Source control
GitHub, GitLab, Bitbucket, signed release repos, module docs, and provenance refs.
Control plane for AI agents. Govern. Connect. Observe. Prove.
Open source and hosted platform for secure AI agent telemetry, MCP governance, policy gates, audit evidence, connector modules, and permissioned installers.
Run open-source self-hosted infrastructure or hosted LNSAT Cloud. Enroll Linux, macOS, Windows, container, and Kubernetes clients. Connect repos, clouds, databases, identity, chat, observability, MCP servers, and agent runtimes through governed modules.
allowed after policy review
installer hardening
5mpolicy reviewed
12mscope approved
18mPre-built integrations and MCP servers connect common operational systems. The SDK lets developers build new connectors with typed manifests, tests, docs, permissions, and policy hooks.
View connector pagesGitHub, GitLab, Bitbucket, signed release repos, module docs, and provenance refs.
Cloudflare, AWS, Azure, Google Cloud, object storage, DNS refs, and provider APIs.
Linux/systemd, Windows Services, macOS launchd, Docker, Podman, Kubernetes, and queue workers.
Replit, Lovable-style builders, Codespaces, Vercel, Netlify, Cloudflare, and CI tools connect through Git, webhooks, APIs, MCP, and release checks.
PostgreSQL, MySQL, Redis, object storage, audit ledgers, and migration approval evidence.
Local auth, OIDC, SAML, LDAP, Active Directory, provider refs, and user-selected authorization levels.
Slack, Teams, email, Jira, Linear, ticketing queues, incident review, and approval routing.
OpenTelemetry, Prometheus, Grafana, Loki, Elastic, Splunk, Datadog, and SIEM export targets.
MCP servers, hosted model APIs, local model hosts, agent runtimes, tool servers, and sandboxed adapters.
Run the control plane from source, container, or signed server packages. You own the data, auth choices, clients, connector manifests, policy, and audit store.
Managed SaaS control plane for teams that want hosted dashboards, curated module review, managed updates, enterprise support, and customer-owned client policy.
LNSAT ships as source, server packages, host clients, containers, and cluster profiles. Each platform path keeps install logs, service identity, capability scope, rollback, and disablement visible.
Debian, Ubuntu, RHEL, Rocky, AlmaLinux, Fedora, Arch, and Alpine servers with systemd-first service management.
Apple Silicon and Intel clients with launchd services, desktop helper flows, local auth, and signed package delivery.
Windows Server and desktop endpoints with scoped Windows Services, event-log evidence, MSI rollback, and permission manifests.
Docker, Podman, OCI images, Compose profiles, Helm charts, and Kubernetes policy-aware deployment patterns.
LNSAT is serious infrastructure: source available, installable, inspectable, and extensible, with a clean commercial path for support, curated modules, managed updates, and hosted operations.
Platform detailsMCP, connectors, clients, and agents adapt into LNSAT. They do not become the security boundary. Every request crosses Gateway policy first.
Actions carry capability scope, risk level, approval posture, rollback refs, and audit obligations before any runtime path can open.
Operators see agent assignments, context sources, requested capabilities, blocked gates, and evidence trails without granting broad host access.
Map systems, clients, users, agents, connectors, MCP servers, permissions, and audit events so teams understand what can touch what.
Module manifests declare scopes, permissions, runtime needs, policy hooks, install target, update path, and disablement behavior before activation.
Source refs, policy decisions, approval state, validation commands, checksums, and rollback notes stay visible to operators and developers.
LNSAT treats every agent action as a governed request. Gateway policy, audit evidence, approval state, rollback refs, and disablement paths come before runtime execution.
Security modelMCP tools and connectors adapt into LNSAT. Gateway remains the security boundary.
Core server runs unprivileged. Future privileged helpers stay narrow, signed, and disabled by default.
Clients expose named capabilities only. No broad SSH wrapper or arbitrary command channel.
Each action needs source refs, policy decision, approval posture, rollback, and audit obligations.
Marketplace listings should be easy to browse and hard to abuse. Every module needs declared scopes, target systems, install surface, policy hooks, test evidence, update channel, and disablement path.
Marketplace detailsStatic placeholder for OSS packages and future curated listings.
repo metadata
manifest previewread-only host facts
requires approvalgateway rules
source reviewsigned evidence export
plannedidentity refs only
provider unlockedrepo, webhook, deploy evidence
sandbox firstEach official module gets its own public `hypler-dev` repository with README, security notes, compatibility matrix, examples, and GitHub Pages docs.
Module packages are manifest-first: `lnsat.module.json`, capability declarations, policy hooks, tests, docs, checksums, and optional runtime assets.
Initial release can be signed tar/zip for simple install. Later packages can add OCI images, npm packages, Python wheels, OS packages, or MCP server bundles when needed.
LNSAT marketplace reads manifest metadata and docs, shows scopes and risk, then blocks activation until Gateway policy and approvals exist.
LNSAT is structured as serious Linux and OSS software: boring install paths, explicit security posture, package metadata, contribution rules, CI gates, release artifacts, and module author tooling.
OSS standardsProvide source tarballs, package manifests, install scripts that explain every step, systemd docs, unprivileged service defaults, logs in expected locations, and rollback/uninstall notes.
Ship an SDK with typed manifests, permission declarations, policy hooks, test fixtures, local sandbox harnesses, and marketplace validation rules.
Separate open-source core from enterprise support, curated marketplace listings, hosted operations, update channels, signed artifacts, and compliance-oriented audit export.
From source review to managed fleets, every tier starts clean: no bundled customer data, no credentials, no preconnected systems, and no automatic ingestion before onboarding.
Install guideauditable source, docs, config templates
guided setup UI, local auth, blank state
server installer, TLS guidance, audit policy
clients, capability manifests, permission graph
managed control plane with customer-owned clients
Public releases separate source, server runtime, OS installers, host clients, desktop helpers, MCP extension packages, and connector SDKs. Each artifact needs checksum, signature status, SBOM, provenance, permissions, service user, rollback, uninstall, and disablement refs.
Debian, Ubuntu, RHEL, Rocky, AlmaLinux, Fedora, Arch, and Alpine paths with systemd, non-root service users, signed packages, and uninstall rollback.
Apple Silicon and Intel packages with launchd services, desktop helper, signed artifacts, permissions review, and local developer mode.
Windows Server and desktop support with scoped Windows Services, MSI rollback, event-log integration, and explicit capability grants.
Docker, Podman, OCI, Compose, Helm, and Kubernetes deployment profiles for labs, teams, hosted edge, and enterprise clusters.
LNSAT connectors should install easily but never bypass policy. Drop manifests, inspect requested scopes, map relationships, review permissions, then activate only after approval and audit gates exist.
Release discipline, community process, marketplace review, hosted operations, and Linux-grade packaging expectations are part of the product, not afterthoughts.
Versioned source releases, signed artifacts, package metadata, SBOMs, provenance, checksums, and clear upgrade/rollback policy.
Contribution guide, security policy, code of conduct, public roadmap, module review process, and transparent compatibility rules.
Automated manifest checks, permission diffing, signed module bundles, sandbox tests, vulnerability policy, and visible trust signals.
Support plans, hosted option waitlist, enterprise policy packs, lifecycle support, curated modules, and compliance export paths.
USER / AUTH MANAGEMENT
Local, third-party, isolated, and user-selected level modes are source refs.
docs/build/packets/BP-0217.mdFuture identities exist as refs only. No user store exists.
packages/packets/src/auth-session-readiness-contract.tsNo session database, token store, callback route, or JWT signing.
docs/build/packets/BP-0217.mdNo configure, save, connect, approve, or permission write controls.
docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.mdSupported as future source reference. Provider wiring, sessions, credentials, and permission mutation stay blocked.
docs/build/packets/BP-0217.mdSupported as future source reference. Provider wiring, sessions, credentials, and permission mutation stay blocked.
docs/build/packets/BP-0217.mdSupported as future source reference. Provider wiring, sessions, credentials, and permission mutation stay blocked.
docs/build/packets/BP-0217.mdSupported as future source reference. Provider wiring, sessions, credentials, and permission mutation stay blocked.
docs/build/packets/BP-0217.mdVisible in current read-only management surfaces.
Visible in current read-only management surfaces.
Request shape can be previewed, but no mutation path exists.
Requires later persisted policy/auth packet before configuration or execution.
Requires later persisted policy/auth packet before configuration or execution.
Requires later persisted policy/auth packet before configuration or execution.
Requires later persisted policy/auth packet before configuration or execution.
Future session boundary only. No session DB, token store, JWT signing, or callback route exists.
Future session boundary only. No session DB, token store, JWT signing, or callback route exists.
Future session boundary only. No session DB, token store, JWT signing, or callback route exists.
Future session boundary only. No session DB, token store, JWT signing, or callback route exists.
Future session boundary only. No session DB, token store, JWT signing, or callback route exists.
Future identity reference only. No user table, provider account, or credential storage exists.
Future identity reference only. No user table, provider account, or credential storage exists.
