Implement v18 property projection cutover

[flyingrobots]

Summary

• Routes remaining public/state-reader property views through typed projection records, including StateQueryReadModel and property-count accounting.
• Adds runtime-backed node/edge property write intent nouns and lowers PatchBuilder property writes through those intents while preserving the existing wire shape and reserved-byte validation behavior.
• Cuts graph-op algebra projection over to typed content/property operation nouns, then closes the legacy-property projection backlog with BEARING, design, changelog, and source-audit evidence.

Verification

• npm run typecheck
• npm run lint
• npm run lint:sludge
• npm run lint:quarantine-graduate
• npm run test:local (488 files, 6956 tests)
• npx markdownlint-cli2 CHANGELOG.md docs/BEARING.md docs/method/backlog/v18.0.0/PROTO_legacy-props-as-projection.md docs/design/0183-v18-property-projection-closeout/v18-property-projection-closeout.md
• git diff --check
• pre-push IRONCLAD M9 gate passed, including static gates and full unit tests

Notes

A follow-up commit preserves the consumer type surface after widening createStateReader to accept immutable SnapshotWarpState sources in addition to live WarpState sources.

Summary by CodeRabbit

Release Notes

• Chores
  • Optimized CI/CD pipeline with parallel job execution and aggregate status checks for faster, more reliable builds
  • Completed V18 design documentation milestones including state reader property projection, property write intents, and projection closeout
  • Expanded test coverage for property projections, state reader behavior, and graph operation validation

[coderabbitai]

Warning

Review limit reached

@flyingrobots, we couldn't start this review because you've used your available PR reviews for now.

Your plan currently allows 1 review/hour. Refill in 31 minutes and 8 seconds.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more review capacity refills, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than trial, open-source, and free plans. In all cases, review capacity refills continuously over time.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: c3256aef-1bff-41ea-8181-dd4db5ddc4ac

📥 Commits

Reviewing files that changed from the base of the PR and between 7004b0d and 731193e.

📒 Files selected for processing (5)

• CHANGELOG.md
• src/domain/graph/publicGraphSubstrate.ts
• src/domain/services/GraphOpAlgebraProjection.ts
• src/domain/services/PatchBuilder.ts
• src/domain/types/PropValue.ts

📝 Walkthrough

Walkthrough

This PR implements the final closeout of V18 property projection work (slices 31–35) by introducing typed property write intents, extending graph operations to support property-set operations, refactoring state readers and query controllers to route through projection-backed helpers, and adding snapshot-to-projection hydration for immutable reader sources.

Changes

V18 Property Projection Closeout (Slices 31–35)

Layer / File(s)	Summary
Property Write Intent Contracts src/domain/graph/NodePropertyWriteIntent.ts, src/domain/graph/EdgePropertyWriteIntent.ts, test/unit/domain/graph/PropertyWriteIntent.test.ts	Introduces NodePropertyWriteIntent and EdgePropertyWriteIntent runtime classes with validation, factory methods, and immutable instances that wrap legacy node/edge property writes into type-safe intents; tests verify frozen instances and rejection of malformed carriers.
Graph Operation Types & Validation src/domain/graph/GraphNodePropertySetOp.ts, src/domain/graph/GraphEdgePropertySetOp.ts, src/domain/graph/GraphContentAttachmentSetOp.ts, src/domain/graph/GraphOperation.ts, src/domain/graph/GraphOpAlgebra.ts, test/unit/domain/graph/GraphOpAlgebra.test.ts	Adds GraphNodePropertySetOp, GraphEdgePropertySetOp, and GraphContentAttachmentSetOp operation types with constructor validation; expands GraphOperation union from 3 to 6 operation variants; updates GraphOpAlgebra.requireOperation to recognize both record and projection operations via internal predicates.
PatchBuilder Property Intent Lowering src/domain/services/PatchBuilder.ts, test/unit/domain/services/PatchBuilderPropertyIntent.test.ts	Refactors PatchBuilder.setProperty/setEdgeProperty to construct property write intents, validate and normalize values via requirePatchPropertyValue (recursive handling of scalars, arrays, objects), and lower intents into PropSet operations; tests verify intent lowering and schema correctness.
GraphOpAlgebra Projection with Property Operations src/domain/services/GraphOpAlgebraProjection.ts, test/unit/domain/services/GraphOpAlgebraProjection.test.ts	Updates GraphOpAlgebraProjection.fromState to emit graph operations in order (node records, edge records, content attachments, then property operations) by delegating to helper functions; node/edge property operations filter out content-compatibility aliases; tests verify projection order and content/property op emission.
State Reader Snapshot & Projection Hydration Pipeline src/domain/services/state/StateReaderContext.ts, test/unit/domain/services/StateReaderPropertyProjection.test.ts	Completely refactors StateReaderContext: introduces StateReaderSource union type (WarpState | SnapshotWarpState), snapshot-to-projection conversion (warpStateFromSnapshot with CRDT/property-map rebuild), and projection-backed property helpers (createProjectionProps, createNodePropertyRecords, createEdgePropertyRecords) replacing register-iteration; rebuilds content metadata indexing via ContentAttachmentProjection.
State Reader Public Interface & Context Wiring src/domain/services/state/StateReader.ts, test/type-check/consumer.ts	Updates createStateReader to accept StateReaderSource instead of WarpState; introduces projection-state intermediate in buildReaderContext; wires new property-record creation and per-node/edge population helpers; updates type-check smoke tests to use snapshot readers.
Query & Read Model Property Projection Routing src/domain/services/controllers/QueryReads.ts, src/domain/services/query/StateQueryReadModel.ts, test/unit/domain/services/QueryReadsPropertyProjection.test.ts, test/unit/domain/services/query/StateQueryReadModelPropertyProjection.test.ts	Updates getPropertyCountImpl to sum projection-derived property counts instead of returning raw state.prop.size; refactors StateQueryReadModel.nodeProps to iterate NodePropertyProjection.forNode records instead of decoding raw registers, replacing property-key derivation with projection records; tests verify projection routing and property visibility filtering.
Translation Cost & Supporting Service Routing src/domain/services/TranslationCost.ts	Updates collectNodePropKeys to derive visible node properties via NodePropertyProjection.forNode instead of iterating and decoding raw state.prop entries, aligning cost computation with projection-based property visibility.
Public API Surface Expansion src/domain/graph/publicGraphSubstrate.ts	Expands publicGraphSubstrate to re-export NodePropertyWriteIntent, EdgePropertyWriteIntent, GraphNodePropertySetOp, GraphEdgePropertySetOp, GraphContentAttachmentSetOp, operation constants, and corresponding field/type definitions (EdgePropertyWriteIntentFields, GraphContentAttachmentSetOpFields, etc.).
Documentation Status & CI Parallelization .github/workflows/ci.yml, CHANGELOG.md, docs/BEARING.md, docs/design/0179-*.md … docs/design/0183-*.md, docs/method/backlog/v18.0.0/PROTO_legacy-props-as-projection.md	Marks V18 design tasks 0179–0183 as Complete; updates BEARING.md to document implemented slices 31–35 with routing/closeout/evidence status and remaining boundaries; adds CI workflow parallelization by splitting firewall job into dedicated lint/semgrep/type/quarantine/surface/docs gates behind an aggregate status check; documents closeout evidence and remaining raw-property read boundaries in design docs.
Test Infrastructure & Type Check Updates test/unit/domain/WarpGraph.coverageGaps.test.ts	Updates getPropertyCount test to populate alive nodes before property setup, ensuring test state properly represents property visibility within live node context.

