{ "@context": { "schema": "http://schema.org/", "xsd": "http://www.w3.org/2001/XMLSchema#" }, "@type": [ "http://schema.org/DataSet", "http://schema.org/SoftwareSourceCode" ], "schema_version": "1.0.0", "generated_at": "2026-05-24T17:51:13Z", "product": "Zen Mesh", "repository": "https://github.com/zenmesh/zen-platform", "evidence_scope": "local_mock_harness_plus_gke_cloud_demo", "proof_levels": { "victory_locked": { "label": "Victory Locked", "description": "Proof has been verified, witnessed, and locked via a victory-lock artifact with commit-pinned, scenario-specific evidence.", "confidence": "high" }, "proven_local_mock": { "label": "Proven (Local Mock)", "description": "Proof passes in a local sandbox or mock harness. Not production-validated.", "confidence": "medium" }, "proven_cloud_demo": { "label": "Proven (Cloud Demo)", "description": "Proof validated on cloud infrastructure (GKE). Demo scope, not production.", "confidence": "medium-high" }, "implementation_present": { "label": "Implementation Present", "description": "Code or contract implementation exists but has not been formally proven.", "confidence": "low" }, "planned": { "label": "Planned", "description": "Design or specification exists; implementation and proof are future work.", "confidence": "none" }, "blocked": { "label": "Blocked", "description": "Proof is blocked by a known dependency or gap.", "confidence": "none" }, "not_claimed": { "label": "Not Claimed", "description": "Explicitly not claimed — see non-claims for details.", "confidence": "none" } }, "capabilities": [ { "id": "runtime-at-least-once-delivery", "proof_id": "RUNTIME-CONVERGENCE-PROOF-001", "name": "At-Least-Once Delivery (Failure Injection)", "description": "Scenario-specific proof: target_500 → retry (3 attempts) → succeed. At-least-once delivery with idempotency via failure injection. Local mock harness only.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/at_least_once_failure_injection_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_001_victory_lock.json" ], "validator_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json", "zen-platform:scripts/validate-evidence-docs.mjs" ], "merkle_ref": "mock:runtime-proof-001-merkle-root", "non_claims": [ "Not exactly-once delivery", "Not zero-loss delivery", "Not general at-least-once guarantee", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-cp-outage-reconciliation", "proof_id": "RUNTIME-CONVERGENCE-PROOF-002", "name": "Control Plane Outage Reconciliation", "description": "Scenario-specific proof: CP outage with cached policy → reconnect → converge. Conflict-free CP outage reconciliation in local mock.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/control_plane_outage_reconciliation_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_002_victory_lock.json" ], "validator_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json" ], "merkle_ref": "mock:runtime-proof-002-merkle-root", "non_claims": [ "Not CP autonomy for all scenarios", "Not zero-loss", "Not exactly-once", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-retry-exhaustion-dlq", "proof_id": "RUNTIME-CONVERGENCE-PROOF-003", "name": "Retry Exhaustion and DLQ Routing", "description": "Scenario-specific proof: target always fails → retry exhaustion → DLQ terminal state. Local mock harness only.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/retry_exhaustion_dlq_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_003_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-003-merkle-root", "non_claims": [ "Not exactly-once", "Not zero-loss", "Not general at-least-once guarantee", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-duplicate-idempotency", "proof_id": "RUNTIME-CONVERGENCE-PROOF-004", "name": "Duplicate Detection and Idempotent Acceptance", "description": "Scenario-specific proof: duplicate event → idempotency recognition → no extra delivery. Local mock harness only.