Brain Self-Heal Fix — Live Build Tracker

Codex 5.5 builds · Opus 4.8 QAs · merged plan (best of both)

GOAL (the finish line): Brain HONESTLY back to HEALTHY (composite ≥90) and STAYING there: staleness draining to zero via a real revalidator, the report telling the truth, the auto-fix lane self-healing — durable, not a one-time drain. No score-faking (overturn-rate <3% is the KPI).
5/26
Done (QA passed)
0
Building now
0
QA failed → rework
0
Blocked
Codex build progress23%
Opus QA progress (the real finish line)19%
P0 Unjam the auto-fix lane (fast, unblocks the machinery) 4/4 QA-passed
IDWork itemRCCodex buildOpus QAUpdated
P0.1
Close redundant/conflicting PR #107
PR #107 closed as superseded by #115 (its fix already on main), or rebased only if it has unique text.
▸ Opus-verified independently: gh pr view 107 → state CLOSED, comment 'superseded by #115'; gh pr view 115 → MERGED 2026-06-17 (documents 6 work_items columns, clears the schema drift). #107 was genuinely redundant. Lane noise removed.
 RC3 BUILT QA ✓ PASS 2026-06-19 13:20:44
P0.2
Rebase/refresh PR #108 so its stale FAILURE re-runs
PR #108 merges via auto-merge, OR its only blocker is a NEW current failure with logs.
▸ Opus-verified: #108 CLOSED clean (no diff left after rebase); its 24-file frontmatter remediation IS on origin/main as e7918b053 (178+/72-, confirmed ancestor of origin/main). Stuck PR resolved, content landed, lane no longer jammed on #108. Note: outcome was 'content already on main + PR auto-closed', not a literal auto-merge — equivalent result.
 RC3 BUILT QA ✓ PASS 2026-06-19 13:28:13
P0.3
Scope the work_items schema check to relevant files only
On PR, validate-work-os-schema runs only when PR touches Spec-Work-OS / drift script / migrations / work-items paths; scheduled run still checks globally.
▸ Opus-verified: PR #119 both checks PASS; merged to origin/main as 7123e8ea (storage-policy.yml ONLY, 33+/18-, no contamination). Diff confirmed: validate-work-os-schema runs globally on schedule but on PR/push only when work_items-contract files change (merge-base git diff). Future frontmatter-only auto-remediate PRs will no longer be blocked by this check.
 RC3 BUILT QA ✓ PASS 2026-06-19 17:59:45
P0.4
Auto-merge + auto-rebase re-check stale FAILURE / stale base
A MERGEABLE auto-remediate PR whose FAILURE ran before current main tip gets auto-rechecked/rebased and merges within one cron cycle.
▸ Opus INDEPENDENT behavioral proof (not Codex's static lint). Built a synthetic stale-FAILURE auto-remediate PR #121 (branch auto-remediate/storage-drift-90040001, matches the strict regex; no-frontmatter file → storage-policy FAILURE at 18:15:58Z). Dispatched auto-merge-green-remediate.yml --ref the PR branch (run 27841820082, run FROM the new code). Run log: 'Found 1 open production auto-remediate PR(s)' → 'recheck #121: 1 failed check(s) ran before current main; rerunning workflow run(s) 27841789437' → 'merged=0 rechecked=1 skipped=1'. Re-trigger ACTUALLY executed: storage-policy run 27841789437 now has run_attempt=2 (created 18:16:31Z) — old behavior would just 'skip #121: failed checks' forever. merged=0 = no junk merge; correctly failed again (fixture still violates policy). LOCKS: auto-merge branch_re unchanged = ^auto-remediate/(storage-drift|frontmatter-llm|broken-refs-llm)-[0-9]+$ (restricted; only the 1 auto-remediate PR matched, autonomous/* excluded); auto-rebase regex TIGHTENED broad .+ → strict 3-type; no last_validated/confidence paths (CI-only). Synthetic PR #121 CLOSED + branch deleted (no trace on main). MERGED PR #120 to main as 2be7056fd (internal-code HITL carve-out); post-merge CI on main all green (Storage Policy ✓, Structural Integrity ✓, Search Index ✓; Auto-Merge workflow_run ✓; Auto-Rebase skipped correctly).
 RC3 BUILT QA ✓ PASS 2026-06-19 18:19:14
P1 Make the report tell the truth (the 'my reports' fix) 1/5 QA-passed
IDWork itemRCCodex buildOpus QAUpdated
P1.1
Single health source + reconciliation assertion
Audit-runner composite/L1/L2/L3/status/stale-count all come from one normalized health object; scan asserts composite==round(l1*.2+l2*.4+l3*.4,1) or fails.
