pumuki 6.3.72 → 6.3.75

package/scripts/framework-menu-consumer-runtime-lib.ts

@@ -35,9 +35,7 @@ export const createConsumerMenuRuntime = (
     runRepoGate: params.runRepoGate,
     runRepoAndStagedGate: params.runRepoAndStagedGate,
     runStagedGate: params.runStagedGate,
-    runUnstagedGate: params.runUnstagedGate,
     runWorkingTreeGate: params.runWorkingTreeGate,
-    runWorkingTreePreCommitGate: params.runWorkingTreePreCommitGate,
     runPreflight: params.runPreflight,
     emitNotification,
     clearSummaryOverride: () => {

package/scripts/framework-menu-consumer-runtime-types.ts

@@ -33,9 +33,7 @@ export type ConsumerMenuRuntimeParams = {
   runRepoGate: () => Promise<ConsumerRuntimeGateResult | void>;
   runRepoAndStagedGate: () => Promise<ConsumerRuntimeGateResult | void>;
   runStagedGate: () => Promise<ConsumerRuntimeGateResult | void>;
-  runUnstagedGate: () => Promise<ConsumerRuntimeGateResult | void>;
   runWorkingTreeGate: () => Promise<ConsumerRuntimeGateResult | void>;
-  runWorkingTreePreCommitGate: () => Promise<ConsumerRuntimeGateResult | void>;
   runPreflight?: (
     stage: 'PRE_COMMIT' | 'PRE_PUSH'
   ) => Promise<string | void> | string | void;
@@ -49,7 +47,7 @@ export type ConsumerMenuRuntime = {
   readCurrentSummary: () => FrameworkMenuEvidenceSummary | null;
 };
 
-export type ConsumerRuntimeScope = 'staged' | 'unstaged' | 'workingTree';
+export type ConsumerRuntimeScope = 'staged' | 'workingTree';
 
 export type ConsumerRuntimeSummaryDependencies = {
   repoRoot: string;

package/scripts/framework-menu-evidence-summary-lib.ts

@@ -3,6 +3,5 @@ export type {
   EvidenceSeverity,
   FrameworkMenuEvidenceSummary,
 } from './framework-menu-evidence-summary-types';
-export type { ReadEvidenceSummaryForMenuOptions } from './framework-menu-evidence-summary-read';
 export { readEvidenceSummaryForMenu } from './framework-menu-evidence-summary-read';
 export { formatEvidenceSummaryForMenu } from './framework-menu-evidence-summary-format';

package/scripts/framework-menu-evidence-summary-read.ts

@@ -1,8 +1,4 @@
-import type {
-  EvidenceSnapshot,
-  FrameworkMenuEvidencePlatformRow,
-  FrameworkMenuEvidenceSummary,
-} from './framework-menu-evidence-summary-types';
+import type { FrameworkMenuEvidenceSummary } from './framework-menu-evidence-summary-types';
 import { readEvidenceSummaryFile } from './framework-menu-evidence-summary-file';
 import {
   asFindings,
@@ -20,55 +16,9 @@ import {
   toTopFiles,
 } from './framework-menu-evidence-summary-severity';
 
