@riddledc/riddle-proof 0.8.53 → 0.8.55

package/dist/cli.cjs

@@ -3516,6 +3516,9 @@ function normalizeTerminalMetadata(input) {
     pr_state: prState,
     marked_ready: markedReady,
     left_draft: leftDraft,
+    ship_held: firstBoolean(riddleState.ship_held, result.ship_held, result.shipHeld, details.ship_held, details.shipHeld, shipReport.ship_held, shipReport.shipHeld),
+    shipping_disabled: firstBoolean(riddleState.shipping_disabled, result.shipping_disabled, result.shippingDisabled, details.shipping_disabled, details.shippingDisabled, shipReport.shipping_disabled, shipReport.shippingDisabled),
+    ship_authorized: firstBoolean(riddleState.ship_authorized, result.ship_authorized, result.shipAuthorized, details.ship_authorized, details.shipAuthorized, shipReport.ship_authorized, shipReport.shipAuthorized),
     ci_status: firstNonEmptyString(riddleState.ci_status, result.ci_status, result.ciStatus, details.ci_status, details.ciStatus, shipReport.ci_status),
     ship_commit: firstNonEmptyString(riddleState.ship_commit, result.ship_commit, result.shipCommit, details.ship_commit, details.shipCommit, shipReport.shipped_commit, shipReport.ship_commit),
     ship_remote_head: firstNonEmptyString(riddleState.ship_remote_head, result.ship_remote_head, result.shipRemoteHead, details.ship_remote_head, details.shipRemoteHead, shipReport.ship_remote_head),
@@ -3549,6 +3552,9 @@ function applyTerminalMetadata(state, metadata) {
   if (prBranch) state.pr_branch = prBranch;
   if (typeof metadata.marked_ready === "boolean") state.marked_ready = metadata.marked_ready;
   if (typeof metadata.left_draft === "boolean") state.left_draft = metadata.left_draft;
+  if (typeof metadata.ship_held === "boolean") state.ship_held = metadata.ship_held;
+  if (typeof metadata.shipping_disabled === "boolean") state.shipping_disabled = metadata.shipping_disabled;
+  if (typeof metadata.ship_authorized === "boolean") state.ship_authorized = metadata.ship_authorized;
   const ciStatus = nonEmptyString(metadata.ci_status);
   if (ciStatus) state.ci_status = ciStatus;
   const shipCommit = nonEmptyString(metadata.ship_commit);
@@ -3580,12 +3586,53 @@ function applyTerminalMetadata(state, metadata) {
   if (typeof metadata.finalized === "boolean") state.finalized = metadata.finalized;
   return state;
 }
+function shipControlStateFor(input) {
+  const state = input.state;
+  const status = input.status || state.status;
+  const raw = recordValue(input.raw) || {};
+  const shipReport = recordValue(state.ship_report) || {};
+  const prState = recordValue(state.pr_state) || {};
+  const shippingDisabled = firstBoolean(
+    raw.shipping_disabled,
+    raw.shippingDisabled,
+    state.shipping_disabled,
+    shipReport.shipping_disabled,
+    shipReport.shippingDisabled
+  ) ?? state.request?.ship_mode === "none";
+  const explicitAuthorized = firstBoolean(
+    raw.ship_authorized,
+    raw.shipAuthorized,
+    state.ship_authorized,
+    shipReport.ship_authorized,
+    shipReport.shipAuthorized
+  );
+  const authorizationEvidence = Boolean(
+    status === "shipped" || state.marked_ready === true || shipReport.marked_ready === true || prState.status === "merged" || state.merge_commit || state.merged_at
+  );
+  const inferredAuthorized = explicitAuthorized ?? authorizationEvidence;
+  const rawHeld = firstBoolean(raw.ship_held, raw.shipHeld);
+  const inferredHeld = status === "ready_to_ship" && shippingDisabled && !inferredAuthorized;
+  const shipHeld = rawHeld ?? (state.ship_held === true || inferredHeld);
+  return {
+    ship_held: shipHeld,
+    shipping_disabled: shippingDisabled,
+    ship_authorized: shipHeld ? false : inferredAuthorized
+  };
+}
+function applyShipControlState(state, input = {}) {
+  const control = shipControlStateFor({ state, status: input.status, raw: input.raw });
+  state.ship_held = control.ship_held;
