QWEN.html

<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head>
  <meta charset="utf-8" />
  <meta name="generator" content="pandoc" />
  <meta name="viewport" content="width=device-width, initial-scale=1.0, user-scalable=yes" />
  <title>QWEN</title>
  <style>

html {
color: #1a1a1a;
background-color: #fdfdfd;
}
body {
margin: 0 auto;
max-width: 36em;
padding-left: 50px;
padding-right: 50px;
padding-top: 50px;
padding-bottom: 50px;
hyphens: auto;
overflow-wrap: break-word;
text-rendering: optimizeLegibility;
font-kerning: normal;
}
@media (max-width: 600px) {
body {
font-size: 0.9em;
padding: 12px;
}
h1 {
font-size: 1.8em;
}
}
@media print {
html {
background-color: white;
}
body {
background-color: transparent;
color: black;
font-size: 12pt;
}
p, h2, h3 {
orphans: 3;
widows: 3;
}
h2, h3, h4 {
page-break-after: avoid;
}
}
p {
margin: 1em 0;
}
a {
color: #1a1a1a;
}
a:visited {
color: #1a1a1a;
}
img {
max-width: 100%;
}
svg {
height: auto;
max-width: 100%;
}
h1, h2, h3, h4, h5, h6 {
margin-top: 1.4em;
}
h5, h6 {
font-size: 1em;
font-style: italic;
}
h6 {
font-weight: normal;
}
ol, ul {
padding-left: 1.7em;
margin-top: 1em;
}
li > ol, li > ul {
margin-top: 0;
}
blockquote {
margin: 1em 0 1em 1.7em;
padding-left: 1em;
border-left: 2px solid #e6e6e6;
color: #606060;
}
code {
font-family: Menlo, Monaco, Consolas, 'Lucida Console', monospace;
font-size: 85%;
margin: 0;
hyphens: manual;
}
pre {
margin: 1em 0;
overflow: auto;
}
pre code {
padding: 0;
overflow: visible;
overflow-wrap: normal;
}
.sourceCode {
background-color: transparent;
overflow: visible;
}
hr {
border: none;
border-top: 1px solid #1a1a1a;
height: 1px;
margin: 1em 0;
}
table {
margin: 1em 0;
border-collapse: collapse;
width: 100%;
overflow-x: auto;
display: block;
font-variant-numeric: lining-nums tabular-nums;
}
table caption {
margin-bottom: 0.75em;
}
tbody {
margin-top: 0.5em;
border-top: 1px solid #1a1a1a;
border-bottom: 1px solid #1a1a1a;
}
th {
border-top: 1px solid #1a1a1a;
padding: 0.25em 0.5em 0.25em 0.5em;
}
td {
padding: 0.125em 0.5em 0.25em 0.5em;
}
header {
margin-bottom: 4em;
text-align: center;
}
#TOC li {
list-style: none;
}
#TOC ul {
padding-left: 1.3em;
}
#TOC > ul {
padding-left: 0;
}
#TOC a:not(:hover) {
text-decoration: none;
}
code{white-space: pre-wrap;}
span.smallcaps{font-variant: small-caps;}
div.columns{display: flex; gap: min(4vw, 1.5em);}
div.column{flex: auto; overflow-x: auto;}
div.hanging-indent{margin-left: 1.5em; text-indent: -1.5em;}

ul.task-list[class]{list-style: none;}
ul.task-list li input[type="checkbox"] {
font-size: inherit;
width: 0.8em;
margin: 0 0.8em 0.2em -1.6em;
vertical-align: middle;
}
.display.math{display: block; text-align: center; margin: 0.5rem auto;}
</style>
</head>
<body>
<header id="title-block-header">
<h1 class="title">QWEN</h1>
</header>
<h1 id="qwenmd--helixqa-docprocessor">QWEN.md — HelixQA
DocProcessor</h1>
<table>
<thead>
<tr>
<th>Field</th>
<th>Value</th>
</tr>
</thead>
<tbody>
<tr>
<td>Revision</td>
<td>1</td>
</tr>
<tr>
<td>Created</td>
<td>2026-05-23</td>
</tr>
<tr>
<td>Last modified</td>
<td>2026-05-23</td>
</tr>
<tr>
<td>Status</td>
<td>active</td>
</tr>
<tr>
<td>Status summary</td>
<td>Created per Phase 39.IT (User mandate 2026-05-23) — propagation of
QWEN.md across the consumer fleet, mirroring CLAUDE.md + AGENTS.md per
§11.4.35 canonical-root inheritance.</td>
</tr>
<tr>
<td>Issues</td>
<td>none</td>
</tr>
<tr>
<td>Continuation</td>
<td>—</td>
</tr>
</tbody>
</table>
<h2 id="inherited-from-constitutionqwenmd">INHERITED FROM
constitution/QWEN.md</h2>
<p>All rules in <code>constitution/QWEN.md</code> (and the
<code>constitution/Constitution.md</code> it references) apply
unconditionally. This module&#39;s rules below extend them — they do NOT
weaken any universal clause. When this file disagrees with the
constitution submodule, the constitution wins. Locate the constitution
submodule from any arbitrary nested depth using its
<code>find_constitution.sh</code> helper.</p>
<p>The universal anti-bluff covenant (§11.4), no-guessing mandate
(§11.4.6), credentials-handling mandate (§11.4.10), host-session safety
(§12 + §12.6 + §12.10), and data safety (§9) all live in
<code>constitution/Constitution.md</code>. Read it before working on any
non-trivial change.</p>
<p>@constitution/QWEN.md</p>
<p>Canonical reference: <a href="https://github.com/HelixDevelopment/HelixConstitution">https://github.com/HelixDevelopment/HelixConstitution</a></p>
<h2 id="how-this-file-relates-to-claudemd--agentsmd">How this file
relates to CLAUDE.md + AGENTS.md</h2>
<p>Per §11.4.35 canonical-root inheritance clarity:</p>
<ul>
<li><code>constitution/QWEN.md</code> is the universal canonical root
for the Qwen Code CLI.</li>
<li>This file is the consumer-side extension for this submodule,
carrying only the inheritance pointer + the §11.4 covenant anchors + a
brief module summary.</li>
<li>The full module ruleset lives in this submodule&#39;s sibling
<code>CLAUDE.md</code>. Qwen Code agents MUST read CLAUDE.md before
performing any work; this QWEN.md is the Qwen-specific entry point that
ensures Qwen reads the inheritance pointer + anti-bluff covenant on
every session.</li>
</ul>
<h2 id="module-summary">Module summary</h2>
<p>Document-processing pipeline for HelixQA. Decomposes specifications,
requirements, and reference documentation into structured forms
consumable by Challenges and the LLM orchestration layer.</p>
<p>For full module context (build steps, integration points,
host-session safety, submodule-specific commit/push discipline) read
this directory&#39;s <code>CLAUDE.md</code> and <code>AGENTS.md</code>.</p>
<h2 id="mandatory-anti-bluff-covenant--end-user-quality-guarantee-user-mandate-2026-04-28">MANDATORY
ANTI-BLUFF COVENANT — END-USER QUALITY GUARANTEE (User mandate,
2026-04-28)</h2>
<p><strong>Forensic anchor — direct user mandate
(verbatim):</strong></p>
<blockquote>
<p>&quot;We had been in position that all tests do execute with success and
all Challenges as well, but in reality the most of the features does not
work and can&#39;t be used! This MUST NOT be the case and execution of tests
and Challenges MUST guarantee the quality, the completion and full
usability by end users of the product!&quot;</p>
</blockquote>
<p>This is the historical origin of the project&#39;s anti-bluff covenant.
Every test, every Challenge, every gate, every mutation pair exists to
make the failure mode (PASS on broken-for-end-user feature) mechanically
impossible.</p>
<p><strong>Operative rule:</strong> the bar for shipping is
<strong>not</strong> &quot;tests pass&quot; but <strong>&quot;users can use the
feature.&quot;</strong> Every PASS in this codebase MUST carry positive
evidence captured during execution that the feature works for the end
user. Metadata-only PASS, configuration-only PASS, &quot;absence-of-error&quot;
PASS, and grep-based PASS without runtime evidence are all critical
defects regardless of how green the summary line looks.</p>
<p><strong>Tests AND Challenges (HelixQA) are bound equally</strong> — a
Challenge that scores PASS on a non-functional feature is the same class
of defect as a unit test that does. Both must produce positive end-user
evidence; both are subject to the §8.1 five-constraint rule and §11
captured-evidence requirement.</p>
<p><strong>Canonical authority:</strong> constitution submodule <a href="../../../../constitution/Constitution.md"><code>Constitution.md</code></a>
§11.4 (this end-user-quality-guarantee forensic anchor — propagation
requirement enforced by pre-build gate
<code>CM-COVENANT-114-QWEN-PROPAGATION</code>).</p>
<p>Non-compliance is a release blocker regardless of context.</p>
<h2 id="anti-bluff-manner-clause-verbatim-operator-mandate--hrd-158-covenant-cascade">Anti-bluff-manner
clause (verbatim operator mandate — HRD-158 covenant cascade)</h2>
<p><strong>Forensic anchor — verbatim operator mandate:</strong></p>
<blockquote>
<p>&quot;IMPORTANT: Make sure that all existing tests and Challenges do work
in anti-bluff manner — they MUST confirm that all tested codebase really
works as expected! execution of tests and Challenges MUST guarantee the
quality, the completition and full usability by end users of the
product! This MUST BE part of Constitution of our project, its CLAUDE.MD
and AGENTS.MD if it is not there already, and to be applied to all
Submodules&#39;s Constitution, CLAUDE.MD and AGENTS.MD as well.&quot;</p>
</blockquote>
<p>This clause is the leading verbatim operator anti-bluff mandate,
restated here for cross-file consistency with this module&#39;s CLAUDE.md /
AGENTS.md / CONSTITUTION.md. It does NOT weaken any inherited rule.
