From 72faa6dd04356ec64bc2977635891ea90935e8c2 Mon Sep 17 00:00:00 2001
From: shaiananvari8 <228813044+shaiananvari8@users.noreply.github.com>
Date: Wed, 27 May 2026 23:52:01 -0500
Subject: [PATCH] Add repository version tag governor
---
repository-version-tag-governor/README.md | 38 +++
.../acceptance-notes.md | 20 ++
repository-version-tag-governor/demo.js | 84 +++++++
repository-version-tag-governor/index.js | 236 ++++++++++++++++++
.../make-demo-video.js | 164 ++++++++++++
repository-version-tag-governor/package.json | 13 +
.../reports/demo.avi | Bin 0 -> 2765416 bytes
.../repository-version-tag-packet.json | 137 ++++++++++
.../reports/repository-version-tag-report.md | 34 +++
.../reports/summary.svg | 20 ++
.../requirements-map.md | 14 ++
.../sample-data.js | 103 ++++++++
repository-version-tag-governor/test.js | 61 +++++
13 files changed, 924 insertions(+)
create mode 100644 repository-version-tag-governor/README.md
create mode 100644 repository-version-tag-governor/acceptance-notes.md
create mode 100644 repository-version-tag-governor/demo.js
create mode 100644 repository-version-tag-governor/index.js
create mode 100644 repository-version-tag-governor/make-demo-video.js
create mode 100644 repository-version-tag-governor/package.json
create mode 100644 repository-version-tag-governor/reports/demo.avi
create mode 100644 repository-version-tag-governor/reports/repository-version-tag-packet.json
create mode 100644 repository-version-tag-governor/reports/repository-version-tag-report.md
create mode 100644 repository-version-tag-governor/reports/summary.svg
create mode 100644 repository-version-tag-governor/requirements-map.md
create mode 100644 repository-version-tag-governor/sample-data.js
create mode 100644 repository-version-tag-governor/test.js
diff --git a/repository-version-tag-governor/README.md b/repository-version-tag-governor/README.md
new file mode 100644
index 00000000..05fcfeed
--- /dev/null
+++ b/repository-version-tag-governor/README.md
@@ -0,0 +1,38 @@
+# Repository Version Tag Governor
+
+Synthetic, dependency-free semantic tag governance module for SCIBASE issue #10, Project Repository & Version Control.
+
+This module evaluates repository release/preprint tag proposals before DOI, citation, or public release publication. It focuses on semantic version integrity, metadata alignment, artifact hash locks, and fork attribution.
+
+## What It Checks
+
+- supported `vX.Y.Z` and `preprint-vX.Y` tag formats
+- version tag reuse or collision against existing history
+- non-monotonic release and preprint versions
+- `metadata.json` version drift
+- DOI mismatch between release proposal and metadata
+- stale generated citation version
+- missing manuscript/data/code/metadata hash locks
+- missing result hashes for reproducibility-bearing releases
+- missing fork attribution for derived repository versions
+- missing changelog evidence
+
+## Run
+
+```bash
+npm run check
+npm test
+npm run demo
+npm run demo:video
+```
+
+The demo writes reviewer artifacts under `reports/`:
+
+- `repository-version-tag-packet.json`
+- `repository-version-tag-report.md`
+- `summary.svg`
+- `demo.avi`
+
+## Safety
+
+All records are synthetic. The module does not call external services, mutate Git state, inspect real repositories, or publish tags.
diff --git a/repository-version-tag-governor/acceptance-notes.md b/repository-version-tag-governor/acceptance-notes.md
new file mode 100644
index 00000000..e2af8f39
--- /dev/null
+++ b/repository-version-tag-governor/acceptance-notes.md
@@ -0,0 +1,20 @@
+# Acceptance Notes
+
+Reviewer acceptance checklist:
+
+- A reused preprint tag that points to a different commit or DOI is blocked.
+- Metadata version and DOI drift block publication.
+- Missing required artifact hashes block release.
+- Stale citation text, missing result hashes, and missing changelog entries require manual review.
+- A fully aligned major release is approved.
+- Audit digests are deterministic across repeated runs.
+- Demo artifacts are generated locally from synthetic data only.
+
+Validation commands:
+
+```bash
+npm run check
+npm test
+npm run demo
+npm run demo:video
+```
diff --git a/repository-version-tag-governor/demo.js b/repository-version-tag-governor/demo.js
new file mode 100644
index 00000000..247ac9c0
--- /dev/null
+++ b/repository-version-tag-governor/demo.js
@@ -0,0 +1,84 @@
+"use strict";
+
+const fs = require("fs");
+const path = require("path");
+const { assessRepositoryVersionTags } = require("./index");
+const { mixedRepositoryTagPacket, readyRepositoryTagPacket } = require("./sample-data");
+
+const reportsDir = path.join(__dirname, "reports");
+fs.mkdirSync(reportsDir, { recursive: true });
+
+const packet = {
+ mixed: assessRepositoryVersionTags(mixedRepositoryTagPacket),
+ ready: assessRepositoryVersionTags(readyRepositoryTagPacket)
+};
+
+fs.writeFileSync(path.join(reportsDir, "repository-version-tag-packet.json"), `${JSON.stringify(packet, null, 2)}\n`);
+fs.writeFileSync(path.join(reportsDir, "repository-version-tag-report.md"), renderMarkdown(packet));
+fs.writeFileSync(path.join(reportsDir, "summary.svg"), renderSvg(packet));
+
+console.log(`Wrote ${path.relative(process.cwd(), reportsDir)}`);
+console.log(`Mixed packet status: ${packet.mixed.status}`);
+console.log(`Audit digest: ${packet.mixed.auditDigest}`);
+
+function renderMarkdown(packet) {
+ const lines = [
+ "# Repository Version Tag Governor Report",
+ "",
+ "Synthetic semantic tag governance packet for SCIBASE issue #10.",
+ "",
+ "## Summary",
+ "",
+ "| Packet | Status | Blocked | Manual Review | Approved | Digest |",
+ "| --- | --- | ---: | ---: | ---: | --- |",
+ `| mixed | ${packet.mixed.status} | ${packet.mixed.summary.blocked} | ${packet.mixed.summary.manualReview} | ${packet.mixed.summary.approved} | ${packet.mixed.auditDigest.slice(0, 12)} |`,
+ `| ready | ${packet.ready.status} | ${packet.ready.summary.blocked} | ${packet.ready.summary.manualReview} | ${packet.ready.summary.approved} | ${packet.ready.auditDigest.slice(0, 12)} |`,
+ "",
+ "## Proposal Decisions",
+ ""
+ ];
+
+ for (const proposal of packet.mixed.proposals) {
+ lines.push(`### ${proposal.proposalId}: ${proposal.decision}`);
+ for (const blocker of proposal.blockers) {
+ lines.push(`- blocker ${blocker.code}: ${blocker.message}`);
+ }
+ for (const warning of proposal.warnings) {
+ lines.push(`- warning ${warning.code}: ${warning.message}`);
+ }
+ lines.push("");
+ }
+
+ lines.push("## Non-Overlap Notes", "");
+ lines.push(
+ "This module focuses on semantic version tag governance and citation-version integrity before publication. It does not implement repository foundations, a broad integrity ledger, release readiness, DOI tombstones, restore rehearsal, access review, environment drift, merge queue governance, retention legal holds, sensitive artifact scanning, license compatibility, branch lineage, component-owner approval, or export contracts."
+ );
+
+ return `${lines.join("\n")}\n`;
+}
+
+function renderSvg(packet) {
+ const mixed = packet.mixed.summary;
+ return `
+
+`;
+}
+
+function bar(x, y, label, count, color) {
+ const width = Math.max(24, count * 120);
+ return [
+ ` ${label}`,
+ ` `,
+ ` `,
+ ` ${count} proposal(s)`
+ ].join("\n");
+}
diff --git a/repository-version-tag-governor/index.js b/repository-version-tag-governor/index.js
new file mode 100644
index 00000000..059b94b8
--- /dev/null
+++ b/repository-version-tag-governor/index.js
@@ -0,0 +1,236 @@
+"use strict";
+
+const crypto = require("crypto");
+
+const REQUIRED_ARTIFACTS = ["manuscript", "data", "code", "metadata"];
+
+function assessRepositoryVersionTags(packet) {
+ const generatedAt = new Date(packet.generatedAt || "2026-05-28T00:00:00Z");
+ const proposals = (packet.proposals || []).map((proposal) => evaluateProposal(proposal));
+ const summary = summarize(proposals);
+ const payload = {
+ generatedAt: generatedAt.toISOString(),
+ repositoryId: packet.repositoryId || "synthetic-project-repository",
+ status: summary.status,
+ summary,
+ proposals
+ };
+
+ return {
+ ...payload,
+ auditDigest: digest(payload)
+ };
+}
+
+function evaluateProposal(proposal) {
+ const blockers = [];
+ const warnings = [];
+ const actions = [];
+ const parsedTag = parseTag(proposal.tag);
+
+ checkTagFormat(proposal, parsedTag, blockers, actions);
+ checkCollision(proposal, blockers, actions);
+ checkMonotonicity(proposal, parsedTag, blockers, actions);
+ checkMetadataDrift(proposal, blockers, warnings, actions);
+ checkArtifactHashes(proposal, blockers, warnings, actions);
+ checkForkAttribution(proposal, blockers, actions);
+ checkChangelog(proposal, warnings, actions);
+
+ const decision = blockers.length > 0
+ ? "block_release_tag"
+ : warnings.length > 0
+ ? "manual_review_tag"
+ : "approve_tag";
+
+ return {
+ proposalId: proposal.id,
+ tag: proposal.tag,
+ releaseType: proposal.releaseType,
+ decision,
+ blockers,
+ warnings,
+ actions: [...new Set(actions)]
+ };
+}
+
+function checkTagFormat(proposal, parsedTag, blockers, actions) {
+ if (!parsedTag.valid) {
+ blockers.push({
+ code: "unsupported_version_tag",
+ message: `${proposal.tag} is not a supported vX.Y.Z or preprint-vX.Y tag.`
+ });
+ actions.push("Rename the release tag to a supported semantic repository version.");
+ }
+}
+
+function checkCollision(proposal, blockers, actions) {
+ const collisions = proposal.history.filter((entry) => entry.tag === proposal.tag);
+ for (const collision of collisions) {
+ if (collision.commitHash !== proposal.commitHash || collision.doi !== proposal.doi) {
+ blockers.push({
+ code: "version_tag_collision",
+ message: `${proposal.tag} already points to a different commit or DOI.`
+ });
+ actions.push("Create a new monotonic tag instead of reusing a published repository version.");
+ return;
+ }
+ }
+}
+
+function checkMonotonicity(proposal, parsedTag, blockers, actions) {
+ if (!parsedTag.valid) return;
+
+ const comparable = proposal.history
+ .map((entry) => ({ ...entry, parsed: parseTag(entry.tag) }))
+ .filter((entry) => entry.parsed.valid && entry.parsed.kind === parsedTag.kind);
+ const latest = comparable.reduce((max, entry) => compareVersions(entry.parsed.parts, max.parts) > 0 ? entry.parsed : max, { parts: [-1, -1, -1] });
+
+ if (compareVersions(parsedTag.parts, latest.parts) <= 0 && comparable.some((entry) => entry.tag !== proposal.tag)) {
+ blockers.push({
+ code: "non_monotonic_version_tag",
+ message: `${proposal.tag} does not advance beyond the latest ${parsedTag.kind} version.`
+ });
+ actions.push("Advance the semantic version or preprint version before publication.");
+ }
+}
+
+function checkMetadataDrift(proposal, blockers, warnings, actions) {
+ if (proposal.metadataVersion !== proposal.tag) {
+ blockers.push({
+ code: "metadata_version_drift",
+ message: `metadata.json version ${proposal.metadataVersion} does not match tag ${proposal.tag}.`
+ });
+ actions.push("Update metadata.json before DOI or citation release.");
+ }
+
+ if (proposal.metadataDoi !== proposal.doi) {
+ blockers.push({
+ code: "doi_metadata_mismatch",
+ message: "Repository DOI and metadata DOI differ for the proposed version."
