projscan 4.12.1 → 4.14.0

package/dist/types/evidencePack.d.ts

@@ -49,6 +49,18 @@ export interface EvidencePackDailyPrWorkflowStep {
     command: string;
     purpose: string;
 }
+export interface EvidencePackProofReceiptSummary {
+    available: boolean;
+    command: string;
+    summary: string;
+    proofStatus: string;
+    reviewerDecision: string;
+    scopeStatus?: string;
+    riskDeltaDirection?: string;
+    missingCommands: string[];
+    failedCommands: string[];
+    staleCommands: string[];
+}
 export interface EvidencePackPrCommentValidationCheck {
     id: string;
     status: 'pass' | 'warn' | 'fail';
@@ -79,6 +91,7 @@ export interface EvidencePackReport {
     prComment?: string;
     prCommentValidation?: EvidencePackPrCommentValidation;
     prSummary?: EvidencePackPrSummary;
+    proofReceipt?: EvidencePackProofReceiptSummary;
     dailyPrWorkflow?: EvidencePackDailyPrWorkflowStep[];
     suggestedNextActions: PreflightSuggestedAction[];
 }

package/dist/types/proofLedger.d.ts

@@ -0,0 +1,30 @@
+export type ProofLedgerSource = 'prove-record' | 'prove-run' | 'mission' | 'external';
+export type ProofLedgerStatus = 'passed' | 'failed';
+export interface ProofLedgerRecord {
+    schemaVersion: 1;
+    id: string;
+    command: string;
+    normalizedCommand: string;
+    cwd: string;
+    exitCode: number;
+    status: ProofLedgerStatus;
+    startedAt: string;
+    completedAt: string;
+    durationMs: number;
+    changedFileFingerprint: string;
+    changedFiles: string[];
+    outputSummary: string;
+    source: ProofLedgerSource;
+    logPath?: string;
+}
+export interface ProofLedgerWriteInput {
+    command: string;
+    cwd?: string;
+    exitCode: number;
+    durationMs: number;
+    changedFiles: string[];
+    outputSummary?: string;
+    source?: ProofLedgerSource;
+    logPath?: string;
+    completedAt?: string;
+}

package/dist/types/proofLedger.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=proofLedger.js.map

package/dist/types/proofLedger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"proofLedger.js","sourceRoot":"","sources":["../../src/types/proofLedger.ts"],"names":[],"mappings":""}