Canonical authority: constitution submodule <code>Constitution.md</code>
§11.4. Tests AND HelixQA Challenges are bound equally.</p>
<h2 id="114-extension-anchors-carried-by-this-file">§11.4 extension
anchors carried by this file</h2>
<p>The following extension anchors apply unconditionally to every change
landed in this submodule. Their full text lives in the sibling CLAUDE.md
and in the canonical <code>constitution/Constitution.md</code>. Listed
here so Qwen Code agents can locate them by literal string match:</p>
<ul>
<li><strong>§11.4.1 extension (Phase 33, 2026-05-05)</strong> —
FAIL-bluffs equally forbidden. A test that crashes for a script-internal
reason and produces a FAIL exit code is just as misleading as a
PASS-bluff. Fix at source layer, never at call sites.</li>
<li><strong>§11.4.2 extension (Phase 34, 2026-05-06)</strong> —
Recorded-evidence requirement. Every PASS for a user-visible feature
MUST be cross-checked by the analyzer against the dual-display recording
+ action timeline.</li>
<li><strong>§11.4.3 extension (Phase 34, 2026-05-06)</strong> —
Per-device-topology test dispatch. Topology-touching tests MUST detect
topology at entry and dispatch the topology-appropriate variant.</li>
<li><strong>§11.4.4 extension (User mandate, 2026-05-06)</strong> —
Test-interrupt-on-discovery + retest-from-clean-baseline. The moment any
defect is re-discovered or newly identified mid-cycle, STOP and fix at
root cause + four-layer coverage + full rebuild + reflash + retest.</li>
<li><strong>§11.4.4 expansion (User mandate, 2026-05-06)</strong> —
Systematic debugging via superpowers skills + four-layer test coverage
per fix (pre-build gate + post-build gate + post-flash on-device test +
HelixQA Challenge + paired mutation) + documentation update + no-bluff
certification per cycle.</li>
<li><strong>§11.4.5 — Audio + video quality analysis comprehensiveness
(User mandate, 2026-05-07)</strong> — Audio: presence + channel count +
sample rate + glitch census + coexistence-artifact census. Video:
presence + routing target + frame health + obstruction census +
resolution + codec. Challenges bound equally.</li>
<li><strong>§11.4.6 — No-guessing mandate (User mandate,
2026-05-08)</strong> — Forbidden vocabulary: <code>likely</code>,
<code>probably</code>, <code>maybe</code>, <code>might</code>,
<code>possibly</code>, <code>presumably</code>, <code>seems</code>,
<code>appears to</code>. Prove with captured evidence OR mark
<code>UNCONFIRMED:</code> / <code>UNKNOWN:</code> /
<code>PENDING_FORENSICS:</code>.</li>
<li><strong>§11.4.7 — Demotion-evidence rule (Phase 38.X+2 amendment,
2026-05-11)</strong> — Demotion from FAIL to lower-severity requires
positive evidence captured under the same conditions that originally
exposed the defect.</li>
<li><strong>§11.4.8 — Deep-web-research-before-implementation mandate
(User mandate, 2026-05-12)</strong> — Cite external source URL OR
literal &quot;NO external solution found — original work&quot; in every
non-trivial fix.</li>
<li><strong>§11.4.9 — Batch-source-fixes-before-rebuild mandate (User
mandate, 2026-05-12)</strong> — All source-side fixes that DO NOT
require runtime on-device validation MUST be landed BEFORE the next
firmware rebuild.</li>
<li><strong>§11.4.10 — Credentials-handling mandate (User mandate,
2026-05-12)</strong> — Credentials NEVER live in tracked files.
<code>.env</code> git-ignored project-wide. Tests load from
<code>scripts/testing/secrets/</code> (chmod 600).</li>
<li><strong>§11.4.13 — Out-of-band sink-side captured-evidence mandate
(User mandate, 2026-05-13)</strong> — When an HDMI sink with
network-accessible introspection API is present, every audio test MUST
consume the sink&#39;s report as captured-evidence.</li>
<li><strong>§11.4.14 — Test playback cleanup mandate (User mandate,
2026-05-13)</strong> — Every test that issues <code>am start</code> /
<code>cmd media_session play</code> MUST issue matching
<code>am force-stop</code> / <code>KEYCODE_MEDIA_STOP</code> + EXIT
trap.</li>
<li><strong>§11.4.15 — Item-status tracking mandate (User mandate,
2026-05-13)</strong> — Every active item in <code>Issues.md</code>
carries a <code>**Status:**</code> line.</li>
<li><strong>§11.4.16 — Item-type tracking mandate (User mandate,
2026-05-14)</strong> — Every active item in <code>Issues.md</code>
carries a <code>**Type:**</code> line with one of
<code>{Bug | Feature | Task}</code>.</li>
<li><strong>§11.4.40 — Full-suite retest before release tag mandate
(User mandate, 2026-05-17)</strong> — Release tag MUST NOT be created
until a complete retest with ALL existing tests has been executed on a
clean baseline.</li>
<li><strong>§11.4.41 — Pre-Force-Push Merge-First Mandate (User mandate,
2026-05-17)</strong> — Every force-push MUST be preceded by a mechanical
4-step merge-first pipeline (fetch + integrate + audit + push with
<code>--force-with-lease</code>).</li>
</ul>
<h2 id="mandatory-126-memory-budget-ceiling--60-maximum-user-mandate-2026-04-30">MANDATORY
§12.6 MEMORY-BUDGET CEILING — 60% MAXIMUM (User mandate,
2026-04-30)</h2>
<p>Project procedures MUST NOT use more than <strong>60% of total system
RAM</strong> (<code>HOST_SAFETY_MAX_MEM_PCT</code>). The remaining 40%
is reserved for the operator&#39;s other workloads. There is NO
operator-facing override flag.</p>
<p><code>scripts/build.sh</code> wraps <code>m -j</code> in
<code>bounded_run</code> so only the bounded scope is OOM-killed if the
build&#39;s collective RSS exceeds the budget —
<code>user@&lt;uid&gt;.service</code> stays alive.</p>
<p><strong>Canonical authority:</strong> constitution submodule <a href="../../../../constitution/Constitution.md"><code>Constitution.md</code></a>
§12.6.</p>
<p>Non-compliance is a release blocker regardless of context.</p>
<h2 id="companion-documents">Companion documents</h2>
<table>
<thead>
<tr>
<th>File</th>
<th>Role</th>
</tr>
</thead>
<tbody>
<tr>
<td><code>CLAUDE.md</code></td>
<td>Full module ruleset (Claude Code primary context)</td>
</tr>
<tr>
<td><code>AGENTS.md</code></td>
<td>Cross-agent mirror (OpenCode, Cursor, Aider, generic AI
tooling)</td>
</tr>
<tr>
<td><code>QWEN.md</code> (this file)</td>
<td>Qwen Code CLI entry point</td>
</tr>
<tr>
<td><code>../../../../constitution/Constitution.md</code></td>
<td>Universal canonical rules</td>
</tr>
<tr>
<td><code>../../../../constitution/QWEN.md</code></td>
<td>Universal Qwen entry point</td>
</tr>
</tbody>
</table>
<h2 id="11469--universal-sink-side-positive-evidence-taxonomy--mechanical-enforcement-cascaded-from-constitution-submodule-11469">§11.4.69
— Universal Sink-Side Positive-Evidence Taxonomy + Mechanical
Enforcement (cascaded from constitution submodule §11.4.69)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-20): <em>&quot;THIS MUST HAPPEN NEVER
AGAIN!!! We MUST HAVE this all working! Not just for audio but for every
single piece of the System!!! Proper full automation when executed with
success MUST MEAN that manual testing will be as much positive at least
regarding the success results! ... Solution MUST BE universal, generic
that solves working flows for all System components and for all future
and all existing projects! ... Everything we do MUST BE validated and
verified with rock-solid proofs and anti-bluff policy enforcement and
fulfillment!&quot;</em></p>
</blockquote>
<p>Universal generalisation of §11.4.68 (audio-specific) across every
user-visible feature class. Every user-visible feature MUST map to one
entry in the closed-set §11.4.69 sink-side evidence taxonomy
(<code>audio_output</code>, <code>audio_input</code>,
<code>video_display</code>, <code>network_throughput</code>,
<code>network_connectivity</code>, <code>bluetooth_a2dp</code>,
<code>bluetooth_pair</code>, <code>touch_input</code>,
<code>sensor</code>, <code>gpu_render</code>, <code>storage_read</code>,
<code>storage_write</code>, <code>mediacodec_decode</code>,
<code>mediacodec_encode</code>, <code>miracast</code>,
<code>cast</code>, <code>boot_service</code>,
<code>package_install</code>, <code>permission_grant</code>,
<code>wifi_link</code>, <code>wifi_throughput</code>,
<code>ethernet_link</code>, <code>display_topology</code>,
<code>drm_playback</code>, <code>subtitle_render</code> — open to
additions, never contraction). Every PASS for a feature in the taxonomy
MUST cite a captured-evidence artefact path matching the required
evidence shape. New helper contracts (additive during grace, mandatory
after 2026-06-19):
<code>ab_pass_with_evidence &lt;description&gt; &lt;evidence_path&gt;</code>
(verifies path exists + non-empty),
<code>ab_skip_with_reason &lt;description&gt; &lt;closed-set-reason&gt;</code>
(reasons: <code>geo_restricted</code>, <code>operator_attended</code>,
<code>hardware_not_present</code>, <code>topology_unsupported</code>,
<code>network_unreachable_external</code>,
<code>feature_disabled_by_config</code>; forbids
<code>network_unreachable_external</code> for any taxonomy feature with
a sink-side probe); bare <code>ab_pass</code> deprecated (WARN
pre-grace, FAIL post-grace). Three pre-build gates + paired §1.1
mutations: <code>CM-SINK-EVIDENCE-PER-FEATURE</code>,
<code>CM-NO-FAIL-OPEN-SKIP</code>,
<code>CM-AB-PASS-WITH-EVIDENCE-EVERYWHERE</code>. No escape hatch — no
<code>--skip-evidence</code>, <code>--config-only-pass</code>,
<code>--allow-fail-open-skip</code>,
<code>--legacy-ab-pass-permitted</code> flag.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.69</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-69-PROPAGATION</code> enforces the anchor literal
across the consumer fleet; paired mutation strips the literal → gate
FAILs. Severity-equivalent to a §11.4 PASS-bluff at the
sink-side-evidence layer. <strong>Canonical authority:</strong>
constitution submodule <code>Constitution.md</code> §11.4.69 for the
full mandate.</p>
<h2 id="11475--mechanical-enforcement-without-exception-cascaded-from-constitution-submodule-11475">§11.4.75
— Mechanical Enforcement Without Exception (cascaded from constitution
submodule §11.4.75)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-20): <em>&quot;Why do these violations
still happen!? This is a serious problem! We cannot rely on stability
nor consistency if we cannot respect our Constitution, mandatory rules
and constraints! Is there a way to make this always respected, followed
and applied without exception fully and unconditionally!? WE MUST HAVE
THIS WORKING FLAWLESSLY!!! Do investigate the root causes of such
problems! Once all problems are identified WE MUST apply proper
mechanisms for this not to happen NEVER EVER AGAIN!&quot;</em></p>
</blockquote>
<p>The §11.4 covenant historically relied on agent + operator vigilance;
three 2026-05-19→20 forensic incidents proved that late-binding
enforcement fires hours-to-days after the violator commit reaches every
remote. §11.4.75 closes the gap with FIVE independent mechanical
enforcement layers — bypassing any single layer does not bypass the
discipline: (1) local <code>pre-commit</code> git hook (refuses staged
<code>.md</code> lacking sibling <code>.html</code>+<code>.pdf</code>);
(2) <code>commit_all.sh</code> integration
(<code>_constitution_sibling_check</code> +
auto-<code>sync_all_markdown_exports.sh</code> self-repair); (3) local
<code>pre-push</code> git hook (re-runs siblings + propagation-gate
subset); (4) <code>post-commit</code> auto-repair hook (auto-generates
orphan-<code>.md</code> siblings, idempotent + recursion-guarded); (5)
local-only final-gate ritual (remote CI DISABLED per User mandate —
operator runs <code>pre_build_verification.sh</code> + meta-test before
every tag per §11.4.40). Helper contracts:
<code>scripts/install_git_hooks.sh</code>,
<code>scripts/git_hooks/{pre-commit,pre-push,post-commit,commit-msg}</code>,
<code>_constitution_sibling_check</code>. The <code>commit-msg</code>
hook enforces a <code>Bypass-rationale: &lt;reason&gt;</code> footer
when <code>--no-verify</code> is detected;
<code>docs/audit/bypass_events.md</code> accumulates the audit trail.
