soloforge 1.3.0 → 1.3.1

package/dist/engine/release_readiness_gate.js

@@ -13,6 +13,14 @@
  * 5. 旧 gate 误导标记
  * 6. 测试污染初筛
  * 7. Batch 问题文档格式一致性
+ * 8. 关键问题消费验证
+ * 9. 机制身份一致性
+ * 10. P0/P1 知识资产 schema
+ * 11. engine console.log 检查
+ * 12. 中文注释检查
+ * 13. 第五批一致性校验
+ * 14. 依赖漏洞扫描
+ * 15. Batch6 架构决策与设计产物真实消费
  */
 import fs from "node:fs";
 import path from "node:path";
@@ -218,7 +226,7 @@ const CONSUMER_ENTRY_FILES = {
     "CLI validate-knowledge": ["src/engine/knowledge_scenario_registry.ts"],
     "sf_verify": ["src/engine/verifier.ts"],
     "sf_deliver": ["src/adapters/claude_code/tools.ts", "src/engine/delivery_readiness.ts"],
-    "sf_expand": ["src/engine/intent_expander.ts"],
+    "sf_expand": ["src/adapters/claude_code/tools.ts", "src/engine/intent_expander.ts"],
     "问题管理流程": [],
 };
 /** 模块名→文件路径映射 (用于模块间调用链如 "knowledge_evolution.validateCandidateTrust") */
@@ -435,7 +443,15 @@ function checkMainlineConsumption(rootDir, hardFail, _info) {
                         continue;
                     const staticImportPattern = new RegExp(`import\\s+\\{[^}]*\\b${ep}\\b[^}]*\\}\\s+from`);
                     const dynamicImportPattern = new RegExp(`\\{[^}]*\\b${ep}\\b[^}]*\\}\\s*=\\s*await\\s+import\\(`);
-                    const hasImport = staticImportPattern.test(consumerContent) || dynamicImportPattern.test(consumerContent);
+                    const hasLazyModuleImport = entry.owner_files.some((ownerFile) => {
+                        const moduleName = path.basename(ownerFile, ".ts");
+                        return consumerContent.includes(`import("../../engine/${moduleName}.js")`)
+                            || consumerContent.includes(`import("../engine/${moduleName}.js")`)
+                            || consumerContent.includes(`import("./${moduleName}.js")`);
+                    });
+                    const hasImport = staticImportPattern.test(consumerContent)
+                        || dynamicImportPattern.test(consumerContent)
+                        || hasLazyModuleImport;
                     if (!hasImport)
                         continue;
                     const importLinePattern = new RegExp(`import\\s+\\{[^}]*\\b${ep}\\b|\\{[^}]*\\b${ep}\\b[^}]*\\}\\s*=\\s*await\\s+import`);
@@ -636,7 +652,7 @@ function checkTestPollution(rootDir, hardFail, _info) {
     }
 }
 // ── 8. 关键问题消费验证 (problem-17/38/57) ──
-function checkCriticalProblemConsumption(rootDir, hardFail, _info) {
+async function checkCriticalProblemConsumption(rootDir, hardFail, _info) {
     const taskContextPath = path.join(rootDir, "src/engine/task_context.ts");
     const cliPath = path.join(rootDir, "src/bin/soloforge.ts");
     // problem-17: StateFact 分区 — save() 必须调用 validateStateFactPartition，hard_fail 必须 throw
@@ -765,6 +781,342 @@ function checkCriticalProblemConsumption(rootDir, hardFail, _info) {
         }
     }
     _info("  problem-17/38/57 消费验证完成");
+    // 问题六十：证据驱动与反幻觉契约 — 行为级检查
+    {
+        const evidenceGroundingPath = path.join(rootDir, "src/engine/evidence_grounding_contract.ts");
+        if (!fs.existsSync(evidenceGroundingPath)) {
+            hardFail("CRITICAL_PROBLEM_FILE_MISSING", "problem-60: evidence_grounding_contract.ts 不存在", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "发布门禁不检查 problem-60 实现", "创建 evidence_grounding_contract.ts");
+        }
+        else {
+            // 行为级检查：动态导入并验证核心门禁行为
+            try {
+                const eg = await import(path.join(rootDir, "dist/engine/evidence_grounding_contract.js"));
+                const sys = eg.createEvidenceGroundingSystem();
+                // 检查 1：无证据高风险 claim 必须被 blocked
+                {
+                    const noEvClaims = [{
+                            id: "gate-test-no-ev", claim_text: "项目使用 React", category: "project_fact",
+                            evidence_ids: [], is_uncertain: false, risk_level: "high",
+                        }];
+                    const noEvResult = sys.verifier.verify(noEvClaims, "high");
+                    if (noEvResult.unsupported.length === 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: 无证据高风险 claim 未被 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 未阻断无证据声明", "验证 classify 逻辑");
+                    }
+                }
+                // 检查 2：generated_inference 单独支撑 project_fact 必须被 blocked
+                {
+                    const infEv = sys.registry.register({
+                        source_type: "generated_inference", authority: "weak", freshness: "unknown",
+                        permission: "allowed", scope: "test", description: "推理",
+                    });
+                    const infClaims = [{
+                            id: "gate-test-inference", claim_text: "项目使用 Vue", category: "tech_stack",
+                            evidence_ids: [infEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const infResult = sys.verifier.verify(infClaims, "high");
+                    if (infResult.unsupported.length === 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: generated_inference 单独支撑 project_fact 未被 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 未阻断推理自证", "验证 isSelfAttestation 逻辑");