package/dist/types/prove.d.ts

@@ -0,0 +1,123 @@
+import type { AssessConfidence, AssessEvidenceStrengthLevel, RiskDeltaSnapshot } from './assess.js';
+import type { ProofLedgerRecord } from './proofLedger.js';
+export type ProveMode = 'intent' | 'changed' | 'record' | 'run';
+export type ProveVerdict = 'ready' | 'needs-review' | 'blocked';
+export type ProveScopeStatus = 'within-contract' | 'drifted' | 'missing-contract';
+export type ProveProofStatus = 'not-run' | 'missing' | 'partial' | 'passed' | 'failed' | 'stale';
+export type ProveRiskDeltaDirection = 'improved' | 'worse' | 'flat';
+export type ProveReviewerDecision = 'safe-to-review' | 'needs-focused-review' | 'stop';
+export type ProveProofCommandStatus = 'passed' | 'failed' | 'missing' | 'stale';
+export type ProveChangedFileKind = 'allowed-production' | 'expected-test' | 'documentation' | 'config' | 'security-sensitive' | 'generated' | 'forbidden' | 'unexpected-production' | 'unexpected-test' | 'unknown';
+export interface ProveTrustMemorySummary {
+    status: string;
+    summary: string;
+    signals: string[];
+}
+export interface ProveVerifiedWorkflow {
+    phase: 'contract' | 'receipt' | 'record';
+    status: ProveVerdict;
+    nextAction: string;
+    nextCommand: string;
+    reviewerDecision?: ProveReviewerDecision;
+    scopeStatus?: ProveScopeStatus;
+    proofStatus?: ProveProofStatus;
+    riskDeltaDirection?: ProveRiskDeltaDirection;
+    staleProof: boolean;
+    missingProof: boolean;
+    failedProof: boolean;
+}
+export interface ProveChangedFileClassification {
+    file: string;
+    kind: ProveChangedFileKind;
+    reason: string;
+}
+export interface ProveContract {
+    schemaVersion: 1;
+    id: string;
+    intent: string;
+    createdAt: string;
+    allowedFiles: string[];
+    forbiddenFiles: string[];
+    riskyContracts: string[];
+    likelyTests: string[];
+    missingRegressionTests: string[];
+    proofCommands: string[];
+    safeChangeShape: string;
+    rollbackPlan: string;
+    confidence: AssessConfidence;
+    confidenceReason: string;
+    evidenceStrength: {
+        level: AssessEvidenceStrengthLevel;
+        score: number;
+        sources: string[];
+        gaps: string[];
+    };
+    trustMemory: ProveTrustMemorySummary;
+    reviewerGuidance: string;
+    receiptCommand: string;
+    riskDelta: RiskDeltaSnapshot;
+    verifiedWorkflow: ProveVerifiedWorkflow;
+}
+export interface ProveReceiptScope {
+    status: ProveScopeStatus;
+    changedFiles: string[];
+    allowedTouched: string[];
+    forbiddenTouched: string[];
+    outsideAllowed: string[];
+    classifications: ProveChangedFileClassification[];
+    allowedProduction: string[];
+    expectedTests: string[];
+    unexpectedProduction: string[];
+    unexpectedTests: string[];
+    documentationTouched: string[];
+    configTouched: string[];
+    securitySensitiveTouched: string[];
+    generatedTouched: string[];
+    contractPath?: string;
+}
+export interface ProveReceiptProofStatus {
+    status: ProveProofStatus;
+    commandsRequired: string[];
+    commandsRun: string[];
+    missingCommands: string[];
+    failedCommands: string[];
+    staleCommands: string[];
+    commandEvidence: ProveProofCommandEvidence[];
+}
+export interface ProveProofCommandEvidence {
+    command: string;
+    status: ProveProofCommandStatus;
+    fresh: boolean;
+    exitCode?: number;
+    durationMs?: number;
+    completedAt?: string;
+    outputSummary?: string;
+    logPath?: string;
+    staleReason?: string;
+}
+export interface ProveReceipt {
+    summary: string;
+    commitReadiness: ProveVerdict;
+    scope: ProveReceiptScope;
+    proofStatus: ProveReceiptProofStatus;
+    riskDelta: RiskDeltaSnapshot;
+    riskDeltaDirection: ProveRiskDeltaDirection;
+    reviewerDecision: ProveReviewerDecision;
+    newRisks: string[];
+    evidenceGaps: string[];
+    reviewerGuidance: string;
+    verifiedWorkflow: ProveVerifiedWorkflow;
+}
+export interface ProveReport {
+    schemaVersion: 1;
+    mode: ProveMode;
+    verdict: ProveVerdict;
+    summary: string;
+    contract?: ProveContract;
+    receipt?: ProveReceipt;
+    commands: string[];
+    warnings: string[];
+    verifiedWorkflow: ProveVerifiedWorkflow;
+    savedContractPath?: string;
+    ledgerRecord?: ProofLedgerRecord;
+}

package/dist/types/prove.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=prove.js.map

package/dist/types/prove.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prove.js","sourceRoot":"","sources":["../../src/types/prove.ts"],"names":[],"mappings":""}

package/dist/types.d.ts

@@ -26,6 +26,8 @@ export type * from './types/understand.js';
 export type * from './types/qualityScorecard.js';
 export type * from './types/assess.js';
 export type * from './types/simulate.js';
+export type * from './types/prove.js';
+export type * from './types/proofLedger.js';
 export type * from './types/regressionPlan.js';
 export type * from './types/start.js';
 export type * from './types/agentBrief.js';

package/dist/utils/formatSupport.d.ts

@@ -5,6 +5,7 @@ export declare const COMMAND_FORMAT_SUPPORT: {
     readonly analyze: readonly ["console", "json", "markdown", "sarif", "html"];
     readonly assess: readonly ["console", "json", "markdown"];
     readonly simulate: readonly ["console", "json", "markdown"];
+    readonly prove: readonly ["console", "json", "markdown"];
     readonly 'apply-fix': readonly ["console", "json"];
     readonly audit: readonly ["console", "json", "markdown", "sarif"];
     readonly badge: readonly ["console"];

package/dist/utils/formatSupport.js

@@ -10,6 +10,7 @@ export const COMMAND_FORMAT_SUPPORT = {
     analyze: ['console', 'json', 'markdown', 'sarif', 'html'],
     assess: ['console', 'json', 'markdown'],
     simulate: ['console', 'json', 'markdown'],
+    prove: ['console', 'json', 'markdown'],
     'apply-fix': ['console', 'json'],
     audit: ['console', 'json', 'markdown', 'sarif'],
     badge: ['console'],