Five gates with paired §1.1 mutations:
<code>CM-COVENANT-114-75-PROPAGATION</code>,
<code>CM-GIT-HOOKS-INSTALL-SCRIPT</code>,
<code>CM-GIT-HOOKS-SOURCE-DIR</code>,
<code>CM-COMMIT-ALL-SIBLING-CHECK</code>,
<code>CM-CI-WORKFLOW-PRESENT</code>. No escape hatch — no
<code>--skip-hooks</code>, <code>--bypass-enforcement</code>,
<code>--allow-orphan-md</code>, <code>--ci-not-applicable</code>,
<code>--mechanical-enforcement-not-needed</code> flag.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.75</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-75-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Severity-equivalent to a §11.4 PASS-bluff at the
enforcement layer. <strong>Canonical authority:</strong> constitution
submodule <code>Constitution.md</code> §11.4.75 for the full
mandate.</p>
<h2 id="11476--containers-submodule-mandate-cascaded-from-constitution-submodule-11476">§11.4.76
— Containers-Submodule Mandate (cascaded from constitution submodule
§11.4.76)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-20): <em>&quot;For any work or requirements
of running services or codebase inside the Containers (Docker / Podman /
Qemy / Emulators, and so on) we MUST USE / INCORPORATE the Containers
Submodule properly: <a href="https://github.com/vasic-digital/containers">https://github.com/vasic-digital/containers</a>
(<a href="mailto:git@github.com">git@github.com</a>:vasic-digital/containers.git).
Containers Submodule contains all means for us to Containerize our code
and services! If any feature or Containing System is missing or not
supported we MUST EXTEND IT properly like we do all of our projects! No
bluff work is allowed of any kind!&quot;</em></p>
</blockquote>
<p>For ANY containerized workload (Docker / Podman / Qemu / Kubernetes /
container-backed emulators), every consuming project MUST: (1) install
<code>vasic-digital/containers</code>
(<code>digital.vasic.containers</code>) as a Git submodule; (2) consume
via <code>replace</code> directive during development + pinned commit
SHAs in production; (3) boot infra on-demand via <code>pkg/boot</code> +
<code>pkg/compose</code> + <code>pkg/health</code> so operators are
never required to start <code>podman machine</code> /
<code>docker compose up</code> manually — the boot is part of the test
entry point (the on-demand-infra invariant); (4) extend the Submodule
(PR upstream) for missing runtimes / lifecycle primitives — never
reimplement in-project (per §11.4.74); (5) anti-bluff: integration tests
claiming to exercise containerized components MUST actually boot them
via the Submodule — short-circuit fakes that bypass boot are a §11.4
violation. Tracker rows touching containerization MUST record
<code>Catalogue-Check: extend vasic-digital/containers@&lt;sha&gt;</code>
(or <code>reuse</code>). Planned gate <code>CM-CONTAINERS-USED</code>
scans container-touching PRs for
<code>digital.vasic.containers/...</code> imports; paired mutation
strips the import + asserts FAIL.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.76</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-76-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. <strong>Canonical authority:</strong> constitution
submodule <code>Constitution.md</code> §11.4.76 for the full
mandate.</p>
<h2 id="11477--regeneration-mechanism-required-mandate-cascaded-from-constitution-submodule-11477">§11.4.77
— Regeneration-Mechanism-Required Mandate (cascaded from constitution
submodule §11.4.77)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-20): <em>&quot;We must be sure that after
excluding anything from Git versioning we still have the mechanism which
will out of the box obtain or re-generate missing content!&quot;</em></p>
</blockquote>
<p>Every <code>.gitignore</code> entry excluding (a) &gt;~100 MiB OR (b)
any artefact essential to building / running / testing the project MUST
carry a documented + automated mechanism to either re-obtain (download
from authoritative source: vendor tarball, SDK installer,
npm/pip/cargo/go-mod/container registry, dedicated git submodule,
S3/GCS) OR re-generate (run from tracked source via build pipeline,
code-gen, asset render, captured-evidence replay, container build).
Required artefacts per qualifying entry: (1)
<code>.gitignore-meta/&lt;entry-slug&gt;.yaml</code> declaring pattern +
mechanism-type + script-path + expected-disk-usage +
vendor-url-or-source + integrity hash + requires-network +
requires-credentials; (2) a non-interactive entry in
<code>scripts/setup.sh</code> post-clone bootstrap; (3) a pre-build gate
verifying regenerated content present OR a recent
<code>.gitignore-meta/.regenerated/&lt;slug&gt;.ok</code> stamp; (4)
README + <code>docs/guides/*.md</code> describing the mechanism + manual
fallback + time/disk budget + §11.4.10 credentials. Bare
<code>.gitignore</code> additions without the mechanism are a §11.4
PASS-bluff variant — codebase appears complete but a fresh clone cannot
build/run. No escape hatch — no <code>--skip-regen-mechanism</code>,
<code>--gitignore-is-enough</code>,
<code>--operator-already-has-content</code> flag. Planned gate
<code>CM-GITIGNORE-REGEN-MECHANISM</code> + paired §1.1 mutation (strip
a required YAML key → gate FAILs).</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.77</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-77-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Severity-equivalent to a §11.4 PASS-bluff at the
repository-hygiene layer. <strong>Canonical authority:</strong>
constitution submodule <code>Constitution.md</code> §11.4.77 for the
full mandate.</p>
<h2 id="11478--codegraph-code-intelligence-mandate-cascaded-from-constitution-submodule-11478">§11.4.78
— CodeGraph Code-Intelligence Mandate (cascaded from constitution
submodule §11.4.78)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-20): <em>&quot;Make codegraph MANDATORY
CHOICE for this purpose for all of our project ... All project which do
not have configured and installed codegraph yet MUST DO IT and MUST USE
IT!&quot;</em></p>
</blockquote>
<p>Every consuming project worked on by AI coding agents MUST install,
initialize, and use <strong>CodeGraph</strong>
(<code>https://github.com/colbymchenry/codegraph</code>, npm
<code>@colbymchenry/codegraph</code>) — a local SQLite semantic
code-knowledge-graph exposed to agents over MCP (100% local, no cloud).
(1) Install globally via npm with a user-writable npm prefix (no
<code>sudo</code>). (2) <code>codegraph init</code> +
<code>codegraph index</code>: <code>.codegraph/config.json</code> is
tracked, <code>.codegraph/codegraph.db</code> is gitignored with
<code>codegraph index</code> as its §11.4.77 regeneration mechanism; the
<code>config.json</code> <code>exclude</code> list MUST exclude every
credential/secret path per §11.4.10. (3) Wire
<code>codegraph serve --mcp</code> into every CLI agent (Claude Code
<code>.mcp.json</code>, OpenCode <code>opencode.json</code>, Qwen Code
<code>.qwen/settings.json</code>, Crush <code>.crush.json</code>,
host-local otherwise) referencing the bare <code>codegraph</code>
command on <code>PATH</code> (no hardcoded host path). (4) Cover the
integration with an anti-bluff suite whose per-agent end-to-end layer
uses an unforgeable challenge (a fact obtainable only by calling a
CodeGraph MCP tool, e.g. index node count via
<code>codegraph_status</code>); a genuinely un-drivable agent is a
documented SKIP per §11.4.3, never a faked PASS. (5) Document in
<code>docs/CODEGRAPH.md</code>, kept in sync per §11.4.12 / §11.4.65.