+                    }
+                }
+                // 检查 3：validation_plan 冒充 validation_result 必须被 blocked
+                {
+                    const planEv = sys.registry.register({
+                        source_type: "generated_inference", authority: "weak", freshness: "unknown",
+                        permission: "allowed", scope: "test", description: "验证计划",
+                    });
+                    const planClaims = [{
+                            id: "gate-test-plan-as-result", claim_text: "验证已通过",
+                            category: "validation_result",
+                            evidence_ids: [planEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const planResult = sys.verifier.verify(planClaims, "high");
+                    if (planResult.unsupported.length === 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: validation_plan 冒充 validation_result 未被 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 未阻断验证计划冒充", "验证 validation_result 检查逻辑");
+                    }
+                }
+                // 检查 4：forbidden source 必须被 blocked
+                {
+                    const matrix = sys.builder.buildContext([], {
+                        target_claims: [], source_types: [], keywords: [], max_results: 10,
+                    });
+                    matrix.evidence.push({
+                        id: "ev-forbidden-test", source_type: "project_file",
+                        authority: "authoritative", freshness: "current",
+                        permission: "forbidden", scope: "sensitive",
+                        description: "敏感数据", timestamp: new Date().toISOString(),
+                    });
+                    matrix.risk_summary = { low: 0, medium: 0, high: 0, critical: 1 };
+                    const forbiddenResult = sys.gate.evaluate(matrix, "high");
+                    if (forbiddenResult.allowed) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: forbidden source 未被 UnsupportedClaimGate 阻断", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "UnsupportedClaimGate 允许 forbidden 证据通过", "验证 forbidden 检查逻辑");
+                    }
+                }
+                // 检查 5：conflict unresolved 必须被 blocked（高风险）
+                {
+                    const confMatrix = sys.builder.buildContext([], {
+                        target_claims: [], source_types: [], keywords: [], max_results: 10,
+                    });
+                    confMatrix.conflicts.push({
+                        claim_id: "claim-conflict-test",
+                        conflicting_evidence_ids: ["ev-a", "ev-b"],
+                        description: "矛盾",
+                        resolution_status: "unresolved",
+                    });
+                    confMatrix.risk_summary = { low: 0, medium: 0, high: 1, critical: 0 };
+                    const confResult = sys.gate.evaluate(confMatrix, "high");
+                    if (confResult.allowed) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: unresolved conflict 未被 UnsupportedClaimGate 阻断", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "UnsupportedClaimGate 允许未裁决冲突通过", "验证 conflict 检查逻辑");
+                    }
+                }
+                // 检查 6：classification-only 证据不得支撑 architecture 声明
+                {
+                    sys.registry.clear();
+                    const clsOnlyEv = sys.registry.register({
+                        source_type: "task_context", authority: "authoritative", freshness: "current",
+                        permission: "allowed", scope: "classification", description: "任务分类结果",
+                    });
+                    const clsOnlyClaims = [{
+                            id: "gate-test-cls-only", claim_text: "技术方案基于现有系统分析",
+                            category: "architecture",
+                            evidence_ids: [clsOnlyEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const clsOnlyResult = sys.verifier.verify(clsOnlyClaims, "high");
+                    if (clsOnlyResult.unsupported.length === 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: classification-only 证据支撑 architecture 声明未被 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 允许 task_context:classification 支撑项目事实声明", "验证 CATEGORY_REQUIRED_SOURCES 逻辑");
+                    }
+                }
+                // 检查 7：project_file + project_source_file 证据可以支撑 architecture 声明
+                {
+                    sys.registry.clear();
+                    const pfEv = sys.registry.register({
+                        source_type: "project_file", evidence_role: "project_source_file",
+                        authority: "authoritative", freshness: "current",
+                        permission: "allowed", scope: "src/", description: "项目源码文件",
+                    });
+                    const pfClaims = [{
+                            id: "gate-test-pf-ok", claim_text: "技术方案基于现有系统分析",
+                            category: "architecture",
+                            evidence_ids: [pfEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const pfResult = sys.verifier.verify(pfClaims, "high");