Future identity reference only. No user table, provider account, or credential storage exists.
Future identity reference only. No user table, provider account, or credential storage exists.
Future identity reference only. No user table, provider account, or credential storage exists.
Future tenant/project/environment/integration boundary only. No DB write or permission mutation exists.
Future tenant/project/environment/integration boundary only. No DB write or permission mutation exists.
Future tenant/project/environment/integration boundary only. No DB write or permission mutation exists.
Future tenant/project/environment/integration boundary only. No DB write or permission mutation exists.
Future integration-auth bridge uses secret references only and cannot activate a live connector here.
Future integration-auth bridge uses secret references only and cannot activate a live connector here.
Future integration-auth bridge uses secret references only and cannot activate a live connector here.
Future integration-auth bridge uses secret references only and cannot activate a live connector here.
Future integration-auth bridge uses secret references only and cannot activate a live connector here.
No local user table, provider account creation, or password storage.
No session database, token store, JWT signing, or callback route.
No OIDC, OAuth, SAML, passkey, or hosted provider client is wired.
Authorization levels are visible as refs only; no role write exists.
Integration auth bridges require later user-controlled setup scope.
Secret references only. No credential field or raw secret value.
Packet source names auth/session scope and blocked live behavior.
Auth mode selection stays deployment-owner controlled.
Management UI has no live auth or settings mutation path.
BP-0218 was selected after auth readiness.
Source-Only Auth Session And Authorization Levels Readiness Contract
Defines local auth, third-party auth, isolated auth, session boundaries, and authorization levels as source-only readiness evidence.
lnsat.platform.auth_session_readiness.v0_1
Pure TypeScript source contract for BP-0217 readiness and fail-closed blocked scopes.
Auth Modes
Source posture for deployment-owner auth choice, user-owned integrations, and authorization levels.
Settings / Policy
Requires auth and integration posture to remain source evidence until later packets open live auth or settings mutation.
Self-Deploy Packaging Plan Contract
Selected BP-0217 as next auth/session/authorization readiness step.
Queue
Shows BP-0217 and BP-0218 packet routing.
COMMAND CENTER
No active packet. Next packet shown from source status.
docs/build/STATUS.jsonDistribution Reality And Secure Installer System Plan.
docs/build/BOARD.mdLive/runtime/mutation gates remain closed.
NEXT_SESSION.mdRead-only source evidence render.
docs/build/packets/BP-0186.jsonBP-0191 cleanup is complete. BP-0182 Local Knowledge Record Model is complete. BP-0183 Local Repo Knowledge Index is complete. BP-0184 Knowledge Search And Context Bundle is complete. BP-0185 Management UI Information Architecture is complete. BP-0186 Management Overview UI MVP is complete. BP-0187 Knowledge UI MVP is complete. BP-0188 Eval Harness is complete. BP-0189 Persistence Plan is complete. BP-0190 Approval Center Plan And UI Preview is complete. BP-0192 Read-Only Knowledge Gateway API Contract is complete. BP-0193 Auth And User-Owned Integration Boundary is complete. BP-0194 Settings Policy Auth Posture UI Preview is complete. BP-0195 Read-Only MCP Knowledge Surface Contract is complete. BP-0196 Read-Only Packet Management UI Preview is complete. BP-0197 Read-Only Agent Management UI Preview is complete. BP-0198 Read-Only Audit Management UI Preview is complete. BP-0199 Read-Only Substrates Management UI Preview is complete. BP-0200 Read-Only Runtime Readiness Management UI Preview is complete. BP-0201 Read-Only Management Navigation And MVP Surface Review is complete. BP-0202 Read-Only Persistence And Policy Gate Review is complete. BP-0203 Source-Only Persistence Gate Contract is complete. BP-0204 Source-Only Persistence Schema Contract is complete. BP-0205 Source-Only Migration Artifact Static Review Contract is complete. BP-0206 GitHub Repository Publication Checkpoint is complete: public repo https://github.com/hypler-dev/LNSAT, branch main, publication commit 7dba5e1dfbe12901f8d9886463d51f34e83f521f. BP-0207 MVP Path And Publication Readiness Review is complete. BP-0208 Source-Only Writer Preflight Contract is complete. BP-0209 Source-Only Database Security Preflight Contract is complete. BP-0210 Source-Only Policy Gate Preflight Contract is complete. BP-0211 Source-Only Approval Request Preflight Contract is complete. BP-0212 Source-Only Persistence Readiness Preflight Contract is complete. BP-0213 Source-Only Implementation Packet Selection Review is complete and selected persisted knowledge records/source snapshots. BP-0214 Source-Only Knowledge Persistence Implementation Packet Contract is complete. BP-0215 Source-Only Persisted Knowledge Read Surface Contract is complete. BP-0216 Source-Only Self-Deploy Packaging Plan Contract is complete. BP-0217 Source-Only Auth Session And Authorization Levels Readiness Contract is complete and added a first-signal User/Auth Management web surface. BP-0218 Source-Only Distribution And Client Installer Plan Contract is complete. BP-0219 Source-Only Release Manifest Contract was queued, then paused for BP-0220 Distribution Reality And Secure Installer System Plan so package families, install tiers, setup UI, permission tiers, service boundaries, and security gates are defined before release-manifest implementation continues. Public landing-page SEO surface for lnsat.com is implemented: first web screen now explains secure AI agent telemetry, MCP governance, policy gates, audit evidence, permissioned installers, planned OS/container binaries, install tiers, connector/MCP extension handling, relationship graph, permission matrix, and Advanced Evidence after the product story. Mobile public-site polish is verified at 390px for homepage and connectors route with no horizontal overflow.
Last known source checks: npm run docs:check, npm run check, npm run format:check, gh api user --jq .login returned hypler-dev, gh repo view hypler-dev/LNSAT returned PUBLIC with default branch main, git ls-remote --heads origin main returned 7dba5e1dfbe12901f8d9886463d51f34e83f521f, env/key/local DB screening found only .env.example and no publishable key or DB files, secret-pattern screening found no private key/token patterns in publishable files, npm run test -w @lnsat/packets -- writer-preflight-contract, npm run test -w @lnsat/packets -- database-security-preflight-contract, npm run test -w @lnsat/packets -- policy-gate-preflight-contract, npm run test -w @lnsat/packets -- approval-request-preflight-contract, npm run typecheck -w @lnsat/packets, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index, npm run test -w @lnsat/packets -- approval-request-preflight-contract policy-gate-preflight-contract database-security-preflight-contract writer-preflight-contract migration-artifact-static-review persistence-schema-contract persistence-policy-gate, npm run check passed after BP-0211 updates, npm run test -w @lnsat/packets -- persistence-readiness-preflight-contract, npm run test -w @lnsat/packets -- persistence-readiness-preflight-contract approval-request-preflight-contract policy-gate-preflight-contract database-security-preflight-contract writer-preflight-contract migration-artifact-static-review persistence-schema-contract persistence-policy-gate, npm run typecheck -w @lnsat/packets, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index, npm run docs:check, npm run format:check, npm run check passed after BP-0212 updates, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index, npm run test -w @lnsat/web, npm run docs:check, npm run format:check, npm run check passed after BP-0213 updates, npm run test -w @lnsat/packets -- knowledge-persistence-implementation-packet, npm run typecheck -w @lnsat/packets, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index, npm run docs:check, npm run format:check, npm run check passed after BP-0214 updates, npm run test -w @lnsat/packets -- persisted-knowledge-read-surface-contract, npm run typecheck -w @lnsat/packets, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index, npm run docs:check, npm run format:check, npm run check passed after BP-0215 updates, npm run test -w @lnsat/packets -- self-deploy-packaging-plan-contract, npm run typecheck -w @lnsat/packets, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index, npm run docs:check, npm run format:check, npm run check passed after BP-0216 updates, npm run build -w @lnsat/web produced apps/web/out static export for deployment start, Cloudflare Pages project creation completed for project lnsat, Cloudflare Pages production upload completed from apps/web/out on branch main, curl https://lnsat.pages.dev returned HTTP 200 with Command Center content, npm run build:web passed after BP-0217 User/Auth Management and BP-0218 installer plan updates, npm run deploy:web:pages completed BP-0218 clean-install handoff static export redeploy to https://6c0265b7.lnsat.pages.dev, curl https://lnsat.pages.dev/?v=bp0218-clean returned HTTP 200 with User/Auth Management before Management Overview and no form/button/input controls, dig +short lnsat.hypler.com returned no DNS record, docs/architecture/DISTRIBUTION_AND_CLIENT_INSTALLERS.md added as source-only distribution and client installer plan, docs/build/packets/BP-0218.md and .json queued Source-Only Distribution And Client Installer Plan Contract, npm run test -w @lnsat/packets -- auth-session-readiness-contract passed, npm run typecheck -w @lnsat/packets passed after BP-0217 contract export, npm run test -w @lnsat/web -- auth-session-management auth-integration-posture management-overview management-surface-index packet-management passed, npm run test -w @lnsat/packets -- distribution-client-installer-plan-contract passed, npm run typecheck -w @lnsat/packets passed after BP-0218 contract