-export type ReadEvidenceSummaryForMenuOptions = {
-  topFindingsLimit?: number;
-  topFileLocationsLimit?: number;
-  topFilesLimit?: number;
-};
-
-const sumLegacySeverityBand = (row: { by_severity?: unknown }): number => {
-  const bands = row.by_severity;
-  if (!bands || typeof bands !== 'object') {
-    return 0;
-  }
-  const b = bands as Record<string, unknown>;
-  const keys = ['CRITICAL', 'HIGH', 'MEDIUM', 'LOW'] as const;
-  let total = 0;
-  for (const key of keys) {
-    const value = b[key];
-    if (typeof value === 'number' && Number.isFinite(value)) {
-      total += value;
-    }
-  }
-  return total;
-};
-
-const parsePlatformAuditRows = (
-  snapshot: EvidenceSnapshot
-): ReadonlyArray<FrameworkMenuEvidencePlatformRow> => {
-  const raw = snapshot.platforms;
-  if (!Array.isArray(raw)) {
-    return [];
-  }
-  const rows: FrameworkMenuEvidencePlatformRow[] = [];
-  for (const entry of raw) {
-    if (!entry || typeof entry !== 'object') {
-      continue;
-    }
-    const platform = toStringOrNull((entry as { platform?: unknown }).platform) ?? 'Other';
-    const violations = sumLegacySeverityBand(entry as { by_severity?: unknown });
-    rows.push({ platform, violations });
-  }
-  return rows;
-};
-
 export const readEvidenceSummaryForMenu = (
-  repoRoot: string = process.cwd(),
-  options?: ReadEvidenceSummaryForMenuOptions
+  repoRoot: string = process.cwd()
 ): FrameworkMenuEvidenceSummary => {
-  const topFindingsLimit = options?.topFindingsLimit ?? 10;
-  const topFileLocationsLimit = options?.topFileLocationsLimit ?? 10;
-  const topFilesLimit = options?.topFilesLimit ?? 5;
   const evidence = readEvidenceSummaryFile(repoRoot);
 
   if (evidence.status === 'missing') {
@@ -115,13 +65,12 @@ export const readEvidenceSummaryForMenu = (
     evidence.snapshot.files_affected ?? evidence.snapshot.filesAffected
   );
   const topFileLocations = countFiles({ findings, repoRoot })
-    .slice(0, topFileLocationsLimit)
+    .slice(0, 10)
     .map((entry) => ({
       file: entry.file,
       line: entry.line,
     }));
-  const topFindings = buildTopFindings({ findings, repoRoot, maxItems: topFindingsLimit });
-  const platformAuditRows = parsePlatformAuditRows(evidence.snapshot);
+  const topFindings = buildTopFindings({ findings, repoRoot, maxItems: 10 });
 
   return {
     status: 'ok',
@@ -132,9 +81,8 @@ export const readEvidenceSummaryForMenu = (
     filesAffected,
     bySeverity,
     byEnterpriseSeverity,
-    topFiles: toTopFiles({ findings, repoRoot, maxItems: topFilesLimit }),
+    topFiles: toTopFiles({ findings, repoRoot }),
     topFileLocations,
     topFindings,
-    ...(platformAuditRows.length > 0 ? { platformAuditRows } : {}),
   };
 };

package/scripts/framework-menu-evidence-summary-severity.ts

@@ -50,9 +50,7 @@ export const countFindingsBySeverity = (
 export const toTopFiles = (params: {
   findings: ReadonlyArray<EvidenceFinding>;
   repoRoot: string;
-  maxItems?: number;
 }): ReadonlyArray<{ file: string; count: number }> => {
-  const maxItems = params.maxItems ?? 5;
   const filesMap = new Map<string, number>();
   for (const finding of params.findings) {
     const rawFile = toStringOrNull(finding.file);
@@ -68,7 +66,7 @@ export const toTopFiles = (params: {
 
   return [...filesMap.entries()]
     .sort((left, right) => right[1] - left[1] || left[0].localeCompare(right[0]))
-    .slice(0, maxItems)
+    .slice(0, 5)
     .map(([file, count]) => ({ file, count }));
 };
 

package/scripts/framework-menu-evidence-summary-types.ts

@@ -18,18 +18,12 @@ export type EvidenceSnapshot = {
   stage?: unknown;
   outcome?: unknown;
   findings?: unknown;
-  platforms?: unknown;
 };
 
 export type EvidenceSeverityMetrics = {
   by_enterprise_severity?: unknown;
 };
 
