fix(governance): 補齊 P2-141 S4.9 owner 欄位
This commit is contained in:
@@ -269,6 +269,13 @@ def _require_no_forbidden_display_terms(payload: Any, label: str) -> None:
|
||||
"chain_of_thought",
|
||||
"authorization_header",
|
||||
"secret_value",
|
||||
"工作視窗",
|
||||
"內部協作",
|
||||
"原始提示詞",
|
||||
"私有推理",
|
||||
"原始 runtime payload",
|
||||
"raw runtime payload",
|
||||
"authorization header",
|
||||
}
|
||||
found = sorted(term for term in forbidden if _contains_term(payload, term))
|
||||
if found:
|
||||
|
||||
@@ -22,7 +22,7 @@ def test_load_latest_release_decision_input_prep_snapshot() -> None:
|
||||
|
||||
rollups = snapshot["rollups"]
|
||||
assert rollups["decision_input_packet_count"] == 5
|
||||
assert rollups["missing_input_field_count"] == 15
|
||||
assert rollups["missing_input_field_count"] == 18
|
||||
assert rollups["blocked_input_transition_count"] == 6
|
||||
assert rollups["operator_action_count"] == 5
|
||||
assert rollups["approval_required_subtotal"] == 12
|
||||
@@ -94,6 +94,15 @@ def test_rejects_forbidden_display_terms(tmp_path: Path) -> None:
|
||||
load_latest_ai_agent_result_capture_release_decision_input_prep(tmp_path)
|
||||
|
||||
|
||||
def test_rejects_chinese_forbidden_display_terms(tmp_path: Path) -> None:
|
||||
snapshot = copy.deepcopy(load_latest_ai_agent_result_capture_release_decision_input_prep())
|
||||
snapshot["operator_actions"][0]["operator_instruction"] = "不要顯示工作視窗內容"
|
||||
_write_snapshot(tmp_path, snapshot)
|
||||
|
||||
with pytest.raises(ValueError, match="forbidden display terms leaked"):
|
||||
load_latest_ai_agent_result_capture_release_decision_input_prep(tmp_path)
|
||||
|
||||
|
||||
def _write_snapshot(directory: Path, payload: dict) -> None:
|
||||
path = directory / "ai_agent_result_capture_release_decision_input_prep_2099-01-01.json"
|
||||
path.write_text(json.dumps(payload, ensure_ascii=False), encoding="utf-8")
|
||||
|
||||
@@ -20,7 +20,7 @@ def test_release_decision_input_prep_endpoint() -> None:
|
||||
assert payload["prior_next_handoff"]["schema_version"] == "ai_agent_result_capture_release_decision_next_handoff_v1"
|
||||
assert payload["prior_next_handoff"]["next_task_id"] == "P2-141"
|
||||
assert payload["rollups"]["decision_input_packet_count"] == 5
|
||||
assert payload["rollups"]["missing_input_field_count"] == 15
|
||||
assert payload["rollups"]["missing_input_field_count"] == 18
|
||||
assert payload["rollups"]["blocked_input_transition_count"] == 6
|
||||
assert payload["rollups"]["operator_action_count"] == 5
|
||||
assert payload["rollups"]["approval_required_subtotal"] == 12
|
||||
@@ -30,3 +30,14 @@ def test_release_decision_input_prep_endpoint() -> None:
|
||||
assert payload["rollups"]["telegram_send_count"] == 0
|
||||
assert payload["rollups"]["bot_api_call_count"] == 0
|
||||
assert payload["rollups"]["production_write_count"] == 0
|
||||
|
||||
owner_packet = payload["decision_input_packets"][0]
|
||||
assert owner_packet["packet_id"] == "decision_input_owner_release"
|
||||
assert owner_packet["missing_fields"] == [
|
||||
"owner_role_team",
|
||||
"owner_decision",
|
||||
"decision_reason",
|
||||
"affected_scope",
|
||||
"redacted_evidence_refs",
|
||||
"followup_owner",
|
||||
]
|
||||
|
||||
@@ -1,4 +1,38 @@
|
||||
## 2026-06-14|P2-141 釋出決策輸入準備包正式驗證完成
|
||||
## 2026-06-14|P2-141 S4.9 owner 欄位補強本地完成
|
||||
|
||||
**背景**:P2-141 release decision input prep 基線已由 feature commit `ee5bf500` 與 deploy marker `306657fd` 正式驗證;該基線固定 5 個 decision input packet 與 15 個 missing input field。因 S4.9 負責人回覆 Gate 需要 owner role / team、decision、decision reason、affected scope、redacted evidence refs 與 followup owner 六個欄位,本段只在既有 P2-141 endpoint / snapshot 上補齊 owner release packet,不新增第二套入口、不寫 reviewer / Gateway queue、不送 Telegram、不呼叫 Bot API、不寫 result capture、learning、PlayBook trust 或 production target。
|
||||
|
||||
**完成項目**:
|
||||
- `decision_input_owner_release` 的 missing fields 從 3 個補齊為 6 個:`owner_role_team`、`owner_decision`、`decision_reason`、`affected_scope`、`redacted_evidence_refs`、`followup_owner`。
|
||||
- P2-141 rollup 的 `missing_input_field_count` 從 `15` 調整為 `18`;decision input packet `5`、blocked input transition `6`、operator action `5`、需批准 `12`、阻擋 `12`、正式寫入 / 發送 `0` 維持不變。
|
||||
- Service guard 新增繁中 / 英文禁用外露詞,會拒絕工作視窗、內部協作、原始提示詞、私有推理、原始 runtime payload、raw runtime payload 與 authorization header 類字串出現在可載入 snapshot 值中。
|
||||
- API test 額外鎖定 owner packet 六個 S4.9 欄位,避免後續退回只列 decision / reason / evidence refs。
|
||||
|
||||
**本地驗證**:
|
||||
- JSON parse:P2-141 snapshot / schema、`zh-TW.json`、`en.json` 通過。
|
||||
- Python 編譯:P2-141 loader 與 `agents.py` 通過。
|
||||
- API/service pytest:P2-141 與 P2-140 regression `15 passed`。
|
||||
- i18n key / placeholder mirror:`keys_zh=11864`、`keys_en=11864`、missing `0 / 0`、placeholder diff `0`。
|
||||
- Web typecheck:`pnpm --filter @awoooi/web typecheck` 通過。
|
||||
- P2-141 snapshot / messages 禁用外露值掃描:`forbidden_value_hits=0`。
|
||||
- `source-control-owner-response-guard.py`:`SOURCE_CONTROL_OWNER_RESPONSE_GUARD_OK`。
|
||||
- `security-mirror-progress-guard.py`:`SECURITY_MIRROR_PROGRESS_GUARD_OK`。
|
||||
- `doc-secrets-sanity-check.py docs .gitea`:`DOC_SECRET_SANITY_OK scanned_files=802`。
|
||||
- `git diff --check` 通過。
|
||||
|
||||
**安全邊界**:
|
||||
- 本段是 S4.9 owner 決策輸入補強,不是 owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、rollback owner confirmed、release decision passed、release authorization granted / passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 或 destructive operation。
|
||||
