loki-mode 7.56.0 → 7.58.0

package/docs/INSTALLATION.md

@@ -2,7 +2,7 @@
 
 The flagship product of [Autonomi](https://www.autonomi.dev/). Loki Mode is a spec-driven autonomous builder with a built-in trust layer that takes any spec to a deployed product and verifies completion with evidence (quality gates plus a completion council), not just a "done" claim. Complete installation instructions for all platforms and use cases.
 
-**Version:** v7.56.0
+**Version:** v7.58.0
 
 ---
 
@@ -395,7 +395,7 @@ provider works inside the container. Provide auth with your Anthropic API key:
 # Run Loki Mode in Docker (Claude provider, API-key auth)
 docker run --rm -e ANTHROPIC_API_KEY="$ANTHROPIC_API_KEY" \
   -v $(pwd):/workspace -w /workspace \
-  asklokesh/loki-mode:7.56.0 start ./my-spec.md
+  asklokesh/loki-mode:7.58.0 start ./my-spec.md
 ```
 
 ##### docker compose + .env (no host install)

package/loki-ts/dist/loki.js

@@ -1,5 +1,5 @@
 // @bun
-var r6=Object.defineProperty;var t6=($)=>$;function i6($,Q){this[$]=t6.bind(null,Q)}var h=($,Q)=>{for(var Z in Q)r6($,Z,{get:Q[Z],enumerable:!0,configurable:!0,set:i6.bind(Q,Z)})};var L=($,Q)=>()=>($&&(Q=$($=0)),Q);var K$=import.meta.require;var D1={};h(D1,{lokiDir:()=>P,homeLokiDir:()=>n$,findRepoRootForVersion:()=>o$,REPO_ROOT:()=>g});import{resolve as n,dirname as d$}from"path";import{fileURLToPath as e6}from"url";import{existsSync as P$}from"fs";import{homedir as $Q}from"os";function QQ(){let $=S1;for(let Q=0;Q<6;Q++){if(P$(n($,"VERSION"))&&P$(n($,"autonomy/run.sh")))return $;let Z=d$($);if(Z===$)break;$=Z}return n(S1,"..","..","..")}function o$($){let Q=$;for(let Z=0;Z<6;Z++){if(P$(n(Q,"VERSION"))&&P$(n(Q,"autonomy/run.sh")))return Q;let z=d$(Q);if(z===Q)break;Q=z}return n($,"..","..","..")}function P(){return process.env.LOKI_DIR??n(process.cwd(),".loki")}function n$(){return n($Q(),".loki")}var S1,g;var b=L(()=>{S1=d$(e6(import.meta.url));g=QQ()});import{readFileSync as ZQ}from"fs";import{resolve as zQ,dirname as XQ}from"path";import{fileURLToPath as KQ}from"url";function j$(){if($$!==null)return $$;let $="7.56.0";if(typeof $==="string"&&$.length>0)return $$=$,$$;try{let Q=XQ(KQ(import.meta.url)),Z=o$(Q);$$=ZQ(zQ(Z,"VERSION"),"utf-8").trim()}catch{$$="unknown"}return $$}var $$=null;var a$=L(()=>{b()});var b1={};h(b1,{runOrThrow:()=>qQ,run:()=>k,commandVersion:()=>WQ,commandExists:()=>f,ShellError:()=>s$});async function k($,Q={}){let Z=Bun.spawn({cmd:[...$],stdout:"pipe",stderr:"pipe",env:Q.env?{...process.env,...Q.env}:process.env,cwd:Q.cwd}),z,X;if(Q.timeoutMs&&Q.timeoutMs>0)z=setTimeout(()=>{try{Z.kill("SIGTERM")}catch{}X=setTimeout(()=>{try{Z.kill("SIGKILL")}catch{}},2000)},Q.timeoutMs);try{let[q,K,W]=await Promise.all([new Response(Z.stdout).text(),new Response(Z.stderr).text(),Z.exited]);return{stdout:q,stderr:K,exitCode:W}}finally{if(z)clearTimeout(z);if(X)clearTimeout(X)}}async function qQ($,Q={}){let Z=await k($,Q);if(Z.exitCode!==0)throw new s$(`command failed (${Z.exitCode}): ${$.join(" ")}`,Z.exitCode,Z.stdout,Z.stderr);return Z}async function f($){let Q=VQ($),Z=await k(["sh","-c",`command -v ${Q}`],{timeoutMs:5000});if(Z.exitCode===0)return Z.stdout.trim()||null;return null}function VQ($){if(!