+                    if (pfResult.unsupported.length > 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: project_source_file 证据支撑 architecture 声明被错误 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 误阻断了有效证据", "验证 CATEGORY_REQUIRED_ROLES 逻辑");
+                    }
+                }
+                // 检查 8：template_guidance 证据不得支撑 architecture 声明
+                {
+                    sys.registry.clear();
+                    const tgEv = sys.registry.register({
+                        source_type: "knowledge_asset", evidence_role: "template_guidance",
+                        authority: "trusted", freshness: "current",
+                        permission: "allowed", scope: "knowledge", description: "默认模板",
+                    });
+                    const tgClaims = [{
+                            id: "gate-test-tg-block", claim_text: "技术方案基于现有系统分析",
+                            category: "architecture",
+                            evidence_ids: [tgEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const tgResult = sys.verifier.verify(tgClaims, "high");
+                    if (tgResult.unsupported.length === 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: template_guidance 证据支撑 architecture 声明未被 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 允许 template_guidance 支撑项目事实声明", "验证 CATEGORY_REQUIRED_ROLES 逻辑");
+                    }
+                }
+                // 检查 9：project_source_file 证据角色可以支撑 architecture 声明
+                {
+                    sys.registry.clear();
+                    const psfEv = sys.registry.register({
+                        source_type: "project_file", evidence_role: "project_source_file",
+                        authority: "authoritative", freshness: "current",
+                        permission: "allowed", scope: "src/", description: "项目源码文件",
+                    });
+                    const psfClaims = [{
+                            id: "gate-test-psf-ok", claim_text: "技术方案基于现有系统分析",
+                            category: "architecture",
+                            evidence_ids: [psfEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const psfResult = sys.verifier.verify(psfClaims, "high");
+                    if (psfResult.unsupported.length > 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: project_source_file 角色支撑 architecture 声明被错误 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 误阻断了有效 project_source_file 证据", "验证 CATEGORY_REQUIRED_ROLES 逻辑");
+                    }
+                }
+                // 检查 10：普通 code_change 不应因无 project_source_file 被 blocked（无 architecture claim 时）
+                {
+                    sys.registry.clear();
+                    const clsEv = sys.registry.register({
+                        source_type: "task_context", evidence_role: "classification",
+                        authority: "authoritative", freshness: "current",
+                        permission: "allowed", scope: "classification", description: "任务分类结果",
+                    });
+                    // 普通 code_change 只有 user_confirmation claim（无 architecture claim）
+                    const ccClaims = [{
+                            id: "gate-test-cc-ok", claim_text: "任务路由和执行范围已确认",
+                            category: "user_confirmation",
+                            evidence_ids: [clsEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const ccResult = sys.verifier.verify(ccClaims, "high");
+                    if (ccResult.unsupported.length > 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: 普通 code_change 的 user_confirmation claim 被 classification 证据错误 blocked", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 误阻断了不需要项目事实的普通任务", "验证 claim 语义逻辑");
+                    }
+                }
+                // 检查 11：architecture_design 无真实项目证据必须 blocked
+                {
+                    sys.registry.clear();
+                    const clsOnlyEv = sys.registry.register({
+                        source_type: "task_context", evidence_role: "classification",
+                        authority: "authoritative", freshness: "current",
+                        permission: "allowed", scope: "classification", description: "任务分类结果",
+                    });
+                    const tgOnlyEv = sys.registry.register({
+                        source_type: "knowledge_asset", evidence_role: "template_guidance",
+                        authority: "trusted", freshness: "current",
+                        permission: "allowed", scope: "knowledge", description: "默认模板",
+                    });
+                    const archClaims = [{
+                            id: "gate-test-arch-block", claim_text: "技术方案基于现有系统分析",
+                            category: "architecture",
+                            evidence_ids: [clsOnlyEv.id, tgOnlyEv.id], is_uncertain: false, risk_level: "high",
+                        }];
+                    const archResult = sys.verifier.verify(archClaims, "high");
+                    if (archResult.unsupported.length === 0) {