+  state.shipping_disabled = control.shipping_disabled;
+  state.ship_authorized = control.ship_authorized;
+  return state;
+}
 function createRunResult(input) {
   const status = input.status || input.state.status;
   const ok = isSuccessfulStatus(status);
   const state = input.metadata ? applyTerminalMetadata(input.state, input.metadata) : input.state;
   state.status = status;
   state.ok = ok;
+  applyShipControlState(state, { status, raw: input.raw });
   return compactRecord({
     ok,
     status,
@@ -3603,6 +3650,9 @@ function createRunResult(input) {
     pr_state: state.pr_state,
     marked_ready: state.marked_ready,
     left_draft: state.left_draft,
+    ship_held: state.ship_held,
+    shipping_disabled: state.shipping_disabled,
+    ship_authorized: state.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -4582,6 +4632,7 @@ function createRiddleProofRunCard(state, input = {}) {
   const visualDelta = visualDeltaFrom({ fullRiddleState: fullState, runState: state });
   const artifacts = artifactsFrom({ fullRiddleState: fullState, runState: state });
   const viewportMatrix = viewportMatrixFrom({ fullRiddleState: fullState, runState: state });
+  const shipControl = shipControlStateFor({ state });
   return {
     version: RIDDLE_PROOF_RUN_CARD_VERSION,
     run_id: state.run_id || "unknown",
@@ -4635,6 +4686,9 @@ function createRiddleProofRunCard(state, input = {}) {
     stop_condition: compactRecord({
       status: state.status,
       terminal: isTerminalStatus(state.status),
+      ship_held: shipControl.ship_held,
+      shipping_disabled: shipControl.shipping_disabled,
+      ship_authorized: shipControl.ship_authorized,
       blocker_code: state.blocker?.code || null,
       blocker_message: state.blocker?.message || null,
       proof_decision: state.proof_decision,
@@ -4795,7 +4849,8 @@ function appendStageHeartbeat(state, input) {
 function createRunStatusSnapshot(state, at = timestamp2()) {
   const latestEvent = state.events[state.events.length - 1];
   const runId = state.run_id || "unknown";
-  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status);
+  const shipControl = shipControlStateFor({ state });
+  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status) && state.run_card.stop_condition?.ship_held === shipControl.ship_held && state.run_card.stop_condition?.shipping_disabled === shipControl.shipping_disabled && state.run_card.stop_condition?.ship_authorized === shipControl.ship_authorized;
   const runCard = existingRunCardCurrent ? state.run_card : createRiddleProofRunCard(state, { at });
   return compactRecord({
     run_id: runId,
@@ -4809,6 +4864,9 @@ function createRunStatusSnapshot(state, at = timestamp2()) {
     pr_url: state.pr_url ?? null,
     pr_branch: state.pr_branch ?? null,
     pr_state: state.pr_state,
+    ship_held: shipControl.ship_held,
+    shipping_disabled: shipControl.shipping_disabled,
+    ship_authorized: shipControl.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -5095,7 +5153,7 @@ function shipHeldTerminal(state, result) {
     "ready_to_ship",
     result,
     result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
-    { ship_held: true }
+    { ship_held: true, shipping_disabled: true, ship_authorized: false }
   );
 }
 function checkpointContinueStage2(result) {
@@ -5143,6 +5201,32 @@ function isReadyShipGate(result) {
 function proofAssessmentRequestsShip(payload) {
   return String(payload.decision || "").trim() === "ready_to_ship";
 }
+var TRUSTED_PROOF_ASSESSMENT_READY_SOURCES = /* @__PURE__ */ new Set([
+  "supervising_agent",
+  "supervisor",
+  "openclaw_auto_ship_mode_none"
+]);
+function proofAssessmentSourceTrustedForShip(payload) {
+  const source = nonEmptyString(payload.source)?.toLowerCase();
+  if (!source) return true;
+  return TRUSTED_PROOF_ASSESSMENT_READY_SOURCES.has(source);
+}
+function proofAssessmentSourceBlocker(input) {
