soloforge 1.2.19 → 1.2.20

package/dist/engine/delivery_readiness.js

@@ -0,0 +1,176 @@
+/**
+ * 交付就绪报告 — 问题十二 (Delivery Readiness Gate)。
+ *
+ * 核心规则:
+ * - DeliveryReadinessReport 只判断 readiness，不隐式执行 commit/push/PR/deploy
+ * - delivery_allowed=true 不等于 delivery executed
+ * - 未验证不得 delivered
+ * - blocking human confirmation 存在时 delivery_allowed 必须为 false
+ */
+/**
+ * 评估交付就绪状态。
+ * 只做判断，不执行任何交付动作。
+ */
+export function evaluateDeliveryReadiness(taskId, verificationResult, guardFindings, scopeCheckPassed, leaseCheckPassed, privacyCheckPassed, artifactAcceptancePassed) {
+    const blockingFindings = [];
+    const warnings = [];
+    // 1. 验证结果检查
+    if (!verificationResult) {
+        blockingFindings.push({
+            rule: "verification_required",
+            message_zh: "无验证结果，不得交付",
+        });
+    }
+    else if (verificationResult.status !== "passed") {
+        blockingFindings.push({
+            rule: "verification_passed_required",
+            message_zh: `验证状态为 ${verificationResult.status}，不是 passed，不得交付`,
+        });
+    }
+    else if (verificationResult.provenance !== "record_verification_execution") {
+        blockingFindings.push({
+            rule: "verification_provenance_required",
+            message_zh: `验证结果 provenance 为 "${verificationResult.provenance}"，必须通过 recordVerificationExecution 录入，不得交付`,
+        });
+    }
+    else if (!verificationResult.evidence_ids || verificationResult.evidence_ids.length === 0) {
+        blockingFindings.push({
+            rule: "verification_evidence_required",
+            message_zh: "验证结果缺少 evidence_ids，不得交付",
+        });
+    }
+    else if (!verificationResult.total_commands || verificationResult.total_commands === 0) {
+        blockingFindings.push({
+            rule: "verification_commands_required",
+            message_zh: "验证结果 total_commands 为 0，不得交付",
+        });
+    }
+    else if (verificationResult.missing_commands && verificationResult.missing_commands.length > 0) {
+        blockingFindings.push({
+            rule: "verification_plan_coverage_required",
+            message_zh: `plan 命令未全覆盖，缺少: ${verificationResult.missing_commands.join(", ")}，不得交付`,
+        });
+    }
+    else if (verificationResult.evidence_integrity_passed === false) {
+        blockingFindings.push({
+            rule: "verification_evidence_integrity_required",
+            message_zh: "证据格式校验未全部通过，不得交付",
+        });
+    }
+    // 2. Scope 检查
+    if (!scopeCheckPassed) {
+        blockingFindings.push({
+            rule: "scope_check",
+            message_zh: "范围检查未通过",
+        });
+    }
+    // 3. Lease 检查
+    if (!leaseCheckPassed) {
+        blockingFindings.push({
+            rule: "lease_check",
+            message_zh: "存在活跃 lease 冲突，不得交付",
+        });
+    }
+    // 4. 隐私检查
+    if (!privacyCheckPassed) {
+        blockingFindings.push({
+            rule: "privacy_check",
+            message_zh: "隐私检查未通过，存在未脱敏内容",
+        });
+    }
+    // 5. Artifact 检查
+    if (!artifactAcceptancePassed) {
+        blockingFindings.push({
+            rule: "artifact_acceptance",
+            message_zh: "产物验收未通过",
+        });
+    }
+    // 6. Guard 阻断检查
+    const blockedGuards = guardFindings.filter((f) => f.blocked);
+    for (const g of blockedGuards) {
+        blockingFindings.push({
+            rule: g.guard_id,
+            message_zh: g.reason_zh,
+        });
+    }
+    // 7. Guard warning
+    const warningGuards = guardFindings.filter((f) => !f.blocked && f.severity === "warning");
+    for (const g of warningGuards) {
+        warnings.push({
+            rule: g.guard_id,
+            message_zh: g.reason_zh,
+        });
+    }
+    // 判断就绪状态
+    let status;
+    const deliveryAllowed = blockingFindings.length === 0;
+    if (blockedGuards.some((g) => g.action === "require_human")) {
+        status = "manual_required";
+    }
+    else if (!deliveryAllowed) {
+        status = "blocked";
+    }
+    else if (warnings.length > 0) {
+        status = "ready";
+    }
+    else {
+        status = "ready";
+    }
+    return {
+        report_id: `dr-${taskId}-${Date.now()}`,
+        task_id: taskId,
+        delivery_readiness_status: status,
+        delivery_allowed: deliveryAllowed,
+        verification_result_id: verificationResult?.result_id,
+        scope_check_passed: scopeCheckPassed,
+        lease_check_passed: leaseCheckPassed,
+        privacy_check_passed: privacyCheckPassed,
+        artifact_acceptance_passed: artifactAcceptancePassed,
+        blocking_findings: blockingFindings,
+        warnings,
+        evaluated_at: new Date().toISOString(),
+        delivery_executed: false, // 就绪报告不触发执行
+    };
+}
+/**
+ * 创建交付执行记录。
+ * 必须由 sf_deliver 或手动触发，不能由 readiness 自动触发。
+ */
+export function createDeliveryExecutionRecord(taskId, trigger, details) {
+    return {
+        execution_id: `de-${taskId}-${Date.now()}`,
+        task_id: taskId,
+        trigger,
+        commit_sha: details.commit_sha,
+        pr_url: details.pr_url,
+        changelog_entry: details.changelog_entry,
+        executed_at: new Date().toISOString(),
+        rolled_back: false,
+    };
+}
+/**
+ * 验证: delivery_readiness 不得触发 delivery_execution。
+ */
+export function validateDeliverySeparation(report, executionRecord) {
+    const errors = [];
+    if (report.delivery_allowed && report.delivery_executed) {
+        errors.push({
+            error: "delivery_readiness 报告不应触发 delivery_execution",
+            severity: "hard_fail",
+        });
+    }
+    if (executionRecord && !report.delivery_allowed) {
+        errors.push({
+            error: "交付已执行但 delivery_readiness 未允许",
+            severity: "hard_fail",
+        });
+    }
+    if (executionRecord && executionRecord.trigger === undefined) {
+        errors.push({
+            error: "交付执行记录缺少显式触发来源",
+            severity: "hard_fail",
+        });
+    }
+    return errors;
+}
+//# sourceMappingURL=delivery_readiness.js.map