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/duplicate_idempotency_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_004_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-004-merkle-root", "non_claims": [ "Not exactly-once", "Not replay prevention", "Not auth/identity from idempotency", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-conflict-reconciliation", "proof_id": "RUNTIME-CONVERGENCE-PROOF-005", "name": "Conflict Reconciliation", "description": "Scenario-specific proof: CP state diverges during outage → conflict → resolution via remote_wins. Local mock harness only.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/conflict_reconciliation_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_005_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-005-merkle-root", "non_claims": [ "Not all conflicts resolvable", "Not zero-loss", "Not exactly-once", "Not production-ready", "Not general CP autonomy" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-topology-drift-detection", "proof_id": "RUNTIME-CONVERGENCE-PROOF-006", "name": "Topology Drift Detection and Alignment", "description": "Scenario-specific proof: topology version drift → detection → auto-correction. Local mock harness only.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/topology_drift_detection_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_006_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-006-merkle-root", "non_claims": [ "Not all drift auto-corrected", "Not zero-loss", "Not exactly-once", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-evidence-buffer-flush", "proof_id": "RUNTIME-CONVERGENCE-PROOF-007", "name": "Evidence Buffer Flush", "description": "Scenario-specific proof: evidence buffered during outage → flush in order → complete. 5-item buffer, order preserved, no duplicates. Local mock harness only.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/evidence_buffer_flush_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_007_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-007-merkle-root", "non_claims": [ "Not zero-loss for all buffer scenarios", "Not exactly-once", "Not production-ready", "Not general flush guarantee" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-relay-path-convergence", "proof_id": "RUNTIME-CONVERGENCE-PROOF-008", "name": "Relay Path Convergence", "description": "Scenario-specific proof: direct path unavailable → relay → target succeeded. Single relay path convergence in local mock.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/relay_path_convergence_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_008_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-008-merkle-root", "non_claims": [ "Not general relay availability", "Not zero-loss", "Not exactly-once", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-relay-failover-recovery", "proof_id": "RUNTIME-CONVERGENCE-PROOF-009", "name": "Relay Failover Recovery", "description": "Scenario-specific proof: primary relay fails → secondary → target succeeded. Single relay failover in local mock.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/relay_failover_recovery_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_009_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-009-merkle-root", "non_claims": [ "Not HA guarantee", "Not global failover", "Not zero-loss", "Not exactly-once", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "runtime-private-edge-path-convergence", "proof_id": "RUNTIME-CONVERGENCE-PROOF-010", "name": "Private-Edge Path Convergence", "description": "Scenario-specific proof: edge → private_edge → mock data target succeeded. Single private-edge path in local mock.", "proof_status": "victory_locked", "victory_locked": true, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/private_edge_path_convergence_execution.json", "zen-platform:docs/80-EVIDENCE/runtime/victory-locks/runtime_convergence_proof_010_victory_lock.json" ], "validator_refs": [], "merkle_ref": "mock:runtime-proof-010-merkle-root", "non_claims": [ "Not private data plane general availability", "Not customer-owned guarantee", "Not zero-loss", "Not exactly-once", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-spiffe-identity-control-plane", "proof_id": "TRUST-PROOF-001", "name": "SPIFFE Identity on Control-Plane", "description": "SPIFFE SVID-based identity for