savepoint 1.0.3 → 1.0.4

package/.github/workflows/ci.yml

@@ -0,0 +1,20 @@
+name: CI
+
+on:
+  push:
+    branches: [master]
+  pull_request:
+    branches: [master]
+
+jobs:
+  ci:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-go@v5
+        with:
+          go-version: '1.26'
+          check-latest: true
+
+      - run: make ci

package/.savepoint/Design.md

@@ -1,7 +1,7 @@
 ---
 type: project-design
 status: active
-last_audited: v1.1/E14-structural-improvements
+last_audited: v1.1/E15-hardening
 ---
 
 # Savepoint — System Architecture
@@ -27,6 +27,7 @@ last_audited: v1.1/E14-structural-improvements
 - **Doctor command** (`savepoint doctor`, `savepoint doctor --epic E##`) runs read-only integrity diagnostics for config, router state, release/epic/task structure, frontmatter validity, acceptance criteria presence, dependencies, duplicate task IDs, stale audit files, orphaned task IDs, and configured quality gates. It prints a human-readable report with repair suggestions and exits 0 when clean, 1 when problems are diagnosed, and 2 for internal or invocation failures.
 - **Audit remediation baseline** (v1.1 E13) centralizes frontmatter/body splitting and line-ending normalization in `internal/data`, uses typed sentinel errors for doctor repair suggestions, applies a configurable `quality_gates.gate_timeout`, removes tracked build artifacts from source control, adds `.golangci.yml`, and moves board filesystem reads/writes behind Bubble Tea command messages while preserving direct file I/O inside command helpers.
 - **Structural improvement baseline** (v1.1 E14) groups board `Model` fields into focused embedded state structs, defines consumer-side board/doctor data-access interfaces, routes doctor orphan discovery through `Discover.ListRootDirs`, renders audit-tab hidden sections via exact heading matches, improves quality-gate shell tokenization for quoted and escaped arguments, removes the separate `TaskStatus` enum in favor of `ColumnType`, and adds `internal/testutil` for shared Go test fixtures.
+- **Hardening baseline** (v1.1 E15) adds board render/layout benchmarks, data frontmatter fuzz targets, debug logging via CLI `--debug` or `SAVEPOINT_DEBUG`, abbreviation-aware task checklist sentence splitting, root test package isolation, documented audit-tab hidden-section allowlisting, repo-local CI, `make ci`, distribution SHA256 checksums, and Windows amd64/arm64 build outputs.
 - **Agent audit workflow** is skill-driven, not a CLI pipeline. At `audit-pending`, a fresh audit agent writes one epic-local `E##-Audit.md`; the user reviews its Audit tab, then asks an agent to apply the admin proposal blocks, update the visible audit findings to reflect the applied outcome, and close the epic.
 
 ## 2. Directory layout
@@ -178,8 +179,8 @@ All failure modes are diagnosed by `savepoint doctor`. Doctor diagnoses and prop
 - **License:** MIT.
 - **Runtime:** Go CLI binary. Source builds with `go build`; tests run with `go test ./...`.
 - **Local build:** `make build` delegates to `internal/buildtool`, builds `savepoint` or `savepoint.exe`, and injects `main.version` from `VERSION` or the latest git tag.
-- **Cross-platform builds:** `make build-all` cross-compiles linux-amd64, linux-arm64, darwin-amd64, and darwin-arm64 raw binaries into `dist/{platform}-{arch}/savepoint`.
-- **Artifacts:** `make dist` creates versioned `.tar.gz` archives in `dist/` for the Linux and Darwin targets using Go archive APIs, not shell `tar`.
+- **Cross-platform builds:** `make build-all` cross-compiles linux-amd64, linux-arm64, darwin-amd64, darwin-arm64, windows-amd64, and windows-arm64 raw binaries into `dist/{platform}-{arch}/savepoint` or `savepoint.exe` for Windows. `make ci` runs the repo-local verification sequence used by CI.
+- **Artifacts:** `make dist` creates versioned `.tar.gz` archives in `dist/` for Linux, Darwin, and Windows targets using Go archive APIs, not shell `tar`, and writes SHA256 hashes to `dist/checksums.txt`.
 - **Smoke validation:** `make smoke-test` builds the local binary and runs `--version` as a headless exit-0 check.
 - **No telemetry.** Ever.
 