+  if (!proofAssessmentRequestsShip(input.payload)) return null;
+  if (proofAssessmentSourceTrustedForShip(input.payload)) return null;
+  const source = nonEmptyString(input.payload.source) || "unknown";
+  return {
+    code: input.code || "proof_assessment_source_not_trusted",
+    checkpoint: input.checkpoint || null,
+    message: `Riddle Proof cannot mark ready_to_ship from untrusted proof assessment source: ${source}.`,
+    details: compactRecord({
+      stage: input.stage || null,
+      proofAssessment: input.payload,
+      checkpoint_response_source: input.response?.source || null,
+      response: input.response || null
+    })
+  };
+}
 function proofAssessmentHardBlockers(state, payload) {
   const blockers = proofAssessmentHardBlockersForState(state || {});
   if (Array.isArray(payload.hard_blockers)) {
@@ -5173,6 +5257,15 @@ function stageFromCheckpointResponse(response, packet) {
   const stage = response.continue_with_stage || nonEmptyString(payload.continue_with_stage) || nonEmptyString(payload.recommended_stage) || nonEmptyString(resume?.continue_with_stage) || (response.decision === "retry_stage" ? packet.stage : "");
   return stage ? stage : null;
 }
+function proofAssessmentSourceFromCheckpointResponse(response) {
+  const kind = nonEmptyString(response.source?.kind)?.toLowerCase();
+  if (!kind) return "supervising_agent";
+  if (kind === "human") return "supervisor";
+  if (kind === "codex" || kind === "openclaw-main" || kind === "claude-code") {
+    return "supervising_agent";
+  }
+  return `checkpoint_response:${kind}`;
+}
 function proofAssessmentPayloadFromCheckpointResponse(response) {
   if (![
     "ready_to_ship",
@@ -5193,7 +5286,7 @@ function proofAssessmentPayloadFromCheckpointResponse(response) {
     continue_with_stage: stage || void 0,
     escalation_target: nonEmptyString(payload.escalation_target) || "agent",
     reasons: Array.isArray(response.reasons) ? response.reasons : Array.isArray(payload.reasons) ? payload.reasons : [],
-    source: "supervising_agent",
+    source: proofAssessmentSourceFromCheckpointResponse(response),
     checkpoint_response_source: response.source || null,
     checkpoint_response_created_at: response.created_at
   }));
@@ -5338,6 +5431,7 @@ function terminalResult(state, status, result, summary, raw = {}) {
     engineResult: result
   });
   applyTerminalMetadata(state, metadata);
+  applyShipControlState(state, { status, raw });
   persist(state);
   return createRunResult({
     state,
@@ -5644,6 +5738,14 @@ function checkpointResponseContinuation(state, value) {
   if (packet.kind === "assess_proof" || packet.kind === "recover_evidence" || packet.stage === "verify") {
     const assessment = proofAssessmentPayloadFromCheckpointResponse(response);
     if (assessment) {
+      const sourceBlocker = proofAssessmentSourceBlocker({
+        checkpoint: packet.checkpoint,
+        stage: packet.stage,
+        payload: assessment,
+        response,
+        code: "checkpoint_response_source_not_trusted"
+      });
+      if (sourceBlocker) return { blocker: sourceBlocker };
       appendCheckpointResponse(state, response);
       if (state.request.ship_mode !== "ship" && proofAssessmentRequestsShip(assessment)) {
         const result = {
@@ -5662,6 +5764,8 @@ function checkpointResponseContinuation(state, value) {
             response.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
             {
               ship_held: true,
+              shipping_disabled: true,
+              ship_authorized: false,
               proof_assessment: assessment
             }
           )
@@ -6202,6 +6306,25 @@ async function routeCheckpoint(request, state, result, agent, input) {
         }
       };
     }
+    const sourceBlocker = proofAssessmentSourceBlocker({
+      checkpoint,
+      stage: "verify",
+      payload,
+      code: "proof_assessment_source_not_trusted"