/^[A-Za-z0-9._/-]+$/.test($))throw Error(`refused to shell-escape suspect token: ${$}`);return $}async function WQ($,Q="--version"){if(!await f($))return null;let z=await k([$,Q],{timeoutMs:5000});if(z.exitCode!==0)return null;return((z.stdout||z.stderr).split(/\r?\n/)[0]?.trim()??"")||null}var s$;var d=L(()=>{s$=class s$ extends Error{message;exitCode;stdout;stderr;constructor($,Q,Z,z){super($);this.message=$;this.exitCode=Q;this.stdout=Z;this.stderr=z;this.name="ShellError"}}});function a($){return JQ?"":$}var JQ,T,S,_,wZ,I,R,y,V;var c=L(()=>{JQ=(process.env.NO_COLOR??"").length>0;T=a("\x1B[0;31m"),S=a("\x1B[0;32m"),_=a("\x1B[1;33m"),wZ=a("\x1B[0;34m"),I=a("\x1B[0;36m"),R=a("\x1B[1m"),y=a("\x1B[2m"),V=a("\x1B[0m")});import{existsSync as wQ}from"fs";async function Q$(){if(G$!==void 0)return G$;let $="/opt/homebrew/bin/python3.12";if(wQ($))return G$=$,$;let Q=await f("python3.12");if(Q)return G$=Q,Q;let Z=await f("python3");return G$=Z,Z}async function Z$($,Q={}){let Z=await Q$();if(!Z)return{stdout:"",stderr:"python3 not found",exitCode:127};return k([Z,"-c",$],Q)}var G$;var q$=L(()=>{d()});var e1={};h(e1,{runStatus:()=>uQ});import{existsSync as v,readFileSync as W$,readdirSync as d1,statSync as o1}from"fs";import{resolve as C,basename as DQ}from"path";import{homedir as CQ}from"os";function n1($){let Q=Math.trunc($);if(Q>=1e6)return`${(Math.trunc(Q/1e6*10)/10).toFixed(1)}M`;if(Q>=1000)return`${(Math.trunc(Q/1000*10)/10).toFixed(1)}K`;return String(Q)}function a1($,Q,Z){if(Q===0)return null;let z=Math.trunc($*100/Q),X=Math.trunc($*k$/Q);if(X>k$)X=k$;let q=k$-X,K=S;if(z>=80)K=T;else if(z>=50)K=_;let W="=".repeat(Math.max(0,X))+" ".repeat(Math.max(0,q)),J=n1($),U=n1(Q);return`  ${R}${Z}${V} ${K}[${W}]${V} ${z}% (${J} / ${U})`}async function hQ(){if(await f("jq"))return!0;return process.stdout.write(`${T}Error: jq is required but not installed.${V}
+var r6=Object.defineProperty;var t6=($)=>$;function i6($,Q){this[$]=t6.bind(null,Q)}var h=($,Q)=>{for(var Z in Q)r6($,Z,{get:Q[Z],enumerable:!0,configurable:!0,set:i6.bind(Q,Z)})};var L=($,Q)=>()=>($&&(Q=$($=0)),Q);var K$=import.meta.require;var D1={};h(D1,{lokiDir:()=>P,homeLokiDir:()=>n$,findRepoRootForVersion:()=>o$,REPO_ROOT:()=>g});import{resolve as n,dirname as d$}from"path";import{fileURLToPath as e6}from"url";import{existsSync as P$}from"fs";import{homedir as $Q}from"os";function QQ(){let $=S1;for(let Q=0;Q<6;Q++){if(P$(n($,"VERSION"))&&P$(n($,"autonomy/run.sh")))return $;let Z=d$($);if(Z===$)break;$=Z}return n(S1,"..","..","..")}function o$($){let Q=$;for(let Z=0;Z<6;Z++){if(P$(n(Q,"VERSION"))&&P$(n(Q,"autonomy/run.sh")))return Q;let z=d$(Q);if(z===Q)break;Q=z}return n($,"..","..","..")}function P(){return process.env.LOKI_DIR??n(process.cwd(),".loki")}function n$(){return n($Q(),".loki")}var S1,g;var b=L(()=>{S1=d$(e6(import.meta.url));g=QQ()});import{readFileSync as ZQ}from"fs";import{resolve as zQ,dirname as XQ}from"path";import{fileURLToPath as KQ}from"url";function j$(){if($$!