-export type FrameworkMenuEvidencePlatformRow = {
-  platform: string;
-  violations: number;
-};
-
 export type FrameworkMenuEvidenceSummary = {
   status: 'ok' | 'missing' | 'invalid';
   stage: string | null;
@@ -47,5 +41,4 @@ export type FrameworkMenuEvidenceSummary = {
     file: string;
     line: number;
   }>;
-  platformAuditRows?: ReadonlyArray<FrameworkMenuEvidencePlatformRow>;
 };

package/scripts/framework-menu-gate-lib.ts

@@ -9,7 +9,6 @@ export type MenuStage = 'PRE_COMMIT' | 'PRE_PUSH' | 'CI';
 
 export type MenuScope =
   | { kind: 'staged' }
-  | { kind: 'unstaged' }
   | { kind: 'repo' }
   | { kind: 'repoAndStaged' }
   | { kind: 'workingTree' }
@@ -142,14 +141,6 @@ export const runWorkingTreePrePushGateSilent = async (): Promise<void> => {
   await runMenuAuditGate(gateParams);
 };
 
-export const runUnstagedGateSilent = async (): Promise<void> => {
-  const gateParams = buildMenuGateParams({
-    stage: 'PRE_COMMIT',
-    scope: { kind: 'unstaged' },
-  });
-  await runMenuAuditGate(gateParams);
-};
-
 const runMenuAuditGate = async (
   gateParams: ReturnType<typeof buildMenuGateParams>
 ): Promise<void> => {

package/scripts/framework-menu-layout-data.ts

@@ -6,11 +6,6 @@ export const CONSUMER_MENU_LAYOUT: ReadonlyArray<MenuLayoutGroup> = [
     title: 'Read-Only Gate Flows',
     itemIds: ['1', '2', '3', '4'],
   },
-  {
-    key: 'engine-working-tree-no-preflight',
-    title: 'Engine · working tree (no preflight)',
-    itemIds: ['11', '12', '13', '14'],
-  },
   {
     key: 'export',
     title: 'Legacy Read-Only Export',

package/scripts/framework-menu-matrix-baseline-lib.ts

@@ -1,11 +1,10 @@
 import {
   runConsumerMenuMatrix,
 } from './framework-menu-matrix-runner-lib';
-import {
-  MATRIX_MENU_OPTION_IDS,
-  type ConsumerMenuMatrixReport,
-  type ConsumerMenuMatrixOptionReport,
-  type MatrixOptionId,
+import type {
+  ConsumerMenuMatrixReport,
+  ConsumerMenuMatrixOptionReport,
+  MatrixOptionId,
 } from './framework-menu-matrix-evidence-lib';
 
 export type MatrixOptionDrift = {
@@ -23,13 +22,7 @@ export type ConsumerMenuMatrixBaselineReport = {
   analysis: ConsumerMenuMatrixBaselineAnalysis;
 };
 
-const EMPTY_DRIFT: MatrixOptionDrift = { stable: true, driftFields: [] };
-
-const seedMatrixOptionDrift = (): Record<MatrixOptionId, MatrixOptionDrift> => {
-  return Object.fromEntries(
-    MATRIX_MENU_OPTION_IDS.map((optionId) => [optionId, { ...EMPTY_DRIFT }])
-  ) as Record<MatrixOptionId, MatrixOptionDrift>;
-};
+const OPTION_IDS: ReadonlyArray<MatrixOptionId> = ['1', '2', '3', '4', '9'];
 
 const OPTION_FIELDS: ReadonlyArray<keyof ConsumerMenuMatrixOptionReport> = [
   'stage',
@@ -64,12 +57,18 @@ const computeOptionDrift = (
 export const analyzeConsumerMenuMatrixBaseline = (
   rounds: ReadonlyArray<ConsumerMenuMatrixReport>
 ): ConsumerMenuMatrixBaselineAnalysis => {
-  const byOption = MATRIX_MENU_OPTION_IDS.reduce<Record<MatrixOptionId, MatrixOptionDrift>>((acc, optionId) => {
+  const byOption = OPTION_IDS.reduce<Record<MatrixOptionId, MatrixOptionDrift>>((acc, optionId) => {
     acc[optionId] = computeOptionDrift(rounds, optionId);
     return acc;
-  }, seedMatrixOptionDrift());
+  }, {
+    '1': { stable: true, driftFields: [] },
+    '2': { stable: true, driftFields: [] },
+    '3': { stable: true, driftFields: [] },
+    '4': { stable: true, driftFields: [] },
+    '9': { stable: true, driftFields: [] },
+  });
 