+                        hardFail("CRITICAL_PROBLEM_BEHAVIOR", "problem-60: architecture_design 无真实项目证据未被 blocked（classification + template_guidance 不够）", ["src/engine/evidence_grounding_contract.ts"], "problem-60", "FactClaimVerifier 允许非项目证据支撑架构声明", "验证 CATEGORY_REQUIRED_ROLES + claim 语义逻辑");
+                    }
+                }
+            }
+            catch (behaviorErr) {
+                hardFail("CRITICAL_PROBLEM_BEHAVIOR", `problem-60: 行为级检查执行失败: ${behaviorErr?.message ?? behaviorErr}`, ["src/engine/evidence_grounding_contract.ts"], "problem-60", "证据驱动机制行为检查不可执行", "修复 import 或机制代码");
+            }
+        }
+        // 静态检查：导出完整性
+        const egContent = safeRead(evidenceGroundingPath);
+        if (egContent) {
+            const requiredExports = ["createEvidenceGroundingSystem", "assessTaskRisk", "EvidenceSourceRegistry", "FactClaimVerifier", "UnsupportedClaimGate"];
+            for (const exp of requiredExports) {
+                if (!egContent.includes(exp)) {
+                    hardFail("CRITICAL_PROBLEM_EXPORT_MISSING", `problem-60: evidence_grounding_contract.ts 缺少导出: ${exp}`, ["src/engine/evidence_grounding_contract.ts"], "problem-60", "证据驱动机制缺少核心导出", `添加 ${exp} 导出`);
+                }
+            }
+        }
+        // 静态检查：InstructionContract schema 必须包含 evidence 字段
+        const instrContractPath = path.join(rootDir, "src/engine/instruction_contract.ts");
+        const instrContent = safeRead(instrContractPath);
+        if (instrContent) {
+            const evidenceFields = ["evidence_matrix", "unsupported_claim_policy", "uncertainty_policy", "conflict_resolution_policy"];
+            for (const field of evidenceFields) {
+                if (!instrContent.includes(field)) {
+                    hardFail("CRITICAL_PROBLEM_SCHEMA_INCOMPLETE", `problem-60: instruction_contract.ts schema 缺少证据字段: ${field}`, ["src/engine/instruction_contract.ts"], "problem-60", "施工指令契约缺少证据驱动字段", `添加 ${field} 字段`);
+                }
+            }
+        }
+        // 静态检查：主链路必须有 runtime 阻断（不能只是 advisory）
+        const toolsPath = path.join(rootDir, "src/adapters/claude_code/tools.ts");
+        const toolsContent = safeRead(toolsPath);
+        if (!toolsContent?.includes("evidence_grounding_contract")) {
+            hardFail("CRITICAL_PROBLEM_NOT_CONSUMED", "problem-60: tools.ts 未消费 evidence_grounding_contract", ["src/adapters/claude_code/tools.ts"], "problem-60", "证据驱动机制未接入主链路", "在 sf_expand/sf_verify/sf_deliver 中接入");
+        }
+        // sf_expand 必须有 blocked/manual_required 分支
+        if (toolsContent && !toolsContent.includes("_evGate.allowed") && !toolsContent.includes("evidence_blocked")) {
+            hardFail("CRITICAL_PROBLEM_ADVISORY_ONLY", "problem-60: sf_expand 证据检查只有 advisory，缺少 blocked 分支", ["src/adapters/claude_code/tools.ts"], "problem-60", "sf_expand 证据门禁不阻断", "添加 evidence gate blocked 分支");
+        }
+        // sf_verify: 验证计划描述行中不得包含 source_type: "validation_result"
+        if (toolsContent) {
+            // 找到 sf_verify handler 中问题六十部分
+            const verifyStart = toolsContent.indexOf("问题六十：验证结论必须经过 FactClaimVerifier");
+            const verifyEnd = toolsContent.indexOf("// 验证后核心体验评估", verifyStart);
+            if (verifyStart >= 0 && verifyEnd >= 0) {
+                const verifySection = toolsContent.substring(verifyStart, verifyEnd);
+                // 检查验证计划注册调用中是否使用了 validation_result
+                const planRegMatch = verifySection.match(/register\(\{[^}]*验证计划:[^}]*\}\)/s);
+                if (planRegMatch && planRegMatch[0].includes("source_type: \"validation_result\"")) {
+                    hardFail("CRITICAL_PROBLEM_PLAN_AS_RESULT", "problem-60: sf_verify 把验证计划注册为 validation_result", ["src/adapters/claude_code/tools.ts"], "problem-60", "验证计划冒充验证结果", "验证计划应注册为 task_context 类型");
+                }
+            }
+        }
+        // 静态检查：负向测试
+        const testPath = path.join(rootDir, "tests/engine/evidence_grounding_contract.test.ts");
+        if (!fs.existsSync(testPath)) {
+            hardFail("CRITICAL_PROBLEM_TEST_MISSING", "problem-60: 缺少负向测试文件", ["tests/engine/evidence_grounding_contract.test.ts"], "problem-60", "证据驱动机制缺少测试覆盖", "创建 evidence_grounding_contract.test.ts");
+        }
+        // 静态检查：知识规则
+        const kaRulePath = path.join(rootDir, "templates/knowledge/rules/证据驱动与反幻觉规则.md");
+        if (!fs.existsSync(kaRulePath)) {
+            hardFail("CRITICAL_PROBLEM_ASSET_MISSING", "problem-60: 缺少知识规则文件 证据驱动与反幻觉规则.md", ["templates/knowledge/rules/证据驱动与反幻觉规则.md"], "problem-60", "证据驱动知识规则缺失", "创建知识规则文件");
+        }
+        // 静态检查：workflow_template
+        const wfPath = path.join(rootDir, "src/adapters/shared/workflow_template.ts");
+        const wfContent = safeRead(wfPath);
+        if (!wfContent?.includes("wf-evidence-grounding")) {
+            hardFail("CRITICAL_PROBLEM_TEMPLATE_MISSING", "problem-60: workflow_template.ts 缺少 wf-evidence-grounding 硬规则", ["src/adapters/shared/workflow_template.ts"], "problem-60", "工作流模板未包含证据驱动规则", "添加 wf-evidence-grounding 硬规则");
+        }
+        // 静态检查：TaskContext 类型必须有证据字段