package/dist/engine/delivery_readiness.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery_readiness.js","sourceRoot":"","sources":["../../src/engine/delivery_readiness.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAmCH;;;GAGG;AACH,MAAM,UAAU,yBAAyB,CACvC,MAAc,EACd,kBAAkD,EAClD,aAA6B,EAC7B,gBAAyB,EACzB,gBAAyB,EACzB,kBAA2B,EAC3B,wBAAiC;IAEjC,MAAM,gBAAgB,GAAgD,EAAE,CAAC;IACzE,MAAM,QAAQ,GAAgD,EAAE,CAAC;IAEjE,YAAY;IACZ,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,uBAAuB;YAC7B,UAAU,EAAE,YAAY;SACzB,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,kBAAkB,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QAClD,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,8BAA8B;YACpC,UAAU,EAAE,SAAS,kBAAkB,CAAC,MAAM,iBAAiB;SAChE,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,kBAAkB,CAAC,UAAU,KAAK,+BAA+B,EAAE,CAAC;QAC7E,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,kCAAkC;YACxC,UAAU,EAAE,sBAAsB,kBAAkB,CAAC,UAAU,4CAA4C;SAC5G,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,CAAC,kBAAkB,CAAC,YAAY,IAAI,kBAAkB,CAAC,YAAY,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC5F,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,gCAAgC;YACtC,UAAU,EAAE,0BAA0B;SACvC,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,CAAC,kBAAkB,CAAC,cAAc,IAAI,kBAAkB,CAAC,cAAc,KAAK,CAAC,EAAE,CAAC;QACzF,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,gCAAgC;YACtC,UAAU,EAAE,8BAA8B;SAC3C,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,kBAAkB,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACjG,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,qCAAqC;YAC3C,UAAU,EAAE,mBAAmB,kBAAkB,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO;SACrF,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,kBAAkB,CAAC,yBAAyB,KAAK,KAAK,EAAE,CAAC;QAClE,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,0CAA0C;YAChD,UAAU,EAAE,kBAAkB;SAC/B,CAAC,CAAC;IACL,CAAC;IAED,cAAc;IACd,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACtB,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,aAAa;YACnB,UAAU,EAAE,SAAS;SACtB,CAAC,CAAC;IACL,CAAC;IAED,cAAc;IACd,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACtB,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,aAAa;YACnB,UAAU,EAAE,oBAAoB;SACjC,CAAC,CAAC;IACL,CAAC;IAED,UAAU;IACV,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,eAAe;YACrB,UAAU,EAAE,iBAAiB;SAC9B,CAAC,CAAC;IACL,CAAC;IAED,iBAAiB;IACjB,IAAI,CAAC,wBAAwB,EAAE,CAAC;QAC9B,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,qBAAqB;YAC3B,UAAU,EAAE,SAAS;SACtB,CAAC,CAAC;IACL,CAAC;IAED,gBAAgB;IAChB,MAAM,aAAa,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAC7D,KAAK,MAAM,CAAC,IAAI,aAAa,EAAE,CAAC;QAC9B,gBAAgB,CAAC,IAAI,CAAC;YACpB,IAAI,EAAE,CAAC,CAAC,QAAQ;YAChB,UAAU,EAAE,CAAC,CAAC,SAAS;SACxB,CAAC,CAAC;IACL,CAAC;IAED,mBAAmB;IACnB,MAAM,aAAa,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC;IAC1F,KAAK,MAAM,CAAC,IAAI,aAAa,EAAE,CAAC;QAC9B,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,CAAC,CAAC,QAAQ;YAChB,UAAU,EAAE,CAAC,CAAC,SAAS;SACxB,CAAC,CAAC;IACL,CAAC;IAED,SAAS;IACT,IAAI,MAA+B,CAAC;IACpC,MAAM,eAAe,GAAG,gBAAgB,CAAC,MAAM,KAAK,CAAC,CAAC;IAEtD,IAAI,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,eAAe,CAAC,EAAE,CAAC;QAC5D,MAAM,GAAG,iBAAiB,CAAC;IAC7B,CAAC;SAAM,IAAI,CAAC,eAAe,EAAE,CAAC;QAC5B,MAAM,GAAG,SAAS,CAAC;IACrB,CAAC;SAAM,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,MAAM,GAAG,OAAO,CAAC;IACnB,CAAC;SAAM,CAAC;QACN,MAAM,GAAG,OAAO,CAAC;IACnB,CAAC;IAED,OAAO;QACL,SAAS,EAAE,MAAM,MAAM,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE;QACvC,OAAO,EAAE,MAAM;QACf,yBAAyB,EAAE,MAAM;QACjC,gBAAgB,EAAE,eAAe;QACjC,sBAAsB,EAAE,kBAAkB,EAAE,SAAS;QACrD,kBAAkB,EAAE,gBAAgB;QACpC,kBAAkB,EAAE,gBAAgB;QACpC,oBAAoB,EAAE,kBAAkB;QACxC,0BAA0B,EAAE,wBAAwB;QACpD,iBAAiB,EAAE,gBAAgB;QACnC,QAAQ;QACR,YAAY,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACtC,iBAAiB,EAAE,KAAK,EAAE,YAAY;KACvC,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,6BAA6B,CAC3C,MAAc,EACd,OAAgC,EAChC,OAA2E;IAE3E,OAAO;QACL,YAAY,EAAE,MAAM,MAAM,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE;QAC1C,OAAO,EAAE,MAAM;QACf,OAAO;QACP,UAAU,EAAE,OAAO,CAAC,UAAU;QAC9B,MAAM,EAAE,OAAO,CAAC,MAAM;QACtB,eAAe,EAAE,OAAO,CAAC,eAAe;QACxC,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACrC,WAAW,EAAE,KAAK;KACnB,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,0BAA0B,CACxC,MAA+B,EAC/B,eAAoD;IAEpD,MAAM,MAAM,GAAgE,EAAE,CAAC;IAE/E,IAAI,MAAM,CAAC,gBAAgB,IAAI,MAAM,CAAC,iBAAiB,EAAE,CAAC;QACxD,MAAM,CAAC,IAAI,CAAC;YACV,KAAK,EAAE,8CAA8C;YACrD,QAAQ,EAAE,WAAW;SACtB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,IAAI,CAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAChD,MAAM,CAAC,IAAI,CAAC;YACV,KAAK,EAAE,+BAA+B;YACtC,QAAQ,EAAE,WAAW;SACtB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,IAAI,eAAe,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;QAC7D,MAAM,CAAC,IAAI,CAAC;YACV,KAAK,EAAE,gBAAgB;YACvB,QAAQ,EAAE,WAAW;SACtB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/engine/deprecated_contract.d.ts