- 補強正式部署與 production desktop / mobile smoke 完成前,不得把 18 欄位補強視為正式 runtime gate,也不得把 P2-142 視為可套用 writer 的關卡。
|
||||
|
||||
**完成度**:
|
||||
- P2-141 S4.9 owner 欄位補強 local slice:`100%`。
|
||||
- P2-141 S4.9 owner 欄位補強 production verification:`0%`。
|
||||
- active runtime gate、Telegram 實發、reviewer / Gateway queue write、production write 仍維持 `0`。
|
||||
|
||||
**下一步**:
|
||||
- 推送 S4.9 owner 欄位補強 commit,等待 Gitea code-review / CD;正式 API readback 與 desktop / mobile Browser smoke 通過後,再記錄 production verification `100%` 並交給 `P2-142`。
|
||||
|
||||
## 2026-06-14|P2-141 釋出決策輸入準備包基線正式驗證完成
|
||||
|
||||
**背景**:P2-141 release decision input prep 已由 feature commit `ee5bf500 feat(governance): 新增 release decision input prep` 推進,CD deploy marker `306657fd chore(cd): deploy ee5bf50 [skip ci]` 生效;正式站需要確認 API 與 governance UI 都讀到同一份只讀 input prep,且仍沒有 reviewer queue / Gateway / Telegram / Bot API / result capture / learning / production write。
|
||||
|
||||
@@ -6,7 +40,7 @@
|
||||
- Gitea code-review run `2954` success;CD run `2953` success,deploy marker `306657fd` 已回寫 `k8s/awoooi-prod/kustomization.yaml`。
|
||||
- Production health:`https://awoooi.wooo.work/api/v1/health` 回 `status=healthy`、`environment=prod`、`mock_mode=false`。
|
||||
- 正式 API:`GET /api/v1/agents/agent-result-capture-release-decision-input-prep` 回 `schema_version=ai_agent_result_capture_release_decision_input_prep_v1`、current `P2-141`、next `P2-142`、completion `100`、runtime authority `result_capture_release_decision_input_prep_only_no_live_write`。
|
||||
- 正式 API / snapshot rollup:decision input packet `5`、missing input field `15`、blocked input transition `6`、operator action `5`、需批准 `12`、阻擋 `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- 基線正式 API / snapshot rollup:decision input packet `5`、missing input field `15`、blocked input transition `6`、operator action `5`、需批准 `12`、阻擋 `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- Production Browser smoke:desktop `1440x1000` 與 mobile `390x844` 均確認 `P2-141 釋出決策輸入準備包`、`P2-142`、`決策輸入準備卡`、`缺欄位`、`Gateway 寫入=0`、`Telegram 送出=0`、`正式寫入=0` 可見。
|
||||
- Desktop / mobile smoke 均為:horizontal overflow `0`、overflowing element `0`、P2-141 卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`、禁用內部協作片語與敏感欄位命中 `0`。
|
||||
- 首次 full-page screenshot 因 governance 頁高度過長造成 Chrome Skia bitmap 配置失敗;已改用捲動至 P2-141 卡片後截 viewport,功能與 DOM 檢查均通過。此頁面高度過長需另列 UX / 分段載入技術債,不影響 P2-141 本次部署真相。
|
||||
@@ -27,20 +61,21 @@
|
||||
|
||||
**完成項目**:
|
||||
- 新增 `ai_agent_result_capture_release_decision_input_prep_v1` schema、snapshot、service guard、API endpoint `GET /api/v1/agents/agent-result-capture-release-decision-input-prep`、API/service tests、治理頁 P2-141 區塊與繁中 UI 文案。
|
||||
- P2-141 snapshot 固定 5 個 decision input packet、15 個 missing input field、6 個 blocked input transition、5 個 operator action、仍需批准 `12`、阻擋總數 `12`、舊 action 隔離承接 `1`、正式寫入 / 發送 `0`。
|
||||
- P2-141 snapshot 固定 5 個 decision input packet、18 個 missing input field、6 個 blocked input transition、5 個 operator action、仍需批准 `12`、阻擋總數 `12`、舊 action 隔離承接 `1`、正式寫入 / 發送 `0`。
|
||||
- Owner release packet 已補齊 S4.9 負責人回覆 Gate 必備欄位:owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;驗收前仍全部保持只讀與未批准。
|
||||
- 決策輸入準備包涵蓋 owner release、verifier、rollback owner、maintenance window、live apply;每包都只列缺欄位與 redacted evidence hash,不代表批准或授權。
|
||||
- Governance automation inventory 頁新增 P2-141 卡片,顯示準備包、缺欄位、阻擋轉換、操作事項、Gateway / Telegram / production write 全部 `0`。
|
||||
|
||||
**本地驗證**:
|
||||
- JSON parse:P2-141 snapshot / schema、`zh-TW.json`、`en.json` 通過。
|
||||
- Python 編譯:P2-141 loader 與 `agents.py` 通過。
|
||||
- API/service pytest:P2-141 與 P2-140 regression `14 passed`。
|
||||
- API/service pytest:P2-141 與 P2-140 regression `15 passed`。
|
||||
- i18n key / placeholder mirror:`keys_zh=11864`、`keys_en=11864`、missing `0 / 0`、placeholder diff `0`。
|
||||
- `source-control-owner-response-guard.py`:`SOURCE_CONTROL_OWNER_RESPONSE_GUARD_OK`。
|
||||
- `security-mirror-progress-guard.py`:`SECURITY_MIRROR_PROGRESS_GUARD_OK`。
|
||||
- `doc-secrets-sanity-check.py docs .gitea`:`DOC_SECRET_SANITY_OK scanned_files=802`。
|
||||
- `git diff --check` 通過。
|
||||
- `pnpm --filter @awoooi/web typecheck` 本臨時 worktree 因無 `node_modules` 回 `tsc: command not found`,需由 Gitea CD 乾淨環境驗證。
|
||||
- Web typecheck:`pnpm --filter @awoooi/web typecheck` 通過。
|
||||
|
||||
**安全邊界**:
|
||||
- P2-141 仍是只讀 input prep;不得把準備包可見解讀成 owner release authorized、owner release approved、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、rollback owner confirmed、release decision passed、release authorization granted / passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 或 destructive operation。
|
||||
|
||||
@@ -12,7 +12,7 @@
|
||||
| Nemotron 實際整合應用 | 30% | 完整回放前仍被關卡擋下 | `blocked_needs_evidence`,下一關是 `refresh_source_evidence_then_5_record_smoke_only` |
|
||||
| 工具 / 服務 / 套件 AI 自動化 | 92% | P0 已完成;P1 服務 / runtime / 監控 / provider / service health / 備份 / DR / 套件與供應鏈只讀基線已完成;P1-007 失敗限定通知合約與前端 redaction 合約已完成;下一主線是 P2-004 依賴 / 供應鏈漂移監控 | 狀態分類、盤點 schema、權限矩陣、靜態盤點種子、只讀 API、UI 骨架、驗證、自動化待辦 schema / 快照 / API / 分組 UI、Backup / DR 目標盤點、準備度矩陣、備份通知政策、Backup / DR 證據 UI、復原演練批准包模板、異地 / escrow 準備度狀態、任務批准邊界、確定性進度彙總、Python 套件 / 供應鏈只讀基線、JS pnpm/npm 只讀基線、Docker build surface 只讀基線、CVE / license / drift 嚴重度政策、定期依賴漂移與外部資料來源檢查設計、依賴升級批准包模板、runtime_surface_inventory_v1 schema / snapshot / API / UI、gitea_workflow_runner_health_v1 schema / snapshot / API / UI、observability_contract_matrix_v1 schema / snapshot / API / UI、ai_provider_route_matrix_v1 schema / snapshot / API / UI、service_health_gap_matrix_v1 schema / snapshot / API / UI、service health evidence cards UI、service_health_failure_notification_policy_v1 schema / snapshot / API / UI 已完成 |
