NOT AUTHORIZATION - structural validation evidence only

trc_20260428193100_cd84be11

NOT AUTHORIZATION - current runtime validation failed: missing_boundary_trust_state_on_trust_positive_resume.

This stored trace shows the minimal DBaD vertical-slice object returned by the evaluator pipeline. It is intentionally compact: action summary, state layers, trust posture, verification posture, constraint flags, and reasoning summary.

Back to recent traces Open API response

Version: 13 · Created: 32d ago 2026-04-28T19:31:00Z · Updated: 32d ago 2026-04-28T19:31:54Z · Review status evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-d5294d8e3a6de9da4d8afcf9 - not permission · Expected evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-9f498021a0440531f0598ae5 - not permission · Outcome evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-fa8920351e0640bbfda3758d - not permission · Blind spots: 0 · Completeness evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-4105bc65f053157f41027cc6 - not permission · Escalation closure evidence: NOT AUTHORIZATION - status evidence: structural-evidence-code-v2-cf6cfc8746d52c50fd9e0c74 - not permission

Last updated: 2026-05-30 UTC

Stored DBaD trace detail

Recent traces Evaluator demo Trace API DBaD Explained

First-line authority boundary

NOT AUTHORIZATION - structural validation evidence: structural-evidence-code-v2-449e56952f0fa85ea1525509 - not permission

Trust-positive authorization: false. Certified use requires a fresh trust-continuation token verification, not copied JSON, screenshots, receipts, safe citations, or archival projections.

Operator environment: ethics_decencymeter_com_production · production · canonical · canonical_production

Headline authority binding: non_authorization_must_precede_outcome

ARCHIVAL PROJECTION ONLY: copied archival projections are compact archive metadata only. They are not safe citations, not authorization, and verify as HTTP 422 with no root ok and a bound archival verifier class.

NOT AUTHORIZATION - Current Runtime Validation Failed

Trust-positive continuation: blocked by current runtime validation.

Blocking violation: missing_boundary_trust_state_on_trust_positive_resume

Trust continuity confidence: broken

Trace JSON authority: False for trust-positive use.

Trace JSON and validation receipts are point-in-time evidence only; certified trust-positive use must call /api/v1/dbad/trust-continuation/check and verify a fresh trust-continuation token.

Stored trace fields below remain visible as history. They do not override the active validation result.

Action Summary

Stored scenario: Pressure-test case where the expected outcome is upheld, the observed outcome is incident, and escalation closure still approves continuation.

Stored scenario text is historical trace content. The current runtime validation state above governs trust-positive interpretation.

Preset: Contradictory Governance Trace

Domain context: agent governance

Governance profile: General Governance Profile

State Layers

  • Local: allow · Allow
  • Systemic: none_reported · None reported
  • Effective: escalate · Escalated

This effective state reflects the latest recorded operator transition in the minimal system slice.

Trust and Verification

Trust inheritance: Blocked by current runtime validation.

Blocking violation: missing_boundary_trust_state_on_trust_positive_resume

Verification posture: Verification recorded: approved.

Outcome Status

Expected outcome: upheld

auditor_pressure · 32d ago 2026-04-28T19:31:12Z

Expectation intentionally left optimistic before an incident outcome is recorded.

Current outcome: incident

Outcome status records the observed outcome, not proof of correctness.

Recorded before outcome. Not evaluated by the system.

Expectation vs Outcome
  • Expected = upheld
  • Observed = incident

Declared Blind Spots

Total declared: 0

Declared blind spots record known limits of the trace. They do not prove that all omissions were disclosed.

No blind spots have been declared for this trace yet.

Completeness Attestation

Current status: declared_complete

auditor_v22 · 32d ago 2026-04-28T18:12:41Z

Scope: single trace audit path from expectation through reviewed transition and observed outcome

Coverage window: 2026-04-28 audit session

Completeness attestation records what this trace claims to cover. It does not prove nothing was omitted.

Included trace refs:
  • trc_20260428193100_cd84be11
Excluded known items:
  • No cross-trace completeness claim.

Per-trace completeness claim only.

Escalation Closure

Current closure: approved_to_continue

auditor_pressure · 32d ago 2026-04-28T19:31:45Z

Closure intentionally approves continuation despite the later incident outcome.

Escalation closure records how a flagged trace was resolved. It does not prove the original decision was correct.

Historical Contamination

Status: not detected

No violation or contamination state is currently present in the stored state or transition history.

Constraint Flags

  • Continuity: No explicit continuity concern surfaced.
  • Verifier independence: No explicit verifier-independence concern surfaced.
  • Trajectory: No explicit trajectory concern surfaced.

Reasoning Summary

Stored reasoning reflects the trace record at capture time. It is suppressed here because current runtime validation fails.

Governing summary: Current runtime validation blocks trust-positive continuation.

