pumuki 6.3.77 → 6.3.79

package/VERSION

@@ -1 +1 @@
-v6.3.64
+v6.3.79

package/docs/operations/RELEASE_NOTES.md

@@ -6,6 +6,19 @@ This file keeps only the operational highlights and rollout notes that matter wh
 
 ## 2026-04 (CLI stability and macOS notifications)
 
+### 2026-04-16 (v6.3.79)
+
+- **Fix RuralGo (`PUMUKI-INC-078`)**: el parser de tracking canónico reconoce ya boards tabulares con la `🚧` en la primera columna, evitando falsos positivos `TRACKING_CANONICAL_IN_PROGRESS_INVALID` en `status` / `doctor`.
+- **Convergencia con guardrails del consumer**: `captureRepoState` y la consola de governance quedan alineados con el shape real de `docs/RURALGO_SEGUIMIENTO.md`, sin exigir reestructurar el tablero del repo consumidor.
+- **Rollout recomendado**: publicar `pumuki@6.3.79` y revalidar primero RuralGo (`pumuki status`, `pumuki doctor`) antes de extender el repin a otros consumers si aplica.
+
+### 2026-04-16 (v6.3.78)
+
+- **Slice S1 consolidada**: `status`, `doctor`, `PRE-FLIGHT CHECK`, menú `Consumer` y menú `Advanced` muestran el mismo bloque canónico de governance sin duplicar lógica de cálculo.
+- **Runtime del menú**: `Consumer` conserva `lastPreflight` y lo reutiliza en superficies derivadas para mantener paridad visible de `truth / next action / policy-as-code / experimentales`.
+- **Base de release correcta**: la publicación se prepara desde `release/6.3.78` recortada sobre `develop` ya alineado con la línea viva `release/6.3.77`.
+- **Rollout recomendado**: publicar `pumuki@6.3.78` y repin ordenado `RuralGo -> SAAS -> Flux`, validando después `pumuki status`, `pumuki doctor` y hooks Git en cada consumer.
+
 ### 2026-04-06 (v6.3.71)
 
 - **Evidencia v2.1**: bloque `operational_hints` (`requires_second_pass`, resumen operativo, desglose por severidad de reglas). Alineado con PRE_COMMIT solo-docs + evidencia trackeada (INC-069) cuando no se re-stagea el JSON automáticamente.

package/integrations/evidence/buildEvidence.ts

@@ -687,6 +687,16 @@ const normalizeRepoState = (repoState?: RepoState): RepoState | undefined => {
   if (!repoState) {
     return undefined;
   }
+  const tracking = repoState.lifecycle.tracking ?? {
+    enforced: false,
+    canonical_path: null,
+    canonical_present: false,
+    source_file: null,
+    in_progress_count: null,
+    single_in_progress_valid: null,
+    conflict: false,
+    declarations: [],
+  };
   return {
     repo_root: repoState.repo_root,
     git: {
@@ -717,14 +727,14 @@ const normalizeRepoState = (repoState?: RepoState): RepoState | undefined => {
         }
         : undefined,
       tracking: {
-        enforced: repoState.lifecycle.tracking.enforced,
-        canonical_path: repoState.lifecycle.tracking.canonical_path,
-        canonical_present: repoState.lifecycle.tracking.canonical_present,
-        source_file: repoState.lifecycle.tracking.source_file,
-        in_progress_count: repoState.lifecycle.tracking.in_progress_count,
-        single_in_progress_valid: repoState.lifecycle.tracking.single_in_progress_valid,
-        conflict: repoState.lifecycle.tracking.conflict,
-        declarations: repoState.lifecycle.tracking.declarations.map((entry) => ({
+        enforced: tracking.enforced,
+        canonical_path: tracking.canonical_path,
+        canonical_present: tracking.canonical_present,
+        source_file: tracking.source_file,
+        in_progress_count: tracking.in_progress_count,
+        single_in_progress_valid: tracking.single_in_progress_valid,
+        conflict: tracking.conflict,
+        declarations: tracking.declarations.map((entry) => ({
           source_file: entry.source_file,
           declared_path: entry.declared_path,
           resolved_path: entry.resolved_path,

package/integrations/evidence/trackingContract.ts

@@ -15,6 +15,7 @@ const TRACKING_PRIORITY_SOURCE = new Set(['AGENTS.md']);
 const IN_PROGRESS_PATTERNS = [
   /^- Estado:\s*🚧/m,
   /^- 🚧 (\`?P[0-9A-Za-z.-]+\`?)/m,
+  /^\|\s*🚧(?:\s|\|)/m,
   /^\|[^|\n]+\|\s*🚧(?:\s|\|)/m,
 ] as const;
 

package/integrations/evidence/writeEvidence.ts

@@ -188,6 +188,16 @@ const normalizeRepoState = (
   if (!repoState) {
     return undefined;
   }
+  const tracking = repoState.lifecycle.tracking ?? {
+    enforced: false,
+    canonical_path: null,
+    canonical_present: false,
+    source_file: null,
+    in_progress_count: null,
+    single_in_progress_valid: null,
+    conflict: false,
+    declarations: [],
+  };
   return {
     repo_root: toRelativeRepoPath(repoRoot, repoState.repo_root),
     git: {
@@ -218,14 +228,14 @@ const normalizeRepoState = (
         }
         : undefined,
       tracking: {
-        enforced: repoState.lifecycle.tracking.enforced,
-        canonical_path: repoState.lifecycle.tracking.canonical_path,
-        canonical_present: repoState.lifecycle.tracking.canonical_present,
-        source_file: repoState.lifecycle.tracking.source_file,
-        in_progress_count: repoState.lifecycle.tracking.in_progress_count,
-        single_in_progress_valid: repoState.lifecycle.tracking.single_in_progress_valid,
-        conflict: repoState.lifecycle.tracking.conflict,
-        declarations: repoState.lifecycle.tracking.declarations.map((entry) => ({
+        enforced: tracking.enforced,
+        canonical_path: tracking.canonical_path,
+        canonical_present: tracking.canonical_present,
+        source_file: tracking.source_file,
+        in_progress_count: tracking.in_progress_count,
+        single_in_progress_valid: tracking.single_in_progress_valid,
+        conflict: tracking.conflict,
+        declarations: tracking.declarations.map((entry) => ({
           source_file: entry.source_file,
           declared_path: entry.declared_path,
           resolved_path: entry.resolved_path,

package/integrations/gate/stagePolicies.ts

@@ -233,8 +233,6 @@ type PolicyAsCodeContract = {
   version: '1.0';
   source: 'default' | 'skills.policy' | 'hard-mode';
   signatures: Partial<Record<SkillsStage, string>> & Record<'PRE_COMMIT' | 'PRE_PUSH' | 'CI', string>;
-  strict?: Partial<Record<SkillsStage, boolean>> &
-    Record<'PRE_COMMIT' | 'PRE_PUSH' | 'CI', boolean>;
   expires_at?: string;
 };
 