Sequence Diagram(s)

sequenceDiagram
  participant Client as Caller
  participant Reader as createStateReader
  participant Hydration as createStateReaderProjectionState
  participant Snapshot as SnapshotWarpState
  participant Projection as NodePropertyProjection
  
  Client->>Reader: createStateReader(source: StateReaderSource)
  Reader->>Hydration: convert source to live WarpState
  Hydration->>Snapshot: check if SnapshotWarpState
  Snapshot->>Hydration: warpStateFromSnapshot (rebuild CRDT/frontier)
  Hydration-->>Reader: liveState (hydrated or original)
  Reader->>Projection: derive property records
  Projection-->>Reader: visible node/edge property records
  Reader-->>Client: VisibleStateReader with projection-backed props

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• git-stunts/git-warp#99: State-reader property projection routing updates query/read-model logic to use NodePropertyProjection/EdgePropertyProjection, which is the core dependency of that PR.
• git-stunts/git-warp#96: GraphOpAlgebraProjection and graph-op algebra refactoring directly extends earlier PR's record-only operation algebra to include property/content projection operations.
• git-stunts/git-warp#97: Content attachment projection and operation plumbing introduced in that PR is reused here for StateReaderContext content metadata indexing and GraphOpAlgebra content attachment operation emission.

Poem

🐰 A rabbit hops through property projections,
Where intents freeze facts in all directions,
From snapshots hydrated to records refined,
State readers and queries, projection-aligned!
The gates now run parallel, slice by slice complete,
V18's property dance—oh, so sweet! 🌲✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 75.41% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'Implement v18 property projection cutover' is concise, clear, and directly summarizes the main change—routing public/state-reader property views through typed projection records and closing the legacy-property projection backlog.
Description check	✅ Passed	The pull request description includes all major required sections: a clear Summary with three key accomplishments, detailed Verification steps covering type checking, linting, testing (6,956 tests), and pre-push gates, plus contextual Notes about follow-up work.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch v18-continuum-slices-31-35

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

Release Preflight

• package version: 17.0.1
• prerelease: false
• npm dist-tag on release: latest
• npm pack dry-run: passed
• jsr publish dry-run: passed

If you tag this commit as v17.0.1, release workflow will publish.

[github-actions]

Release Preflight

• package version: 17.0.1
• prerelease: false
• npm dist-tag on release: latest
• npm pack dry-run: passed
• jsr publish dry-run: passed

If you tag this commit as v17.0.1, release workflow will publish.

[coderabbitai]

Actionable comments posted: 5

🧹 Nitpick comments (1)

src/domain/services/state/StateReader.ts (1)

193-207: ⚡ Quick win

Cache node property records once during context build.