CodeGraph is consumed as the published npm package (§11.4.74) — not a
git submodule, adds no Git remote. Planned gate
<code>CM-CODEGRAPH-WIRED</code> + paired §1.1 mutation (strip a
secret-exclusion → gate FAILs).</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.78</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-78-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. <strong>Canonical authority:</strong> constitution
submodule <code>Constitution.md</code> §11.4.78 for the full
mandate.</p>
<h2 id="11479--own-org-submodules-must-be-included-in-the-codegraph-index-cascaded-from-constitution-submodule-11479">§11.4.79
— Own-Org Submodules MUST Be Included in the CodeGraph Index (cascaded
from constitution submodule §11.4.79)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-21): <em>&quot;All Submodules we use in the
project and that are part of organizations to which we have the full
access via GitHub, GitLab and other CLIs MUST BE included into the
codegraph database and initialized / scanned / synced!&quot;</em></p>
</blockquote>
<p>Refines §11.4.78&#39;s exclude-list with a per-submodule-ownership split:
(a) own-org submodules (full write access via the project&#39;s CLIs —
canonical orgs <code>vasic-digital</code> +
<code>HelixDevelopment</code>) MUST be INCLUDED in the index; (b)
third-party submodules (the §11.4.74 <code>no-match → vendor</code>
path) MUST be EXCLUDED. Operational steps: (1)
<code>git submodule update --remote --merge</code> to pull latest before
re-indexing, respecting load-bearing pins on third-party submodules; (2)
adjust <code>.codegraph/config.json</code> exclude list to keep own-org
paths in scope; (3) re-index via
<code>scripts/codegraph_setup.sh</code>; (4) verify via
<code>scripts/codegraph_validate.sh</code> with ≥1 probe resolving a
symbol living ONLY inside an own-org submodule; (5) paired §1.1 mutation
— temporarily add the own-org submodule to exclude → validate MUST FAIL
on the cross-submodule probe → restore. An index that lies about
reachable symbols is a PASS-bluff against AI agents. Own-org submodules
silently excluded without an audit trail in
<code>.codegraph/config.json</code> comments is a release blocker.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.79</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-79-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. <strong>Canonical authority:</strong> constitution
submodule <code>Constitution.md</code> §11.4.79 for the full
mandate.</p>
<h2 id="11480--codegraph-regular-update--sync-automation-mandate-cascaded-from-constitution-submodule-11480">§11.4.80
— CodeGraph Regular-Update + Sync Automation Mandate (cascaded from
constitution submodule §11.4.80)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-21): <em>&quot;We MUST regularly check for
the updates and execute codegraph npm updates so the latest version of
it is always installed on the host machine! ... Make sure we have proper
full automation bash scripts which will run regularly and that these are
part of the constitution Submodule ... Make sure all updates, sync
processes we do and important codegraph related events are all
documented under docs/codegraph in Status and Status_Summary documents
... and regularly export them like all other Status docs into the PDF
and HTML!&quot;</em></p>
</blockquote>
<p>Three deliverables (all living in the constitution submodule,
inherited by reference per §3 — consuming projects invoke at
<code>${CONST_DIR}/scripts/codegraph_*.sh</code>, never copy): (1)
<code>scripts/codegraph_update.sh</code> — npm-installs latest
<code>@colbymchenry/codegraph</code> after a registry version check;
appends old/new version to <code>docs/codegraph/Status.md</code>;
anti-bluff verifies <code>codegraph --version</code> reflects the new
version after install (npm exit 0 ≠ working binary). (2)
<code>scripts/codegraph_sync.sh</code> — after a successful update runs
<code>codegraph status</code> → <code>codegraph sync .</code> →
<code>codegraph status</code> → the project&#39;s
<code>scripts/codegraph_validate.sh</code>; appends every step&#39;s output
to BOTH the project&#39;s and the constitution&#39;s
<code>docs/codegraph/Status.md</code>. (3)
<code>docs/codegraph/Status.md</code> + <code>Status_Summary.md</code>
append-only ledgers, exported to <code>.html</code> + <code>.pdf</code>
per §11.4.65. Cadence: weekly floor (per §11.4.45). A consuming project
that has not run <code>codegraph_update.sh</code> in &gt;2 weeks AND has
open AI-agent work is a release blocker. Paired §1.1 mutation: downgrade
installed version → script detects drift → restore.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.80</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-80-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. <strong>Canonical authority:</strong> constitution
submodule <code>Constitution.md</code> §11.4.80 for the full
mandate.</p>
<h2 id="11481--cross-platform-parity-mandate-cascaded-from-constitution-submodule-11481">§11.4.81
— Cross-Platform-Parity Mandate (cascaded from constitution submodule
§11.4.81)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-21): <em>&quot;Any Linux-only blocker /
issue we have MUST BE created macOS and other supported platforms
equivalent! So, depending on platform proper implementation will be used
for particular OS! EVERYTHING MUST BE PROPERLY EXTENDED AND
UPDATED!&quot;</em></p>
</blockquote>
<p>Every consuming project whose supported-platforms manifest lists more
than one OS MUST, for every feature/test/gate/challenge/mutation
depending on platform-specific primitives, ship a per-OS-equivalent
implementation chosen at runtime via <code>uname -s</code> (or
equivalent detection). Three sub-mandates: <strong>(A) Per-OS
implementation REQUIRED</strong> — Linux
cgroup/systemd/<code>/proc</code> primitives MUST have documented per-OS
equivalents (POSIX <code>setrlimit</code>/<code>ulimit</code>, macOS
<code>launchd</code>, BSD <code>rctl</code>, Windows Job Object) chosen
via runtime dispatch. <strong>(B) Per-OS tests REQUIRED</strong> — every
platform-dependent gate test MUST have
<code>case &quot;$(uname -s)&quot; in</code> branches with positive captured
evidence per §11.4.2 + §11.4.5 in each branch; SKIP-with-reason
acceptable ONLY when the platform genuinely cannot enforce the
invariant. <strong>(C) Honest kernel-gap citation + adjacent equivalent
test REQUIRED</strong> — where a Linux primitive has NO equivalent due
to a documented kernel limitation (canonical: XNU does not enforce
<code>RLIMIT_AS</code> for unprivileged processes), the test MUST detect
the gap at runtime, SKIP with exact kernel reason + reproducer +
honest-gap-doc link, AND provide an ADJACENT test exercising the closest
invariant the platform CAN enforce (e.g.
<code>RLIMIT_CPU</code>+<code>SIGXCPU</code> as the macOS proxy), itself
anti-bluff with a paired §1.1 mutation. Gate
<code>CM-CROSS-PLATFORM-PARITY</code> scans for
<code>case &quot;$(uname -s)&quot;</code> blocks asserting a non-SKIP branch (or
honest-gap citation) per platform in the manifest; paired mutation
strips a Darwin branch → gate FAILs. No escape hatch.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.81</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-81-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker on multi-platform projects.
<strong>Canonical authority:</strong> constitution submodule
<code>Constitution.md</code> §11.4.81 for the full mandate.</p>
<h2 id="11482--iteration-speedup-discipline-mandate-cascaded-from-constitution-submodule-11482">§11.4.82
— Iteration-Speedup Discipline Mandate (cascaded from constitution
submodule §11.4.82)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-22): <em>&quot;How can we speed-up this
whole development and fixing process? ... Do not forget to all speed
optimizations critical rules and mandatory constraints MUST BE all added
into our root (constitution Submodule) Constitution.md, CLAUDE.md,
AGENTS.md and QWEN.md and all other relevant constitution Submodules
files!&quot;</em></p>
</blockquote>
<p>Iteration cycle time is a first-order quality enabler. Every
consuming project&#39;s build / test / commit / debug pipeline MUST adopt
these speedup disciplines AS MANDATORY (each independently enforceable):
(A) Phase-1 forensic (<code>superpowers:systematic-debugging</code>)
before any speculative source patch — speculative patches without
FACT-grade root cause are §11.4.6 + §11.4.82 violations; (B)
Live-ADB-First (or live-equivalent) before any rebuild — strengthens
§11.4.51 to a release-blocker mandate; (C) 30-second pre-flight before
launching rebuild orchestrators (device/sink reachability, host
memory/disk, no stale locks, no orphan processes); (D) persistent build
caches outside containers
(<code>ccache</code>/<code>sccache</code>/Gradle daemon bind-mounted to
host); (E) module-only rebuild for loadable-module-only changes; (F)
parallel multi-device testing with separate
<code>qa-results/&lt;TS&gt;/&lt;device-tag&gt;/</code> outputs; (G)
subagent scope discipline + worktree isolation (≤30 min budget,
single-responsibility, <code>isolation: &quot;worktree&quot;</code> default); (H)
lock-file + stale-process hygiene (clean <code>.git/index.lock</code>,
disable auto git-gc in concurrent repos); (I) cycle telemetry per
§11.4.24 (commit hash, per-phase wall-clock, speedup-flag set, outcome —
aggregated weekly). Gate <code>CM-ITERATION-SPEEDUP-DISCIPLINE</code>
audits recent cycles for telemetry citing which of (A)-(I) applied;
paired §1.1 mutation strips the speedup-flag column → gate FAILs. No
escape hatch — no <code>--skip-phase1-forensic</code>,
<code>--no-pre-flight</code>, <code>--rebuild-everything-always</code>,
<code>--unlimited-subagent-scope</code>, <code>--ignore-locks</code>,
<code>--no-telemetry</code> flag.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.82</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-82-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.82 for the full mandate.</p>
<h2 id="11483--docsqa-end-user-evidence-mandate-cascaded-from-constitution-submodule-11483">§11.4.83
— docs/qa/ End-User Evidence Mandate (cascaded from constitution
submodule §11.4.83)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-22): <em>&quot;every feature that ships
MUST carry a recorded e2e communication transcript + any attached
materials under <code>docs/qa/&lt;run-id&gt;/</code> (per-feature
subdirectories). A feature with no QA transcript is itself a §107
PASS-bluff — it claims to work but has no auditable runtime evidence.
Bot-driven automation MUST preserve full bidirectional communication
threads as proof.&quot;</em></p>
</blockquote>
<p>Every feature that ships MUST carry a recorded end-to-end
communication transcript plus any attached materials (screenshots,
request/response payloads, audio, file uploads) committed under
<code>docs/qa/&lt;run-id&gt;/</code> — one directory per feature run.