+        const typesPath = path.join(rootDir, "src/types.ts");
+        const typesContent = safeRead(typesPath);
+        if (typesContent && !typesContent.includes("evidence_matrix?:") && !typesContent.includes("evidence_gate_result?:")) {
+            hardFail("CRITICAL_PROBLEM_TASKCTX_MISSING", "problem-60: TaskContext 缺少 evidence_matrix/evidence_gate_result 字段", ["src/types.ts"], "problem-60", "TaskContext 未保存证据结果", "添加 evidence_matrix 和 evidence_gate_result 字段");
+        }
+        // 静态检查：task_context.ts 必须有 setEvidenceGroundingResult 写入方法
+        const tcPath = path.join(rootDir, "src/engine/task_context.ts");
+        const tcContent = safeRead(tcPath);
+        if (tcContent && !tcContent.includes("setEvidenceGroundingResult")) {
+            hardFail("CRITICAL_PROBLEM_NO_WRITEBACK", "problem-60: task_context.ts 缺少 setEvidenceGroundingResult 写入方法", ["src/engine/task_context.ts"], "problem-60", "TaskContext 只有类型字段没有写入方法", "添加 setEvidenceGroundingResult 方法");
+        }
+        // 静态检查：tools.ts 主链路必须调用 setEvidenceGroundingResult
+        if (toolsContent && !toolsContent.includes("setEvidenceGroundingResult")) {
+            hardFail("CRITICAL_PROBLEM_NO_RUNTIME_WRITEBACK", "problem-60: tools.ts 未调用 setEvidenceGroundingResult 写回 TaskContext", ["src/adapters/claude_code/tools.ts"], "problem-60", "主链路不写回证据结果到 TaskContext", "在 sf_expand/sf_verify/sf_deliver 中调用 setEvidenceGroundingResult");
+        }
+        // 静态检查：tools.ts 不得出现 registry.query({}).map() 无差别证据绑定
+        if (toolsContent) {
+            const toolsLines = toolsContent.split("\n");
+            for (let i = 0; i < toolsLines.length; i++) {
+                if (/registry\.query\(\{\}\)\.map/.test(toolsLines[i])) {
+                    hardFail("CRITICAL_PROBLEM_INDISCRIMINATE_BINDING", `problem-60: tools.ts:${i + 1} 使用 registry.query({}).map() 无差别绑定证据到所有 claim`, ["src/adapters/claude_code/tools.ts"], "problem-60", "所有 registry 证据被无差别绑定到所有 claim，不区分语义", "按 claim 语义筛选 evidence_ids");
+                }
+            }
+        }
+        // 行为检查：setEvidenceGroundingResult 写入后 load 能读回
+        try {
+            const tcModule = await import(path.join(rootDir, "dist/engine/task_context.js"));
+            const tmpStateDir = path.join(rootDir, ".soloforge", "state");
+            const fsModule = await import("node:fs");
+            if (!fsModule.existsSync(tmpStateDir)) {
+                fsModule.mkdirSync(tmpStateDir, { recursive: true });
+            }
+            const tmpMgr = new tcModule.TaskContextManager(tmpStateDir);
+            const tmpCtx = await tmpMgr.create("gate-evidence-writeback-test", "test");
+            const testMatrix = {
+                task_id: tmpCtx.task_id, claims: [], evidence: [],
+                conflicts: [], unsupported_claims: ["test-claim"],
+                risk_summary: { low: 0, medium: 0, high: 1, critical: 0 },
+                created_at: new Date().toISOString(),
+            };
+            const testGate = {
+                allowed: false, reason_zh: "测试", diagnostic_code: "SF-EVIDENCE-TEST",
+                unsupported_claims: ["test-claim"], unresolved_conflicts: [],
+                missing_evidence: [], risk_level: "high",
+                requires_user_confirmation: [],
+            };
+            await tmpMgr.setEvidenceGroundingResult(tmpCtx.task_id, {
+                evidence_matrix: testMatrix,
+                evidence_gate_result: testGate,
+                unsupported_claims: ["test-claim"],
+            });
+            const loaded = await tmpMgr.load(tmpCtx.task_id);
+            if (!loaded?.evidence_matrix || !loaded?.evidence_gate_result) {
+                hardFail("CRITICAL_PROBLEM_WRITEBACK_FAILED", "problem-60: setEvidenceGroundingResult 写入后 load 无法读回", ["src/engine/task_context.ts"], "problem-60", "TaskContext 写入方法不工作", "修复 setEvidenceGroundingResult 或 save/load");
+            }
+            if (loaded.evidence_gate_result?.allowed !== false) {
+                hardFail("CRITICAL_PROBLEM_WRITEBACK_CORRUPT", "problem-60: setEvidenceGroundingResult 写入的 gate result 数据损坏", ["src/engine/task_context.ts"], "problem-60", "写入的 allowed=false 被读回为 true", "检查序列化逻辑");
+            }
+            // 清理测试任务
+            try {
+                fsModule.rmSync(path.join(tmpStateDir, `${tmpCtx.task_id}.json`), { force: true });
+            }
+            catch { }
+        }
+        catch (wbErr) {
+            hardFail("CRITICAL_PROBLEM_WRITEBACK_ERROR", `problem-60: setEvidenceGroundingResult 行为检查失败: ${wbErr?.message ?? wbErr}`, ["src/engine/task_context.ts"], "problem-60", "TaskContext 写入方法不可用", "修复 import 或方法实现");
+        }
+    }
+    _info("  problem-60 证据驱动消费验证完成");
 }
 // ── 7. Batch 问题文档格式一致性 ──
 async function checkBatchIssueFormatConsistency(rootDir, hardFail, _info) {
@@ -783,13 +1135,13 @@ async function checkBatchIssueFormatConsistency(rootDir, hardFail, _info) {
         hardFail("BATCH_ISSUE_FORMAT_INCONSISTENT", "loadBatchIssueDetails 导出未找到", ["scripts/batch_issue_details.mjs"], "构建系统", "共享解析脚本导出不正确", "修复脚本");
         return;
     }