createProjectionProps(projectionState) and createNodePropertyRecords(projectionState) both end up walking NodePropertyProjection.fromState(...), so each reader build decodes/sorts the same node-property set twice. Materializing that array once here and deriving both projection.props and nodePropsById from it would avoid the duplicate pass.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/domain/services/state/StateReader.ts` around lines 193 - 207, Materialize
node property records once: call createNodePropertyRecords(projectionState) into
a local const (e.g., nodePropertyRecords) and reuse it for both building
projection.props and populating nodePropsById instead of calling
createNodePropertyRecords(...) twice; to do this, add or modify a helper so you
can derive projection.props from the precomputed records (e.g.,
createProjectionPropsFromRecords(nodePropertyRecords) or adjust
createProjectionProps to accept the records), then pass nodePropertyRecords into
populateVisibleNodeProps(nodePropertyRecords, nodePropsById) and remove the
duplicate createNodePropertyRecords(...) call.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In @.github/workflows/ci.yml:
- Around line 36-38: Replace floating action tags by pinning the uses fields for
actions/checkout and actions/setup-node to their immutable commit SHAs (replace
uses: actions/checkout@v6 and uses: actions/setup-node@v6 with
actions/checkout@<commit-sha> and actions/setup-node@<commit-sha>, and update
every occurrence), add a top-level permissions: block with least-privilege
scopes required by the workflow, and set persist-credentials: false on each
actions/checkout step to avoid credential persistence (locate and modify the
checkout steps and the workflow header permissions in the CI yaml).
- Around line 33-48: The workflow grants excessive token scope and leaves
checkout credentials persisted; for the job type-firewall-lint (and all other
jobs using actions/checkout@v6) add a minimal job-level permissions block (e.g.,
permissions: contents: read and only the specific permissions needed) and update
each actions/checkout@v6 step to include with: persist-credentials: false so the
GITHUB_TOKEN is not left in the runner git config; apply the same changes to all
jobs named in the comment (type-firewall-types, type-firewall-lint,
type-firewall-semgrep, type-firewall-quarantine, type-firewall-surface,
type-firewall-docs, type-firewall-audit-advisory, typecheck-test-advisory,
test-node, test-bun, test-deno, coverage-threshold) to harden token scope and
disable credential persistence.

In `@src/domain/services/PatchBuilder.ts`:
- Around line 463-507: requirePatchPropertyValue currently can recurse forever
on cyclic inputs and can be polluted via prototype keys; fix by adding cycle
detection (pass a WeakSet seen through recursive calls and throw PatchError with
code 'E_PATCH_INVALID_PROPERTY_VALUE' if a non-scalar object/array is already in
seen) and by guarding against prototype-polluting keys when normalizing plain
objects (either reject keys like '__proto__' and 'constructor' with PatchError
or create records with Object.create(null) and still reject any key named
'__proto__' or 'constructor'); update requirePatchPropertyValue to accept an
internal seen: WeakSet<object> param, mark objects/arrays before recursing, and
keep isPlainPatchPropertyObject as-is for detection but ensure the object
key-check happens in requirePatchPropertyValue when building record/array to
deterministically fail on cycles and prototype-key pollution.

In `@test/unit/domain/services/PatchBuilderPropertyIntent.test.ts`:
- Around line 16-63: Add unit tests in PatchBuilderPropertyIntent.test.ts that
exercise the remaining property normalization branches: add a test that calls
createBuilder(...) and builder.setProperty('node:1','bin', new
Uint8Array([1,2,3])) then build() and assert the op value accepts Uint8Array and
patch.schema is correct; add tests that pass nested/recursive structures via
builder.setProperty (e.g., arrays and objects) to ensure they are normalized and
appended to ops by build(); and add a test that supplies a cyclic value to
builder.setProperty and asserts it throws PatchError (or the same cyclic
rejection path) and that builder.build().ops remains empty. Reference the
existing helpers and symbols used in the file (createBuilder,
builder.setProperty, setEdgeProperty, InvalidPropertyCarrier, PatchError,
requirePropSet, encodeLegacyEdgePropNode) so tests align with current test
patterns.

In `@test/unit/domain/services/StateReaderPropertyProjection.test.ts`:
- Around line 26-81: Add a parallel test that constructs a SnapshotWarpState via
warpStateFromSnapshot (or by calling StateReaderSource.snapshot path) containing
the same nodes/edges/prop entries as the existing WarpState test, then call
createStateReader with that SnapshotWarpState and assert the same results for
getNodeProps, getEdgeProps, getEdges, project().props and
getNodeContentMeta/getEdgeContentMeta as in the live-state cases; locate where
the existing tests create the live WarpState (functions addLiveNode,
addLiveEdge, encodePropKey, encodeEdgePropKey) and replicate those setup steps
but convert the final state into a SnapshotWarpState using warpStateFromSnapshot
(or the StateReaderSource API) before creating the reader so the snapshot code
path (SnapshotWarpState/StateReaderSource) is exercised and assertions remain
identical.

---

Nitpick comments:
In `@src/domain/services/state/StateReader.ts`:
- Around line 193-207: Materialize node property records once: call
createNodePropertyRecords(projectionState) into a local const (e.g.,
nodePropertyRecords) and reuse it for both building projection.props and
populating nodePropsById instead of calling createNodePropertyRecords(...)
twice; to do this, add or modify a helper so you can derive projection.props
from the precomputed records (e.g.,
createProjectionPropsFromRecords(nodePropertyRecords) or adjust
createProjectionProps to accept the records), then pass nodePropertyRecords into
populateVisibleNodeProps(nodePropertyRecords, nodePropsById) and remove the
duplicate createNodePropertyRecords(...) call.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 42937f48-5de7-4608-85e0-a36a20e15952

📥 Commits

Reviewing files that changed from the base of the PR and between 35e5a6a and 7004b0d.

