Add constraint engine and ledger to osint_core

[canstralian]

Summary

First slice of the constraint-aware invention engine from issue #19. Adds a composable invariant evaluator on top of policy.evaluate_modules plus a redacted ledger writer. No behaviour change to the running Space — the engine is additive and not yet wired into app.py:run_enrichment.

What's new

• osint_core/constraints.py — pure constraint engine. Five built-in constraints: authorization, forbidden capability, unknown module, audit payload shape, correction verb. Each produces a structured ConstraintResult with evidence. The engine derives a recommended correction verb from the closed allowlist via priority ordering (REVERT > CONSTRAIN > ADAPT > OBSERVE).
• Constraint ledger — build_ledger_entry + write_constraint_ledger persist a JSON record under runs/constraints/{run_id}.json. The writer routes through policy.enforce_audit_payload, so raw indicator fields can never reach disk.
• tests/test_constraints.py — 22 tests pinning the central invariant: authorized-only modules stay blocked unless both authorized_target=True and passive_only=False. Also covers forbidden modules, audit-payload shape, verb priority ordering, engine purity, and ledger redaction.
• Public API exports added in osint_core/__init__.py.

Out of scope (follow-up branches)

• Invention, reflection, adaptation, scorecard modules from the issue.
• Wiring the engine into app.py:run_enrichment and the Gradio UI tab.
• Implementing osint_core/drift.py (still pseudocode; tests/test_drift.py continues to fail as documented).

Test plan

• PYTHONPATH=. python -m pytest tests/test_constraints.py tests/test_policy.py -v → 35 passed
• Full suite excluding known-broken modules: PYTHONPATH=. python -m pytest --ignore=tests/test_drift.py --ignore=tests/test_scheduler.py -q → 81 passed
• Manual: from osint_core import evaluate_constraints, write_constraint_ledger resolves and runs against a sample request
• CI green on push

Closes part of #19.

https://claude.ai/code/session_01EWC4Cw5H4ARyBSK62iotcB

---

Generated by Claude Code

Summary by CodeRabbit

• New Features
  • Constraint evaluation engine validates module access against authorization policies
  • Structured constraint reporting provides validation results and policy compliance status
  • Audit ledger generation tracks policy decisions and security events with persistent storage
  • Built-in constraint validation for authorized access, forbidden capabilities, and payload safety

[coderabbitai]

Warning

Rate limit exceeded

@canstralian has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 51 minutes and 54 seconds before requesting another review.

To keep reviews running without waiting, you can enable usage-based add-on for your organization. This allows additional reviews beyond the hourly cap. Account admins can enable it under billing.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: d8b49568-544d-42a9-a38f-5882cbc0e79f

📥 Commits

Reviewing files that changed from the base of the PR and between c4bdd0a and 30c30d6.

📒 Files selected for processing (2)

• osint_core/constraints.py
• tests/test_constraints.py

📝 Walkthrough

Walkthrough

A new constraint evaluation engine is added to osint_core with support for authorization, capability, module, and payload validation. Constraint results are recorded in a structured ledger, persisted to disk, and integrated into the package's public API through updated exports.

Changes

Cohort / File(s)	Summary
Constraint Engine Implementation osint_core/__init__.py, osint_core/constraints.py	Introduces constraint evaluation engine with enums (ConstraintCode, ConstraintSeverity, ConstraintStatus), dataclasses (ConstraintContext, ConstraintResult, ConstraintReport), built-in constraint set (DEFAULT_CONSTRAINTS), and utilities for evaluating constraints against requests, building audit-safe ledger entries, and persisting ledger records to constraints/{run_id}.json. Integrates with policy module for authorization checks and audit-payload validation.
Constraint Evaluation Tests tests/test_constraints.py	Comprehensive test suite covering constraint evaluation logic, including authorization-only module restrictions, forbidden capability detection, unknown module handling, audit-payload safety validation, correction-verb derivation and allowlisting, evaluation determinism, immutability guarantees, and ledger persistence with redaction rules.