+    });
+    if (sourceBlocker) {
+      recordEvent(state, {
+        kind: "agent.proof_assessment.source_blocked",
+        checkpoint,
+        stage: "verify",
+        summary: sourceBlocker.message,
+        details: compactRecord({
+          proof_assessment: payload,
+          agent_duration_ms: durationMs
+        })
+      });
+      return { blocker: sourceBlocker };
+    }
     const visualBlocker = proofAssessmentVisualBlocker({
       ...context.fullRiddleState || {},
       verification_mode: context.fullRiddleState?.verification_mode || request.verification_mode
@@ -6236,6 +6359,8 @@ async function routeCheckpoint(request, state, result, agent, input) {
           assessment.summary || result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
           {
             ship_held: true,
+            shipping_disabled: true,
+            ship_authorized: false,
             proof_assessment: payload
           }
         )

package/dist/cli.js

@@ -1,14 +1,14 @@
 #!/usr/bin/env node
-import "./chunk-2ALMXMFZ.js";
+import "./chunk-MYMTAVGP.js";
 import "./chunk-DI2XNGEZ.js";
 import "./chunk-6KYXX4OE.js";
 import "./chunk-EX7TO4I5.js";
-import "./chunk-ZLBOGPUL.js";
-import "./chunk-WDIKPIMB.js";
-import "./chunk-JJ4IWRMJ.js";
+import "./chunk-QGE3KBRL.js";
+import "./chunk-Q5GYD5RG.js";
+import "./chunk-NYRMPWJB.js";
 import "./chunk-EKZXU6MU.js";
-import "./chunk-BLM5EIBA.js";
+import "./chunk-QUK3SG24.js";
 import "./chunk-JFQXAJH2.js";
-import "./chunk-73EBR3YL.js";
-import "./chunk-VY4Y5U57.js";
+import "./chunk-SONWF3FQ.js";
+import "./chunk-W44XEGYW.js";
 import "./chunk-MLKGABMK.js";

package/dist/codex-exec-agent.js

@@ -2,8 +2,8 @@ import {
   createCodexExecAgentAdapter,
   createCodexExecJsonRunner,
   runCodexExecAgentDoctor
-} from "./chunk-73EBR3YL.js";
-import "./chunk-VY4Y5U57.js";
+} from "./chunk-SONWF3FQ.js";
+import "./chunk-W44XEGYW.js";
 import "./chunk-MLKGABMK.js";
 export {
   createCodexExecAgentAdapter,

package/dist/engine-harness.cjs

@@ -3518,6 +3518,9 @@ function normalizeTerminalMetadata(input) {
     pr_state: prState,
     marked_ready: markedReady,
     left_draft: leftDraft,
+    ship_held: firstBoolean(riddleState.ship_held, result.ship_held, result.shipHeld, details.ship_held, details.shipHeld, shipReport.ship_held, shipReport.shipHeld),
+    shipping_disabled: firstBoolean(riddleState.shipping_disabled, result.shipping_disabled, result.shippingDisabled, details.shipping_disabled, details.shippingDisabled, shipReport.shipping_disabled, shipReport.shippingDisabled),
+    ship_authorized: firstBoolean(riddleState.ship_authorized, result.ship_authorized, result.shipAuthorized, details.ship_authorized, details.shipAuthorized, shipReport.ship_authorized, shipReport.shipAuthorized),
     ci_status: firstNonEmptyString(riddleState.ci_status, result.ci_status, result.ciStatus, details.ci_status, details.ciStatus, shipReport.ci_status),
     ship_commit: firstNonEmptyString(riddleState.ship_commit, result.ship_commit, result.shipCommit, details.ship_commit, details.shipCommit, shipReport.shipped_commit, shipReport.ship_commit),
     ship_remote_head: firstNonEmptyString(riddleState.ship_remote_head, result.ship_remote_head, result.shipRemoteHead, details.ship_remote_head, details.shipRemoteHead, shipReport.ship_remote_head),
@@ -3551,6 +3554,9 @@ function applyTerminalMetadata(state, metadata) {
   if (prBranch) state.pr_branch = prBranch;
   if (typeof metadata.marked_ready === "boolean") state.marked_ready = metadata.marked_ready;
   if (typeof metadata.left_draft === "boolean") state.left_draft = metadata.left_draft;
+  if (typeof metadata.ship_held === "boolean") state.ship_held = metadata.ship_held;
+  if (typeof metadata.shipping_disabled === "boolean") state.shipping_disabled = metadata.shipping_disabled;