control-plane paths. mTLS enforced where SPIFFE is deployed. Scoped to control-plane only — not applied to data-plane or every endpoint.", "proof_status": "proven_local_mock", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json" ], "validator_refs": [ "zen-platform:docs/10-ARCHITECTURE/SECURITY.md", "zen-platform:docs/10-ARCHITECTURE/COMMITMENTS.md" ], "merkle_ref": "mock:trust-proof-001-merkle-root", "non_claims": [ "Not SPIFFE everywhere", "Not data-plane SPIFFE identity", "Not multi-cluster SPIFFE federation", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-mtls-enforcement", "proof_id": "TRUST-PROOF-002", "name": "mTLS Enforcement", "description": "Mutual TLS enforced on control-plane paths where SPIFFE identity is deployed. Local mock validation only.", "proof_status": "proven_local_mock", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json" ], "validator_refs": [ "zen-platform:docs/10-ARCHITECTURE/SECURITY.md" ], "merkle_ref": "mock:trust-proof-002-merkle-root", "non_claims": [ "Not mTLS everywhere", "Not data-plane mTLS", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-zero-trust-boundaries", "proof_id": "TRUST-PROOF-003", "name": "Zero-Trust Boundaries (Control-Plane Scoped)", "description": "Zero-trust-oriented controls implemented on control-plane paths. Boundaries enforced via SPIFFE identity, mTLS, and policy-based authz. Data-plane expansion is planned.", "proof_status": "proven_local_mock", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json" ], "validator_refs": [ "zen-platform:docs/10-ARCHITECTURE/SECURITY.md", "zen-platform:docs/10-ARCHITECTURE/COMMITMENTS.md" ], "merkle_ref": "mock:trust-proof-003-merkle-root", "non_claims": [ "Not blanket zero-trust", "Not data-plane zero-trust", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-evidence-integrity", "proof_id": "TRUST-PROOF-004", "name": "Evidence Integrity via Merkle Hash Chain", "description": "Merkle hash chain used for evidence integrity verification. Fixture-validated (4 files PASS). Merkle is evidence integrity only — it is not an access control function, access decision rule, or send confirmation.", "proof_status": "proven_local_mock", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json" ], "validator_refs": [ "zen-platform:scripts/merkle_evidence_verify.py" ], "merkle_ref": "mock:trust-proof-004-merkle-root", "non_claims": [ "Merkle provides evidence integrity comparison only" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-secretless-operations", "proof_id": "TRUST-PROOF-005", "name": "Secretless Operations", "description": "Architecture designed for secretless operation — no static secrets in config, SPIFFE for workload identity, short-lived credentials. Scope: control-plane paths.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [], "validator_refs": [ "zen-platform:docs/10-ARCHITECTURE/SECURITY.md" ], "merkle_ref": "mock:trust-proof-005-merkle-root", "non_claims": [ "Not all paths secretless", "Not audited for secret hygiene", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-policy-based-authorization", "proof_id": "TRUST-PROOF-006", "name": "Policy-Based Authorization", "description": "Authorization decisions based on policy rules evaluated against SPIFFE identity. Contract-defined with conformance fixtures.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [], "validator_refs": [ "zen-platform:docs/10-ARCHITECTURE/COMMITMENTS.md" ], "merkle_ref": "mock:trust-proof-006-merkle-root", "non_claims": [ "Not RBAC proven in failure scenarios", "Not ABAC implemented", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-rotation-revocation", "proof_id": "TRUST-PROOF-007", "name": "Rotation and Revocation Support", "description": "Architecture supports certificate rotation and SPIFFE identity revocation. Mechanisms defined in contract; runtime execution not yet proven.", "proof_status": "planned", "victory_locked": false, "evidence_refs": [], "validator_refs": [ "zen-platform:docs/10-ARCHITECTURE/COMMITMENTS.md" ], "merkle_ref": "mock:trust-proof-007-merkle-root", "non_claims": [ "Not rotation implemented in runtime", "Not revocation proven in failure scenarios", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-audit-trail", "proof_id": "TRUST-PROOF-008", "name": "Audit Trail", "description": "Evidence buffer flush preserves ordered delivery evidence for audit. Audit trail exists for mock scenarios only.