
+function applyShipControlState(state, input = {}) {
+  const control = shipControlStateFor({ state, status: input.status, raw: input.raw });
+  state.ship_held = control.ship_held;
+  state.shipping_disabled = control.shipping_disabled;
+  state.ship_authorized = control.ship_authorized;
+  return state;
+}
 function createRunResult(input) {
   const status = input.status || input.state.status;
   const ok = isSuccessfulStatus(status);
   const state = input.metadata ? applyTerminalMetadata(input.state, input.metadata) : input.state;
   state.status = status;
   state.ok = ok;
+  applyShipControlState(state, { status, raw: input.raw });
   return compactRecord({
     ok,
     status,
@@ -3607,6 +3654,9 @@ function createRunResult(input) {
     pr_state: state.pr_state,
     marked_ready: state.marked_ready,
     left_draft: state.left_draft,
+    ship_held: state.ship_held,
+    shipping_disabled: state.shipping_disabled,
+    ship_authorized: state.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -4496,6 +4546,7 @@ function createRiddleProofRunCard(state, input = {}) {
   const visualDelta = visualDeltaFrom({ fullRiddleState: fullState, runState: state });
   const artifacts = artifactsFrom({ fullRiddleState: fullState, runState: state });
   const viewportMatrix = viewportMatrixFrom({ fullRiddleState: fullState, runState: state });
+  const shipControl = shipControlStateFor({ state });
   return {
     version: RIDDLE_PROOF_RUN_CARD_VERSION,
     run_id: state.run_id || "unknown",
@@ -4549,6 +4600,9 @@ function createRiddleProofRunCard(state, input = {}) {
     stop_condition: compactRecord({
       status: state.status,
       terminal: isTerminalStatus(state.status),
+      ship_held: shipControl.ship_held,
+      shipping_disabled: shipControl.shipping_disabled,
+      ship_authorized: shipControl.ship_authorized,
       blocker_code: state.blocker?.code || null,
       blocker_message: state.blocker?.message || null,
       proof_decision: state.proof_decision,
@@ -4709,7 +4763,8 @@ function appendStageHeartbeat(state, input) {
 function createRunStatusSnapshot(state, at = timestamp2()) {
   const latestEvent = state.events[state.events.length - 1];
   const runId = state.run_id || "unknown";
-  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status);
+  const shipControl = shipControlStateFor({ state });
+  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status) && state.run_card.stop_condition?.ship_held === shipControl.ship_held && state.run_card.stop_condition?.shipping_disabled === shipControl.shipping_disabled && state.run_card.stop_condition?.ship_authorized === shipControl.ship_authorized;
   const runCard = existingRunCardCurrent ? state.run_card : createRiddleProofRunCard(state, { at });
   return compactRecord({
     run_id: runId,
@@ -4723,6 +4778,9 @@ function createRunStatusSnapshot(state, at = timestamp2()) {
     pr_url: state.pr_url ?? null,
     pr_branch: state.pr_branch ?? null,
     pr_state: state.pr_state,
+    ship_held: shipControl.ship_held,
+    shipping_disabled: shipControl.shipping_disabled,
+    ship_authorized: shipControl.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -5009,7 +5067,7 @@ function shipHeldTerminal(state, result) {
     "ready_to_ship",
     result,
     result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
-    { ship_held: true }
+    { ship_held: true, shipping_disabled: true, ship_authorized: false }
   );
 }
 function checkpointContinueStage2(result) {
@@ -5057,6 +5115,32 @@ function isReadyShipGate(result) {
 function proofAssessmentRequestsShip(payload) {
   return String(payload.decision || "").trim() === "ready_to_ship";
 }
+var TRUSTED_PROOF_ASSESSMENT_READY_SOURCES = /* @__PURE__ */ new Set([
+  "supervising_agent",
+  "supervisor",
+  "openclaw_auto_ship_mode_none"
+]);
+function proofAssessmentSourceTrustedForShip(payload) {
+  const source = nonEmptyString(payload.source)?.toLowerCase();
+  if (!source) return true;
+  return TRUSTED_PROOF_ASSESSMENT_READY_SOURCES.has(source);
+}
+function proofAssessmentSourceBlocker(input) {
+  if (!proofAssessmentRequestsShip(input.payload)) return null;
+  if (proofAssessmentSourceTrustedForShip(input.payload)) return null;
+  const source = nonEmptyString(input.payload.source) || "unknown";
+  return {
+    code: input.code || "proof_assessment_source_not_trusted",
+    checkpoint: input.checkpoint || null,
+    message: `Riddle Proof cannot mark ready_to_ship from untrusted proof assessment source: ${source}.`,