package/dist/utils/formatSupport.js.map

@@ -1 +1 @@
-{"version":3,"file":"formatSupport.js","sourceRoot":"","sources":["../../src/utils/formatSupport.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,SAAS;IACT,MAAM;IACN,UAAU;IACV,OAAO;IACP,MAAM;CACoC,CAAC;AAE7C,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,MAAM,CAAC;IACzD,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACvC,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACzC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;IAC/C,KAAK,EAAE,CAAC,SAAS,CAAC;IAClB,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,EAAE,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;IAC5C,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACjC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACjC,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IACjD,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IACjD,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC7C,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC7B,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACxC,IAAI,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACrC,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,MAAM,CAAC;IACxD,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC7B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,cAAc,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACnC,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,kBAAkB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACvC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACxC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAChD,IAAI,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACrC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,GAAG,EAAE,CAAC,SAAS,CAAC;IAChB,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC9C,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,IAAI,EAAE,CAAC,SAAS,CAAC;IACjB,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IACjD,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IAC/C,IAAI,EAAE,CAAC,SAAS,CAAC;IACjB,oBAAoB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACzC,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,cAAc,EAAE,CAAC,SAAS,CAAC;IAC3B,GAAG,EAAE,CAAC,SAAS,CAAC;IAChB,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAChD,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACjC,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,eAAe,EAAE,CAAC,SAAS,CAAC;IAC5B,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;IAClD,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,cAAc,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACnC,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC9B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IAClD,mBAAmB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACxC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IAC/C,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACvC,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC1C,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC9B,kBAAkB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACvC,kBAAkB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACvC,mBAAmB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACxC,mBAAmB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACxC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACxC,KAAK,EAAE,CAAC,SAAS,CAAC;IAClB,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,eAAe,EAAE,CAAC,SAAS,CAAC;IAC5B,kBAAkB,EAAE,CAAC,SAAS,CAAC;IAC/B,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC3C,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;CAC6B,CAAC;AAI7D,MAAM,UAAU,UAAU,CAAC,UAAmC,cAAc;IAC1E,OAAO,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC5B,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,WAAmB;IACzD,OAAQ,sBAAkE,CAAC,WAAW,CAAC,CAAC;AAC1F,CAAC;AAED,MAAM,UAAU,iBAAiB;IAI/B,OAAO,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE,EAAE,CAAC,CAAC;QACzE,OAAO,EAAE,OAA4B;QACrC,OAAO;KACR,CAAC,CAAC,CAAC;AACN,CAAC"}
+{"version":3,"file":"formatSupport.js","sourceRoot":"","sources":["../../src/utils/formatSupport.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,SAAS;IACT,MAAM;IACN,UAAU;IACV,OAAO;IACP,MAAM;CACoC,CAAC;AAE7C,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,MAAM,CAAC;IACzD,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACvC,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACzC,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACtC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;IAC/C,KAAK,EAAE,CAAC,SAAS,CAAC;IAClB,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,EAAE,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;IAC5C,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACjC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACjC,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IACjD,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IACjD,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC7C,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC7B,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACxC,IAAI,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACrC,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,MAAM,CAAC;IACxD,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC7B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,cAAc,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACnC,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,kBAAkB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACvC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACxC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAChD,IAAI,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACrC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,GAAG,EAAE,CAAC,SAAS,CAAC;IAChB,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC9C,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,IAAI,EAAE,CAAC,SAAS,CAAC;IACjB,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IACjD,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IAC/C,IAAI,EAAE,CAAC,SAAS,CAAC;IACjB,oBAAoB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACzC,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAChC,cAAc,EAAE,CAAC,SAAS,CAAC;IAC3B,GAAG,EAAE,CAAC,SAAS,CAAC;IAChB,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAChD,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACjC,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,eAAe,EAAE,CAAC,SAAS,CAAC;IAC5B,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;IAClD,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAClC,cAAc,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACnC,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC9B,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IAClD,mBAAmB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACxC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC;IAC/C,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACvC,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC5B,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,iBAAiB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACtC,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,eAAe,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACpC,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC1C,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC1B,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC/B,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IAC9B,kBAAkB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACvC,kBAAkB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACvC,mBAAmB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACxC,mBAAmB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACxC,OAAO,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IACxC,KAAK,EAAE,CAAC,SAAS,CAAC;IAClB,gBAAgB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;IACrC,eAAe,EAAE,CAAC,SAAS,CAAC;IAC5B,kBAAkB,EAAE,CAAC,SAAS,CAAC;IAC/B,UAAU,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC;IAC3C,QAAQ,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;CAC6B,CAAC;AAI7D,MAAM,UAAU,UAAU,CAAC,UAAmC,cAAc;IAC1E,OAAO,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC5B,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,WAAmB;IACzD,OAAQ,sBAAkE,CAAC,WAAW,CAAC,CAAC;AAC1F,CAAC;AAED,MAAM,UAAU,iBAAiB;IAI/B,OAAO,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE,EAAE,CAAC,CAAC;QACzE,OAAO,EAAE,OAA4B;QACrC,OAAO;KACR,CAAC,CAAC,CAAC;AACN,CAAC"}