@@ -0,0 +1,21 @@
+/**
+ * 废弃契约注册表 — 问题二十 (Deprecated Contract)。
+ *
+ * 管理已废弃契约的生命周期，包括废弃原因、替代方案和迁移路径。
+ */
+/** 废弃契约条目 */
+export interface DeprecatedContractEntry {
+    /** 契约 ID */
+    contract_id: string;
+    /** 废弃原因 */
+    deprecation_reason: string;
+    /** 推荐替代契约 ID */
+    replacement_id: string | null;
+    /** 废弃时间戳 */
+    deprecated_at: string;
+}
+/**
+ * 列出所有废弃契约条目。
+ */
+export declare function listDeprecatedContracts(): DeprecatedContractEntry[];
+//# sourceMappingURL=deprecated_contract.d.ts.map

package/dist/engine/deprecated_contract.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"deprecated_contract.d.ts","sourceRoot":"","sources":["../../src/engine/deprecated_contract.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,aAAa;AACb,MAAM,WAAW,uBAAuB;IACtC,YAAY;IACZ,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW;IACX,kBAAkB,EAAE,MAAM,CAAC;IAC3B,gBAAgB;IAChB,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,YAAY;IACZ,aAAa,EAAE,MAAM,CAAC;CACvB;AAMD;;GAEG;AACH,wBAAgB,uBAAuB,IAAI,uBAAuB,EAAE,CAEnE"}

package/dist/engine/deprecated_contract.js

@@ -0,0 +1,14 @@
+/**
+ * 废弃契约注册表 — 问题二十 (Deprecated Contract)。
+ *
+ * 管理已废弃契约的生命周期，包括废弃原因、替代方案和迁移路径。
+ */
+// ── 注册表 ──
+const DEPRECATED_CONTRACTS = [];
+/**
+ * 列出所有废弃契约条目。
+ */
+export function listDeprecatedContracts() {
+    return DEPRECATED_CONTRACTS.map((e) => ({ ...e }));
+}
+//# sourceMappingURL=deprecated_contract.js.map

package/dist/engine/deprecated_contract.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deprecated_contract.js","sourceRoot":"","sources":["../../src/engine/deprecated_contract.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAgBH,YAAY;AAEZ,MAAM,oBAAoB,GAAuC,EAAE,CAAC;AAEpE;;GAEG;AACH,MAAM,UAAU,uBAAuB;IACrC,OAAO,oBAAoB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;AACrD,CAAC"}

package/dist/engine/diagnostic_registry.d.ts

@@ -0,0 +1,64 @@
+/**
+ * 诊断码注册表 — 问题三十六 (Diagnostic Code Contract)。
+ *
+ * 核心规则:
+ * - 诊断码格式 SF-{AREA}-{NNNN}，一旦发布不得复用
+ * - blocking/critical 事件没有诊断码不得输出
+ * - 每个 active code 必须有 title_zh、user_message_zh、recovery_hint_zh
+ * - deprecated/removed code 不得复用
+ */
+export type DiagnosticSeverity = "blocking" | "critical" | "warning" | "advisory" | "info";
+export type DiagnosticStatus = "active" | "deprecated" | "removed";
+export type DiagnosticArea = "STATE" | "GUARD" | "VERIFY" | "DELIVER" | "FAILURE" | "DEGRADE" | "WORKSPACE" | "OBSERVE" | "DIAG" | "TEST" | "LANG" | "CONTRACT" | "PRIVACY" | "CMD";
+export interface DiagnosticCodeEntry {
+    code: string;
+    area: DiagnosticArea;
+    severity: DiagnosticSeverity;
+    status: DiagnosticStatus;
+    title_zh: string;
+    user_message_zh: string;
+    recovery_hint_zh: string;
+    owner_component: string;
+    evidence_refs: string[];
+    replaced_by?: string;
+}
+export interface DiagnosticEvent {
+    code: string;
+    occurred_at: string;
+    context: Record<string, unknown>;
+    user_visible_message: string;
+    contract_id?: string;
+    task_id?: string;
+}
+/** 按 code 获取诊断码 */
+export declare function getDiagnosticByCode(code: string): DiagnosticCodeEntry | undefined;
+/** 列出所有诊断码 */
+export declare function listAllDiagnostics(): DiagnosticCodeEntry[];
+/** 按领域列出诊断码 */
+export declare function listDiagnosticsByArea(area: DiagnosticArea): DiagnosticCodeEntry[];
+/** 按 severity 列出诊断码 */
+export declare function listDiagnosticsBySeverity(severity: DiagnosticSeverity): DiagnosticCodeEntry[];
+/** 注册新诊断码（运行时） */
+export declare function registerDiagnostic(entry: DiagnosticCodeEntry): {
+    success: boolean;
+    error?: string;
+};
+/** 创建诊断事件 */
+export declare function createDiagnosticEvent(code: string, context?: Record<string, unknown>, contractId?: string, taskId?: string): DiagnosticEvent | null;
+/** 验证所有 blocking/critical 事件必须有诊断码 */
+export declare function validateDiagnosticCoverage(eventSeverities: Array<{
+    severity: DiagnosticSeverity;
+    has_code: boolean;
+}>): Array<{
+    severity: DiagnosticSeverity;
+    error: string;
+}>;
+/** 重置注册表（测试用） */
+export declare function resetDiagnosticRegistry(): void;
+/** 获取诊断码统计 */
+export declare function getDiagnosticStats(): {
+    total: number;
+    by_area: Record<string, number>;
+    by_severity: Record<string, number>;
+};
+//# sourceMappingURL=diagnostic_registry.d.ts.map