Operative rule: (1) every consuming project MUST maintain a
<code>docs/qa/</code> tree, each new feature under
<code>docs/qa/&lt;run-id&gt;/</code> where <code>&lt;run-id&gt;</code>
is monotonic + greppable (timestamp / ATM-NNN / other workable-item ID
per §11.4.54); (2) transcripts MUST be full bidirectional — every
prompt/command sent + every response received (one-sided is not a
transcript); (3) attached materials MUST be committed in-repo (no
external-only links — that is a §11.4.13 sink-side violation); (4)
bot-driven / agent-driven QA automation MUST preserve the full
conversation thread as the proof artefact; (5) release gates MUST refuse
to tag a version that has any feature-shipping commit without its
matching <code>docs/qa/&lt;run-id&gt;/</code> directory. A feature with
no QA transcript is a §11.4 / §107 PASS-bluff. Composes with §11.4.2 /
§11.4.5 / §11.4.13 / §11.4.65 / §11.4.69 / §1.1.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.83</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-83-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker — no
<code>--qa-evidence-optional</code> escape hatch. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.83 for the full mandate.</p>
<h2 id="11484--working-tree-quiescence-rule-for-subagent-commits-cascaded-from-constitution-submodule-11484">§11.4.84
— Working-Tree Quiescence Rule for Subagent Commits (cascaded from
constitution submodule §11.4.84)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-22): <em>&quot;no subagent commit may
proceed while any concurrent mutation gate is in flight in the same
checkout. Before <code>git add</code>, the committing agent MUST
<code>grep</code> its own working tree for mutation markers
(<code>MUTATED for paired</code>, <code>// always pass</code>,
<code>return json.Marshal</code> shortcut paths, etc.). Any unexplained
file in the staging area triggers ABORT.&quot;</em></p>
</blockquote>
<p>No subagent (or main-thread) commit may proceed while any concurrent
mutation gate, paired-mutation experiment, or other in-flight mutation
is live in the same checkout. Before <code>git add</code>, the
committing agent MUST grep its own working tree for mutation markers
(<code>MUTATED for paired</code>, <code>// always pass</code>,
<code>return json.Marshal</code> shortcut paths,
<code>// MUTATION</code> / <code># MUTATION</code> annotations,
<code>_mutated_*</code> filename suffixes, etc.) and explicitly account
for every modified file in the staging area; any unexplained file →
ABORT. (Forensic case: a logo-fix subagent&#39;s <code>git add</code> swept
an <code>// always pass</code> JWT-verify mutation residue into an
unrelated commit pushed to all four mirrors — a real security-defect
window.) Operative rule: (1) pre-<code>git add</code> greps for mutation
markers + cross-checks <code>git status --porcelain</code> against the
subagent&#39;s declared scope; unaccounted entries → ABORT; (2) any active
mutation gate MUST be serialised (mutate → assert FAIL → restore →
assert PASS) and the working tree verifiably clean before any unrelated
commit; (3) concurrent subagents in the SAME checkout MUST coordinate
through a lockfile (<code>.git/MUTATION_IN_PROGRESS</code>) — cleaner
solution is <code>git worktree add</code> per subagent (composes with
§11.4.20/§11.4.70); (4) post-commit
<code>mutation-residue-scanner</code> MUST run before push — any commit
containing a mutation marker → push BLOCKED.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.84</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-84-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. A mutation marker that lands in a tagged commit is
a critical defect regardless of how briefly it persisted.
<strong>Canonical authority:</strong> constitution submodule
<code>Constitution.md</code> §11.4.84 for the full mandate.</p>
<h2 id="11485--stress--chaos-test-mandate-cascaded-from-constitution-submodule-11485">§11.4.85
— Stress + Chaos Test Mandate (cascaded from constitution submodule
§11.4.85)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-24): <em>&quot;Every fix or improvement you
do MUST BE covered with full automation stress and chaos tests so we are
sure nothing can break the functionality and all edge cases are
monitored and polished and additionally fixed if that is needed!
Everything must produce rock solid proofs and follow fully no-bluff
policy!&quot;</em></p>
</blockquote>
<p>Every fix or improvement landed MUST ship with full-automation
<strong>stress</strong> AND <strong>chaos</strong> test suites
exercising edge cases, sustained load, concurrent contention, and
failure-injection. Happy-path coverage alone is a §11.4 / §107
PASS-bluff at the resilience layer. <strong>Stress</strong>
(closed-set): sustained load (N ≥ 100 iterations OR ≥ 30 s wall-clock,
p50/p95/p99 latency recorded) + concurrent contention (N ≥ 10 parallel
invocations, no deadlock/leak) + boundary conditions
(empty/max/off-by-one, each categorised). <strong>Chaos</strong>
(closed-set, per fix-class appropriateness): process-death injection +
network-fault injection (drop/delay/reorder) + input-corruption
injection + resource-exhaustion injection (disk full, OOM, FD exhaustion
— refuse cleanly OR degrade, NEVER crash) + state-corruption injection
(mid-flight lock loss, partial-write). Every stress + chaos PASS MUST
cite a captured-evidence artefact path per §11.4.5 + §11.4.69. Helper
library <code>stress_chaos.sh</code> provides
<code>ab_stress_run</code>, <code>ab_stress_concurrent</code>,
<code>ab_chaos_kill_pid_during</code>,
<code>ab_chaos_drop_network_during</code>,
<code>ab_chaos_corrupt_file_during</code>,
<code>ab_chaos_oom_pressure_during</code>,
<code>ab_chaos_disk_full_during</code>, each composing with
<code>ab_pass_with_evidence</code> / <code>ab_skip_with_reason</code>.
Cleanup non-negotiable in <code>trap &#39;...&#39; EXIT</code> (cleanup failure
= §11.4.14 violation). Four-layer coverage per §11.4.4(b) + paired §1.1
mutation (strip chaos-injection or evidence-capture → gate FAILs). No
escape hatch — no <code>--skip-stress</code>, <code>--no-chaos</code>,
<code>--happy-path-suffices</code>, <code>--stress-test-later</code>
flag.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.85</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-85-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.85 for the full mandate.</p>
<h2 id="11486--rostercorpus-backed-status-doc-auto-sync-mandate-cascaded-from-constitution-submodule-11486">§11.4.86
— Roster/Corpus-Backed Status-Doc Auto-Sync Mandate (cascaded from
constitution submodule §11.4.86)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-25): <em>&quot;Make sure that assets and
players Status docs are ALWAYS regularly updated and in sync like all
others Status docs — any time we add or modify the assets content(s) or
we change or add new / remove existing pre-installed video and audio
player apps! This MUST WORK OUT OF THE BOX!&quot;</em></p>
</blockquote>
<p>Some Status docs (§11.4.45) are backed by a tracked roster (installed
apps/components) or a tracked asset corpus (test/media asset directory)
rather than narrative alone. Their freshness MUST NOT depend on operator
vigilance — the moment a roster/corpus member changes (app
added/removed/renamed; asset added/modified/removed) the Status doc +
Status_Summary + HTML + PDF MUST resync out of the box, mechanically.
Mechanism (all must hold): (1) drift-proof fingerprint — sha256 of the
sorted member list (NOT mtime), persisted in a sidecar beside the Status
doc; (2) a sync helper that regenerates the fingerprint + re-exports
HTML+PDF via the §11.4.65 exporter, wired so sync is automatic; (3) a
pre-build gate that FAILs when the live fingerprint differs from the
persisted one (mirrors §11.4.12 <code>CM-ISSUES-SUMMARY-SYNC</code> +
§11.4.45 <code>sync_integration_status</code>); (4) a paired §1.1
mutation corrupting the fingerprint and asserting the gate FAILs.
Classification: universal — the consuming project supplies the specific
docs, roster/corpus sources, helper, and gate name per §11.4.35.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.86</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-86-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker — no
<code>--skip-roster-sync</code>, <code>--allow-status-drift</code>,
<code>--roster-sync-not-applicable</code> flag. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.86 for the full mandate.</p>
<h2 id="11487--endless-loop-autonomous-work--zero-idle-agent-dispatch--anti-bluff-testing-mandate-cascaded-from-constitution-submodule-11487">§11.4.87
— Endless-Loop Autonomous Work + Zero-Idle Agent Dispatch + Anti-Bluff
Testing Mandate (cascaded from constitution submodule §11.4.87)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-26): <em>&quot;continue in endless loop
fully autonomously&quot;</em> (and any semantically-equivalent phrasing).</p>
</blockquote>
<p>When the operator instructs an AI agent to continue in an endless
autonomous loop, the agent MUST treat it as a HARD-CONTRACT covenant:
(A) continue working until <code>docs/Issues.md</code> Status-column has
zero non-terminal entries AND <code>docs/CONTINUATION.md</code> §3
Active work is empty AND no background subagent is mid-execution AND no
external dependency is in-flight; (B) dispatch background subagents for
parallelisable work — main + every subagent operate concurrently,
&quot;waiting for results&quot; is the ONLY acceptable idle reason; (C) every
closure lands four-layer test coverage per §11.4.4(b) with
captured-evidence (audio/video/network/UI/sysfs physical proofs); (D)
the §11.4 anti-bluff covenant family (§11.4.1 / §11.4.2 / §11.4.6 /
§11.4.7 / §11.4.27 / §11.4.50 / §11.4.52 / §11.4.68 / §11.4.69 /
§11.4.83) is the operative truth-discipline — tests AND HelixQA
Challenges bound equally; (E) the loop terminates ONLY on
all-conditions-met, explicit operator STOP, host-session-safety demand,
or scheduled wake on a known-future-actionable signal. No escape hatch —
no <code>--idle-OK</code>, <code>--skip-endless-loop</code>,
<code>--bluff-permitted-for-this-task</code>,
<code>--metadata-only-test-suffices</code>,
<code>--no-physical-proof-required</code> flag.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.87</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-87-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.87 for the full mandate.</p>
<h2 id="11488--background-push-mandate-commit-lock-release-immediately-after-commit-push-runs-detached-cascaded-from-constitution-submodule-11488">§11.4.88
— Background-Push Mandate: Commit-Lock Release Immediately After Commit,
Push Runs Detached (cascaded from constitution submodule §11.4.88)</h2>
<p>Forensic anchor (2026-05-26): a single <code>commit_all.sh</code>
held its flock ~5 hours because <code>do_push</code> ran synchronously
after the commit landed — every subsequent commit blocked on a slow
mirror push irrelevant to the local commit&#39;s durability. Implementation
seam for §11.4.87(B) zero-idle. The mandate: (A)
<code>.git/.commit_all.lock</code> MUST be released IMMEDIATELY after
<code>git commit</code> returns 0 — the commit is durable on local disk
regardless of remote push outcome; (B) push runs detached via
<code>nohup ./push_all.sh ... &gt; &lt;log&gt; 2&gt;&amp;1 &amp;</code>
+ <code>disown</code> — the orchestrator&#39;s exit code reports COMMIT
success, NOT push success; (C) <code>push_all.sh</code> acquires
per-remote flock <code>.git/.push.&lt;remote&gt;.lock</code> so
concurrent invocations targeting the same remote serialize but
different-remote invocations run in parallel; (D) backgrounded push
failures land in
<code>qa-results/push_failures/&lt;ts&gt;_&lt;remote&gt;.log</code> —
the next autonomous-loop tick checks per §11.4.87(A) &quot;no external
dependency in-flight&quot; gate; (E) synchronous-push escape: explicit
<code>--sync-push</code> CLI flag preserves legacy behaviour for
§11.4.41 force-push merge-first audit paths. Gates
<code>CM-COVENANT-114-88-PROPAGATION</code> +
<code>CM-BACKGROUND-PUSH-WIRED</code> + paired §1.1 mutations.