package/docs/GUIDE.md

@@ -113,12 +113,45 @@ paths.
 
 ```bash
 projscan start --intent "what files do I need to change for auth?"
+projscan start --intent "is my agent allowed to change billing retry logic?"
 projscan understand --view change --intent "add auth token refresh" --format json
+projscan prove --intent "is my agent allowed to change billing retry logic?"
 projscan preflight --mode before_edit --format json
 ```
 
 Success criteria: the agent starts with cited files, change-readiness evidence,
-and a before-edit gate instead of a free-form plan.
+an executable Proof Contract, and a before-edit gate instead of a free-form plan.
+
+### Verified change workflow
+
+```bash
+projscan start --intent "is my agent allowed to change billing retry logic?"
+projscan prove --intent "is my agent allowed to change billing retry logic?" --save-contract .projscan/proof-contract.json
+projscan prove --run -- npm test -- tests/billing/retry.test.ts
+projscan prove --changed --contract .projscan/proof-contract.json --format markdown
+```
+
+The path is `start -> prove -> run -> changed`. Agent-permission intents route
+from `start` to `prove`. Intent mode writes a contract only when
+`--save-contract` is present. Run mode executes an explicit local command after
+the `--` delimiter, captures exit code, duration, redacted output, log path, and
+changed-file fingerprint, then appends a `prove-run` row to the local ledger.
+Record mode remains available for imported CI or external evidence when
+projscan did not run the command. Changed mode checks the working tree against
+the contract and local ledger.
+
+Success criteria: the agent gets allowed files, forbidden files, risky contracts,
+likely tests, proof commands, rollback notes, confidence, and reviewer guidance
+before editing. After editing, the Proof Receipt shows whether the actual working
+tree stayed inside scope and classifies changed files as allowed production,
+expected tests, docs, generated proof artifacts, config/security drift,
+forbidden touches, or unexpected production. It also reports whether proof
+commands passed and whether that proof is stale after newer edits.
+
+Every prove report includes `verifiedWorkflow`, a compact JSON summary for agents
+and MCP clients. It names the phase, next action, next command, scope status,
+proof status, risk delta direction, reviewer decision, and stale/missing/failed
+proof flags.
 
 ### Before handoff or commit
 
@@ -149,6 +182,24 @@ risk delta from local evidence. It compares bounded extraction, test-first, and
 leave-unchanged alternatives, then names the recommended option. It is read-only
 and does not execute the plan.
 