package/dist/engine/diagnostic_registry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"diagnostic_registry.d.ts","sourceRoot":"","sources":["../../src/engine/diagnostic_registry.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,MAAM,MAAM,kBAAkB,GAAG,UAAU,GAAG,UAAU,GAAG,SAAS,GAAG,UAAU,GAAG,MAAM,CAAC;AAC3F,MAAM,MAAM,gBAAgB,GAAG,QAAQ,GAAG,YAAY,GAAG,SAAS,CAAC;AACnE,MAAM,MAAM,cAAc,GACtB,OAAO,GACP,OAAO,GACP,QAAQ,GACR,SAAS,GACT,SAAS,GACT,SAAS,GACT,WAAW,GACX,SAAS,GACT,MAAM,GACN,MAAM,GACN,MAAM,GACN,UAAU,GACV,SAAS,GACT,KAAK,CAAC;AAEV,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,cAAc,CAAC;IACrB,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,MAAM,EAAE,gBAAgB,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,oBAAoB,EAAE,MAAM,CAAC;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAgGD,mBAAmB;AACnB,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,mBAAmB,GAAG,SAAS,CAEjF;AAED,cAAc;AACd,wBAAgB,kBAAkB,IAAI,mBAAmB,EAAE,CAE1D;AAED,eAAe;AACf,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,cAAc,GAAG,mBAAmB,EAAE,CAEjF;AAED,uBAAuB;AACvB,wBAAgB,yBAAyB,CAAC,QAAQ,EAAE,kBAAkB,GAAG,mBAAmB,EAAE,CAE7F;AAED,kBAAkB;AAClB,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,mBAAmB,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAanG;AAED,aAAa;AACb,wBAAgB,qBAAqB,CACnC,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EACjC,UAAU,CAAC,EAAE,MAAM,EACnB,MAAM,CAAC,EAAE,MAAM,GACd,eAAe,GAAG,IAAI,CAYxB;AAED,sCAAsC;AACtC,wBAAgB,0BAA0B,CAAC,eAAe,EAAE,KAAK,CAAC;IAAE,QAAQ,EAAE,kBAAkB,CAAC;IAAC,QAAQ,EAAE,OAAO,CAAA;CAAE,CAAC,GAAG,KAAK,CAAC;IAAE,QAAQ,EAAE,kBAAkB,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC,CAW9K;AAED,iBAAiB;AACjB,wBAAgB,uBAAuB,IAAI,IAAI,CAE9C;AAED,cAAc;AACd,wBAAgB,kBAAkB,IAAI;IAAE,KAAK,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAAC,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAAE,CAS5H"}