|
||||
| OpenClaw / Hermes / NemoTron 佈建布局 | 45% | P1-401 / P1-402 已完成;仍是只讀 layout 與治理頁顯示,不是 runtime deploy | `ai_agent_deployment_layout_v1` schema、`ai_agent_deployment_layout_2026-06-11.json`、`GET /api/v1/agents/agent-deployment-layout`、治理頁自動化盤點 UI、`AI_AGENT_DEPLOYMENT_LAYOUT_2026-06-11.md` |
|
||||
| OpenClaw / Hermes / NemoTron 主動溝通、學習與成長證據 | 100% | P2-401A 到 P2-141 已完成只讀證據面、runtime / report / result-capture gates、no-write readback、promotion review、writer implementation review、writer dry-run fixture、writer dry-run readback、owner promotion execution gate、owner-approved execution rehearsal、owner acceptance / maintenance window gate、owner acceptance readback / preflight hold、owner-approved preflight release package、owner-approved release readiness readback、owner release approval gate、post-release verifier / rollback gate、final release candidate readback、release authorization hold / readback gate、release verifier preflight / owner review packet、release decision hold / readback、release decision next handoff 與 release decision input prep;P2-141 已正式驗證,固定 5 個 decision input packet、15 個 missing input field、6 個 blocked input transition 與 5 個 operator action,並把 P2-140 下一關交接轉成 owner / verifier / rollback / maintenance / live-apply 五類決策輸入準備包。runtime worker、DB migration、production Redis consumer group、canonical runtime readback、live query、runtime score、result capture write、Telegram 實發、delivery receipt E2E、live report delivery、reviewer queue write、Gateway queue write、AI analysis runtime、中低風險 auto worker、KM / LOGBOOK / audit DB / timeline / PlayBook trust 寫入、SDK / 付費服務仍未開 gate | `ai_agent_result_capture_release_decision_input_prep_v1`、`GET /api/v1/agents/agent-result-capture-release-decision-input-prep`、feature commit `ee5bf500`、deploy marker `306657fd`、Gitea code-review `2954` / CD `2953` success、P2-141 正式 API readback、desktop / mobile smoke、P2-141 + P2-140 regression `14 passed`、JSON parse、Python compile、i18n key mirror `11864`、治理頁 P2-141 區塊、禁用內部協作片語 `0`、水平溢位 `0`、內容區危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`;MASTER §3.2.1b / §3.2.1d / §3.4.3 |
|
||||
| OpenClaw / Hermes / NemoTron 主動溝通、學習與成長證據 | 100% | P2-401A 到 P2-141 已完成只讀證據面、runtime / report / result-capture gates、no-write readback、promotion review、writer implementation review、writer dry-run fixture、writer dry-run readback、owner promotion execution gate、owner-approved execution rehearsal、owner acceptance / maintenance window gate、owner acceptance readback / preflight hold、owner-approved preflight release package、owner-approved release readiness readback、owner release approval gate、post-release verifier / rollback gate、final release candidate readback、release authorization hold / readback gate、release verifier preflight / owner review packet、release decision hold / readback、release decision next handoff 與 release decision input prep;P2-141 基線已正式驗證,S4.9 owner release packet 補強已本地完成,固定 5 個 decision input packet、18 個 missing input field、6 個 blocked input transition 與 5 個 operator action,並把 P2-140 下一關交接轉成 owner / verifier / rollback / maintenance / live-apply 五類決策輸入準備包;owner release packet 已補 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner。runtime worker、DB migration、production Redis consumer group、canonical runtime readback、live query、runtime score、result capture write、Telegram 實發、delivery receipt E2E、live report delivery、reviewer queue write、Gateway queue write、AI analysis runtime、中低風險 auto worker、KM / LOGBOOK / audit DB / timeline / PlayBook trust 寫入、SDK / 付費服務仍未開 gate | `ai_agent_result_capture_release_decision_input_prep_v1`、`GET /api/v1/agents/agent-result-capture-release-decision-input-prep`、feature commit `ee5bf500`、deploy marker `306657fd`、Gitea code-review `2954` / CD `2953` success、P2-141 基線正式 API readback、desktop / mobile smoke;S4.9 補強本地 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror `11864`、Web typecheck、guard 與 doc secret sanity 通過;治理頁 P2-141 區塊、禁用內部協作片語 `0`、水平溢位 `0`、內容區危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`;MASTER §3.2.1b / §3.2.1d / §3.4.3 |
|
||||
| AI Agent 主動營運委派與版本生命週期 | 100% | P2-402A / P2-402B / P2-402C / P2-402D / P2-402E / P2-402F / P2-402G 已完成;已建立 repo-only 版本新鮮度快照、工具採用批准包、Telegram action-required digest policy、Gitea PR 草案 lane、host / K3s / stateful 版本只讀盤點、API 與 governance UI。定期排程、外部版本查詢、工具安裝、CI 變更、套件升級、主機更新、container pull、實際 PR creation、auto merge、Telegram 實發、SSH、kubectl、重啟仍未開 gate | `ai_agent_proactive_operations_contract_v1`、`ai_agent_version_freshness_snapshot_v1`、`ai_agent_tool_adoption_approval_package_v1`、`ai_agent_telegram_action_required_digest_policy_v1`、`ai_agent_gitea_pr_draft_lane_v1`、`ai_agent_host_stateful_version_inventory_v1`、`GET /api/v1/agents/agent-proactive-operations-contract`、`GET /api/v1/agents/agent-version-freshness-snapshot`、`GET /api/v1/agents/agent-tool-adoption-approval-package`、`GET /api/v1/agents/agent-telegram-action-required-digest-policy`、`GET /api/v1/agents/agent-gitea-pr-draft-lane`、`GET /api/v1/agents/agent-host-stateful-version-inventory`、`/zh-TW/governance?tab=automation-inventory`、MASTER §3.2.1c |
|
||||
| 本工作清單與分析報告 | 100% | 已完成 | 本 MD 文件 |
|
||||
|
||||
@@ -126,8 +126,8 @@
|
||||
|
||||
- `P2-141` release decision input prep 已本地完成:新增 `ai_agent_result_capture_release_decision_input_prep_v1`、`GET /api/v1/agents/agent-result-capture-release-decision-input-prep`、治理頁 P2-141 區塊與繁中 UI 文案。
|
||||
- P2-141 承接 P2-140 next handoff,把下一關交接整理成 owner release、verifier、rollback owner、maintenance window、live apply 五類 decision input packet,供後續 owner / verifier 審查,而不是寫入任何正式佇列。