package/.savepoint/releases/v1.1/epics/E15-hardening/E15-Audit.md

@@ -0,0 +1,272 @@
+---
+type: audit-findings
+audited: 2026-05-06
+---
+# Audit Findings: E15 Phase 3 - Hardening
+
+## Main Findings
+
+Applied the E15 audit proposals and closed the epic as audited.
+
+- Fixed the Windows archive packaging issue: Windows tarballs now preserve `savepoint.exe` as the archive member name instead of extracting as `savepoint`.
+- Added a regression test covering the Windows archive member name.
+- Reconciled E15 documentation drift in `Design.md`, `AGENTS.md`, and `E15-Detail.md`.
+- Marked `E15-Detail.md` as `status: audited`.
+- Updated `Design.md` `last_audited` to `v1.1/E15-hardening`.
+- Advanced router state to `epic-design` with no active epic because there are no later unarchived epics in v1.1.
+
+Verification after applying proposals:
+
+- `go test ./internal/buildtool`
+- `make build`
+- `make test`
+- `make ci`
+
+No remaining audit blockers are known. The `## Proposed Changes` section remains below as the apply trace.
+
+## Code Style Review
+
+- [x] One job per file - E15 changes stayed within board rendering/debug, data parsing/fuzzing, buildtool packaging, CI, and task metadata.
+- [x] One job per function - new helpers such as `executableName`, `writeChecksums`, `stripDebugFlag`, `debugf`, and abbreviation checks are narrowly scoped.
+- [x] Test branches - Windows build output and Windows archive member naming are now covered.
+- [x] Types document intent - existing Go types and small helper APIs remain explicit enough for this scope.
+- [x] Build only what is needed - no speculative runtime features were added beyond E15 scope.
+- [x] Handle errors at boundaries - buildtool, filesystem, checksum, fuzz, and parser errors are propagated with context.
+- [x] One source of truth - target lists and executable naming are centralized in buildtool; the proposed archive fix reuses that source.
+- [x] Comments explain why - new comments document abbreviation suppression and audit-tab hidden sections rather than restating obvious code.
+- [x] Content lives in data - workflow and architecture copy remain in markdown; no new product copy was embedded in logic.
+- [x] Small diffs - most changes are localized, test-backed additions.
+
+## Proposed Changes
+
+### Target File
+internal/buildtool/main.go
+
+### Replace
+```go
+		if err := writeTarGz(archive, source, "savepoint"); err != nil {
+```
+
+### With
+```go
+		if err := writeTarGz(archive, source, executableName(target.os)); err != nil {
+```
+
+### Target File
+internal/buildtool/main_test.go
+
+### Replace
+```go
+import (
+	"crypto/sha256"
+	"encoding/hex"
+	"os"
+	"path/filepath"
+	"runtime"
+	"strings"
+	"testing"
+)
+```
+
+### With
+```go
+import (
+	"archive/tar"
+	"compress/gzip"
+	"crypto/sha256"
+	"encoding/hex"
+	"io"
+	"os"
+	"path/filepath"
+	"runtime"
+	"strings"
+	"testing"
+)
+```
+
+### Target File
+internal/buildtool/main_test.go
+
+### Replace
+```go
+func TestExecutableName(t *testing.T) {
+	if got := executableName("windows"); got != "savepoint.exe" {
+		t.Errorf("executableName(windows) = %q, want savepoint.exe", got)
+	}
+	if got := executableName("linux"); got != "savepoint" {
+		t.Errorf("executableName(linux) = %q, want savepoint", got)
+	}
+	if got := executableName("darwin"); got != "savepoint" {
+		t.Errorf("executableName(darwin) = %q, want savepoint", got)
+	}
+}
+```
+
+### With
+```go
+func TestExecutableName(t *testing.T) {
+	if got := executableName("windows"); got != "savepoint.exe" {
+		t.Errorf("executableName(windows) = %q, want savepoint.exe", got)
+	}
+	if got := executableName("linux"); got != "savepoint" {
+		t.Errorf("executableName(linux) = %q, want savepoint", got)