package/dist/engine/diagnostic_registry.js

@@ -0,0 +1,176 @@
+/**
+ * 诊断码注册表 — 问题三十六 (Diagnostic Code Contract)。
+ *
+ * 核心规则:
+ * - 诊断码格式 SF-{AREA}-{NNNN}，一旦发布不得复用
+ * - blocking/critical 事件没有诊断码不得输出
+ * - 每个 active code 必须有 title_zh、user_message_zh、recovery_hint_zh
+ * - deprecated/removed code 不得复用
+ */
+const BUILTIN_DIAGNOSTICS = [
+    // STATE 领域
+    { code: "SF-STATE-0001", area: "STATE", severity: "blocking", status: "active",
+        title_zh: "非法状态转移: failed → completed",
+        user_message_zh: "任务已失败，不能直接标记完成。需要人工确认恢复后重新验证。",
+        recovery_hint_zh: "检查失败原因，修复后重新执行验证流程。",
+        owner_component: "engine/task_context", evidence_refs: ["task_context状态机"] },
+    { code: "SF-STATE-0002", area: "STATE", severity: "blocking", status: "active",
+        title_zh: "非法状态转移: blocked → completed",
+        user_message_zh: "任务被阻断，不能直接标记完成。需要解除阻断条件。",
+        recovery_hint_zh: "检查阻断原因，解决阻断条件后重试。",
+        owner_component: "engine/task_context", evidence_refs: ["task_context状态机"] },
+    { code: "SF-STATE-0003", area: "STATE", severity: "blocking", status: "active",
+        title_zh: "非法状态转移: requires_human → completed",
+        user_message_zh: "任务需要人工确认，不能自动标记完成。",
+        recovery_hint_zh: "等待人工确认后继续。",
+        owner_component: "engine/task_context", evidence_refs: ["task_context状态机"] },
+    // GUARD 领域
+    { code: "SF-GUARD-0001", area: "GUARD", severity: "blocking", status: "active",
+        title_zh: "只读工作流写入业务源码",
+        user_message_zh: "当前工作流不允许写入业务源码，操作已阻断。",
+        recovery_hint_zh: "检查路由是否正确，或切换到允许写入的工作流。",
+        owner_component: "engine/enforcement_guard", evidence_refs: ["enforcement_guard写入护栏"] },
+    { code: "SF-GUARD-0002", area: "GUARD", severity: "blocking", status: "active",
+        title_zh: "超出 output artifact 范围写入",
+        user_message_zh: "source_extraction 工作流只能写入指定的 output artifact 路径。",
+        recovery_hint_zh: "确认输出路径是否在允许范围内。",
+        owner_component: "engine/enforcement_guard", evidence_refs: ["enforcement_guard范围护栏"] },
+    // VERIFY 领域
+    { code: "SF-VERIFY-0001", area: "VERIFY", severity: "critical", status: "active",
+        title_zh: "验证计划被当作验证证据",
+        user_message_zh: "检测到只有验证计划没有验证结果。计划不得替代真实执行。",
+        recovery_hint_zh: "执行验证命令获取真实结果。",
+        owner_component: "engine/verification_contract", evidence_refs: ["verification_contract分离"] },
+    { code: "SF-VERIFY-0002", area: "VERIFY", severity: "blocking", status: "active",
+        title_zh: "未验证但尝试交付",
+        user_message_zh: "任务未通过验证，不允许交付。",
+        recovery_hint_zh: "先完成验证流程，确保所有检查通过。",
+        owner_component: "engine/delivery_readiness", evidence_refs: ["delivery_readiness门控"] },
+    // FAILURE 领域
+    { code: "SF-FAILURE-0001", area: "FAILURE", severity: "critical", status: "active",
+        title_zh: "重试预算耗尽",
+        user_message_zh: "失败重试次数已达上限，需要人工介入。",
+        recovery_hint_zh: "检查错误根因，手动修复后重新执行。",
+        owner_component: "engine/recovery_policy", evidence_refs: ["recovery_policy预算"] },
+    { code: "SF-FAILURE-0002", area: "FAILURE", severity: "warning", status: "active",
+        title_zh: "外部副作用部分执行",
+        user_message_zh: "检测到外部副作用部分执行，已记录已发生动作。",
+        recovery_hint_zh: "检查已执行副作用，确认是否需要回滚。",
+        owner_component: "engine/recovery_policy", evidence_refs: ["recovery_policy副作用"] },
+    // DEGRADE 领域
+    { code: "SF-DEGRADE-0001", area: "DEGRADE", severity: "warning", status: "active",
+        title_zh: "验证器不可用，降级运行",
+        user_message_zh: "验证器不可用，当前为降级模式。结果未经验证。",
+        recovery_hint_zh: "等待验证器恢复后重新验证，或人工确认。",
+        owner_component: "engine/degradation", evidence_refs: ["degradation降级"] },
+    // WORKSPACE 领域
+    { code: "SF-WORKSPACE-0001", area: "WORKSPACE", severity: "blocking", status: "active",
+        title_zh: "并发写入冲突",
+        user_message_zh: "检测到其他任务正在写入相同文件范围，操作已阻断。",
+        recovery_hint_zh: "等待其他任务完成或人工协调写入顺序。",
+        owner_component: "engine/workspace_lease", evidence_refs: ["workspace_lease冲突"] },