export, npm run test -w @lnsat/web -- packet-management management-overview management-surface-index auth-session-management passed after BP-0218/BP-0219 state refresh, npm run docs:check passed after BP-0218/BP-0219 state refresh, npm run format:check passed after BP-0218/BP-0219 state refresh, npm run check passed after BP-0218 distribution/client installer contract and Extension SDK/UI handoff updates, npm run build:web passed after BP-0218 complete state refresh, npm run deploy:web:pages completed BP-0218 complete static export redeploy to https://a23f3083.lnsat.pages.dev, curl https://lnsat.pages.dev/?v=bp0218-complete returned HTTP 200 with User/Auth Management before Management Overview, BP-0218 complete state, BP-0219 queued state, and no form/button/input controls, npm run test -w @lnsat/web -- auth-session-management management-overview packet-management passed after manager-home UI simplification, npm run build:web passed after manager-home UI simplification, npm run format:check passed after manager-home UI simplification, npm run deploy:web:pages completed manager-home static export redeploy to https://b92c7722.lnsat.pages.dev, curl https://lnsat.pages.dev/?v=manager-home returned HTTP 200 with LNSAT Management, manager workflow, connector manifest preview, permission matrix, collapsed Build Evidence Console, and no form/button/input controls, docs/architecture/DISTRIBUTION_REALITY_AND_SECURE_INSTALLER_PLAN.md added as source-only distribution reality and secure installer plan, BP-0220 queued before BP-0219 release manifest implementation continues, npm run test -w @lnsat/web -- management-overview packet-management management-surface-index passed after landing page SEO surface, npm run typecheck -w @lnsat/web passed after landing page SEO surface, npm run docs:check passed after landing page SEO surface, npm run format:check passed after landing page SEO surface, npm run build:web passed after landing page SEO surface with existing Turbopack NFT warning, curl http://127.0.0.1:3137 returned HTTP 200 with landing page, binary package copy, and no form/button/input controls, Playwright screenshots verified desktop tablet and mobile landing layouts, wrangler pages project list showed lnsat project domain is lnsat.pages.dev only; lnsat.com custom domain not attached, git push origin main completed landing and deployment-checkpoint commits, npm run deploy:web:pages completed landing static export redeploy to stable production https://lnsat.pages.dev/, curl https://lnsat.pages.dev/?v=landing-final returned HTTP 200 with landing and binary package copy and no form/button/input controls, curl https://lnsat.com/?v=landing-final returned Cloudflare 525, wrangler pages deployment list showed latest production deployment from main and stable lnsat.pages.dev serving, Playwright mobile QA at 390x900 passed for / and /connectors with no horizontal overflow, Playwright mobile connector navigation from / to /connectors passed, npm run typecheck -w @lnsat/web passed after mobile public-site polish, npm run test -w @lnsat/web -- management-overview packet-management management-surface-index passed after mobile public-site polish, npm run docs:check passed after mobile public-site polish, npm run format:check passed after mobile public-site polish, npm run build:web passed after mobile public-site polish with existing Turbopack NFT warning.
BP-0186 is complete as read-only Management Overview UI MVP.
DB writes and persisted audit ledger remain blocked.
Runtime dispatcher, broker dispatch, adapter invocation, and live execution remain blocked.
BP-0186 uses source evidence only; live health probes are a non-goal.
Read existing build-state docs and show current state, next packet, and evidence.
docs/build/packets/BP-0186.jsonRead packet status, queue, recent evidence, and source refs.
docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.mdList blocked live/runtime/mutation scopes from current handoff docs.
NEXT_SESSION.mdRequires later Gateway policy, approval, audit persistence, and runtime adapter scope.
docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.mdMVP shows preview shape only; no approve/deny mutation exists.
docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBlocked by current product boundary.
NEXT_SESSION.mdBP-0219 release-manifest implementation is paused before more code work.
docs/build/PACKET_LOG.mdAdded
docs/build/PACKET_LOG.mdAdded BP-0220 packet docs and JSON.
docs/build/PACKET_LOG.mdPlan defines source release, server bundle, server installer, setup UI,
docs/build/PACKET_LOG.mdPlan defines install tiers: source review, local single-node server,
docs/build/PACKET_LOG.mdPlan defines first-run setup flow, professional accessible installer UI,
docs/build/PACKET_LOG.mdmachine-readable current status
Current phase, active packet, next packet, pivot, and last checks.
Active Packet / Queue
Current packet queue and packet closeout evidence.
Completed Packet: BP-0218 Source-Only Distribution And Client Installer Plan Contract
Latest completed packet evidence and verification notes.
Active Slice
Current allowed scope, blocked scope, and closeout rule.
Management Overview UI MVP
Current packet objective, scope, non-goals, and checks.
Management UI Information Architecture
Selection evidence for the Command Center UI.
Screen Contracts
Human management screen contracts and blocked-scope language.
MVP SURFACES
Nine read-only management surfaces are indexed.
docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.mdCurrent MVP surfaces with source-backed UI previews.
docs/build/PACKET_LOG.mdPython is optional later adapter scope, not a core MVP requirement.
docs/build/packets/BP-0200.jsonOS-specific artifacts belong to later policy-gated substrate packages.
docs/build/packets/BP-0199.jsonCurrent state, queue, blocked scopes, readiness, and source evidence render as read-only management overview.
Live/runtime action remains blocked until Gateway policy, approval, audit persistence, and runtime adapter scope open.
docs/build/packets/BP-0186.jsonLocal source-grounded search, citation refs, context bundle preview, warnings, and source expansion render read-only.
Embeddings, DB-backed search, external connectors, Gateway write routes, and MCP mutation remain closed.
docs/build/packets/BP-0187.jsonPacket queue, completed packets, acceptance checks, verification commands, rollback notes, and blocked gates render source-only.
Packet create/edit/reorder mutation and Git runner remain blocked.
docs/build/packets/BP-0196.jsonSubstrate classes, OS connection posture, inventory evidence, adapter readiness, and install boundaries render read-only.
Node-agent install, SSH, Docker, raw shell, service mutation, Python runtime requirement, and OS-specific binary requirement remain closed.
docs/build/packets/BP-0199.jsonDry-run proof chain, preflight, authorization, readiness, plan, approval gate, and blocked invocation reasons render read-only.
Runtime dispatcher, live broker dispatch, adapter invocation, and live execution remain blocked.
docs/build/packets/BP-0200.jsonAgent profiles, assignments, allowed capabilities, blocked capabilities, context inputs, and handoff evidence render read-only.
Agent mutation, live agent execution, runtime dispatch, connector setup, and credential storage remain blocked.
docs/build/packets/BP-0197.jsonApproval-required and blocked action previews render with source refs, risk rating, policy decision, rollback, and audit obligations.
Approve/deny mutation is not open until a later persisted approval packet opens it.
docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.mdAudit event previews, persistence readiness, writer status, display filters, and missing DB/persistence gates render read-only.
Persisted audit writer, DB writes, migration execution, and queue mutation remain blocked.
docs/build/packets/BP-0198.jsonIndependent open source/self-deploy posture, local auth, third-party auth, user-owned integrations, and user-selected authorization levels render read-only.
Settings mutation, live auth provider wiring, session DB, credential storage, and integration setup writes remain blocked.
docs/build/packets/BP-0194.jsonCurrent state, queue, blocked scopes, readiness, and source evidence render as read-only management overview.
Live/runtime action remains blocked until Gateway policy, approval, audit persistence, and runtime adapter scope open.
Local source-grounded search, citation refs, context bundle preview, warnings, and source expansion render read-only.
Embeddings, DB-backed search, external connectors, Gateway write routes, and MCP mutation remain closed.
Packet queue, completed packets, acceptance checks, verification commands, rollback notes, and blocked gates render source-only.
Packet create/edit/reorder mutation and Git runner remain blocked.
Substrate classes, OS connection posture, inventory evidence, adapter readiness, and install boundaries render read-only.
Node-agent install, SSH, Docker, raw shell, service mutation, Python runtime requirement, and OS-specific binary requirement remain closed.
Dry-run proof chain, preflight, authorization, readiness, plan, approval gate, and blocked invocation reasons render read-only.
Runtime dispatcher, live broker dispatch, adapter invocation, and live execution remain blocked.
Agent profiles, assignments, allowed capabilities, blocked capabilities, context inputs, and handoff evidence render read-only.
Agent mutation, live agent execution, runtime dispatch, connector setup, and credential storage remain blocked.
Approval-required and blocked action previews render with source refs, risk rating, policy decision, rollback, and audit obligations.
Approve/deny mutation is not open until a later persisted approval packet opens it.
Audit event previews, persistence readiness, writer status, display filters, and missing DB/persistence gates render read-only.
Persisted audit writer, DB writes, migration execution, and queue mutation remain blocked.
Independent open source/self-deploy posture, local auth, third-party auth, user-owned integrations, and user-selected authorization levels render read-only.