Next step: Resolve or remediate the blocking validation violation before treating this trace as trust-continuable.

  • Purpose: contradictory signal pressure test.
  • Expected outcome remains upheld.
  • Observed outcome is incident.
  • Escalation closure still approves continuation.
  • Evidence and completeness remain otherwise clean.

Stored Operator Actions, Not Trust Authorization

This section describes vertical-slice stored-event controls. It is not DBaD approval, trust-positive authorization, or permission to rely on copied trace JSON.

trust_positive_authorization: false

Certified trust-positive use requires /api/v1/dbad/trust-continuation/check and a fresh token under the current lineage snapshot.

Stored operator controls:

  • Verify: Stored operator control available while the trace remains open.
  • Transition: Stored operator control available under the current stored verification and state posture; not trust-positive authorization.

Blocked trust or operator actions:

  • Trust-positive continuation: Blocked until current runtime validation failures are resolved.

Why actions are blocked:

  • Current runtime validation fails: missing_boundary_trust_state_on_trust_positive_resume.

Additional concerns:

  • Escalation closure approved continuation, but that does not certify correctness.
  • Expected outcome was recorded before later observation. DBaD does not evaluate whether that expectation was wise.
  • Completeness attestation declared complete coverage for the stated scope, but DBaD does not verify that claim.
  • Evidence reference recorded for the latest transition.

Next step: Use to inspect whether profiles overweight or underweight outcome mismatch alone.

Trace Validation

Current runtime validation is evaluated on page load against the active core rule set. The button re-runs the same API check.

Validation is a point-in-time receipt. Re-run validation before any trust-positive use; copied JSON, screenshots, or cached responses are not standing approval.

Deterministic validation checks the current core rule set only: verification independence, actor continuity, trust trajectory, propagation integrity, expected-outcome ordering, completeness-attestation shape, state-transition-evidence shape, boundary-trust-state shape, historical-contamination visibility, and escalation-closure resume rules when applicable. Declared blind spots and incomplete completeness statuses are surfaced as metadata or advisories, not automatic failures.

/api/v1/dbad/validate Validation docs

NOT AUTHORIZATION - Validation result: Trace failed 1 deterministic validation check(s).