+ });
+ actions.push("Reconcile DOI fields before publishing the tag.");
+ }
+
+ if (proposal.citationVersion !== proposal.tag) {
+ warnings.push({
+ code: "citation_version_stale",
+ message: `Citation text references ${proposal.citationVersion} instead of ${proposal.tag}.`
+ });
+ actions.push("Regenerate citation text and Cite this project metadata for the tag.");
+ }
+}
+
+function checkArtifactHashes(proposal, blockers, warnings, actions) {
+ const hashes = proposal.artifactHashes || {};
+ const missing = REQUIRED_ARTIFACTS.filter((name) => !hashes[name]);
+ if (missing.length > 0) {
+ blockers.push({
+ code: "artifact_hashes_missing",
+ message: `Missing hash locks for ${missing.join(", ")}.`
+ });
+ actions.push("Lock manuscript, data, code, and metadata hashes before release.");
+ }
+
+ if (!hashes.results && proposal.releaseType !== "metadata-only") {
+ warnings.push({
+ code: "results_hash_missing",
+ message: "Results output hash is absent for a reproducibility-bearing tag."
+ });
+ actions.push("Add result/figure hash evidence or mark the release as metadata-only.");
+ }
+}
+
+function checkForkAttribution(proposal, blockers, actions) {
+ if (proposal.forkAttribution.required && !proposal.forkAttribution.present) {
+ blockers.push({
+ code: "fork_attribution_missing",
+ message: "Derived repository release lacks parent project attribution."
+ });
+ actions.push("Attach parent repository DOI and fork lineage before publishing the tag.");
+ }
+}
+
+function checkChangelog(proposal, warnings, actions) {
+ if (!proposal.changelogEntry) {
+ warnings.push({
+ code: "changelog_entry_missing",
+ message: "No changelog entry is attached to the proposed tag."
+ });
+ actions.push("Add a concise changelog entry that explains version-scoped changes.");
+ }
+}
+
+function parseTag(tag) {
+ const semver = /^v(\d+)\.(\d+)\.(\d+)$/.exec(tag);
+ if (semver) {
+ return {
+ valid: true,
+ kind: "release",
+ parts: semver.slice(1).map(Number)
+ };
+ }
+
+ const preprint = /^preprint-v(\d+)\.(\d+)$/.exec(tag);
+ if (preprint) {
+ return {
+ valid: true,
+ kind: "preprint",
+ parts: [Number(preprint[1]), Number(preprint[2]), 0]
+ };
+ }
+
+ return {
+ valid: false,
+ kind: "unknown",
+ parts: [-1, -1, -1]
+ };
+}
+
+function compareVersions(left, right) {
+ for (let i = 0; i < 3; i += 1) {
+ if (left[i] > right[i]) return 1;
+ if (left[i] < right[i]) return -1;
+ }
+ return 0;
+}
+
+function summarize(proposals) {
+ const blocked = proposals.filter((proposal) => proposal.decision === "block_release_tag").length;
+ const manualReview = proposals.filter((proposal) => proposal.decision === "manual_review_tag").length;
+ const approved = proposals.filter((proposal) => proposal.decision === "approve_tag").length;
+ const blockerCount = proposals.reduce((sum, proposal) => sum + proposal.blockers.length, 0);
+ const warningCount = proposals.reduce((sum, proposal) => sum + proposal.warnings.length, 0);
+ const status = blocked > 0 ? "hold_tag_publication" : manualReview > 0 ? "review_before_tagging" : "ready";
+
+ return {
+ status,
+ proposalCount: proposals.length,
+ blocked,
+ manualReview,
+ approved,
+ blockerCount,
+ warningCount
+ };
+}
+
+function digest(value) {
+ return crypto.createHash("sha256").update(stableStringify(value)).digest("hex");
+}
+
+function stableStringify(value) {
+ if (Array.isArray(value)) {
+ return `[${value.map(stableStringify).join(",")}]`;
+ }
+ if (value && typeof value === "object") {
+ return `{${Object.keys(value)
+ .sort()
+ .map((key) => `${JSON.stringify(key)}:${stableStringify(value[key])}`)
+ .join(",")}}`;
+ }
+ return JSON.stringify(value);
+}
+
+module.exports = {
+ assessRepositoryVersionTags,
+ parseTag
+};
diff --git a/repository-version-tag-governor/make-demo-video.js b/repository-version-tag-governor/make-demo-video.js
new file mode 100644
index 00000000..fcc97c3b
--- /dev/null
+++ b/repository-version-tag-governor/make-demo-video.js
@@ -0,0 +1,164 @@
+"use strict";
+
+const fs = require("fs");
+const path = require("path");
+
+const width = 320;
+const height = 180;
+const fps = 2;
+const frameCount = 16;
+const rowSize = Math.ceil((width * 3) / 4) * 4;
+const frameSize = rowSize * height;
+const reportsDir = path.join(__dirname, "reports");
+const outputPath = path.join(reportsDir, "demo.avi");
+
+fs.mkdirSync(reportsDir, { recursive: true });
+
+const frames = [];
+for (let i = 0; i < frameCount; i += 1) {
+ frames.push(makeFrame(i));
+}
+
+const chunks = [];
+const indexes = [];
+let offset = 4;
+for (const frame of frames) {
+ const chunk = riffChunk("00db", frame);
+ chunks.push(chunk);
+ indexes.push(indexEntry("00db", 0x10, offset, frame.length));
+ offset += chunk.length;
+}
+
+const hdrl = listChunk("hdrl", [
+ riffChunk("avih", aviHeader()),
+ listChunk("strl", [
+ riffChunk("strh", streamHeader()),
+ riffChunk("strf", bitmapInfoHeader())
+ ])
+]);
+const movi = listChunk("movi", chunks);
+const idx1 = riffChunk("idx1", Buffer.concat(indexes));
+const riff = riffChunk("RIFF", Buffer.concat([Buffer.from("AVI "), hdrl, movi, idx1]));
+
+fs.writeFileSync(outputPath, riff);
+console.log(`Wrote ${path.relative(process.cwd(), outputPath)} (${riff.length} bytes)`);
+
+function makeFrame(frameIndex) {
+ const frame = Buffer.alloc(frameSize, 0xff);
+ const progress = (frameIndex + 1) / frameCount;
+ fillRect(frame, 0, 0, width, height, [248, 250, 252]);
+ fillRect(frame, 18, 18, 284, 144, [255, 255, 255]);
+ strokeRect(frame, 18, 18, 284, 144, [210, 218, 228]);
+ fillRect(frame, 38, 50, 240, 18, [232, 237, 244]);
+ fillRect(frame, 38, 50, Math.round(240 * progress), 18, [185, 28, 28]);
+ fillRect(frame, 38, 90, 240, 18, [232, 237, 244]);
+ fillRect(frame, 38, 90, Math.round(120 * progress), 18, [183, 121, 31]);