+  if (typeof metadata.ship_authorized === "boolean") state.ship_authorized = metadata.ship_authorized;
   const ciStatus = nonEmptyString(metadata.ci_status);
   if (ciStatus) state.ci_status = ciStatus;
   const shipCommit = nonEmptyString(metadata.ship_commit);
@@ -3582,12 +3588,53 @@ function applyTerminalMetadata(state, metadata) {
   if (typeof metadata.finalized === "boolean") state.finalized = metadata.finalized;
   return state;
 }
+function shipControlStateFor(input) {
+  const state = input.state;
+  const status = input.status || state.status;
+  const raw = recordValue(input.raw) || {};
+  const shipReport = recordValue(state.ship_report) || {};
+  const prState = recordValue(state.pr_state) || {};
+  const shippingDisabled = firstBoolean(
+    raw.shipping_disabled,
+    raw.shippingDisabled,
+    state.shipping_disabled,
+    shipReport.shipping_disabled,
+    shipReport.shippingDisabled
+  ) ?? state.request?.ship_mode === "none";
+  const explicitAuthorized = firstBoolean(
+    raw.ship_authorized,
+    raw.shipAuthorized,
+    state.ship_authorized,
+    shipReport.ship_authorized,
+    shipReport.shipAuthorized
+  );
+  const authorizationEvidence = Boolean(
+    status === "shipped" || state.marked_ready === true || shipReport.marked_ready === true || prState.status === "merged" || state.merge_commit || state.merged_at
+  );
+  const inferredAuthorized = explicitAuthorized ?? authorizationEvidence;
+  const rawHeld = firstBoolean(raw.ship_held, raw.shipHeld);
+  const inferredHeld = status === "ready_to_ship" && shippingDisabled && !inferredAuthorized;
+  const shipHeld = rawHeld ?? (state.ship_held === true || inferredHeld);
+  return {
+    ship_held: shipHeld,
+    shipping_disabled: shippingDisabled,
+    ship_authorized: shipHeld ? false : inferredAuthorized
+  };
+}
+function applyShipControlState(state, input = {}) {
+  const control = shipControlStateFor({ state, status: input.status, raw: input.raw });
+  state.ship_held = control.ship_held;
+  state.shipping_disabled = control.shipping_disabled;
+  state.ship_authorized = control.ship_authorized;
+  return state;
+}
 function createRunResult(input) {
   const status = input.status || input.state.status;
   const ok = isSuccessfulStatus(status);
   const state = input.metadata ? applyTerminalMetadata(input.state, input.metadata) : input.state;
   state.status = status;
   state.ok = ok;
+  applyShipControlState(state, { status, raw: input.raw });
   return compactRecord({
     ok,
     status,
@@ -3605,6 +3652,9 @@ function createRunResult(input) {
     pr_state: state.pr_state,
     marked_ready: state.marked_ready,
     left_draft: state.left_draft,
+    ship_held: state.ship_held,
+    shipping_disabled: state.shipping_disabled,
+    ship_authorized: state.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -4494,6 +4544,7 @@ function createRiddleProofRunCard(state, input = {}) {
   const visualDelta = visualDeltaFrom({ fullRiddleState: fullState, runState: state });
   const artifacts = artifactsFrom({ fullRiddleState: fullState, runState: state });
   const viewportMatrix = viewportMatrixFrom({ fullRiddleState: fullState, runState: state });
+  const shipControl = shipControlStateFor({ state });
   return {
     version: RIDDLE_PROOF_RUN_CARD_VERSION,
     run_id: state.run_id || "unknown",
@@ -4547,6 +4598,9 @@ function createRiddleProofRunCard(state, input = {}) {
     stop_condition: compactRecord({
       status: state.status,
       terminal: isTerminalStatus(state.status),
+      ship_held: shipControl.ship_held,
+      shipping_disabled: shipControl.shipping_disabled,
+      ship_authorized: shipControl.ship_authorized,
       blocker_code: state.blocker?.code || null,
       blocker_message: state.blocker?.message || null,
       proof_decision: state.proof_decision,
@@ -4707,7 +4761,8 @@ function appendStageHeartbeat(state, input) {
 function createRunStatusSnapshot(state, at = timestamp2()) {