Settings mutation, live auth provider wiring, session DB, credential storage, and integration setup writes remain blocked.
The current platform core is TypeScript contracts, source evidence, and read-only web/Gateway surfaces; it requires no Python and no OS-specific binary.
Host and OS-level control belongs to later substrate adapters or node-agent packages after policy, approval, and audit packets open scope.
Python can be allowed later as an adapter/helper runtime chosen by deployment owners, but it is not a core dependency or management UI requirement.
Deployment owners choose integrations, auth providers, local auth, third-party auth, and authorization levels; LNSAT keeps those choices behind Gateway policy.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Blocked by BP-0201 or current handoff boundary.
Management IA defines each operator management surface used by the index.
Current packet source identifies the management surface review.
BP-0201 selected BP-0202 historically, and current source state queues BP-0220 secure installer planning after BP-0218 distribution/client installer plan closeout.
Current evidence says Python and OS-specific binaries are not core MVP requirements.
Settings/Policy posture preserves deployment-owner auth and integration control.
Handoff and packet non-goals keep settings, packets, approvals, audit, runtime, DB, Git, deploy, credentials, and infrastructure mutation closed.
current build state
Machine-readable next packet and current platform boundaries.
Queue
Operator-facing queue and latest packet closeout.
Completed Packet: BP-0215 Source-Only Persisted Knowledge Read Surface Contract
Append-only publication, packet evidence, and validation notes.
Active Slice
Allowed scope, blocked scope, and handoff boundary.
Screen Contracts
Nine management screen contracts and blocked-scope language.
Management Overview UI MVP
Command Center source evidence.
Knowledge UI MVP
Knowledge/Wiki source evidence.
Settings Policy Auth Posture UI Preview
Settings/Policy and auth/integration posture evidence.
Read-Only Packet Management UI Preview
Packets source evidence.
Read-Only Agent Management UI Preview
Agents source evidence.
Read-Only Audit Management UI Preview
Audit source evidence.
Read-Only Substrates Management UI Preview
Substrates and OS connection posture evidence.
Read-Only Runtime Readiness Management UI Preview
Runtime readiness and no Python/OS-binary core evidence.
Read-Only Management Navigation And MVP Surface Review
Current surface index packet evidence.
Read-Only Persistence And Policy Gate Review
Completed source-only persistence and policy gate review.
Source-Only Persistence Gate Contract
Completed source-only persistence gate contract evidence.
Source-Only Persistence Schema Contract
Completed source-only persistence schema contract evidence.
Source-Only Migration Artifact Static Review Contract
Completed migration static review packet evidence.
GitHub Repository Publication Checkpoint
Completed GitHub publication checkpoint evidence.
Source-Only Writer Preflight Contract
Completed writer preflight packet evidence.
Source-Only Database Security Preflight Contract
Completed database security preflight packet evidence.
Source-Only Policy Gate Preflight Contract
Completed policy gate preflight packet evidence.
Source-Only Approval Request Preflight Contract
Completed approval request preflight packet evidence.
Source-Only Persistence Readiness Preflight Contract
Completed persistence readiness preflight packet evidence.
Source-Only Implementation Packet Selection Review
Completed implementation packet selection review evidence.
Source-Only Knowledge Persistence Implementation Packet Contract
Completed knowledge persistence implementation packet contract evidence.
Source-Only Persisted Knowledge Read Surface Contract
Completed persisted knowledge read surface packet evidence.
Source-Only Self-Deploy Packaging Plan Contract
Completed self-deploy packaging plan packet evidence.
Source-Only Auth Session And Authorization Levels Readiness Contract
Completed auth session and authorization levels readiness packet evidence.
Source-Only Distribution And Client Installer Plan Contract
Completed distribution and client installer plan packet evidence.
Source-Only Release Manifest Contract
Deferred source-only release manifest packet evidence.
Distribution Reality And Secure Installer System Plan
Queued distribution reality and secure installer planning evidence.
KNOWLEDGE / WIKI
Read-only local file snapshot index.
docs/architecture/INTERNAL_KNOWLEDGE_SURFACE.md:3-152 cited hits under 1400 tokens.
docs/architecture/INTERNAL_KNOWLEDGE_SURFACE.md:67-186Every included record has a visible citation ref.
docs/architecture/INTERNAL_KNOWLEDGE_SURFACE.md:67-186Embeddings, Gateway/MCP routes, source edits, and live connectors stay closed.
docs/build/packets/BP-0187.md:15-19knowledge ui source refs
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
## Knowledge Record Fields - BP-0182 implements the first pure TypeScript model in packages/packets/src/knowledge-record.ts . - BP-0183 implements the first source-only local repo index in packages/packets/src/local-repo-knowledge-index.ts . It accepts caller-supplied allowlisted file snapshots, n
## Build Packet Sequence - BP-0181: MVP Internal Knowledge Surface Direction. - BP-0182: Local Knowledge Record Model. - BP-0183: Local Repo Knowledge Index. - BP-0184: Knowledge Search + Context Bundle. - BP-0185: Management UI Information Architecture. - BP-0186: Management Overview UI MVP. - BP-0
## Allowed, Approval-Required, Blocked Allowed in MVP: - read local source-derived build state; - inspect packet status and packet evidence; - search indexed local knowledge records; - compile cited context bundles from local records; - preview policy/audit/approval evidence; - view blocked scopes a
## Shared UI Rules - Every visible answer must expose source evidence through a source path, packet id, decision id, source ref, citation ref, or packet-log entry. - Every screen must label actions as allowed, approval-required, or blocked. - Blocked language must say what gate is missing and which
## Shared UI Rules - Every visible answer must expose source evidence through a source path, packet id, decision id, source ref, citation ref, or packet-log entry. - Every screen must label actions as allowed, approval-required, or blocked. - Blocked language must say what gate is missing and which
## System A: Internal Wiki/RAG For Agents Agent wiki/RAG is not chat memory. It is repo-truth retrieval. MVP capabilities: - register allowlisted repo/docs/packet/decision sources; - normalize markdown, JSON, and selected source files; - create deterministic knowledge records with exact source refs;
BP-0187 packet lookup
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
## Build Packet Sequence - BP-0181: MVP Internal Knowledge Surface Direction. - BP-0182: Local Knowledge Record Model. - BP-0183: Local Repo Knowledge Index. - BP-0184: Knowledge Search + Context Bundle. - BP-0185: Management UI Information Architecture. - BP-0186: Management Overview UI MVP. - BP-0
## Objective Build read-only Knowledge/Wiki UI for local knowledge search and context bundle preview.
## Selection Evidence BP-0186 completed the read-only Command Center dashboard and made the web first screen source-derived. The next MVP gap is Knowledge/Wiki UI over the existing BP-0182 through BP-0184 local knowledge model, index, search, and cited context bundle evidence.