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/evidence_buffer_flush_execution.json" ], "validator_refs": [], "merkle_ref": "mock:trust-proof-008-merkle-root", "non_claims": [ "Not compliance-audited", "Not external auditor reviewed", "Not production-ready" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-tamper-evidence", "proof_id": "TRUST-PROOF-009", "name": "Tamper Evidence via Merkle Chain", "description": "Merkle hash chain provides tamper detection for evidence artifacts. Any modification changes the hash. Local mock only.", "proof_status": "proven_local_mock", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_truth_read_model_minimum.json" ], "validator_refs": [ "zen-platform:scripts/merkle_evidence_verify.py" ], "merkle_ref": "mock:trust-proof-009-merkle-root", "non_claims": [ "Merkle provides evidence integrity comparison only", "Not production-ready", "Not penetration-tested" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "trust-compliance-control-mapping", "proof_id": "TRUST-PROOF-010", "name": "Compliance Control Mapping (Internal Readiness)", "description": "Internal mapping of technical controls to compliance frameworks (PCI-DSS, NIST SP 800-53, SOC2, ISO 27001, HIPAA). Maps-to and supports relationships only — not certification.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/20-OPERATIONS/COMPLIANCE.md", "zen-platform:docs/10-ARCHITECTURE/FRONTEND_BACKEND_GAPS.md" ], "validator_refs": [], "merkle_ref": "mock:trust-proof-010-merkle-root", "non_claims": [ "Not PCI-DSS attestation", "Not SOC2 audit attestation", "Not ISO 27001 audit attestation", "Not HIPAA business associate agreement", "Not FedRAMP assessment", "Not external penetration test passed" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC" ] }, { "id": "evidence-runtime-proof-matrix", "proof_id": "EVIDENCE-MATRIX-007", "name": "Runtime Proof Matrix", "description": "18-entry runtime proof matrix covering delivery, convergence, visibility, route-truth verification, failover, retry, Merkle integrity, API/MCP surfaces, conflict reconciliation, drift, CP outage, buffer flush, non-claims, and governance. Local mock / implementation only. Validated with 15-check validator.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/runtime/runtime_proof_matrix.json", "zen-platform:docs/80-EVIDENCE/runtime/runtime_proof_matrix.schema.json" ], "validator_refs": [ "zen-platform:scripts/validation/runtime_proof_matrix_check.py" ], "merkle_ref": "mock:evidence-runtime-proof-matrix-merkle-root", "non_claims": [ "Not production-live runtime proofs", "Matrix is governance artifact, not runtime proof", "All runtime proofs are local/mock deterministic", "Non-claims: exactly-once, zero-loss, general at-least-once, relay HA, production zero-trust, compliance certification", "Merkle provides evidence integrity comparison only" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE", "EDGE_PLANE" ], "layer_refs": [ "L3_TRAFFIC", "L2B_FLOW_MAINTENANCE_SURVIVAL" ] }, { "id": "evidence-completion-gate", "proof_id": "EVIDENCE-COMPLETION-008", "name": "Completion Evidence Gate", "description": "Completion evidence contract enforcing that validated non-UI work must publish evidence artifacts, Merkle leaf/root inclusion, docs discoverability, and explicit non-claims. 7 backfilled entries for tasks 002-008. 