Contracts

Coherence Ops governance is expressed through four contract types. Each contract is a structured, versioned artifact that travels with the decision from planning through sealing.

DTE — Decision Timing Envelope

Schema: specs/dte.schema.json · Full reference →

The DTE is the master budget and constraint contract for a decisionType. It defines:

deadlineMs — total wall-clock budget for the entire decision
stageBudgetsMs — per-stage budgets: context, plan, act, verify
freshness — TTL settings for context features (defaultTtlMs + per-feature overrides)
limits — structural guardrails: maxHops, maxFanout, maxToolCalls, maxChainDepth
degradeLadder — ordered fallback steps when budgets or freshness fail
verification — when verification is required and which methods are allowed
safeAction — blast radius ceiling and rollback requirements

DTEs are loaded from a Policy Pack at decision start and stamped onto the sealed episode.

Safe Action Contract

Schema: specs/action_contract.schema.json · Full reference →

The Safe Action Contract is the per-dispatch governance contract that must be satisfied before any tool action is executed. It encodes:

blastRadiusTier — potential impact scope: tiny / small / medium / large
idempotencyKey — ensures the action is safe to replay without side effects
rollbackPlan — how the action can be reversed: none / compensate / restore / revert
authorization.mode — auto (dispatch immediately), hitl (pause for human approval), or blocked
preconditions — declarative checks that must pass before dispatch
targetRefs — the specific resources this action will affect

The supervisor validates the contract against the DTE's safeAction constraints before allowing dispatch. If the action's blast radius exceeds blastRadiusMax or authorization is blocked, the degrade ladder is consulted.

Verification Contract

Verification is configured within the DTE (verification block) rather than as a separate JSON object. It specifies:

requiredAboveBlastRadius — blast radius tier above which verification becomes mandatory
methods — list of allowed verifier identifiers (e.g., read_after_write, invariant_check)
verifyTimeoutMs — hard timeout for the verify stage

Verifiers run after action dispatch and return pass, fail, or inconclusive. Any non-pass outcome emits a verify DriftEvent.

See: Verifiers — implementation details and scaffold reference.

DecisionEpisode

Schema: specs/episode.schema.json · Full reference →

The DecisionEpisode is not a pre-decision contract but the sealed record produced at the end of a decision cycle. It contains:

episodeId — stable unique identifier
decisionType — the type that governed this decision
Context — the feature snapshot used (with capturedAt and TTL metadata)
Policy stamp — policyPackId, policyPackVersion, policyPackHash
Degrade step — which rung (if any) was activated, and the rationale
Verification — method used, outcome, and details
sealHash + sealedAt — SHA-256 of the episode (excluding the seal field itself)

Once sealed, an episode is immutable. All downstream analysis (DLR, Coherence Ops, IRIS) derives from sealed episodes.

How the Contracts Interact

Policy Pack
    └─ DTE (one per decisionType)
            │
            ├─ stageBudgetsMs → governs each runtime stage
            ├─ freshness → gates context validity
            ├─ degradeLadder → fallback when budgets or freshness fail
            ├─ safeAction → constrains what the Action Contract may request
            └─ verification → governs when/how Verifiers run
                     │
                     └─ Safe Action Contract (one per dispatched action)
                              │
                              └─ Verified → DecisionEpisode (sealed)

Contracts vs. CERPA Primitives

The four contracts above govern decisions before they are sealed. After sealing, the outcome enters the CERPA adaptation loop — five primitives that detect drift and apply corrections:

Claim → Event → Review → Patch → Apply

Contracts constrain execution; CERPA adapts from outcomes. See CERPA for the full lifecycle.

Related Pages

DTE Schema — full DTE field reference
Action Contract Schema — full action contract field reference
Verifiers — verifier scaffolds and custom implementation guide
Episode Schema — sealed episode field reference
Policy Packs — how DTEs are packaged and versioned
Schemas — all JSON Schema specs

Σ OVERWATCH — Coherence Ops Platform • Current release: v2.1.0 • DeepSigma

Start
- Home
- Wiki Index
- Quickstart
- FAQ
Core
Schemas
FEEDS + Exhaust
- Exhaust Inbox
- FEEDS Schemas
Integrations
Reference Layer
- Manifesto
- Static Site
Ops
Excel-First
- Creative Director Suite
- Excel-First Governance
EDGE + ABP
Domain Modes
Governance
Meta

Contracts

Contracts

DTE — Decision Timing Envelope

Safe Action Contract

Verification Contract

DecisionEpisode

How the Contracts Interact

Contracts vs. CERPA Primitives

Related Pages

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!