-  const stable = MATRIX_MENU_OPTION_IDS.every((optionId) => byOption[optionId].stable);
+  const stable = OPTION_IDS.every((optionId) => byOption[optionId].stable);
 
   return {
     stable,

package/scripts/framework-menu-matrix-canary-lib.ts

@@ -6,8 +6,6 @@ import {
   runRepoAndStagedPrePushGateSilent,
   runRepoGateSilent,
   runStagedGateSilent,
-  runUnstagedGateSilent,
-  runWorkingTreeGateSilent,
   runWorkingTreePrePushGateSilent,
 } from './framework-menu-gate-lib';
 import { readMatrixOptionReport, type MatrixOptionId } from './framework-menu-matrix-evidence-lib';
@@ -72,25 +70,6 @@ const runGateByOption = async (option: MatrixOptionId): Promise<void> => {
   }
   if (option === '4') {
     await runWorkingTreePrePushGateSilent();
-    return;
-  }
-  if (option === '9') {
-    return;
-  }
-  if (option === '11') {
-    await runStagedGateSilent();
-    return;
-  }
-  if (option === '12') {
-    await runUnstagedGateSilent();
-    return;
-  }
-  if (option === '13') {
-    await runWorkingTreeGateSilent();
-    return;
-  }
-  if (option === '14') {
-    await runRepoGateSilent();
   }
 };
 
@@ -125,7 +104,7 @@ export const runConsumerMenuCanary = async (params?: {
       scenario.canarySource,
       'utf8'
     );
-    if (scenario.option === '1' || scenario.option === '2' || scenario.option === '3' || scenario.option === '11') {
+    if (scenario.option === '1' || scenario.option === '2') {
       stageCanaryPath(repoRoot, canaryRelativePath);
     }
 

package/scripts/framework-menu-matrix-evidence-lib.ts

@@ -8,7 +8,6 @@ export type {
   MatrixOptionDiagnosis,
   MatrixOptionId,
 } from './framework-menu-matrix-evidence-types';
-export { MATRIX_MENU_OPTION_IDS } from './framework-menu-matrix-evidence-types';
 export { toMatrixOptionReport } from './framework-menu-matrix-evidence-diagnosis';
 
 export const readMatrixOptionReport = (

package/scripts/framework-menu-matrix-evidence-types.ts

@@ -1,16 +1,4 @@
-export const MATRIX_MENU_OPTION_IDS = [
-  '1',
-  '2',
-  '3',
-  '4',
-  '9',
-  '11',
-  '12',
-  '13',
-  '14',
-] as const;
-
-export type MatrixOptionId = (typeof MATRIX_MENU_OPTION_IDS)[number];
+export type MatrixOptionId = '1' | '2' | '3' | '4' | '9';
 export type MatrixOptionDiagnosis =
   | 'scope-empty'
   | 'repo-clean'

