Skip to content

docs: scope first paid features into the product roadmap#98

Merged
mohabbis merged 1 commit into
masterfrom
claude/rational-to-analysis-w2943q
Jul 4, 2026
Merged

docs: scope first paid features into the product roadmap#98
mohabbis merged 1 commit into
masterfrom
claude/rational-to-analysis-w2943q

Conversation

@mohabbis

@mohabbis mohabbis commented Jul 4, 2026

Copy link
Copy Markdown
Owner

Summary

Folds the two first paid features from docs/business-model.md into concrete roadmap work in docs/PRODUCT_ROADMAP.md, giving the business model an actual build path. Docs-only; no code or behavior change.

Both features are built on the already-shipped Organizer trust pipeline (rule-attributed exportable audit landed in #96) and both stay local-first — policy packs and compliance exports are files the user owns, no cloud required.

Trust & safety

  • Touches files / filesystem mutation: none (docs only)
  • Touches OS input / screenshots / network / auth / app state: none

The doc explicitly notes neither proposed feature crosses a privacy boundary in CLAUDE.md, and that what's paid is the tier, not the safety.

Changes

  • docs/PRODUCT_ROADMAP.md:
    • New §6 Audit as a compliance artifact — retention controls, tamper-evidence (hash-chained entries, offline-verifiable), per-period/per-client compliance report export, optional locally-signed export. Builds on organizer_export_audit.
    • New §7 Team policy templates — exportable/importable policy packs (Zone + rules + trust), admin-authored managed/locked policy (distribution + a lock flag; trust is already enforced server-side), and an internal shared playbook library as the local-first precursor to a marketplace.
    • Sequencing block tying it to business-model.md's build order.
    • Reconciled the "What not to build yet" list so these Organizer-wedge, local-first team/compliance features aren't confused with the still-deferred enterprise cloud sync and hosted marketplace.
  • docs/business-model.md: forward-link to the new roadmap sections.

Validation

  • Docs-only; no build/test impact. Reviewed for consistency with CLAUDE.md product identity, AGENTS.md (checklists over essays), and the shipped command surface.

Risks / follow-up

  • Scope, not commitments — §6/§7 name the work and its shape, not a schedule or final tier pricing.
  • Natural next implementation step when you're ready: retention controls + hash-chained audit entries in storage/executions.rs, since that's the smallest concrete slice of §6.

🤖 Generated with Claude Code

https://claude.ai/code/session_01Vy2Lt4hoeK6K4f8LfhWXWg


Generated by Claude Code

Fold the two first paid features from the business model into concrete
roadmap work, both built on the shipped Organizer trust pipeline and both
local-first (files the user owns, no cloud required):

- §6 Audit as a compliance artifact: retention controls, tamper-evidence
  (hash-chained entries), per-period/per-client compliance report export,
  and optional signed export — building on organizer_export_audit.
- §7 Team policy templates: exportable/importable policy packs (Zone +
  rules + trust), admin-authored managed/locked policy, and an internal
  shared playbook library as the local-first precursor to a marketplace.

Reconcile the "What not to build yet" list so these Organizer-wedge,
local-first team/compliance features are not confused with the still-
deferred enterprise cloud sync and hosted marketplace. Cross-link
business-model.md <-> PRODUCT_ROADMAP.md §6-§7.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01Vy2Lt4hoeK6K4f8LfhWXWg
@netlify

netlify Bot commented Jul 4, 2026

Copy link
Copy Markdown

Deploy Preview for muhammadghost ready!

Name Link
🔨 Latest commit e071012
🔍 Latest deploy log https://app.netlify.com/projects/muhammadghost/deploys/6a495ed8d236130008054329
😎 Deploy Preview https://deploy-preview-98--muhammadghost.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@vercel

vercel Bot commented Jul 4, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
ghost Ready Ready Preview, Comment Jul 4, 2026 7:28pm

@mohabbis mohabbis marked this pull request as ready for review July 4, 2026 19:29
@mohabbis mohabbis merged commit be12c64 into master Jul 4, 2026
19 checks passed

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: e07101205c

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread docs/PRODUCT_ROADMAP.md
Comment on lines +138 to +140
- **Tamper-evidence** — hash-chain audit entries (each run references the prior
run's hash) so the log is provably append-only and verifiable offline. Local,
no network.

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Avoid overstating hash-chain tamper evidence

When the verifier only has the local log or export, a hash chain without a trusted checkpoint or signature only proves internal consistency: someone who can edit the stored audit rows can rewrite old entries and recompute every later hash, and offline verification will still pass. Since this section is defining a compliance feature that auditors can rely on, either require a signed/anchored head hash/checkpoint for this guarantee or soften the claim to tamper-evident relative to a trusted prior digest.

Useful? React with 👍 / 👎.

Comment thread docs/PRODUCT_ROADMAP.md
Comment on lines +270 to +272
- Enterprise **cloud** sync (the local-first, file-based policy packs and
compliance exports in §6–§7 are fine and are the paid path; a cloud relay is
an *optional* add-on, never a requirement).

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Keep boundary docs aligned for compliance exports

This carves local compliance exports out as “fine and ... the paid path,” but docs/core-boundaries.md still lists enterprise audit logs as an experimental surface that must not be treated as production-ready. Because this changes the stable/experimental boundary for audit/compliance work, contributors will get contradictory guidance unless the boundary doc is updated with this Organizer-only carve-out or this roadmap keeps the feature explicitly experimental.

Useful? React with 👍 / 👎.

Comment thread docs/PRODUCT_ROADMAP.md
Comment on lines +159 to +162
- **Managed / locked policy** — an admin-authored pack members apply but can't
silently loosen; trust levels and rules stay as the firm set them (the policy
engine already enforces trust server-side, so this is distribution + a lock
flag, not a new trust mechanism).

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Add a real authority for locked policy packs

As written, this treats distribution plus a lock flag as enough to stop members from weakening admin-authored rules, but the current Organizer surface lets any local caller add rules or change trust in the local DB and the policy engine only enforces whatever rules it loads. For the Team feature to provide the promised admin control, the roadmap should call for a signed/imported policy authority or MDM-enforced lock instead of saying this is not a new trust mechanism.

Useful? React with 👍 / 👎.

Comment thread docs/PRODUCT_ROADMAP.md
Comment on lines +120 to +125
The moat and tiered model live in `docs/business-model.md`; the business
lives in the **Team/Business** tier, sold on control, compliance, and support —
never on cloud lock-in. These are the first two paid features, both built on the
already-shipped Organizer trust pipeline (rule-attributed, exportable audit
landed in #96). Both stay **local-first**: policy packs and compliance exports
are files the user owns, distributed however the firm likes — no cloud required.

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Update the canonical product-direction docs

This section defines the first paid Team/Business features and local-first distribution path, which is a product-direction change, but the repository’s AGENTS.md documentation rules require product direction changes to update README.md and AGENTS.md in the same change. Because this commit only edits the roadmap and business model, the canonical instructions and public README still lack this paid-path carve-out and continue to give contributors a different prioritization/boundary picture.

Useful? React with 👍 / 👎.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants