Squashed 'vendor/ruvector/' content from commit b64c2172

git-subtree-dir: vendor/ruvector git-subtree-split: b64c21726f2bb37286d9ee36a7869fef60cc6900
2026-02-28 14:39:40 -05:00
commit d803bfe2b1
7854 changed files with 3522914 additions and 0 deletions
--- a/docs/adr/coherence-engine/ADR-CE-005-governance-objects.md
+++ b/docs/adr/coherence-engine/ADR-CE-005-governance-objects.md
@@ -0,0 +1,49 @@
+# ADR-CE-005: First-Class Governance Objects
+
+**Status**: Accepted
+**Date**: 2026-01-22
+**Parent**: ADR-014 Coherence Engine Architecture
+
+## Context
+
+Governance decisions (thresholds, policies, approvals) must be:
+- Versioned and traceable
+- Signed by authorized parties
+- Immutable once approved
+- Addressable for reference in witnesses
+
+## Decision
+
+**Governance objects are first-class, immutable, addressable.**
+
+Three governance object types:
+
+1. **PolicyBundle**: Versioned threshold configurations
+   - Signed by required approvers
+   - Content-addressed (ID = hash of contents)
+   - Immutable once created
+
+2. **WitnessRecord**: Proof of gate decisions
+   - Links to PolicyBundle used
+   - Chains to previous witness (hash chain)
+   - Content-addressed
+
+3. **LineageRecord**: Provenance of writes
+   - Links to authorizing witness
+   - Tracks causal dependencies
+   - Enables "why did this change?" queries
+
+## Consequences
+
+### Benefits
+- Complete audit trail for compliance
+- Multi-party approval for sensitive changes
+- Content addressing prevents substitution attacks
+
+### Risks
+- Cannot modify bad policies (must create new version)
+- Storage overhead for immutable objects
+
+## References
+
+- ADR-014: Coherence Engine Architecture, Section 4