NOT AUTHORIZATION - structural validation evidence only

trc_20260428181140_42396240

NOT AUTHORIZATION - canonical broken trace: trust-positive resume without boundary trust state. Current runtime validation failed.

This stored trace shows the minimal DBaD vertical-slice object returned by the evaluator pipeline. It is intentionally compact: action summary, state layers, trust posture, verification posture, constraint flags, and reasoning summary.

Back to recent traces Open API response

Version: 11 · Created: 32d ago 2026-04-28T18:11:40Z · Updated: 32d ago 2026-04-28T18:12:41Z · Review status evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-d5294d8e3a6de9da4d8afcf9 - not permission · Expected evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-9f498021a0440531f0598ae5 - not permission · Outcome evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-9f498021a0440531f0598ae5 - not permission · Blind spots: 1 · Completeness evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-4105bc65f053157f41027cc6 - not permission · Escalation closure evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-cf6cfc8746d52c50fd9e0c74 - not permission

Last updated: 2026-05-30 UTC

Stored DBaD trace detail

Recent traces Evaluator demo Trace API DBaD Explained

First-line authority boundary

NOT AUTHORIZATION - structural validation evidence: structural-evidence-code-v2-449e56952f0fa85ea1525509 - not permission

Trust-positive authorization: false. Certified use requires a fresh trust-continuation token verification, not copied JSON, screenshots, receipts, safe citations, or archival projections.

Operator environment: ethics_decencymeter_com_production · production · canonical · canonical_production

Headline authority binding: non_authorization_must_precede_outcome

ARCHIVAL PROJECTION ONLY: copied archival projections are compact archive metadata only. They are not safe citations, not authorization, and verify as HTTP 422 with no root ok and a bound archival verifier class.

NOT AUTHORIZATION - Current Runtime Validation Failed

Trust-positive continuation: blocked by current runtime validation.

Blocking violation: missing_boundary_trust_state_on_trust_positive_resume

Trust continuity confidence: broken

Trace JSON authority: False for trust-positive use.

Trace JSON and validation receipts are point-in-time evidence only; certified trust-positive use must call /api/v1/dbad/trust-continuation/check and verify a fresh trust-continuation token.

Stored trace fields below remain visible as history. They do not override the active validation result.

Action Summary

Stored scenario: Canonical broken trace: trust-positive resume without boundary trust state. Stored trace content predates the current enforcement pass; current runtime validation governs.

Stored scenario text is historical trace content. The current runtime validation state above governs trust-positive interpretation.

Preset: Clean Low-Risk Continuation

Domain context: agent governance

Governance profile: General Governance Profile

State Layers

  • Local: allow · Allow
  • Systemic: none_reported · None reported
  • Effective: escalate · Escalated

This effective state reflects the latest recorded operator transition in the minimal system slice.

Trust and Verification

Trust inheritance: Blocked by current runtime validation.

Blocking violation: missing_boundary_trust_state_on_trust_positive_resume

Verification posture: Verification recorded: approved.

Outcome Status

Expected outcome: upheld

auditor_v22 · 32d ago 2026-04-28T18:12:41Z

Expectation recorded before later observation.

Current outcome: upheld

Outcome status records the observed outcome, not proof of correctness.

Recorded before outcome. Not evaluated by the system.

Expectation vs Outcome
  • Expected = upheld
  • Observed = upheld

Declared Blind Spots

Total declared: 1

Declared blind spots record known limits of the trace. They do not prove that all omissions were disclosed.

  • scope_limit by auditor_v22 reviewed
    32d ago 2026-04-28T18:12:41Z
    This audit does not claim cross-trace completeness.

Completeness Attestation

Current status: declared_complete

auditor_v22 · 32d ago 2026-04-28T18:12:41Z

Scope: single trace audit path from expectation through reviewed transition and observed outcome

Coverage window: 2026-04-28 audit session

Completeness attestation records what this trace claims to cover. It does not prove nothing was omitted.

Included trace refs:
  • trc_20260428181140_42396240
Excluded known items:
  • No cross-trace completeness claim.

Per-trace completeness claim only.

Escalation Closure

Current closure: approved_to_continue

auditor_v22 · 32d ago 2026-04-28T18:12:41Z

Escalation reviewed and approved to continue.

Escalation closure records how a flagged trace was resolved. It does not prove the original decision was correct.

Historical Contamination

Status: not detected

No violation or contamination state is currently present in the stored state or transition history.

Constraint Flags

  • Continuity: No explicit continuity concern surfaced.
  • Verifier independence: No explicit verifier-independence concern surfaced.
  • Trajectory: No explicit trajectory concern surfaced.

Reasoning Summary

Stored reasoning reflects the trace record at capture time. It is suppressed here because current runtime validation fails.