|
||||
- P2-141 固定 5 個 decision input packet、15 個 missing input field、6 個 blocked input transition、5 個 operator action、需批准 `12`、阻擋 `12`、正式寫入 / 發送 `0`。
|
||||
- 本地證據:P2-141 + P2-140 API/service regression `14 passed`、JSON parse、Python compile、i18n key mirror `11864`、guard 與 doc secret sanity 通過;本臨時 worktree 無 `node_modules`,Web typecheck 需由 Gitea CD 乾淨環境驗證。
|
||||
- P2-141 固定 5 個 decision input packet、18 個 missing input field、6 個 blocked input transition、5 個 operator action、需批准 `12`、阻擋 `12`、正式寫入 / 發送 `0`;owner release packet 已補齊 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner。
|
||||
- 本地證據:P2-141 + P2-140 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror `11864`、Web typecheck、guard 與 doc secret sanity 通過。
|
||||
- 邊界仍維持:owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted / passed、rollback release、live apply release、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API、report receipt、result capture write、learning write、PlayBook trust write、production write、secret read、destructive operation 全部 `0 / false`。
|
||||
- P2-141 推送與正式驗證後才可交給 `P2-142`;仍不得直接開啟 result capture writer、learning writer、PlayBook trust writer、reviewer queue write、Gateway queue write、Telegram send、Bot API call 或 production write。
|
||||
|
||||
@@ -136,11 +136,19 @@
|
||||
- `P2-141` release decision input prep 已完成正式部署與 production readback:feature commit `ee5bf500`、deploy marker `306657fd chore(cd): deploy ee5bf50 [skip ci]`。
|
||||
- Gitea code-review run `2954` success;CD run `2953` success。
|
||||
- 正式 API 回 `schema_version=ai_agent_result_capture_release_decision_input_prep_v1`、current `P2-141`、next `P2-142`、completion `100`、runtime authority `result_capture_release_decision_input_prep_only_no_live_write`。
|
||||
- 正式 API / snapshot rollup:決策輸入準備包 `5`、缺欄位 `15`、已阻擋輸入轉換 `6`、操作選項 `5`、需批准 `12`、阻擋 `12`、Gateway 寫入 `0`、Telegram 送出 `0`、Bot API 呼叫 `0`、正式寫入 `0`。
|
||||
- 基線正式 API / snapshot rollup:決策輸入準備包 `5`、缺欄位 `15`、已阻擋輸入轉換 `6`、操作選項 `5`、需批准 `12`、阻擋 `12`、Gateway 寫入 `0`、Telegram 送出 `0`、Bot API 呼叫 `0`、正式寫入 `0`。
|
||||
- Browser smoke 已完成:desktop `1440x1000` 與 mobile `390x844` 均確認 P2-141 區塊、`P2-142`、`決策輸入準備卡`、`缺欄位`、`Gateway 寫入=0`、`Telegram 送出=0`、`正式寫入=0` 可見;水平溢位 `0`、overflowing element `0`、P2-141 卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`、禁用內部協作片語與敏感欄位命中 `0`。
|
||||
- 首次 full-page screenshot 因 governance 頁高度過長造成 Chrome bitmap 配置失敗;已改用捲動至 P2-141 卡片後截 viewport,DOM / UI 檢查全通過。頁面高度過長需另列 UX / 分段載入技術債。
|
||||
- P2-141 已可由 `P2-142` 承接;仍不得直接開啟 result capture writer、learning writer、PlayBook trust writer、reviewer queue write、Gateway queue write、Telegram send、Bot API call 或 production write。
|
||||
|
||||
### 2026-06-14 13:40 狀態同步
|
||||
|
||||
- `P2-141` S4.9 owner 欄位補強已本地完成;不新增第二套 endpoint,直接補強既有 `ai_agent_result_capture_release_decision_input_prep_v1` snapshot / service guard / API tests。
|
||||
- Owner release packet 已補齊 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;P2-141 rollup 更新為 decision input packet `5`、missing input field `18`、blocked input transition `6`、operator action `5`、需批准 `12`、阻擋 `12`、正式寫入 / 發送 `0`。
|
||||
- Service guard 已新增繁中 / 英文禁止外露詞,snapshot / messages 禁用值掃描 `0`,避免工作視窗、內部協作、提示詞、推理草稿、敏感標頭或未遮罩 runtime 資料進入前端可讀資料。
|
||||
- 本地證據:P2-141 + P2-140 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror `11864`、Web typecheck、source-control owner response guard、security mirror progress guard、doc secret sanity 與 `git diff --check` 通過。
|
||||
- 補強正式部署與 production desktop / mobile smoke 完成前,P2-141 S4.9 production verification 仍為 `0%`;active runtime gate、Telegram 實發、reviewer / Gateway queue write、production write 仍維持 `0`。
|
||||
|
||||
AI Agent 自動化工作包目前完成度:**99.8%**。本工作清單文件本身完成度:**100%**。
|
||||
|
||||
三 Agent 佈建布局目前完成度:**45%**。第一波已完成只讀 schema / snapshot / API / 測試 / 報告,第二波已接入治理頁自動化盤點 UI;正式 runtime 佈署、Telegram E2E 發送與 AgentSession 工作流仍需逐項 gate。
|
||||
@@ -1138,7 +1146,7 @@ UI:
|
||||
| P2-138 | 完成 | 100 | OpenClaw + Hermes + NemoTron | release decision hold | `ai_agent_result_capture_release_decision_hold_v1` / schema / snapshot / 只讀 API / governance UI;feature commit `655df33d` 與 maintenance window 補強 commit `1ae67f1f` 已由 deploy marker `bfd26e76` 正式驗證;承接 P2-137,只建立 5 個 release decision hold、5 個 owner decision hold、5 個 verifier decision hold、5 個 rollback decision hold、5 個 maintenance window decision hold、5 個 live-apply decision hold、6 個 blocked decision transition、5 個 operator action;需批准 `12`、阻擋 `12`;runtime authority 固定 `result_capture_release_decision_hold_only_no_live_write`;owner release authorized / owner review approved / owner decision approved / verifier decision approved / maintenance window approved / release decision passed / release authorization granted / passed / rollback release / live apply release / writer apply / execution apply / receipt write / reviewer queue / Gateway / Telegram / Bot API / result capture / learning / PlayBook trust / production write / secret read / destructive operation 全為 `0` | 本地 P2-138 + P2-137 pytest `15 passed`、JSON parse、Python compile、i18n key mirror `11777`、Web typecheck 與 Web production build 通過;production API readback、desktop / mobile smoke、水平溢位 `0`、P2-138 卡片危險控制 `0`、console / page error `0`、HTTP 4xx/5xx `0`;不得把 P2-138 當 runtime gate,已由 P2-139 承接 |
|
||||