-    const expectedCounts = { 1: 19, 2: 12, 3: 9, 4: 13, 5: 5 };
+    const expectedCounts = { 1: 19, 2: 12, 3: 9, 4: 13, 5: 6, 6: 2 };
     const requiredPerProblemSections = [
         "问题背景", "用户反馈 / 触发场景", "根因分析", "解决方案", "方案细节",
         "硬规则", "非目标", "影响范围", "落地文件", "验收标准", "回归风险",
         "与其他问题的关联", "发布门禁要求",
     ];
-    for (let batch = 1; batch <= 5; batch++) {
+    for (let batch = 1; batch <= 6; batch++) {
         const details = loadBatchIssueDetails(batch, rootDir);
         if (!details.loaded) {
             hardFail("BATCH_ISSUE_FORMAT_INCONSISTENT", `Batch${batch} 问题集未加载: ${details.error}`, [`docs/SoloForge-Batch${batch}问题集.md`], `Batch${batch}`, "旧 gate 只检查文档存在，不验证是否可解析", "第 3 步统一格式");
@@ -965,6 +1317,240 @@ function findFilesRecursive(dir, ext) {
     }
     return results;
 }
+// ── Phase 10: P0/P1 知识资产 schema 完整性 ──
+async function checkKnowledgeAssetSchema(rootDir, hardFail, _info) {
+    const matter = (await import("gray-matter")).default;
+    const { validateKnowledgeAssetFrontmatter } = await import("./knowledge_asset_schema.js");
+    const knowledgeDir = path.join(rootDir, "templates", "knowledge");
+    if (!fs.existsSync(knowledgeDir))
+        return;
+    const mdFiles = findFilesRecursive(knowledgeDir, ".md");
+    for (const filePath of mdFiles) {
+        const raw = fs.readFileSync(filePath, "utf-8");
+        const { data: frontmatter } = matter(raw);
+        if (!frontmatter || Object.keys(frontmatter).length === 0)
+            continue;
+        if (!frontmatter.asset_kind)
+            continue;
+        const findings = validateKnowledgeAssetFrontmatter(frontmatter, filePath);
+        for (const f of findings) {
+            if (f.severity === "hard_fail") {
+                hardFail(`KA_SCHEMA_${f.kind}`, f.message_zh, [filePath], f.asset_id, "旧 validate-release 不独立校验知识资产 schema", "补齐缺失的 frontmatter 字段");
+            }
+        }
+    }
+}
+// ── Phase 11: engine console.log 检查 ──
+function checkEngineConsoleLog(rootDir, hardFail) {
+    const targets = ["src/engine/", "src/index.ts"];
+    for (const target of targets) {
+        const fullTarget = path.join(rootDir, target);
+        if (!fs.existsSync(fullTarget))
+            continue;
+        const isDir = fs.statSync(fullTarget).isDirectory();
+        const files = isDir
+            ? findFilesRecursive(fullTarget, ".ts")
+            : [fullTarget];
+        for (const file of files) {
+            const content = fs.readFileSync(file, "utf-8");
+            const lines = content.split("\n");
+            for (let i = 0; i < lines.length; i++) {
+                const line = lines[i];
+                if (/^\s*\/\//.test(line))
+                    continue;
+                if (/^\s*\*|^\s*\/\*/.test(line))
+                    continue;
+                if (/"console\.log"|`console\.log`|'console\.log'|console\\.log/.test(line))
+                    continue;
+                // 日志模块内部 stdout 封装允许 console.log
+                if (/logger\.ts$/.test(file) && /^\s*console\.log\(/.test(line))
+                    continue;
+                if (/console\.log\s*\(/.test(line)) {
+                    const rel = path.relative(rootDir, file);
+                    hardFail("ENGINE_CONSOLE_LOG", `${rel}:${i + 1} 使用 console.log（应使用 logger 或 console.error 写 stderr）`, [rel], "发布门禁 console 检查", "旧 gate 不检查 engine console.log", "替换为 logger 模块调用");
+                }
+            }
+        }
+    }
+}
+// ── Phase 12: 中文注释检查 ──
+function checkChineseComments(rootDir, hardFail) {
+    const srcDir = path.join(rootDir, "src");
+    if (!fs.existsSync(srcDir))
+        return;
+    const tsFiles = findFilesRecursive(srcDir, ".ts");
+    for (const file of tsFiles) {
+        const content = fs.readFileSync(file, "utf-8");
+        const lines = content.split("\n");
+        for (let i = 0; i < lines.length; i++) {
+            const line = lines[i];
+            if (!/^\s*\/\//.test(line))
+                continue;
+            if (/[一-龥]/.test(line))
+                continue;
+            // 跳过装饰分隔线
+            if (/^\s*\/\/\s*[─═\-~=*#]+\s*$/.test(line))
+                continue;
+            // 跳过工具指令
+            if (/@ts-|eslint|TODO|FIXME|NOTE|prettier|istanbul|c8/.test(line))
+                continue;
+            // 跳过机制 ID 标签
+            if (/\/\/\s*──\s*\d+\./.test(line))
+                continue;
+            if (/\/\/\s*mc-[a-z]/.test(line))
+                continue;
+            // 跳过纯代码标识符
+            if (/^\s*\/\/\s*[a-z][a-z0-9_.\/-]+\s*$/.test(line))
+                continue;
+            // 跳过大小标注
+            if (/^\s*\/\/\s*\d+\s*(MB|KB|GB|ms|min|分钟|秒)/.test(line))
+                continue;
+            // 跳过技术术语注释
+            if (/^\s*\/\/\s*[a-z_]+\.[a-z_]+/.test(line))
+                continue;
+            // 检查连续 4+ 字母
+            if (/[a-zA-Z]{4,}/.test(line)) {
+                const rel = path.relative(rootDir, file);
+                hardFail("ENGLISH_COMMENT", `${rel}:${i + 1}: ${line.trim()}（应使用中文注释）`, [rel], "中文注释检查", "旧 gate 不检查中文注释", "将英文注释改为中文");
+            }
+        }
+    }
+}