+	}
+	if got := executableName("darwin"); got != "savepoint" {
+		t.Errorf("executableName(darwin) = %q, want savepoint", got)
+	}
+}
+
+func TestWriteTarGzPreservesWindowsExecutableName(t *testing.T) {
+	dir := t.TempDir()
+	source := filepath.Join(dir, "savepoint.exe")
+	if err := os.WriteFile(source, []byte("binary"), 0o755); err != nil {
+		t.Fatal(err)
+	}
+
+	archive := filepath.Join(dir, "savepoint-windows-amd64.tar.gz")
+	if err := writeTarGz(archive, source, executableName("windows")); err != nil {
+		t.Fatalf("writeTarGz: %v", err)
+	}
+
+	f, err := os.Open(archive)
+	if err != nil {
+		t.Fatal(err)
+	}
+	defer f.Close()
+
+	gz, err := gzip.NewReader(f)
+	if err != nil {
+		t.Fatal(err)
+	}
+	defer gz.Close()
+
+	tr := tar.NewReader(gz)
+	header, err := tr.Next()
+	if err != nil {
+		t.Fatal(err)
+	}
+	if header.Name != "savepoint.exe" {
+		t.Fatalf("archive member = %q, want savepoint.exe", header.Name)
+	}
+
+	content, err := io.ReadAll(tr)
+	if err != nil {
+		t.Fatal(err)
+	}
+	if string(content) != "binary" {
+		t.Fatalf("archive content = %q, want binary", content)
+	}
+}
+```
+
+### Target File
+.savepoint/Design.md
+
+### Replace
+```md
+- **Structural improvement baseline** (v1.1 E14) groups board `Model` fields into focused embedded state structs, defines consumer-side board/doctor data-access interfaces, routes doctor orphan discovery through `Discover.ListRootDirs`, renders audit-tab hidden sections via exact heading matches, improves quality-gate shell tokenization for quoted and escaped arguments, removes the separate `TaskStatus` enum in favor of `ColumnType`, and adds `internal/testutil` for shared Go test fixtures.
+- **Agent audit workflow** is skill-driven, not a CLI pipeline. At `audit-pending`, a fresh audit agent writes one epic-local `E##-Audit.md`; the user reviews its Audit tab, then asks an agent to apply the admin proposal blocks, update the visible audit findings to reflect the applied outcome, and close the epic.
+```
+
+### With
+```md
+- **Structural improvement baseline** (v1.1 E14) groups board `Model` fields into focused embedded state structs, defines consumer-side board/doctor data-access interfaces, routes doctor orphan discovery through `Discover.ListRootDirs`, renders audit-tab hidden sections via exact heading matches, improves quality-gate shell tokenization for quoted and escaped arguments, removes the separate `TaskStatus` enum in favor of `ColumnType`, and adds `internal/testutil` for shared Go test fixtures.
+- **Hardening baseline** (v1.1 E15) adds board render/layout benchmarks, data frontmatter fuzz targets, debug logging via CLI `--debug` or `SAVEPOINT_DEBUG`, abbreviation-aware task checklist sentence splitting, root test package isolation, documented audit-tab hidden-section allowlisting, repo-local CI, `make ci`, distribution SHA256 checksums, and Windows amd64/arm64 build outputs.
+- **Agent audit workflow** is skill-driven, not a CLI pipeline. At `audit-pending`, a fresh audit agent writes one epic-local `E##-Audit.md`; the user reviews its Audit tab, then asks an agent to apply the admin proposal blocks, update the visible audit findings to reflect the applied outcome, and close the epic.
+```
+
+### Target File
+.savepoint/Design.md
+
+### Replace
+```md
+- **Cross-platform builds:** `make build-all` cross-compiles linux-amd64, linux-arm64, darwin-amd64, and darwin-arm64 raw binaries into `dist/{platform}-{arch}/savepoint`.
+- **Artifacts:** `make dist` creates versioned `.tar.gz` archives in `dist/` for the Linux and Darwin targets using Go archive APIs, not shell `tar`.
+```
+
+### With
+```md