▸ Opus INDEPENDENT verification (reproduced done-criterion, did not trust Codex note). DONE-CRITERION MET on both cited SHAs. (1) Single normalized health source — audit-runner dcdfb26: results.brainHealth=normalizeBrainHealth(modules) is the one object; generateUnifiedReport(), buildHealthFindings(), generateMonthlyPrompt() all consume results.brainHealth for composite/L1/L2/L3/status/staleCount/staleness (git show confirmed each call site rewired off modules.healthRelay/modules.staleness). node --check src/index.js PARSE OK. (2) Green-icon-with-DEGRADED now impossible — icon=brainHealthStatusIcon(status); replicated logic: composite 89.3->status DEGRADED->icon (warning), 90->HEALTHY->(check), 55->CRITICAL->(red). DEGRADED can never render the green check. (3) Reconciliation assertion — brain a7137009e: brain-health-scan.yml adds expected_composite()/assert_composite_reconciles()/health_status_for_composite(); composite=round(l1*.2+l2*.4+l3*.4,1) and status is a pure fn of composite. FIXTURE RUN myself: live nums (l1=100,l2=86.5,l3=86.8) -> expected_composite=89.3, reconcile PASS, status=DEGRADED; CORRUPTED composite=95.0 -> RuntimeError raised (non-zero exit) -> matches verify method. JSON/MD/event emitters (lines 1247/1540/1612) all read the single reconciled composite+status, so all sources agree. NOTE: assert is recomputed-then-checked (line 570 sets composite=expected, 571 asserts) so it's a defensive guard that can't fire in the live flow — but the real protection is composite & status both being pure fns of one layer formula, so they cannot diverge; literal done-criterion + fixture both satisfied. LOCKS: git show on both SHAs greps clean for last_validated / auto-remediate regex / auto-merge — P1.1 touches neither (no automation wrote last_validated; auto-merge regex unchanged). Diffs scoped to exactly the 2 planned files (src/index.js +118/-13; brain-health-scan.yml +33/-15). MERGE: deferred — gh token invalid + git HTTPS credential unavailable (Device not configured), so PR #2 / PR #122 cannot be merged or have live CI confirmed from this session; branch feat/proj-brain-selfheal-p1-1-health-source on both repos. Code QA PASSES; merge to main pending GitHub re-auth (gh auth login).
 RC4 BUILT QA ✓ PASS 2026-06-19 18:32:53
P1.2
Align audit-runner threshold to scan bands (85→90)
Replace HEALTH_ALERT_THRESHOLD=85 with HEALTHY≥90 / DEGRADED≥80 / NEEDS-ATTENTION≥60 / else CRITICAL.
▸ Changed bwm-audit-runner/src/index.js: replaced HEALTH_ALERT_THRESHOLD=85 with Brain scan bands HEALTHY>=90 / DEGRADED>=80 / NEEDS ATTENTION>=60 / CRITICAL; runHealthRelay now derives status/icon/needsAttention from composite and report/finding copy uses the 90 HEALTHY threshold. Branch pushed: feat/proj-brain-selfheal-p1-2-threshold-bands; SHA 67a96fd11b368458cd11b084fa4664e4933ecfb2; PR not opened, branch staged for Opus QA. Local verify: node --check src/index.js OK; synthetic 89.3 fixture emitted '*Brain Health:* warning 89.3% DEGRADED (scanned 2026-06-13)' even when source status was HEALTHY; band sanity OK for 95/90 HEALTHY, 89.3/80 DEGRADED, 79.9/60 NEEDS ATTENTION, 59.9 CRITICAL; git diff --check OK.
 RC4 BUILT QA PENDING 2026-06-19 18:41:40
P1.3
Guard against daily audit showing a 6-day-old scan
Add scan-only daily health artifact before the 09:00 audit, OR audit refuses to score when scan age >24h (no PR-spam).
 RC4 TO BUILD QA PENDING
P1.4
Strict remediation-PR classifier (locked regex)
isBrainAutoPr() uses ^auto-remediate/(storage-drift|frontmatter-llm|broken-refs-llm)-N$; autonomous/* social packs counted separately, not as remediation.
 RC5 TO BUILD QA PENDING
P1.5
Fix Memory Delta 404 (HANDOFF.md path)
MONITORED_FILES 'HANDOFF.md' → 'operations/HANDOFF.md'; redeploy worker.
 RC7 TO BUILD QA PENDING
P2 Make revalidation REAL and SAFE (core durable fix) 0/7 QA-passed
IDWork itemRCCodex buildOpus QAUpdated
P2.1
Stop writing last_validated; write last_auto_verified+confidence
Remove update_last_validated_in_file; high-conf confirm writes last_auto_verified+auto_verify_confidence to frontmatter, never last_validated.