@@ -274,30 +272,6 @@ const policyStrictModeFromEnv = (): boolean => {
   return raw === '1' || raw === 'true' || raw === 'yes' || raw === 'on';
 };
 
-const isBoolean = (value: unknown): value is boolean => {
-  return typeof value === 'boolean';
-};
-
-const resolveContractStrictForStage = (
-  strictByStage: PolicyAsCodeContract['strict'],
-  stage: SkillsStage
-): boolean | null => {
-  if (!strictByStage) {
-    return null;
-  }
-  if (stage === 'PRE_WRITE') {
-    return strictByStage.PRE_WRITE ?? strictByStage.PRE_COMMIT ?? null;
-  }
-  return strictByStage[stage] ?? null;
-};
-
-const resolvePolicyStrict = (strictByContract: boolean | null): boolean => {
-  if (typeof strictByContract === 'boolean') {
-    return strictByContract;
-  }
-  return policyStrictModeFromEnv();
-};
-
 const isPolicyAsCodeContract = (value: unknown): value is PolicyAsCodeContract => {
   if (!isObject(value)) {
     return false;
@@ -315,16 +289,6 @@ const isPolicyAsCodeContract = (value: unknown): value is PolicyAsCodeContract =
   if (!isObject(value.signatures)) {
     return false;
   }
-  if (
-    typeof value.strict !== 'undefined' &&
-    (!isObject(value.strict)
-      || (typeof value.strict.PRE_WRITE !== 'undefined' && !isBoolean(value.strict.PRE_WRITE))
-      || !isBoolean(value.strict.PRE_COMMIT)
-      || !isBoolean(value.strict.PRE_PUSH)
-      || !isBoolean(value.strict.CI))
-  ) {
-    return false;
-  }
   if (typeof value.expires_at !== 'undefined' && !isIsoDateString(value.expires_at)) {
     return false;
   }
@@ -368,7 +332,7 @@ const resolvePolicyAsCodeTraceMetadata = (params: {
   policySource: string;
   validation: NonNullable<ResolvedStagePolicy['trace']['validation']>;
 } => {
-  const envStrict = policyStrictModeFromEnv();
+  const strict = policyStrictModeFromEnv();
   const computedVersion = `policy-as-code/${params.source}@${POLICY_AS_CODE_VERSION}`;
   const computedSignature = createPolicyAsCodeSignature({
     stage: params.stage,
@@ -380,7 +344,7 @@ const resolvePolicyAsCodeTraceMetadata = (params: {
   const contractPath = join(params.repoRoot, POLICY_AS_CODE_CONTRACT_PATH);
 
   if (!existsSync(contractPath)) {
-    if (envStrict) {
+    if (strict) {
       return {
         version: computedVersion,
         signature: computedSignature,
@@ -390,7 +354,7 @@ const resolvePolicyAsCodeTraceMetadata = (params: {
           code: 'POLICY_AS_CODE_UNSIGNED',
           message:
             'Policy-as-code contract is missing; runtime policy metadata is unsigned.',
-          strict: envStrict,
+          strict,
         },
       };
     }
@@ -403,7 +367,7 @@ const resolvePolicyAsCodeTraceMetadata = (params: {
         status: 'valid',
         code: 'POLICY_AS_CODE_VALID',
         message: 'Policy-as-code metadata generated from active runtime policy.',
-        strict: envStrict,
+        strict,
       },
     };
   }
@@ -419,13 +383,11 @@ const resolvePolicyAsCodeTraceMetadata = (params: {
           status: 'invalid',
           code: 'POLICY_AS_CODE_CONTRACT_INVALID',
           message: 'Policy-as-code contract is malformed.',
-          strict: envStrict,
+          strict,
         },
       };
     }
 
-    const strict = resolvePolicyStrict(resolveContractStrictForStage(raw.strict, params.stage));
-
     if (raw.source !== params.source) {
       return {
         version: `policy-as-code/${raw.source}@${raw.version}`,
@@ -503,7 +465,7 @@ const resolvePolicyAsCodeTraceMetadata = (params: {
         status: 'invalid',
         code: 'POLICY_AS_CODE_CONTRACT_INVALID',
         message: 'Policy-as-code contract cannot be parsed as JSON.',
-        strict: envStrict,
+        strict,
       },
     };
   }

package/integrations/lifecycle/cli.ts

@@ -12,8 +12,7 @@ import {
   runLifecycleDoctor,
   type LifecycleDoctorReport,
 } from './doctor';
-import { printGovernanceObservationHuman } from './governanceObservationSnapshot';
-import { printGovernanceNextActionHuman } from './governanceNextAction';
+import { printGovernanceConsoleHuman } from './cliGovernanceConsole';
 import { runLifecycleInstall } from './install';
 import { runLifecycleRemove } from './remove';
 import { readLifecycleStatus } from './status';
@@ -1522,13 +1521,12 @@ const printDoctorReport = (
   writeInfo(
     `[pumuki] hook pre-push: ${report.hookStatus['pre-push'].managedBlockPresent ? 'managed' : 'missing'}`
   );
-  printGovernanceObservationHuman(report.governanceObservation);
-  printGovernanceNextActionHuman(report.governanceNextAction);
-  writeInfo(
-    `[pumuki] policy-as-code: PRE_COMMIT=${report.policyValidation.stages.PRE_COMMIT.validationCode ?? 'n/a'} strict=${report.policyValidation.stages.PRE_COMMIT.strict ? 'yes' : 'no'} ` +
-    `PRE_PUSH=${report.policyValidation.stages.PRE_PUSH.validationCode ?? 'n/a'} strict=${report.policyValidation.stages.PRE_PUSH.strict ? 'yes' : 'no'} ` +
-    `CI=${report.policyValidation.stages.CI.validationCode ?? 'n/a'} strict=${report.policyValidation.stages.CI.strict ? 'yes' : 'no'}`
-  );
+  printGovernanceConsoleHuman({
+    governanceObservation: report.governanceObservation,
+    governanceNextAction: report.governanceNextAction,
+    policyValidation: report.policyValidation,
+    experimentalFeatures: report.experimentalFeatures,
+  });
 