## Direction LNSAT MVP now has two connected systems: 1. Internal wiki/RAG system for agents. 2. Human management UI console for operators. They stay separate. Agents use read-only knowledge APIs/MCP to get grounded context before touching code or infrastructure. Operators use the management console
## MVP Shape The first MVP demo path should be: text Agent - Knowledge search - Context bundle - cited packet/action plan Operator - Management console - source evidence - approval preview MVP remains source-only, read-only, and file-derived: - NEXT_SESSION.md - docs/DOCS_INDEX.md -
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
## Knowledge Record Fields - BP-0182 implements the first pure TypeScript model in packages/packets/src/knowledge-record.ts . - BP-0183 implements the first source-only local repo index in packages/packets/src/local-repo-knowledge-index.ts . It accepts caller-supplied allowlisted file snapshots, n
## Build Packet Sequence - BP-0181: MVP Internal Knowledge Surface Direction. - BP-0182: Local Knowledge Record Model. - BP-0183: Local Repo Knowledge Index. - BP-0184: Knowledge Search + Context Bundle. - BP-0185: Management UI Information Architecture. - BP-0186: Management Overview UI MVP. - BP-0
## Shared UI Rules - Every visible answer must expose source evidence through a source path, packet id, decision id, source ref, citation ref, or packet-log entry. - Every screen must label actions as allowed, approval-required, or blocked. - Blocked language must say what gate is missing and which
## Shared UI Rules - Every visible answer must expose source evidence through a source path, packet id, decision id, source ref, citation ref, or packet-log entry. - Every screen must label actions as allowed, approval-required, or blocked. - Blocked language must say what gate is missing and which
## Screen Contracts Screen Purpose Primary Data Sources Empty State Blocked-Scope Language ----------------- ------------------------------------------------------------------------------------------------------------------------------------------------------------------ ----------
## Evidence Display Rules - Source refs show path, optional heading, line start, and line end. - Packet refs show packet id, status, acceptance checks, verification commands, result, next packet, scope_opened , and side_effects . - Citation refs show citation id, record id, source ref, and summary
preview cited BP-0187 Knowledge UI context for operators
## Human Management UI Console Purpose: show operators LNSAT state without asking them to inspect SQL/logs. Screens: - Home / Command Center: current state, active packet, next packet, blocked scopes, health checks, recent evidence, allowed actions, approval-required actions. - Knowledge / Wiki: sou
docs/architecture/INTERNAL_KNOWLEDGE_SURFACE.md:67-186## Build Packet Sequence - BP-0181: MVP Internal Knowledge Surface Direction. - BP-0182: Local Knowledge Record Model. - BP-0183: Local Repo Knowledge Index. - BP-0184: Knowledge Search + Context Bundle. - BP-0185: Management UI Information Architecture. - BP-0186: Management Overview UI MVP. - BP-0
docs/architecture/INTERNAL_KNOWLEDGE_SURFACE.md:259-29467 | ## Human Management UI Console 68 | 69 | Purpose: show operators LNSAT state without asking them to inspect SQL/logs. 70 | 71 | Screens: 72 | 73 | - Home / Command Center: current state, active packet, next packet, blocked 74 | scopes, health checks, recent evidence, allowed actions, approval-required 75 | actions. 76 | - Knowledge / Wiki: source index search, citations, stale/conflict flags, source 77 | ownership, packet/decision links, context bundle preview. 78 | - Packets: active/queued/completed packets, acceptance checks, evidence links, 79 | verification status, next action, rollback notes. 80 | - Agents: profiles, allowed capabilities, current assignments, context bundles 81 | used, boundary status, handoff prompts. 82 | - Approvals: requested action, source refs, risk rating, policy decision, 83 | rollback plan, audit obligations. MVP is read-only preview. 84 | - Audit: event previews, filters by agent/packet/action/source/risk, warning that 85 | DB persistence is not live yet. 86 | - Substrates / Nodes: repos, services, DBs, machines, adapters, current 87 | inventory/evidence mode, blocked live actions. 88 | - Runtime Readiness: dry-run proof chain, missing gates, why live invocation is 89 | blocked, packet needed to open next scope. 90 | - Settings / Policy: policy gates, role model, risk thresholds, source 91 | allowlists, connector approval matrix. 92 | 93 | UI principles: 94 | 95 | - operator-first, dense, practical; 96 | - no landing page; 97 | - status and evidence visible; 98 | - blocked/live boundaries clear; 99 | - every answer links back to source evidence. 100 | 101 | BP-0185 records the concrete management UI screen contracts in 102 | `docs/architecture/MANAGEMENT_UI_INFORMATION_ARCHITECTURE.md`. BP-0186 may 103 | implement only the read-only Command Center overview from existing source 104 | evidence. BP-0186 is now complete and makes the Command Center the web first 105 | screen. 106 | 107 | BP-0187 is now complete and renders the read-only Knowledge/Wiki console after 108 | the Command Center. It uses allowlisted repo-local source snapshots with the 109 | existing BP-0183 local repo knowledge index and BP-0184 search/context bundle 110 | functions. It shows search panels, source records, citations/source refs, 111 | stale/conflict/risk flags, context bundle preview, source expansion, and blocked 112 | knowledge actions without opening Gateway routes, MCP tools, DB, embeddings, 113 | source editing, approval mutation, runtime/live execution, Docker, node-agent, 114 | Git runner, deploy, or credential behavior. 115 | 116 | BP-0188 is now complete and adds the source-only eval harness over the BP-0183 117 | and BP-0184 knowledge path. It provides default golden questions for current 118 | packet, blocked scopes, approval needs, post-BP-0180 direction, stale/conflict 119 | detection, and live-scope widening rejection, plus deterministic answer fixtures 120 | that verify source citations and fail uncited, stale-unflagged, 121 | credential-like, side-effect, live-collection, and live-widening cases without 122 | raw rejected value echo. 123 | 124 | BP-0189 is now complete and adds 125 | `docs/architecture/PERSISTENCE_SCHEMA_PLAN.md`. The plan maps file-derived 126 | knowledge records, source refs, source snapshots, chunks, context bundles, eval 127 | runs, audit events, approval requests, agent sessions, packet runs, and future 128 | embeddings to future Postgres/pgvector targets. It remains docs-only and opens 129 | no DB connection/write, writer, migration, live storage, embedding generation, 130 | Gateway route, MCP tool, runtime/live execution, Docker, node-agent, Git runner, 131 | deploy, queue, or credential behavior. 132 | 133 | ## Gateway Read APIs 134 | 135 | MVP route plan: 136 | 137 | - `GET /v1/knowledge/sources` 138 | - `GET /v1/knowledge/search` 139 | - `POST /v1/knowledge/context/compile` 140 | - `GET /v1/build/state` 141 | - `GET /v1/management/overview` 142 | 143 | Later, after policy/audit persistence: 144 | 145 | - source ref expansion API 146 | - stale/conflict report API 147 | - approval mutation API 148 | - persisted audit/search/event APIs 149 | 150 | ## Persistence Later 151 | 152 | No database is required for BP-0182 through BP-0188. File-derived deterministic 153 | indexing comes first. 154 | 155 | Later schema planning needs: 156 | 157 | - knowledge records 158 | - audit events 159 | - source snapshots 160 | - embeddings/pgvector table 161 | - approval requests 162 | - agent sessions 163 | - packet runs 164 | - retention policy 165 | - migration approval workflow 166 | 167 | ## Research Anchors 168 | 169 | Primary-source patterns converted into LNSAT rules: 170 | 171 | - OpenAI accuracy guidance treats RAG as retrieval plus generation and calls out 172 | retrieval as its own optimization axis. LNSAT therefore tests retrieval before 173 | model answers. 174 | - OpenAI agent evals and trace grading support reproducible agent-quality checks. 175 | LNSAT therefore makes golden questions and trace/evidence grading part of the 176 | platform, not a later QA afterthought. 177 | - Anthropic citation docs emphasize document-backed citations for verifiable 178 | answers. LNSAT therefore stores exact source refs on every record and context 179 | bundle. 180 | - Anthropic computer-use docs require sandboxing/minimal privilege for tool 181 | execution. LNSAT therefore keeps MCP as adapter only and Gateway as the 182 | boundary before any tool/runtime action. 183 | - Google Vertex AI grounding docs define grounding as tying model output to 184 | verifiable sources for auditability. LNSAT therefore treats source refs and 185 | evidence bundles as first-class UI/API objects. 186 | - Google grounding checks score whether generated claims are supported by facts.
259 | ## Build Packet Sequence 260 | 261 | - BP-0181: MVP Internal Knowledge Surface Direction. 262 | - BP-0182: Local Knowledge Record Model. 263 | - BP-0183: Local Repo Knowledge Index. 264 | - BP-0184: Knowledge Search + Context Bundle. 265 | - BP-0185: Management UI Information Architecture. 266 | - BP-0186: Management Overview UI MVP. 267 | - BP-0187: Knowledge UI MVP. Complete. 268 | - BP-0188: Eval Harness. Complete. 269 | - BP-0189: Persistence Plan. Complete. 270 | - BP-0190: Approval Center Plan/UI Preview. Complete. 271 | - BP-0192: Read-Only Knowledge Gateway API Contract. Complete. 272 | - BP-0193: Auth And User-Owned Integration Boundary. Complete. 273 | - BP-0194: Settings Policy Auth Posture UI Preview. Complete. 274 | - BP-0195: Read-Only MCP Knowledge Surface Contract. Complete. 275 | - BP-0196: Read-Only Packet Management UI Preview. Queued next. 276 | 277 | BP-0190 completed the approval-preview-only surface. It did not open 278 | approve/deny mutation, DB writer, queue, runtime dispatcher, live execution, 279 | Gateway write route, state-changing MCP tool, deploy, or credential behavior. 280 | BP-0192 opened only a read-only Gateway knowledge API contract over existing 281 | source-derived knowledge/search/context evidence. It also exposed source 282 | evidence that LNSAT is independent open source, self-deployable, user-owned for 283 | integrations, not locked to one auth provider, and not wired to a live auth 284 | provider. 285 | 286 | BP-0195 completed the first agent-facing MCP knowledge surface: 287 | `lnsat.knowledge.surface.inspect`. It exposes only read-only source/search/ 288 | context inspection through Gateway knowledge contracts and keeps open 289 | source/self-deploy, user-owned integration, auth-provider-unlocked, no-live, 290 | source refs, citations, stale/conflict warnings, risk flags, and 291 | `side_effects: []` visible to agents. BP-0196 may open only a read-only Packets 292 | UI preview from repo-local build docs. It must not add packet mutation, Git, 293 | deploy, runtime dispatch, DB/write, queue, auth provider wiring, connector 294 | setup, external service calls, or credential behavior.
Blocked until a later persistence/vector packet opens scope.
docs/build/packets/BP-0187.md:15-19Blocked in BP-0187. UI reads local source evidence only.