15-check validator. Merkle-indexed (7 leaves).", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/completion/completion_evidence_contract.json", "zen-platform:docs/80-EVIDENCE/completion/completion_evidence_contract.schema.json" ], "validator_refs": [ "zen-platform:scripts/validation/completion_evidence_gate_check.py" ], "merkle_ref": "mock:evidence-completion-gate-merkle-root", "non_claims": [ "Not production-live completion gate", "Merkle provides evidence integrity comparison only", "Completion evidence is governance metadata, not runtime proof", "No production-live status claimed for any backfilled task" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L1_BASE", "L2A_FLOW_MUTATION", "L2B_FLOW_MAINTENANCE_SURVIVAL", "L3_TRAFFIC" ] }, { "id": "evidence-merkle-integrity-index", "proof_id": "EVIDENCE-MERKLE-INDEX-008", "name": "Merkle Evidence Index (Completion-Indexed)", "description": "Canonical Merkle evidence index with 5 bundles including completion evidence gate (7 leaves). All Merkle roots deterministically generated and verified. Provides integrity comparison only. See non-claims for scope.", "proof_status": "proven_local_mock", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/merkle/EVIDENCE_INDEX_2026_05_24.json", "zen-platform:docs/80-EVIDENCE/merkle/completion_evidence_merkle.json", "zen-platform:docs/80-EVIDENCE/merkle/manifests/completion_evidence_manifest.json" ], "validator_refs": [ "zen-platform:scripts/validation/merkle_evidence_verify.py", "zen-platform:scripts/validation/merkle_evidence_generator.py" ], "merkle_ref": "mock:evidence-merkle-integrity-index-merkle-root", "non_claims": [ "Merkle provides evidence integrity comparison only", "Not auth, identity verification, or principal attestation", "Not encryption, replay prevention, or access control", "Not delivery guarantee or ordering guarantee" ], "plane_refs": [ "DATA_PLANE" ], "layer_refs": [ "L3_TRAFFIC", "L2B_FLOW_MAINTENANCE_SURVIVAL" ] }, { "id": "evidence-customer-api-mcp-readonly", "proof_id": "EVIDENCE-MCP-002-006", "name": "Customer API + MCP Read-Only Evidence Surface", "description": "Customer API evidence routes and MCP read-only surface. 13 read-only tools (6 existing + 7 evidence). Mutation tools (create_api_key, revoke_api_key) blocked on default surface. 52 MCP tests. 27 customer-api tests. Sandbox disabled (P098) truthfully represented.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/customer-api-mcp/api_mcp_evidence_surface_map.json", "zen-platform:docs/80-EVIDENCE/customer-api-mcp/customer_api_v1_contract.json", "zen-platform:docs/80-EVIDENCE/customer-api-mcp/mcp_v1_contract.json" ], "validator_refs": [ "zen-platform:scripts/validation/customer_api_mcp_truth_check.py" ], "merkle_ref": "mock:evidence-customer-api-mcp-readonly-merkle-root", "non_claims": [ "Not production-live MCP", "Default surface is read-only only", "Mutation tools blocked on default surface", "Sandbox disabled truthfully represented in capabilities", "Evidence tools return compact metadata, not live system state" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE" ], "layer_refs": [ "L1_BASE", "L2A_FLOW_MUTATION", "L3_TRAFFIC" ] }, { "id": "evidence-funding-alignment-readiness", "proof_id": "EVIDENCE-FUNDING-009", "name": "Funding Alignment Readiness Support", "description": "Public-safe funding/tax-credit readiness support artifacts. Maps technical work to possible future funding/tax-credit review categories. Not eligibility or approval claims. Technical evidence only — no payroll, cost, or private financial data.", "proof_status": "implementation_present", "victory_locked": false, "evidence_refs": [ "zen-platform:docs/80-EVIDENCE/funding/funding_alignment_matrix.json" ], "validator_refs": [ "zen-platform:scripts/validation/funding_alignment_evidence_check.py" ], "merkle_ref": "mock:evidence-funding-alignment-readiness-merkle-root", "non_claims": [ "Not SR&ED eligibility claim or approval", "Not IRAP eligibility claim or approval", "Not funding eligibility, qualification, or approval of any kind", "No payroll, cost, tax, or private financial data published", "Technical evidence mapping only for future review readiness support", "Merkle provides evidence integrity comparison only" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE", "EDGE_PLANE" ], "layer_refs": [ "L1_BASE", "L2A_FLOW_MUTATION", "L2B_FLOW_MAINTENANCE_SURVIVAL", "L3_TRAFFIC" ] }, { "id": "evidence-platform-layer-matrix", "name": "Platform Layer Matrix", "description": "L1/L2a/L2b/L3 architecture layer model describing dependency stages and failure domains orthogonal to planes.", "category": "evidence", "layer_refs": [ "L1_BASE", "L2A_FLOW_MUTATION", "L2B_FLOW_MAINTENANCE_SURVIVAL", "L3_TRAFFIC" ], "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE", "EDGE_PLANE" ], "proof_status": "contract_only", "non_claims": [ "Not production-live layer validation", "Layer model is dependency framework, not guarantee", "L2b 24h survivability is target/planned, not proven" ], "evidence_refs": [ "docs/80-EVIDENCE/architecture/platform_layer_matrix.json" ], "validator_refs": [ "scripts/validation/platform_layer_matrix_check.py" ], "merkle_ref": "mock:platform_layer_matrix_merkle_placeholder" }, { "id": "evidence-traffic-plane-delivery-attempt", "name": "Traffic Plane Delivery Attempt Evidence", "description": "DeliveryAttempt struct records per-dispatch outcome (path, target, result, latency, error class) for direct/relay/private-edge traffic.", "category": "evidence", "layer_refs": [ "L3_TRAFFIC" ], "plane_refs": [ "DATA_PLANE", "EDGE_PLANE" ], "proof_status": "testable", "non_claims": [ "Not production-live delivery tracking", "Not exactly-once delivery", "In-memory struct only, not persisted" ], "evidence_refs": [ "docs/80-EVIDENCE/traffic-plane/traffic_plane_p0_sequence.json" ], "validator_refs": [ "scripts/validation/traffic_plane_p0_sequence_check.py" ], "merkle_ref": "mock:traffic_plane_delivery_attempt_merkle_placeholder" }, { "id": "evidence-deploy-artifact-contract", "name": "Deploy Artifact Contract", "description": "Structured deploy-as-artifact contract for local-k3d/sandbox. Deploy produces Merkle-indexed artifacts with source, images, charts, cluster target, plane/layer refs, validation, freshness, rollback.", "category": "evidence", "status": "contract_only", "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE", "EDGE_PLANE" ], "layer_refs": [ "L1_BASE", "L2A_FLOW_MUTATION", "L2B_FLOW_MAINTENANCE_SURVIVAL", "L3_TRAFFIC" ], "evidence_source": "docs/80-EVIDENCE/deploy/deploy_artifact_contract.json", "merkle_ref": "mock:evidence-deploy-artifact-contract", "validator": "scripts/validation/deploy_artifact_contract_check.py", "non_claims": [ "Not production-live deploy", "Not deploy execution — contract only", "No kubectl/helm/docker commands run", "Local-k3d/sandbox scope only" ] }, { "id": "evidence-deploy-artifact-schema", "name": "Deploy Artifact Schema", "description": "JSON Schema for deploy artifact records. Full lifecycle: planned/rendered/applied/validated/failed/superseded.", "category": "evidence", "status": "contract_only", "plane_refs": [ "CONTROL_PLANE", "DATA_PLANE", "EDGE_PLANE" ], "layer_refs": [ "L1_BASE", "L2A_FLOW_MUTATION", "L2B_FLOW_MAINTENANCE_SURVIVAL", "L3_TRAFFIC" ], "evidence_source": "docs/80-EVIDENCE/deploy/deploy_artifact_contract.schema.json", "merkle_ref": "mock:evidence-deploy-artifact-schema", "validator": "scripts/validation/deploy_artifact_contract_check.py", "non_claims": [ "Schema definition only — no deploy execution" ] }, { "id": "evidence-deploy-artifact-validator", "name": "Deploy Artifact Validator", "description": "Validator enforcing deploy artifact contract. Checks required fields, cluster_ref against clusters.yaml, image digest on applied/validated, Merkle on validated, plane/layer refs, forbidden claims, no secrets.", "category": "evidence", "status": "implementation_present", "plane_refs": [ "CONTROL_PLANE" ], "layer_refs": [ "L1_BASE" ], "evidence_source": "scripts/validation/deploy_artifact_contract_check.py", "merkle_ref": "mock:evidence-deploy-artifact-validator", "validator": "scripts/validation/deploy_artifact_contract_check.py", "non_claims": [ "Validator only — does not run deploys" ] }, { "id": "security-agent-saas-mtls-required", "name": "Agent-SaaS mTLS Required", "status": "required", "evidence_scope": "architecture_required_plus_local_mock", "json_url": "/ai/security/v1/security-capability-validation.json", "docs_url": "https://docs.zen-mesh.io/security/agent-saas-mtls", "non_claim": "CAP-004 planned refers to workload identity, not mTLS being optional" }, { "id": "security-spiffe-spire-present", "name": "SPIFFE/SPIRE in Zen Mesh Architecture", "status": "implemented", "evidence_scope": "architecture_required_plus_local_mock", "json_url": "/ai/security/v1/security-capability-validation.json", "docs_url": "https://docs.zen-mesh.io/security/security-capability-validation", "non_claim": "SPIRE