   for (const issue of report.issues) {
     writeInfo(`[pumuki] ${issue.severity.toUpperCase()}: ${issue.message}`);
@@ -2358,40 +2356,15 @@ export const runLifecycleCli = async (
           writeInfo(
             `[pumuki] hooks: pre-commit=${status.hookStatus['pre-commit'].managedBlockPresent ? 'managed' : 'missing'}, pre-push=${status.hookStatus['pre-push'].managedBlockPresent ? 'managed' : 'missing'}`
           );
-          printGovernanceObservationHuman(status.governanceObservation);
-          printGovernanceNextActionHuman(status.governanceNextAction);
+          printGovernanceConsoleHuman({
+            governanceObservation: status.governanceObservation,
+            governanceNextAction: status.governanceNextAction,
+            policyValidation: status.policyValidation,
+            experimentalFeatures: status.experimentalFeatures,
+          });
           writeInfo(
             `[pumuki] tracked node_modules paths: ${status.trackedNodeModulesCount}`
           );
-          writeInfo(
-            `[pumuki] policy-as-code: PRE_COMMIT=${status.policyValidation.stages.PRE_COMMIT.validationCode ?? 'n/a'} strict=${status.policyValidation.stages.PRE_COMMIT.strict ? 'yes' : 'no'} ` +
-            `PRE_PUSH=${status.policyValidation.stages.PRE_PUSH.validationCode ?? 'n/a'} strict=${status.policyValidation.stages.PRE_PUSH.strict ? 'yes' : 'no'} ` +
-            `CI=${status.policyValidation.stages.CI.validationCode ?? 'n/a'} strict=${status.policyValidation.stages.CI.strict ? 'yes' : 'no'}`
-          );
-          writeInfo(
-            `[pumuki] experimental: ANALYTICS=${status.experimentalFeatures.features.analytics.mode} source=${status.experimentalFeatures.features.analytics.source} layer=${status.experimentalFeatures.features.analytics.layer} blocking=${status.experimentalFeatures.features.analytics.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.analytics.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: HEURISTICS=${status.experimentalFeatures.features.heuristics.mode} source=${status.experimentalFeatures.features.heuristics.source} layer=${status.experimentalFeatures.features.heuristics.layer} blocking=${status.experimentalFeatures.features.heuristics.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.heuristics.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: LEARNING_CONTEXT=${status.experimentalFeatures.features.learning_context.mode} source=${status.experimentalFeatures.features.learning_context.source} layer=${status.experimentalFeatures.features.learning_context.layer} blocking=${status.experimentalFeatures.features.learning_context.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.learning_context.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: MCP_ENTERPRISE=${status.experimentalFeatures.features.mcp_enterprise.mode} source=${status.experimentalFeatures.features.mcp_enterprise.source} layer=${status.experimentalFeatures.features.mcp_enterprise.layer} blocking=${status.experimentalFeatures.features.mcp_enterprise.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.mcp_enterprise.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: OPERATIONAL_MEMORY=${status.experimentalFeatures.features.operational_memory.mode} source=${status.experimentalFeatures.features.operational_memory.source} layer=${status.experimentalFeatures.features.operational_memory.layer} blocking=${status.experimentalFeatures.features.operational_memory.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.operational_memory.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: PRE_WRITE=${status.experimentalFeatures.features.pre_write.mode} source=${status.experimentalFeatures.features.pre_write.source} layer=${status.experimentalFeatures.features.pre_write.layer} blocking=${status.experimentalFeatures.features.pre_write.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.pre_write.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: SAAS_INGESTION=${status.experimentalFeatures.features.saas_ingestion.mode} source=${status.experimentalFeatures.features.saas_ingestion.source} layer=${status.experimentalFeatures.features.saas_ingestion.layer} blocking=${status.experimentalFeatures.features.saas_ingestion.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.saas_ingestion.activationVariable}`
-          );
-          writeInfo(
-            `[pumuki] experimental: SDD=${status.experimentalFeatures.features.sdd.mode} source=${status.experimentalFeatures.features.sdd.source} layer=${status.experimentalFeatures.features.sdd.layer} blocking=${status.experimentalFeatures.features.sdd.blocking ? 'yes' : 'no'} env=${status.experimentalFeatures.features.sdd.activationVariable}`
-          );
           if (remoteCiDiagnostics) {
             printRemoteCiDiagnostics(remoteCiDiagnostics);
           }

package/integrations/lifecycle/cliGovernanceConsole.ts

@@ -0,0 +1,69 @@
+import type { LifecycleExperimentalFeaturesSnapshot } from './experimentalFeaturesSnapshot';
+import type { GovernanceNextActionSummary } from './governanceNextAction';
+import { buildGovernanceNextActionSummaryLines } from './governanceNextAction';
+import type { GovernanceObservationSnapshot } from './governanceObservationSnapshot';
+import { buildGovernanceObservationSummaryLines } from './governanceObservationSnapshot';
+import { writeInfo } from './cliOutputs';
+import type { LifecyclePolicyValidationSnapshot } from './policyValidationSnapshot';
+
+export type GovernanceConsoleSnapshot = {
+  governanceObservation: GovernanceObservationSnapshot;
+  governanceNextAction: GovernanceNextActionSummary;
+  policyValidation: LifecyclePolicyValidationSnapshot;
+  experimentalFeatures: LifecycleExperimentalFeaturesSnapshot;
+};
+
+const GOVERNANCE_CONSOLE_FEATURE_ORDER = [
+  'analytics',
+  'heuristics',
+  'learning_context',
+  'mcp_enterprise',
+  'operational_memory',
+  'pre_write',
+  'saas_ingestion',
+  'sdd',
+] as const;
+
+const buildGovernancePolicySummaryLine = (
+  policyValidation: LifecyclePolicyValidationSnapshot
+): string =>
+  `Policy-as-code: PRE_WRITE=${policyValidation.stages.PRE_WRITE.validationCode ?? 'n/a'} strict=${policyValidation.stages.PRE_WRITE.strict ? 'yes' : 'no'} ` +
+  `PRE_COMMIT=${policyValidation.stages.PRE_COMMIT.validationCode ?? 'n/a'} strict=${policyValidation.stages.PRE_COMMIT.strict ? 'yes' : 'no'} ` +
+  `PRE_PUSH=${policyValidation.stages.PRE_PUSH.validationCode ?? 'n/a'} strict=${policyValidation.stages.PRE_PUSH.strict ? 'yes' : 'no'} ` +
+  `CI=${policyValidation.stages.CI.validationCode ?? 'n/a'} strict=${policyValidation.stages.CI.strict ? 'yes' : 'no'}`;
+
+const buildGovernanceExperimentalSummaryLines = (
+  experimentalFeatures: LifecycleExperimentalFeaturesSnapshot
+): string[] =>
+  GOVERNANCE_CONSOLE_FEATURE_ORDER.map((featureKey) => {
+    const feature = experimentalFeatures.features[featureKey];
+    return `Experimental: ${featureKey.toUpperCase()}=${feature.mode} source=${feature.source} layer=${feature.layer} blocking=${feature.blocking ? 'yes' : 'no'} env=${feature.activationVariable}`;
+  });
+
+export const buildGovernanceConsoleSummaryLines = (
+  snapshot: GovernanceConsoleSnapshot
+): string[] => {
+  const lines = ['Governance truth:'];
+  for (const line of buildGovernanceObservationSummaryLines(snapshot.governanceObservation)) {
+    lines.push(`  ${line}`);
+  }
+  for (const hint of snapshot.governanceObservation.evidence.human_summary_preview) {
+    lines.push(`  Evidence hint: ${hint}`);
+  }
+  lines.push('Governance next action:');
+  for (const line of buildGovernanceNextActionSummaryLines(snapshot.governanceNextAction)) {
+    lines.push(`  ${line}`);
+  }
+  lines.push(buildGovernancePolicySummaryLine(snapshot.policyValidation));
+  lines.push(...buildGovernanceExperimentalSummaryLines(snapshot.experimentalFeatures));
+  return lines;
+};
+
+export const printGovernanceConsoleHuman = (
+  snapshot: GovernanceConsoleSnapshot
+): void => {
+  writeInfo('[pumuki] governance console (S1 / shared status-doctor baseline):');
+  for (const line of buildGovernanceConsoleSummaryLines(snapshot)) {
+    writeInfo(`[pumuki]   ${line}`);
+  }
+};