Synchronous push (without <code>--sync-push</code>) = §11.4 PASS-bluff
at the execution layer.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.88</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-88-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker — no escape hatch beyond
<code>--sync-push</code> for force-push events. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.88 for the full mandate.</p>
<h2 id="11489--background-test-execution-mandate-cascaded-from-constitution-submodule-11489">§11.4.89
— Background Test Execution Mandate (cascaded from constitution
submodule §11.4.89)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;Any tests we are executing,
especially long test cycles, MUST BE performed in background in parallel
with main work stream! This MUST NOT block our capabilities to work on
queued workable items. Main work stream can be blocked or sit iddle only
if absolutely needed and if it depends hard on results of some
background execution.&quot;</em></p>
</blockquote>
<p>Symmetric anchor to §11.4.88 (background push) at the test-execution
layer. Mandate: (A) long-running tests (&gt;30 s expected:
<code>pre_build</code>, <code>meta_test</code>,
<code>test_all_fixes</code>, <code>recent_work_validate</code>, HelixQA
banks, 4-phase cycles, full-suite retests, audio supervisors,
dual-display recorders) MUST run via
<code>nohup ... &gt; &lt;log&gt; 2&gt;&amp;1 &amp;</code> +
<code>disown</code> with the log under a known dir
(<code>qa-results/&lt;test_id&gt;_&lt;ts&gt;.log</code>); (B) the main
stream proceeds to the §11.4.42 priority queue immediately; (C)
hard-dependency gating — poll an exit-status file or
<code>pgrep -af &lt;test&gt;</code> before steps that need the exit
code, surfacing as §11.4.66 interactive options if the test is still
running; (D) failures land in <code>&lt;log&gt;</code> files, the next
loop tick checks; (E) foreground execution permitted ONLY for &lt;30 s
tests OR explicit operator authorisation; (F) per-script flock
serialises same-script invocations, different-script invocations
parallel. Gates <code>CM-COVENANT-114-89-PROPAGATION</code> +
<code>CM-BACKGROUND-TEST-EXECUTION-WIRED</code> + paired §1.1
mutations.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.89</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-89-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker — no escape hatch beyond explicit
per-invocation operator authorisation. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.89 for the full mandate.</p>
<h2 id="11490--obsolete-status--per-item-obsolescence-audit-cascaded-from-constitution-submodule-11490">§11.4.90
— Obsolete Status + Per-Item Obsolescence Audit (cascaded from
constitution submodule §11.4.90)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;Bug No 6 ... seems obsolete
after latest request for new behavior ... mark obsolete tickets with
some light gray background ... text - the description to be
strikethrough styled ... review all existing open or resolved workable
items if they are obsolete - not valid any more ... There MUST NOT be
any mistake! No bluff is allowed of any kind!&quot;</em></p>
</blockquote>
<p>The §11.4.15 Status closed-set is extended with a terminal
<code>Obsolete (→ Fixed.md)</code> value (orthogonal to Type per
§11.4.16). Obsolescence reasons (closed vocabulary):
<code>superseded-by-design-change | superseded-by-later-mandate | feature-removed | duplicate-of | unsupported-topology</code>.
Every Obsolete heading MUST carry an <code>**Obsolete-Details:**</code>
line (Since + Reason + Superseding-item + Triple-check evidence) within
8 non-blank lines. The §11.4.23 colorizer adds a
<code>cell-status-obsolete</code> class — light-gray
<code>#E0E0E0</code> background + strikethrough description. Audit
cadence: every release-gate sweep per §11.4.40 + §11.4.42; triple-check
is non-negotiable per the operator mandate. Composes with §11.4.15 /
§11.4.16 / §11.4.19 / §11.4.21 / §11.4.23 / §11.4.33 / §11.4.34 /
§11.4.40 / §11.4.42 / §11.4.66 / §11.4.71. Gates
<code>CM-COVENANT-114-90-PROPAGATION</code> +
<code>CM-ITEM-OBSOLETE-DETAILS</code> +
<code>CM-OBSOLETE-COLORIZER-WIRED</code> + paired §1.1 mutations.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.90</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-90-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.90 for the full mandate.</p>
<h2 id="11491--summary-doc-clarity-mandate-cascaded-from-constitution-submodule-11491">§11.4.91
— Summary-Doc Clarity Mandate (cascaded from constitution submodule
§11.4.91)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;Summary docs -
Issues_Summary some not clear one line descriptions - like &#39;Composes
with&#39; ... For each workable item we MUST HAVE clearly understandable
meaning ... every team member can clearly understand what that
particular workable item is exactly about! There cannot be
misunderstanding or unclearity of any kind and no bluff
allowed!&quot;</em></p>
</blockquote>
<p>Every summary entry (Issues_Summary, Fixed_Summary, README doc-link,
Status_Summary pages 1+2, all one-liners) MUST contain a self-contained
meaningful description ≥ 6 words OR ≥ 40 chars naming SUBJECT +
PROBLEM/GOAL. Forbidden one-liner anti-patterns: section labels
(<code>Composes with</code>, <code>Closure criteria</code>,
<code>Fix direction</code>, etc.); bare metadata fragments
(<code>Critical</code>, <code>Bug</code>, <code>In progress</code>,
etc.); section-marker echoes; a §-letter alone. Generators
(<code>generate_issues_summary.sh</code> /
<code>generate_fixed_summary.sh</code> /
<code>update_readme_doc_links.sh</code> /
<code>generate_status_summary.sh</code>) MUST extract from the H1/H2
heading line per the §11.4.54 ATM-NNN convention, NEVER from arbitrary
downstream text, and MUST refuse anti-pattern rows — emitting a
<code>(MISSING DESCRIPTION — fix source heading)</code> placeholder with
visual highlight. Gate <code>CM-SUMMARY-CLARITY-DESCRIPTIONS</code>
scans every summary; an anti-pattern match = FAIL. Audit cadence: every
§11.4.40 + §11.4.42 sweep.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.91</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-91-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.91 for the full mandate.</p>
<h2 id="11492--multi-pass-change-evaluation-discipline-cascaded-from-constitution-submodule-11492">§11.4.92
— Multi-Pass Change-Evaluation Discipline (cascaded from constitution
submodule §11.4.92)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;Every change to the project
or codebase we do MUST BE evaluated in several passes and in in-depth
analisys for potential new issues or problems it can introduce! ... no
bluff of any kind! After we do change or set of changes this mandatory
steps MUST BE taken!&quot;</em></p>
</blockquote>
<p>Every non-trivial change MUST pass a 5-pass evaluation BEFORE it is
commit-ready: <strong>(Pass 1)</strong> main-task verification — change
achieves the stated goal, captured-evidence per §11.4.5/§11.4.69;
<strong>(Pass 2)</strong> regression-blast-radius analysis — enumerate
every direct dependency, demonstrate no contract break; <strong>(Pass
3)</strong> cross-feature interaction analysis — audit parallel features
sharing state/timing/hardware/shell environment; <strong>(Pass
4)</strong> deep-research validation per §11.4.8 — external precedent OR
&quot;NO external solution found — original work&quot; + CodeGraph queries per
§11.4.78/§11.4.79; <strong>(Pass 5)</strong> anti-bluff confirmation per
§11.4 / §11.4.1 / §11.4.6 / §11.4.27 / §11.4.50 / §11.4.52 / §11.4.69 /
§11.4.83 — no new bluff surface introduced. Each pass is documented
(commit footers OR <code>docs/</code> entries OR
<code>qa-results/</code> evidence). Only after all 5 passes complete may
commit/push/test/release proceed. Trivial exemption: typo /
revision-bump / MD-export-regen IF zero source touched AND the commit
message cites the exemption explicitly. Gates
<code>CM-COVENANT-114-92-PROPAGATION</code> +
<code>CM-MULTI-PASS-EVALUATION-EVIDENCE</code> + paired §1.1
mutations.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.92</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-92-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.92 for the full mandate.</p>
<h2 id="11493--sqlite-backed-single-source-of-truth-for-workable-items-cascaded-from-constitution-submodule-11493">§11.4.93
— SQLite-Backed Single-Source-of-Truth for Workable Items (cascaded from
constitution submodule §11.4.93)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;There MUST be single source
of truth for all of our workable items - SQlite database ... proper
scripts (we recommend Go programs) ... reduce a chance for sync to be
broken ... generate always all docs from DB or to re-generate Db from
all docs we have in opposite direction&quot;</em></p>
</blockquote>
<p>The text-based Issues/Fixed/Summary/CONTINUATION constellation is
converted to a SQLite-DB-backed single source of truth. Schema mandatory
tables: <code>items</code> (atm_id PK + Type + Status incl. Obsolete +
Severity + title + description ≥40 chars + created/modified +
composes_with JSON + current_location); <code>item_history</code>
(append-only audit per §11.4.34 By/Reason/Evidence);
<code>obsolete_details</code> (§11.4.90);
<code>operator_block_details</code> (§11.4.21);
<code>firebase_metadata</code> (§11.4.47); <code>meta</code> (schema
version + last sync + integrity hash). A Go binary at
<code>cmd/workable-items/</code> provides <code>sync md-to-db</code> /
<code>db-to-md</code> / <code>diff</code> / <code>validate</code> /
<code>add</code> / <code>close</code>; bidirectional regen is
byte-identical round-trip (closed-set whitespace/section-order
tolerance). <code>commit_all.sh</code> refuses on non-empty diff;
<code>sync_issues_docs.sh</code> invokes the Go binary; pre-build runs
<code>workable-items validate</code>. Anti-bluff: unit + integration +
stress (1000-row insert + 10 concurrent writers) + chaos (mid-write
SIGKILL + corrupt-DB recovery + disk-full) + paired §1.1 mutation +
HelixQA Challenge <code>CME-WORKABLE-ITEMS-001</code>. The Go binary
lives in the constitution submodule
(<code>constitution/scripts/workable-items/</code>) per §11.4.74. Gates
<code>CM-COVENANT-114-93-PROPAGATION</code> +
<code>CM-WORKABLE-ITEMS-DB-PRESENT</code> +
<code>CM-WORKABLE-ITEMS-MD-DB-IN-SYNC</code> + paired §1.1 mutations.