package/scripts/framework-menu-matrix-runner-lib.ts

@@ -3,8 +3,6 @@ import {
   runRepoAndStagedPrePushGateSilent,
   runRepoGateSilent,
   runStagedGateSilent,
-  runUnstagedGateSilent,
-  runWorkingTreeGateSilent,
   runWorkingTreePrePushGateSilent,
 } from './framework-menu-gate-lib';
 import {
@@ -26,8 +24,6 @@ export type ConsumerMenuMatrixRunnerDependencies = {
   runRepoGateSilent: () => Promise<void>;
   runRepoAndStagedPrePushGateSilent: () => Promise<void>;
   runStagedGateSilent: () => Promise<void>;
-  runUnstagedGateSilent: () => Promise<void>;
-  runWorkingTreeGateSilent: () => Promise<void>;
   runWorkingTreePrePushGateSilent: () => Promise<void>;
   readMatrixOptionReport: (repoRoot: string, optionId: MatrixOptionId) => ConsumerMenuMatrixOptionReport;
 };
@@ -36,8 +32,6 @@ const createDefaultDependencies = (): ConsumerMenuMatrixRunnerDependencies => ({
   runRepoGateSilent,
   runRepoAndStagedPrePushGateSilent,
   runStagedGateSilent,
-  runUnstagedGateSilent,
-  runWorkingTreeGateSilent,
   runWorkingTreePrePushGateSilent,
   readMatrixOptionReport,
 });
@@ -90,31 +84,6 @@ export const runConsumerMenuMatrix = async (params?: {
       }
     })();
 
-    const option11 = await runOption(
-      '11',
-      repoRoot,
-      dependencies.runStagedGateSilent,
-      dependencies.readMatrixOptionReport
-    );
-    const option12 = await runOption(
-      '12',
-      repoRoot,
-      dependencies.runUnstagedGateSilent,
-      dependencies.readMatrixOptionReport
-    );
-    const option13 = await runOption(
-      '13',
-      repoRoot,
-      dependencies.runWorkingTreeGateSilent,
-      dependencies.readMatrixOptionReport
-    );
-    const option14 = await runOption(
-      '14',
-      repoRoot,
-      dependencies.runRepoGateSilent,
-      dependencies.readMatrixOptionReport
-    );
-
     return {
       byOption: {
         '1': option1,
@@ -122,10 +91,6 @@ export const runConsumerMenuMatrix = async (params?: {
         '3': option3,
         '4': option4,
         '9': option9,
-        '11': option11,
-        '12': option12,
-        '13': option13,
-        '14': option14,
       },
     };
   } finally {

package/scripts/framework-menu-system-notifications-macos.ts

@@ -5,7 +5,6 @@ import {
   type SystemNotificationCommandRunnerWithOutput,
   type SystemNotificationsConfig,
 } from './framework-menu-system-notifications-types';
-import { isTruthyEnvValue } from './framework-menu-system-notifications-env';
 import { resolveBlockedDialogEnabled } from './framework-menu-system-notifications-macos-dialog-enabled';
 import { emitMacOsBannerStage } from './framework-menu-system-notifications-macos-banner-stage';
 import { emitMacOsBlockedDialogStage } from './framework-menu-system-notifications-macos-blocked-stage';
@@ -20,9 +19,6 @@ const shouldSkipMacOsBannerForInteractiveBlockedDialog = (params: {
   config: SystemNotificationsConfig;
   env: NodeJS.ProcessEnv;
 }): boolean => {
-  if (!isTruthyEnvValue(params.env.PUMUKI_MACOS_GATE_BLOCKED_BANNER_DEDUPE)) {
-    return false;
-  }
   if (params.event.kind !== 'gate.blocked') {
     return false;
   }

package/scripts/framework-menu.ts

@@ -16,7 +16,6 @@ import {
   runWorkingTreeGateSilent,
   runRepoAndStagedPrePushGateSilent,
   runWorkingTreePrePushGateSilent,
-  runUnstagedGateSilent,
 } from './framework-menu-gate-lib';
 import { createFrameworkMenuPrompts } from './framework-menu-prompts';
 import { resolveDefaultRangeFrom } from './framework-menu-runners';
@@ -63,9 +62,7 @@ const menu = async (): Promise<void> => {
       runRepoGate: runRepoGateSilent,
       runRepoAndStagedGate: runRepoAndStagedPrePushGateSilent,
       runStagedGate: runStagedGateSilent,
-      runUnstagedGate: runUnstagedGateSilent,
       runWorkingTreeGate: runWorkingTreePrePushGateSilent,
-      runWorkingTreePreCommitGate: runWorkingTreeGateSilent,
       write: (text) => {
         output.write(text);
       },