Sequence Diagram

sequenceDiagram
    participant Client
    participant Evaluator as Constraint<br/>Evaluator
    participant Policy as Policy<br/>Module
    participant Ledger as Ledger<br/>Writer
    
    Client->>Evaluator: evaluate_constraints(context, payload)
    activate Evaluator
    
    Evaluator->>Policy: evaluate_modules(request)
    activate Policy
    Policy-->>Evaluator: PolicyEvaluation<br/>(allowed, blocked modules)
    deactivate Policy
    
    Evaluator->>Evaluator: Check authorization constraints<br/>Check capability constraints<br/>Check unknown modules<br/>Check audit-payload rules
    
    Evaluator->>Policy: enforce_correction_verb(verb)<br/>enforce_audit_payload(payload)
    activate Policy
    Policy-->>Evaluator: validation result
    deactivate Policy
    
    Evaluator-->>Client: ConstraintReport<br/>(results, policy_eval, correction_verb)
    deactivate Evaluator
    
    Client->>Evaluator: build_ledger_entry(context, payload,<br/>report, policy_eval)
    activate Evaluator
    Evaluator->>Policy: enforce_audit_payload(payload)
    activate Policy
    Policy-->>Evaluator: validated payload
    deactivate Policy
    Evaluator-->>Client: audit-safe ledger entry
    deactivate Evaluator
    
    Client->>Ledger: write_constraint_ledger(run_id, entry)
    activate Ledger
    Ledger->>Ledger: Create constraints/ directory<br/>Persist to JSON
    Ledger-->>Client: success
    deactivate Ledger

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Poem

🐰 Constraints are born, the ledger grows,
Authorization flows where policy shows,
Payloads tested, modules checked tight,
Safety audited from day to night!
With tests in place and exports clear,
The osint core shines bright, my dear!

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 10.53% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately and concisely describes the main change: adding a constraint engine and ledger system to osint_core, which aligns with the substantial additions in constraints.py, ledger utilities, and tests.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch claude/extract-constraint-engine-Qlanu

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Review rate limit: 0/1 reviews remaining, refill in 51 minutes and 54 seconds.}

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Code Review

This pull request introduces a constraint engine to the osint_core package, providing a framework for evaluating request invariants and generating audit-safe ledger entries. It includes built-in evaluators for authorization, forbidden capabilities, and payload safety, along with a comprehensive test suite. Review feedback highlights opportunities to clean up unused code, such as the PASSIVITY enum and the _POLICY_TO_CONSTRAINT_CODE mapping. Additionally, it is recommended to externalize timestamp generation to maintain the engine's documented purity and to reduce argument redundancy in the ledger entry functions.

[gemini-code-assist]

ConstraintCode.PASSIVITY is defined and mapped to a correction verb (line 140), but it is not utilized by any of the built-in constraint evaluators. Currently, _authorization_constraint handles both authorization and passivity-related policy violations using ConstraintCode.AUTHORIZATION. Consider either implementing a specific passivity constraint or removing this unused enum member to avoid confusion.

[gemini-code-assist]

The mapping _POLICY_TO_CONSTRAINT_CODE is defined but never used within this module. To maintain code cleanliness and avoid dead code, it should be removed if there are no immediate plans to use it for evidence translation.

[gemini-code-assist]

The evaluate_constraints function is documented as a pure function (lines 15 and 352), but it calls datetime.now(timezone.utc), which is a side effect. This makes the function harder to test deterministically. Consider passing the timestamp as an optional argument or including it in the ConstraintContext to ensure the engine remains truly pure.

[gemini-code-assist]

The build_ledger_entry function requires indicator_hash and indicator_type as separate arguments, even though these fields are already present in the ConstraintContext used to generate the ConstraintReport. This redundancy increases the risk of logging data that doesn't match the evaluation context. It would be more robust to include the context in the ConstraintReport or pass the context object directly to this function.

[ecc-tools]

Analyzing 200 commits...

[ecc-tools]

Analysis Complete

Generated ECC bundle from 2 commits | Confidence: 50%

View Pull Request #35

Repository Profile

Attribute	Value
Language	Python
Framework	Not detected
Commit Convention	freeform
Test Directory	separate

Changed Files (3)

Metric	Value
Files changed	3
Additions	874
Deletions	0

Top hotspots

Path	Status	+/-
osint_core/constraints.py	added	+477 / -0
tests/test_constraints.py	added	+369 / -0
osint_core/__init__.py	modified	+28 / -0

Top directories

Directory	Files	Total changes
osint_core	2	505
tests	1	369

Review Activity (1 reviews, 4 inline comments, 4 unresolved threads)