+    // OBSERVE 领域
+    { code: "SF-OBSERVE-0001", area: "OBSERVE", severity: "warning", status: "active",
+        title_zh: "TaskContext 尝试存储敏感原文",
+        user_message_zh: "检测到尝试将敏感信息存入 TaskContext，已自动脱敏。",
+        recovery_hint_zh: "确认脱敏后的内容是否满足需求。",
+        owner_component: "engine/task_context", evidence_refs: ["task_context边界"] },
+    // CONTRACT 领域
+    { code: "SF-CONTRACT-0001", area: "CONTRACT", severity: "blocking", status: "active",
+        title_zh: "引用已废弃/已移除的契约",
+        user_message_zh: "工作流引用了已废弃或已移除的契约，操作已阻断。",
+        recovery_hint_zh: "迁移到替代契约或更新工作流配置。",
+        owner_component: "engine/contract_registry", evidence_refs: ["contract_registry门控"] },
+    // PRIVACY 领域
+    { code: "SF-PRIVACY-0001", area: "PRIVACY", severity: "blocking", status: "active",
+        title_zh: "命令输出包含敏感信息",
+        user_message_zh: "命令执行输出检测到敏感信息，已自动脱敏存储。",
+        recovery_hint_zh: "检查脱敏后内容，确认是否需要重新执行。",
+        owner_component: "engine/privacy_secret_contract", evidence_refs: ["privacy脱敏"] },
+];
+let runtimeDiagnostics = null;
+function getRegistry() {
+    if (!runtimeDiagnostics) {
+        runtimeDiagnostics = new Map();
+        for (const entry of BUILTIN_DIAGNOSTICS) {
+            runtimeDiagnostics.set(entry.code, { ...entry });
+        }
+    }
+    return runtimeDiagnostics;
+}
+/** 按 code 获取诊断码 */
+export function getDiagnosticByCode(code) {
+    return getRegistry().get(code);
+}
+/** 列出所有诊断码 */
+export function listAllDiagnostics() {
+    return [...getRegistry().values()];
+}
+/** 按领域列出诊断码 */
+export function listDiagnosticsByArea(area) {
+    return [...getRegistry().values()].filter((d) => d.area === area);
+}
+/** 按 severity 列出诊断码 */
+export function listDiagnosticsBySeverity(severity) {
+    return [...getRegistry().values()].filter((d) => d.severity === severity);
+}
+/** 注册新诊断码（运行时） */
+export function registerDiagnostic(entry) {
+    const registry = getRegistry();
+    if (registry.has(entry.code)) {
+        return { success: false, error: `诊断码 ${entry.code} 已存在` };
+    }
+    if (!/^SF-[A-Z]+-\d{4}$/.test(entry.code)) {
+        return { success: false, error: `诊断码格式错误: ${entry.code}，必须为 SF-{AREA}-{NNNN}` };
+    }
+    if (!entry.title_zh || !entry.user_message_zh || !entry.recovery_hint_zh) {
+        return { success: false, error: "诊断码必须有 title_zh、user_message_zh、recovery_hint_zh" };
+    }
+    registry.set(entry.code, { ...entry });
+    return { success: true };
+}
+/** 创建诊断事件 */
+export function createDiagnosticEvent(code, context, contractId, taskId) {
+    const entry = getRegistry().get(code);
+    if (!entry)
+        return null;
+    if (entry.status === "deprecated" || entry.status === "removed")
+        return null;
+    return {
+        code,
+        occurred_at: new Date().toISOString(),
+        context: context ?? {},
+        user_visible_message: entry.user_message_zh,
+        contract_id: contractId,
+        task_id: taskId,
+    };
+}
+/** 验证所有 blocking/critical 事件必须有诊断码 */
+export function validateDiagnosticCoverage(eventSeverities) {
+    const errors = [];
+    for (const event of eventSeverities) {
+        if ((event.severity === "blocking" || event.severity === "critical") && !event.has_code) {
+            errors.push({
+                severity: event.severity,
+                error: `${event.severity} 事件缺少诊断码`,
+            });
+        }
+    }
+    return errors;
+}
+/** 重置注册表（测试用） */
+export function resetDiagnosticRegistry() {
+    runtimeDiagnostics = null;
+}
+/** 获取诊断码统计 */
+export function getDiagnosticStats() {
+    const entries = [...getRegistry().values()];
+    const by_area = {};
+    const by_severity = {};
+    for (const e of entries) {
+        by_area[e.area] = (by_area[e.area] ?? 0) + 1;
+        by_severity[e.severity] = (by_severity[e.severity] ?? 0) + 1;
+    }
+    return { total: entries.length, by_area, by_severity };
+}
+//# sourceMappingURL=diagnostic_registry.js.map