==null)return $$;let $="7.58.0";if(typeof $==="string"&&$.length>0)return $$=$,$$;try{let Q=XQ(KQ(import.meta.url)),Z=o$(Q);$$=ZQ(zQ(Z,"VERSION"),"utf-8").trim()}catch{$$="unknown"}return $$}var $$=null;var a$=L(()=>{b()});var b1={};h(b1,{runOrThrow:()=>qQ,run:()=>k,commandVersion:()=>WQ,commandExists:()=>f,ShellError:()=>s$});async function k($,Q={}){let Z=Bun.spawn({cmd:[...$],stdout:"pipe",stderr:"pipe",env:Q.env?{...process.env,...Q.env}:process.env,cwd:Q.cwd}),z,X;if(Q.timeoutMs&&Q.timeoutMs>0)z=setTimeout(()=>{try{Z.kill("SIGTERM")}catch{}X=setTimeout(()=>{try{Z.kill("SIGKILL")}catch{}},2000)},Q.timeoutMs);try{let[q,K,W]=await Promise.all([new Response(Z.stdout).text(),new Response(Z.stderr).text(),Z.exited]);return{stdout:q,stderr:K,exitCode:W}}finally{if(z)clearTimeout(z);if(X)clearTimeout(X)}}async function qQ($,Q={}){let Z=await k($,Q);if(Z.exitCode!==0)throw new s$(`command failed (${Z.exitCode}): ${$.join(" ")}`,Z.exitCode,Z.stdout,Z.stderr);return Z}async function f($){let Q=VQ($),Z=await k(["sh","-c",`command -v ${Q}`],{timeoutMs:5000});if(Z.exitCode===0)return Z.stdout.trim()||null;return null}function VQ($){if(!/^[A-Za-z0-9._/-]+$/.test($))throw Error(`refused to shell-escape suspect token: ${$}`);return $}async function WQ($,Q="--version"){if(!await f($))return null;let z=await k([$,Q],{timeoutMs:5000});if(z.exitCode!==0)return null;return((z.stdout||z.stderr).split(/\r?\n/)[0]?.trim()??"")||null}var s$;var d=L(()=>{s$=class s$ extends Error{message;exitCode;stdout;stderr;constructor($,Q,Z,z){super($);this.message=$;this.exitCode=Q;this.stdout=Z;this.stderr=z;this.name="ShellError"}}});function a($){return JQ?"":$}var JQ,T,S,_,wZ,I,R,y,V;var c=L(()=>{JQ=(process.env.NO_COLOR??"").length>0;T=a("\x1B[0;31m"),S=a("\x1B[0;32m"),_=a("\x1B[1;33m"),wZ=a("\x1B[0;34m"),I=a("\x1B[0;36m"),R=a("\x1B[1m"),y=a("\x1B[2m"),V=a("\x1B[0m")});import{existsSync as wQ}from"fs";async function Q$(){if(G$!==void 0)return G$;let $="/opt/homebrew/bin/python3.12";if(wQ($))return G$=$,$;let Q=await f("python3.12");if(Q)return G$=Q,Q;let Z=await f("python3");return G$=Z,Z}async function Z$($,Q={}){let Z=await Q$();if(!Z)return{stdout:"",stderr:"python3 not found",exitCode:127};return k([Z,"-c",$],Q)}var G$;var q$=L(()=>{d()});var e1={};h(e1,{runStatus:()=>uQ});import{existsSync as v,readFileSync as W$,readdirSync as d1,statSync as o1}from"fs";import{resolve as C,basename as DQ}from"path";import{homedir as CQ}from"os";function n1($){let Q=Math.trunc($);if(Q>=1e6)return`${(Math.trunc(Q/1e6*10)/10).toFixed(1)}M`;if(Q>=1000)return`${(Math.trunc(Q/1000*10)/10).toFixed(1)}K`;return String(Q)}function a1($,Q,Z){if(Q===0)return null;let z=Math.trunc($*100/Q),X=Math.trunc($*k$/Q);if(X>k$)X=k$;let q=k$-X,K=S;if(z>=80)K=T;else if(z>=50)K=_;let W="=".repeat(Math.max(0,X))+" ".repeat(Math.max(0,q)),J=n1($),U=n1(Q);return`  ${R}${Z}${V} ${K}[${W}]${V} ${z}% (${J} / ${U})`}async function hQ(){if(await f("jq"))return!0;return process.stdout.write(`${T}Error: jq is required but not installed.${V}
 `),process.stdout.write(`Install with:
 `),process.stdout.write(`  brew install jq    (macOS)
 `),process.stdout.write(`  apt install jq     (Debian/Ubuntu)
@@ -790,4 +790,4 @@ Set LOKI_LEGACY_BASH=1 to force the bash CLI for every command.