package/integrations/lifecycle/policyReconcile.ts

@@ -103,9 +103,19 @@ const toContractSource = (
   return 'default';
 };
 
-const writePolicyAsCodeContract = (params: {
+const tryApplyPolicyAutofix = (params: {
   report: Omit<PolicyReconcileReport, 'applyRequested' | 'autofix'>;
 }): PolicyReconcileReport['autofix'] => {
+  const actionableDrifts = params.report.drifts.filter((drift) => POLICY_AUTOFIX_DRIFT_CODES.has(drift.code));
+  if (actionableDrifts.length === 0) {
+    return {
+      attempted: false,
+      status: 'SKIPPED',
+      actions: [],
+      details: 'No policy-as-code drift eligible for autofix.',
+    };
+  }
+
   const preWriteStage = params.report.stages.PRE_WRITE;
   const signatures = {
     PRE_WRITE: createPolicyAsCodeSignature({
@@ -124,7 +134,7 @@ const writePolicyAsCodeContract = (params: {
       attempted: true,
       status: 'FAILED',
       actions: [],
-      details: 'Cannot write policy-as-code contract: missing computed signatures for one or more stages.',
+      details: 'Cannot autofix: missing computed signatures for one or more stages.',
     };
   }
 
@@ -132,12 +142,6 @@ const writePolicyAsCodeContract = (params: {
   const contract = {
     version: '1.0',
     source: toContractSource(params.report.stages.PRE_WRITE.source),
-    strict: {
-      PRE_WRITE: params.report.stages.PRE_WRITE.strict,
-      PRE_COMMIT: params.report.stages.PRE_COMMIT.strict,
-      PRE_PUSH: params.report.stages.PRE_PUSH.strict,
-      CI: params.report.stages.CI.strict,
-    },
     signatures: {
       PRE_WRITE: signatures.PRE_WRITE,
       PRE_COMMIT: signatures.PRE_COMMIT,
@@ -154,7 +158,7 @@ const writePolicyAsCodeContract = (params: {
       attempted: true,
       status: 'APPLIED',
       actions: ['WRITE_POLICY_AS_CODE_CONTRACT'],
-      details: `Wrote ${POLICY_AS_CODE_CONTRACT_PATH} with deterministic stage signatures and strict flags.`,
+      details: `Wrote ${POLICY_AS_CODE_CONTRACT_PATH} with deterministic stage signatures.`,
     };
   } catch (error) {
     return {
@@ -166,22 +170,6 @@ const writePolicyAsCodeContract = (params: {
   }
 };
 
-const tryApplyPolicyAutofix = (params: {
-  report: Omit<PolicyReconcileReport, 'applyRequested' | 'autofix'>;
-}): PolicyReconcileReport['autofix'] => {
-  const actionableDrifts = params.report.drifts.filter((drift) => POLICY_AUTOFIX_DRIFT_CODES.has(drift.code));
-  if (actionableDrifts.length === 0) {
-    return {
-      attempted: false,
-      status: 'SKIPPED',
-      actions: [],
-      details: 'No policy-as-code drift eligible for autofix.',
-    };
-  }
-
-  return writePolicyAsCodeContract(params);
-};
-
 export const runPolicyReconcile = (params?: {
   repoRoot?: string;
   now?: () => Date;
@@ -424,31 +412,6 @@ export const runPolicyReconcile = (params?: {
       };
     }
 
-    if (strictRequested && baseReport.summary.status === 'PASS') {
-      const strictPersistence = writePolicyAsCodeContract({
-        report: baseReport,
-      });
-      if (strictPersistence.status !== 'APPLIED') {
-        return {
-          ...baseReport,
-          applyRequested: true,
-          autofix: strictPersistence,
-        };
-      }
-
-      const reevaluated = runPolicyReconcile({
-        repoRoot,
-        now,
-        strict: strictRequested,
-        apply: false,
-      });
-      return {
-        ...reevaluated,
-        applyRequested: true,
-        autofix: strictPersistence,
-      };
-    }
-
     const autofix = tryApplyPolicyAutofix({
       report: baseReport,
     });

package/integrations/policy/policyAsCode.ts

@@ -30,10 +30,7 @@ export type PolicyAsCodeTraceMetadata = {
 type PolicyAsCodeContract = {
   version: '1.0';
   source: PolicyProfileSource;
-  signatures: Partial<Record<SkillsStage, string>> &
-    Record<'PRE_COMMIT' | 'PRE_PUSH' | 'CI', string>;
-  strict?: Partial<Record<SkillsStage, boolean>> &
-    Record<'PRE_COMMIT' | 'PRE_PUSH' | 'CI', boolean>;
+  signatures: Record<SkillsStage, string>;
   expires_at?: string;
 };
 
@@ -60,40 +57,6 @@ const policyStrictModeFromEnv = (): boolean => {
   return raw === '1' || raw === 'true' || raw === 'yes' || raw === 'on';
 };
 