NEXT_SESSION.md:73-192Blocked by current product boundary and BP-0187 non-goals.
docs/build/packets/BP-0187.md:15-19PACKETS
Active packet comes from repo-local build status.
docs/build/STATUS.jsonQueue is parsed from the build board.
docs/build/BOARD.mdRecent completion evidence remains source-linked.
docs/build/packets/BP-0196.jsonPacket create/edit/reorder controls are blocked.
docs/build/packets/BP-0197.jsonqueued before BP-0219 implementation continues
Remove BP-0220 docs and restore board/status/prompt routing to BP-0219 queued state. No live rollback is needed because BP-0220 must not create artifacts, packages, installers, services, clients, connectors, credentials, data, runtime, or side effects.
docs/build/packets/BP-0220.jsonDistribution Reality And Secure Installer System Plan.
Source-Only Release Manifest Contract, revised by BP-0220.
Define the source-only distribution and client installer plan for independent downloadable LNSAT releases, server installers, supported-system clients, and separate MCP extension packages without building binaries, publishing packages, installing services, enrolling clients, wiring auth, storing credentials, invoking integrations, mutating hosts, or opening runtime/live scope.
Complete. Added source-only distribution/client installer contract, tests, exports, and docs state. Selected BP-0219 Source-Only Release Manifest Contract next.
Define the source-only readiness contract for local auth, third-party auth, isolated auth, auth session boundaries, and user-selected authorization levels, without wiring providers, creating users, storing credentials, adding a session database, mutating permissions, invoking integrations, deploying, or opening runtime/live scope.
Added packages/packets/src/auth-session-readiness-contract.ts. Exported the BP-0217 auth/session readiness contract, defaults, constants, creator, result types, and evidence types from packages/packets/src/index.ts. Added packages/packets/test/auth-session-readiness-contract.test.ts.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Acceptance check is read from the current packet source.
Command is declared in packet source; latest execution is recorded during packet closeout.
Command is declared in packet source; latest execution is recorded during packet closeout.
Remove BP-0220 docs and restore board/status/prompt routing to BP-0219 queued state. No live rollback is needed because BP-0220 must not create artifacts, packages, installers, services, clients, connectors, credentials, data, runtime, or side effects.
Latest completed distribution packet and current secure installer planning packet are visible in board and packet log.
BP-0220 queue selection is visible in board and status JSON.
Current queued packet source remains available for the Packets UI.
Management IA defines Packets as first-class human UI surface.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
Blocked by current packet non-goal or current handoff boundary.
active and next packet
Machine-readable packet state, build state, and last verification.
Active Packet / Queue
Operator-facing packet queue and latest closeout summary.
Completed Packet: BP-0215 Source-Only Persisted Knowledge Read Surface Contract
Append-only packet evidence, validation, and selected-next records.
Active Slice
Allowed scope, blocked scope, and continuation instructions.
Packets screen
Packets screen contract and blocked-scope language.
Read-Only Packet Management UI Preview
Older completed packet management UI packet.
Read-Only Agent Management UI Preview
Prior completed agent management packet.
Read-Only Audit Management UI Preview
Prior completed audit management packet.
Read-Only Substrates Management UI Preview
Prior completed substrates packet scope, checks, and non-goals.
Read-Only Runtime Readiness Management UI Preview
Latest completed packet scope, checks, rollback, and non-goals.
Read-Only Management Navigation And MVP Surface Review
Prior completed management surface packet scope and checks.
Read-Only Persistence And Policy Gate Review
Current completed packet scope, checks, rollback, and non-goals.
Source-Only Persistence Gate Contract
Current completed packet scope, checks, rollback, and non-goals.
Source-Only Persistence Schema Contract
Current completed packet scope, checks, rollback, and non-goals.
Source-Only Migration Artifact Static Review Contract
Completed migration static review packet scope, checks, and non-goals.
GitHub Repository Publication Checkpoint
Completed first GitHub publication checkpoint.
Source-Only Writer Preflight Contract
Completed writer preflight packet after GitHub publication.
Source-Only Database Security Preflight Contract
Completed database security preflight packet after writer preflight.
Source-Only Policy Gate Preflight Contract
Completed policy gate preflight packet after database security.
Source-Only Approval Request Preflight Contract
Completed approval request preflight packet after policy gate.
Source-Only Persistence Readiness Preflight Contract
Completed persistence readiness preflight packet after approval request.
Source-Only Implementation Packet Selection Review
Completed implementation packet selection review after readiness.
Source-Only Knowledge Persistence Implementation Packet Contract
Completed knowledge persistence implementation packet contract.
Source-Only Persisted Knowledge Read Surface Contract
Completed persisted knowledge read surface packet contract.
Source-Only Self-Deploy Packaging Plan Contract
Completed self-deploy packaging plan packet contract.
Source-Only Auth Session And Authorization Levels Readiness Contract
Completed auth session and authorization levels readiness packet contract.
Source-Only Distribution And Client Installer Plan Contract
Completed distribution and client installer plan packet contract.
Source-Only Release Manifest Contract
Deferred release manifest packet contract.
Distribution Reality And Secure Installer System Plan
Queued distribution reality and secure installer planning packet.
SUBSTRATES
Kinds come from the source-only taxonomy.
docs/build/packets/BP-0085.mdEnvironment types are display-only readiness classes.
docs/architecture/SUBSTRATES_AND_NODES.mdService, database, queue, and tunnel inventory stays source-only.
docs/build/packets/BP-0090.mdNo live substrate control is exposed.
docs/build/packets/BP-0199.jsonLNSAT core stays TypeScript/Node for Gateway, packets, policy, audit, MCP, and UI.
docs/architecture/SUBSTRATES_AND_NODES.mdPython is optional later connector/runtime implementation detail, not an MVP requirement.
docs/architecture/SUBSTRATES_AND_NODES.mdOS binaries are optional later node-agent packages for direct host observation/control.
docs/architecture/SUBSTRATES_AND_NODES.mdNo OS agent, package install, Python runtime, binary distribution, host service, SSH, Docker runner, or live connector is open.
NEXT_SESSION.mdContainer workloads wait for approved runner scope.
Compose stacks stay inventory-only before Docker runner scope.
VM targets require explicit adapter and approval packets later.
Host services wait for optional per-OS node agent scope.
Model workers expose readiness only until runtime scope opens.
Nomad jobs are taxonomy placeholders, not live schedulers.
Kubernetes support stays future substrate adapter scope.
Cloud runners require official API adapter and policy gates.
LNSAT Gateway source-only service record
service / shared / owner owner:lnsat-platform
Audit ledger PostgreSQL source-only target
database / shared / owner owner:lnsat-platform
Audit ledger review queue source-only placeholder
queue / shared / owner owner:lnsat-platform
lnsat.hypler.com tunnel source-only surface
tunnel / production / owner owner:hypler
Service control proposal adapter manifest
manifest_only_no_invocation
service.restart.request
agent:codex requests approval_gated_mutation on services
no live substrate mutation, no live execution, no raw shell or SSH, no database writes, no service, queue, DNS, Cloudflare, Docker, node-agent, or Git mutation, no secret values
execution stays disabled for MVP source-only preview
credential references stay disabled for MVP preview
ssh stays disabled for MVP source-only preview
docker stays disabled for MVP source-only preview
node_agent stays disabled for MVP source-only preview
database stays disabled for MVP source-only preview
service_mutation stays disabled for MVP source-only preview
dns_cloudflare stays disabled for MVP source-only preview
deploy stays disabled for MVP source-only preview
Management IA defines Substrates as a first-class management surface.
Core no-Python/no-OS-binary posture is documented in architecture and handoff.
Installation control contract remains source-only.
Substrate kind and control-mode taxonomy remains source-only.
Service/database inventory remains read-only evidence.
Control intent evidence is visible without live control.
Adapter manifest is manifest-only, no live invocation.
MCP inspection surfaces exist as source-only adapters.
Packet log records prior management UI checkpoint before BP-0199.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Blocked by BP-0199 non-goal or current handoff boundary.
Read-Only Substrates Management UI Preview
Substrates UI packet scope, non-goals, checks, and rollback.
Substrates
Substrates screen contract and blocked live-action language.
OS-Level Connection Strategy
Substrate taxonomy, environment types, node-agent posture, and OS boundary.
Installation Control Profile
Installation mode and denied control-surface contract.
Substrate Taxonomy
Source-only substrate kinds and control-mode boundaries.
Service Database Inventory
Service, database, queue, tunnel, approval, and rollback inventory contract.
Substrate Control Intent
Source-only control request evidence and denied live behavior.
Substrate Adapter Manifest
Manifest-only adapter readiness before live invocation exists.
substrate inspection adapters
Read-only MCP inspection registrations for substrate contracts.
Active Slice
Current allowed scope, OS posture, and blocked live gates.
Completed Packet
Latest packet closeout evidence and queued next packet.
RUNTIME READINESS
Dry-run evidence chain is source-only.
docs/build/packets/BP-0200.jsonNo dispatcher is present in MVP scope.
docs/build/packets/BP-0200.jsonNo live adapter invocation is exposed.
docs/build/packets/BP-0200.jsonRuntime readiness reads repo-local evidence only.