+ fillRect(frame, 38, 130, 240, 18, [232, 237, 244]);
+ fillRect(frame, 38, 130, Math.round(120 * progress), 18, [21, 128, 61]);
+ drawTagMarks(frame, frameIndex);
+ return frame;
+}
+
+function drawTagMarks(frame, frameIndex) {
+ const count = Math.min(4, Math.floor(frameIndex / 4) + 1);
+ for (let i = 0; i < count; i += 1) {
+ fillRect(frame, 48 + i * 28, 78, 18, 8, [36, 78, 96]);
+ fillRect(frame, 48 + i * 28, 88, 18, 4, [94, 129, 143]);
+ }
+}
+
+function fillRect(frame, x, y, w, h, rgb) {
+ for (let py = y; py < y + h; py += 1) {
+ if (py < 0 || py >= height) continue;
+ for (let px = x; px < x + w; px += 1) {
+ if (px < 0 || px >= width) continue;
+ setPixel(frame, px, py, rgb);
+ }
+ }
+}
+
+function strokeRect(frame, x, y, w, h, rgb) {
+ fillRect(frame, x, y, w, 1, rgb);
+ fillRect(frame, x, y + h - 1, w, 1, rgb);
+ fillRect(frame, x, y, 1, h, rgb);
+ fillRect(frame, x + w - 1, y, 1, h, rgb);
+}
+
+function setPixel(frame, x, y, rgb) {
+ const bottomUpY = height - y - 1;
+ const index = bottomUpY * rowSize + x * 3;
+ frame[index] = rgb[2];
+ frame[index + 1] = rgb[1];
+ frame[index + 2] = rgb[0];
+}
+
+function aviHeader() {
+ const buffer = Buffer.alloc(56);
+ buffer.writeUInt32LE(Math.round(1000000 / fps), 0);
+ buffer.writeUInt32LE(frameSize * fps, 4);
+ buffer.writeUInt32LE(0, 8);
+ buffer.writeUInt32LE(0x10, 12);
+ buffer.writeUInt32LE(frameCount, 16);
+ buffer.writeUInt32LE(0, 20);
+ buffer.writeUInt32LE(1, 24);
+ buffer.writeUInt32LE(frameSize, 28);
+ buffer.writeUInt32LE(width, 32);
+ buffer.writeUInt32LE(height, 36);
+ return buffer;
+}
+
+function streamHeader() {
+ const buffer = Buffer.alloc(56);
+ buffer.write("vids", 0, 4, "ascii");
+ buffer.write("DIB ", 4, 4, "ascii");
+ buffer.writeUInt32LE(0, 8);
+ buffer.writeUInt32LE(0, 12);
+ buffer.writeUInt32LE(0, 16);
+ buffer.writeUInt32LE(1, 20);
+ buffer.writeUInt32LE(fps, 24);
+ buffer.writeUInt32LE(0, 28);
+ buffer.writeUInt32LE(frameCount, 32);
+ buffer.writeUInt32LE(frameSize, 36);
+ buffer.writeInt32LE(-1, 40);
+ buffer.writeUInt32LE(0, 44);
+ buffer.writeInt16LE(0, 48);
+ buffer.writeInt16LE(0, 50);
+ buffer.writeInt16LE(width, 52);
+ buffer.writeInt16LE(height, 54);
+ return buffer;
+}
+
+function bitmapInfoHeader() {
+ const buffer = Buffer.alloc(40);
+ buffer.writeUInt32LE(40, 0);
+ buffer.writeInt32LE(width, 4);
+ buffer.writeInt32LE(height, 8);
+ buffer.writeUInt16LE(1, 12);
+ buffer.writeUInt16LE(24, 14);
+ buffer.writeUInt32LE(0, 16);
+ buffer.writeUInt32LE(frameSize, 20);
+ return buffer;
+}
+
+function indexEntry(id, flags, chunkOffset, size) {
+ const buffer = Buffer.alloc(16);
+ buffer.write(id, 0, 4, "ascii");
+ buffer.writeUInt32LE(flags, 4);
+ buffer.writeUInt32LE(chunkOffset, 8);
+ buffer.writeUInt32LE(size, 12);
+ return buffer;
+}
+
+function riffChunk(id, payload) {
+ const size = payload.length;
+ const pad = size % 2 === 1 ? 1 : 0;
+ const buffer = Buffer.alloc(8 + size + pad);
+ buffer.write(id, 0, 4, "ascii");
+ buffer.writeUInt32LE(size, 4);
+ payload.copy(buffer, 8);
+ return buffer;
+}
+
+function listChunk(type, chunks) {
+ return riffChunk("LIST", Buffer.concat([Buffer.from(type, "ascii"), ...chunks]));
+}
diff --git a/repository-version-tag-governor/package.json b/repository-version-tag-governor/package.json
new file mode 100644
index 00000000..beef4371
--- /dev/null
+++ b/repository-version-tag-governor/package.json
@@ -0,0 +1,13 @@
+{
+ "name": "repository-version-tag-governor",
+ "version": "1.0.0",
+ "description": "Synthetic semantic version-tag governance for SCIBASE issue 10.",
+ "main": "index.js",
+ "scripts": {
+ "check": "node --check index.js && node --check sample-data.js && node --check test.js && node --check demo.js && node --check make-demo-video.js",
+ "test": "node test.js",
+ "demo": "node demo.js",
+ "demo:video": "node make-demo-video.js"
+ },
+ "license": "MIT"
+}
diff --git a/repository-version-tag-governor/reports/demo.avi b/repository-version-tag-governor/reports/demo.avi
new file mode 100644
index 0000000000000000000000000000000000000000..e3c2ecd6132a55a495499bfb744077bc755b1429
GIT binary patch
literal 2765416
zcmeI*LCdYzo9FeXf=z=cHe#@mBPk@HG=fKQ;J|=NQ&P}mpp7F5F$C#?5}~^+3^+)@
zp_11i@g+2b;KbLEVa6FmA+roZ2*jQKmxrA?|J={s_xbI0t!u4M*i}3^d+%$l^|{yg
zWK>W6SAYIzfA-;j^bel?^Z(}0|MVaI`G5V7|L>=#r+@PCKmE)9?yvvipZq76pa1m#
z_`6R}fA)7SKRrGDy}$XNUw{6SU;oz^Z$15ImmmK5uRs5-e}0|ySC>EgXMgoi|MK!b
z|6>vL5fAOc+AN_UCTYvKhzs~=4<}a6j{^pM^^Z)s;GyeO3@A3z~{?Grv
z-k&`E{Xcx<^7+60&#!C$uP^_>)Bo^4{`FtHeEIQ5zs~&mrysot5FkK+009C72oNAZ
zfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&U
zAV7cs0RjXF5V%X=+i$-1B0wN0a94nD_~Fa8fBj`X{vkjhA#e%m4U@d<>-tSRG&2bN
zjeve#1p<8q^xOB@**O9Ix&s9I3h1}*v$Jyo`gI2g^cB!=-)Cp%1oZ0;5a=tQ-@ebz
z&I#z(9U#zGK)-#Tot+cVuRB1XuRx=I-~06KKl=LN`|rF6v=fN@rJ>(;&)tUC5YX=*
z{&T#>({zg61oW%l-R}HK=hd%%SGv!;okhR;-R;h=bYA`HccuHh+gbFh-`(!~O6S$D
zepkBByPZY9`rYl$uXJAh>UX94yxUpytKZ%3{7UE5uYOm$&%2#Pzxv(n&aZS{{pxq6
z`@Gv(^sC?9?)*yU)vtb6y3f0vMZfyp?ar@s-rf3*oYxQnD+x6E{TnN>I}3q`fPN#4
zh7c$b&~FL5MF~U%^c!I`gg}XaeoNRbN+2Sj-w2~21WE+-Tf%Np0ucfIMi>ntP$Hn;
z5_XFchzRI6!e|JA5&`{|uv?TsL_oh0Mnedc2UX94yxUpytKZ%3{7UE5uYOm$&%2#Pzxv(n&aZS{
z{pxq6`@Gv(^sC?9?)*yU)vtb6y3f0vMZfyp?ar@sUj1J8`}t=doOrEtADpF^fPVGc
z>&DvcwZLxu9-sHbe|#@rIiBfV0+S0g`u#b_lKMUN@$QlW%k;bC({U&Q#{&92_VF%(
znFW^V_rv$!J@K0P(byY-X9e{8ERhcom{vf)(>@v-Bk-(%exD`s0Rqzs=y%#jV`BuK
z70~aqL_R=ZS^@n|`)F*8z_SASeU``v2uv%mOuy3#+Zchz3F!B6wk8vJw19peEo?r4
z#|h~7akeHCc(j0iA1!P?fyW8x_i?r+6L_?MejhDtK7q#x==X89CKGtHfPNn>Y(9a<
z3F!B6wk8vJv_PYNU%dG0_Sf|<>hv>#2?Zi)>vzH@YfC!_==b11$2(jAXKXE?U;Vbe
zz?*Mgzxv%gf!4>@uYOx!;LSI$U;S>LKuYNaAp!MbLa;-hA`=)$isBv_8Im_1pRaZ@zi`>UZ-5
zS|4A(`fYuIH{bkj{YK7f2!WLZ8vXu_mDrtyKtw>l5k^A@lnCgzgx#V9A_Dr2Fd9Oj
zL_ohK>=q>u5zudh(GUV90{SgswntP$Hn;5_XFchzRI6!e|JA5&`{|uv?TsL_oh0