+`projscan prove --intent "<change>"` turns the simulation into an executable
+Proof Contract for humans, agents, CI, and reviewers. Intent mode is read-only
+unless `--save-contract <path>` is supplied. Use `projscan prove --run --
+<command...>` when projscan should execute a local proof command and append the
+result. Use `projscan prove --record-command "<command>" --exit-code <code>
+--duration-ms <ms>` only when importing proof from CI or another trusted runner.
+`projscan prove --changed` reads the contract, checks local git changed-file
+evidence, and emits a Proof Receipt with changed-file classes, proof replay
+status, a Verified Workflow section, a reviewer checklist, and a copyable
+decision. The ledger stores command, exit code, duration, changed-file
+fingerprint, redacted summary, source, and log path under `.projscan/`. Local
+`.projscan/` proof artifacts do not count as scope drift. If no contract exists,
+changed mode still reports the working tree, but marks the result as needing
+review because there is no contract to enforce. When you pass `--feedback
+.projscan-feedback.json`, Trust Memory can lower the confidence reason when
+prior reviewers reported missing signals, noisy findings, false positives, or
+rejected proof outcomes.
+
 Weekly or before a larger refactor, run the broader assessment and simulator:
 
 ```bash
@@ -261,6 +312,7 @@ When the agent first opens a repo, or before starting a refactor, the question i
 - **`projscan_quality_scorecard` / `projscan quality-scorecard`** — dimensioned quality view across health, security, tests, maintainability, coordination, top risks, and verification commands.
 - **`projscan_assess` / `projscan assess`** — proof-first assessment. Composes quality-scorecard, bug-hunt, and preflight into Proof Cards with local evidence, impact, a safe fix shape, verification commands, feedback or suppression guidance, and risk delta. Proof Cards include evidence strength, confidence reason, ranking reasons, trust memory, evidence gaps, and an AgentLoopKit handoff packet. Use `projscan assess --goal "make this repo safer to ship this week"` for a broad weekly pass, `projscan assess --mode fix-first --format markdown` when you want one or two next actions instead of a long list, `--feedback .projscan-feedback.json` when local reviewer memory should affect ranking, or `--baseline previous-assess.json` to compare against a prior assessment. The command is read-only and does not release, tag, publish, or deploy.
 - **`projscan_simulate` / `projscan simulate`** — risk delta simulator. Evaluates a proposed change plan before editing and returns likely touched files, affected tests, contract surfaces, rollout steps, proof commands, confidence, projected before/after risk, alternatives, and a recommended option. Use `projscan simulate --plan "split bugHunt.ts into ranking, evidence, and output modules"` before doing a refactor. The command is read-only and does not execute the plan.
+- **`projscan_prove` / `projscan prove`** — executable Proof Contracts, Verified Workflow JSON, and Proof Replay. Use `projscan prove --intent "<change>"` before editing to get allowed files, forbidden files, risky contracts, likely tests, proof commands, rollback, confidence, Trust Memory signals, and reviewer guidance. Use `projscan prove --run -- <command...>` to execute a local proof command and record a `prove-run` ledger row. Use `projscan prove --record-command "<command>" --exit-code <code>` for imported proof outcomes from CI or another runner. Use `projscan prove --changed --contract .projscan/proof-contract.json --format markdown` after editing to produce a Proof Receipt with changed-file classes, scope drift, forbidden touches, proof status, stale proof, failed proof, risk delta, reviewer decision, and commit readiness. Read `verifiedWorkflow` when an agent needs the next action without parsing Markdown.
 - **`projscan_understand` / `projscan understand`** — cited repo-comprehension surface. Returns repo maps, runtime flow maps, contract maps, change-readiness guidance, verification tiers, unknowns, read-first files, and exact next commands.
 - **`projscan_adoption` / `projscan init team` / `projscan init mcp` / `projscan mcp doctor` / `projscan init policy` / `projscan init github-action` / `projscan recipes` / `projscan first-run` / `projscan telemetry` / `projscan dogfood`** — adoption layer. Returns MCP client config snippets, setup verification, policy starters, PR workflow scaffolding with validated PR comments and block-only enforcement, baseline memory, ownership routing, first-PR onboarding steps, repeatable team-bootstrap and PR-automation recipes, multi-repo dogfood evidence, measured reviewer feedback, default-off telemetry controls, adoption trial reports, and setup diagnostics.
 - **`projscan_release_train` / `projscan release-train`** — product-line readiness planner. Plans upcoming product lines with version, scope, readiness, and next-action evidence.
@@ -1412,6 +1464,7 @@ _Structural / agent-native:_
 - `projscan_quality_scorecard` — dimensioned quality view with top risks and verification commands.
 - `projscan_assess` — proof-first assessment with Proof Cards, risk delta, and fix-first guidance.
 - `projscan_simulate` — risk delta simulator for proposed change plans before editing.
+- `projscan_prove` — executable Proof Contracts, local Proof Ledger rows, and replayed Proof Receipts for proposed and completed changes.
 - `projscan_adoption` — adoption helper for MCP client snippets, MCP setup doctor, agent workflow recipes, and first-run diagnostics.
 - `projscan_release_train` — product-line readiness plan with scope and next-action evidence.