   const latestEvent = state.events[state.events.length - 1];
   const runId = state.run_id || "unknown";
-  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status);
+  const shipControl = shipControlStateFor({ state });
+  const existingRunCardCurrent = state.run_card?.status === state.status && state.run_card.stop_condition?.status === state.status && state.run_card.stop_condition?.terminal === isTerminalStatus(state.status) && state.run_card.stop_condition?.monitor_should_continue === !isTerminalStatus(state.status) && state.run_card.stop_condition?.ship_held === shipControl.ship_held && state.run_card.stop_condition?.shipping_disabled === shipControl.shipping_disabled && state.run_card.stop_condition?.ship_authorized === shipControl.ship_authorized;
   const runCard = existingRunCardCurrent ? state.run_card : createRiddleProofRunCard(state, { at });
   return compactRecord({
     run_id: runId,
@@ -4721,6 +4776,9 @@ function createRunStatusSnapshot(state, at = timestamp2()) {
     pr_url: state.pr_url ?? null,
     pr_branch: state.pr_branch ?? null,
     pr_state: state.pr_state,
+    ship_held: shipControl.ship_held,
+    shipping_disabled: shipControl.shipping_disabled,
+    ship_authorized: shipControl.ship_authorized,
     ci_status: state.ci_status,
     ship_commit: state.ship_commit,
     ship_remote_head: state.ship_remote_head,
@@ -5007,7 +5065,7 @@ function shipHeldTerminal(state, result) {
     "ready_to_ship",
     result,
     result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
-    { ship_held: true }
+    { ship_held: true, shipping_disabled: true, ship_authorized: false }
   );
 }
 function checkpointContinueStage2(result) {
@@ -5055,6 +5113,32 @@ function isReadyShipGate(result) {
 function proofAssessmentRequestsShip(payload) {
   return String(payload.decision || "").trim() === "ready_to_ship";
 }
+var TRUSTED_PROOF_ASSESSMENT_READY_SOURCES = /* @__PURE__ */ new Set([
+  "supervising_agent",
+  "supervisor",
+  "openclaw_auto_ship_mode_none"
+]);
+function proofAssessmentSourceTrustedForShip(payload) {
+  const source = nonEmptyString(payload.source)?.toLowerCase();
+  if (!source) return true;
+  return TRUSTED_PROOF_ASSESSMENT_READY_SOURCES.has(source);
+}
+function proofAssessmentSourceBlocker(input) {
+  if (!proofAssessmentRequestsShip(input.payload)) return null;
+  if (proofAssessmentSourceTrustedForShip(input.payload)) return null;
+  const source = nonEmptyString(input.payload.source) || "unknown";
+  return {
+    code: input.code || "proof_assessment_source_not_trusted",
+    checkpoint: input.checkpoint || null,
+    message: `Riddle Proof cannot mark ready_to_ship from untrusted proof assessment source: ${source}.`,
+    details: compactRecord({
+      stage: input.stage || null,
+      proofAssessment: input.payload,
+      checkpoint_response_source: input.response?.source || null,
+      response: input.response || null
+    })
+  };
+}
 function proofAssessmentHardBlockers(state, payload) {
   const blockers = proofAssessmentHardBlockersForState(state || {});
   if (Array.isArray(payload.hard_blockers)) {
@@ -5085,6 +5169,15 @@ function stageFromCheckpointResponse(response, packet) {
   const stage = response.continue_with_stage || nonEmptyString(payload.continue_with_stage) || nonEmptyString(payload.recommended_stage) || nonEmptyString(resume?.continue_with_stage) || (response.decision === "retry_stage" ? packet.stage : "");
   return stage ? stage : null;
 }
+function proofAssessmentSourceFromCheckpointResponse(response) {
+  const kind = nonEmptyString(response.source?.kind)?.toLowerCase();
+  if (!kind) return "supervising_agent";
+  if (kind === "human") return "supervisor";
+  if (kind === "codex" || kind === "openclaw-main" || kind === "claude-code") {
+    return "supervising_agent";
+  }
+  return `checkpoint_response:${kind}`;
+}