 `),2}default:return process.stderr.write(`Unknown command: ${Q}
 `),process.stderr.write(s6),2}}l1();process.on("SIGINT",()=>process.exit(130));process.on("SIGTERM",()=>process.exit(143));var KZ=await XZ(Bun.argv.slice(2));process.exit(KZ);
 
-//# debugId=3D16FCC1B4694B0E64756E2164756E21
+//# debugId=9F9D3B1A3FBD072264756E2164756E21

package/mcp/__init__.py

@@ -57,4 +57,4 @@ try:
 except ImportError:
     __all__ = ['mcp']
 
-__version__ = '7.56.0'
+__version__ = '7.58.0'

package/memory/consolidation.py

@@ -221,10 +221,17 @@ class ConsolidationPipeline:
                 if new_pattern:
                     # Try to merge with existing
                     merged = False
-                    for existing in existing_patterns:
+                    for idx, existing in enumerate(existing_patterns):
                         if self._patterns_similar(new_pattern, existing):
                             merged_pattern = self.merge_with_existing(new_pattern, [existing])
                             self.storage.update_pattern(merged_pattern)
+                            # Refresh the in-memory copy so a later new pattern in
+                            # this same run that also merges into this existing
+                            # pattern builds on the just-merged state. Without this,
+                            # the second merge reads the stale pre-merge base and its
+                            # update_pattern() overwrites storage, silently dropping
+                            # the first merge's conditions/source_episodes/confidence.
+                            existing_patterns[idx] = merged_pattern
                             result.patterns_merged += 1
                             merged = True
                             break
@@ -240,11 +247,16 @@ class ConsolidationPipeline:
         for anti_pattern in anti_patterns:
             # Check if similar anti-pattern already exists
             merged = False
-            for existing in existing_patterns:
+            for idx, existing in enumerate(existing_patterns):
                 if (existing.incorrect_approach and
                     self._patterns_similar(anti_pattern, existing, threshold=0.6)):
                     merged_pattern = self.merge_with_existing(anti_pattern, [existing])
                     self.storage.update_pattern(merged_pattern)
+                    # Refresh in-memory copy (same data-loss guard as the cluster
+                    # merge loop above): a later anti-pattern merging into this same
+                    # existing pattern must build on the just-merged state, not the
+                    # stale pre-merge base.
+                    existing_patterns[idx] = merged_pattern
                     result.patterns_merged += 1
                     merged = True
                     break

package/memory/retrieval.py

@@ -855,6 +855,8 @@ class MemoryRetrieval:
         # Filter semantic patterns by last_used
         patterns_data = self.storage.read_json("semantic/patterns.json") or {}
         for pattern in patterns_data.get("patterns", []):
+            if not isinstance(pattern, dict):
+                continue
             last_used = pattern.get("last_used")
             if last_used:
                 try:
@@ -1483,6 +1485,8 @@ class MemoryRetrieval:
         patterns_data = self.storage.read_json("semantic/patterns.json") or {}
 
         for pattern in patterns_data.get("patterns", []):
+            if not isinstance(pattern, dict):
+                continue
             pattern_text = pattern.get("pattern", "").lower()
             category = pattern.get("category", "").lower()
             correct = pattern.get("correct_approach", "").lower()
@@ -1566,6 +1570,8 @@ class MemoryRetrieval:
         # what_fails / why / prevention scoring shape.
         patterns_data = self.storage.read_json("semantic/patterns.json") or {}
         for pat in patterns_data.get("patterns", []):
+            if not isinstance(pat, dict):
+                continue
             if pat.get("category") != "anti-pattern":
                 continue
             what_fails = (pat.get("incorrect_approach", "")
@@ -1633,6 +1639,8 @@ class MemoryRetrieval:
         patterns_data = self.storage.read_json("semantic/patterns.json") or {}
 
         for pattern in patterns_data.get("patterns", []):
+            if not isinstance(pattern, dict):
+                continue
             # Create text for embedding
             text = f"{pattern.get('pattern', '')} {pattern.get('category', '')} {pattern.get('correct_approach', '')}"
 
@@ -1690,6 +1698,8 @@ class MemoryRetrieval:
         # too so embedding-based retrieval sees consolidated anti-patterns.
         patterns_data = self.storage.read_json("semantic/patterns.json") or {}
         for pat in patterns_data.get("patterns", []):
+            if not isinstance(pat, dict):
+                continue
             if pat.get("category") != "anti-pattern":
                 continue
             what_fails = pat.get("incorrect_approach", "") or pat.get("pattern", "")

package/memory/storage.py

@@ -626,6 +626,8 @@ class MemoryStorage:
             # Upsert: update existing pattern or append new
             existing_idx = None
             for i, p in enumerate(patterns_file["patterns"]):
+                if not isinstance(p, dict):
+                    continue
                 if p.get("id") == pattern_id:
                     existing_idx = i
                     break
@@ -672,6 +674,8 @@ class MemoryStorage:
             return None
 
         for pattern in patterns_file.get("patterns", []):
+            if not isinstance(pattern, dict):
+                continue
             if pattern.get("id") == pattern_id:
                 return pattern
 
@@ -695,6 +699,8 @@ class MemoryStorage:
 
         pattern_ids = []
         for pattern in patterns_file.get("patterns", []):
+            if not isinstance(pattern, dict):
+                continue
             if category is None or pattern.get("category") == category:
                 pattern_ids.append(pattern.get("id"))
 
@@ -737,6 +743,8 @@ class MemoryStorage:
             # Find and update pattern
             found = False
             for i, p in enumerate(patterns_file.get("patterns", [])):
+                if not isinstance(p, dict):
+                    continue
                 if p.get("id") == pattern_id:
                     pattern_data["updated_at"] = datetime.now(timezone.utc).isoformat()
                     patterns_file["patterns"][i] = pattern_data
@@ -1364,6 +1372,8 @@ class MemoryStorage:
 
         updated = 0
         for pattern in patterns:
+            if not isinstance(pattern, dict):
+                continue
             original = pattern.get("importance", 0.5)
             self.apply_decay([pattern], decay_rate, half_life_days)
             if abs(pattern.get("importance", 0.5) - original) > 0.001:

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "loki-mode",
   "mcpName": "io.github.asklokesh/loki-mode",
-  "version": "7.56.0",
+  "version": "7.58.0",
   "description": "Loki Mode by Autonomi. Autonomous spec-to-product system: takes a PRD, GitHub issue, OpenAPI/JSON/YAML, or one-line brief to a deployed app via the RARV-C closure loop with 8 quality gates. Provider-agnostic (Claude Code, OpenAI Codex, Cline, Aider).",
   "keywords": [
     "agent",

package/plugins/loki-mode/.claude-plugin/plugin.json

@@ -2,7 +2,7 @@
   "$schema": "https://json.schemastore.org/claude-code-plugin-manifest.json",
   "name": "loki-mode",
   "displayName": "Loki Mode",
-  "version": "7.56.0",
+  "version": "7.58.0",
   "description": "Autonomous spec-to-product build system with a built-in trust layer (RARV-C closure loop, 8 quality gates, completion council). Ships Loki's spec-hardening, drift-detection, and deterministic PR verification commands plus the Loki MCP server.",
   "author": {
     "name": "Autonomi",

package/skills/quality-gates.md

@@ -2,18 +2,35 @@
 
 **Never ship code without passing all quality gates.**
 
-## The Quality Gates (8 default-on + 1 opt-in)
-
-Every gate below is wired into the orchestration loop (`autonomy/run.sh`). The 8
-numbered gates are default-on and block completion when they fail; the opt-in
-gate (marked below) is default-OFF and runs only when its flag is set. The table
-lists exactly what each gate detects, what it does NOT detect (so you never
-over-trust a green gate), its opt-out flag, and its blocking behavior. Transcribe
-this list verbatim; do not recompute it.