-const isBoolean = (value: unknown): value is boolean => {
-  return typeof value === 'boolean';
-};
-
-const resolveContractSignatureForStage = (
-  signatures: PolicyAsCodeContract['signatures'],
-  stage: SkillsStage
-): string | undefined => {
-  if (stage === 'PRE_WRITE') {
-    return signatures.PRE_WRITE ?? signatures.PRE_COMMIT;
-  }
-  return signatures[stage];
-};
-
-const resolveContractStrictForStage = (
-  strictByStage: PolicyAsCodeContract['strict'],
-  stage: SkillsStage
-): boolean | null => {
-  if (!strictByStage) {
-    return null;
-  }
-  if (stage === 'PRE_WRITE') {
-    return strictByStage.PRE_WRITE ?? strictByStage.PRE_COMMIT ?? null;
-  }
-  return strictByStage[stage] ?? null;
-};
-
-const resolvePolicyStrict = (strictByContract: boolean | null): boolean => {
-  if (typeof strictByContract === 'boolean') {
-    return strictByContract;
-  }
-  return policyStrictModeFromEnv();
-};
-
 const isPolicyAsCodeContract = (value: unknown): value is PolicyAsCodeContract => {
   if (!isObject(value)) {
     return false;
@@ -111,21 +74,10 @@ const isPolicyAsCodeContract = (value: unknown): value is PolicyAsCodeContract =
   if (!isObject(value.signatures)) {
     return false;
   }
-  if (
-    typeof value.strict !== 'undefined' &&
-    (!isObject(value.strict)
-      || (typeof value.strict.PRE_WRITE !== 'undefined' && !isBoolean(value.strict.PRE_WRITE))
-      || !isBoolean(value.strict.PRE_COMMIT)
-      || !isBoolean(value.strict.PRE_PUSH)
-      || !isBoolean(value.strict.CI))
-  ) {
-    return false;
-  }
   if (typeof value.expires_at !== 'undefined' && !isIsoDateString(value.expires_at)) {
     return false;
   }
   return (
-    (typeof value.signatures.PRE_WRITE === 'undefined' || isSha256Hex(value.signatures.PRE_WRITE)) &&
     isSha256Hex(value.signatures.PRE_COMMIT) &&
     isSha256Hex(value.signatures.PRE_PUSH) &&
     isSha256Hex(value.signatures.CI)
@@ -159,7 +111,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
   hash: string;
   repoRoot: string;
 }): PolicyAsCodeTraceMetadata => {
-  const envStrict = policyStrictModeFromEnv();
+  const strict = policyStrictModeFromEnv();
   const computedVersion = `policy-as-code/${params.source}@${POLICY_AS_CODE_VERSION}`;
   const computedSignature = createPolicyAsCodeSignature({
     stage: params.stage,
@@ -171,7 +123,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
   const contractPath = join(params.repoRoot, POLICY_AS_CODE_CONTRACT_PATH);
 
   if (!existsSync(contractPath)) {
-    if (envStrict) {
+    if (strict) {
       return {
         version: computedVersion,
         signature: computedSignature,
@@ -181,7 +133,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
           code: 'POLICY_AS_CODE_UNSIGNED',
           message:
             'Policy-as-code contract is missing; runtime policy metadata is unsigned.',
-          strict: envStrict,
+          strict,
         },
       };
     }
@@ -194,7 +146,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
         status: 'valid',
         code: 'POLICY_AS_CODE_VALID',
         message: 'Policy-as-code metadata generated from active runtime policy.',
-        strict: envStrict,
+        strict,
       },
     };
   }
@@ -210,17 +162,15 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
           status: 'invalid',
           code: 'POLICY_AS_CODE_CONTRACT_INVALID',
           message: 'Policy-as-code contract is malformed.',
-          strict: envStrict,
+          strict,
         },
       };
     }
 
-    const strict = resolvePolicyStrict(resolveContractStrictForStage(raw.strict, params.stage));
-
     if (raw.source !== params.source) {
       return {
         version: `policy-as-code/${raw.source}@${raw.version}`,
-        signature: resolveContractSignatureForStage(raw.signatures, params.stage) ?? computedSignature,
+        signature: raw.signatures[params.stage],
         policySource: `file:${POLICY_AS_CODE_CONTRACT_PATH}`,
         validation: {
           status: 'unknown-source',
@@ -233,18 +183,18 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
     }
 
     const expectedSignature = createPolicyAsCodeSignature({
-      stage: params.stage === 'PRE_WRITE' ? 'PRE_COMMIT' : params.stage,
+      stage: params.stage,
       source: params.source,
       bundle: params.bundle,
       hash: params.hash,
       version: raw.version,
     });
-    const stageSignature = resolveContractSignatureForStage(raw.signatures, params.stage);
+    const stageSignature = raw.signatures[params.stage];
 
     if (stageSignature !== expectedSignature) {
       return {
         version: `policy-as-code/${raw.source}@${raw.version}`,
-        signature: stageSignature ?? computedSignature,
+        signature: stageSignature,
         policySource: `file:${POLICY_AS_CODE_CONTRACT_PATH}`,
         validation: {
           status: 'invalid',
@@ -261,7 +211,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
       if (Number.isFinite(expiresAtTimestamp) && Date.now() >= expiresAtTimestamp) {
         return {
           version: `policy-as-code/${raw.source}@${raw.version}`,
-          signature: stageSignature ?? computedSignature,
+          signature: stageSignature,
           policySource: `file:${POLICY_AS_CODE_CONTRACT_PATH}`,
           validation: {
             status: 'expired',
@@ -275,7 +225,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
 
     return {
       version: `policy-as-code/${raw.source}@${raw.version}`,
-      signature: stageSignature ?? computedSignature,
+      signature: stageSignature,
       policySource: `file:${POLICY_AS_CODE_CONTRACT_PATH}`,
       validation: {
         status: 'valid',
@@ -293,7 +243,7 @@ export const resolvePolicyAsCodeTraceMetadata = (params: {
         status: 'invalid',
         code: 'POLICY_AS_CODE_CONTRACT_INVALID',
         message: 'Policy-as-code contract cannot be parsed as JSON.',
-        strict: envStrict,
+        strict,
       },
     };
   }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pumuki",
-  "version": "6.3.77",
+  "version": "6.3.79",
   "description": "Enterprise-grade AST Intelligence System with multi-platform support (iOS, Android, Backend, Frontend) and Feature-First + DDD + Clean Architecture enforcement. Includes dynamic violations API for intelligent querying.",
   "main": "index.js",
   "bin": {