package/dist/engine/diagnostic_registry.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"diagnostic_registry.js","sourceRoot":"","sources":["../../src/engine/diagnostic_registry.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AA0CH,MAAM,mBAAmB,GAAmC;IAC1D,WAAW;IACX,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC5E,QAAQ,EAAE,4BAA4B;QACtC,eAAe,EAAE,+BAA+B;QAChD,gBAAgB,EAAE,qBAAqB;QACvC,eAAe,EAAE,qBAAqB,EAAE,aAAa,EAAE,CAAC,iBAAiB,CAAC,EAAE;IAC9E,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC5E,QAAQ,EAAE,6BAA6B;QACvC,eAAe,EAAE,0BAA0B;QAC3C,gBAAgB,EAAE,mBAAmB;QACrC,eAAe,EAAE,qBAAqB,EAAE,aAAa,EAAE,CAAC,iBAAiB,CAAC,EAAE;IAC9E,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC5E,QAAQ,EAAE,oCAAoC;QAC9C,eAAe,EAAE,oBAAoB;QACrC,gBAAgB,EAAE,YAAY;QAC9B,eAAe,EAAE,qBAAqB,EAAE,aAAa,EAAE,CAAC,iBAAiB,CAAC,EAAE;IAC9E,WAAW;IACX,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC5E,QAAQ,EAAE,aAAa;QACvB,eAAe,EAAE,uBAAuB;QACxC,gBAAgB,EAAE,wBAAwB;QAC1C,eAAe,EAAE,0BAA0B,EAAE,aAAa,EAAE,CAAC,uBAAuB,CAAC,EAAE;IACzF,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC5E,QAAQ,EAAE,yBAAyB;QACnC,eAAe,EAAE,kDAAkD;QACnE,gBAAgB,EAAE,iBAAiB;QACnC,eAAe,EAAE,0BAA0B,EAAE,aAAa,EAAE,CAAC,uBAAuB,CAAC,EAAE;IACzF,YAAY;IACZ,EAAE,IAAI,EAAE,gBAAgB,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC9E,QAAQ,EAAE,aAAa;QACvB,eAAe,EAAE,6BAA6B;QAC9C,gBAAgB,EAAE,eAAe;QACjC,eAAe,EAAE,8BAA8B,EAAE,aAAa,EAAE,CAAC,yBAAyB,CAAC,EAAE;IAC/F,EAAE,IAAI,EAAE,gBAAgB,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAC9E,QAAQ,EAAE,UAAU;QACpB,eAAe,EAAE,gBAAgB;QACjC,gBAAgB,EAAE,mBAAmB;QACrC,eAAe,EAAE,2BAA2B,EAAE,aAAa,EAAE,CAAC,sBAAsB,CAAC,EAAE;IACzF,aAAa;IACb,EAAE,IAAI,EAAE,iBAAiB,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAChF,QAAQ,EAAE,QAAQ;QAClB,eAAe,EAAE,oBAAoB;QACrC,gBAAgB,EAAE,mBAAmB;QACrC,eAAe,EAAE,wBAAwB,EAAE,aAAa,EAAE,CAAC,mBAAmB,CAAC,EAAE;IACnF,EAAE,IAAI,EAAE,iBAAiB,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ;QAC/E,QAAQ,EAAE,WAAW;QACrB,eAAe,EAAE,wBAAwB;QACzC,gBAAgB,EAAE,oBAAoB;QACtC,eAAe,EAAE,wBAAwB,EAAE,aAAa,EAAE,CAAC,oBAAoB,CAAC,EAAE;IACpF,aAAa;IACb,EAAE,IAAI,EAAE,iBAAiB,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ;QAC/E,QAAQ,EAAE,aAAa;QACvB,eAAe,EAAE,wBAAwB;QACzC,gBAAgB,EAAE,qBAAqB;QACvC,eAAe,EAAE,oBAAoB,EAAE,aAAa,EAAE,CAAC,eAAe,CAAC,EAAE;IAC3E,eAAe;IACf,EAAE,IAAI,EAAE,mBAAmB,EAAE,IAAI,EAAE,WAAW,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QACpF,QAAQ,EAAE,QAAQ;QAClB,eAAe,EAAE,0BAA0B;QAC3C,gBAAgB,EAAE,oBAAoB;QACtC,eAAe,EAAE,wBAAwB,EAAE,aAAa,EAAE,CAAC,mBAAmB,CAAC,EAAE;IACnF,aAAa;IACb,EAAE,IAAI,EAAE,iBAAiB,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ;QAC/E,QAAQ,EAAE,sBAAsB;QAChC,eAAe,EAAE,iCAAiC;QAClD,gBAAgB,EAAE,iBAAiB;QACnC,eAAe,EAAE,qBAAqB,EAAE,aAAa,EAAE,CAAC,gBAAgB,CAAC,EAAE;IAC7E,cAAc;IACd,EAAE,IAAI,EAAE,kBAAkB,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAClF,QAAQ,EAAE,cAAc;QACxB,eAAe,EAAE,yBAAyB;QAC1C,gBAAgB,EAAE,kBAAkB;QACpC,eAAe,EAAE,0BAA0B,EAAE,aAAa,EAAE,CAAC,qBAAqB,CAAC,EAAE;IACvF,aAAa;IACb,EAAE,IAAI,EAAE,iBAAiB,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ;QAChF,QAAQ,EAAE,YAAY;QACtB,eAAe,EAAE,wBAAwB;QACzC,gBAAgB,EAAE,qBAAqB;QACvC,eAAe,EAAE,gCAAgC,EAAE,aAAa,EAAE,CAAC,WAAW,CAAC,EAAE;CACpF,CAAC;AAEF,IAAI,kBAAkB,GAA4C,IAAI,CAAC;AAEvE,SAAS,WAAW;IAClB,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,kBAAkB,GAAG,IAAI,GAAG,EAAE,CAAC;QAC/B,KAAK,MAAM,KAAK,IAAI,mBAAmB,EAAE,CAAC;YACxC,kBAAkB,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,GAAG,KAAK,EAAE,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IACD,OAAO,kBAAkB,CAAC;AAC5B,CAAC;AAED,mBAAmB;AACnB,MAAM,UAAU,mBAAmB,CAAC,IAAY;IAC9C,OAAO,WAAW,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;AACjC,CAAC;AAED,cAAc;AACd,MAAM,UAAU,kBAAkB;IAChC,OAAO,CAAC,GAAG,WAAW,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC;AACrC,CAAC;AAED,eAAe;AACf,MAAM,UAAU,qBAAqB,CAAC,IAAoB;IACxD,OAAO,CAAC,GAAG,WAAW,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;AACpE,CAAC;AAED,uBAAuB;AACvB,MAAM,UAAU,yBAAyB,CAAC,QAA4B;IACpE,OAAO,CAAC,GAAG,WAAW,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;AAC5E,CAAC;AAED,kBAAkB;AAClB,MAAM,UAAU,kBAAkB,CAAC,KAA0B;IAC3D,MAAM,QAAQ,GAAG,WAAW,EAAE,CAAC;IAC/B,IAAI,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7B,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,KAAK,CAAC,IAAI,MAAM,EAAE,CAAC;IAC5D,CAAC;IACD,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1C,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,YAAY,KAAK,CAAC,IAAI,uBAAuB,EAAE,CAAC;IAClF,CAAC;IACD,IAAI,CAAC,KAAK,CAAC,QAAQ,IAAI,CAAC,KAAK,CAAC,eAAe,IAAI,CAAC,KAAK,CAAC,gBAAgB,EAAE,CAAC;QACzE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,kDAAkD,EAAE,CAAC;IACvF,CAAC;IACD,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,GAAG,KAAK,EAAE,CAAC,CAAC;IACvC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;AAC3B,CAAC;AAED,aAAa;AACb,MAAM,UAAU,qBAAqB,CACnC,IAAY,EACZ,OAAiC,EACjC,UAAmB,EACnB,MAAe;IAEf,MAAM,KAAK,GAAG,WAAW,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IACxB,IAAI,KAAK,CAAC,MAAM,KAAK,YAAY,IAAI,KAAK,CAAC,MAAM,KAAK,SAAS;QAAE,OAAO,IAAI,CAAC;IAC7E,OAAO;QACL,IAAI;QACJ,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACrC,OAAO,EAAE,OAAO,IAAI,EAAE;QACtB,oBAAoB,EAAE,KAAK,CAAC,eAAe;QAC3C,WAAW,EAAE,UAAU;QACvB,OAAO,EAAE,MAAM;KAChB,CAAC;AACJ,CAAC;AAED,sCAAsC;AACtC,MAAM,UAAU,0BAA0B,CAAC,eAA2E;IACpH,MAAM,MAAM,GAA2D,EAAE,CAAC;IAC1E,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;QACpC,IAAI,CAAC,KAAK,CAAC,QAAQ,KAAK,UAAU,IAAI,KAAK,CAAC,QAAQ,KAAK,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC;YACxF,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,KAAK,CAAC,QAAQ;gBACxB,KAAK,EAAE,GAAG,KAAK,CAAC,QAAQ,UAAU;aACnC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,iBAAiB;AACjB,MAAM,UAAU,uBAAuB;IACrC,kBAAkB,GAAG,IAAI,CAAC;AAC5B,CAAC;AAED,cAAc;AACd,MAAM,UAAU,kBAAkB;IAChC,MAAM,OAAO,GAAG,CAAC,GAAG,WAAW,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC;IAC5C,MAAM,OAAO,GAA2B,EAAE,CAAC;IAC3C,MAAM,WAAW,GAA2B,EAAE,CAAC;IAC/C,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC7C,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IAC/D,CAAC;IACD,OAAO,EAAE,KAAK,EAAE,OAAO,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC;AACzD,CAAC"}