+## The Quality Gates (8 blocking default-on + 3 advisory default-on + 1 opt-in)
+
+Every gate below is wired into the orchestration loop (`autonomy/run.sh`). Read
+the count honestly, split by what a gate actually does:
+
+- **8 BLOCKING default-on gates** (the numbered table below): run by default and
+  FAIL the build / block completion when they trip.
+- **3 ADVISORY default-on gates** (LSP diagnostics, semantic test-authenticity,
+  invariant/property; see the advisory table further down): run by default,
+  SURFACE actionable findings into the next iteration's prompt, and never block
+  by default. Two of them gain a blocking arm only via an explicit `*_BLOCK`
+  opt-in flag; LSP diagnostics has no blocking arm at all.
+- **1 OPT-IN gate** (coverage, `LOKI_COVERAGE_GATE`, default OFF): does not run
+  unless explicitly enabled. It is the lone opt-in because it doubles test
+  runtime (instrumented re-run); see the coverage section for why.
+
+So: 8 blocking gates run by default, plus 3 advisory surfacing gates and 1
+opt-in coverage gate. Only the 8 numbered gates block out of the box; the
+advisory gates surface findings without blocking, and the coverage gate is OFF
+unless explicitly enabled. Never count the advisory or opt-in gates as blockers.
+
+The numbered table below lists the 8 BLOCKING default-on gates: exactly what each
+detects, what it does NOT detect (so you never over-trust a green gate), its
+opt-out flag, and its blocking behavior. Transcribe this list verbatim; do not
+recompute it.
 
 | # | Gate | Detects | Does NOT detect | Blocking | Opt-out flag |
 |---|------|---------|-----------------|----------|--------------|
-| 1 | Static Analysis | CodeQL, ESLint/Pylint, type-checker findings on the diff | Logic bugs that pass the linters | Yes (severity ladder) | `PHASE_STATIC_ANALYSIS=false` |
+| 1 | Static Analysis | ESLint/Pylint, type-checker findings on the diff | Logic bugs that pass the linters | Yes (severity ladder) | `PHASE_STATIC_ANALYSIS=false` |
 | 2 | Test Suite (pass/fail) | Whether the project test runner passes or fails (red blocks) | Coverage % (not measured in this release) | Yes (red blocks) | `PHASE_UNIT_TESTS=false` |
 | 3 | Blind Code Review (3-reviewer council + severity blocking) | Correctness/security/design issues via 3 blind reviewers; Critical/High block, Medium/Low advisory | Issues none of the 3 reviewers surface | Yes (Crit/High block) | `PHASE_CODE_REVIEW=false` |
 | 4 | Anti-Sycophancy / Devil's Advocate (on unanimous PASS) | Sycophantic unanimous approvals: a Devil's Advocate re-review on a unanimous PASS; its Crit/High findings block | Problems the Devil's Advocate reviewer also misses | Yes (DA Crit/High block) | `LOKI_GATE_DEVILS_ADVOCATE=false` |
@@ -21,7 +38,12 @@ this list verbatim; do not recompute it.