package/scripts/ruralgo-s1-evidence-pack-lib.ts

@@ -0,0 +1,200 @@
+import { mkdirSync, writeFileSync } from 'node:fs';
+import { dirname, resolve } from 'node:path';
+
+type RuralGoS1EvidenceEntry = {
+  title: string;
+  mode: 'shell' | 'mcp';
+  command: string;
+  capture: ReadonlyArray<string>;
+  expectedFragments: ReadonlyArray<string>;
+  incs: ReadonlyArray<string>;
+};
+
+export type RuralGoS1EvidencePackOptions = {
+  cwd: string;
+  consumerRoot: string;
+  packageVersion: string;
+  generatedAt: string;
+};
+
+const resolvePumukiPackageSelector = (packageVersion: string): string => {
+  const trimmed = packageVersion.trim();
+  const isStableSemver = /^\d+\.\d+\.\d+(?:[-+][0-9A-Za-z.-]+)?$/.test(trimmed);
+  if (isStableSemver) {
+    return `pumuki@${trimmed}`;
+  }
+  return 'pumuki@latest';
+};
+
+const EVIDENCE_ENTRIES: ReadonlyArray<RuralGoS1EvidenceEntry> = [
+  {
+    title: 'Lifecycle status',
+    mode: 'shell',
+    command: 'npm run pumuki:status',
+    capture: [
+      'Bloque `governance truth` completo.',
+      'Indicadores de contrato efectivo, rama y skills surface.',
+    ],
+    expectedFragments: [
+      'governance truth',
+      'governance_effective',
+      'contract_surface',
+      'current_branch',
+    ],
+    incs: ['PUMUKI-INC-070', 'PUMUKI-INC-071', 'PUMUKI-INC-073', 'PUMUKI-INC-076'],
+  },
+  {
+    title: 'Lifecycle doctor',
+    mode: 'shell',
+    command: 'npm run pumuki:doctor',
+    capture: [
+      'Veredicto humano final.',
+      'Bloque `governance truth` con `next_action` visible.',
+    ],
+    expectedFragments: [
+      'governance truth',
+      'next_action',
+      'reason_code',
+      'WARN',
+    ],
+    incs: ['PUMUKI-INC-070', 'PUMUKI-INC-071', 'PUMUKI-INC-073'],
+  },
+  {
+    title: 'PRE_WRITE canónico',
+    mode: 'shell',
+    command: 'npx --yes --package pumuki@latest pumuki sdd validate --stage=PRE_WRITE --json',
+    capture: [
+      'Salida JSON completa.',
+      'Campos de session/mode y remediación inmediata.',
+    ],
+    expectedFragments: [
+      '"stage":"PRE_WRITE"',
+      '"decision"',
+      '"next_action"',
+    ],
+    incs: ['PUMUKI-INC-070', 'PUMUKI-INC-072'],
+  },
+  {
+    title: 'Hook pre-commit / gate',
+    mode: 'shell',
+    command: 'git commit --allow-empty -m "test: pumuki s1 validation"',
+    capture: [
+      'Bloque de gate con `reason_code`, `instruction` y `next_action`.',
+      'Si bloquea, conservar `NEXT:` y `REMEDIATION:`.',
+    ],
+    expectedFragments: [
+      'reason_code=',
+      'instruction=',
+      'next_action=',
+    ],
+    incs: ['PUMUKI-INC-071', 'PUMUKI-INC-073', 'PUMUKI-INC-076'],
+  },
+  {
+    title: 'MCP pre_flight_check',
+    mode: 'mcp',
+    command: 'mcp::pre_flight_check(stage=PRE_WRITE)',
+    capture: [
+      'Payload completo de `result`.',
+      'Campos `reason_code`, `instruction`, `next_action`, `hints`.',
+    ],
+    expectedFragments: [
+      'reason_code',
+      'instruction',
+      'next_action',
+      'hints',
+    ],
+    incs: ['PUMUKI-INC-071', 'PUMUKI-INC-072', 'PUMUKI-INC-073'],
+  },
+  {
+    title: 'MCP auto_execute_ai_start',
