ci(honesty): lock 7 retired local-machine claims (phase 2)#240
Merged
operatoruplift merged 1 commit intomasterfrom Apr 28, 2026
Merged
ci(honesty): lock 7 retired local-machine claims (phase 2)#240operatoruplift merged 1 commit intomasterfrom
operatoruplift merged 1 commit intomasterfrom
Conversation
After the homepage + dashboard + auth + demo + blog honesty sweep landed across PRs #233-#239, this PR institutionalizes the changes in two places so they cannot regress silently: scripts/fabrication-rot-check.mjs: Add 6 anchored patterns (rules 14-20): | Pattern | Retired in | Phrase / location | |---|---|---| | `vault sealed[^a-zA-Z]+memory encrypted` | #235 | HeroAnimation canvas text | | `Encrypted on your computer` | #238 | /security page header | | `Your agent ran locally. Zero cloud. Zero surveillance` | #238 | /demo step-6 | | `${...} deployed locally` | #238 | /agents/builder toast | | `AES-256-GCM Encrypted` | #239 | Security card badge | | `change: ['"]Local, encrypted['"] | 'On your computer'` | #233 | /app dashboard tiles | tests/e2e/consumer-copy.spec.ts: Add 8 banned phrases to BANNED_DEV_PHRASES so the existing consumer-copy regression spec asserts they don't appear in rendered body text on /, /paywall, /pricing, /store, /login, /signup. This complements the build-time grep guards with a runtime check that catches regressions in dynamic content. Combined regression net for retired local-machine claims: - 14 fabrication-rot rules (was 10) -> 20 total rules - 8 banned phrases on consumer-copy.spec.ts asserting against rendered body innerText across 5 routes Verification: - pnpm check (4/4: copy-check, capability-check, trust-gate, fabrication-rot-check; 20 rules across 197 files) - pnpm exec tsc --noEmit (clean)
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
3 tasks
operatoruplift
added a commit
that referenced
this pull request
Apr 28, 2026
) Update the "Honesty regression net" section to accurately describe what's locked in after the local-machine claim cleanups landed in PRs #225-#240: - PR range bumped from #147-#224 to #147-#240 - consumer-copy.spec.ts banned-phrase list documented in full, including the 8 retired local-machine claims added in #240 - fabrication-rot-check.mjs documented as 20 rules (was 10), with the new local-machine patterns enumerated alongside the original retired-fabrication catalog (Gold Agent, Webacy, x402, random- vector, expires-in-30-days, fake-install) This is documentation-only — no source changes. Verifies pnpm check 4/4 still passes after the description is brought up to date.
1 task
operatoruplift
added a commit
that referenced
this pull request
Apr 29, 2026
The verification commands section had two stale claims: 1. "17 hermetic specs pass" - actual count is now 38 2. "Honesty regression net" PR range stopped at #240 Update both. The 17 new specs landed in PRs #254-#271 covering previously-untested critical lib/ paths: | PR | Module | Tests | |---|---|---| | #254 | safeLog | 16 | | #255 | errorTaxonomy | 16 | | #256 | cannedReplies | 17 | | #257 | subscription bypass | 19 | | #258 | rateLimit memory fallback | 9 | | #259 | oauth-state HMAC | 14 | | #260 | x402 pricing+canonicalJson+hashParams | 18 | | #262 | apiHelpers pure helpers | 14 | | #263 | solana-pay builders | 12 | | #264 | photon-adapter | 16 | | #265 | magicblock-adapter ER routing | 18 | | #266 | flags DEC_UI | 13 | | #267 | google-oauth-consent scope contract | 12 | | #268 | llm isRetryableError | 12 | | #269 | sns mock + name validator | 12 | | #270 | receipts ed25519 verify | 12 | | #271 | llm provider status + ProviderError | 12 | Total: 17 modules, 242 new tests. Verification: pnpm check 4/4 still passes after the edit.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
After the homepage + dashboard + auth + demo + blog honesty sweep landed across PRs #233–#239, this PR institutionalizes the changes so they cannot regress silently.
Changes
`scripts/fabrication-rot-check.mjs` (10 → 20 rules)
Added 6 anchored patterns:
`tests/e2e/consumer-copy.spec.ts`
Added 8 banned phrases to `BANNED_DEV_PHRASES` so the existing consumer-copy regression spec asserts they don't appear in rendered body text on `/`, `/paywall`, `/pricing`, `/store`, `/login`, `/signup`. This catches regressions in dynamic content that grep guards alone might miss.
Combined regression net for local-machine claims
Test plan