package/scripts/framework-menu-advanced-view-lib.ts

@@ -19,11 +19,14 @@ import {
   renderActionRow,
   renderBadge,
 } from './framework-menu-ui-components-lib';
+import { buildGovernanceConsoleSummaryLines } from '../integrations/lifecycle/cliGovernanceConsole';
+import type { ConsumerPreflightResult } from './framework-menu-consumer-preflight-types';
 
 export const formatAdvancedMenuView = (
   actions: ReadonlyArray<MenuAction>,
   options?: {
     evidenceSummary?: FrameworkMenuEvidenceSummary;
+    preflight?: ConsumerPreflightResult | null;
   }
 ): string => {
   const evidenceSummary = options?.evidenceSummary ?? readEvidenceSummaryForMenu(process.cwd());
@@ -33,6 +36,18 @@ export const formatAdvancedMenuView = (
   const lines = [
     'Pumuki Framework Menu (Advanced)',
     `Status: ${statusBadge}`,
+    ...(options?.preflight
+      ? [
+        'Governance Console',
+        ...buildGovernanceConsoleSummaryLines({
+          governanceObservation: options.preflight.governanceObservation,
+          governanceNextAction: options.preflight.governanceNextAction,
+          policyValidation: options.preflight.policyValidation,
+          experimentalFeatures: options.preflight.experimentalFeatures,
+        }).map((line) => `  ${line}`),
+        '',
+      ]
+      : []),
     'C. Switch to consumer menu',
     '',
     ...groupedActions.flatMap((group, groupIndex) => [

package/scripts/framework-menu-consumer-preflight-render.ts

@@ -1,7 +1,6 @@
 import { renderLegacyPanel, resolveLegacyPanelOuterWidth } from './framework-menu-legacy-audit-lib';
 import { buildConsumerPreflightBlockingCauseLines } from './framework-menu-consumer-preflight-hints';
-import { buildGovernanceNextActionSummaryLines } from '../integrations/lifecycle/governanceNextAction';
-import { buildGovernanceObservationSummaryLines } from '../integrations/lifecycle/governanceObservationSnapshot';
+import { buildGovernanceConsoleSummaryLines } from '../integrations/lifecycle/cliGovernanceConsole';
 import type {
   ConsumerPreflightRenderOptions,
   ConsumerPreflightResult,
@@ -21,10 +20,15 @@ const buildConsumerPreflightPanelLines = (
     `Evidence source: source=${evidence.source.source} path=${evidence.source.path} digest=${evidence.source.digest ?? 'null'} generated_at=${evidence.source.generated_at ?? 'null'}`,
     `Gate: ${preflight.status} (${preflight.result.violations.length} violations)`,
   ];
-  lines.push('', 'Governance truth:');
-  lines.push(...buildGovernanceObservationSummaryLines(preflight.governanceObservation));
-  lines.push('', 'Governance next action:');
-  lines.push(...buildGovernanceNextActionSummaryLines(preflight.governanceNextAction));
+  lines.push(
+    '',
+    ...buildGovernanceConsoleSummaryLines({
+      governanceObservation: preflight.governanceObservation,
+      governanceNextAction: preflight.governanceNextAction,
+      policyValidation: preflight.policyValidation,
+      experimentalFeatures: preflight.experimentalFeatures,
+    })
+  );
   lines.push(...buildConsumerPreflightBlockingCauseLines(preflight));
 
   if (preflight.hints.length > 0) {

package/scripts/framework-menu-consumer-preflight-run.ts

@@ -92,10 +92,12 @@ export const runConsumerPreflight = (
     repoRoot,
     stage: params.stage,
   });
+  const experimentalFeatures = readLifecycleExperimentalFeaturesSnapshot();
+  const policyValidation = readLifecyclePolicyValidationSnapshot(repoRoot);
   const governanceObservation = readGovernanceObservationSnapshot({
     repoRoot,
-    experimentalFeatures: readLifecycleExperimentalFeaturesSnapshot(),
-    policyValidation: readLifecyclePolicyValidationSnapshot(repoRoot),
+    experimentalFeatures,
+    policyValidation,
     git: new LifecycleGitService(),
   });
   const governanceNextAction = activeDependencies.readGovernanceNextAction({
@@ -118,6 +120,8 @@ export const runConsumerPreflight = (
     result,
     governanceObservation,
     governanceNextAction,
+    policyValidation,
+    experimentalFeatures,
     hints,
     notificationResults,
   };

package/scripts/framework-menu-consumer-preflight-types.ts

@@ -7,6 +7,8 @@ import type {
   GovernanceNextActionSummary,
 } from '../integrations/lifecycle/governanceNextAction';
 import type { GovernanceObservationSnapshot } from '../integrations/lifecycle/governanceObservationSnapshot';
+import type { LifecycleExperimentalFeaturesSnapshot } from '../integrations/lifecycle/experimentalFeaturesSnapshot';
+import type { LifecyclePolicyValidationSnapshot } from '../integrations/lifecycle/policyValidationSnapshot';
 import type {
   PumukiCriticalNotificationEvent,
   SystemNotificationEmitResult,
@@ -20,6 +22,8 @@ export type ConsumerPreflightResult = {
   result: AiGateCheckResult;
   governanceObservation: GovernanceObservationSnapshot;
   governanceNextAction: GovernanceNextActionSummary;
+  policyValidation: LifecyclePolicyValidationSnapshot;
+  experimentalFeatures: LifecycleExperimentalFeaturesSnapshot;
   hints: ReadonlyArray<string>;
   notificationResults: ReadonlyArray<SystemNotificationEmitResult>;
 };

package/scripts/framework-menu-consumer-runtime-actions.ts

@@ -11,6 +11,7 @@ import {
   renderConsumerRuntimePatternChecks,
   renderConsumerRuntimeSummary,
 } from './framework-menu-consumer-runtime-audit';
+import type { ConsumerPreflightResult } from './framework-menu-consumer-preflight-types';
 import type { ConsumerAction, ConsumerRuntimeEmitNotification, ConsumerRuntimeWrite } from './framework-menu-consumer-runtime-types';
 
 type ConsumerRuntimeActionDependencies = {
@@ -30,17 +31,20 @@ type ConsumerRuntimeActionDependencies = {
   setSummaryOverride: (
     summary: import('./framework-menu-evidence-summary-lib').FrameworkMenuEvidenceSummary | null
   ) => void;
+  clearLastPreflight: () => void;
+  setLastPreflight: (result: ConsumerPreflightResult | null) => void;
 };
 