📒 Files selected for processing (33)

• .github/workflows/ci.yml
• CHANGELOG.md
• docs/BEARING.md
• docs/design/0179-v18-state-reader-property-projection/v18-state-reader-property-projection.md
• docs/design/0180-v18-property-write-intent-nouns/v18-property-write-intent-nouns.md
• docs/design/0181-v18-patchbuilder-property-intent-lowering/v18-patchbuilder-property-intent-lowering.md
• docs/design/0182-v18-graph-op-projection-property-cutover/v18-graph-op-projection-property-cutover.md
• docs/design/0183-v18-property-projection-closeout/v18-property-projection-closeout.md
• docs/method/backlog/v18.0.0/PROTO_legacy-props-as-projection.md
• src/domain/graph/EdgePropertyWriteIntent.ts
• src/domain/graph/GraphContentAttachmentSetOp.ts
• src/domain/graph/GraphEdgePropertySetOp.ts
• src/domain/graph/GraphNodePropertySetOp.ts
• src/domain/graph/GraphOpAlgebra.ts
• src/domain/graph/GraphOperation.ts
• src/domain/graph/NodePropertyWriteIntent.ts
• src/domain/graph/publicGraphSubstrate.ts
• src/domain/services/GraphOpAlgebraProjection.ts
• src/domain/services/PatchBuilder.ts
• src/domain/services/TranslationCost.ts
• src/domain/services/controllers/QueryReads.ts
• src/domain/services/query/StateQueryReadModel.ts
• src/domain/services/state/StateReader.ts
• src/domain/services/state/StateReaderContext.ts
• test/type-check/consumer.ts
• test/unit/domain/WarpGraph.coverageGaps.test.ts
• test/unit/domain/graph/GraphOpAlgebra.test.ts
• test/unit/domain/graph/PropertyWriteIntent.test.ts
• test/unit/domain/services/GraphOpAlgebraProjection.test.ts
• test/unit/domain/services/PatchBuilderPropertyIntent.test.ts
• test/unit/domain/services/QueryReadsPropertyProjection.test.ts
• test/unit/domain/services/StateReaderPropertyProjection.test.ts
• test/unit/domain/services/query/StateQueryReadModelPropertyProjection.test.ts

[coderabbitai]

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE=".github/workflows/ci.yml"

echo "== File = $FILE =="
ls -la "$FILE"

echo
echo "== Show lines 1-220 =="
nl -ba "$FILE" | sed -n '1,220p'

Repository: git-stunts/git-warp

Length of output: 261

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE=".github/workflows/ci.yml"
echo "== Search for permissions and checkout credential handling =="
rg -n "permissions:|persist-credentials|token:|persist_credentials|checkout@" "$FILE" -S || true

Repository: git-stunts/git-warp

Length of output: 576

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE=".github/workflows/ci.yml"

echo "== Extract all checkout steps =="
python3 - <<'PY'
import re, pathlib
p = pathlib.Path(".github/workflows/ci.yml")
txt = p.read_text()
# naive scan: locate lines containing uses: actions/checkout@
lines = txt.splitlines()
for i,l in enumerate(lines, start=1):
    if "uses:" in l and "actions/checkout" in l:
        print(f"{i}: {l.strip()}")
        # show next 6 lines for context
        for j in range(i, min(i+7, len(lines)+1)):
            print(f"  {j}: {lines[j-1].rstrip()}")
        print()
PY

Repository: git-stunts/git-warp

Length of output: 3318

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE=".github/workflows/ci.yml"
echo "== permissions-related grep =="
rg -n "^(permissions:|\\s+permissions:|persist-credentials:|checkout@|GITHUB_TOKEN|token:)" "$FILE" -S || true

echo
echo "== Show lines 1-120 =="
cat -n "$FILE" | sed -n '1,120p'

echo
echo "== Show lines 120-260 =="
cat -n "$FILE" | sed -n '120,260p'

Repository: git-stunts/git-warp

Length of output: 9154

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE=".github/workflows/ci.yml"

echo "== Extract each checkout step block (uses + following 10 lines) =="
python3 - <<'PY'
import pathlib
p = pathlib.Path(".github/workflows/ci.yml")
lines = p.read_text().splitlines()
for i,l in enumerate(lines):
    if "uses: actions/checkout@" in l:
        start=i
        end=min(len(lines), i+15)
        print(f"\n-- checkout at line {i+1} --")
        for j in range(start, end):
            print(f"{j+1}: {lines[j]}")
PY

Repository: git-stunts/git-warp

Length of output: 6790

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
FILE=".github/workflows/ci.yml"

echo "== Search for write-requiring patterns =="
rg -n "permissions:|GITHUB_TOKEN|token:|persist-credentials|checkout@|write|contents: write|pull-requests:|issues:|statuses:|checks:|deployments:|actions/upload-artifact|comment|gh api|create|push|workflow_dispatch" "$FILE" -S || true

echo
echo "== Search for any explicit checkout 'with:' blocks =="
python3 - <<'PY'
import pathlib
p = pathlib.Path(".github/workflows/ci.yml")
lines = p.read_text().splitlines()
for i,l in enumerate(lines):
    if "uses: actions/checkout@" in l:
        # check next 6 lines for 'with:'
        window = lines[i:i+10]
        if any("with:" in x for x in window):
            for j in range(i, i+10):
                print(f"{j+1}: {lines[j]}")
            print("----")
PY

Repository: git-stunts/git-warp

Length of output: 4447

---

🌐 Web query:

actions/checkout persist-credentials default value

💡 Result:

The default value of actions/checkout input persist-credentials is true (i.e., it persists the token/credentials in the local git configuration by default). [1][2] In the checkout action README, persist-credentials is described as “Whether to configure the token or SSH key with the local git config” with Default: true. [1] The action.yml also sets the input default for persist-credentials to true. [2]

Citations:

• 1: https://github.com/actions/checkout/?tab=readme-ov-file
• 2: actions/checkout@c170eef

---

Harden GITHUB_TOKEN scope and disable checkout credential persistence.

.github/workflows/ci.yml has no workflow/job-level permissions: minimization, and every actions/checkout@v6 step runs without with: persist-credentials: false (so the default credentials/token remain configured in the runner git config).