 function proofAssessmentPayloadFromCheckpointResponse(response) {
   if (![
     "ready_to_ship",
@@ -5105,7 +5198,7 @@ function proofAssessmentPayloadFromCheckpointResponse(response) {
     continue_with_stage: stage || void 0,
     escalation_target: nonEmptyString(payload.escalation_target) || "agent",
     reasons: Array.isArray(response.reasons) ? response.reasons : Array.isArray(payload.reasons) ? payload.reasons : [],
-    source: "supervising_agent",
+    source: proofAssessmentSourceFromCheckpointResponse(response),
     checkpoint_response_source: response.source || null,
     checkpoint_response_created_at: response.created_at
   }));
@@ -5250,6 +5343,7 @@ function terminalResult(state, status, result, summary, raw = {}) {
     engineResult: result
   });
   applyTerminalMetadata(state, metadata);
+  applyShipControlState(state, { status, raw });
   persist(state);
   return createRunResult({
     state,
@@ -5556,6 +5650,14 @@ function checkpointResponseContinuation(state, value) {
   if (packet.kind === "assess_proof" || packet.kind === "recover_evidence" || packet.stage === "verify") {
     const assessment = proofAssessmentPayloadFromCheckpointResponse(response);
     if (assessment) {
+      const sourceBlocker = proofAssessmentSourceBlocker({
+        checkpoint: packet.checkpoint,
+        stage: packet.stage,
+        payload: assessment,
+        response,
+        code: "checkpoint_response_source_not_trusted"
+      });
+      if (sourceBlocker) return { blocker: sourceBlocker };
       appendCheckpointResponse(state, response);
       if (state.request.ship_mode !== "ship" && proofAssessmentRequestsShip(assessment)) {
         const result = {
@@ -5574,6 +5676,8 @@ function checkpointResponseContinuation(state, value) {
             response.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
             {
               ship_held: true,
+              shipping_disabled: true,
+              ship_authorized: false,
               proof_assessment: assessment
             }
           )
@@ -6114,6 +6218,25 @@ async function routeCheckpoint(request, state, result, agent, input) {
         }
       };
     }
+    const sourceBlocker = proofAssessmentSourceBlocker({
+      checkpoint,
+      stage: "verify",
+      payload,
+      code: "proof_assessment_source_not_trusted"
+    });
+    if (sourceBlocker) {
+      recordEvent(state, {
+        kind: "agent.proof_assessment.source_blocked",
+        checkpoint,
+        stage: "verify",
+        summary: sourceBlocker.message,
+        details: compactRecord({
+          proof_assessment: payload,
+          agent_duration_ms: durationMs
+        })
+      });
+      return { blocker: sourceBlocker };
+    }
     const visualBlocker = proofAssessmentVisualBlocker({
       ...context.fullRiddleState || {},
       verification_mode: context.fullRiddleState?.verification_mode || request.verification_mode
@@ -6148,6 +6271,8 @@ async function routeCheckpoint(request, state, result, agent, input) {
           assessment.summary || result.summary || "Riddle Proof evidence is approved, but ship_mode=none is holding before PR/ship.",
           {
             ship_held: true,
+            shipping_disabled: true,
+            ship_authorized: false,
             proof_assessment: payload
           }
         )

package/dist/engine-harness.js

@@ -2,12 +2,12 @@ import {
   createDisabledRiddleProofAgentAdapter,
   readRiddleProofRunStatus,
   runRiddleProofEngineHarness
-} from "./chunk-ZLBOGPUL.js";
-import "./chunk-WDIKPIMB.js";
-import "./chunk-JJ4IWRMJ.js";
+} from "./chunk-QGE3KBRL.js";
+import "./chunk-Q5GYD5RG.js";
+import "./chunk-NYRMPWJB.js";
 import "./chunk-EKZXU6MU.js";
-import "./chunk-BLM5EIBA.js";
-import "./chunk-VY4Y5U57.js";
+import "./chunk-QUK3SG24.js";
+import "./chunk-W44XEGYW.js";
 import "./chunk-MLKGABMK.js";
 export {
   createDisabledRiddleProofAgentAdapter,