 const runConsumerRuntimePreflight = async (
   dependencies: Pick<
     ConsumerRuntimeActionDependencies,
-    'repoRoot' | 'runPreflight' | 'useColor' | 'write'
+    'repoRoot' | 'runPreflight' | 'useColor' | 'write' | 'setLastPreflight'
   >,
   stage: 'PRE_COMMIT' | 'PRE_PUSH'
 ): Promise<void> => {
   if (dependencies.runPreflight) {
     const rendered = await dependencies.runPreflight(stage);
+    dependencies.setLastPreflight(null);
     if (typeof rendered === 'string' && rendered.trim().length > 0) {
       dependencies.write(`\n${rendered}\n`);
     }
@@ -51,6 +55,7 @@ const runConsumerRuntimePreflight = async (
     stage,
     repoRoot: dependencies.repoRoot,
   });
+  dependencies.setLastPreflight(preflight);
   dependencies.write(
     `\n${formatConsumerPreflight(preflight, {
       color: dependencies.useColor(),
@@ -138,15 +143,19 @@ export const createConsumerRuntimeActions = (
       printConsumerRuntimeEmptyScopeHint({ write: dependencies.write }, summary, 'workingTree');
     },
     runPatternChecks: async () => {
+      dependencies.clearLastPreflight();
       dependencies.write(`\n${renderConsumerRuntimePatternChecks(dependencies.repoRoot)}\n`);
     },
     runEslintAudit: async () => {
+      dependencies.clearLastPreflight();
       dependencies.write(`\n${renderConsumerRuntimeEslintAudit(dependencies.repoRoot)}\n`);
     },
     runAstIntelligence: async () => {
+      dependencies.clearLastPreflight();
       dependencies.write(`\n${renderConsumerRuntimeAstBreakdown(dependencies.repoRoot)}\n`);
     },
     runExportMarkdown: async () => {
+      dependencies.clearLastPreflight();
       const filePath = exportConsumerRuntimeMarkdown(
         dependencies.repoRoot,
         dependencies.getSummaryOverride()
@@ -154,6 +163,7 @@ export const createConsumerRuntimeActions = (
       dependencies.write(`\nLegacy read-only markdown exported: ${filePath}\n`);
     },
     runFileDiagnostics: async () => {
+      dependencies.clearLastPreflight();
       dependencies.write(`\n${renderConsumerRuntimeFileDiagnostics(dependencies.repoRoot)}\n`);
     },
   }) as ReadonlyArray<ConsumerAction>;

package/scripts/framework-menu-consumer-runtime-lib.ts

@@ -5,6 +5,7 @@ import {
   resolveConsumerRuntimeUseColor,
 } from './framework-menu-consumer-runtime-audit';
 import type { FrameworkMenuEvidenceSummary } from './framework-menu-evidence-summary-lib';
+import type { ConsumerPreflightResult } from './framework-menu-consumer-preflight-types';
 import type {
   ConsumerAction,
   ConsumerMenuRuntime,
@@ -22,6 +23,7 @@ export const createConsumerMenuRuntime = (
 ): ConsumerMenuRuntime => {
   const repoRoot = process.cwd();
   let summaryOverride: FrameworkMenuEvidenceSummary | null = null;
+  let lastPreflight: ConsumerPreflightResult | null = null;
   const emitNotification =
     params.emitSystemNotification
     ?? ((payload: Parameters<typeof emitSystemNotification>[0]) =>
@@ -45,6 +47,12 @@ export const createConsumerMenuRuntime = (
     setSummaryOverride: (summary) => {
       summaryOverride = summary;
     },
+    clearLastPreflight: () => {
+      lastPreflight = null;
+    },
+    setLastPreflight: (result) => {
+      lastPreflight = result;
+    },
   });
 
   return {
@@ -55,9 +63,11 @@ export const createConsumerMenuRuntime = (
         repoRoot,
         useColor,
         write: params.write,
+        preflight: lastPreflight,
       });
     },
     readCurrentSummary: () => summaryOverride,
+    readLastPreflight: () => lastPreflight,
   };
 };
 

package/scripts/framework-menu-consumer-runtime-menu.ts

@@ -13,10 +13,9 @@ import {
   renderBadge,
 } from './framework-menu-ui-components-lib';
 import { isMenuUiV2Enabled } from './framework-menu-ui-version-lib';
-import type {
-  ConsumerAction,
-  ConsumerRuntimeWrite,
-} from './framework-menu-consumer-runtime-types';
+import { buildGovernanceConsoleSummaryLines } from '../integrations/lifecycle/cliGovernanceConsole';
+import type { ConsumerPreflightResult } from './framework-menu-consumer-preflight-types';
+import type { ConsumerAction, ConsumerRuntimeWrite } from './framework-menu-consumer-runtime-types';
 
 const buildConsumerRuntimeMenuStatus = (
   menuSummary: FrameworkMenuEvidenceSummary
@@ -58,6 +57,7 @@ export const renderConsumerRuntimeModernMenu = (
     actions: ReadonlyArray<ConsumerAction>;
     repoRoot: string;
     useColor: () => boolean;
+    preflight?: ConsumerPreflightResult | null;
   }
 ): string => {
   const menuSummary = readEvidenceSummaryForMenu(params.repoRoot);
@@ -71,6 +71,18 @@ export const renderConsumerRuntimeModernMenu = (
     'PUMUKI — Hook-System (run: npx ast-hooks)',
     'AST Intelligence System Overview',
     `Status: ${renderBadge(menuStatus.label, menuStatus.level, tokens)}`,
+    ...(params.preflight
+      ? [
+        '',
+        'Governance Console',
+        ...buildGovernanceConsoleSummaryLines({
+          governanceObservation: params.preflight.governanceObservation,
+          governanceNextAction: params.preflight.governanceNextAction,
+          policyValidation: params.preflight.policyValidation,
+          experimentalFeatures: params.preflight.experimentalFeatures,
+        }).map((line) => `  ${line}`),
+      ]
+      : []),
     'A. Switch to advanced menu',
     '',
     ...groupedActions.flatMap((group) => [
@@ -93,6 +105,7 @@ export const printConsumerRuntimeMenu = (params: {
   repoRoot: string;
   useColor: () => boolean;
   write: ConsumerRuntimeWrite;
+  preflight?: ConsumerPreflightResult | null;
 }): void => {
   const classicMenu = renderConsumerRuntimeClassicMenu(params.actions, params.useColor);
   if (!isMenuUiV2Enabled()) {
@@ -105,6 +118,7 @@ export const printConsumerRuntimeMenu = (params: {
       actions: params.actions,
       repoRoot: params.repoRoot,
       useColor: params.useColor,
+      preflight: params.preflight,
     })}\n`);
   } catch {
     params.write('\n[pumuki][menu-ui-v2] Render failed. Falling back to classic menu.\n');