Suggested baseline

+permissions:
+  contents: read

 jobs:
   type-firewall-lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@<full-commit-sha>
+        with:
+          persist-credentials: false

Applies to all jobs that use actions/checkout@v6 in this workflow (type-firewall-types, type-firewall-lint, type-firewall-semgrep, type-firewall-quarantine, type-firewall-surface, type-firewall-docs, type-firewall-audit-advisory, typecheck-test-advisory, test-node, test-bun, test-deno, coverage-threshold).

🧰 Tools

🪛 zizmor (1.25.2)

[warning] 36-36: credential persistence through GitHub Actions artifacts (artipacked): does not set persist-credentials: false

(artipacked)

---

[warning] 33-48: overly broad permissions (excessive-permissions): default permissions used due to no permissions: block

(excessive-permissions)

---

[error] 36-36: unpinned action reference (unpinned-uses): action is not pinned to a hash (required by blanket policy)

(unpinned-uses)

---

[error] 38-38: unpinned action reference (unpinned-uses): action is not pinned to a hash (required by blanket policy)

(unpinned-uses)

---

[error] 38-38: runtime artifacts potentially vulnerable to a cache poisoning attack (cache-poisoning): this step

(cache-poisoning)

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In @.github/workflows/ci.yml around lines 33 - 48, The workflow grants excessive
token scope and leaves checkout credentials persisted; for the job
type-firewall-lint (and all other jobs using actions/checkout@v6) add a minimal
job-level permissions block (e.g., permissions: contents: read and only the
specific permissions needed) and update each actions/checkout@v6 step to include
with: persist-credentials: false so the GITHUB_TOKEN is not left in the runner
git config; apply the same changes to all jobs named in the comment
(type-firewall-types, type-firewall-lint, type-firewall-semgrep,
type-firewall-quarantine, type-firewall-surface, type-firewall-docs,
type-firewall-audit-advisory, typecheck-test-advisory, test-node, test-bun,
test-deno, coverage-threshold) to harden token scope and disable credential
persistence.

[coderabbitai]

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE=".github/workflows/ci.yml"
test -f "$FILE" || { echo "Missing $FILE"; exit 1; }

echo "== File header =="
head -n 80 "$FILE" | cat -n

echo
echo "== Target region around lines 30-140 =="
sed -n '25,140p' "$FILE" | cat -n

echo
echo "== Full grep for actions/checkout/setup-node and permissions/persist-credentials =="
rg -n "uses:\s*actions/(checkout|setup-node)@|permissions:|persist-credentials:" "$FILE" || true

Repository: git-stunts/git-warp

Length of output: 8890

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
FILE=".github/workflows/ci.yml"
echo "== rg 'permissions' (case-sensitive) =="
rg -n "permissions" "$FILE" || true
echo
echo "== rg 'persist-credentials' (case-sensitive) =="
rg -n "persist-credentials" "$FILE" || true

Repository: git-stunts/git-warp

Length of output: 152

---

Pin GitHub Actions to immutable SHAs.

.github/workflows/ci.yml uses floating @v6 tags for actions/checkout/actions/setup-node in CI jobs (e.g., lines 36-38, 53-55, 68-70, 92-94, 105-107, 121-123; also later in the file around ~162-164, ~178-180, and ~215-217), which weakens supply-chain integrity for CI gates.

• No permissions: blocks found (least-privilege hardening missing).
• No persist-credentials: false found on actions/checkout steps (credential persistence/blast-radius not reduced).

Suggested hardening pattern

-      - uses: actions/checkout@v6
+      - uses: actions/checkout@<full-commit-sha>
-      - uses: actions/setup-node@v6
+      - uses: actions/setup-node@<full-commit-sha>

🧰 Tools

🪛 zizmor (1.25.2)

[warning] 36-36: credential persistence through GitHub Actions artifacts (artipacked): does not set persist-credentials: false

(artipacked)

---

[error] 36-36: unpinned action reference (unpinned-uses): action is not pinned to a hash (required by blanket policy)

(unpinned-uses)

---

[error] 38-38: unpinned action reference (unpinned-uses): action is not pinned to a hash (required by blanket policy)

(unpinned-uses)

---

[error] 38-38: runtime artifacts potentially vulnerable to a cache poisoning attack (cache-poisoning): this step

(cache-poisoning)

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In @.github/workflows/ci.yml around lines 36 - 38, Replace floating action tags
by pinning the uses fields for actions/checkout and actions/setup-node to their
immutable commit SHAs (replace uses: actions/checkout@v6 and uses:
actions/setup-node@v6 with actions/checkout@<commit-sha> and
actions/setup-node@<commit-sha>, and update every occurrence), add a top-level
permissions: block with least-privilege scopes required by the workflow, and set
persist-credentials: false on each actions/checkout step to avoid credential
persistence (locate and modify the checkout steps and the workflow header
permissions in the CI yaml).

[coderabbitai]

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Guard recursive property normalization against cycles and prototype-key pollution.

requirePatchPropertyValue can recurse infinitely on cyclic arrays/objects, and writing dynamic keys into {} allows __proto__ to mutate the normalized object’s prototype. Both should fail deterministically with PatchError.