+// ── 13. 第五批文档↔roadmap↔scenario 一致性 ──
+async function checkLastBatchConsistency(rootDir, hardFail, _info) {
+    // 动态导入避免循环依赖
+    const roadmapPath = path.join(rootDir, "dist", "engine", "implementation_roadmap_registry.js");
+    const scenarioPath = path.join(rootDir, "dist", "engine", "release_gate_scenario_registry.js");
+    let listAllProblems;
+    let listBatches;
+    let RELEASE_GATE_SCENARIOS;
+    let runAllReleaseGateScenarios;
+    try {
+        const roadmap = await import(roadmapPath);
+        listAllProblems = roadmap.listAllProblems;
+        listBatches = roadmap.listBatches;
+    }
+    catch {
+        hardFail("LAST_BATCH_CONSISTENCY", "无法导入 implementation_roadmap_registry", ["src/engine/implementation_roadmap_registry.ts"], "末批一致性", "旧 gate 不检查 roadmap↔scenario 一致性", "先 build");
+        return;
+    }
+    try {
+        const scenario = await import(scenarioPath);
+        RELEASE_GATE_SCENARIOS = scenario.RELEASE_GATE_SCENARIOS;
+        runAllReleaseGateScenarios = scenario.runAllReleaseGateScenarios;
+    }
+    catch {
+        hardFail("LAST_BATCH_CONSISTENCY", "无法导入 release_gate_scenario_registry", ["src/engine/release_gate_scenario_registry.ts"], "末批一致性", "旧 gate 不检查 roadmap↔scenario 一致性", "先 build");
+        return;
+    }
+    // 1. 末批必须存在且包含 problem-55 到 problem-60
+    const batches = listBatches();
+    const lastBatch = batches.find((b) => b.batch_id === "batch-5");
+    if (!lastBatch) {
+        hardFail("LAST_BATCH_CONSISTENCY", "implementation_roadmap_registry 缺少 batch-5", ["src/engine/implementation_roadmap_registry.ts"], "末批一致性", "旧 gate 不检查末批是否存在于 roadmap", "新增 batch-5 并登记 problem-55 到 problem-60");
+        return;
+    }
+    const expectedLastProblems = ["problem-55", "problem-56", "problem-57", "problem-58", "problem-59", "problem-60"];
+    const missing = expectedLastProblems.filter((pid) => !lastBatch.included_problem_ids.includes(pid));
+    if (missing.length > 0) {
+        hardFail("LAST_BATCH_CONSISTENCY", `batch-5 缺少问题: ${missing.join(", ")}`, ["src/engine/implementation_roadmap_registry.ts"], "末批一致性", "旧 gate 不检查末批问题归属完整性", `将 ${missing.join(", ")} 加入 batch-5`);
+    }
+    // 2. problem-58 和 problem-60 不得在 batch-4
+    const prevBatch = batches.find((b) => b.batch_id === "batch-4");
+    if (prevBatch) {
+        const misattrib = ["problem-58", "problem-60"].filter((pid) => prevBatch.included_problem_ids.includes(pid));
+        if (misattrib.length > 0) {
+            hardFail("LAST_BATCH_CONSISTENCY", `problem-58/60 错误归属到 batch-4: ${misattrib.join(", ")}`, ["src/engine/implementation_roadmap_registry.ts"], "末批一致性", "旧 gate 不检查问题是否被错误归入其他批次", "将 problem-58/60 从 batch-4 迁到 batch-5");
+        }
+    }
+    // 3. 场景矩阵必须覆盖问题五十五到问题六十
+    const scenarios = RELEASE_GATE_SCENARIOS;
+    const allCoveredIssues = scenarios.flatMap((s) => s.covered_issues);
+    const expectedIssueLabels = ["问题五十五", "问题五十六", "问题五十七", "问题五十八", "问题五十九", "问题六十"];
+    const uncovered = expectedIssueLabels.filter((label) => !allCoveredIssues.includes(label));
+    if (uncovered.length > 0) {
+        hardFail("LAST_BATCH_CONSISTENCY", `场景矩阵未覆盖: ${uncovered.join(", ")}`, ["src/engine/release_gate_scenario_registry.ts"], "末批一致性", "旧 gate 不检查场景矩阵是否覆盖所有末批问题", `为 ${uncovered.join(", ")} 新增场景`);
+    }
+    // 4. 场景矩阵必须全部通过
+    const results = runAllReleaseGateScenarios();
+    const failedScenarios = results.filter((r) => !r.passed);
+    if (failedScenarios.length > 0) {
+        hardFail("LAST_BATCH_CONSISTENCY", `场景矩阵未全部通过: ${failedScenarios.map((r) => `${r.scenario_id}: ${r.failures.join("; ")}`).join(", ")}`, ["src/engine/release_gate_scenario_registry.ts"], "末批一致性", "旧 gate 不运行场景矩阵验证", "修复失败场景");
+    }
+    _info("  第五批一致性校验通过");
+}
+// ── 14. 依赖漏洞扫描 ──
+function checkDependencyAudit(rootDir, hardFail, _info) {
+    const reportPath = path.join(rootDir, ".soloforge", "advisory-report.json");
+    if (!fs.existsSync(reportPath)) {
+        hardFail("DEPENDENCY_AUDIT", "未找到依赖漏洞扫描报告 (.soloforge/advisory-report.json)", ["package.json"], "依赖健康", "旧 gate 不检查依赖漏洞", "运行 npm run audit-deps");
+        return;
+    }
+    try {
+        const report = JSON.parse(fs.readFileSync(reportPath, "utf-8"));
+        if (!report.timestamp) {
+            hardFail("DEPENDENCY_AUDIT", "漏洞扫描报告缺少时间戳", ["package.json"], "依赖健康", "旧 gate 不验证报告完整性", "重新运行 npm run audit-deps");
+            return;
+        }
+        // 报告过期检查: 超过 24 小时视为过期
+        const reportAge = Date.now() - new Date(report.timestamp).getTime();
+        const maxAge = 24 * 60 * 60 * 1000;
+        if (reportAge > maxAge) {
+            hardFail("DEPENDENCY_AUDIT", `漏洞扫描报告已过期 (生成于 ${report.timestamp})`, ["package.json"], "依赖健康", "旧 gate 不检查报告时效", "重新运行 npm run audit-deps");
+            return;
+        }
+        const blocked = report.blocked || [];
+        if (blocked.length > 0) {
+            const details = blocked.map((b) => `[${b.severity}] ${b.package}: ${b.title}`).join("; ");
+            hardFail("DEPENDENCY_AUDIT", `发现 ${blocked.length} 个阻断级漏洞: ${details}`, ["package.json"], "依赖健康", "旧 gate 不扫描依赖漏洞", "npm audit fix 或升级依赖");