NEXT_SESSION.mdpreflight:service-control-adapter-invocation
lnsat.platform.adapter_invocation_preflight.v0_1
result:service-control-adapter-invocation
lnsat.platform.adapter_invocation_result.v0_1
authorization_bundle:service-control-adapter-invocation
lnsat.platform.adapter_invocation_authorization_bundle.v0_1
readiness_gate:service-control-adapter-runtime-readiness
lnsat.platform.runtime_adapter_readiness_gate.v0_1
implementation_scope:service-control-adapter-runtime
lnsat.platform.runtime_adapter_implementation_scope.v0_1
implementation_plan:service-control-adapter-runtime
lnsat.platform.runtime_adapter_implementation_plan.v0_1
chain_review:bp0149-runtime-adapter-plan-chain-review
lnsat.platform.runtime_adapter_implementation_authorization_request.v0_1
authorization_request:bp0150-runtime-adapter-implementation-authorization-request
lnsat.platform.runtime_adapter_implementation_approval_gate.v0_1
artifact:bp0163-dry-run-evidence-contract-output
lnsat.platform.runtime_adapter_implementation_dry_run_evidence.v0_1
service_control_adapter
Required approval evidence is visible only. Approve/deny mutation is not open.
Required approval evidence is visible only. Approve/deny mutation is not open.
Required approval evidence is visible only. Approve/deny mutation is not open.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Blocked until a later packet opens Gateway policy, approval, audit, and runtime adapter scope.
Future implementation packet must cite dry-run evidence, approval gate, authorization request, policy gates, human approvals, and audit obligations before code can execute.
Management IA defines Runtime Readiness as a first-class console surface.
BP-0114 source evidence exists before runtime invocation.
BP-0126 cross-ref authorization evidence is available.
BP-0132 readiness evidence exists without runtime dispatch.
Implementation proof chain exists as source-only evidence.
Core MVP is Node/TypeScript; Python and OS binaries stay optional later adapter/node-agent scope.
Current handoff and packet log preserve no-live/no-runtime boundary.
Read-Only Runtime Readiness Management UI Preview
Runtime Readiness UI packet scope, non-goals, checks, and rollback.
Runtime Readiness
Runtime Readiness screen contract and blocked invocation language.
OS-Level Connection Strategy
Core Node/TypeScript posture and optional Python/OS-binary adapter scope.
Adapter Invocation Preflight
Source-only adapter invocation preflight evidence.
Adapter Invocation Result
Source-only adapter result evidence without execution.
Adapter Invocation Authorization Bundle
Cross-ref authorization evidence before invocation exists.
Runtime Adapter Readiness Gate
Runtime readiness gate evidence without runtime dispatch.
Runtime Adapter Implementation Scope
Implementation scope evidence before adapter implementation opens.
Runtime Adapter Implementation Plan
Implementation plan evidence and dry-run plan.
Runtime Adapter Implementation Authorization Request
Authorization request evidence before implementation.
Runtime Adapter Implementation Approval Gate
Human approval gate evidence before implementation.
Runtime Adapter Implementation Dry-Run Evidence
Dry-run proof chain evidence without adapter implementation.
Read-Only Substrates Management UI Preview
OS posture and substrate readiness evidence before runtime readiness.
Active Slice
Current allowed scope, blocked scope, and next runtime gates.
Completed Packet
Latest packet closeout evidence and queued next packet.
AGENTS
Profiles come from repo-local onboarding fixtures.
packages/packets/fixtures/agent-profiles/valid/codex-observer-profile.jsonInvalid profile raw content remains withheld.
docs/onboarding/AGENT_ONBOARDING.mdInputs come from read-only ContextPacket evidence.
apps/web/src/lib/onboarding-context-inspector.tsLive execution remains blocked.
NEXT_SESSION.mdBP-0197 complete: read-only agent management preview
context.read, context.compile, repo.read
secret.read.never, raw_shell, production_db.write, deploy.prod
repo.write_branch, tests.run.sandbox, container.sandbox, deploy.request
pkt_onboarding_context_lnsat_agent_codex
sha256:4714650cd278be8259aac07ea86984f5675b541a149ea2094866dde558fc422d
packages/packets/fixtures/agent-profiles/valid/codex-observer-profile.json
Profile source used before agent work.
context.compile, context.read, repo.read
Blocked: database.query_readonly.dev, deploy.execute.approved, deploy.prod, production_db.write, raw_shell, secret.read.never.
120000 tokens / 7200s
Context bundle remains bounded and side-effect free.
/caveman lite
Read first: `AGENTS.md`, `NEXT_SESSION.md`, `docs/DOCS_INDEX.md`, `docs/build/STATUS.json`, `docs/build/BOARD.md`, `docs/build/PACKET_LOG.md`, `docs/memory/CURRENT_STATE.md`, `docs/memory/DECISIONS.md`.
Next exact task: attach/fix the `lnsat.com` Cloudflare Pages custom domain/SSL if Jeff wants that opened next, otherwise complete BP-0220 source-only planning. Tighten the package ecosystem around source release, server bundle, server installer, setup UI, control panel, operator CLI, host/client helper, desktop client, MCP extensions, connector SDK, module repo template, manifest-first module package, GitHub Pages docs, and optional Python adapters. Keep installer/control panel UI modern, clean, soft, accessible, professional, and verbose through expandable install detail. Keep Advanced Evidence secondary. Security first: Gateway boundary, MCP adapter only, root rare, no arbitrary shell, no SSH wrapper, named client capabilities only, future privileged helper narrow/signed/disabled by default.
Packet source defines Agents UI scope and acceptance checks.
At least one valid source-backed agent profile is available.
Agent onboarding docs define blocked raw system access.
Context evidence is compiled from repo-local profiles.
Management IA defines Agents as a first-class read-only screen.
Handoff keeps live, runtime, mutation, Git, deploy, and secrets blocked.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Blocked by BP-0197 non-goal or current handoff boundary.
Read-Only Agent Management UI Preview
Current Agents UI packet scope, checks, non-goals, and rollback.
Agent Profile
Agent profile fields, validation rules, and blocked capabilities.
Agent Profile Template
Template for source-backed agent profile evidence.
Codex Observer
Valid source-backed observer profile fixture.
ContextPacket proposal
Read-only context packet evidence built from repo-local profiles.
Agents
Agents screen contract and blocked-scope language.
Active Slice
Current handoff, allowed scope, and blocked live gates.
Continuation prompt
Copy-ready handoff prompt for the next build window.
APPROVAL CENTER
Current packet may only show approval evidence.
docs/build/packets/BP-0190.mdFuture DB and migration actions need explicit approval.
docs/architecture/PERSISTENCE_SCHEMA_PLAN.mdLive/runtime and approve/deny mutation stay closed.
NEXT_SESSION.mdNo approve, deny, execute, queue, DB, or runtime control exists.
docs/build/packets/BP-0190.mdBP-0190 defines approval preview scope and blocks mutation.
Next-session handoff keeps live, runtime, DB, and mutation gates closed.
Management IA defines the operator approval screen fields.
Persistence plan records future migration approval and DB role boundaries.
Policy/audit docs anchor Gateway-owned approval and audit evidence.
No approve mutation exists in BP-0190. The UI can show evidence only.
docs/build/packets/BP-0190.mdNo deny mutation exists in BP-0190. Denial is represented as source-derived policy text only.
docs/build/packets/BP-0190.mdRuntime, DB, queue, deploy, and live adapter paths remain outside current scope.
NEXT_SESSION.mdApproval Center Plan And UI Preview
Current packet scope for read-only approval preview and no approval mutation.
Active Slice
Current blocked/live scope and handoff boundary.
Approvals Screen Contract
Operator UI rules for approvals, risk, source evidence, rollback, and audit obligations.
Migration Approval Workflow
Future DB schema and migration approval workflow, plan-only.
Policy and audit boundary
Gateway, policy, approval, and audit rules for future state changes.
Persistence Plan
Completed docs-only persistence planning packet.
Current build status
Current packet chain and source-only build posture.
AUDIT
Audit events are source-only previews.
docs/build/packets/BP-0036.mdLive persistence remains behind explicit later scope.
docs/build/packets/BP-0071.mdFilters are labels only; no DB query exists.
docs/architecture/PERSISTENCE_SCHEMA_PLAN.mdDatabase writes remain blocked.
NEXT_SESSION.mdwriter.migrate; static checker required: [object Object].
ledger.record.append; ledger_state_change.
audit_events.v0_1; append-only checks source-ready.
postgresql_rls; required fields tenant_id, project_id.
source_ready_for_later_scope_request_only; live persistence false.
ledger.record.append
Capability audit.ledger.writer.append_only.
approval_required
ledger_state_change; requested.
insert_only
Forbidden: update, delete, truncate, in_place_redaction.
fail_closed
exact_replay_returns_existing_ref
not_present
Raw rejected value: not_present.
sha256:41775b6f383b496e48086d20de7729fcc93b1e14d7a94f89f49244288d3bf528
Canonical digest only; no raw payload echo.
context_packet_compiled
Display-only filter source from audit event preview records.
success
Display-only filter source from audit event preview records.
pkt_onboarding_context_lnsat_agent_codex
Display-only packet filter; no query or persisted read exists.
not_persisted
No persisted audit ledger is live.
source_ready_for_later_scope_request_only
Readiness is source-only and requires a later explicit packet.
tenant_id, project_id
Required later isolation fields; not a live DB filter.