Workload API is planned; file-based SVID is implemented" }, { "id": "security-zenlock-custody-distribution", "name": "ZenLock Custody/Distribution/Audit", "status": "implemented", "evidence_scope": "architecture_required_plus_local_mock", "json_url": "/ai/security/v1/credential-lifecycle-ownership.json", "docs_url": "https://docs.zen-mesh.io/security/zenlock-credential-lifecycle", "non_claim": "ZenLock does not rotate credentials; rotation owned by lifecycle controllers" }, { "id": "networking-gateway-api-migration-readiness", "name": "Gateway API Migration Readiness", "status": "planned", "evidence_scope": "inventory_only", "json_url": "/ai/networking/v1/gateway-api-migration-readiness.json", "docs_url": "https://docs.zen-mesh.io/networking/gateway-api-migration", "non_claim": "No runtime migration performed. No Gateway API resources created in clusters." }, { "id": "flow01-direct-public-target", "name": "Sandbox delivery: direct public-target path", "status": "victory_locked", "evidence_scope": "proven_local_mock", "merkle_ref": "docs/80-EVIDENCE/merkle/flow01_validated_merkle.json", "validate_target": "make validate-runtime-flow01", "non_claim": "Demo/sandbox proof only. Not production-live, not customer-ready." }, { "id": "flow02-egress-direct-mtls", "name": "Sandbox delivery: egress direct mTLS path", "status": "victory_locked", "evidence_scope": "proven_local_mock", "merkle_ref": "docs/80-EVIDENCE/merkle/flow02_validated_merkle.json", "validate_target": "make validate-runtime-flow02", "non_claim": "Demo/sandbox proof only. Not production-live, not customer-ready." }, { "id": "flow03-generic-sandbox-relay", "name": "Sandbox delivery: generic VM relay path", "status": "victory_locked", "evidence_scope": "proven_local_mock", "merkle_ref": "docs/80-EVIDENCE/merkle/flow03_sandbox_vm_nftables_2026_05_25_manifest.json", "validate_target": "make flow03-permanence-check", "non_claim": "Sandbox PASS only. Not production-live, not customer-ready." }, { "id": "flow03-stripe-e2e-gke-k3d", "name": "Cloud demo: Stripe relay path (GKE to k3d edge)", "status": "victory_locked", "evidence_scope": "proven_cloud_demo", "merkle_ref": "docs/80-EVIDENCE/merkle/stripe_flow03_e2e_gke_k3d_merkle.json", "validate_target": "make validate-flow03-stripe-gke", "non_claim": "Stripe Sandbox only. GKE cloud-validated but not production. Not customer-ready." } ], "compliance_mappings": { "ref": "https://docs.zen-mesh.io/ai/evidence/v1/compliance-map.json", "entries_count": 10 }, "validation": { "make_targets": [ "validate-evidence-docs", "validate-ai-evidence" ], "validator_script": "zen-platform:scripts/validate-ai-evidence.js" }, "non_claims": [ "This manifest does NOT claim any external audit or attestation result", "This does NOT claim production readiness for any capability", "Victory-locked proofs are scenario-specific, not general guarantees", "All proofs are local mock harness or cloud-demo (Stripe relay-path on GKE) unless stated otherwise", "Merkle evidence chain provides integrity only — it does not provide ordering guarantees, principal verification, or send confirmations", "No exactly-once delivery claim is made", "No zero-loss delivery claim is made", "No FedRAMP assessment claim", "No HIPAA business associate agreement claim", "No SOC2 audit attestation or PCI attestation claim", "V1 evidence-first governance: canonical failure-stop on script failure", "Accepted deploy/UI/completion evidence artifacts require hash-chain inclusion; integrity comparison only — not auth, identity, encryption, or replay prevention", "Planes management UI (T1) is NOT product-pass; management-console boring-readiness NOT_READY on mainline", "Relay-path sandbox delivery proof is mandatory for demo scope; direct/egress/relay receipts per capability proof_status — not platform go-live", "Runtime workload identity (SVID) rotation is not proven on mainline; DeliveryPolicy TLS/trust-chain L2 controls deferred — not PASS", "Not production-live, not customer-ready, not demo-ready as platform readiness" ] }