 | 6 | Test Mutation Detector | Assertion-value churn alongside implementation changes (test-fitting), low assertion density (`tests/detect-test-mutations.sh`); HIGH blocks | Logically-correct-but-weak assertions | Yes (HIGH blocks) | `LOKI_GATE_MUTATION=false` |
 | 7 | Documentation Coverage | README presence, docs freshness within 10 commits, API docs for exported symbols in packages | Whether the docs are accurate or useful | Yes | `LOKI_GATE_DOC_COVERAGE=false` |
 | 8 | Magic Modules Debate | Spec-vs-implementation debate findings on generated Magic Modules; BLOCK-severity findings block | Issues outside the Magic Modules debate scope | Yes (BLOCK severity) | `LOKI_GATE_MAGIC_DEBATE=false` |
-| 9 (opt-in, default OFF) | Semantic Test-Authenticity | Fake tests that look real but verify nothing (literal-via-variable echo, mock-return echo, deleted assertions) that gates 5+6 miss (`tests/detect-semantic-test-problems.sh --block-high`); CRITICAL/HIGH block | Deep dataflow, legitimate computed-literal assertions, Python/shell tests (JS/TS only); MED/LOW are advisory | Only when enabled, and only on CRITICAL/HIGH; runs solely on a completion claim | Opt-IN: `LOKI_GATE_SEMANTIC_TESTS=true` to enable (default off = not invoked, never blocks) |
+
+The three advisory default-on gates (LSP diagnostics, semantic
+test-authenticity, invariant/property) are documented in their own table under
+"Advisory default-on verification gates" below. Semantic test-authenticity used
+to appear here as "gate 9 (opt-in, default OFF)"; it is now a default-on
+advisory gate and has moved to that table. See the migration note there.
 
 **Severity-based blocking** ties the review gates together: any Critical or High
 finding blocks completion. Medium, Low, and cosmetic findings are advisory and
@@ -100,6 +122,108 @@ LOKI_GATE_MUTATION=false  # Disable gate 6 (Test Mutation Detector)
 
 ---
 
+## Advisory default-on verification gates (LSP, semantic, invariant)
+
+These three gates extend the mock/mutation precedent (gates 5+6: default-on,
+opt-out) into an ADVISORY-FIRST posture. They run by default, surface actionable
+findings into the next iteration's prompt, and only BLOCK completion when their
+opt-in `*_BLOCK` flag is set. LSP diagnostics has no blocking arm at all: it is
+advisory by construction. Coverage is NOT in this group; it remains opt-in (see
+the next section).
+
+This is the FROZEN knob scheme. All flags accept `true` or `1`.
+
+**Route scope (honest disclosure):** Bun-route parity is ACHIEVED for the
+default-ON behavior. The Bun runner
+(`loki-ts/src/runner/quality_gates.ts` `readToggles`) now defaults all three
+advisory gates ON (`LOKI_GATE_SEMANTIC_TESTS`, `LOKI_GATE_INVARIANTS`,
+`LOKI_GATE_LSP_DIAGNOSTICS` each `flag(X, true)`), matching the bash
+`loki start` route (`autonomy/run.sh`), with blocking behind the same opt-in
+`*_BLOCK` flags. Semantic and invariant findings surface into the next
+iteration's prompt via the `build_prompt` readers
+(`buildSemanticFindingsBlock` + `buildInvariantFindingsBlock`). The one real
+remaining gap is a SURFACING ASYMMETRY: LSP runs default-ON on the Bun route,
+but its advisory findings are NOT yet injected into the Bun prompt (LSP
+contributes only the grounding instruction, not its diagnostics block). That
+prompt-injection parity is still pending for LSP on the Bun route. This mirrors
+the "Reachability note" at the end of this file for the v7.5.0 Phase 1 flags.
+
+| Gate | Surfacing (advisory, default-ON, opt-out) | Blocking (opt-in, default-OFF) |
+|------|--------------------------------------------|--------------------------------|
+| LSP diagnostics | `LOKI_GATE_LSP_DIAGNOSTICS=true` | advisory-only, no blocking arm |
+| Semantic test-authenticity | `LOKI_GATE_SEMANTIC_TESTS=true` | `LOKI_GATE_SEMANTIC_TESTS_BLOCK=true` |
+| Invariant / property | `LOKI_GATE_INVARIANTS=true` | `LOKI_GATE_INVARIANTS_BLOCK=true` |
+
+How to read the Surfacing column: each gate is already ON by default. The flag
+shown is the gate's own toggle, and `true`/`1` is its enabled value (the default).
+Set the flag to its off value (`false`/`0`) to OPT OUT of surfacing. Setting the
+`=true` value is a no-op confirmation, not an opt-in: these are not opt-in gates.
+
+How to read the Blocking column: by default these gates never block, they only
+surface. To make a gate also block completion, set its `*_BLOCK` flag (default
+OFF). The blocking arm fires only on a completion claim, and only on the gate's
+high-severity findings; lower-severity findings stay advisory either way.