🔧 Suggested hardening patch

-function requirePatchPropertyValue(value: unknown): PropValue { // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
+function requirePatchPropertyValue(
+  value: unknown,
+  seen: WeakSet<object> = new WeakSet(),
+): PropValue { // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
   if (isScalarPatchPropertyValue(value)) {
     return value;
   }
   if (value instanceof Uint8Array) {
     return value;
   }
   if (Array.isArray(value)) {
-    return value.map((entry) => requirePatchPropertyValue(entry));
+    if (seen.has(value)) {
+      throw new PatchError('Property value must be property-compatible data', {
+        code: 'E_PATCH_INVALID_PROPERTY_VALUE',
+      });
+    }
+    seen.add(value);
+    const normalized = value.map((entry) => requirePatchPropertyValue(entry, seen));
+    seen.delete(value);
+    return normalized;
   }
   if (isPlainPatchPropertyObject(value)) {
-    const record: { [key: string]: PropValue } = {};
+    if (seen.has(value)) {
+      throw new PatchError('Property value must be property-compatible data', {
+        code: 'E_PATCH_INVALID_PROPERTY_VALUE',
+      });
+    }
+    seen.add(value);
+    const record: { [key: string]: PropValue } = Object.create(null) as { [key: string]: PropValue };
     for (const [key, entry] of Object.entries(value)) {
-      record[key] = requirePatchPropertyValue(entry);
+      record[key] = requirePatchPropertyValue(entry, seen);
     }
+    seen.delete(value);
     return record;
   }
   throw new PatchError('Property value must be property-compatible data', {
     code: 'E_PATCH_INVALID_PROPERTY_VALUE',
   });
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	/** Validates public patch property values before intent construction. */
	function requirePatchPropertyValue(value: unknown): PropValue { // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	if (isScalarPatchPropertyValue(value)) {
	return value;
	}
	if (value instanceof Uint8Array) {
	return value;
	}
	if (Array.isArray(value)) {
	return value.map((entry) => requirePatchPropertyValue(entry));
	}
	if (isPlainPatchPropertyObject(value)) {
	const record: { [key: string]: PropValue } = {};
	for (const [key, entry] of Object.entries(value)) {
	record[key] = requirePatchPropertyValue(entry);
	}
	return record;
	}
	throw new PatchError('Property value must be property-compatible data', {
	code: 'E_PATCH_INVALID_PROPERTY_VALUE',
	});
	}
	/** Returns true for scalar property values. */
	function isScalarPatchPropertyValue(
	value: unknown, // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	): value is string | number | boolean | null {
	return value === null
	|| typeof value === 'string'
	|| typeof value === 'number'
	|| typeof value === 'boolean';
	}
	/** Returns true for plain recursive property objects. */
	function isPlainPatchPropertyObject(
	value: unknown, // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	): value is { readonly [key: string]: unknown } { // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	if (value === null || typeof value !== 'object') {
	return false;
	}
	if (Array.isArray(value) || value instanceof Uint8Array) {
	return false;
	}
	return Object.getPrototypeOf(value) === Object.prototype
	|| Object.getPrototypeOf(value) === null;
	/** Validates public patch property values before intent construction. */
	function requirePatchPropertyValue(
	value: unknown,
	seen: WeakSet<object> = new WeakSet(),
	): PropValue { // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	if (isScalarPatchPropertyValue(value)) {
	return value;
	}
	if (value instanceof Uint8Array) {
	return value;
	}
	if (Array.isArray(value)) {
	if (seen.has(value)) {
	throw new PatchError('Property value must be property-compatible data', {
	code: 'E_PATCH_INVALID_PROPERTY_VALUE',
	});
	}
	seen.add(value);
	const normalized = value.map((entry) => requirePatchPropertyValue(entry, seen));
	seen.delete(value);
	return normalized;
	}
	if (isPlainPatchPropertyObject(value)) {
	if (seen.has(value)) {
	throw new PatchError('Property value must be property-compatible data', {
	code: 'E_PATCH_INVALID_PROPERTY_VALUE',
	});
	}
	seen.add(value);
	const record: { [key: string]: PropValue } = Object.create(null) as { [key: string]: PropValue };
	for (const [key, entry] of Object.entries(value)) {
	record[key] = requirePatchPropertyValue(entry, seen);
	}
	seen.delete(value);
	return record;
	}
	throw new PatchError('Property value must be property-compatible data', {
	code: 'E_PATCH_INVALID_PROPERTY_VALUE',
	});
	}
	/** Returns true for scalar property values. */
	function isScalarPatchPropertyValue(
	value: unknown, // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	): value is string | number | boolean | null {
	return value === null
	|| typeof value === 'string'
	|| typeof value === 'number'
	|| typeof value === 'boolean';
	}
	/** Returns true for plain recursive property objects. */
	function isPlainPatchPropertyObject(
	value: unknown, // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	): value is { readonly [key: string]: unknown } { // nosemgrep: ts-no-unknown-outside-adapters -- public PatchBuilder boundary
	if (value === null || typeof value !== 'object') {
	return false;
	}
	if (Array.isArray(value) || value instanceof Uint8Array) {
	return false;
	}
	return Object.getPrototypeOf(value) === Object.prototype
	|| Object.getPrototypeOf(value) === null;
	}

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/domain/services/PatchBuilder.ts` around lines 463 - 507,
requirePatchPropertyValue currently can recurse forever on cyclic inputs and can
be polluted via prototype keys; fix by adding cycle detection (pass a WeakSet
seen through recursive calls and throw PatchError with code
'E_PATCH_INVALID_PROPERTY_VALUE' if a non-scalar object/array is already in
seen) and by guarding against prototype-polluting keys when normalizing plain
objects (either reject keys like '__proto__' and 'constructor' with PatchError
or create records with Object.create(null) and still reject any key named
'__proto__' or 'constructor'); update requirePatchPropertyValue to accept an
internal seen: WeakSet<object> param, mark objects/arrays before recursing, and
keep isPlainPatchPropertyObject as-is for detection but ensure the object
key-check happens in requirePatchPropertyValue when building record/array to
deterministically fail on cycles and prototype-key pollution.