+            return;
+        }
+        const total = report.vulnerability_summary?.total || 0;
+        _info(`  依赖漏洞扫描通过: ${total} 个已知漏洞（无阻断级）`);
+    }
+    catch {
+        hardFail("DEPENDENCY_AUDIT", "漏洞扫描报告格式无效", ["package.json"], "依赖健康", "旧 gate 不验证报告格式", "删除 .soloforge/advisory-report.json 并重新运行 npm run audit-deps");
+    }
+}
+// ── 15. Batch6 架构决策与设计产物真实消费 ──
+async function checkBatch6DesignPath(rootDir, hardFail, _info) {
+    const toolsText = safeRead(path.join(rootDir, "src", "adapters", "claude_code", "tools.ts")) ?? "";
+    const cliText = safeRead(path.join(rootDir, "src", "bin", "soloforge.ts")) ?? "";
+    const workflowText = safeRead(path.join(rootDir, "src", "adapters", "shared", "workflow_template.ts")) ?? "";
+    if (!toolsText.includes("checkArchitectureDecisionWorkshopGate({") ||
+        !toolsText.includes("projectContext: detectedArchitectureContext")) {
+        hardFail("BATCH6_MAINLINE_MISSING", "问题六十一未接入 sf_expand 架构研讨阻断路径", ["src/adapters/claude_code/tools.ts"], "problem-61", "仅有合同或模板不能证明主链路消费", "在 sf_expand 真实路由调用架构研讨门");
+    }
+    if (!toolsText.includes("verifyDesignArtifactPack(projectPath, designPack)") ||
+        !toolsText.includes("ctx.design_artifact_pack.status !== \"implementation_ready\"") ||
+        !toolsText.includes("checkDesignArtifactWriteGate({ ctx, toolName: name, sideEffects: effectiveSideEffects })")) {
+        hardFail("BATCH6_MAINLINE_MISSING", "问题六十二未同时接入真实 sf_verify、实现写入与 sf_deliver 就绪阻断", ["src/adapters/claude_code/tools.ts"], "problem-62", "仅有文档校验函数不能阻断用户编码/交付", "在验证、写入与交付路径消费设计产物包状态");
+    }
+    if (!cliText.includes("cmdAuditDesignArtifacts") ||
+        !cliText.includes("cmdUpgradeDesignArtifacts") ||
+        !cliText.includes("currentTask?.design_artifact_pack")) {
+        hardFail("BATCH6_USER_CLI_MISSING", "问题六十二缺少用户 CLI 审计/升级或 Claude Code 写入 hook 阻断路径", ["src/bin/soloforge.ts"], "problem-62", "MCP 内部调用不能覆盖用户现有文档升级与直接 Edit/Write 路径", "接入 audit/upgrade CLI 与 check-write 设计产物门");
+    }
+    if (!workflowText.includes("wf-architecture-workshop-first") || !workflowText.includes("wf-design-artifact-pack")) {
+        hardFail("BATCH6_USER_INJECTION_MISSING", "用户项目工作流模板未注入 Batch6 薄硬协议", ["src/adapters/shared/workflow_template.ts"], "problem-61/problem-62", "运行时有门但用户不可预期会造成体验断裂", "向 workflow template 注入硬规则");
+    }
+    try {
+        const workshop = await import(path.join(rootDir, "dist", "engine", "architecture_decision_workshop.js"));
+        const designPack = await import(path.join(rootDir, "dist", "engine", "design_artifact_pack.js"));
+        const draft = workshop.createArchitectureDecisionWorkshop("release-batch6", "new_system");
+        if (workshop.evaluateArchitectureDecisionWorkshop(draft).allowed) {
+            hardFail("BATCH6_BEHAVIOR_FALSE_PASS", "问题六十一未确认六域的草稿错误放行", ["src/engine/architecture_decision_workshop.ts"], "problem-61", "必须有负向行为证据", "修复研讨生成门");
+        }
+        const missingPackResult = designPack.verifyDesignArtifactPack(rootDir, designPack.createDesignArtifactPack("release-batch6"));
+        if (missingPackResult.passed) {
+            hardFail("BATCH6_BEHAVIOR_FALSE_PASS", "问题六十二缺少用户项目设计产物时错误放行", ["src/engine/design_artifact_pack.ts"], "problem-62", "必须读取真实资产并阻断缺失", "修复设计产物复验门");
+        }
+    }
+    catch (error) {
+        hardFail("BATCH6_MODULE_LOAD_FAILED", `无法执行 Batch6 行为复验: ${error?.message ?? error}`, ["src/engine/architecture_decision_workshop.ts", "src/engine/design_artifact_pack.ts"], "Batch6", "模块不可执行", "修复构建或导出");
+    }
+    _info("  Batch6 架构决策与设计产物真实消费复验完成");
+}
 // ── 主入口 ──
 export async function runReleaseReadinessGate(rootDir) {
     const hardFails = [];
@@ -1025,12 +1611,36 @@ export async function runReleaseReadinessGate(rootDir) {
     endPhase("Batch 问题文档格式一致性");
     // 8
     beginPhase("关键问题消费验证");
-    checkCriticalProblemConsumption(rootDir, hardFail, _info);
+    await checkCriticalProblemConsumption(rootDir, hardFail, _info);
     endPhase("关键问题消费验证");
     // 9
     beginPhase("机制身份一致性");
     await checkMechanismIdentityConsistency(rootDir, hardFail, _info);
     endPhase("机制身份一致性");
+    // 10: P0/P1 知识资产 schema 完整性
+    beginPhase("P0/P1 知识资产 schema");
+    await checkKnowledgeAssetSchema(rootDir, hardFail, _info);
+    endPhase("P0/P1 知识资产 schema");
+    // 11: console.log 检查
+    beginPhase("engine console.log 检查");
+    checkEngineConsoleLog(rootDir, hardFail);
+    endPhase("engine console.log 检查");
+    // 12: 中文注释检查
+    beginPhase("中文注释检查");
+    checkChineseComments(rootDir, hardFail);
+    endPhase("中文注释检查");
+    // 13: 第五批文档↔roadmap↔scenario 一致性
+    beginPhase("第五批一致性校验");
+    await checkLastBatchConsistency(rootDir, hardFail, _info);
+    endPhase("第五批一致性校验");
+    // 14: 依赖漏洞扫描（在 console.error 恢复前执行以避免干扰）
+    beginPhase("依赖漏洞扫描");
+    checkDependencyAudit(rootDir, hardFail, _info);
+    endPhase("依赖漏洞扫描");
+    // 15: Batch6 新增真实用户路径
+    beginPhase("Batch6 架构决策与设计产物真实消费");
+    await checkBatch6DesignPath(rootDir, hardFail, _info);
+    endPhase("Batch6 架构决策与设计产物真实消费");
     // 恢复 console.error 和日志器
     console.error = origConsoleError;
     resetLogger();