Execution evidence hardening: run/replay artifacts and sociosphere bridge#6
Execution evidence hardening: run/replay artifacts and sociosphere bridge#6
Conversation
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
|
Paired upstream workspace-controller change is in |
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 0094e07aed
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| @@ -0,0 +1,107 @@ | |||
| #!/usr/bin/env python3 | |||
There was a problem hiding this comment.
This entrypoint is committed with mode 0644, so invoking it as documented (scripts/emit_run_artifact.py ...) fails with Permission denied on Unix unless callers prepend python3. Because the usage text in both new emitter scripts omits python3 and existing script entrypoints in this repo are executable, this breaks the advertised CLI path for the new evidence emitters.
Useful? React with 👍 / 👎.
| lane = (spec.get("policy") or {}).get("lane") | ||
| backend = ((spec.get("vm") or {}).get("backendIntent")) | ||
| if not lane or not backend: | ||
| die("bundle spec.policy.lane and spec.vm.backendIntent are required", 2) |
There was a problem hiding this comment.
The emitter only checks that spec.policy.lane is present, but schemas/run-artifact.schema.v0.1.json restricts lane to staging or prod. As written, a bundle with a non-empty invalid lane (for example dev) will still produce run-artifact.json, creating artifacts that violate the schema and can fail downstream validation or ingestion.
Useful? React with 👍 / 👎.
2 participants
Summary
This PR fills the downstream evidence gap in
agentplaneby adding:schemas/run-artifact.schema.v0.1.jsonschemas/replay-artifact.schema.v0.1.jsonscripts/emit_run_artifact.pyscripts/emit_replay_artifact.pydocs/sociosphere-bridge.mdWhy
agentplanealready emits validation and placement evidence. This PR adds the missing run/replay layer and documents how upstreamsociosphereworkspace artifacts may be carried through as references instead of being rediscovered by scanning the workspace.Follow-up