| P2-139 | 完成 | 100 | OpenClaw + Hermes + NemoTron | release decision readback | `ai_agent_result_capture_release_decision_readback_v1` / schema / snapshot / 只讀 API / governance UI;feature commit `d41b1a38`、deploy marker `df867bd6` 已正式驗證;承接 P2-138,只讀回 5 個 release decision readback、5 個 owner decision readback、5 個 verifier decision readback、5 個 rollback decision readback、5 個 maintenance window decision readback、5 個 live-apply decision readback、6 個 blocked readback transition、5 個 operator action;需批准 `12`、阻擋 `12`;runtime authority 固定 `result_capture_release_decision_readback_only_no_live_write`;owner release authorized / owner review approved / owner decision approved / verifier decision approved / maintenance window approved / release decision passed / release authorization granted / passed / rollback release / live apply release / writer apply / execution apply / receipt write / reviewer queue / Gateway / Telegram / Bot API / result capture / learning / PlayBook trust / production write / secret read / destructive operation 全為 `0` | 本地 P2-139 API/service pytest `7 passed`、JSON parse、Python compile、i18n key mirror `11809` 通過;production API readback、desktop / mobile smoke、水平溢位 `0`、P2-139 卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`;不得把 P2-139 當 runtime gate,已可由 P2-140 承接 |
|
||||
| P2-140 | 完成 | 100 | OpenClaw + Hermes + NemoTron | release decision next handoff readback | `ai_agent_result_capture_release_decision_next_handoff_v1` / schema / snapshot / 只讀 API / governance UI;feature commit `2fe31c91`、deploy marker `40741425` 已正式驗證,後續 deploy markers `0ae1a25d` 與 `a6b2d187` 已重驗;承接 P2-139,只讀回下一關交接並隔離 P2-139 自我迴圈;固定 5 個 next-gate handoff、1 個 stale operator action containment、6 個 blocked handoff transition、5 個 operator action;需批准 `12`、阻擋 `12`;runtime authority 固定 `result_capture_release_decision_next_handoff_only_no_live_write`;owner release authorized / owner review approved / owner decision approved / verifier decision approved / maintenance window approved / release decision passed / release authorization granted / passed / rollback release / live apply release / writer apply / execution apply / receipt write / reviewer queue / Gateway / Telegram / Bot API / result capture / learning / PlayBook trust / production write / secret read / destructive operation 全為 `0` | 本地 P2-140 + P2-139 API/service regression `14 passed`、JSON parse、Python compile、i18n key mirror `11837`、guard 與 doc secret sanity 通過;production API readback、desktop / mobile smoke、in-app browser smoke、水平溢位 `0`、內容區危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`;不得把 P2-140 當 runtime gate,已可由 P2-141 承接 |
|
||||
| P2-141 | 完成 | 100 | OpenClaw + Hermes + NemoTron | release decision input prep | `ai_agent_result_capture_release_decision_input_prep_v1` / schema / snapshot / 只讀 API / governance UI;feature commit `ee5bf500`、deploy marker `306657fd` 已正式驗證;承接 P2-140 next handoff,整理 5 個 decision input packet、15 個 missing input field、6 個 blocked input transition、5 個 operator action;需批准 `12`、阻擋 `12`;runtime authority 固定 `result_capture_release_decision_input_prep_only_no_live_write`;owner release authorized / owner review approved / owner decision approved / verifier decision approved / maintenance window approved / release decision passed / release authorization granted / passed / rollback release / live apply release / writer apply / execution apply / receipt write / reviewer queue / Gateway / Telegram / Bot API / result capture / learning / PlayBook trust / production write / secret read / destructive operation 全為 `0` | 本地 P2-141 + P2-140 API/service regression `14 passed`、JSON parse、Python compile、i18n key mirror `11864`、guard 與 doc secret sanity 通過;production API readback、desktop / mobile smoke、水平溢位 `0`、P2-141 卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`;不得把 input prep 當 runtime gate,已可由 P2-142 承接 |
|
||||
| P2-141 | 補強本地完成 | 100 | OpenClaw + Hermes + NemoTron | release decision input prep | `ai_agent_result_capture_release_decision_input_prep_v1` / schema / snapshot / 只讀 API / governance UI;feature commit `ee5bf500`、deploy marker `306657fd` 已完成 P2-141 基線正式驗證;本補強承接 P2-140 next handoff,整理 5 個 decision input packet、18 個 missing input field、6 個 blocked input transition、5 個 operator action;owner release packet 已補齊 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;需批准 `12`、阻擋 `12`;runtime authority 固定 `result_capture_release_decision_input_prep_only_no_live_write`;owner release authorized / owner review approved / owner decision approved / verifier decision approved / maintenance window approved / release decision passed / release authorization granted / passed / rollback release / live apply release / writer apply / execution apply / receipt write / reviewer queue / Gateway / Telegram / Bot API / result capture / learning / PlayBook trust / production write / secret read / destructive operation 全為 `0` | P2-141 基線 production API readback、desktop / mobile smoke、水平溢位 `0`、P2-141 卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`;S4.9 補強本地 P2-141 + P2-140 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror `11864`、Web typecheck、guard 與 doc secret sanity 通過;補強正式部署與 production desktop / mobile smoke 待 Gitea CD 完成後補驗,不得把 input prep 當 runtime gate,正式驗證後才可由 P2-142 承接 |
|
||||
|
||||
|
||||
### P3 - 候選 Agent 擴展
|
||||
|
||||
@@ -137,8 +137,15 @@
|
||||
"target_next_task_id": "P2-142",
|
||||
"input_status": "missing_required_decision_input",
|
||||
"required_input_type": "owner_release_decision",
|
||||
"input_summary": "需要 owner 明確決策、理由與可審核 evidence refs;此包只整理輸入,不代表 release 已被批准。",
|
||||
"missing_fields": ["owner_decision", "decision_reason", "redacted_evidence_refs"],
|
||||
"input_summary": "需要 owner 角色 / 團隊、明確決策、理由、影響範圍、遮罩 evidence refs 與 follow-up owner;此包只整理輸入,不代表 release 已被批准。",
|
||||
"missing_fields": [
|
||||
"owner_role_team",
|
||||
"owner_decision",
|
||||
"decision_reason",