[coderabbitai]

🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick win

Add tests for the remaining property-value normalization branches.

This suite doesn’t explicitly cover accepted Uint8Array, recursive array/object values, or cyclic-value rejection paths introduced by property normalization. Add focused tests so this refactor slice is fully covered.

🧪 Suggested test additions

 describe('PatchBuilder property intent lowering', () => {
+  it('accepts recursive property-compatible values (bytes, arrays, objects)', () => {
+    const builder = createBuilder(null);
+    const bytes = new Uint8Array([1, 2, 3]);
+    builder.setProperty('node:1', 'payload', { bytes, nested: [1, 'ok', { done: true }] });
+
+    const patch = builder.build();
+    const op = requirePropSet(patch.ops[0]);
+    expect(op.key).toBe('payload');
+    expect(op.value).toEqual({ bytes, nested: [1, 'ok', { done: true }] });
+  });
+
+  it('rejects cyclic property values before appending operations', () => {
+    const builder = createBuilder(null);
+    const cyclic: Record<string, unknown> = {};
+    cyclic.self = cyclic;
+
+    expect(() => {
+      builder.setProperty('node:1', 'payload', cyclic);
+    }).toThrow(PatchError);
+    expect(builder.build().ops).toEqual([]);
+  });

As per coding guidelines, **/*.test.{ts,tsx}: Touched code in refactor slices must reach 100% test coverage before the slice is considered done.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	describe('PatchBuilder property intent lowering', () => {
	it('lowers node property intents to the current PropSet shape', () => {
	const builder = createBuilder(null);
	builder.setProperty('node:1', 'status', 'ready');
	const patch = builder.build();
	expect(patch.ops).toHaveLength(1);
	const op = requirePropSet(patch.ops[0]);
	expect(op.node).toBe('node:1');
	expect(op.key).toBe('status');
	expect(op.value).toBe('ready');
	expect(patch.schema).toBe(2);
	});
	it('lowers edge property intents to the current legacy edge PropSet shape', () => {
	const state = stateWithEdge();
	const builder = createBuilder(state);
	builder.setEdgeProperty('node:1', 'node:2', 'rel', 'weight', 3);
	const patch = builder.build();
	expect(patch.ops).toHaveLength(1);
	const op = requirePropSet(patch.ops[0]);
	expect(op.node).toBe(encodeLegacyEdgePropNode('node:1', 'node:2', 'rel'));
	expect(op.key).toBe('weight');
	expect(op.value).toBe(3);
	expect(patch.schema).toBe(3);
	});
	it('rejects invalid node property values before appending operations', () => {
	const builder = createBuilder(null);
	expect(() => {
	builder.setProperty('node:1', 'status', new InvalidPropertyCarrier());
	}).toThrow(PatchError);
	expect(builder.build().ops).toEqual([]);
	});
	it('rejects malformed edge targets before appending operations', () => {
	const builder = createBuilder(stateWithEdge());
	expect(() => {
	builder.setEdgeProperty('', 'node:2', 'rel', 'weight', 3);
	}).toThrow(/NodeId/);
	expect(builder.build().ops).toEqual([]);
	});
	});
	describe('PatchBuilder property intent lowering', () => {
	it('lowers node property intents to the current PropSet shape', () => {
	const builder = createBuilder(null);
	builder.setProperty('node:1', 'status', 'ready');
	const patch = builder.build();
	expect(patch.ops).toHaveLength(1);
	const op = requirePropSet(patch.ops[0]);
	expect(op.node).toBe('node:1');
	expect(op.key).toBe('status');
	expect(op.value).toBe('ready');
	expect(patch.schema).toBe(2);
	});
	it('lowers edge property intents to the current legacy edge PropSet shape', () => {
	const state = stateWithEdge();
	const builder = createBuilder(state);
	builder.setEdgeProperty('node:1', 'node:2', 'rel', 'weight', 3);
	const patch = builder.build();
	expect(patch.ops).toHaveLength(1);
	const op = requirePropSet(patch.ops[0]);
	expect(op.node).toBe(encodeLegacyEdgePropNode('node:1', 'node:2', 'rel'));
	expect(op.key).toBe('weight');
	expect(op.value).toBe(3);
	expect(patch.schema).toBe(3);
	});
	it('rejects invalid node property values before appending operations', () => {
	const builder = createBuilder(null);
	expect(() => {
	builder.setProperty('node:1', 'status', new InvalidPropertyCarrier());
	}).toThrow(PatchError);
	expect(builder.build().ops).toEqual([]);
	});
	it('rejects malformed edge targets before appending operations', () => {
	const builder = createBuilder(stateWithEdge());
	expect(() => {
	builder.setEdgeProperty('', 'node:2', 'rel', 'weight', 3);
	}).toThrow(/NodeId/);
	expect(builder.build().ops).toEqual([]);
	});
	it('accepts recursive property-compatible values (bytes, arrays, objects)', () => {
	const builder = createBuilder(null);
	const bytes = new Uint8Array([1, 2, 3]);
	builder.setProperty('node:1', 'payload', { bytes, nested: [1, 'ok', { done: true }] });
	const patch = builder.build();
	const op = requirePropSet(patch.ops[0]);
	expect(op.key).toBe('payload');
	expect(op.value).toEqual({ bytes, nested: [1, 'ok', { done: true }] });
	});
	it('rejects cyclic property values before appending operations', () => {
	const builder = createBuilder(null);
	const cyclic: Record<string, unknown> = {};
	cyclic.self = cyclic;
	expect(() => {
	builder.setProperty('node:1', 'payload', cyclic);
	}).toThrow(PatchError);
	expect(builder.build().ops).toEqual([]);
	});
	});