Governing summary: Current runtime validation blocks trust-positive continuation.

Next step: Resolve or remediate the blocking validation violation before treating this trace as trust-continuable.

  • Latest transition: mark_reviewed by auditor_v22.
  • Latest escalation closure: approved_to_continue by auditor_v22.
  • Declared blind spot: scope_limit by auditor_v22.
  • Expected outcome: upheld by auditor_v22.
  • Latest completeness attestation: declared_complete by auditor_v22.
  • Latest verification: approved by validator_clean.
  • No blocking constraint surfaced.

Stored Operator Actions, Not Trust Authorization

This section describes vertical-slice stored-event controls. It is not DBaD approval, trust-positive authorization, or permission to rely on copied trace JSON.

trust_positive_authorization: false

Certified trust-positive use requires /api/v1/dbad/trust-continuation/check and a fresh token under the current lineage snapshot.

Stored operator controls:

  • Verify: Stored operator control available while the trace remains open.
  • Transition: Stored operator control available under the current stored verification and state posture; not trust-positive authorization.

Blocked trust or operator actions:

  • Trust-positive continuation: Blocked until current runtime validation failures are resolved.

Why actions are blocked:

  • Current runtime validation fails: missing_boundary_trust_state_on_trust_positive_resume.

Additional concerns:

  • Escalation closure approved continuation, but that does not certify correctness.
  • Expected outcome was recorded before later observation. DBaD does not evaluate whether that expectation was wise.
  • Completeness attestation declared complete coverage for the stated scope, but DBaD does not verify that claim.
  • State transition recorded without evidence reference.

Next step: Transition recorded. Trace remains available for verification or further operator action.

Trace Validation

Current runtime validation is evaluated on page load against the active core rule set. The button re-runs the same API check.

Validation is a point-in-time receipt. Re-run validation before any trust-positive use; copied JSON, screenshots, or cached responses are not standing approval.

Deterministic validation checks the current core rule set only: verification independence, actor continuity, trust trajectory, propagation integrity, expected-outcome ordering, completeness-attestation shape, state-transition-evidence shape, boundary-trust-state shape, historical-contamination visibility, and escalation-closure resume rules when applicable. Declared blind spots and incomplete completeness statuses are surfaced as metadata or advisories, not automatic failures.

/api/v1/dbad/validate Validation docs

NOT AUTHORIZATION - Validation result: Trace failed 1 deterministic validation check(s).