+    details: compactRecord({
+      stage: input.stage || null,
+      proofAssessment: input.payload,
+      checkpoint_response_source: input.response?.source || null,
+      response: input.response || null
+    })
+  };
+}
 function proofAssessmentHardBlockers(state, payload) {
   const blockers = proofAssessmentHardBlockersForState(state || {});
   if (Array.isArray(payload.hard_blockers)) {
@@ -5087,6 +5171,15 @@ function stageFromCheckpointResponse(response, packet) {
   const stage = response.continue_with_stage || nonEmptyString(payload.continue_with_stage) || nonEmptyString(payload.recommended_stage) || nonEmptyString(resume?.continue_with_stage) || (response.decision === "retry_stage" ? packet.stage : "");
   return stage ? stage : null;
 }
+function proofAssessmentSourceFromCheckpointResponse(response) {
+  const kind = nonEmptyString(response.source?.kind)?.toLowerCase();
+  if (!kind) return "supervising_agent";
+  if (kind === "human") return "supervisor";
+  if (kind === "codex" || kind === "openclaw-main" || kind === "claude-code") {
+    return "supervising_agent";
+  }
+  return `checkpoint_response:${kind}`;
+}
 function proofAssessmentPayloadFromCheckpointResponse(response) {
   if (![
     "ready_to_ship",
@@ -5107,7 +5200,7 @@ function proofAssessmentPayloadFromCheckpointResponse(response) {
     continue_with_stage: stage || void 0,
     escalation_target: nonEmptyString(payload.escalation_target) || "agent",
     reasons: Array.isArray(response.reasons) ? response.reasons : Array.isArray(payload.reasons) ? payload.reasons : [],
-    source: "supervising_agent",
+    source: proofAssessmentSourceFromCheckpointResponse(response),
     checkpoint_response_source: response.source || null,
     checkpoint_response_created_at: response.created_at
   }));
@@ -5252,6 +5345,7 @@ function terminalResult(state, status, result, summary, raw = {}) {
     engineResult: result
   });
   applyTerminalMetadata(state, metadata);
+  applyShipControlState(state, { status, raw });
   persist(state);
   return createRunResult({
     state,
@@ -5558,6 +5652,14 @@ function checkpointResponseContinuation(state, value) {
   if (packet.kind === "assess_proof" || packet.kind === "recover_evidence" || packet.stage === "verify") {
     const assessment = proofAssessmentPayloadFromCheckpointResponse(response);
     if (assessment) {
+      const sourceBlocker = proofAssessmentSourceBlocker({
+        checkpoint: packet.checkpoint,
+        stage: packet.stage,
+        payload: assessment,
+        response,
+        code: "checkpoint_response_source_not_trusted"
+      });
+      if (sourceBlocker) return { blocker: sourceBlocker };
       appendCheckpointResponse(state, response);
       if (state.request.ship_mode !== "ship" && proofAssessmentRequestsShip(assessment)) {
         const result = {
@@ -5576,6 +5678,8 @@ function checkpointResponseContinuation(state, value) {
             response.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
             {
               ship_held: true,
+              shipping_disabled: true,
+              ship_authorized: false,
               proof_assessment: assessment
             }
           )
@@ -6116,6 +6220,25 @@ async function routeCheckpoint(request, state, result, agent, input) {
         }
       };
     }
+    const sourceBlocker = proofAssessmentSourceBlocker({
+      checkpoint,
+      stage: "verify",
+      payload,
+      code: "proof_assessment_source_not_trusted"
+    });
+    if (sourceBlocker) {
+      recordEvent(state, {
+        kind: "agent.proof_assessment.source_blocked",
+        checkpoint,
+        stage: "verify",
+        summary: sourceBlocker.message,
+        details: compactRecord({
+          proof_assessment: payload,
+          agent_duration_ms: durationMs
+        })
+      });
+      return { blocker: sourceBlocker };
+    }
     const visualBlocker = proofAssessmentVisualBlocker({
       ...context.fullRiddleState || {},
       verification_mode: context.fullRiddleState?.verification_mode || request.verification_mode
@@ -6150,6 +6273,8 @@ async function routeCheckpoint(request, state, result, agent, input) {
           assessment.summary || result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
           {
             ship_held: true,
+            shipping_disabled: true,
+            ship_authorized: false,
             proof_assessment: payload
           }
         )

package/dist/advanced/engine-harness.js

@@ -2,12 +2,12 @@ import {
   createDisabledRiddleProofAgentAdapter,
   readRiddleProofRunStatus,
   runRiddleProofEngineHarness
-} from "../chunk-ZLBOGPUL.js";
-import "../chunk-WDIKPIMB.js";
-import "../chunk-JJ4IWRMJ.js";
+} from "../chunk-QGE3KBRL.js";
+import "../chunk-Q5GYD5RG.js";
+import "../chunk-NYRMPWJB.js";
 import "../chunk-EKZXU6MU.js";
-import "../chunk-BLM5EIBA.js";
-import "../chunk-VY4Y5U57.js";
+import "../chunk-QUK3SG24.js";
+import "../chunk-W44XEGYW.js";
 import "../chunk-MLKGABMK.js";
 export {
   createDisabledRiddleProofAgentAdapter,

package/dist/advanced/index.cjs

@@ -3554,6 +3554,9 @@ function normalizeTerminalMetadata(input) {
     pr_state: prState,
     marked_ready: markedReady,
     left_draft: leftDraft,
+    ship_held: firstBoolean(riddleState.ship_held, result.ship_held, result.shipHeld, details.ship_held, details.shipHeld, shipReport.ship_held, shipReport.shipHeld),
+    shipping_disabled: firstBoolean(riddleState.shipping_disabled, result.shipping_disabled, result.shippingDisabled, details.shipping_disabled, details.shippingDisabled, shipReport.shipping_disabled, shipReport.shippingDisabled),
+    ship_authorized: firstBoolean(riddleState.ship_authorized, result.ship_authorized, result.shipAuthorized, details.ship_authorized, details.shipAuthorized, shipReport.ship_authorized, shipReport.shipAuthorized),
     ci_status: firstNonEmptyString(riddleState.ci_status, result.ci_status, result.ciStatus, details.ci_status, details.ciStatus, shipReport.ci_status),
     ship_commit: firstNonEmptyString(riddleState.ship_commit, result.ship_commit, result.shipCommit, details.ship_commit, details.shipCommit, shipReport.shipped_commit, shipReport.ship_commit),
     ship_remote_head: firstNonEmptyString(riddleState.ship_remote_head, result.ship_remote_head, result.shipRemoteHead, details.ship_remote_head, details.shipRemoteHead, shipReport.ship_remote_head),
@@ -3587,6 +3590,9 @@ function applyTerminalMetadata(state, metadata) {
   if (prBranch) state.pr_branch = prBranch;
   if (typeof metadata.marked_ready === "boolean") state.marked_ready = metadata.marked_ready;
   if (typeof metadata.left_draft === "boolean") state.left_draft = metadata.left_draft;
+  if (typeof metadata.ship_held === "boolean") state.ship_held = metadata.ship_held;
+  if (typeof metadata.shipping_disabled === "boolean") state.shipping_disabled = metadata.shipping_disabled;
+  if (typeof metadata.ship_authorized === "boolean") state.ship_authorized = metadata.ship_authorized;
   const ciStatus = nonEmptyString(metadata.ci_status);
   if (ciStatus) state.ci_status = ciStatus;
   const shipCommit = nonEmptyString(metadata.ship_commit);
@@ -3618,12 +3624,53 @@ function applyTerminalMetadata(state, metadata) {
   if (typeof metadata.finalized === "boolean") state.finalized = metadata.finalized;
   return state;
 }
+function shipControlStateFor(input) {
+  const state = input.state;
+  const status = input.status || state.status;
+  const raw = recordValue(input.raw) || {};
+  const shipReport = recordValue(state.ship_report) || {};
+  const prState = recordValue(state.pr_state) || {};
+  const shippingDisabled = firstBoolean(
+    raw.shipping_disabled,
+    raw.shippingDisabled,
+    state.shipping_disabled,
+    shipReport.shipping_disabled,
+    shipReport.shippingDisabled
+  ) ?? state.request?.ship_mode === "none";
+  const explicitAuthorized = firstBoolean(
+    raw.ship_authorized,
+    raw.shipAuthorized,
+    state.ship_authorized,
+    shipReport.ship_authorized,
+    shipReport.shipAuthorized
+  );
+  const authorizationEvidence = Boolean(
+    status === "shipped" || state.marked_ready === true || shipReport.marked_ready === true || prState.status === "merged" || state.merge_commit || state.merged_at
+  );
+  const inferredAuthorized = explicitAuthorized ?? authorizationEvidence;
+  const rawHeld = firstBoolean(raw.ship_held, raw.shipHeld);
+  const inferredHeld = status === "ready_to_ship" && shippingDisabled && !inferredAuthorized;
+  const shipHeld = rawHeld ?? (state.ship_held === true || inferredHeld);
+  return {
+    ship_held: shipHeld,
+    shipping_disabled: shippingDisabled,
+    ship_authorized: shipHeld ? false : inferredAuthorized
+  };
+}
+function applyShipControlState(state, input = {}) {
+  const control = shipControlStateFor({ state, status: input.status, raw: input.raw });
+  state.ship_held = control.ship_held;
+  state.shipping_disabled = control.shipping_disabled;
+  state.ship_authorized = control.ship_authorized;
+  return state;
+}
 function createRunResult(input) {
   const status = input.status || input.state.status;
   const ok = isSuccessfulStatus(status);
   const state = input.metadata ? applyTerminalMetadata(input.state, input.metadata) : input.state;
   state.status = status;
   state.ok = ok;
+  applyShipControlState(state, { status, raw: input.raw });
   return compactRecord({
     ok,
     status,
@@ -3641,6 +3688,9 @@ function createRunResult(input) {
     pr_state: state.pr_state,
     marked_ready: state.marked_ready,
     left_draft: state.left_draft,
+    ship_held: state.ship_held,
+    shipping_disabled: state.shipping_disabled,
+    ship_authorized: state.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -4530,6 +4580,7 @@ function createRiddleProofRunCard(state, input = {}) {
   const visualDelta = visualDeltaFrom({ fullRiddleState: fullState, runState: state });
   const artifacts = artifactsFrom({ fullRiddleState: fullState, runState: state });
   const viewportMatrix = viewportMatrixFrom({ fullRiddleState: fullState, runState: state });
+  const shipControl = shipControlStateFor({ state });
   return {
     version: RIDDLE_PROOF_RUN_CARD_VERSION,
     run_id: state.run_id || "unknown",
@@ -4583,6 +4634,9 @@ function createRiddleProofRunCard(state, input = {}) {
     stop_condition: compactRecord({
       status: state.status,
       terminal: isTerminalStatus(state.status),
+      ship_held: shipControl.ship_held,
+      shipping_disabled: shipControl.shipping_disabled,
+      ship_authorized: shipControl.ship_authorized,
       blocker_code: state.blocker?.code || null,
       blocker_message: state.blocker?.message || null,
       proof_decision: state.proof_decision,
@@ -4743,7 +4797,8 @@ function appendStageHeartbeat(state, input) {
 function createRunStatusSnapshot(state, at = timestamp2()) {
   const latestEvent = state.events[state.events.length - 1];
   const runId = state.run_id || "unknown";
-  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status);
+  const shipControl = shipControlStateFor({ state });
+  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status) && state.run_card.stop_condition?.ship_held === shipControl.ship_held && state.run_card.stop_condition?.shipping_disabled === shipControl.shipping_disabled && state.run_card.stop_condition?.ship_authorized === shipControl.ship_authorized;
   const runCard = existingRunCardCurrent ? state.run_card : createRiddleProofRunCard(state, { at });
   return compactRecord({
     run_id: runId,
@@ -4757,6 +4812,9 @@ function createRunStatusSnapshot(state, at = timestamp2()) {
     pr_url: state.pr_url ?? null,
     pr_branch: state.pr_branch ?? null,
     pr_state: state.pr_state,
+    ship_held: shipControl.ship_held,
+    shipping_disabled: shipControl.shipping_disabled,
+    ship_authorized: shipControl.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -5223,7 +5281,7 @@ async function runRiddleProof(input) {
       status: "ready_to_ship",
       last_summary: assessment.summary,
       evidence_bundle: evidenceBundle,
-      raw: { implementation, assessment }
+      raw: { implementation, assessment, ship_held: true, shipping_disabled: true, ship_authorized: false }
     });
     return notifyIfConfigured({ state, result: result2, notification: adapters.notification });
   }
@@ -5548,7 +5606,7 @@ function shipHeldTerminal(state, result) {
     "ready_to_ship",
     result,
     result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
-    { ship_held: true }
+    { ship_held: true, shipping_disabled: true, ship_authorized: false }
   );
 }
 function checkpointContinueStage2(result) {
@@ -5596,6 +5654,32 @@ function isReadyShipGate(result) {
 function proofAssessmentRequestsShip(payload) {
   return String(payload.decision || "").trim() === "ready_to_ship";
 }
+var TRUSTED_PROOF_ASSESSMENT_READY_SOURCES = /* @__PURE__ */ new Set([
+  "supervising_agent",
+  "supervisor",
+  "openclaw_auto_ship_mode_none"
+]);
+function proofAssessmentSourceTrustedForShip(payload) {
+  const source = nonEmptyString(payload.source)?.toLowerCase();
+  if (!source) return true;
+  return TRUSTED_PROOF_ASSESSMENT_READY_SOURCES.has(source);
+}
+function proofAssessmentSourceBlocker(input) {
+  if (!proofAssessmentRequestsShip(input.payload)) return null;
+  if (proofAssessmentSourceTrustedForShip(input.payload)) return null;
+  const source = nonEmptyString(input.payload.source) || "unknown";
+  return {
+    code: input.code || "proof_assessment_source_not_trusted",
+    checkpoint: input.checkpoint || null,
+    message: `Riddle Proof cannot mark ready_to_ship from untrusted proof assessment source: ${source}.`,
+    details: compactRecord({
+      stage: input.stage || null,
+      proofAssessment: input.payload,
+      checkpoint_response_source: input.response?.source || null,
+      response: input.response || null
+    })
+  };
+}
 function proofAssessmentHardBlockers(state, payload) {
   const blockers = proofAssessmentHardBlockersForState(state || {});
   if (Array.isArray(payload.hard_blockers)) {
@@ -5626,6 +5710,15 @@ function stageFromCheckpointResponse(response, packet) {
   const stage = response.continue_with_stage || nonEmptyString(payload.continue_with_stage) || nonEmptyString(payload.recommended_stage) || nonEmptyString(resume?.continue_with_stage) || (response.decision === "retry_stage" ? packet.stage : "");
   return stage ? stage : null;
 }
+function proofAssessmentSourceFromCheckpointResponse(response) {
+  const kind = nonEmptyString(response.source?.kind)?.toLowerCase();
+  if (!kind) return "supervising_agent";
+  if (kind === "human") return "supervisor";
+  if (kind === "codex" || kind === "openclaw-main" || kind === "claude-code") {
+    return "supervising_agent";
+  }
+  return `checkpoint_response:${kind}`;
+}
 function proofAssessmentPayloadFromCheckpointResponse(response) {
   if (![
     "ready_to_ship",
@@ -5646,7 +5739,7 @@ function proofAssessmentPayloadFromCheckpointResponse(response) {
     continue_with_stage: stage || void 0,
     escalation_target: nonEmptyString(payload.escalation_target) || "agent",
     reasons: Array.isArray(response.reasons) ? response.reasons : Array.isArray(payload.reasons) ? payload.reasons : [],
-    source: "supervising_agent",
+    source: proofAssessmentSourceFromCheckpointResponse(response),
     checkpoint_response_source: response.source || null,
     checkpoint_response_created_at: response.created_at
   }));
@@ -5791,6 +5884,7 @@ function terminalResult(state, status, result, summary, raw = {}) {
     engineResult: result
   });
   applyTerminalMetadata(state, metadata);
+  applyShipControlState(state, { status, raw });
   persist(state);
   return createRunResult({
     state,
@@ -6097,6 +6191,14 @@ function checkpointResponseContinuation(state, value) {
   if (packet.kind === "assess_proof" || packet.kind === "recover_evidence" || packet.stage === "verify") {
     const assessment = proofAssessmentPayloadFromCheckpointResponse(response);
     if (assessment) {
+      const sourceBlocker = proofAssessmentSourceBlocker({
+        checkpoint: packet.checkpoint,
+        stage: packet.stage,
+        payload: assessment,
+        response,
+        code: "checkpoint_response_source_not_trusted"
+      });
+      if (sourceBlocker) return { blocker: sourceBlocker };
       appendCheckpointResponse(state, response);
       if (state.request.ship_mode !== "ship" && proofAssessmentRequestsShip(assessment)) {
         const result = {
@@ -6115,6 +6217,8 @@ function checkpointResponseContinuation(state, value) {
             response.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
             {
               ship_held: true,
+              shipping_disabled: true,
+              ship_authorized: false,
               proof_assessment: assessment
             }
           )
@@ -6655,6 +6759,25 @@ async function routeCheckpoint(request, state, result, agent, input) {
         }
       };
     }
+    const sourceBlocker = proofAssessmentSourceBlocker({
+      checkpoint,
+      stage: "verify",
+      payload,
+      code: "proof_assessment_source_not_trusted"
+    });
+    if (sourceBlocker) {
+      recordEvent(state, {
+        kind: "agent.proof_assessment.source_blocked",
+        checkpoint,
+        stage: "verify",
+        summary: sourceBlocker.message,
+        details: compactRecord({
+          proof_assessment: payload,
+          agent_duration_ms: durationMs
+        })
+      });
+      return { blocker: sourceBlocker };
+    }
     const visualBlocker = proofAssessmentVisualBlocker({
       ...context.fullRiddleState || {},
       verification_mode: context.fullRiddleState?.verification_mode || request.verification_mode
@@ -6689,6 +6812,8 @@ async function routeCheckpoint(request, state, result, agent, input) {
           assessment.summary || result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
           {
             ship_held: true,
+            shipping_disabled: true,
+            ship_authorized: false,
             proof_assessment: payload
           }
         )