zMnedc2_A0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs
z0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0tD_7c=__*=m9`7i+j1PBly
zK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF
z5FkK+009C72oNAZfB*pk7lCiT`Pz#BfuO+1zgRBY{>4882!sSKLFqSSX$*nU0{R^-
zZao4y0sZDIO(HN_K)<8Ktw$gypx>OONd!g<=y$ZZ^$6qy^qaFZiNI(9{f-v59)X;I
zesh*45g09?-_hdMBajo&Z_d&r0;2`=J6ha&1abn6`hD-yw{L&_@cnmQ1ZEb9M6BPL
zAF;hHETG?m{~Ry;+#PKV0sZQCjhnpZDfFw~J#YRRr`E52*SN`hoUWKsyyq$OtKU6u{u-y&uYT9K
z$$Oqczxv(t=C5&T{pxp(o4n^K^sC=JZ~hvm)~|loxXF8-Vz+)H=QV`DN&=03|Hew}
z&O#s}px+3iAp}YU^jpGiQ34SG{YDrKAy6Wq-x79<5{L-sH^OKLff51zmatotKtw>l
z5k^A@lnCgzgx#V9A_Dr2Fd9OjL_ohK>=q>u5zudh(GUV90{SgswntP$Hn;5_XFc
zhzK<5_nl9^y#2N3uOxNqMgsah$hpyTwADQY^sC=JZ~hvm)~|loxXF8-LcjXm^X9K{
zYW?bWjhnpZDfFw~J#YRRr`E52*SN`hoUWKsyyq$OtKU6u{u-y&uYT9K$$Oqczt{bK{@Dj7UVGjg
zr=CGTzxtiw9@@h>f!+E&KJSVD_+GwpJkz@bCKqV*`*V&Z^?U5&-6aK<>37Me<4^>S
z1@wFD<6QzX3oO&`hws08;x+T5u{Q$G3h4J)A|D_yt$==~eKa;k;8_9vK1<{S1f~_x
z@3fD`#t1wspx6M;zD`n~*}@Fq{ecL|&m&~NHL
z$LIWgi@=)*=vTjQa({fcRzSb{t-XO(e-i=y>i13VkMGtB=vTkBH_+;DBA{RWzRCUZ
z-C6bLd=TK!D~^sC=Dxj(*JE1+Nf*4{v?zlnf;_4_9G$9HQ5^sC?68))@65zw!G
z-{k)IZmocR^;>%bt^Otg`ql57+#lbq70|DKYj2>{-$X#a`hAo8l5k^A@lnCgz
zgx#V9A_Dr2Fd9OjL_ohK>=q>u5zudh(GUV90{SgswntP$Hn;5_XFchzRI6!e|JA
z5&`{|uv?TsL_oh0Mnedc2K!5-N0t5&U
zAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C7
z2oNAZfB*pk1PBngOW@_pk3V|);;pBg0tA8rBmZK#Z2K4g5Fii|xCEu&kfkvMMhob7w7B&M7PlUO
zoPd6FmL?GxEui1g;?^UO6VPwY(j)?-1@t>w+k-HaH0t-gPv3s?*AL%+=S5%!fk?#qo#9d1!-fL-J@KF84eyB~&nci^
z{mywa?dlc*{p$CYd*U;53g}nAbKXq5xJ|b0>i3p=;xls!=vTjU-b}l?ML@s$
zz2%o;;>5zuc5yG02^1oRtW
zG=xBjfPPEZElMCFpx+3iAp}YU^jpGiQ34SG{YDrKAy6Wq-x79<5{L-sH^OKLff51z
zmatotKtw>l5k^A@lnCgzgx#V9A_Dr2Fd9OjL_ohK>=q>u5zudh(GUV90{Sgsw^rz1oW%lTkeU^%qgH>{mywa?dlc*{p$CY
zd*U;53g}nAbKXq5xJ|b0>i3p=;xls!=vTjU-b}l?ML@s$z2%A>pMUnjiPtU8K11LU0{YeOBkq-%V+3~V_xQXg{^NW3%JEF^5|~_|(eKYW
zmelXDk9U_8Sf<}4pN>NjI2O?Fv5$8N%q*}>zaPH;?upmTkH+2zJS(8zXNi1(z_bGT
zo%Ye#7=dR6^!qH44-lAEK)=&I8XF_CGr6R(+cQ!+DBt!1fCVp@3TZcKww&d
zW%`{~*v1GvPC&npvo)E(qXqQ)XkqgSJWfErkFzzIz@r89`)FbF2|P|fzmKyunZTn3
z^!sRG^9ejoK);W(HJQMp1@!x9Ve<(*PC&npvo)E(qXioE`{Kn{GrY$9a#5=+FAzyv
zzxV!~u>8Gpz%c^)y*Itc=f^x;t1K^|-$;-54q5(QIp7!p{ob2iG9qn
z%ik*p93!CLd((@2e$2zQ%JKsGjr4f$kmc`{1C9~U@4e|oK0oH+T4i|w{YHAccgXVh
z$^pj+==a|ABA*}gaILbufPN!A-aBOZd*y&*1oV4vdXdkMdAL?tUO>N*9`7Bp{JnC(
zF#@~w8#%8b1XdDg^!qnfVs{n-5dr;17!4s%BB0+Ac8d~-2px+X9
zixP+k=r_V>2!Rp-{g$v>lt4s4zY#`52$Truw}joI1R?_ZjW8NQphQ5wCF~X@5E0OC
zgwYTJB?9^_VYeuOh=6`0jD`>>5zuc5yG02^1oRtWG=xBj!1#VID|!(ikP`U$rysot
z5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk
z1PBlyK!5-N0t5&UAV7cs0RjXF5V%X=<;#yhdivt6r@Ox7!vqKrAV7cs0RjXF5FkK+
z009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBly
zK!5-N0t5(L1it;|YcB!>f&wG|V!3Sl7yl3-5E8fqrQeXHF$6{n=y$ZZ^$6qy^qaFZ
ziNI(9{f-v59)X;Iesh*45g09?-_hdMBajo&Z_d&r0;2`=J6ha&1aboU%~_g6V6=dK
zM~hpJKu$ovIZKlWj26)EXmRTi$O$y+_q|Wwe$eZO@4xdRFjycGv3@UqCk%dYmLqTx
z&~NHL$F38B@dEnQ@AzA1#gu@4^_#j&=8PB6uYSkhIxD6G^sC?0T{369fPVEm{?=JB
zC7@sZrtXqC;|27q-|@H3iYWp8>Nj#Ud(*sb5lc?}`3l0c*1zp)a#
zvk-^~=r_V>2!Rp-{g$v>lt4s4zY#`52$Truw}joI1R?_ZjW8NQphQ5wCF~X@5E0OC
zgwYTJB?9^_VYeuOh=6`0jD`>>5zuc5yG02^1oRtWG=xBjfPPEZElMCFpx+3iAp}YU
z^jpGiQ34SG{YDrKAy6Wq-x79<5{L-sH^OKLff51zmatotKtw>l5k^A@lnCgzgx#V9
zA_9&2edm)eAM{H7Mo@DI+%BNsRL-}X`y_#sfPVFxx=ZGa7tpVM$KN_DrUdk>-_%_)
zXS{%Z^*jF7SurJ`U;U=;k~!lA^sC?Tx6XUaFDvtmj>zxqwxC3D6L=vTkvZ=DrW0{Yc&>MofxUO>P49e?Yrm=e(Mb-$l~
z_Q8qQA10)ph&cpq7tpVMZ@(=*Ih(+4{T`q9#D9D*Upb!XT>_H}H2VEH$CCOz_VMnL
z0?YKf=XSJ@)Y~ftdxC>G#9;-#zh~`O(-LfoBEu`z(Y(9a<
z3F!B6wk8vJw19peEo?r4#|h~7akeHCc(g#HeqX%!s@-e0-&txu^9V%J*6&0APMGJm
z*vV`H`h946k>Ru58T*+>K);d19y(;6+hQlP3F!Bs=|zUmc4zEo9s&JE5_{;7d2WlH
z%qF1Uho%=9KHHtKpLqoI8%gY;L*}_Hb~2lQejl1%WcX}%#(w4z&~GHMhYp$Nw%EyR
z0{VSudXeF?-5L9tM?k-k#2z|ip4(z4vkB<;q3K12&vs|*XC49lMiP7Ika=#4oy;bn
z--o6b89v*cv7dPa^czX+p+n}mEp{@SfPNpEUS#-ecgB9^5zucWv4;+s=eF3%Yy!LW
z8#%8b1XdDg^!qnfVs{n-5dr;17!4s%BB0+Ac8d~-2px+X9ixP+k
z=r_V>2!Rp-{g$v>lt4s4zY#`52$Truw}joI1R?_ZjW8NQphQ5wCF~X@5E0OCgwYTJ
zB?9^_VYeuOh=6`0jD`>>5zuc5yG02^1oRtWG=xBj!1#VID|!(ikP`U$rysot5FkK+
z009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBly
zK!5-N0t5&UAV7cs0RjXF5V%X=<;#yhdivt6r@Ox7!vqKrAV7cs0RjXF5FkK+009C7
z2oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N
z0t5(L1it;|YcB!>f&wG|V!3Sl7yl3-5E8fqrQeXHF$6{n=y$ZZ^$6qy^qaFZiNI(9
z{f-v59)X;Iesh*45g09?-_hdMBajo&Z_d&r0;2`=J6ha&1aboU%~_g6V6=dKM~hpJ
zKu$ovIZKlWj26)EXmRTi$O$y+_q|Ww9{l>@`|rF6JV+oCv3?K!PI%CRGnT+bK)(m+
zMc#7F2s}x2kAxLa>ocfPC&nrNDqcQ?%A14K)(m+Mc#792s}x2kAxLa>ocfPC&nrNDqcQ?%A14K)(m+Mc#792s}x2kAxLa>ocfPC&nrNDqcQ?%A14K)(m+Mc#792s}x2kAxL
za>ocfPC&nrNDqcQ?%A14V7GoF=QV`DN&=03|Hew}&O#s}px+3iAp}YU^jpGiQ34SG
z{YDrKAy6Wq-x79<5{L-sH^OKLff51zmatotKtw>l5k^A@lnCgzgx#V9A_Dr2Fd9Oj
zL_ohK>=q>u5zudh(GUV90{SgswntP$Hn;5_XFchzK<5_nl9^9Q^V-P6<3tK);X9
z`Ek$AWCHrtuL}AK=vTjeZ?B!}SHCLgE1+Nf_PxD!u3!DCps#>__1pLM+PQx9tAf4)
z`qgjW+iU0g)vpTr3g}nAeQ&Rw>sP-j=qsRK{r0`RcCKIjs-Ulce)Ze;_S(6AulxP{
zvky+Zt|z?y^NE3%ueg~6ZV}M$b#dofyPoj+&*x^|^6Y$uz;68>pZ8pA<7XbP=v@ML
z2{iisImhSH@3D_}mlRm0-zA@pLlHO@(C@L2cL~fauuQ)nzW?rt*YTq{G4S%0eh;34eh+ZGHG_bD51xX44{*FSgMfYyo`QZ4
zaJ)5xfPN32f_@KhyfuS>eh;34eh+ZGHG{x1{my`C4+I7a=yx!<-@)LPBM=nOZxGWc0)qwgI~d$@1cCzk4PqKaV6cFG2ZLLV
zKv1Ajzb{^Vwf4)eRNYD-Qn7yL`8#2&+v~9UohQA>PF(4&1oRuJW}YEi-Cl>)?>y;6
zcH&BJC7|C(HS-MF>h?OUe&#)1^8#%8b1XdDg^!qnfVs{n-
z5dr;17!4s%BB0+Ac8d~-2px+X9ixP+k=r_V>2!Rp-{g$v>lt4s4
zzY#`52$Truw}joI1R?_ZjW8NQphQ5wCF~X@5E0OCgwYTJB?9^_VYeuOh=6`0jD`>>
z5zuc5yG02^1oRtWG=xBj!1#VID|!(ikP`U$rysot5FkK+009C72oNAZfB*pk1PBly
zK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF
z5V%X=<;#yhdivt6r@Ox7!vqKrAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N
z0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5(L1it;|YcB!>f&wG|
zV!3Sl7yl3-5E8fqrQeXHF$6{n=y$ZZ^$6qy^qaFZiNI(9{f-v59)X;Iesh*45g09?