|
||||
"affected_scope",
|
||||
"redacted_evidence_refs",
|
||||
"followup_owner"
|
||||
],
|
||||
"approval_required": true,
|
||||
"runtime_write_allowed": false,
|
||||
"telegram_send_allowed": false,
|
||||
@@ -213,7 +220,7 @@
|
||||
{
|
||||
"transition_id": "blocked_owner_release_without_decision",
|
||||
"status": "blocked_by_missing_input",
|
||||
"reason": "owner release decision 尚未提供,不能把準備包轉成批准。",
|
||||
"reason": "owner 角色 / 團隊、決策、理由、影響範圍、遮罩 evidence refs 與 follow-up owner 尚未完整,不能把準備包轉成批准。",
|
||||
"runtime_write_allowed": false
|
||||
},
|
||||
{
|
||||
@@ -252,7 +259,7 @@
|
||||
"action_id": "prepare_owner_decision_input_packet",
|
||||
"owner_agent": "openclaw",
|
||||
"status": "ready_for_operator_review",
|
||||
"operator_instruction": "整理 owner 決策、理由與 redacted evidence refs;不得把本步驟當成 owner 已批准。",
|
||||
"operator_instruction": "整理 owner 角色 / 團隊、決策、理由、影響範圍、遮罩 evidence refs 與 follow-up owner;不得把本步驟當成 owner 已批准。",
|
||||
"runtime_write_allowed": false
|
||||
},
|
||||
{
|
||||
@@ -291,7 +298,7 @@
|
||||
"secret_value_display_allowed": false,
|
||||
"raw_runtime_payload_display_allowed": false,
|
||||
"internal_collaboration_content_display_allowed": false,
|
||||
"frontend_display_policy": "前端只能顯示決策輸入摘要、缺欄位、只讀狀態與 redacted evidence hash;不得顯示內部協作內容、推理內容、token、secret 或原始 runtime payload。"
|
||||
"frontend_display_policy": "前端只能顯示決策輸入摘要、缺欄位、只讀狀態與遮罩 evidence hash;不得顯示非公開溝通、未脫敏指令、推理草稿、敏感值、驗證標頭或未遮罩 runtime 資料。"
|
||||
},
|
||||
"rollups": {
|
||||
"decision_input_packet_count": 5,
|
||||
@@ -300,7 +307,7 @@
|
||||
"rollback_input_packet_count": 1,
|
||||
"maintenance_window_input_count": 1,
|
||||
"live_apply_input_count": 1,
|
||||
"missing_input_field_count": 15,
|
||||
"missing_input_field_count": 18,
|
||||
"blocked_input_transition_count": 6,
|
||||
"operator_action_count": 5,
|
||||
"approval_required_subtotal": 12,
|
||||
|
||||
@@ -678,7 +678,7 @@ Alert / Sentry / SigNoz / Gitea / Market Watch / Operator
|
||||
| `docs/evaluations/ai_agent_result_capture_release_decision_hold_2026-06-14.json` + `GET /api/v1/agents/agent-result-capture-release-decision-hold` | P2-138 release decision hold;承接 P2-137 release verifier owner review packet,建立 5 個 release decision hold、5 個 owner decision hold、5 個 verifier decision hold、5 個 rollback decision hold、5 個 maintenance window decision hold、5 個 live-apply decision hold、6 個 blocked decision transition 與 5 個 operator action;runtime authority 固定 `result_capture_release_decision_hold_only_no_live_write`;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、canonical runtime target read、live query、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 與 destructive action 全部 `0 / false`;feature commit `655df33d` 與 maintenance window 補強 commit `1ae67f1f` 已由 deploy marker `bfd26e76` 正式驗證,正式 API readback 與 desktop / mobile smoke 已完成,下一步 P2-139 release decision readback |
|
||||
| `docs/evaluations/ai_agent_result_capture_release_decision_readback_2026-06-14.json` + `GET /api/v1/agents/agent-result-capture-release-decision-readback` | P2-139 release decision readback;承接 P2-138 release decision hold,建立 5 個 release decision readback、5 個 owner decision readback、5 個 verifier decision readback、5 個 rollback decision readback、5 個 maintenance window decision readback、5 個 live-apply decision readback、6 個 blocked readback transition 與 5 個 operator action;runtime authority 固定 `result_capture_release_decision_readback_only_no_live_write`;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、canonical runtime target read、live query、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 與 destructive action 全部 `0 / false`;feature commit `d41b1a38`、deploy marker `df867bd6`、正式 API readback、desktop / mobile smoke、禁用內部協作片語 `0`、水平溢位 `0`、危險控制 `0`、console error `0`、HTTP 4xx/5xx `0` 已完成,下一步 P2-140 |
|
||||
| `docs/evaluations/ai_agent_result_capture_release_decision_next_handoff_2026-06-14.json` + `GET /api/v1/agents/agent-result-capture-release-decision-next-handoff` | P2-140 release decision next handoff readback;承接 P2-139 release decision readback,建立 5 個 next-gate handoff、1 個 stale operator action containment、6 個 blocked handoff transition 與 5 個 operator action;runtime authority 固定 `result_capture_release_decision_next_handoff_only_no_live_write`;P2-139 的 `prepare_p2_139_release_decision_readback` 自我迴圈已標示為 `contained_read_only`,真正下一步為 P2-141;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、canonical runtime target read、live query、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 與 destructive action 全部 `0 / false`;feature commit `2fe31c91`、deploy marker `40741425`、最新 recheck deploy marker `a6b2d187`、正式 API readback、desktop / mobile smoke、in-app browser smoke、禁用內部協作片語 `0`、水平溢位 `0`、內容區危險控制 `0`、console error `0`、HTTP 4xx/5xx `0` 已完成,下一步 P2-141 |
|
||||
| `docs/evaluations/ai_agent_result_capture_release_decision_input_prep_2026-06-14.json` + `GET /api/v1/agents/agent-result-capture-release-decision-input-prep` | P2-141 release decision input prep;承接 P2-140 release decision next handoff,把下一關交接整理成 5 個 decision input packet、15 個 missing input field、6 個 blocked input transition 與 5 個 operator action;runtime authority 固定 `result_capture_release_decision_input_prep_only_no_live_write`;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、canonical runtime target read、live query、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 與 destructive action 全部 `0 / false`;feature commit `ee5bf500`、deploy marker `306657fd`、Gitea code-review `2954` / CD `2953` success、正式 API readback、desktop / mobile smoke、禁用內部協作片語 `0`、水平溢位 `0`、卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0` 已完成,下一步 P2-142 |
|
||||
| `docs/evaluations/ai_agent_result_capture_release_decision_input_prep_2026-06-14.json` + `GET /api/v1/agents/agent-result-capture-release-decision-input-prep` | P2-141 release decision input prep;承接 P2-140 release decision next handoff,把下一關交接整理成 5 個 decision input packet、18 個 missing input field、6 個 blocked input transition 與 5 個 operator action;owner release packet 已補齊 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;runtime authority 固定 `result_capture_release_decision_input_prep_only_no_live_write`;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、canonical runtime target read、live query、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read 與 destructive action 全部 `0 / false`;feature commit `ee5bf500`、deploy marker `306657fd`、Gitea code-review `2954` / CD `2953` success 已完成 15 欄位基線正式驗證;S4.9 補強本地 P2-141 + P2-140 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror、Web typecheck、guard 與 doc secret sanity 已完成,補強正式驗證後才可由 P2-142 承接 |
|
||||
| `docs/evaluations/ai_agent_live_read_model_gate_2026-06-11.json` + `GET /api/v1/agents/agent-live-read-model-gate` | P2-403B AgentSession / Redis Streams live read model gate;定義 safe fields、Redis envelope、worker gate、rollback plan 與 no-write smoke,不連 DB、不讀寫 Redis、不啟動 worker |
|
||||
|
||||
#### 3.2.1c 2026-06-11 AI Agent 主動營運委派與版本生命週期契約
|
||||
@@ -808,7 +808,7 @@ Repo / registry / release notes / K8s / host / observability / backup evidence
|
||||
59. 建立 release decision hold。✅ P2-138 最新合約已完成並正式驗證;release decision hold `5`、owner decision hold `5`、verifier decision hold `5`、rollback decision hold `5`、maintenance window decision hold `5`、live-apply decision hold `5`、blocked decision transition `6`、operator action `5`,approval-required release / owner / verifier / rollback / maintenance / live apply `2 / 2 / 2 / 2 / 2 / 2`、blocked release / owner / verifier / rollback / maintenance / live apply `1 / 1 / 1 / 1 / 1 / 1`、critical blocker `6`;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read、destructive operation 仍為 `0 / false`;本地 P2-138 + P2-137 regression `15 passed`、JSON parse、Python compile、i18n key mirror、Web typecheck 與 Web production build 通過;deploy marker `bfd26e76`、正式 API readback 與 desktop / mobile smoke 已完成。已由 P2-139 承接。
|
||||
60. 建立 release decision readback。✅ P2-139 已完成並正式驗證;release decision readback `5`、owner decision readback `5`、verifier decision readback `5`、rollback decision readback `5`、maintenance window decision readback `5`、live-apply decision readback `5`、blocked readback transition `6`、operator action `5`,approval-required release / owner / verifier / rollback / maintenance / live apply `2 / 2 / 2 / 2 / 2 / 2`、blocked release / owner / verifier / rollback / maintenance / live apply `1 / 1 / 1 / 1 / 1 / 1`、critical blocker `6`;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read、destructive operation 仍為 `0 / false`;本地 API/service pytest `7 passed`、JSON parse、Python compile、i18n key mirror 通過;deploy marker `df867bd6`、正式 API readback 與 desktop / mobile smoke 已完成。已可由 P2-140 承接。
|
||||
61. 建立 release decision next handoff readback。✅ P2-140 已完成並正式驗證;next-gate handoff `5`、stale operator action containment `1`、blocked handoff transition `6`、operator action `5`、approval required subtotal `12`、blocked + critical subtotal `12`;P2-139 的 `prepare_p2_139_release_decision_readback` 自我迴圈已標示為 `contained_read_only`,真正下一步固定為 P2-141;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read、destructive operation 仍為 `0 / false`;P2-140 + P2-139 regression `14 passed`、JSON parse、Python compile、i18n key mirror、guard 與 doc secret sanity 通過;deploy marker `40741425`、最新 recheck deploy marker `a6b2d187`、正式 API readback、in-app browser、desktop / mobile smoke 已完成。已可由 P2-141 承接。
|
||||
62. 建立 release decision input prep。✅ P2-141 已完成並正式驗證;decision input packet `5`、missing input field `15`、blocked input transition `6`、operator action `5`、approval required subtotal `12`、blocked + critical subtotal `12`;P2-141 只把 P2-140 next handoff 轉成 owner release、verifier、rollback owner、maintenance window、live apply 五類決策輸入準備包,尚未寫入 reviewer queue、Gateway queue、Telegram、Bot API、result capture、learning、PlayBook trust 或 production target;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read、destructive operation 仍為 `0 / false`;P2-141 + P2-140 regression `14 passed`、JSON parse、Python compile、i18n key mirror、guard 與 doc secret sanity 通過;deploy marker `306657fd`、正式 API readback 與 desktop / mobile smoke 已完成。已可由 P2-142 承接。
|
||||
62. 建立 release decision input prep。✅ P2-141 基線已完成並正式驗證,S4.9 owner 欄位補強已本地完成;decision input packet `5`、missing input field `18`、blocked input transition `6`、operator action `5`、approval required subtotal `12`、blocked + critical subtotal `12`;owner release packet 已補齊 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;P2-141 只把 P2-140 next handoff 轉成 owner release、verifier、rollback owner、maintenance window、live apply 五類決策輸入準備包,尚未寫入 reviewer queue、Gateway queue、Telegram、Bot API、result capture、learning、PlayBook trust 或 production target;owner release authorized、owner review approved、owner decision approved、verifier decision approved、maintenance window approved、release decision passed、release authorization granted、release authorization passed、rollback release passed、live apply release passed、writer apply、execution apply、receipt write、reviewer queue write、Gateway queue write、Telegram send、Bot API call、report receipt write、result capture write、learning write、PlayBook trust write、production write、secret read、destructive operation 仍為 `0 / false`;P2-141 + P2-140 regression `15 passed`、JSON parse、Python compile、i18n key mirror、Web typecheck、guard 與 doc secret sanity 通過;deploy marker `306657fd`、正式 API readback 與 desktop / mobile smoke 已完成 15 欄位基線驗證;補強正式驗證後才可由 P2-142 承接。