package/dist/advanced/index.d.cts

@@ -1,5 +1,5 @@
 export { b as runner } from '../runner-4LJ5z0D-.cjs';
 export { l as engineHarness } from '../engine-harness-LBfqbFSe.cjs';
 export { p as proofRunCore } from '../proof-run-core-7Dqm7RKM.cjs';
-export { p as proofRunEngine } from '../proof-run-engine-DpChFR5H.cjs';
+export { p as proofRunEngine } from '../proof-run-engine-Baiv6l3A.cjs';
 import '../types.cjs';

package/dist/advanced/index.d.ts

@@ -1,5 +1,5 @@
 export { b as runner } from '../runner-BdQpOkZD.js';
 export { l as engineHarness } from '../engine-harness-CMACHP6A.js';
 export { p as proofRunCore } from '../proof-run-core-7Dqm7RKM.js';
-export { p as proofRunEngine } from '../proof-run-engine-BqRoA3Do.js';
+export { p as proofRunEngine } from '../proof-run-engine-MiKZt9oY.js';
 import '../types.js';

package/dist/advanced/index.js

@@ -3,17 +3,17 @@ import {
 } from "../chunk-VYJD6XYF.js";
 import {
   runner_exports
-} from "../chunk-S5DX7Z6X.js";
+} from "../chunk-F65S5LT2.js";
 import {
   engine_harness_exports
-} from "../chunk-ZLBOGPUL.js";
-import "../chunk-WDIKPIMB.js";
-import "../chunk-JJ4IWRMJ.js";
+} from "../chunk-QGE3KBRL.js";
+import "../chunk-Q5GYD5RG.js";
+import "../chunk-NYRMPWJB.js";
 import {
   proof_run_core_exports
 } from "../chunk-EKZXU6MU.js";
-import "../chunk-BLM5EIBA.js";
-import "../chunk-VY4Y5U57.js";
+import "../chunk-QUK3SG24.js";
+import "../chunk-W44XEGYW.js";
 import "../chunk-MLKGABMK.js";
 export {
   engine_harness_exports as engineHarness,

package/dist/advanced/proof-run-engine.d.cts

@@ -1,2 +1,2 @@
-export { R as RiddleProofEngine, c as createRiddleProofEngine, e as executeWorkflow } from '../proof-run-engine-DpChFR5H.cjs';
+export { R as RiddleProofEngine, c as createRiddleProofEngine, e as executeWorkflow } from '../proof-run-engine-Baiv6l3A.cjs';
 import '../proof-run-core-7Dqm7RKM.cjs';

package/dist/advanced/proof-run-engine.d.ts

@@ -1,2 +1,2 @@
-export { R as RiddleProofEngine, c as createRiddleProofEngine, e as executeWorkflow } from '../proof-run-engine-BqRoA3Do.js';
+export { R as RiddleProofEngine, c as createRiddleProofEngine, e as executeWorkflow } from '../proof-run-engine-MiKZt9oY.js';
 import '../proof-run-core-7Dqm7RKM.js';