z-_hdMBajo&Z_d&r0;2`=J6ha&1aboU%~_g6V6=dKM~hpJKu$ovIZKlWj26)EXmRTi
z$O$y+_q|Wwp5gVw_uqLDcyobB#QMGW?}Rsha3&DA2EMc^6U&Dpx=Abi+tY2BM=eLZ=}b2heV#8Aq4b$Z+el>
zyLbd50{V^gc<+$NvonN%e(y~$@_84JKtw>lksj|I5_xup5YX?v=|w*8;t_}l=r_{i
zy+b0;&JY6ny*Itc=UqGk5dr;1dc1c?px+X9ixP+k=r_V>2!Rp-{g$v>lt4s4zY#`52$Truw}joI1R?_ZjW8NQphQ5w
zCF~X@5E0OCgwYTJB?9^_VYeuOh=6`0jD`>>5zuc5yG02^1oRtWG=xBjfPPEZElMCF
zpx+3iAp}YU^jpGiQ34TxM*Y6?$(J*{{Nhsr5dr;{bN%X91$_ndtKYu2*Ut5;UlsHf(64^`-d;P`uYOg~S3tk|?R$Ie
zT)+BNL0bLLhwR8RIR|S0q^sC>#x7W_~d)@EnpM7xRbv@zrpHB?De8tTqaEpL`
zuZug^+VzCje?B+!mS^WP1a|B9_`K&@8$a`SMeh>0OQ6y3&pAGqevf^;yQIJ}{Vw@*
z9E!lPfPRmCyh~tafo1yr@cnmBypA8uiGi1|9MAMFfuMkX4>0w6fa9$h1oV6G6!d$5
z30T9dmu1aK)-{*Ek__Ipx+>-Q3M7H=yx!<-@)LPBM=nOZxGWc0)qwgI~d$@1cCyM`hD@@E3a1qe*bEBfk?&r
zeN{xSAG+UO``2%;;W{c=Gt^4h@fBp6wbIfU%$PI%kI|w?=GOu)sc?}`3l0c*1zp)a#vk-^~=r_V>2!Rp-{g$v>lt4s4zY#`5
z2$Truw}joI1R?_ZjW8NQphQ5wCF~X@5E0OCgwYTJB?9^_VYeuOh=6`0jD`>>5zuc5
zyG02^1oRtWG=xBjfPPEZElMCFpx+3iAp}YU^jpGiQ34SG{YDrKAy6Wq-x79<5{L-s
zH^OKLff51zmatotKtw>l5k^A@lnCgzgx#V9A_Dr2Fd9OjL_ohK>=q>u5zudh(GUV9
z0{Sgsw>v(e*DqX7jHe?^(7xBK!5-N
z0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+
z009C72oNAZfB*pk1PBlyK;R7PlUOoPd6FmL?GxEui1g;?^UO
z6VPwY(j)?-1@t>w+l5k^A@lnCgzgx#V9A_Dr2Fd9OjL_ohK
z>=q>u5zudh(GUV90{SgswntP$Hn;5_XFchzRI6!e|JA5&`{|uv?TsM4(Z>?|ky*
z%rCzXmB3vB`kgB0yPlm76VR`IRnS*JzxwTad+l7m`c*++0sZQ?@9nj7{pwc*eFgNZ
z-@dok&h@Kb74#L*uYUX9UOU&XepS#{K)?F!dwcC%zxq`{UjhBbN%X91$_nd
ztKYu2*Ut5O-S6k0eQ@G+J>m7APYk?##myvei-3Nwi#yla^@P`dJ~#80XXi5ncI)@}
zyysdQKl6A+?-IC6pwaKoIX;(ukA1wmq`)%$F8OpEiomgeevf^;OJHV!W%~W_{dZ5i
zjvvj5ftRlw&-5;Vpn!f4F!g(Yl)OCH?k_sBpJpnNUE#g+=sQdcxalOZx2aIGNFKe3ybKr^n|z9mh{^z
zqQc#ZWkLb{78cQK=?QPIE$O#cM1{K*%Y*{@Ei9tf(i7fZThec@hzfTrmI(#)TUbP|
zr6;_-wxr))5f$!MEE5Xox3Gv_OHX)vZArhqA}ZXiSSA$EZ($L=mY(qT+R|?QM$T&p
zft3Ur{r-)W*qwzyL_oh0Mnedc2Fuvc*ie3Z=qy&Ec=|?XD1PBlyK!5-N
z0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+
z009C72oNAZfB*pk1nv@e`SRnBp1yeN>8>yNFaZJt2oNAZfB*pk1PBlyK!5-N0t5&U
zAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009CQ
zfp5S0+KT{zpuot#ST5WC#XkfHgaj@@={IC)41v)C`W-E9Jpwra{pKu9A~0G&zoW&i
zM<6Gl-<+jM1V#(!ceJ?m2;>Cxo3k{Dz-R&ejuy8bft-MTbCxC%7%iaR(c;!4kQ2~v
z&e9|TqXqOkTHJaBasrL|eect^+r57H{yQ%Me^ek6v3?)=cfuciaQ=|MML@p~O)oOs
zMJ4ci0{V?4_Rt}}_w4*R0sTHSy~uF4l)&!^=r@wsLx=p{v-9T!^!w2CBE#KM0>3Aq
z-$-H)9rAn6&Yu&|??cmz40lTj{GNb*BZ)n9$nQNne@;NZ4^1yJ+$|;Wdjk56B=*oD
zzxV9?IRX7XG`+}hx0Jx|3FtSH*h7c>-m~-P1oZpR^diIEQUbpxpx;Ph4;}J*&(5C{
z(CntP$Hn;5_XFchzRI6!e|JA5&`{|uv?TsL_oh0Mnedc2b*zkP47
zo$FV>D(EYqU;XyIy>_l&{i>j^fPVGc_x9Ske)X$@z5@EyZ{OQ%=la#J3i=A@SHFF4
zubu1ny5G+~`{2audcx~JpBQ-g%Jm$#l)&!^==ZvmH*f8F+8=&?^O?W*?EE=_-TFN~
z@442-&pckyy9DkMX!QGYj?bmvV;}D>DX>hxOFkWkB5*9A-(w%|5|~+FnSMWf|J@U>
z<41F1;N>gFGrdb7D4^d1O#L3^epuQn7vq6wzymF}K$$`t8+4m)$CBjDUW-
z6wzy+V{Wfi^xLb8F1uCM7yHIp+3SMZdke=(1a7jS0sTf84Ixk>px+X9ixP+k=r_V>2!Rp-{g$v>lt4s4zY#`52$Tru
zw}joI1R?_ZjW8NQphQ5wCF~X@5E0OCgwYTJB?9^_VYeuOh=6`0jD`>>5zuc5yG02^
z1oRtWG=xBjfPPEZElMCFpx+3iAp}YU^jpGiQ34SG{YDrKAy6Wq-x79<5{L-sH^OKL
zff51zmatotKtw>l5k^A@lnCgzgx#V9A_Dr2Fd9OjL_ohK>=q>u5zudh(GUV90{Sgs
zwL`r@spyT0VZ1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+
z009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PELN
zzWwHFF9HOD0we!oxorCv{}3P$61W7V-;kv-1V#(!ceJ?m2;>Cxo3k{Dz-R&ejuy8b
zft-MTbCxC%7%iaR(c;!4kQ2~v&e9|TqXqOkTHJaBasv9zS(-#(w19p`i(8LCPC&mo
zOOptU7SQi#aqAJt2{h{Wy-(j>=Jmt(-+65=5Q$j7C4VPuesvxHBB0-r^dgJ8zy$Og
zNvULr+e<*dCFw;Lb$bcuH>5zuc5yG02^1oRtWG=xBjfPPEZElMCFpx+3iAp}YU^jpGiQ34SG
z{YDrKAy6Wq-x79<5{L-sH^OKLff51zmatotKtw>l5k^A@lnCgzgx#V9A_Dr2Fd9Oj
zL_ohK>=q>u5zudh(GUV90{SgswQ@DQ1@x=mzPH!T^{ZbM^cB#re*4~DJJ+v%RnS*JzxwTad+l7m`c*++
z0sZQ?@9nj7{pwc*eFgNZ-@dok&h@Kb74#L*uYUX9UOU&XepS#{K)?F!dwcC%zt{bK
z{@Dj7Ue^;||M|qg%U52XbNwghX1eX`3F!CDySSe4`p@TDdwtIJpPZYy-tBdw-TFN~
z@3}74n0b5(?=CFR==bLwKL!0B`*?Rrfo1w#^65Affnx#v9{YHgz{~>6^!wra@1A%a
zKbjK*FJBoy^LRz?E-awmgNLi%0~~M7AfVrar=Z^h9B<7apx=Y1px*-=Z_OZ}--D;1
z-vb^X0{R^c
zZaD%$0sRIsjUq5uK)-{*Ek__Ipx+>-Q3M7H=yx!<-@)LPBM=m5)bEQIUwO?Y;Mc&O7Kl`=-`R@jwV%_s*BABM>#8rgTN$1f
z(C?B(^g7h(+v|(^?RC|c+^q~x3+Q*rB6=O_^zHRU{r0-*OYT;Nrv>!8WD&g%b^7-D
zqJDc_^(A*J!_xx#U9yN?hdO>bKWbUvjrHJT0K#C5z~FsMELC
z7kBG7a$Z9StR&Fr_iwDk?kof%0{V?G8bY8%K))sI79|i7&~Jp%5CSCv`YmC%D1nH8
zej|*A5GWDQZwb3a2}A_+8(}nrK#72UOV}++AR?gO2%{kcN(A&px+X9ixP+k=r_V>2!RrT@%>&_^ddkYCGhi4KY9@$
zK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF
z5FkK+009C72oNAZfB*pk1PBlyaF@W#mmh!h^u=3GcYVo+2@oJafB*pk1PBlyK!5-N
z0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+
z009C72oSgkeEZGUUIYjP1xEhGa@qDT{vkjhByb5zzadLw2#glc?`U!B5y%PXH)m-Q
zfzbl`9W8D>0yzQw<}6JjFj_#rqs6U9ASa;ToTW(wMhob7w7B&M
z7PlUOoPd6FmL?GxEui1g;?^UO6KK@$d!N3&_Uni5zw_EhAQG{D=lMHfpR4Pn7Xkgw
zlU`&eZuM3I`i)dG&ycNdufythp7bI+aizBs&~K!gd4_CtdmUE4^Q0Hqi7UO8fPN#@
z%rj)G+v~9UohQA>PF(4&1oRuJW}YEi-Cl>)?>y;6cH&BJC7|C(HS-MF>h?OUe&I}3q`fPN#4h7c$b&~FL5MF~U%^c!I`gg}XaeoNRb
zN+2Sj-w2~21WE+-Tf%Np0ucfIMi>ntP$Hn;5_XFchzRI6!e|JA5&`{|uv?TsL_oh0
zMnedc2b*
zzkP47o$FV>D(EYqU;XyIy>_l&{i>j^fPVGc_x9Ske)X$@z5@EyZ{OQ%=la#J3i=A@
zSHFF4ubt~xzbfb}pkMv=y}fp>U;V0}uYi8_+xPa`xqh$v{rs~JPQ0!sy#DivftRnm
zKIi&R&dqe&*Avk1n|EpwX+bG_T^M7#BSeBN_itTFTW6y9A}pwaKo
zIerTIJ@)bLk^;;0yX4bxC<4a<`aSmXE`gZ^mg)Dy_uoD7I({@K24220e&+Ft-d$Kg
zzXuOjzXv$pnn6In2Twu22RPoEK|sF;PeH#2INq8;K)(l1LB9t$-kL!`zXwl2zXv$p
znn6In2Twu22RPoEK|sF;PeH#2INq8;V3~erz_bSfg9Y?E7~FCMf&%&tVj4wYuz-FC
zgIkV3P(Z&yOrr=47SQitaLW-03g|b8X%vCM0{R^cZaD%$0sRIsjUq5uK)-{*Ek__I
z(5T-RFTV0>E#P;?UJFDj)^F<~dTsvt_WD`By>74FYW7+{zl!K3aD99ItlwU@*KRd?