  • NOT AUTHORIZATION: rule results are structural validation evidence only, not trust-positive permission.
  • verification_independence: pass - not authorization
  • actor_continuity: pass - not authorization
  • trust_trajectory: pass - not authorization
  • propagation_integrity: pass - not authorization
  • expected_outcome_order: pass - not authorization
  • completeness_attestation: pass - not authorization
  • state_transition_evidence_presence: pass - not authorization
  • boundary_trust_state_presence: fail - not authorization
  • trust_positive_boundary_state: fail - not authorization
  • escalation_closure: pass - not authorization
  • historical_contamination_visibility: pass - not authorization
  • cross_trace_lineage_integrity: pass - not authorization
  • resource_lineage_integrity: pass - not authorization
  • coverage_trace_exposure: pass - not authorization
  • governing_intent_coverage_alignment: pass - not authorization
  • trace_reliance_integrity: pass - not authorization
  • lineage_depth_limit: pass - not authorization
  • zero_trust_reset_integrity: pass - not authorization
  • reset_boundary_continuity: pass - not authorization
  • violation: missing_boundary_trust_state_on_trust_positive_resume
  • advisory: missing_boundary_trust_state
  • advisory: trust_positive_resume_missing_boundary_trust_state
  • trust_continuity_confidence: broken
  • validation_receipt_id: val_7c0755218fc955211af90bcc
  • trust_lineage_blocked: true
  • trust_lineage_block_source: same_trace
  • reset_continuity_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d
  • validated_at_utc: 2026-05-31T00:16:16Z
  • validation_fresh_until_utc: 2026-05-31T00:31:16Z
  • requires_revalidation_before_trust_positive_use: true
  • current_validation_status: NOT AUTHORIZATION - validation evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission
  • validation_status_class: NOT AUTHORIZATION - validation class evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission
  • validation_status_class_semantics: structural_validation_evidence_only_not_authorization
  • validation_status_class_authoritative_for_trust_positive_use: false
  • validation_status_class_deprecated_for_authorization: true
  • validation_outcome_class: NOT AUTHORIZATION - structural validation evidence: structural-evidence-code-v2-449e56952f0fa85ea1525509 - not permission
  • validation_outcome_class_semantics: structural_validation_evidence_only_not_authorization
  • validation_outcome_class_authoritative_for_trust_positive_use: false
  • authorization_status_hard: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-db0367391717466e7db5ea26
  • non_authorization_core_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-f3664397fc9c559be5ddaad9
  • headline_authority_binding: non_authorization_must_precede_outcome
  • minimum_safe_fields: authorization_status_hard, non_authorization_core_status
  • required_bundled_fields: trace_id, current_validation_status, validation_status_class, validation_class, validation_summary, current_validation_status_token, current_validation_status_token_authority_binding, current_validation_status_token_display_safe, current_validation_status_token_machine_only, validation_status_class_token, validation_status_class_token_authority_binding, validation_status_class_token_display_safe, validation_status_class_token_machine_only, validation_outcome_class, validation_outcome_class_token, validation_outcome_class_token_authority_binding, validation_outcome_class_token_display_safe, validation_outcome_class_token_machine_only, current_validation_status_value_authority_binding, validation_status_class_value_authority_binding, validation_outcome_class_value_authority_binding, validated_at_utc, validation_fresh_until_utc, validation_receipt_id, validation_epoch, trace_validation_version, headline_authority_binding, operator_env_id, operator_env_scope, operator_env_authority_level, operator_env_state_hash, provenance_class, violations, advisory_notes, authorization_status_hard, non_authorization_core_status
  • bundling_hash: bundle_c56275e172be4a9669cd8eca08ca209a
  • bundling_scope: full_validation_semantics_v2
  • bundled_semantic_fields: trace_id, current_validation_status, validation_status_class, validation_class, validation_summary, current_validation_status_token, current_validation_status_token_authority_binding, current_validation_status_token_display_safe, current_validation_status_token_machine_only, validation_status_class_token, validation_status_class_token_authority_binding, validation_status_class_token_display_safe, validation_status_class_token_machine_only, validation_outcome_class, validation_outcome_class_token, validation_outcome_class_token_authority_binding, validation_outcome_class_token_display_safe, validation_outcome_class_token_machine_only, current_validation_status_value_authority_binding, validation_status_class_value_authority_binding, validation_outcome_class_value_authority_binding, validated_at_utc, validation_fresh_until_utc, validation_receipt_id, validation_epoch, trace_validation_version, headline_authority_binding, operator_env_id, operator_env_scope, operator_env_authority_level, operator_env_state_hash, provenance_class, violations, advisory_notes, authorization_status_hard, non_authorization_core_status
  • human_readable_bundle_fingerprint_safe_display: NOT AUTHORIZATION - display projection of semantic bundle; raw fingerprint is copy-only structural evidence, not authorization. current_validation_status_human_readable="NOT AUTHORIZATION - validation evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission"; validation_status_class_human_readable="NOT AUTHORIZATION - validation class evidence: structural-evidence-code-v2-37a279564397f28ba9e516ac - not permission"; validation_outcome_class_human_readable="NOT AUTHORIZATION - structural validation evidence: structural-evidence-code-v2-449e56952f0fa85ea1525509 - not permission"; validation_summary_human_readable="NOT AUTHORIZATION - Trace failed 1 deterministic validation check(s)."
  • served_hardening_round: round47_irreversible_status_evidence_code_v1
  • safe_citation_v1_accepted: false
  • representation_class: NOT_AUTH::not_authorization_class_evidence_for_structural-evidence-code-v2-4b6281bdaff6152911951d90
  • representation_compliant: true
  • trust_authorization_class: not_authorized
  • approval_inference_forbidden: true
  • validation_class: failed
  • trace_json_authoritative_for_trust_positive_use: false
  • validation_receipt_authoritative_for_trust_positive_use: false
  • trust_positive_authorization: false
  • accepted_as_authorization: false
  • accepted_by_trust_continuation_check: false
  • requires_trust_continuation_token_for_authorization: true
  • trust_positive_use_requires_fresh_check: true
  • trust_continuation_token_required_for_certified_use: true
  • token_verification_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-6abac15883fd97522f2ad648
  • trust_positive_use_contract: Trace JSON and validation receipts are point-in-time evidence only; certified trust-positive use must call /api/v1/dbad/trust-continuation/check and verify a fresh trust-continuation token.
  • lineage_snapshot_hash: d17feecba93125bcdb20683e704a84e3c67ed971b32130488618bbf56b1648ad
  • validation_epoch: f35e6b77fe3face44063371f5c95a04e021ab6e73f609eb6fa3aa6f9245c4515
  • trace_validation_version: f35e6b77fe3face44063371f5c95a04e021ab6e73f609eb6fa3aa6f9245c4515
  • operator_env_version: op_env_c7b3ac7c75ba0fd9
  • operator_env_state_hash: op_env_c7b3ac7c75ba0fd9
  • operator_env_id: ethics_decencymeter_com_production
  • operator_env_scope: production
  • operator_env_authority_level: canonical
  • provenance_class: canonical_production
  • lineage_validation_mode: live
  • lineage_traversal_depth: 0
  • resource_identity_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-5634efc3d6865f95dd056fbb
  • reliance_scope: none
  • reliance_mode: none
  • reliance_declaration_mode: not_applicable
  • reliance_contribution_to_outcome: none
  • reliance_outcome_note: No reliance contribution is claimed for this validation outcome.
  • reliance_snapshot_hash: 094bce68c022096865dfbd742fac7bd4ada3b8ac97f475f5ea3348516f67ade2
  • reliance_set_integrity: true
  • reliance_success_is_trust_positive_inheritance: false
  • zero_trust_reset_state: not_applicable
  • zero_trust_reset_verifier_registry_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d
  • zero_trust_reset_evidence_availability_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d
  • depends_on_trace_refs: trc_20260428193100_cd84be11
  • resource_continuity_status: NOT_AUTH::not_authorization_status_evidence_for_structural-evidence-code-v2-9fe83342e4f64584edcdfd9d

Operator Controls

These write forms are vertical-slice operator controls for appending stored events. They are not proof that a trace is trust-positive consumable. Use the current validation block and /api/v1/dbad/trust-continuation/check before any certified trust-positive use.

Proof mode warning: this trace currently fails runtime validation, so operator mutation availability must not be quoted as trust permission.

Add Verification

Minimal vertical-slice action only. This appends one verification event to the trace and updates the visible verification posture.

Verification API: /api/v1/dbad/traces/trc_20260428193100_cd84be11/verification

Add Transition

Minimal vertical-slice transition only. This appends one transition event and updates the stored effective/review state where appropriate.

Boundary trust fields are optional for ordinary legacy transitions, but required for trust-positive continuation after escalation or historical contamination. If any are supplied, they must form a paired prior-exit/receiver-entry record.

Transition API: /api/v1/dbad/traces/trc_20260428193100_cd84be11/transition

Evidence references are not verified by DBaD.

Update Outcome

Manual only. This records what was later observed without treating it as proof of safety or correctness.

Outcome API: /api/v1/dbad/traces/trc_20260428193100_cd84be11/outcome

Record Expected Outcome

Expected outcome has already been recorded for this trace and is now fixed.

Add Blind Spot

Use this to record known non-coverage or scope limits without claiming DBaD can detect every omission.

Blind spot API: /api/v1/dbad/traces/trc_20260428193100_cd84be11/blind-spots

Update Completeness Attestation

Record what this trace claims to cover without implying DBaD can prove that claim is true or exhaustive.

Completeness API: /api/v1/dbad/traces/trc_20260428193100_cd84be11/completeness-attestation

Record Escalation Closure

Use this only to record how an escalated or flagged trace was resolved. It does not certify that the original decision was correct.

Escalation closure API: /api/v1/dbad/traces/trc_20260428193100_cd84be11/escalation-closure

Verification History

  • approved by validator_clean
    33d ago 2026-04-27T14:38:06Z
    Low-risk continuation remains within the prior trusted context.

Transition History

Evidence references are not verified by DBaD.

  • escalate by auditor_pressure
    32d ago 2026-04-28T19:31:18Z
    Escalation recorded before contradiction review.
    State transition evidence
    Before: state:contradiction-v1
    After: state:contradiction-v2
    Evidence: artifact:contradiction-log-1
    Hash: sha256:11061d5c04806dac8afd04a66652910ca7ecfafc4ffcad971f5f8d3c828062b2
    Boundary trust state: not recorded
  • mark_reviewed by auditor_pressure
    32d ago 2026-04-28T19:31:54Z
    Reviewed with explicit evidence even though the outcome later contradicts expectation.
    State transition evidence
    Before: state:contradiction-v2
    After: state:contradiction-v3
    Evidence: artifact:contradiction-log-2
    Hash: sha256:d80857955eab3d802489e45195cbd038ce832c36bd1e45d915322450df406f92
    Boundary trust state: not recorded

Outcome History

  • incident after unknown
    32d ago 2026-04-28T19:31:50Z
    reviewer: auditor_pressure
    Observed outcome intentionally contradicts the earlier expected outcome.

Completeness Attestation History

  • declared_complete by auditor_v22
    32d ago 2026-04-28T18:12:41Z
    Scope: single trace audit path from expectation through reviewed transition and observed outcome
    Coverage window: 2026-04-28 audit session
    Included refs: trc_20260428193100_cd84be11
    Excluded known items: No cross-trace completeness claim.
    Per-trace completeness claim only.

Escalation Closure History

  • approved_to_continue by auditor_pressure
    32d ago 2026-04-28T19:31:45Z
    Closure intentionally approves continuation despite the later incident outcome.

State History

  • initial_evaluation allow
    32d ago 2026-04-28T19:31:00Z
    review: unreviewed · trace: open
  • manual_transition escalate
    32d ago 2026-04-28T19:31:18Z
    review: escalated · trace: open
  • escalation_closure escalate
    32d ago 2026-04-28T19:31:45Z
    review: escalated · trace: open
  • manual_transition escalate
    32d ago 2026-04-28T19:31:54Z
    review: reviewed · trace: open