 - `projscan_evidence_pack` — approval packet with planning, bug-hunt, workplan, preflight, changelog, and website prompt evidence.

package/docs/demos/projscan-4-1-demo.html

@@ -565,7 +565,7 @@
               <span>mission and proof</span>
             </div>
             <div class="metric">
-              <strong>47</strong>
+              <strong>48</strong>
               <span>MCP tools</span>
             </div>
             <div class="metric">
@@ -664,13 +664,12 @@
       <section class="proof" id="proof" aria-label="Proof and dependency view">
         <div class="proof-header">
           <div>
-            <p class="eyebrow">Proof, review, and adoption evidence</p>
-            <h2>Check proof before release.</h2>
+            <p class="eyebrow">Proof Replay and review evidence</p>
+            <h2>Check what actually ran.</h2>
           </div>
           <p>
-            Developers and agents can resume from a saved mission bundle, summarize pass/fail
-            evidence, and compare local proof against a manual baseline without sending source code
-            anywhere.
+            Developers and agents can record proof-command outcomes locally, replay them against the
+            current working tree, and hand reviewers one receipt with scope, freshness, and decision.
           </p>
         </div>
 
@@ -680,24 +679,25 @@
               <span class="dot red"></span>
               <span class="dot amber"></span>
               <span class="dot green"></span>
-              <span class="terminal-title">projscan mission-proof</span>
+              <span class="terminal-title">projscan prove --changed</span>
             </div>
             <div class="terminal-body">
               <span class="line"
                 ><span class="prompt">$</span>
                 <span class="cmd"
-                  >projscan mission-proof --mission .projscan/mission --format json</span
+                  >projscan prove --changed --contract .projscan/proof-contract.json</span
                 ></span
               >
-              <span class="line dim">Local proof summary</span>
+              <span class="line dim">Proof Replay</span>
               <span class="line">&nbsp;</span>
-              <span class="line term-heading">{"passed":1,"failed":0,</span>
-              <span class="line success">&nbsp;"reruns":0,"reviewerApprovals":1}</span>
+              <span class="line term-heading">Proof status: <span class="success">passed</span></span>
+              <span class="line success">Reviewer decision: safe-to-review</span>
+              <span class="line success">Scope: within-contract</span>
               <span class="line">&nbsp;</span>
-              <span class="line term-heading">Review signal</span>
-              <span class="line success">- proof gate passed before release</span>
-              <span class="line success">- request version review next</span>
-              <span class="line notice">Next: projscan start --mission .projscan/mission</span>
+              <span class="line term-heading">Command evidence</span>
+              <span class="line success">- npm test -- tests/core/bugHunt.test.ts fresh</span>
+              <span class="line success">- projscan assess --mode fix-first fresh</span>
+              <span class="line notice">Next: paste Proof Receipt into PR</span>
             </div>
           </section>
 
@@ -705,30 +705,30 @@
             <div class="signal">
               <span class="tag green">Verify</span>
               <span>
-                <strong>Outcome resume</strong>
-                <code>--mission</code> reads <code>summary.json</code>, status rows, and reviewer
-                decisions.
+                <strong>Proof Ledger</strong>
+                <code>--record-command</code> stores command, exit code, duration, fingerprint, and
+                redacted summary.
               </span>
             </div>
             <div class="signal">
               <span class="tag blue">MCP</span>
               <span>
-                <strong>MCP start input</strong>
-                <code>mission_dir</code> carries the same proof outcome to agent clients.
+                <strong>Freshness</strong>
+                <code>prove --changed</code> marks proof stale when the changed-file fingerprint moves.
               </span>
             </div>
             <div class="signal">
               <span class="tag amber">List</span>
               <span>
-                <strong>Proof summary</strong>
-                <code>mission-proof</code> reports completion, reruns, failed gates, and approvals.
+                <strong>PR receipt</strong>
+                <code>evidence-pack --pr-comment</code> includes the latest Proof Receipt section.
               </span>
             </div>
             <div class="signal">
               <span class="tag red">Gate</span>
               <span>
-                <strong>Version review</strong>
-                Use outcome data to request review or keep fixing failed proof.
+                <strong>Stop signal</strong>
+                Failed proof or forbidden scope returns a reviewer decision of <code>stop</code>.
               </span>
             </div>
           </div>

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "projscan",
   "mcpName": "io.github.abhiyoheswaran1/projscan",
-  "version": "4.12.1",
+  "version": "4.14.0",
   "description": "Local code intelligence for agent-assisted engineering. Focused daily workflows for repo orientation before edits, proof before handoff or commit, and release-candidate review, with AST-backed evidence through an MCP server and CLI. Runs locally by default.",
   "type": "module",
   "main": "./dist/index.js",