zEuddT^b)wfy?)kjuiI<4n!Og#uOfO0T;E$lhKwOh?z3+Pu7y#%grub=hX>-O5M
zX0HYGtB76#*SFWt`t5al?N+nb0{T@%FM;dZ>u3G;y1jO**=qs)Dx#Ob_3ibuetX?s
zyVdNqfPNLxOW^wU`gym0Bj+`Qz)Av*e*eZw?9M_UBB0+0qag%J1oT_NZczde0sTf8
z4Ixk>px+X9ixP+k=r_V>2!Rp-{g$v>lt4s4zY#`52$Truw}joI1R?_ZjW8NQphQ5w
zCF~X@5E0OCgwYTJB?9^_VYeuOh=6`0jD`>>5zuc5yG02^1oRtWG=xBjfPPEZElMCF
zpx+3iAp}YU^jpGiQ34SG{YDrKAy6Wq-x79<5{L-sH^OKLff51zmatotKtw>l5k^A@
zlnCgzgx#V9A_Dr2Fd9OjL_ohK>=q>u5zudh(GUV90{Sgsw?+{OLt@=(aB@px;Ox^AB0__Bxb)=T9%PLsxxC0sThmn19HUx7VTc
zJAZnS9lGjE3g|ad$NWQ39D0B0F@|mlV)%q>lNAEO~n!O26}`7ulh!zNCPDBX!I_WXap>Q2L!e
zy~qw-^(6)L8>wUdAxqv~huW>*$axJRu#!Nd-@maEyR#682px+X9
zixP+k=r_V>2!Rp-{g$v>lt4s4zY#`52$Truw}joI1R?^B`hDk__1pLM+PQx9tAf4)`qgjW+iU0g)vpTr3g}nAeQ&Rw>sP-j=qsRK
z{r0`RcCKIjs-Ulce)Ze;_S(6A^{axu0{Yc&-`i{F`qi%r`U>b*zkP47o$L3y-_Jk$
z;Kb{C!s|bu70>vOLEO1+$Tg^}A0Iy-up%TLRZ_uUoy(ZuP6*eQx`D
zC)KZh*SppGoJha=-RHKicT)Z8cfDJ^&x!P_-+gZTdMDMde%HIz``rYTYuXj@Y
z>UX_cz0ZmCtKWTY`+6tUuYT9N)%%=Czxv(hwy$?m{pxqUTfNVT^sC=}Zu@#C)vtcn
zyVd)gNWc2s=eDnRQvEL0?=8pi83J1gH2S~a-|D$IEP-1D^m~hv&k&eXK)-W77rP>G
zi-3M_QSuoAa|-Bp&gWuR1a1+~?=4C`Ltst;{m%JZ?25oG0{Xp0$!7@6DWKmupNm})
zxJ5v}wS?hQOQx`knK+*cE|W1oV50lFtyBQ$W9SJ{P+paEpL`Z&C6Y0&@!Jch2Wx
zR|IYm(C;luK0{zm0sYSTT-lF6)1m+YN-|uBbF9HNo0zd!sqZa`J1PBly
zK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF
z5FkK+009C72oNAZfB*pkcL}_F`SC|jU%d5n*Oz>l009C72oNAZfB*pk1PBlyK!5-N
z0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+
z0D+6Zx8Hp2MSwt1VB}vcmu>&z9|8nI0+*ol8?rQpz-R&ejuy8bft-MTbCxC%7%iaR
z(c;!4kQ2~v&e9|TqXqOkTHJaBasv9zS(-#(w19p`i(8LCPC&moOOptU7SQi#aqAJt
z3FtRxX%d0a0{R^-Zao4yfkyql_vzbSuLOSh{yVSM0+ERI`>KduKeWEOHh&S&Z?EFA
zyOlt90sUr+=ryhT?X`dX_9`yBTlc@afPS+@^qSWF_S(OGdli@6t^40yK)=}{dQIzo
zd+lGpy^723*8T4;px;88a&~LVgUemhYUi;T?ui~=1b^p5y
z=r>zLuW8+Hul?({S8>_hy8qn;^qVcB*R<}p*Z%d}tGMiL-T&?a`pp*6Yg+f)YyZ3T
z8#%8b1XdDg^!qnfVs{n-5dr;17!4s%BB0+Ac8d~-2px+X9ixP+k
z=r_V>2!Rp-{g$v>lt4tFQNQne@}<`+0l$B>yMTUQUFHpc=ze?cU%wk>`|8N
zzPijC{?PsQ+P{7`%=Xoh-T&?a`h9hoH~gXd?X`dXZkX+>BfJ0I1@!ysGH>`p_uFg#
z`rR
zpx;-QdBY#N-(LII?}pjFIf?
z&$<4S)J*rkyMTTl(M6Y;-EXh`@7C|}dC&cKZH<}7r||B=0*!uu&hb;w@3D_}mlRm0
z-zA@pLlHO@(C@L2cL~fauuQ)nzW?rt*YTq{G4S%0@iUKC^zOm}`aO8K`aQt$)(isr
zJ$MTGJ;3qS3_3@zx9i`aO6G`aQt$)(isrJ$MTGJ;3qS
z3NSHJt*_VrGxU;VCktM@sPe)YT0ZC~%C
z`ql4xw|buw=~ut|-1hZOs$c!CcdPd~k$&~N&uw4tr25tGdbfI?6X{pK``q^RPO4x1
zu6L{VIgx(n@Avfo;jk|fSXH3W@84MU5jYot(*pWEP3MaQ$_4aW{s?SaWzy=7M7SQi$I$tDEE}-A?
zM_>a4P7CPwG@UOJC>I#t?`1_V0t8Y5WBxz?T7>`s0t5&UAV7cs0RjXF5FkK+009C7
z2oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!CtX
z0xw^F{L#}FZ#}JaCTAf)fB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZ
zfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAJM&R3TzV;$OASf`V+&`>x
z+4e8~AwVD`a0yDkAxmQjj26)EXmRTi$O-5-XK50F(E|D%Ep9ymIRX9VEKMRXT0p;}
z#jQsmC!pV)rAY)v3+Q*Wxb+C+1oWG;G>O1y0sW2^w;q9g}pT6z&tiTW7f9KUgAQG{DpDm)-2U=WRo4g3{b_D1oS(mh+eC7xxMzO-(F>n*{v?R2ntP$Hn;5_XFchzRI6
z!e|JA5&`{|uv?TsL_oh0Mnedc2(Sy4+s-)bECQ
zK6_+cbP>?+vzK|p4|KV`_Nm_u^L+Nmy67UH-)ArLh9Bs1d+k%d8|L}!k#*5UK)=sk
z<_$m4<@VaAemBhX*(2+si-3Ngz04bapv&#GPyKF~=d(xFMHd16K6{xr{6Lr6YoGev
zFwbX?tcxxJ`hE5?Z}@>Ox7R-Pd!6U!pM7xRbv@zrpHB?DeC72y*MBn4Oa;{n=y%R8
zu6OnN&-$&cW}ek|>-YG)=ejWSSirlJ3pD!uImeRvy;tDa)4MGMmg%>JwoMYq3g|cM
zX&Ql%0?YLK;rs8NcpX!p708Z(bi;oV6D^n36i^m~Bgtr-OLd+-$Wdw}Du83gou
z@D%iWfa9$h1oV6G6!d$5z!1;`d#lUW>pzTQdotKao*^*$%kuYUKr?dzRXzxrM8R_}8n{pxq0+rHjO^{e0YZuLGV(yxB^
zx$WznRKNON?^f?~BK_)jpWD9PN%gDW^=|b(C(^He_qpxsom9X2UGG-!b0Yng^n3dM
zaM%|KtSZpx_iwEF2%L++X#xG7rt?JtaWzy=7M7SQi$I$tDEE}-A?M_>a4P7CPw
zG@UOJC>PLg`6I9a0;dJ^dz#J{36u-yxBL;<0D;p2`aMnOiv-FA^jrQ2Y=FRN0sWq)
z^F;#X0{Sg~1U5k6w19q3)A=HSasmC8KLQ&da9TjWr|Eo=K)HZ^%O8Oa5I8NM-_vxy
zNT6ImzvYj>1_+!M(C=wFUnEd2px^RGU;_kB3+VSWoi7q77tn9{Bd`Girv>zTn$8yq
zlnadS_p+iF0Rkz3)Bn$WeUShG0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBly
zK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZfB*pk1PBlyK!Cuu0xw^F{L#}FZ#``b
z;NS!Z5FkK+009C72oNAZfB*pk1PBlyK!5-N0t5&UAV7cs0RjXF5FkK+009C72oNAZ
zfB*pk1PBlyK!5-N0t5&UAV7cs0RjY03w-;{*Ion&1O-mVc;btfZU5pQ0t7+=m!M8$
zc={{)4Lvtw2>dFbU-y7OUjhC0eRg(EK)>z)fxZIz?fdNPoPd7a0Rnvm^xOB@**O9I
zx&s9I3h1}*v$Jyo`gI2g^cB!=-)Cp%1oZ0;5a=t=sNeTKecS7tzz^Sl=QW!^92!Rp-{g$v>lt4s4
zzY#`52$Truw}joI1R?_ZjW8NQphQ5wCF~X@5E0OCgwYTJB?9^_VYeuOh=6`0jD`>>
z5zuc5yG02^1oRtWG=xBjfPPEZElMCFpx+3iAp}YU^jpGiQ34SG{YDrKAy6Wq-x79<
z5{L-sH^OKLff51zmatotKtw>l5k^A@lnCgzgx#V9A_9&2edm)ez0L{vWvvqm==a=Z
z-tb!!-d*YCcM42q~8roJa=TVOemn=bC-F;Z%uf6ZArfy
zmU!;SVwq4tzvnLVhTod-_S%wuH!Shok;O8hfPT+i<_*6!;qA30{cc#|xg(2ZLIM4r
zyUZJYYr@-WOZwfg#B)a$%Y*{@J$IQm{MLlG*Ov6VVTtFCES3oc^n30yZ}_bVZ?7%s
z_qxQ-Kl|Xs>w3cLKc5(Q`O52auK#47nF^{E(C?gGT<_}jpY>Z?%{;5`*6;Co&vjwu
zv4D3c7ijeRbB-nTd#}K;r*~TjEYoibZJQ*J70_?i(=-Aj1(xae!}s4k@j9kHG4S%0
zHD(^4!n>0Q==b13==T7}TQdmg_uwh$_W;LRGYIJS;3??$0LNQ12MJuU~tP32ny&oh-nmo!2_^+F^wWHSU|sn!7WE1D4^dUrcne2
z3+Q(+xa9~01se7H;>A~91O^K{?)S|`D%S7d`(U|V0{Z>=rypOvE`ME|{%fb#bGO?y
z1oZnV-pddAUE@~oa|-?Hcc0t7-bwYV-}P?wJ}1(ze)qZU>z!1;`d#lUW>p
zzTQdotKao*^*$%kuYUKr?dzRXzxrM8R_}8n{pxq0+rHjO^{e0YZuLGV(yxB^x$Wzn
zRKNON?^f?~BK_)jpWD9PN%gDW^=|b(C(>`K-_!qx!@fvhRe?soe`D20;9LYw3+VSW
zoi7q77tn9{Bd`Girv>zTn$8yqlndy${1Mmyfztx|Jx%9}1j+^UTmA@afWT=1{hp@t
zMFQml`YnG1HbCICfPPQY`67XG0sWRg0vjN3T0p<2>3oquxqyDlAAt=JI4z*x({#Q_
zpj<$|<&VGy2%Hws?`b+;Bv3A(-||Ob0|ZVB==U_8FA^vh&~N!8umJ+61@wEG&KC)k
z3+T7}5!e8M(*pWEP3MaQ$_4aW{s?S_`#w86C!k+$g`d6Yf?-g#!AWu!vq;D!jdx)^D#^Cfu!v3I+5#VG+HyRCs$Wy<5ML
z^BO{6C4ol2e`6(fXCV*~&~Jp%5CSCv`YmC%D1nH8ej|*A5GWDQZwb3a2}A_+8(}nr
zK#72UOV}++AR?gO2%{kcN(A&OdQzuC*Y
z;k3frYia#%SX}nVA}SQnZ}u{8IIZyZT3Wvw7MDG;hzbSto4w2%PAj~3*
zTE80>mp!tG3I+6=z04aJtMmUs+@3@hQAJiGY3&9)x}maJ)5xfPN32f_@KhyfuS>
zeh;34eh+ZGHG_bD51xX44{*FSgMfYyo`QZ4aJ)5xfPN32f_@KhyfuS>eh;34eh+ZG