  • NOT AUTHORIZATION: rule results are structural validation evidence only, not trust-positive permission.
  • verification_independence: pass - not authorization
  • actor_continuity: pass - not authorization
  • trust_trajectory: pass - not authorization
  • propagation_integrity: pass - not authorization
  • expected_outcome_order: pass - not authorization
  • completeness_attestation: pass - not authorization
  • state_transition_evidence_presence: fail - not authorization
  • boundary_trust_state_presence: fail - not authorization
  • trust_positive_boundary_state: fail - not authorization
  • escalation_closure: pass - not authorization
  • historical_contamination_visibility: pass - not authorization
  • cross_trace_lineage_integrity: pass - not authorization
  • resource_lineage_integrity: pass - not authorization
  • coverage_trace_exposure: pass - not authorization
  • governing_intent_coverage_alignment: pass - not authorization
  • trace_reliance_integrity: pass - not authorization
  • lineage_depth_limit: pass - not authorization
  • zero_trust_reset_integrity: pass - not authorization
  • reset_boundary_continuity: pass - not authorization
  • violation: missing_boundary_trust_state_on_trust_positive_resume
  • advisory: missing_state_transition_evidence
  • advisory: missing_boundary_trust_state
  • advisory: trust_positive_resume_missing_boundary_trust_state
  • trust_continuity_confidence: broken
  • validation_receipt_id: val_43018b015d60a3c349a2752a
  • trust_lineage_blocked: true
  • trust_lineage_block_source: same_trace
  • reset_continuity_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d
  • validated_at_utc: 2026-05-31T00:17:04Z
  • validation_fresh_until_utc: 2026-05-31T00:32:04Z
  • requires_revalidation_before_trust_positive_use: true
  • current_validation_status: NOT AUTHORIZATION - validation evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission
  • validation_status_class: NOT AUTHORIZATION - validation class evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission
  • validation_status_class_semantics: structural_validation_evidence_only_not_authorization
  • validation_status_class_authoritative_for_trust_positive_use: false
  • validation_status_class_deprecated_for_authorization: true
  • validation_outcome_class: NOT AUTHORIZATION - structural validation evidence: structural-evidence-code-v2-449e56952f0fa85ea1525509 - not permission
  • validation_outcome_class_semantics: structural_validation_evidence_only_not_authorization
  • validation_outcome_class_authoritative_for_trust_positive_use: false
  • authorization_status_hard: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-db0367391717466e7db5ea26
  • non_authorization_core_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-f3664397fc9c559be5ddaad9
  • headline_authority_binding: non_authorization_must_precede_outcome
  • minimum_safe_fields: authorization_status_hard, non_authorization_core_status
  • required_bundled_fields: trace_id, current_validation_status, validation_status_class, validation_class, validation_summary, current_validation_status_token, current_validation_status_token_authority_binding, current_validation_status_token_display_safe, current_validation_status_token_machine_only, validation_status_class_token, validation_status_class_token_authority_binding, validation_status_class_token_display_safe, validation_status_class_token_machine_only, validation_outcome_class, validation_outcome_class_token, validation_outcome_class_token_authority_binding, validation_outcome_class_token_display_safe, validation_outcome_class_token_machine_only, current_validation_status_value_authority_binding, validation_status_class_value_authority_binding, validation_outcome_class_value_authority_binding, validated_at_utc, validation_fresh_until_utc, validation_receipt_id, validation_epoch, trace_validation_version, headline_authority_binding, operator_env_id, operator_env_scope, operator_env_authority_level, operator_env_state_hash, provenance_class, violations, advisory_notes, authorization_status_hard, non_authorization_core_status
  • bundling_hash: bundle_762c5ece9e70038483b943e782386485
  • bundling_scope: full_validation_semantics_v2
  • bundled_semantic_fields: trace_id, current_validation_status, validation_status_class, validation_class, validation_summary, current_validation_status_token, current_validation_status_token_authority_binding, current_validation_status_token_display_safe, current_validation_status_token_machine_only, validation_status_class_token, validation_status_class_token_authority_binding, validation_status_class_token_display_safe, validation_status_class_token_machine_only, validation_outcome_class, validation_outcome_class_token, validation_outcome_class_token_authority_binding, validation_outcome_class_token_display_safe, validation_outcome_class_token_machine_only, current_validation_status_value_authority_binding, validation_status_class_value_authority_binding, validation_outcome_class_value_authority_binding, validated_at_utc, validation_fresh_until_utc, validation_receipt_id, validation_epoch, trace_validation_version, headline_authority_binding, operator_env_id, operator_env_scope, operator_env_authority_level, operator_env_state_hash, provenance_class, violations, advisory_notes, authorization_status_hard, non_authorization_core_status
  • human_readable_bundle_fingerprint_safe_display: NOT AUTHORIZATION - display projection of semantic bundle; raw fingerprint is copy-only structural evidence, not authorization. current_validation_status_human_readable="NOT AUTHORIZATION - validation evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission"; validation_status_class_human_readable="NOT AUTHORIZATION - validation class evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission"; validation_outcome_class_human_readable="NOT AUTHORIZATION - structural validation evidence: structural-evidence-code-v2-449e56952f0fa85ea1525509 - not permission"; validation_summary_human_readable="NOT AUTHORIZATION - Trace failed 1 deterministic validation check(s)."
  • served_hardening_round: round47_irreversible_status_evidence_code_v1
  • safe_citation_v1_accepted: false
  • representation_class: NOT_AUTH::not_authorization_class_evidence_for_structural-evidence-code-v2-4b6281bdaff6152911951d90
  • representation_compliant: true
  • trust_authorization_class: not_authorized
  • approval_inference_forbidden: true
  • validation_class: failed
  • trace_json_authoritative_for_trust_positive_use: false
  • validation_receipt_authoritative_for_trust_positive_use: false
  • trust_positive_authorization: false
  • accepted_as_authorization: false
  • accepted_by_trust_continuation_check: false
  • requires_trust_continuation_token_for_authorization: true
  • trust_positive_use_requires_fresh_check: true
  • trust_continuation_token_required_for_certified_use: true
  • token_verification_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-6abac15883fd97522f2ad648
  • trust_positive_use_contract: Trace JSON and validation receipts are point-in-time evidence only; certified trust-positive use must call /api/v1/dbad/trust-continuation/check and verify a fresh trust-continuation token.
  • lineage_snapshot_hash: 281837299e07d7fbd7f41f5b7bec70a08501e2f33a72ac72389beb01e15b980e
  • validation_epoch: 53db43bd4452c4eae3a2865e94e363c72b0776f3ecddc6bfeee0a1a9cff8522d
  • trace_validation_version: 53db43bd4452c4eae3a2865e94e363c72b0776f3ecddc6bfeee0a1a9cff8522d
  • operator_env_version: op_env_c7b3ac7c75ba0fd9
  • operator_env_state_hash: op_env_c7b3ac7c75ba0fd9
  • operator_env_id: ethics_decencymeter_com_production
  • operator_env_scope: production
  • operator_env_authority_level: canonical
  • provenance_class: canonical_production
  • lineage_validation_mode: live
  • lineage_traversal_depth: 0
  • resource_identity_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-5634efc3d6865f95dd056fbb
  • reliance_scope: none
  • reliance_mode: none
  • reliance_declaration_mode: not_applicable
  • reliance_contribution_to_outcome: none
  • reliance_outcome_note: No reliance contribution is claimed for this validation outcome.
  • reliance_snapshot_hash: 2e4daf902132635e5a11eb2737367f888b2cdc1af09608f20437196a40143358
  • reliance_set_integrity: true
  • reliance_success_is_trust_positive_inheritance: false
  • zero_trust_reset_state: not_applicable
  • zero_trust_reset_verifier_registry_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d
  • zero_trust_reset_evidence_availability_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d
  • depends_on_trace_refs: trc_20260428181140_42396240
  • resource_continuity_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d