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@test/unit/domain/services/PatchBuilderPropertyIntent.test.ts` around lines 16
- 63, Add unit tests in PatchBuilderPropertyIntent.test.ts that exercise the
remaining property normalization branches: add a test that calls
createBuilder(...) and builder.setProperty('node:1','bin', new
Uint8Array([1,2,3])) then build() and assert the op value accepts Uint8Array and
patch.schema is correct; add tests that pass nested/recursive structures via
builder.setProperty (e.g., arrays and objects) to ensure they are normalized and
appended to ops by build(); and add a test that supplies a cyclic value to
builder.setProperty and asserts it throws PatchError (or the same cyclic
rejection path) and that builder.build().ops remains empty. Reference the
existing helpers and symbols used in the file (createBuilder,
builder.setProperty, setEdgeProperty, InvalidPropertyCarrier, PatchError,
requirePropSet, encodeLegacyEdgePropNode) so tests align with current test
patterns.

[coderabbitai]

🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick win

Add coverage for the SnapshotWarpState reader path.

These cases only exercise the live WarpState branch. The new StateReaderSource / warpStateFromSnapshot path in src/domain/services/state/StateReaderContext.ts is still untested, so the main behavior added by this slice is missing direct assertions. Please add at least one parity case that feeds createStateReader a SnapshotWarpState and expects the same props/content metadata as the live-state reader.

As per coding guidelines "Touched code in refactor slices must reach 100% test coverage before the slice is considered done".

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@test/unit/domain/services/StateReaderPropertyProjection.test.ts` around lines
26 - 81, Add a parallel test that constructs a SnapshotWarpState via
warpStateFromSnapshot (or by calling StateReaderSource.snapshot path) containing
the same nodes/edges/prop entries as the existing WarpState test, then call
createStateReader with that SnapshotWarpState and assert the same results for
getNodeProps, getEdgeProps, getEdges, project().props and
getNodeContentMeta/getEdgeContentMeta as in the live-state cases; locate where
the existing tests create the live WarpState (functions addLiveNode,
addLiveEdge, encodePropKey, encodeEdgePropKey) and replicate those setup steps
but convert the final state into a SnapshotWarpState using warpStateFromSnapshot
(or the StateReaderSource API) before creating the reader so the snapshot code
path (SnapshotWarpState/StateReaderSource) is exercised and assertions remain
identical.

[flyingrobots]

@codex self-review findings for confirmation.

Severity	File	Lines	Type	Finding	Mitigation prompt
P2 Major	src/domain/services/PatchBuilder.ts	464, 488, 498-499	Anti-sludge policy	The branch introduces new unknown signatures in domain code with nosemgrep comments that do not reference an owning ticket. This violates the repo's stated rejection rule for unknown outside adapters and the inline-suppression discipline used for 0025B boundary debt.	"Remove the newly introduced helper-level unknown boundary in PatchBuilder, or convert it into a named validated boundary/parser shape that does not add fresh unknown suppressions. If a suppression is genuinely unavoidable, reference the owning ticket such as 0025B and document why the public PatchBuilder boundary cannot be moved yet."
P5 Nit	src/domain/services/GraphOpAlgebraProjection.ts	16, 20-24	Documentation drift	fromState() says it returns operations ordered as nodes, edges, then attachments, but the implementation now emits nodes, edges, content attachments, node-property ops, and edge-property ops.	"Update the GraphOpAlgebraProjection.fromState() comment to name the actual operation ordering: node records, edge records, content attachments, node properties, then edge properties."
P5 Nit	src/domain/graph/publicGraphSubstrate.ts	10-27	Export ordering	The public graph substrate barrel is otherwise grouped lexically by concept family, but EdgePropertyWriteIntent appears before EdgeId, and NodePropertyWriteIntent appears before NodeRecord. This is tiny, but it makes the public surface harder to scan.	"Restore concept-family ordering in publicGraphSubstrate.ts: keep EdgeId/EdgeRecord/EdgeTypeId together before edge property write intent, and keep NodeId/NodeRecord/NodeTypeId together before node property write intent, unless the repo has a documented alternate order."

[flyingrobots]

Resolved the self-review findings in 731193e9.

Finding	Severity	Resolution	Commit
New helper-level unknown suppressions in PatchBuilder property-value validation	P2	Removed the new helper suppressions and reused the shared isPropValue guard with generic narrowing.	731193e9
Stale graph-op projection ordering comment	P5	Updated the comment to match the emitted order: nodes, edges, content, node props, edge props.	731193e9
Public substrate export ordering drift	P5	Restored concept-family ordering for edge/node records and property write intent exports/types.	731193e9

Local verification before push:

• npm run typecheck
• npm run lint
• npm run lint:sludge
• npm run lint:semgrep
• npm run typecheck:policy
• npm run typecheck:consumer
• npm run typecheck:surface
• GIT_WARP_QUARANTINE_BASE=origin/main npm run lint:quarantine-graduate
• npx markdownlint-cli2 CHANGELOG.md
• npx vitest run test/unit/domain/services/PatchBuilderPropertyIntent.test.ts test/unit/domain/graph/PropertyWriteIntent.test.ts test/unit/domain/services/GraphOpAlgebraProjection.test.ts
• npm run test:local (488 files, 6956 tests)
• pre-push IRONCLAD M9 gate (488 files, 6956 tests)

[github-actions]

Release Preflight

• package version: 17.0.1
• prerelease: false
• npm dist-tag on release: latest
• npm pack dry-run: passed
• jsr publish dry-run: passed

If you tag this commit as v17.0.1, release workflow will publish.