Packet source defines Audit UI scope and acceptance checks.
Management IA defines Audit as a first-class read-only screen.
Persistence plan names future audit tables and live gates.
BP-0036 defines ledger record preview without a writer.
BP-0046 defines approval preview without migration execution.
BP-0052 defines writer interface evidence only.
BP-0059 defines source-only persistence preflight evidence.
BP-0065 defines security requirements before DB scope.
BP-0071 keeps live persistence behind explicit later scope.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Blocked by BP-0198 non-goal or current handoff boundary.
Read-Only Audit Management UI Preview
Current Audit UI packet scope, checks, non-goals, and rollback.
Audit
Audit screen contract and blocked-scope language.
audit_events
Future audit persistence schema target and migration approval flow.
Audit Ledger Record Schema Contract
Typed audit ledger record preview contract.
Audit Ledger Migration Approval Evidence Preview
Read-only migration approval preview evidence.
Append-Only Audit Ledger Writer Interface Contract
Pure append-only writer interface contract evidence.
Audit Writer Persistence Preflight Evidence Helper
Source-only writer persistence preflight evidence.
Audit Ledger Database Security Preflight
Source-only database security preflight evidence.
Audit Ledger Persistence Readiness Gate
Persistence implementation readiness evidence.
Active Slice
Current allowed scope and blocked live gates.
Completed Packet: BP-0198 Read-Only Audit Management UI Preview
Latest completed packet evidence and queued substrate slice.
SETTINGS / POLICY
Independent application posture is source evidence.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdDeployment owner controls runtime shape and boundary.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdAuth provider choice belongs to deployment config.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdLive provider, sessions, and credentials are blocked.
NEXT_SESSION.mdLNSAT ships as an independent open source management system, not as a bundled provider account.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdDeployment owner chooses local, self-hosted, hybrid, SaaS, or isolated deployment posture.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdThe deployment owner chooses auth mode and authorization levels in future explicit packets.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdUsers connect their own services, credential references, capabilities, approvals, audit, rollback, and disablement paths.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdNo local, third-party, passkey, SAML, OIDC, OAuth, or hosted identity provider is preferred by the product boundary.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdFuture integration/auth work may reference deployment-owned secrets but may not echo raw secret values.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdLocal auth
Needs explicit local auth implementation packet, session model, storage policy, audit, and rollback.
Third-party auth
Needs explicit provider adapter packet, callback policy, secret references, audit, and approval.
User-selected auth levels
Needs explicit authorization model, persisted policy, UI mutation approval, and audit persistence.
Isolated auth
Needs explicit local-only auth packet, backup/recovery policy, and optional break-glass policy.
Existing docs, UI, and API evidence may show source refs.
Read-only routes and MCP inspection tools stay fail-closed where opened.
Future request shape only; no mutation path exists now.
Approval mutation needs future policy and audit persistence.
No live provider, session store, or settings writer exists.
No integration setup writer or connector enablement exists.
Requires future runtime, approval, audit, and rollback gates.
Stable integration id owned by deployment config.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdHuman-readable integration name.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdReference to the deployment owner or tenant boundary.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdRepo, service, machine, DB, queue, cloud, SaaS, or local node kind.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdReference type for deployment-owned auth, never a raw credential value.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdDeclares whether a deployment secret reference is needed.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdRaw credential values are never allowed.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdExplicit capabilities the integration can request.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdRisk rating for policy and approval decisions.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdWhether operator approval is needed before future action.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdWhether audit evidence is required.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdRollback evidence requirement for future action.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdUser-controlled disablement path requirement.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdNo live connector is enabled in current MVP.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdNo integration mutation is allowed in current MVP.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdDescriptor evidence must remain side-effect free.
docs/architecture/AUTH_AND_INTEGRATION_POSTURE.mdRejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Rejected evidence must not echo secret-like, token-like, connection-string, or credential-like values.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Requires a later explicit packet with policy, approval, audit, and rollback evidence.
Posture doc states LNSAT is independent open source and self-deployable.
Auth modes are source contract terms only, with no provider selected.
BP-0193 records future descriptor requirements and secret-reference-only behavior.
BP-0194 opens only a read-only Settings/Policy posture preview.
Management IA requires auth/integration posture to stay source evidence.
Policy docs keep Gateway as authority and auth providers as adapters.
Current handoff blocks live auth, credentials, connector setup, and mutation.
BP-0193 Source Contract
Defines open source self-deploy posture, deployment-owner auth choices, user-owned integrations, descriptor rules, and fail-closed checks.
Auth And User-Owned Integration Boundary
Completed source-only packet for auth modes, authorization levels, and user-owned integration boundary.
Settings Policy Auth Posture UI Preview
Current UI packet scope for read-only Settings/Policy posture evidence.
Settings / Policy
Human management UI rule that auth and integration posture stays source evidence until later live auth or settings packets.
Auth and integration policy
Gateway policy remains the authority; auth providers and integrations are adapters.
Active Slice
Current allowed read-only BP-0194 scope and blocked live auth, integration, DB, runtime, and credential gates.
{"actor_id":"agent.codex","budget":{"cost_usd":0.25,"cpu":1,"memory_mb":512,"runtime_seconds":300,"tokens":8000},"constraints":{"output_contract":"summary_with_source_refs"},"created_at":"2026-05-03T00:00:00Z","intent":"Compile source-backed context for a bounded packet task.","packet_id":"pkt_context_0001","packet_type":"ContextPacket","permission_envelope":{"allow":["context.read","context.compile"],"block":["secret.read.never","deploy.execute.approved"]},"policy_profile":"context_readonly","project_id":"hypler","requires_approval":false,"resource_refs":["repo:lnsat"],"risk_level":1,"session_id":"sess_bp0002_0001","source_refs":["doc:docs/architecture/PACKET_MODEL.md"],"ttl_seconds":3600,"version":"0.1"}{"actor_id":"agent.codex","budget":{"cost_usd":0.5,"cpu":2,"memory_mb":4096,"runtime_seconds":900,"tokens":4000},"constraints":{"network":"disabled","writes":"workspace_only"},"created_at":"2026-05-03T00:00:00Z","intent":"Run package checks inside an approved sandbox.","packet_id":"pkt_execute_0001","packet_type":"ExecutionPacket","permission_envelope":{"allow":["tests.run.sandbox"],"block":["ssh","secret.read.never","database.write","deploy.execute.approved"]},"policy_profile":"agent_sandbox","project_id":"hypler","requires_approval":false,"resource_refs":["repo:lnsat"],"risk_level":3,"session_id":"sess_bp0002_0001","source_refs":["doc:docs/architecture/PACKET_MODEL.md"],"ttl_seconds":7200,"version":"0.1"}Missing required field 'intent'.
intent must be a non-empty string.
risk_level must be an integer from 0 through 8.
Packet constraints must not contain embedded secret values.
Unexpected root field 'shell'.
ONBOARDING
Missing required field 'policies'.
policies must be an object.
repo profile must include a repo path or remote.
Project profile secrets must use references only.
Unexpected secrets field 'secret_value'.
Missing required field 'output_contract'.
output_contract must be an object.
capability cannot be both allowed and blocked.
projects_allowed must contain at least one entry.
Agent profile secrets must use references only.
Unexpected session field 'secret_value'.
CONTEXTPACKET
Unexpected onboarding ContextPacket inspection request field.
Unexpected onboarding ContextPacket inspection request field.
Unexpected onboarding ContextPacket inspection request field.
Unexpected onboarding ContextPacket inspection request field.
AUDIT LEDGER
AUDIT LEDGER
/approval_request
/approval_request/policy_gate_ref/decision_id
/policy_gate_decision/decision
/policy_gate_decision/reason_codes
/approval_request/policy_gate_ref/decision_id
AUDIT LEDGER
/raw_rejected_value
/writer_interface_contract
/writer_interface_contract/record_ref/canonical_record_digest
/writer_interface_contract/idempotency
/writer_interface_contract/live_execution_allowed
/writer_interface_contract/side_effects
/migration_artifact_refs/source_packet_refs
AUDIT LEDGER
/raw_rejected_value
/persistence_preflight
/isolation_model/mode
/isolation_model
/tenant_project_scope/required_row_scope_fields
/tenant_project_scope
/role_boundaries/writer_role/forbidden_grants
/role_boundaries/select_role/forbidden_grants
/role_boundaries/migration_role/forbidden_grants
/test_requirements
/live_execution_allowed
/side_effects
AUDIT LEDGER
/raw_rejected_value
/database_security_preflight
/minimum_source_evidence
/database_security_preflight/isolation_model
/database_security_preflight/tenant_project_scope
/database_security_preflight/role_boundaries
/database_security_preflight/test_requirements_before_live_scope
/database_security_preflight/live_execution_allowed
/database_security_preflight/side_effects
/live_execution_allowed
/side_effects