Signal	Count
Approvals	0
Change requests	0
Comment-only reviews	1
Dismissed reviews	0
Pending reviews	0
Review threads	4
Unresolved threads	4
Outdated threads	4
Latest review	Commented
Latest submitted at	2026-04-28T01:58:46Z

Top unresolved thread files

Path	Unresolved	Outdated
osint_core/constraints.py	4	4

Latest reviewer states

Reviewer	State	Submitted
@gemini-code-assist[bot]	Commented	2026-04-28T01:58:46Z

Detected Workflows (2)

Workflow	Description
feature-implementation-with-tests	Implements a new core feature or module, accompanied by corresponding tests to validate new behaviors.
refactor-or-tighten-core-module-and-tests	Refactors or tightens the API and internal logic of a core module, synchronizing changes with corresponding tests.

Generated Instincts (18)

Domain	Count
git	2
code-style	9
testing	3
workflow	4

After merging, import with:

/instinct-import .claude/homunculus/instincts/inherited/PassiveOSINTControlPanel-instincts.yaml

Files

• .claude/ecc-tools.json
• .claude/skills/PassiveOSINTControlPanel/SKILL.md
• .agents/skills/PassiveOSINTControlPanel/SKILL.md
• .agents/skills/PassiveOSINTControlPanel/agents/openai.yaml
• .claude/identity.json
• .codex/config.toml
• .codex/AGENTS.md
• .codex/agents/explorer.toml
• .codex/agents/reviewer.toml
• .codex/agents/docs-researcher.toml
• .claude/homunculus/instincts/inherited/PassiveOSINTControlPanel-instincts.yaml
• .claude/commands/feature-implementation-with-tests.md
• .claude/commands/refactor-or-tighten-core-module-and-tests.md

---

_{ECC Tools | Everything Claude Code}

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (1)

tests/test_constraints.py (1)

328-338: ⚡ Quick win

write_constraint_ledger is never called in this test — the audit-sink invariant isn't exercised

Per coding guidelines, tests should be added in the style of test_audit_payload_blocks_raw_indicator_fields when introducing a new audit sink. write_constraint_ledger is the new sink, but the test named test_write_constraint_ledger_blocks_when_payload_would_leak_raw only calls enforce_audit_payload directly on a manually-mutated dict — it never touches write_constraint_ledger. The actual sink is not guarded by this test.

Consider replacing (or supplementing) with a test that patches build_ledger_entry to return a poisoned entry and confirms write_constraint_ledger propagates the PolicyViolationException, e.g.:

def test_write_constraint_ledger_rejects_raw_indicator_in_entry(tmp_path, monkeypatch):
    report = evaluate_constraints(_ctx(requested_modules=("Resource Links",)))

    def poisoned_entry(r, *, run_id):
        e = {"run_id": run_id, "raw_indicator": "example.com"}
        return e

    monkeypatch.setattr(
        "osint_core.constraints.build_ledger_entry", poisoned_entry
    )
    with pytest.raises(PolicyViolationException):
        write_constraint_ledger(report, run_id="run_x", base_dir=tmp_path)

As per coding guidelines: "Add tests in the style of test_audit_payload_blocks_raw_indicator_fields when introducing new audit sinks."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@tests/test_constraints.py` around lines 328 - 338, The test currently never
calls write_constraint_ledger so the sink invariant isn't exercised; modify or
add a test (e.g., test_write_constraint_ledger_rejects_raw_indicator_in_entry)
that patches osint_core.constraints.build_ledger_entry to return a poisoned
entry containing "raw_indicator", then call write_constraint_ledger(report,
run_id="run_x", base_dir=tmp_path) and assert it raises PolicyViolationException
(use pytest.raises), following the style of
test_audit_payload_blocks_raw_indicator_fields and using the monkeypatch and
tmp_path fixtures to patch build_ledger_entry and isolate filesystem effects.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@osint_core/constraints.py`:
- Around line 459-460: The code constructs a file path with an unsanitized
run_id (ledger_dir / f"{run_id}.json") which permits path traversal; fix by
normalizing or validating run_id before building the path — e.g. replace usage
of run_id with a sanitized basename like Path(run_id).name or apply an
allowlist/regex and reject invalid values, then use ledger_dir /
f"{sanitized_run_id}.json" when calling path.write_text to ensure files cannot
escape the ledger_dir.