 RC1b TO BUILD QA PENDING
P2.2
Seed self-heal state for the FULL active corpus (table has 2 rows!)
New sync-revalidation-state-from-manifest.py upserts non-locked active rows into brain_revalidation_state + enqueues overdue/missing into the queue.
 RC1 TO BUILD QA PENDING
P2.3
Queue-aware revalidator (--from-queue, priority, idempotent)
--from-queue --max-files 5 --dry-run picks top-due paths; non-dry writes one run row/path, advances+dequeues high-conf confirms; no dup claim on rerun.
 RC1 TO BUILD QA PENDING
P2.4
Throughput + cadence: daily drain mode, mode-based cost caps
Schedule daily queue-drain; raise max_files ceiling; drain-mode higher cost cap, steady-state lower.
 RC1 TO BUILD QA PENDING
P2.5
Implement route-signal collectors + code-enforce 30d→0.7 cap + escalation
Each non-fallback route gathers its declared min signals or forces escalated; any signal fetched >30d caps confidence at 0.7 IN CODE; auto-confirm only ≥0.85.
 RC1c TO BUILD QA PENDING
P2.6
Overturn-rate KPI loop (anti-Goodhart, real KPI)
10% red-team sampling of auto-confirms; overturns tie to original_run_id; v_brain_selfheal_health.overturn_rate_7d populated.
 KPI TO BUILD QA PENDING
P2.7
Health scan counts machine attestation at 0.7x (no fabricated dates)
Freshness = max(fresh human last_validated, fresh machine last_auto_verified@conf≥0.85), machine counted at 0.7x.
 RC1b TO BUILD QA PENDING
P3 Structural recovery + one-time drain → cross to HEALTHY honestly 0/4 QA-passed
IDWork itemRCCodex buildOpus QAUpdated
P3.1
Document undocumented dirs; reconcile CLAUDE.md tree + MANIFEST
Undocumented/ghost dirs resolved (document valid, exclude true scratch); MANIFEST missing/ghost count 0.
 RC2 TO BUILD QA PENDING
P3.2
Fix crude has_tbd completeness false positives
Tighten check to unfilled-template markers only (not prose 'TBD/TODO').
 RC2 TO BUILD QA PENDING
P3.3
One-time backlog drain (overdue→0, no-date→~0)
Run drain mode repeatedly; active-corpus overdue=0, missing-attestation≈0 (excluding locked/human-only); escalations filed as task.queued.
 RC1 TO BUILD QA PENDING
P3.4
Land structural auto-janitor (PR #108 frontmatter) → incomplete pages drop
PR #108 merged (or equivalent regenerated auto-remediate PR); incomplete pages drop materially from 141.
 RC2 TO BUILD QA PENDING
P4 Durable hygiene 0/3 QA-passed
IDWork itemRCCodex buildOpus QAUpdated
P4.1
PR closeout/triage lane
Open PRs classified (auto-remediate / autonomous-HITL / prediction-ledger-draft / duplicate / manual-review); only auto-remediate affects self-heal status; never auto-close HITL without signoff.
 RC5 TO BUILD QA PENDING
P4.2
Reconcile substrate migration 031 with canonical bwm-ops-events
Applied brain_selfheal_substrate_031 present in canonical repo history, OR a durable ledger note explains branch-only intent.
 RC8 TO BUILD QA PENDING
P4.3
CF infra follow-up (KNOWN_WORKERS + pages registry)
Active workers/pages registered; retired/unknown have owner/action; Dark Factory score no longer obscures Brain status.
 RC6 TO BUILD QA PENDING
P5 Acceptance gate — the /goal (Opus verifies the whole thing) 0/3 QA-passed
IDWork itemRCCodex buildOpus QAUpdated
P5.1
Fresh HEALTHY scan, all sources agree
Fresh scan composite≥90 HEALTHY, L2≥85, L3 freshness recovered, incomplete pages drained, no stale-scan warning.
 GOAL TO BUILD QA PENDING
P5.2
Self-sustaining for 7 days (no re-accumulation)
After 7d: queue depth bounded, overdue trend non-increasing, auto-remediate lane merges/triages within SLA, overturn<3% or insufficient-sample shown.
 GOAL TO BUILD QA PENDING
P5.3
Lock compliance proven
Automation writes no last_validated; conf<0.85/stale can't auto-confirm; auto-merge regex restricted; reporting calls KPI=overturn-rate.
 GOAL TO BUILD QA PENDING
built / passed to do / pending blocked / failed  ·  Page auto-refreshes every 30s.

Status: building · Generated 2026-06-19 13:25:00 UTC · Last update 2026-06-19 18:41:40 UTC