+
+**What each gate surfaces:**
+
+- **LSP diagnostics** (`LOKI_GATE_LSP_DIAGNOSTICS`, default on): language-server
+  diagnostics (errors/warnings) on the changed files. Advisory only; there is no
+  `_BLOCK` flag and no way to make it block. Inert when no language server is
+  available for the project's languages.
+- **Semantic test-authenticity** (`LOKI_GATE_SEMANTIC_TESTS`, default on):
+  fake tests that look real but verify nothing (literal-via-variable echo,
+  mock-return echo, deleted assertions) that gates 5+6 miss
+  (`tests/detect-semantic-test-problems.sh`). Surfaces by default; blocks on
+  CRITICAL/HIGH only when `LOKI_GATE_SEMANTIC_TESTS_BLOCK=true`. Does NOT detect
+  deep dataflow, legitimate computed-literal assertions, or non-JS/TS tests
+  (JS/TS only).
+- **Invariant / property** (`LOKI_GATE_INVARIANTS`, default on): property and
+  metamorphic invariant findings. Surfaces by default; blocks only when
+  `LOKI_GATE_INVARIANTS_BLOCK=true`.
+
+**Advisory-first posture and deny-filter:** these gates run by default and feed
+their findings into the next iteration's prompt so the agent can act on them.
+They only stop a completion claim when the matching `*_BLOCK` opt-in is set. The
+gates are deny-filtered: a clean result, an absent toolchain (e.g. no language
+server, no test files in scope), or a timeout never fires the gate. The gate
+surfaces or blocks only on real, parseable findings, so a missing toolchain does
+not produce false surfacing or a false block.
+
+### Migration: semantic and invariant flags were repurposed
+
+`LOKI_GATE_SEMANTIC_TESTS` and `LOKI_GATE_INVARIANTS` changed meaning:
+
+- **Before:** these flags were default-OFF opt-ins that, when set, made the gate
+  BLOCK completion. Semantic test-authenticity was documented as "gate 9
+  (opt-in, default OFF)" and blocked on CRITICAL/HIGH when
+  `LOKI_GATE_SEMANTIC_TESTS=true`.
+- **Now:** these flags are default-ON surfacing toggles (set to `false`/`0` to
+  opt OUT of surfacing). They no longer block. Blocking moved to the new
+  `LOKI_GATE_SEMANTIC_TESTS_BLOCK` and `LOKI_GATE_INVARIANTS_BLOCK` opt-ins
+  (default OFF).
+
+**Action required if you relied on the old behavior:** anyone who set
+`LOKI_GATE_SEMANTIC_TESTS=true` (or `LOKI_GATE_INVARIANTS=true`) specifically to
+BLOCK the build must now set `LOKI_GATE_SEMANTIC_TESTS_BLOCK=true` (or
+`LOKI_GATE_INVARIANTS_BLOCK=true`). The old flag set to `true` now only confirms
+the default-on surfacing and will NOT block. This is the one behavior change in
+the migration: a flag that used to block now only surfaces.
+
+### Coverage stays opt-in (the exception)
+
+The coverage gate is the one verification gate that remains OPT-IN
+(`LOKI_COVERAGE_GATE`, default OFF). It is the exception because measuring
+coverage requires an instrumented SECOND test run, which roughly doubles test
+runtime for every iteration. The advisory gates above add no such cost, so they
+default on; coverage's cost is why it does not.
+
+```bash
+LOKI_COVERAGE_GATE=1   # opt in: measure + record coverage. Default OFF because
+                       # it doubles test runtime (instrumented re-run). Even
+                       # when enabled it measures and warns; it does not block
+                       # unless LOKI_ENFORCE_COVERAGE=1 is also set.
+```
+
 ## v7.5.0 Phase 1 environment flags
 
 These four flags activate the override council and structured-findings
@@ -662,7 +786,7 @@ Initial excitement -> Velocity spike -> Quality degradation accumulates
 ```yaml
 velocity_quality_balance:
   before_commit:
-    - static_analysis: "Run ESLint/Pylint/CodeQL - warnings must not increase"
+    - static_analysis: "Run ESLint/Pylint - warnings must not increase"
     - complexity_check: "Cyclomatic complexity must not increase >10%"
     - test_suite: "Tests must pass (coverage % not measured in this release)"