|
||||
|
||||
#### 3.2.1d 2026-06-11 Agent 互動、學習與成長證據面
|
||||
|
||||
@@ -2009,19 +2009,28 @@ Phase 6 完成後
|
||||
|
||||
- 新增 `ai_agent_result_capture_release_decision_input_prep_v1` schema、snapshot、service loader、FastAPI endpoint `GET /api/v1/agents/agent-result-capture-release-decision-input-prep`、governance automation inventory UI 與 i18n 文案。
|
||||
- P2-141 承接 P2-140 release decision next handoff,把下一關交接整理成 owner release、verifier、rollback owner、maintenance window、live apply 五類 decision input packet。
|
||||
- 本地 rollup:decision input packet `5`、missing input field `15`、blocked input transition `6`、operator action `5`、approval required `12`、blocked + critical `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- 本地驗證:P2-141 + P2-140 API/service regression `14 passed`、JSON parse、Python compile、i18n key mirror `11864`、source-control owner response guard、security mirror progress guard、doc secret sanity 與 `git diff --check` 通過;本臨時 worktree 無 `node_modules`,Web typecheck 由 Gitea CD 乾淨環境承接。
|
||||
- 本地 rollup:decision input packet `5`、missing input field `18`、blocked input transition `6`、operator action `5`、approval required `12`、blocked + critical `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- Owner release packet 已補齊 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;驗收前仍不得假性拉高任何 release / runtime gate。
|
||||
- 本地驗證:P2-141 + P2-140 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror `11864`、Web typecheck、source-control owner response guard、security mirror progress guard、doc secret sanity 與 `git diff --check` 通過。
|
||||
- 本波仍不讀 canonical runtime target、不做 live query、不寫 reviewer queue、不寫 Gateway queue、不送 Telegram、不呼叫 Bot API、不寫 report receipt、不寫 result capture、不寫 learning、不更新 PlayBook trust、不寫 production target、不讀 secret、不執行 destructive action、不回傳內部工作內容;正式驗證後才可由 P2-142 承接。
|
||||
|
||||
### 2026-06-14 13:32 (台北) — §3.2 / §5 — 正式驗證 P2-141 release decision input prep — 完成決策輸入準備包
|
||||
|
||||
- Feature commit `ee5bf500 feat(governance): 新增 release decision input prep` 已由 deploy marker `306657fd chore(cd): deploy ee5bf50 [skip ci]` 部署到正式站;Gitea code-review run `2954` 與 CD run `2953` 均 success。
|
||||
- Production health 回 `healthy / prod / mock_mode=false`;正式 API `GET /api/v1/agents/agent-result-capture-release-decision-input-prep` 回 `schema_version=ai_agent_result_capture_release_decision_input_prep_v1`、current `P2-141`、next `P2-142`、completion `100`、runtime authority `result_capture_release_decision_input_prep_only_no_live_write`。
|
||||
- 正式 API / snapshot rollup:decision input packet `5`、missing input field `15`、blocked input transition `6`、operator action `5`、approval required `12`、blocked + critical `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- 基線正式 API / snapshot rollup:decision input packet `5`、missing input field `15`、blocked input transition `6`、operator action `5`、approval required `12`、blocked + critical `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- Desktop `1440x1000` 與 mobile `390x844` smoke 均確認 P2-141 區塊、`P2-142`、`決策輸入準備卡`、`缺欄位`、`Gateway 寫入=0`、`Telegram 送出=0`、`正式寫入=0` 可見;水平溢位 `0`、overflowing element `0`、P2-141 卡片危險控制 `0`、console error `0`、HTTP 4xx/5xx `0`、禁用內部協作片語與敏感欄位命中 `0`。
|
||||
- 首次 full-page screenshot 因 governance 頁高度過長造成 Chrome bitmap 配置失敗;已改為捲動至 P2-141 卡片後截 viewport,DOM 與 UI 驗證通過。頁面高度過長需另列 UX / 分段載入技術債,不影響本關卡正式證據。
|
||||
- 本波仍不讀 canonical runtime target、不做 live query、不寫 reviewer queue、不寫 Gateway queue、不送 Telegram、不呼叫 Bot API、不寫 report receipt、不寫 result capture、不寫 learning、不更新 PlayBook trust、不寫 production target、不讀 secret、不執行 destructive action、不回傳內部工作內容;已可由 P2-142 承接,但 P2-142 仍只能推進只讀關卡。
|
||||
|
||||
### 2026-06-14 13:40 (台北) — §3.2 / §5 — 補齊 P2-141 S4.9 owner 欄位 — 本地完成
|
||||
|
||||
- P2-141 基線已由 feature commit `ee5bf500`、deploy marker `306657fd`、Gitea code-review `2954` 與 CD `2953` 正式驗證;本段只補強既有 `ai_agent_result_capture_release_decision_input_prep_v1`,不新增第二套 endpoint。
|
||||
- Owner release packet 已補齊 S4.9 owner role / team、decision、decision reason、affected scope、redacted evidence refs、followup owner;rollup 更新為 decision input packet `5`、missing input field `18`、blocked input transition `6`、operator action `5`、approval required `12`、blocked + critical `12`、Gateway write `0`、Telegram send `0`、Bot API call `0`、production write `0`。
|
||||
- Service guard 已新增繁中 / 英文禁止外露詞,會拒絕工作視窗、內部協作、原始提示詞、私有推理、原始 runtime payload、raw runtime payload 與 authorization header 類值;前端可讀資料仍不得顯示內部工作內容。
|
||||
- 本地驗證:P2-141 + P2-140 API/service regression `15 passed`、JSON parse、Python compile、i18n key mirror `11864`、Web typecheck、source-control owner response guard、security mirror progress guard、doc secret sanity、P2-141 snapshot / messages 禁用外露值掃描與 `git diff --check` 通過。
|
||||
- 本波仍不讀 canonical runtime target、不做 live query、不寫 reviewer queue、不寫 Gateway queue、不送 Telegram、不呼叫 Bot API、不寫 report receipt、不寫 result capture、不寫 learning、不更新 PlayBook trust、不寫 production target、不讀 secret、不執行 destructive action;補強正式驗證完成前,P2-141 S4.9 production verification 仍為 `0%`。
|
||||
|
||||
### 2026-06-14 08:36 (台北) — §3.2 / §5 — 正式驗證 P2-134 release authorization hold — 完成釋出授權保留只讀關卡
|
||||
|
||||
- Feature commit `e0a6d339` 已由 deploy marker `18b867c3 chore(cd): deploy e0a6d33 [skip ci]` 部署;正式 API health 回 `healthy`、`environment=prod`、`mock_mode=false`。
|
||||
|
||||
Reference in New Issue
Block a user