package/dist/engine/enforcement_guard.d.ts

@@ -0,0 +1,84 @@
+/**
+ * 强制护栏注册表 — 问题十一 (Enforcement Guard)。
+ *
+ * 覆盖七类护栏: write、state、knowledge_injection、execution、
+ * external_side_effect、prompt、delivery。
+ * 护栏 finding 必须绑定 contract_id + diagnostic_code。
+ * 只有 contract state=enforced 且 hard_fail_allowed=true 时才能 hard fail。
+ */
+import { type DiagnosticEvent } from "./diagnostic_registry.js";
+export type GuardType = "write" | "state" | "knowledge_injection" | "execution" | "external_side_effect" | "prompt" | "delivery";
+export type GuardAction = "block" | "warn" | "require_human" | "downgrade";
+export interface EnforcementGuardEntry {
+    guard_id: string;
+    guard_type: GuardType;
+    enforced: boolean;
+    trigger_description: string;
+    block_condition: string;
+    allow_condition: string;
+    failure_behavior: GuardAction;
+    contract_id: string;
+    diagnostic_code: string;
+    human_gate?: string[];
+    required_context: string[];
+}
+export interface GuardFinding {
+    guard_id: string;
+    contract_id: string;
+    diagnostic_code: string;
+    severity: "hard_fail" | "warning" | "advisory";
+    action: GuardAction;
+    reason_zh: string;
+    blocked: boolean;
+    diagnostic_event: DiagnosticEvent | null;
+}
+export interface GuardEvaluationReport {
+    evaluated_at: string;
+    workflow_id: string;
+    route: string;
+    mutation_allowed: boolean;
+    evaluated_guards: string[];
+    allowed: string[];
+    blocked: GuardFinding[];
+    warnings: GuardFinding[];
+    human_required: GuardFinding[];
+}
+/** 列出所有护栏 */
+export declare function listAllGuards(): EnforcementGuardEntry[];
+/** 按类型列出护栏 */
+export declare function listGuardsByType(type: GuardType): EnforcementGuardEntry[];
+/** 注册新护栏（运行时） */
+export declare function registerGuard(entry: EnforcementGuardEntry): {
+    success: boolean;
+    error?: string;
+};
+/**
+ * 评估写入护栏。
+ * 检查 route 和 target_path 是否违反写入规则。
+ */
+export declare function evaluateWriteGuard(route: string, targetPath: string, outputArtifactPaths: string[], contractId: string): GuardFinding[];
+/**
+ * 评估状态护栏。
+ * 检查状态转移是否合法。
+ */
+export declare function evaluateStateGuard(currentStatus: string, targetStatus: string, contractId: string): GuardFinding[];
+/**
+ * 生成完整护栏评估报告。
+ */
+export declare function generateGuardEvaluationReport(workflowId: string, route: string, mutationAllowed: boolean, guardIds: string[]): GuardEvaluationReport;
+/**
+ * 校验所有 guard 的 contract_id 是否存在于 Contract Registry。
+ */
+export declare function validateGuardContractIds(contractExistsFn: (id: string) => boolean): Array<{
+    guard_id: string;
+    contract_id: string;
+    severity: "hard_fail";
+}>;
+/**
+ * 评估交付就绪护栏。
+ * 检查交付是否由 sf_deliver 显式触发，验证结果是否满足交付条件。
+ */
+export declare function evaluateDeliveryReadinessGuard(verificationResult: import("./verification_contract.js").VerificationResult | undefined, verificationPlan: import("./verification_contract.js").VerificationPlan | undefined): GuardFinding[];
+/** 重置注册表（测试用） */
+export declare function resetGuardRegistry(): void;
+//# sourceMappingURL=enforcement_guard.d.ts.map

package/dist/engine/enforcement_guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"enforcement_guard.d.ts","sourceRoot":"","sources":["../../src/engine/enforcement_guard.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAA8C,KAAK,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAG5G,MAAM,MAAM,SAAS,GACjB,OAAO,GACP,OAAO,GACP,qBAAqB,GACrB,WAAW,GACX,sBAAsB,GACtB,QAAQ,GACR,UAAU,CAAC;AAEf,MAAM,MAAM,WAAW,GAAG,OAAO,GAAG,MAAM,GAAG,eAAe,GAAG,WAAW,CAAC;AAE3E,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,SAAS,CAAC;IACtB,QAAQ,EAAE,OAAO,CAAC;IAClB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,eAAe,EAAE,MAAM,CAAC;IACxB,eAAe,EAAE,MAAM,CAAC;IACxB,gBAAgB,EAAE,WAAW,CAAC;IAC9B,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,gBAAgB,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,WAAW,GAAG,SAAS,GAAG,UAAU,CAAC;IAC/C,MAAM,EAAE,WAAW,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,OAAO,CAAC;IACjB,gBAAgB,EAAE,eAAe,GAAG,IAAI,CAAC;CAC1C;AAED,MAAM,WAAW,qBAAqB;IACpC,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,gBAAgB,EAAE,OAAO,CAAC;IAC1B,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,OAAO,EAAE,YAAY,EAAE,CAAC;IACxB,QAAQ,EAAE,YAAY,EAAE,CAAC;IACzB,cAAc,EAAE,YAAY,EAAE,CAAC;CAChC;AAiHD,aAAa;AACb,wBAAgB,aAAa,IAAI,qBAAqB,EAAE,CAEvD;AAED,cAAc;AACd,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,SAAS,GAAG,qBAAqB,EAAE,CAEzE;AAED,iBAAiB;AACjB,wBAAgB,aAAa,CAAC,KAAK,EAAE,qBAAqB,GAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAUhG;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,KAAK,EAAE,MAAM,EACb,UAAU,EAAE,MAAM,EAClB,mBAAmB,EAAE,MAAM,EAAE,EAC7B,UAAU,EAAE,MAAM,GACjB,YAAY,EAAE,CA2ChB;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,aAAa,EAAE,MAAM,EACrB,YAAY,EAAE,MAAM,EACpB,UAAU,EAAE,MAAM,GACjB,YAAY,EAAE,CAuBhB;AAED;;GAEG;AACH,wBAAgB,6BAA6B,CAC3C,UAAU,EAAE,MAAM,EAClB,KAAK,EAAE,MAAM,EACb,eAAe,EAAE,OAAO,EACxB,QAAQ,EAAE,MAAM,EAAE,GACjB,qBAAqB,CA6CvB;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CACtC,gBAAgB,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK,OAAO,GACxC,KAAK,CAAC;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,WAAW,CAAA;CAAE,CAAC,CAYzE;AAED;;;GAGG;AACH,wBAAgB,8BAA8B,CAC5C,kBAAkB,EAAE,OAAO,4BAA4B,EAAE,kBAAkB,GAAG,SAAS,EACvF,gBAAgB,EAAE,OAAO,4BAA4B,EAAE,gBAAgB,GAAG,SAAS,GAClF,YAAY,EAAE,CA6BhB;AAED,iBAAiB;AACjB,wBAAgB,kBAAkB,IAAI,IAAI,CAEzC"}