zHG{x1{my`C4+I7a=yx!<-@)LPBM=nO
zZxGWc0)qwgI~d$@1cCzk4PqKaV6cFG2ZLLVKv1Ajzb{^V^(gIjLjnEjcf)JH%#ro0-(@cIh6mBFemA`K%N$w1`d#KSZ+H;>>UYCy
zzs!;KtKVfV^M(h}uYNbY_RAbuzxrL~GH-Yg{pxqaYro8q^{d}yF7t*5(XW0ty!Oi+
zS-<*S<}z=15dG?R!)w3Hk@c(JWiIoE2hp#7H@x=C99h2y{d$W4fxjit==X2@t)2T<
z0tEEy4iM-opx?gF&dv$w*Bv0xS3tjgpPii((62i{ps#>_`#w86C!k+kbg;E1=)L&(6*X=+_+}&{sgeeV?736VR_aK%lRHe)~Q0yzQw<}6JjFj_#rqs6U9ASa;ToTW(wMhob7
zw7B&M7PlUOoIs;~-~04!uK@x-eE*%-0D(xv`W;Y2uO$XtT}xa9
z^xLb8F1r=i7yHIp+3SMZdke=(1a7jSeWsMQg?|{p^;SytRuT}KBVO#@_tgJBt`WGJ$MlMJ;3qS
z3_3@zx9i`aO6G`aQt$)(isrJ$MTGJ;3qS3_3@zx9i%k(<~racfCETG@P;Fcp06wq%F(>vx&^;2^yO^xNxs*)4%<0sUTU_?bX20sZ!RUUp01T0pI?^y##jaH*#J>2&^Q~
z==X1|#O^EvA_Dr2Fd9OjL_ohK>=q>u5zudh(GUV90{SgswntP$Hn;5_XFchzRI6
z!e|JA5&`{|uv?TsL_oh0Mnedc2fisB%g@*U{%`!*
z-}%kIzxaRt?r;A6-T&=h{>{Jt`~She`kR0MkH7xce)I4D>HqYv|K{KS;opDzH~;>R
z{;z-YH~;>RKlrzP^Y8!dpZwdu`S*|i&v$~jo3EY#
literal 0
HcmV?d00001
diff --git a/repository-version-tag-governor/reports/repository-version-tag-packet.json b/repository-version-tag-governor/reports/repository-version-tag-packet.json
new file mode 100644
index 00000000..4541f944
--- /dev/null
+++ b/repository-version-tag-governor/reports/repository-version-tag-packet.json
@@ -0,0 +1,137 @@
+{
+ "mixed": {
+ "generatedAt": "2026-05-28T08:10:00.000Z",
+ "repositoryId": "synthetic-repository-versioning",
+ "status": "hold_tag_publication",
+ "summary": {
+ "status": "hold_tag_publication",
+ "proposalCount": 3,
+ "blocked": 1,
+ "manualReview": 1,
+ "approved": 1,
+ "blockerCount": 6,
+ "warningCount": 6
+ },
+ "proposals": [
+ {
+ "proposalId": "reused-preprint-tag",
+ "tag": "preprint-v2.0",
+ "releaseType": "preprint",
+ "decision": "block_release_tag",
+ "blockers": [
+ {
+ "code": "version_tag_collision",
+ "message": "preprint-v2.0 already points to a different commit or DOI."
+ },
+ {
+ "code": "non_monotonic_version_tag",
+ "message": "preprint-v2.0 does not advance beyond the latest preprint version."
+ },
+ {
+ "code": "metadata_version_drift",
+ "message": "metadata.json version preprint-v1.9 does not match tag preprint-v2.0."
+ },
+ {
+ "code": "doi_metadata_mismatch",
+ "message": "Repository DOI and metadata DOI differ for the proposed version."
+ },
+ {
+ "code": "artifact_hashes_missing",
+ "message": "Missing hash locks for data."
+ },
+ {
+ "code": "fork_attribution_missing",
+ "message": "Derived repository release lacks parent project attribution."
+ }
+ ],
+ "warnings": [
+ {
+ "code": "citation_version_stale",
+ "message": "Citation text references preprint-v1.9 instead of preprint-v2.0."
+ },
+ {
+ "code": "results_hash_missing",
+ "message": "Results output hash is absent for a reproducibility-bearing tag."
+ },
+ {
+ "code": "changelog_entry_missing",
+ "message": "No changelog entry is attached to the proposed tag."
+ }
+ ],
+ "actions": [
+ "Create a new monotonic tag instead of reusing a published repository version.",
+ "Advance the semantic version or preprint version before publication.",
+ "Update metadata.json before DOI or citation release.",
+ "Reconcile DOI fields before publishing the tag.",
+ "Regenerate citation text and Cite this project metadata for the tag.",
+ "Lock manuscript, data, code, and metadata hashes before release.",
+ "Add result/figure hash evidence or mark the release as metadata-only.",
+ "Attach parent repository DOI and fork lineage before publishing the tag.",
+ "Add a concise changelog entry that explains version-scoped changes."
+ ]
+ },
+ {
+ "proposalId": "minor-release-needs-review",
+ "tag": "v1.3.0",
+ "releaseType": "release",
+ "decision": "manual_review_tag",
+ "blockers": [],
+ "warnings": [
+ {
+ "code": "citation_version_stale",
+ "message": "Citation text references v1.2.0 instead of v1.3.0."
+ },
+ {
+ "code": "results_hash_missing",
+ "message": "Results output hash is absent for a reproducibility-bearing tag."
+ },
+ {
+ "code": "changelog_entry_missing",
+ "message": "No changelog entry is attached to the proposed tag."
+ }
+ ],
+ "actions": [
+ "Regenerate citation text and Cite this project metadata for the tag.",
+ "Add result/figure hash evidence or mark the release as metadata-only.",
+ "Add a concise changelog entry that explains version-scoped changes."
+ ]
+ },
+ {
+ "proposalId": "major-release-ready",
+ "tag": "v2.0.0",
+ "releaseType": "release",
+ "decision": "approve_tag",
+ "blockers": [],
+ "warnings": [],
+ "actions": []
+ }
+ ],
+ "auditDigest": "9dc7b2c8ec29eb7ea6d6c580bf662d2030955576c69344176e6d2caf58bd38f9"
+ },
+ "ready": {
+ "generatedAt": "2026-05-28T08:10:00.000Z",
+ "repositoryId": "synthetic-ready-repository-versioning",
+ "status": "ready",
+ "summary": {
+ "status": "ready",
+ "proposalCount": 1,
+ "blocked": 0,
+ "manualReview": 0,
+ "approved": 1,
+ "blockerCount": 0,
+ "warningCount": 0
+ },
+ "proposals": [
+ {
+ "proposalId": "major-release-ready",
+ "tag": "v2.0.0",
+ "releaseType": "release",
+ "decision": "approve_tag",
+ "blockers": [],
+ "warnings": [],
+ "actions": []
+ }
+ ],
+ "auditDigest": "1c36ac737eb497dbfb0259fc5d5066df268d68105657f60afd1419ef4484f00e"
+ }
+}
diff --git a/repository-version-tag-governor/reports/repository-version-tag-report.md b/repository-version-tag-governor/reports/repository-version-tag-report.md
new file mode 100644
index 00000000..ef0684e7
--- /dev/null
+++ b/repository-version-tag-governor/reports/repository-version-tag-report.md
@@ -0,0 +1,34 @@
+# Repository Version Tag Governor Report
+
+Synthetic semantic tag governance packet for SCIBASE issue #10.