package/scripts/framework-menu-consumer-runtime-types.ts

@@ -1,4 +1,5 @@
 import type { FrameworkMenuEvidenceSummary } from './framework-menu-evidence-summary-lib';
+import type { ConsumerPreflightResult } from './framework-menu-consumer-preflight-types';
 import type {
   PumukiCriticalNotificationEvent,
   SystemNotificationEmitResult,
@@ -45,6 +46,7 @@ export type ConsumerMenuRuntime = {
   actions: ReadonlyArray<ConsumerAction>;
   printMenu: () => void;
   readCurrentSummary: () => FrameworkMenuEvidenceSummary | null;
+  readLastPreflight: () => ConsumerPreflightResult | null;
 };
 
 export type ConsumerRuntimeScope = 'staged' | 'workingTree';

package/scripts/framework-menu.ts

@@ -73,6 +73,7 @@ const menu = async (): Promise<void> => {
         consumerRuntime.printMenu();
       } else {
         const currentSummary = consumerRuntime.readCurrentSummary();
+        const lastPreflight = consumerRuntime.readLastPreflight();
         if (!isMenuUiV2Enabled()) {
           output.write(
             `\n${formatAdvancedMenuClassicView(advancedActions, {
@@ -84,6 +85,7 @@ const menu = async (): Promise<void> => {
             output.write(
               `\n${formatAdvancedMenuView(advancedActions, {
                 evidenceSummary: currentSummary ?? undefined,
+                preflight: lastPreflight ?? undefined,
               })}\n`
             );
           } catch {

package/scripts/package-install-smoke-consumer-git-repo-lib.ts

@@ -39,8 +39,17 @@ export const configureRemoteAndFeatureBranch = (
     workspace.tmpRoot
   );
   runGitStep(workspace, ['remote', 'add', 'origin', workspace.bareRemote], 'git remote add origin');
-  runGitStep(workspace, ['push', '-u', 'origin', 'main'], 'git push origin main');
   runGitStep(workspace, ['checkout', '-b', 'feature/package-smoke'], 'git checkout feature branch');
+  runGitStep(
+    workspace,
+    ['push', '-u', 'origin', 'feature/package-smoke'],
+    'git push origin feature branch'
+  );
+  runGitStep(
+    workspace,
+    ['push', 'origin', 'HEAD:refs/heads/main'],
+    'git push origin main from feature branch'
+  );
   runGitStep(
     workspace,
     ['branch', '--set-upstream-to=origin/main', 'feature/package-smoke'],

package/scripts/package-install-smoke-consumer-npm-lib.ts

@@ -15,10 +15,11 @@ import packageJson from '../package.json';
 const runNpmStep = (
   workspace: SmokeWorkspace,
   args: string[],
-  context: string
+  context: string,
+  env?: NodeJS.ProcessEnv
 ): void => {
   assertSuccess(
-    runCommand({ cwd: workspace.consumerRepo, executable: 'npm', args }),
+    runCommand({ cwd: workspace.consumerRepo, executable: 'npm', args, env }),
     context
   );
 };
@@ -32,7 +33,14 @@ export const installTarballIntoConsumerRepo = (
     'node_modules/\n.ai_evidence.json\n',
     'utf8'
   );
-  runNpmStep(workspace, ['install', workspace.tarballPath ?? ''], 'npm install <tarball>');
+  runNpmStep(
+    workspace,
+    ['install', workspace.tarballPath ?? ''],
+    'npm install <tarball>',
+    {
+      PUMUKI_SKIP_POSTINSTALL: '1',
+    }
+  );
 };
 
 export const verifyInstalledPackageCanBeRequired = (
@@ -51,10 +59,40 @@ export const verifyInstalledPackageCanBeRequired = (
 export const verifyInstalledPumukiBinaryVersion = (
   workspace: SmokeWorkspace
 ): void => {
+  const hasInstalledStatusVersion = (
+    result: ReturnType<typeof runCommand>,
+  ): boolean => {
+    let parsed: unknown;
+    try {
+      parsed = JSON.parse(result.stdout);
+    } catch {
+      return false;
+    }
+
+    const packageVersion =
+      typeof parsed === 'object' && parsed !== null && 'packageVersion' in parsed
+        ? (parsed as { packageVersion?: unknown }).packageVersion
+        : null;
+    const effectiveVersion =
+      typeof parsed === 'object'
+      && parsed !== null
+      && 'version' in parsed
+      && typeof (parsed as { version?: unknown }).version === 'object'
+      && (parsed as { version: { effective?: unknown } }).version !== null
+        ? (parsed as { version: { effective?: unknown } }).version.effective
+        : null;
+
+    return packageVersion === packageJson.version || effectiveVersion === packageJson.version;
+  };
+
   const assertInstalledStatusVersion = (
     result: ReturnType<typeof runCommand>,
     context: string
   ): void => {
+    if (hasInstalledStatusVersion(result)) {
+      return;
+    }
+
     let parsed: unknown;
     try {
       parsed = JSON.parse(result.stdout);
@@ -75,11 +113,9 @@ export const verifyInstalledPumukiBinaryVersion = (
         ? (parsed as { version: { effective?: unknown } }).version.effective
         : null;
 
-    if (packageVersion !== packageJson.version && effectiveVersion !== packageJson.version) {
-      throw new Error(
-        `${context} reported unexpected version (packageVersion=${String(packageVersion)}, effectiveVersion=${String(effectiveVersion)}, expected=${packageJson.version})`
-      );
-    }
+    throw new Error(
+      `${context} reported unexpected version (packageVersion=${String(packageVersion)}, effectiveVersion=${String(effectiveVersion)}, expected=${packageJson.version})`
+    );
   };
 
   const noInstallVersionCheck = runCommand({
@@ -93,7 +129,8 @@ export const verifyInstalledPumukiBinaryVersion = (
     noInstallVersionCheck.exitCode === 0
     && !/Cannot find module|ERR_MODULE_NOT_FOUND|failed to resolve tsx runtime/.test(
       noInstallVersionCheck.combined
-    );
+    )
+    && hasInstalledStatusVersion(noInstallVersionCheck);
   if (noInstallPassed) {
     assertNoFatalOutput(noInstallVersionCheck, 'pumuki status --json smoke');
     assertInstalledStatusVersion(noInstallVersionCheck, 'pumuki status --json smoke');