(NOTE: the DB tracking rule is AMENDED by §11.4.95 — DB is TRACKED, not
gitignored.)</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.93</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-93-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker — text-based-only trackers are a
§11.4 PASS-bluff at the data-architecture layer. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.93 for the full mandate.</p>
<h2 id="11494--zero-idle-priority-first-parallel-by-default-operating-mode-cascaded-from-constitution-submodule-11494">§11.4.94
— Zero-Idle Priority-First Parallel-By-Default Operating Mode (cascaded
from constitution submodule §11.4.94)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;We MUST NEVER sit iddle /
wait or sleep if there is possibility for us to work on something ...
Always check if there is a possibility to work on something while we are
not working actively on something! Pick always by priority - most
critical workable items and other tasks MUST BE done first! ... Stay
still / iddle if nothing is left to be done at all or waiting for
something that is blocking us / you!!!&quot;</em></p>
</blockquote>
<p>§11.4.94 binds §11.4.20 + §11.4.42 + §11.4.58 + §11.4.70 + §11.4.72 +
§11.4.82 + §11.4.87 + §11.4.88 + §11.4.89 into a single always-on
enforcement: (A) idle ONLY when every queued item is genuinely blocked
on an external dependency (hardware / network upstream / build/test
completion the conductor cannot accelerate) OR operator STOP OR §12
host-safety — &quot;don&#39;t see what to do&quot; is NEVER valid; (B) before ANY
wake/sleep the conductor MUST survey parallel-work feasibility per
§11.4.42 + §11.4.72 + §11.4.87, identify non-contending items, and
dispatch in parallel per §11.4.20/§11.4.70 (subagent) + §11.4.58 (PWU
disjoint scope) + §11.4.89 (background long tests); (C) priority order
MANDATORY — pick highest-severity + §11.4.72 audio-first the conductor
can autonomously progress; (D) subagent-driven default for non-trivial;
(E) background default for &gt;30 s wall-clock work via
<code>nohup</code>+<code>disown</code>; (F) stability-preserving
(composes with §11.4.92 multi-pass + §11.4.84 quiescence + §12.6–§12.9
host safety); (G) progress updates surfaced at milestone boundaries.
Gates <code>CM-COVENANT-114-94-PROPAGATION</code> +
<code>CM-PARALLEL-WORK-AUDIT</code> + paired §1.1 mutations.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.94</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-94-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.94 for the full mandate.</p>
<h2 id="11496--safe-parallel-work-with-long-build-catalogue--mandate-cascaded-from-constitution-submodule-11496">§11.4.96
— Safe-Parallel-Work-With-Long-Build Catalogue + Mandate (cascaded from
constitution submodule §11.4.96)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;Are there except AOSP build
process any other active jobs being done at the moment? Can we work on
something in parallel while build is in progress so we slowly cleanup
our slate? ... do as much as possible work in background in parallel
with main work stream and oreferrably using subagents-driven
approach!&quot;</em></p>
</blockquote>
<p>An operational catalogue for the canonical long-running workload
(multi-hour containerised build per §12.9). <strong>SAFE during
build:</strong> (A) MD/docs work; (B) generator/helper script work under
<code>scripts/</code>; (C) pre-build + meta-test gate authoring + paired
§1.1 mutations; (D) on-device test scripts; (E) constitution submodule
edits + push; (F) any submodule commit + push per §11.4.88; (G)
read-only live-ADB probes
(<code>dumpsys</code>/<code>getprop</code>/<code>cat /proc/...</code>/<code>screencap</code>/<code>logcat</code>);
(H) subagent dispatch per §11.4.20/§11.4.70 + §11.4.84 quiescence; (I)
web research + external API queries with §11.4.10 credentials; (J)
workable-items DB ops per §11.4.93+§11.4.95; (K) backgrounded pre-build
+ meta-test execution per §11.4.89. <strong>UNSAFE during
build:</strong> (α)
<code>git checkout</code>/<code>reset --hard</code>/<code>clean -df</code>
on the source tree (use <code>git worktree</code>); (β) mass file
deletes/renames under built source trees; (γ) submodule pointer updates
affecting built artefacts; (δ) <code>out/</code> mutations; (ε)
<code>make clean</code>/<code>m clobber</code>/<code>rm -rf out/</code>;
(ζ) container destruction; (η) disk-filling breaching §12.9 free-space
minimum; (θ) §12 host-session-safety breaches. Conductor responsibility:
before EVERY pause point during a long build, consult the catalogue,
identify (A)-(K) queue items per §11.4.42+§11.4.72, and dispatch ≥1 per
§11.4.20/§11.4.70 subagent default + §11.4.89 background. &quot;Build
running, nothing else to do&quot; is NEVER true per §11.4.94+§11.4.96. Gates
<code>CM-COVENANT-114-96-PROPAGATION</code> +
<code>CM-PARALLEL-WORK-DURING-BUILD-AUDIT</code> + paired §1.1
mutations.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.96</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-96-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.96 for the full mandate.</p>
<h2 id="11497--maximum-use-of-idle-time--progress-update-cadence-cascaded-from-constitution-submodule-11497">§11.4.97
— Maximum-Use-of-Idle-Time + Progress-Update Cadence (cascaded from
constitution submodule §11.4.97)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;keep it working, we should
do as much as possible, if not it all but as much as we can as long as
there is iddle time! it MUST be used! ... keep us updated about all
progress and all phisycal proofs and gathered data as you progress
through all open workable items!&quot;</em></p>
</blockquote>
<p>Operating-mode capstone strengthening §11.4.87 + §11.4.94 + §11.4.96:
(A) every minute of conductor idle time during which work could
autonomously progress AND is not genuinely blocked = a §11.4.97
violation; &quot;as much as possible, if not it all but as much as we can&quot; is
operative — dispatch CONTINUOUSLY through the entire idle window, not
just at scheduled wakes; (B) progress-update cadence — emit an
operator-facing 1-line update at every commit landed / subagent return /
constitutional anchor / captured evidence / milestone closure, no
operator prompt required; (C) continuous physical-proof gathering per
§11.4.5 + §11.4.6 + §11.4.69 — every autonomous closure cites
captured-evidence (evidence path goes into the §11.4.93
<code>item_history.evidence_path</code> when the DB lands); (D) composes
with §11.4.5/6/13/20/27/42/50/52/69/70/72/83/85/87/88/89/94/96; (E) the
idle-only-when-blocked closed-set is unchanged from §11.4.94(A). Gates
<code>CM-COVENANT-114-97-PROPAGATION</code> +
<code>CM-IDLE-TIME-AUDIT</code> + paired §1.1 mutations.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.97</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-97-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.97 for the full mandate.</p>
<h2 id="11495--workable-items-sqlite-db-is-tracked-in-git-never-gitignored-cascaded-from-constitution-submodule-11495">§11.4.95
— Workable-Items SQLite DB Is TRACKED in Git, NEVER Gitignored (cascaded
from constitution submodule §11.4.95)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-27): <em>&quot;We shall not Git ignore our
workable items SQlite DB since it is our single source of truth ...
workable items SQlite DB regularly commited and pushed to all
upstreams!&quot;</em></p>
</blockquote>
<p>§11.4.93&#39;s earlier &quot;gitignored per §11.4.30&quot; clause is AMENDED — the
DB at <code>docs/workable_items.db</code> is TRACKED in git, NEVER
gitignored. It IS authoritative source data, NOT a build artefact. Every
<code>workable-items sync md-to-db</code> that mutates state MUST stage
+ commit + push the DB alongside the MD regen per §11.4.19 atomic-move +
§2.1 multi-upstream push. A WAL-checkpoint
(<code>PRAGMA wal_checkpoint(TRUNCATE)</code>) is required before
commit-stage so the transient <code>.db-wal</code> +
<code>.db-shm</code> sidecars (gitignored per §11.4.30) are safely
discardable. The §11.4.77 regeneration mechanism does NOT apply — the DB
IS the source. Destructive DB ops require §9.2 hardlinked-backup +
operator authorization; §11.4.41 force-push merge-first applies if DB
history ever needs rewrite. Gates
<code>CM-COVENANT-114-95-PROPAGATION</code> +
<code>CM-WORKABLE-ITEMS-DB-TRACKED</code> + paired §1.1 mutation.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.95</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-95-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.95 for the full mandate.</p>
<hr />
<h2 id="11498--full-automation-anti-bluff-mandate-cascaded-from-constitution-submodule-11498">§11.4.98
— Full-Automation Anti-Bluff Mandate (cascaded from constitution
submodule §11.4.98)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-28): <em>&quot;Make sure we have full
automation testing of all scenarios with real bot, main group and users
without any manual intervention or contribution of real user! Everything
MUST BE fully automatic and autonomous! These tests MUST BE able to
rerun endless times when needed! ... Make sure there is no false
positives in testing! Every test and its results MUST obtain real proofs
of everything working! No bluff is allowed!&quot;</em></p>
</blockquote>
<p>Closes the manual-intervention gap (§11.4 / §11.4.2 / §11.4.5 /
§11.4.50 / §11.4.85 / §11.4.87 / §11.4.89 / §11.4.94 did not explicitly
forbid it). A live/integration/e2e/Challenge test that requires a human
action during execution (typing a message, clicking UI, hand-triggering
a webhook, attaching a file — anything beyond startup) is by definition
a §11.4 PASS-bluff at the automation layer. (A) Every governed test —
unit/integration/e2e/Challenge/stress/chaos/live — MUST be fully
self-driving end-to-end, reporting PASS/FAIL/SKIP-with-reason without
any further human action after startup. (B) Single permissible
exception: one-time credential bootstrap performed OUTSIDE test
execution (<code>.env</code> from vault, shell exports, OAuth at first
install, MTProto session activation) — configuration, not test driving.