Operator Controls

These write forms are vertical-slice operator controls for appending stored events. They are not proof that a trace is trust-positive consumable. Use the current validation block and /api/v1/dbad/trust-continuation/check before any certified trust-positive use.

Proof mode warning: this trace currently fails runtime validation, so operator mutation availability must not be quoted as trust permission.

Add Verification

Minimal vertical-slice action only. This appends one verification event to the trace and updates the visible verification posture.

Verification API: /api/v1/dbad/traces/trc_20260428181140_42396240/verification

Add Transition

Minimal vertical-slice transition only. This appends one transition event and updates the stored effective/review state where appropriate.

Boundary trust fields are optional for ordinary legacy transitions, but required for trust-positive continuation after escalation or historical contamination. If any are supplied, they must form a paired prior-exit/receiver-entry record.

Transition API: /api/v1/dbad/traces/trc_20260428181140_42396240/transition

Evidence references are not verified by DBaD.

Update Outcome

Manual only. This records what was later observed without treating it as proof of safety or correctness.

Outcome API: /api/v1/dbad/traces/trc_20260428181140_42396240/outcome

Record Expected Outcome

Expected outcome has already been recorded for this trace and is now fixed.

Add Blind Spot

Use this to record known non-coverage or scope limits without claiming DBaD can detect every omission.

Blind spot API: /api/v1/dbad/traces/trc_20260428181140_42396240/blind-spots

Update Completeness Attestation

Record what this trace claims to cover without implying DBaD can prove that claim is true or exhaustive.

Completeness API: /api/v1/dbad/traces/trc_20260428181140_42396240/completeness-attestation

Record Escalation Closure

Use this only to record how an escalated or flagged trace was resolved. It does not certify that the original decision was correct.

Escalation closure API: /api/v1/dbad/traces/trc_20260428181140_42396240/escalation-closure

Verification History

  • approved by validator_clean
    33d ago 2026-04-27T14:38:06Z
    Low-risk continuation remains within the prior trusted context.

Transition History

Evidence references are not verified by DBaD.

  • escalate by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Escalation recorded for closure audit.
    State transition evidence
    Before: state:v1
    After: state:v2
    Evidence: artifact:audit-log-1
    Hash: sha256:8ed01a76871a42864d139a3430086ead48a36317c112dd6c0c6682f95fce5739
    Boundary trust state: not recorded
  • mark_reviewed by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Post-closure trust-positive transition without evidence reference for advisory-only audit.
    State transition evidence: not recorded
    Boundary trust state: not recorded

Outcome History

  • upheld after unknown
    32d ago 2026-04-28T18:12:42Z
    reviewer: auditor_v22
    Observed outcome recorded after expectation.

Completeness Attestation History

  • partial by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Scope: single-trace audit slice
    Coverage is intentionally partial during the audit sequence.
  • not_attested by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Scope: single-trace audit slice
    Attestation withheld before final declaration.
  • declared_complete by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Scope: single trace audit path from expectation through reviewed transition and observed outcome
    Coverage window: 2026-04-28 audit session
    Included refs: trc_20260428181140_42396240
    Excluded known items: No cross-trace completeness claim.
    Per-trace completeness claim only.

Escalation Closure History

  • approved_to_continue by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Escalation reviewed and approved to continue.

State History

  • initial_evaluation allow
    33d ago 2026-04-27T14:36:29Z
    review: unreviewed · trace: open
  • verification_approved allow
    33d ago 2026-04-27T14:38:06Z
    review: verified · trace: open
  • manual_transition escalate
    32d ago 2026-04-28T18:12:41Z
    review: escalated · trace: open
  • escalation_closure escalate
    32d ago 2026-04-28T18:12:41Z
    review: escalated · trace: open
  • manual_transition escalate
    32d ago 2026-04-28T18:12:41Z
    review: reviewed · trace: open