+- **Cross-platform builds:** `make build-all` cross-compiles linux-amd64, linux-arm64, darwin-amd64, darwin-arm64, windows-amd64, and windows-arm64 raw binaries into `dist/{platform}-{arch}/savepoint` or `savepoint.exe` for Windows. `make ci` runs the repo-local verification sequence used by CI.
+- **Artifacts:** `make dist` creates versioned `.tar.gz` archives in `dist/` for Linux, Darwin, and Windows targets using Go archive APIs, not shell `tar`, and writes SHA256 hashes to `dist/checksums.txt`.
+```
+
+### Target File
+AGENTS.md
+
+### Replace
+```md
+| `internal/board/` | TUI board, overlays, epic sidebar, Next Activity line, router priority key, detail checklist rendering, status glyphs, forced color profile, async update I/O commands, shared board utilities |
+```
+
+### With
+```md
+| `internal/board/` | TUI board, overlays, epic sidebar, Next Activity line, router priority key, detail checklist rendering, status glyphs, forced color profile, debug logging hooks, async update I/O commands, shared board utilities |
+```
+
+### Target File
+AGENTS.md
+
+### Replace
+```md
+| `internal/buildtool/` | Makefile helper, cross-compile, archives |
+```
+
+### With
+```md
+| `internal/buildtool/` | Makefile helper, cross-compile including Windows targets, archives, distribution checksums |
+```
+
+### Target File
+.savepoint/releases/v1.1/epics/E15-hardening/E15-Detail.md
+
+### Replace
+```md
+## Components
+
+| Module | Purpose |
+|--------|---------|
+| `internal/board/view_test.go` | Add render benchmarks |
+| `internal/data/parser_test.go` | Add fuzz targets |
+| `cmd/main.go` | Add --debug / SAVEPOINT_DEBUG |
+| `internal/buildtool/main.go` | Add checksums, Windows targets |
+| `internal/board/detail.go` | Fix abbreviation handling |
+| `internal/board/epic_panel.go` | Extract allowlist constant |
+| `agent_skills_test.go` | Move to cmd_test package |
+| `Makefile` | Add `ci` target for local verification |
+| `.github/workflows/ci.yml` | Add repo CI workflow |
+
+## Boundaries
+```
+
+### With
+```md
+## Components
+
+| Module | Purpose |
+|--------|---------|
+| `internal/board/view_test.go` | Add render and layout benchmarks |
+| `internal/board/card_test.go` | Add card render benchmarks |
+| `internal/board/column_test.go` | Add column render benchmarks |
+| `internal/data/fuzz_test.go` | Add frontmatter and split-body fuzz targets |
+| `main.go` | Add global --debug parsing and SAVEPOINT_DEBUG activation |
+| `internal/board/debug.go` | Add board debug logging helper |
+| `internal/board/board.go` | Log board initialization under debug mode |
+| `internal/board/watch.go` | Log watcher and reload activity under debug mode |
+| `internal/board/update.go` | Log update dispatch and preserve focused-card visibility |
+| `internal/buildtool/main.go` | Add checksums and Windows targets |
+| `internal/board/detail.go` | Fix abbreviation handling |
+| `internal/board/epic_panel.go` | Document audit hidden-section allowlist |
+| `agent_skills_test.go` | Move to external root test package |
+| `Makefile` | Add `ci` target for local verification |
+| `.github/workflows/ci.yml` | Add repo CI workflow |
+
+## Implemented As
+
+- Debug activation is in root `main.go` because global flags are parsed before dispatching into `cmd/`.
+- Fuzz targets live in `internal/data/fuzz_test.go` rather than `internal/data/parser_test.go`.
+- Fuzzing found and fixed `SplitFrontmatterBody` delimiter-offset handling and CR line-ending normalization.
+- Root `agent_skills_test.go` remains at the repository root but now uses external package `main_test`, which removes the root package coupling without moving fixture-relative paths.
+- CI was included as repo-local guardrail scope for E15 via `T008-ci-and-release-automation`.
+
+## Boundaries
+```