+    mode: 'mcp',
+    command: 'mcp::auto_execute_ai_start(stage=PRE_WRITE)',
+    capture: [
+      'Payload completo de `result`.',
+      'Campos `action`, `reason_code`, `next_action`, `confidence_pct`.',
+    ],
+    expectedFragments: [
+      'action',
+      'reason_code',
+      'next_action',
+      'confidence_pct',
+    ],
+    incs: ['PUMUKI-INC-071', 'PUMUKI-INC-073', 'PUMUKI-INC-076'],
+  },
+];
+
+const renderEntry = (params: {
+  entry: RuralGoS1EvidenceEntry;
+  consumerRoot: string;
+}): string => {
+  const command = params.entry.mode === 'shell'
+    ? `cd ${params.consumerRoot} && ${params.entry.command}`
+    : params.entry.command;
+
+  return [
+    `### ${params.entry.title}`,
+    '',
+    `- mode: ${params.entry.mode}`,
+    `- command: \`${command}\``,
+    `- incs: ${params.entry.incs.join(', ')}`,
+    '- capture:',
+    ...params.entry.capture.map((item) => `  - ${item}`),
+    '- expected_fragments:',
+    ...params.entry.expectedFragments.map((item) => `  - ${item}`),
+    '',
+  ].join('\n');
+};
+
+export const buildRuralGoS1EvidencePackMarkdown = (
+  options: RuralGoS1EvidencePackOptions
+): string => {
+  const pumukiPackageSelector = resolvePumukiPackageSelector(options.packageVersion);
+  const evidenceEntries: ReadonlyArray<RuralGoS1EvidenceEntry> = EVIDENCE_ENTRIES.map((entry) =>
+    entry.title === 'PRE_WRITE canónico'
+      ? {
+        ...entry,
+        command: `npx --yes --package ${pumukiPackageSelector} pumuki sdd validate --stage=PRE_WRITE --json`,
+      }
+      : entry
+  );
+
+  return [
+    '# RuralGo S1 Evidence Pack',
+    '',
+    `- generated_at: ${options.generatedAt}`,
+    `- consumer_root: \`${options.consumerRoot}\``,
+    `- package_version: ${options.packageVersion}`,
+    '- objective: validar S1 contra PUMUKI-INC-071/073/076 y reunir soporte adicional para 070/072.',
+    '',
+    '## Uso',
+    '',
+    '- Ejecuta los comandos shell desde el consumer real tras repinear la semver publicada.',
+    '- Captura las respuestas MCP desde una sesión conectada al servidor enterprise.',
+    '- No muevas un INC a `FIXED` si falta convergencia entre lifecycle, hooks y MCP.',
+    '',
+    ...evidenceEntries.map((entry) =>
+      renderEntry({
+        entry,
+        consumerRoot: options.consumerRoot,
+      })
+    ),
+    '## Criterio rápido de cierre',
+    '',
+    '- `PUMUKI-INC-071`: candidato a FIXED si lifecycle, hooks y MCP exponen contrato efectivo del repo.',
+    '- `PUMUKI-INC-073`: candidato a FIXED si el verde parcial desaparece y se ve governance real.',
+    '- `PUMUKI-INC-076`: candidato a FIXED si hooks y surfaces muestran GitFlow/naming como parte del gate.',
+    '- `PUMUKI-INC-072`: no cerrar salvo que el pre-edit gate aparezca de forma homogénea y automática.',
+    '',
+  ].join('\n');
+};
+
+export const writeRuralGoS1EvidencePack = (params: {
+  cwd: string;
+  outFile: string;
+  markdown: string;
+}): string => {
+  const outputPath = resolve(params.cwd, params.outFile);
+  mkdirSync(dirname(outputPath), { recursive: true });
+  writeFileSync(outputPath, params.markdown, 'utf8');
+  return outputPath;
+};