+
+## Summary
+
+| Packet | Status | Blocked | Manual Review | Approved | Digest |
+| --- | --- | ---: | ---: | ---: | --- |
+| mixed | hold_tag_publication | 1 | 1 | 1 | 9dc7b2c8ec29 |
+| ready | ready | 0 | 0 | 1 | 1c36ac737eb4 |
+
+## Proposal Decisions
+
+### reused-preprint-tag: block_release_tag
+- blocker version_tag_collision: preprint-v2.0 already points to a different commit or DOI.
+- blocker non_monotonic_version_tag: preprint-v2.0 does not advance beyond the latest preprint version.
+- blocker metadata_version_drift: metadata.json version preprint-v1.9 does not match tag preprint-v2.0.
+- blocker doi_metadata_mismatch: Repository DOI and metadata DOI differ for the proposed version.
+- blocker artifact_hashes_missing: Missing hash locks for data.
+- blocker fork_attribution_missing: Derived repository release lacks parent project attribution.
+- warning citation_version_stale: Citation text references preprint-v1.9 instead of preprint-v2.0.
+- warning results_hash_missing: Results output hash is absent for a reproducibility-bearing tag.
+- warning changelog_entry_missing: No changelog entry is attached to the proposed tag.
+
+### minor-release-needs-review: manual_review_tag
+- warning citation_version_stale: Citation text references v1.2.0 instead of v1.3.0.
+- warning results_hash_missing: Results output hash is absent for a reproducibility-bearing tag.
+- warning changelog_entry_missing: No changelog entry is attached to the proposed tag.
+
+### major-release-ready: approve_tag
+
+## Non-Overlap Notes
+
+This module focuses on semantic version tag governance and citation-version integrity before publication. It does not implement repository foundations, a broad integrity ledger, release readiness, DOI tombstones, restore rehearsal, access review, environment drift, merge queue governance, retention legal holds, sensitive artifact scanning, license compatibility, branch lineage, component-owner approval, or export contracts.
diff --git a/repository-version-tag-governor/reports/summary.svg b/repository-version-tag-governor/reports/summary.svg
new file mode 100644
index 00000000..0a7f63de
--- /dev/null
+++ b/repository-version-tag-governor/reports/summary.svg
@@ -0,0 +1,20 @@
+
+
diff --git a/repository-version-tag-governor/requirements-map.md b/repository-version-tag-governor/requirements-map.md
new file mode 100644
index 00000000..b8c2b81b
--- /dev/null
+++ b/repository-version-tag-governor/requirements-map.md
@@ -0,0 +1,14 @@
+# Requirements Map
+
+| Issue #10 requirement | Coverage |
+| --- | --- |
+| Semantic versioning | Validates `vX.Y.Z` and `preprint-vX.Y` formats plus monotonic version progression. |
+| Hash-based integrity | Requires manuscript, data, code, metadata, and result hash evidence where relevant. |
+| DOI assignment per tagged version | Blocks DOI and metadata DOI mismatch before publication. |
+| Auto-generated citations | Flags stale citation versions that do not match the proposed tag. |
+| Forking with attribution | Blocks derived releases that omit parent repository lineage. |
+| Version history, rollback, tagging | Detects tag reuse and collision against prior tag history. |
+
+## Non-Overlap
+
+This is not a repository foundation module, broad integrity ledger, release readiness gate, DOI tombstone gate, restore rehearsal guard, access review, environment drift check, merge queue governance workflow, retention legal hold, sensitive artifact guard, license compatibility checker, branch hypothesis lineage gate, component-owner approval guard, or API export contract. It focuses narrowly on semantic tag governance and citation-version integrity.
diff --git a/repository-version-tag-governor/sample-data.js b/repository-version-tag-governor/sample-data.js
new file mode 100644
index 00000000..96d1fbfb
--- /dev/null
+++ b/repository-version-tag-governor/sample-data.js
@@ -0,0 +1,103 @@
+"use strict";
+
+const sharedHistory = [
+ {
+ tag: "preprint-v1.9",
+ commitHash: "a100",
+ doi: "10.5555/scibase.preprint.v1.9"
+ },
+ {
+ tag: "preprint-v2.0",
+ commitHash: "b200",
+ doi: "10.5555/scibase.preprint.v2.0"
+ },
+ {
+ tag: "v1.2.0",
+ commitHash: "c300",
+ doi: "10.5555/scibase.release.v1.2.0"
+ }
+];
+
+const mixedRepositoryTagPacket = {
+ generatedAt: "2026-05-28T08:10:00Z",
+ repositoryId: "synthetic-repository-versioning",
+ proposals: [
+ {
+ id: "reused-preprint-tag",
+ releaseType: "preprint",
+ tag: "preprint-v2.0",
+ commitHash: "d400",
+ doi: "10.5555/scibase.preprint.v2.0-reused",
+ metadataVersion: "preprint-v1.9",
+ metadataDoi: "10.5555/scibase.preprint.v2.0",
+ citationVersion: "preprint-v1.9",
+ changelogEntry: false,
+ artifactHashes: {
+ manuscript: "sha256:manuscript-v20",
+ code: "sha256:code-v20",
+ metadata: "sha256:metadata-v20"
+ },
+ forkAttribution: {
+ required: true,
+ present: false
+ },
+ history: sharedHistory
+ },
+ {
+ id: "minor-release-needs-review",
+ releaseType: "release",
+ tag: "v1.3.0",
+ commitHash: "e500",
+ doi: "10.5555/scibase.release.v1.3.0",
+ metadataVersion: "v1.3.0",
+ metadataDoi: "10.5555/scibase.release.v1.3.0",
+ citationVersion: "v1.2.0",
+ changelogEntry: false,
+ artifactHashes: {
+ manuscript: "sha256:manuscript-v130",
+ data: "sha256:data-v130",
+ code: "sha256:code-v130",
+ metadata: "sha256:metadata-v130"
+ },
+ forkAttribution: {
+ required: false,
+ present: false
+ },
+ history: sharedHistory
+ },
+ {
+ id: "major-release-ready",
+ releaseType: "release",
+ tag: "v2.0.0",
+ commitHash: "f600",
+ doi: "10.5555/scibase.release.v2.0.0",
+ metadataVersion: "v2.0.0",
+ metadataDoi: "10.5555/scibase.release.v2.0.0",
+ citationVersion: "v2.0.0",
+ changelogEntry: true,
+ artifactHashes: {
+ manuscript: "sha256:manuscript-v200",
+ data: "sha256:data-v200",
+ code: "sha256:code-v200",
+ metadata: "sha256:metadata-v200",
+ results: "sha256:results-v200"
+ },
+ forkAttribution: {
+ required: true,
+ present: true
+ },
+ history: sharedHistory
+ }
+ ]
+};
+
+const readyRepositoryTagPacket = {
+ generatedAt: "2026-05-28T08:10:00Z",
+ repositoryId: "synthetic-ready-repository-versioning",
+ proposals: [mixedRepositoryTagPacket.proposals[2]]
+};
+
+module.exports = {
+ mixedRepositoryTagPacket,
+ readyRepositoryTagPacket
+};
diff --git a/repository-version-tag-governor/test.js b/repository-version-tag-governor/test.js
new file mode 100644
index 00000000..529a9f6b
--- /dev/null
+++ b/repository-version-tag-governor/test.js
@@ -0,0 +1,61 @@
+"use strict";
+
+const assert = require("assert");
+const { assessRepositoryVersionTags, parseTag } = require("./index");
+const { mixedRepositoryTagPacket, readyRepositoryTagPacket } = require("./sample-data");
+
+function testRiskyTagIsBlocked() {
+ const result = assessRepositoryVersionTags(mixedRepositoryTagPacket);
+ const risky = result.proposals.find((proposal) => proposal.proposalId === "reused-preprint-tag");
+ const codes = risky.blockers.map((blocker) => blocker.code);
+
+ assert.strictEqual(result.status, "hold_tag_publication");
+ assert.strictEqual(risky.decision, "block_release_tag");
+ assert(codes.includes("version_tag_collision"));
+ assert(codes.includes("metadata_version_drift"));
+ assert(codes.includes("doi_metadata_mismatch"));
+ assert(codes.includes("artifact_hashes_missing"));
+ assert(codes.includes("fork_attribution_missing"));
+}
+
+function testManualReviewTagWarnsOnly() {
+ const result = assessRepositoryVersionTags(mixedRepositoryTagPacket);
+ const review = result.proposals.find((proposal) => proposal.proposalId === "minor-release-needs-review");
+ const codes = review.warnings.map((warning) => warning.code);
+
+ assert.strictEqual(review.decision, "manual_review_tag");
+ assert.strictEqual(review.blockers.length, 0);
+ assert(codes.includes("citation_version_stale"));
+ assert(codes.includes("results_hash_missing"));
+ assert(codes.includes("changelog_entry_missing"));
+}
+
+function testReadyTagIsApproved() {
+ const result = assessRepositoryVersionTags(readyRepositoryTagPacket);
+ const ready = result.proposals[0];
+
+ assert.strictEqual(result.status, "ready");
+ assert.strictEqual(ready.decision, "approve_tag");
+ assert.strictEqual(ready.blockers.length, 0);
+ assert.strictEqual(ready.warnings.length, 0);
+}
+
+function testTagParsingAndDigestAreDeterministic() {
+ const first = assessRepositoryVersionTags(mixedRepositoryTagPacket);
+ const second = assessRepositoryVersionTags(mixedRepositoryTagPacket);
+
+ assert.deepStrictEqual(parseTag("v1.2.3").parts, [1, 2, 3]);
+ assert.deepStrictEqual(parseTag("preprint-v2.1").parts, [2, 1, 0]);
+ assert.match(first.auditDigest, /^[a-f0-9]{64}$/);
+ assert.strictEqual(first.auditDigest, second.auditDigest);
+}
+
+function run() {
+ testRiskyTagIsBlocked();
+ testManualReviewTagWarnsOnly();
+ testReadyTagIsApproved();
+ testTagParsingAndDigestAreDeterministic();
+ console.log("4 tests passed");
+}
+
+run();