In `@tests/test_constraints.py`:
- Around line 105-108: The test currently asserts order-sensitive equality on
report.policy_evaluation.allowed_modules which is fragile if evaluate_modules
changes ordering; update the assertion in tests/test_constraints.py to compare
as a set (or compare sorted lists) instead of direct list equality—locate the
block using _result_for(report, ConstraintCode.AUTHORIZATION) and the
report.policy_evaluation.allowed_modules reference and replace the final assert
with a set(report.policy_evaluation.allowed_modules) ==
{"http_headers","robots_txt"} (or sorted(...) comparisons) so the test only
checks membership not order.

---

Nitpick comments:
In `@tests/test_constraints.py`:
- Around line 328-338: The test currently never calls write_constraint_ledger so
the sink invariant isn't exercised; modify or add a test (e.g.,
test_write_constraint_ledger_rejects_raw_indicator_in_entry) that patches
osint_core.constraints.build_ledger_entry to return a poisoned entry containing
"raw_indicator", then call write_constraint_ledger(report, run_id="run_x",
base_dir=tmp_path) and assert it raises PolicyViolationException (use
pytest.raises), following the style of
test_audit_payload_blocks_raw_indicator_fields and using the monkeypatch and
tmp_path fixtures to patch build_ledger_entry and isolate filesystem effects.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: b46f45ef-06cd-4955-96bb-1e860a7436b9

📥 Commits

Reviewing files that changed from the base of the PR and between 4cc06d0 and c4bdd0a.

📒 Files selected for processing (3)

• osint_core/__init__.py
• osint_core/constraints.py
• tests/test_constraints.py

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Order-sensitive list equality is fragile

If evaluate_modules ever changes its ordering, this assertion will fail silently. Use a set or sorted comparison:

🛡️ Proposed fix

-    assert report.policy_evaluation.allowed_modules == ["http_headers", "robots_txt"]
+    assert set(report.policy_evaluation.allowed_modules) == {"http_headers", "robots_txt"}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	auth = _result_for(report, ConstraintCode.AUTHORIZATION)
	assert report.decision == PolicyDecision.ALLOW
	assert auth.status == ConstraintStatus.SATISFIED
	assert report.policy_evaluation.allowed_modules == ["http_headers", "robots_txt"]
	auth = _result_for(report, ConstraintCode.AUTHORIZATION)
	assert report.decision == PolicyDecision.ALLOW
	assert auth.status == ConstraintStatus.SATISFIED
	assert set(report.policy_evaluation.allowed_modules) == {"http_headers", "robots_txt"}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@tests/test_constraints.py` around lines 105 - 108, The test currently asserts
order-sensitive equality on report.policy_evaluation.allowed_modules which is
fragile if evaluate_modules changes ordering; update the assertion in
tests/test_constraints.py to compare as a set (or compare sorted lists) instead
of direct list equality—locate the block using _result_for(report,
ConstraintCode.AUTHORIZATION) and the report.policy_evaluation.allowed_modules
reference and replace the final assert with a
set(report.policy_evaluation.allowed_modules) == {"http_headers","robots_txt"}
(or sorted(...) comparisons) so the test only checks membership not order.

[kilo-code-bot]

WARNING: Unimplemented constraint code

The PASSIVITY ConstraintCode is defined but no corresponding constraint evaluator is implemented, and it's not included in DEFAULT_CONSTRAINTS. Either implement the passivity constraint or remove this unused enum value.

[kilo-code-bot]

Code Review Summary

Status: 1 Issues Found | Recommendation: Address before merge

Overview

Severity	Count
CRITICAL	0
WARNING	1
SUGGESTION	0

Issue Details (click to expand)

WARNING

File	Line	Issue
osint_core/constraints.py	65	Unimplemented constraint code

The PASSIVITY ConstraintCode is defined but no corresponding constraint evaluator is implemented, and it's not included in DEFAULT_CONSTRAINTS. Either implement the passivity constraint or remove this unused enum value.

Other Observations (not in diff)

Issues found in unchanged code that cannot receive inline comments:

File	Line	Issue
N/A	N/A	None

Files Reviewed (3 files)

• osint_core/init.py
• osint_core/constraints.py
• tests/test_constraints.py

---

_{Reviewed by nemotron-3-super-120b-a12b-20230311:free · 312,833 tokens}