package/.savepoint/releases/v1.1/epics/E15-hardening/E15-Detail.md

@@ -1,6 +1,6 @@
 ---
 type: epic-design
-status: planned
+status: audited
 ---
 
 # E15: Phase 3 — Hardening
@@ -18,18 +18,35 @@ Address the remaining Phase 3 findings from the consolidated codebase audit (Opu
 - Windows build targets in buildtool
 - Abbreviation-aware checklist sentence splitting
 - Root-level test relocation and audit allowlist consolidation
+- Repo-local CI workflow and `ci` Makefile target for build/test verification
 
 ## Components
 
 | Module | Purpose |
 |--------|---------|
-| `internal/board/view_test.go` | Add render benchmarks |
-| `internal/data/parser_test.go` | Add fuzz targets |
-| `cmd/main.go` | Add --debug / SAVEPOINT_DEBUG |
-| `internal/buildtool/main.go` | Add checksums, Windows targets |
+| `internal/board/view_test.go` | Add render and layout benchmarks |
+| `internal/board/card_test.go` | Add card render benchmarks |
+| `internal/board/column_test.go` | Add column render benchmarks |
+| `internal/data/fuzz_test.go` | Add frontmatter and split-body fuzz targets |
+| `main.go` | Add global --debug parsing and SAVEPOINT_DEBUG activation |
+| `internal/board/debug.go` | Add board debug logging helper |
+| `internal/board/board.go` | Log board initialization under debug mode |
+| `internal/board/watch.go` | Log watcher and reload activity under debug mode |
+| `internal/board/update.go` | Log update dispatch and preserve focused-card visibility |
+| `internal/buildtool/main.go` | Add checksums and Windows targets |
 | `internal/board/detail.go` | Fix abbreviation handling |
-| `internal/board/epic_panel.go` | Extract allowlist constant |
-| `agent_skills_test.go` | Move to cmd_test package |
+| `internal/board/epic_panel.go` | Document audit hidden-section allowlist |
+| `agent_skills_test.go` | Move to external root test package |
+| `Makefile` | Add `ci` target for local verification |
+| `.github/workflows/ci.yml` | Add repo CI workflow |
+
+## Implemented As
+
+- Debug activation is in root `main.go` because global flags are parsed before dispatching into `cmd/`.
+- Fuzz targets live in `internal/data/fuzz_test.go` rather than `internal/data/parser_test.go`.
+- Fuzzing found and fixed `SplitFrontmatterBody` delimiter-offset handling and CR line-ending normalization.
+- Root `agent_skills_test.go` remains at the repository root but now uses external package `main_test`, which removes the root package coupling without moving fixture-relative paths.
+- CI was included as repo-local guardrail scope for E15 via `T008-ci-and-release-automation`.
 
 ## Boundaries
 
@@ -38,6 +55,6 @@ Address the remaining Phase 3 findings from the consolidated codebase audit (Opu
 - Medium/Low hardening items (M10, L7, L10, L11, L12)
 
 **Out of scope:**
-- CI/CD configuration — separate concern
+- External deployment hosting beyond repo-local CI/release automation
 - New UI features or commands
 - Structural improvements (separate epic E14)

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T001-benchmarks.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T001-benchmarks
-status: planned
+status: done
 objective: Add benchmark tests for board render functions
 depends_on: []
 ---
@@ -16,16 +16,16 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] Benchmark added for RenderCard with varied content widths
-- [ ] Benchmark added for renderColumn with multiple tasks
-- [ ] Benchmark added for layout calculations at different widths
-- [ ] Benchmarks are repeatable with consistent results
-- [ ] Benchmarks don't modify package state
-- [ ] `go test -bench=. ./internal/board/` runs without errors
+- [x] Benchmark added for RenderCard with varied content widths
+- [x] Benchmark added for renderColumn with multiple tasks
+- [x] Benchmark added for layout calculations at different widths
+- [x] Benchmarks are repeatable with consistent results
+- [x] Benchmarks don't modify package state
+- [x] `go test -bench=. ./internal/board/` runs without errors
 
 ## Implementation Plan
 
-- [ ] Add benchmark functions in view_test.go, card_test.go, column_test.go
-- [ ] Create test data with representative task mixtures
-- [ ] Run benchmarks and document baseline
-- [ ] Run `make build && make test`
+- [x] Add benchmark functions in view_test.go, card_test.go, column_test.go
+- [x] Create test data with representative task mixtures
+- [x] Run benchmarks and document baseline
+- [x] Run `make build && make test`

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T002-fuzz-targets.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T002-fuzz-targets
-status: planned
+status: done
 objective: Add fuzz targets for YAML frontmatter parsing round-trip
 depends_on: []
 ---
@@ -15,14 +15,20 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] Fuzz target added for extractFrontmatter round-trip
-- [ ] Fuzz target added for WriteTaskStatus round-trip (write then re-parse)
-- [ ] Fuzz targets exercise edge cases (empty content, malformed YAML, unicode)
-- [ ] `go test -fuzz=. ./internal/data/` runs without errors
+- [x] Fuzz target added for extractFrontmatter round-trip
+- [x] Fuzz target added for WriteTaskStatus round-trip (write then re-parse)
+- [x] Fuzz targets exercise edge cases (empty content, malformed YAML, unicode)
+- [x] `go test -fuzz=. ./internal/data/` runs without errors
 
 ## Implementation Plan
 
-- [ ] Create fuzz_test.go in internal/data with fuzz targets
-- [ ] Define corpus seed inputs from known edge cases
-- [ ] Run fuzz targets for short duration to verify stability
-- [ ] Run `make build && make test`
+- [x] Create fuzz_test.go in internal/data with fuzz targets
+- [x] Define corpus seed inputs from known edge cases
+- [x] Run fuzz targets for short duration to verify stability
+- [x] Run `make build && make test`
+
+## Drift Notes
+
+- Fuzzer found bug in `SplitFrontmatterBody`: used `len(TrimSpace(raw))` for bodyStart, causing off-by-N when frontmatter has leading/trailing whitespace. Fixed to compute bodyStart from actual `\n---` offset.
+- Fuzzer found `normalizeLineEndings` not idempotent with `\r\r\n` sequences. Fixed to also replace lone `\r` with `\n` (handles legacy Mac CR line endings).
+- No new files/modules beyond `internal/data/fuzz_test.go` (in-scope per E15-Detail.md).

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T003-debug-flag.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T003-debug-flag
-status: planned
+status: done
 objective: Add --debug flag and SAVEPOINT_DEBUG env var for structured debug logging
 depends_on: []
 ---
@@ -15,16 +15,16 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] --debug flag accepted at CLI level
-- [ ] SAVEPOINT_DEBUG env var recognized
-- [ ] Debug output includes board init, file watcher events, and command dispatch
-- [ ] Debug output is off by default (no performance impact)
-- [ ] `go test ./...` passes with no regressions
+- [x] --debug flag accepted at CLI level
+- [x] SAVEPOINT_DEBUG env var recognized
+- [x] Debug output includes board init, file watcher events, and command dispatch
+- [x] Debug output is off by default (no performance impact)
+- [x] `go test ./...` passes with no regressions
 
 ## Implementation Plan
 
-- [ ] Define debug logging helper in a shared location
-- [ ] Add --debug flag parsing in main.go
-- [ ] Instrument key points in board init, file watcher, and update dispatch
-- [ ] Add tests for debug flag behavior
-- [ ] Run `make build && make test`
+- [x] Define debug logging helper in a shared location
+- [x] Add --debug flag parsing in main.go
+- [x] Instrument key points in board init, file watcher, and update dispatch
+- [x] Add tests for debug flag behavior
+- [x] Run `make build && make test`

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T004-dist-checksums.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T004-dist-checksums
-status: planned
+status: done
 objective: Generate checksums.txt during make dist using Go crypto APIs
 depends_on: []
 ---
@@ -14,14 +14,14 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] dist() generates checksums.txt file with SHA256 hashes
-- [ ] checksums.txt is included in the dist directory
-- [ ] Existing archive creation behavior preserved
-- [ ] `go test ./...` passes
+- [x] dist() generates checksums.txt file with SHA256 hashes
+- [x] checksums.txt is included in the dist directory
+- [x] Existing archive creation behavior preserved
+- [x] `go test ./...` passes
 
 ## Implementation Plan
 
-- [ ] Add SHA256 checksum computation in dist() using crypto/sha256
-- [ ] Write checksums.txt to dist directory
-- [ ] Add tests for checksum generation
-- [ ] Run `make build && make test`
+- [x] Add SHA256 checksum computation in dist() using crypto/sha256
+- [x] Write checksums.txt to dist directory
+- [x] Add tests for checksum generation
+- [x] Run `make build && make test`