(C) Live messenger/channel/agent tests: no &quot;operator must type&quot; prompts
(drive programmatically via second account / webhook fixture /
loopback); no hard-coded session UUIDs that collide with the active dev
session (Herald 2026-05-28 <code>claude --resume</code> silent exit -1
lesson); no 60 s human-response windows (§11.4.50 determinism
violation); re-runnability proof — PASS at <code>-count=3</code>
consecutive automated invocations with self-cleaning state; §11.4.98
obsolescence audit classifies every existing test COMPLIANT vs
NON-COMPLIANT; no silent-skip-reported-as-PASS or
stale-evidence-as-fresh. (D) With §11.4.85 + §11.4.89 + §11.4.87 +
§11.4.94 forms a continuously-validated, non-flake, anti-bluff regime.
(F) Manual-dependency tests not rewritten within 30 days graduate to
§11.4.90 Obsolete citing §11.4.98.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.98</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-98-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.98 for the full mandate.</p>
<hr />
<h2 id="11499--latest-source-documentation-cross-reference-mandate-cascaded-from-constitution-submodule-11499">§11.4.99
— Latest-Source Documentation Cross-Reference Mandate (cascaded from
constitution submodule §11.4.99)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-28): <em>&quot;Make sure we ALWAYS check
against latest versions of services we use web / online docs before
creating instructions! This situation is illustration of how we can
misguide ourselves or get banned! ... These are mandatory rules /
constraints and the result is consistency and safety of created
instructions, guides and manuals!&quot;</em></p>
</blockquote>
<p>Misguidance-by-stale-docs is the same severity class as a §11.4
PASS-bluff at the documentation layer (Herald 2026-05-28 case: a
first-draft MTProto guide recommended VoIP fallback numbers and omitted
the <code>recover@telegram.org</code> pre-login email — both
contradicted Telegram&#39;s official docs + the gotd/td maintainer guide and
could have caused a permanent account ban). Closes the gap §11.4.92 Pass
4 alludes to but does not mandate. (A) Before committing any
operator-facing instruction/guide/manual/troubleshooting/setup doc, the
author MUST: (1) fetch the LATEST official online documentation of the
documented service/library via WebFetch / MCP / direct browsing — NEVER
training data, memory, or prior committed docs; (2) cross-reference
every instruction step against that source; (3) seek secondary
authoritative sources (maintainer SUPPORT.md, official changelogs,
vetted community FAQs) when the official source is sparse/silent; (4)
cite source URLs + date in a <code>## Sources verified</code> footer in
the doc; (5) cite a
<code>Sources verified &lt;date&gt;: &lt;urls&gt;</code> footer in the
commit message. (B) Negative findings (gaps/silences/contradictions)
MUST be documented explicitly. (C) Docs older than 6 months are STALE —
re-verify before citing as operator authority, at every vN.0.0 release
boundary, on service breaking-change announcements, or on operator error
reports. (D) Risk-classified services (messengers, cloud APIs, payment
systems, AI/LLM providers, code-hosting, package managers) carry a
90-day max staleness + explicit safety warnings. (E) Composes with but
is INDEPENDENT of §11.4.92 Pass 4. (G) Commit missing either footer is
BLOCKED at release-gate; stale-beyond-grace docs graduate to §11.4.90
Obsolete (<code>Reason=stale-documentation</code>).</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.99</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-99-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.99 for the full mandate.</p>
<hr />
<h2 id="114101--autonomous-decision-over-blocking-mandate-cascaded-from-constitution-submodule-114101">§11.4.101
— Autonomous-Decision-Over-Blocking Mandate (cascaded from constitution
submodule §11.4.101)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-28): <em>&quot;when working in endless
working loop fully autonomously try to decide most properly about points
which would block execution and wait for us. If we haven&#39;t answered now
work would be blocked whole night! If possible and if that will not
cause any issues make proper and most reliable and safe decision so we
achieve maximal efficiency and work gets fully done!&quot;</em></p>
</blockquote>
<p>In autonomous / endless-loop mode (per §11.4.87), the agent MUST
minimize operator-blocking and make the safe, reliable, reversible
decision itself so work is not stalled (e.g. overnight) waiting for
input — §11.4.87 says keep working, §11.4.101 says HOW to clear the
decision points. <strong>Proceed-autonomously (closed-set, ALL must
hold):</strong> (a) the action is reversible OR has a captured pre-op
backup per §9.2; (b) the safe choice is determinable from captured
evidence per §11.4.6 (no guessing —
<code>LIKELY</code>/<code>probably</code>/<code>seems</code> is NOT a
determination); (c) a wrong choice&#39;s blast radius is bounded AND
recoverable; (d) it composes with anti-bluff §11.4, host-safety §12,
data-safety §9. <strong>Block-only-when (BLOCK via the §11.4.66
interactive mechanism ONLY when ALL hold):</strong> the action is
irreversible AND high-blast-radius AND the safe choice cannot be
determined from evidence — e.g. external-account state the agent cannot
inspect, hardware it cannot access, destructive ops without backup,
force-push (also §9.2 + §11.4.41), spending money or sending data to
third parties. <code>Operator-blocked</code> per §11.4.21 is reached
only after this rule fires AND the self-resolution-exhaustion audit
completes. An unavoidable block parks one work unit — it does NOT pause
the loop; the agent keeps progressing every non-blocked item in parallel
per §11.4.87 + §11.4.94 (posing the question then going idle is a
§11.4.94 + §11.4.97 violation). Classification: universal
(§11.4.17).</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.101</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-101-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.101 for the full mandate.</p>
<h2 id="114102--mandatory-systematic-debugging-activation--always-loaded-skill-discovery--plugin-dependency-availability-cascaded-from-constitution-submodule-114102">§11.4.102
— Mandatory systematic-debugging activation + always-loaded
skill-discovery + plugin-dependency availability (cascaded from
constitution submodule §11.4.102)</h2>
<blockquote>
<p>Verbatim user mandate (2026-05-29): <em>&quot;Make sure that we ALWAYS
trigger / start the &quot;/superpowers:systematic-debugging&quot; skills when any
issues happen! ... we MUST activate the skill(s) and make strongest
efforts in full in depth analisys / debugging and determine root causes
of all problem ... we MUST make sure that &quot;/using-superpowers&quot; skill is
ALWAYS loaded, applied and used! All dependencies (plugins) that Claude
Code or other market places are offering MUST BE installed if these are
not already available for loading and use!&quot;</em></p>
</blockquote>
<p>Three cooperating invariants — the difference between guess-and-retry
and investigate-to-root-cause-first. <strong>(A) Mandatory
systematic-debugging activation.</strong> On ANY spotted issue / bug /
test failure / gate failure / regression / misalignment / inconsistency
/ unexpected behaviour, the agent MUST activate
<code>superpowers:systematic-debugging</code> (or the
platform-equivalent structured-debugging discipline) <strong>BEFORE
proposing, writing, or applying any fix</strong> — the <strong>Iron Law:
NO FIXES WITHOUT ROOT CAUSE INVESTIGATION FIRST.</strong> Full
four-phase arc: root-cause → pattern → hypothesis → implementation (the
fix is designed only against the proven root cause). Guess-and-retry,
symptom-patching, and re-running a failed test hoping it passes
(&quot;probably transient / flaky&quot;) WITHOUT a completed investigation are
§11.4.102 violations; calling a failure
<code>transient</code>/<code>flaky</code>/<code>intermittent</code>/<code>probably-timing</code>
without captured forensic evidence is simultaneously a §11.4.6
(no-guessing) and §11.4.7 (demotion-evidence) violation. <strong>(B)
Mandatory always-loaded <code>using-superpowers</code>.</strong>
<code>superpowers:using-superpowers</code> (or the platform-equivalent
skill-discovery / capability-index discipline) MUST be loaded and
applied at session start and consulted before any task — survey
available skills before acting on ANY request; if ANY skill could apply
(even at 1% relevance) it MUST be invoked rather than improvised from
memory. <strong>(C) Mandatory plugin / dependency availability.</strong>
Every skill plugin / marketplace package / capability dependency the
project relies on MUST be installed + loadable BEFORE the dependent work
proceeds; a missing plugin that blocks a mandated skill is a
release-blocker until installed + confirmed loadable (confirm by
observing the skill in the live capability list — install exit 0 ≠ skill
loadable, per the §11.4.80 lesson). Composes with §11.4.4 / §11.4.6 /
§11.4.7 / §11.4.8 / §11.4.43 / §11.4.70 / §11.4.82(A) / §11.4.92.
Classification: universal (§11.4.17). No escape hatch — no
<code>--skip-systematic-debugging</code>,
<code>--guess-and-retry-OK</code>,
<code>--symptom-patch-permitted</code>,
<code>--skip-skill-discovery</code>, <code>--plugin-optional</code>,
<code>--missing-plugin-is-warning</code> flag.</p>
<p><strong>Cascade requirement:</strong> This anchor (verbatim or by
<code>§11.4.102</code> reference) MUST appear in every owned submodule&#39;s
<code>CONSTITUTION.md</code>, <code>CLAUDE.md</code>, and
<code>AGENTS.md</code>. Propagation gate
<code>CM-COVENANT-114-102-PROPAGATION</code>; paired mutation strips the
literal → gate FAILs. Release blocker. <strong>Canonical
authority:</strong> constitution submodule <code>Constitution.md</code>
§11.4.102 for the full mandate.</p>
</body>
</html>