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T005-windows-targets.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T005-windows-targets
-status: planned
+status: done
 objective: Add Windows amd64 and arm64 build targets to buildtool
 depends_on: []
 ---
@@ -13,16 +13,16 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] Windows amd64 target added
-- [ ] Windows arm64 target added
-- [ ] .exe suffix handled for Windows binaries
-- [ ] Existing Linux and Darwin targets preserved
-- [ ] `go test ./...` passes
+- [x] Windows amd64 target added
+- [x] Windows arm64 target added
+- [x] .exe suffix handled for Windows binaries
+- [x] Existing Linux and Darwin targets preserved
+- [x] `go test ./...` passes
 
 ## Implementation Plan
 
-- [ ] Add windows-amd64 and windows-arm64 to targets list
-- [ ] Handle .exe suffix in build output path
-- [ ] Update localExecutable to detect Windows
-- [ ] Update tests for new targets
-- [ ] Run `make build && make test`
+- [x] Add windows-amd64 and windows-arm64 to targets list
+- [x] Handle .exe suffix in build output path via `executableName(goos)`
+- [x] Update localExecutable to detect Windows (already done in prior task)
+- [x] Update tests for new targets
+- [x] Run `make build && make test`

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T006-abbreviation-splitting.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T006-abbreviation-splitting
-status: planned
+status: done
 objective: Fix splitChecklistSentences to skip periods preceded by known abbreviations
 depends_on: []
 ---
@@ -13,14 +13,14 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] Known abbreviations (e.g., "e.g.", "i.e.") do not trigger sentence breaks
-- [ ] Existing sentence splitting behavior preserved for non-abbreviation periods
-- [ ] Abbreviation list is configurable/extensible
-- [ ] `go test ./...` passes with no regressions
+- [x] Known abbreviations (e.g., "e.g.", "i.e.") do not trigger sentence breaks
+- [x] Existing sentence splitting behavior preserved for non-abbreviation periods
+- [x] Abbreviation list is configurable/extensible
+- [x] `go test ./...` passes with no regressions
 
 ## Implementation Plan
 
-- [ ] Define known abbreviation set
-- [ ] Add abbreviation check before period-based sentence split
-- [ ] Add test cases for abbreviations in sentences
-- [ ] Run `make build && make test`
+- [x] Define known abbreviation set
+- [x] Add abbreviation check before period-based sentence split
+- [x] Add test cases for abbreviations in sentences
+- [x] Run `make build && make test`

package/.savepoint/releases/v1.1/epics/E15-hardening/tasks/T007-root-test-allowlist.md

@@ -1,6 +1,6 @@
 ---
 id: E15-hardening/T007-root-test-allowlist
-status: planned
+status: done
 objective: Move agent_skills_test.go to a test package and extract audit allowlist to a named constant
 depends_on: []
 ---
@@ -14,15 +14,20 @@ depends_on: []
 
 ## Acceptance Criteria
 
-- [ ] agent_skills_test.go moved to cmd_test package (or appropriate location)
-- [ ] allowedSections extracted to a named constant with documentation
-- [ ] All existing tests still pass after refactoring
-- [ ] `go test ./...` passes with no regressions
+- [x] agent_skills_test.go moved to cmd_test package (or appropriate location)
+- [x] allowedSections extracted to a named constant with documentation
+- [x] All existing tests still pass after refactoring
+- [x] `go test ./...` passes with no regressions
 
 ## Implementation Plan
 
-- [ ] Move agent_skills_test.go to an appropriate internal test package
-- [ ] Update imports and paths in moved test
-- [ ] Extract allowedSections map to a named constant
-- [ ] Update any references in epic_panel.go
-- [ ] Run `make build && make test`
+- [x] Move agent_skills_test.go to an appropriate internal test package
+- [x] Update imports and paths in moved test
+- [x] Extract allowedSections map to a named constant
+- [x] Update any references in epic_panel.go
+- [x] Run `make build && make test`
+
+## Notes
+
+- `agent_skills_test.go` changed from `package main` → `package main_test` (external test package at root). Paths remain valid since Go test working dir is the package dir.
+- `epicAuditHiddenSectionHeadings` already extracted as package-level var; added doc comment explaining suppression rationale.