Wardline 01 15 conformance

15. Conformance¶

15.1 Conformance model¶

Wardline conformance is assessed through an obligation catalog and a compliance ledger. A tool or deployment does not become conformant because its authors believe the major pieces are present, or because a release checklist looks green. It becomes conformant only when the obligations in its claimed surface are cataloged, evidenced, reviewed, and current.

An obligation is a single normative requirement drawn from Part I, Part II, or a declared governance profile. Each obligation record MUST carry:

Field	Required content
Obligation ID	Stable identifier for the requirement record
Source reference	Exact clause, criterion, profile requirement, or binding contract being claimed
Requirement summary	Plain-language summary of the obligation
Claim scope	Tool, regime, binding, profile, or rule surface to which the obligation applies
Implementation surface	Code, manifest artefact, workflow, or tool output that satisfies the claim
Evidence classes	Assessor-runnable proof needed for the obligation
Compliance state	One of the states defined in §15.6
Freshness binding	Commit, manifest hash, corpus hash, tool version, and any other evidence identity required to know whether the record is current
Reviewer metadata	Reviewer identity, review date, and independence metadata when required

Required fields for each obligation record in the compliance ledger

The obligation catalog is the source of truth. The following are derived views, not primary truth stores:

a human certification matrix
a release projection
a profile-specific compliance summary
a ship/no-ship gate

This distinction is mandatory. A matrix is useful because humans read rows. A ledger is required because assessors, automation, and future reviewers need to see the complete compliance state, including obligations that are failed, waived, stale, or not yet assessed.

Any derived view used to authorize a release MUST remain assessor-runnable. At minimum, a release-authorizing matrix or projection MUST expose:

the row or surface identifier
the claimed release scope for that row
the backing obligations
the current state or result
the current disposition or next action when the row is not green
reviewer or sign-off status
explicit not_applicable rows or states where a surface is intentionally out of scope

Catalog completeness. A regime MUST record whether its obligation catalog is complete for the claimed surface.

A catalog is complete when every obligation in the claimed Part I, Part II, and governance-profile surface has a record.
A catalog is partial when some obligations are not yet enumerated.

A regime with a partial catalog MAY make a limited, explicitly scoped claim, but it MUST NOT present that state as full compliance visibility.

Requirement ID scheme. Obligation IDs are stable repo or regime identifiers, not line numbers. A conformant regime MUST define and publish its ID scheme. For example:

P1-S6-TAINT-JOIN-ABSORBING
P2A-A3-L1-MINIMUM-CONFORMANCE
C-CRIT-7-SELF-HOSTING
G-LITE-EXCEPTION-REGISTER
R-REGIME-COVERAGE-COMPLETE

Changing evidence or implementation does not change the obligation ID. If a chapter is renumbered, the source reference changes; the obligation record does not disappear.

Reserved illustrative namespace. The following identifier forms are reserved for illustrative use in this specification and its derivatives, and MUST NOT appear on any obligation in a live compliance ledger:

Any identifier beginning with P1-S0- (chapter slot zero in the Part I family).
Any identifier beginning with C-CRIT-0- (criterion slot zero in the conformance-criterion family).
Any identifier whose first slug segment immediately after the family prefix is the literal token EXAMPLE. For the current families this means: P1-S<n>-EXAMPLE-*, P2A-A<n>-EXAMPLE-*, C-CRIT-<n>-EXAMPLE-*, G-LITE-EXAMPLE-*, G-ASSURANCE-EXAMPLE-*, G-CONTROL-EXAMPLE-*, G-RETROSCAN-EXAMPLE-*, and R-EXAMPLE-*.

Natural-language uses of the word "EXAMPLE" deeper in a slug are permitted (for example, an obligation named R-S15-WORKED-EXAMPLE-CREDIBLE is a real obligation about worked-example credibility and is not a reserved placeholder). The reservation fires only when EXAMPLE is the first slug segment after the family prefix, which is the position a deliberate placeholder would occupy.

The worked examples in §15.6.1 and §15.6.2 populate this reserved namespace so that illustrative IDs remain structurally valid under the published ID scheme while being unmistakably distinct from any live obligation. A conformant regime's ID scheme MUST either honour this reservation or declare an equivalent reserved illustrative namespace of its own, and its compliance-ledger schema MUST reject the reserved forms at validation time.

15.2 Conformance criteria¶

Ten criteria define the Wardline conformance surface. They are grouped as expressiveness, enforcement capability, and governance infrastructure.

Expressiveness

The ecosystem can express all 17 annotation groups at the function, class, field, or equivalent binding-defined location using language-native mechanisms (§7).

Enforcement capability

Pattern rule detection: the active pattern rules WL-001 through WL-006 are detected intraprocedurally within annotated bodies (§8, §9.1).
Structural verification: WL-007, WL-008, and WL-009 are enforced where their preconditions apply. A binding MAY rename or split the rules, but the framework-level obligation remains unchanged (§8.2, Part II).
Taint-flow tracking: explicit-flow taint between declared boundaries is traced for at minimum direct flows and two-hop unannotated intermediaries (§6.2, §9.1).
Precision and recall are measured, tracked, and published per measurement cell for each tool that claims enforcement (§11).
A golden corpus of labelled specimens exists and is maintained (§11), including adversarial specimens for any claimed semantic-equivalent rule coverage.
Each enforcement tool passes its own rules where applicable (self-hosting gate) (§11).
Enforcement output is deterministic SARIF v2.1.0 with the Wardline-specific property bags defined in §11.1.

Governance infrastructure

The governance model supports, at minimum, protected-file review, temporal separation, exception tracking, and annotation change tracking at the level required by the declared governance profile (§10, §15.3.2).
The Wardline manifest system (§14) is consumed by the tools that depend on it, and JSON Schema validation is performed either by that tool or by a declared Wardline-Governance tool in the same regime. A tool that relies on delegated validation MUST document that delegation.

Each criterion MUST map to one or more obligation records in the compliance ledger. Criteria are not a substitute for the finer-grained obligations they summarize.

Analysis Level 1 — Minimum Conformant Scope¶

For a regime that publishes analysis levels, criterion 4 is satisfied at level 1 only when the claimed surface matches the framework minimum exactly: direct flows plus one undecorated intermediary hop. A regime MUST NOT label that minimum as full transitive interprocedural analysis, and it MUST NOT treat deeper three-hop-or-more reasoning as part of the level-1 claim unless the published contract changes with matching ledger and corpus updates.

Analysis Level 3 — Transitive Interprocedural Scope¶

Level 3 is the stronger conformance surface for criterion 4. It is the first level that may claim transitive interprocedural inference beyond the bounded minimum, such as SCC-based or fixed-point call-graph reasoning. When a regime claims both level 1 and level 3, its corpus, ledger, and verification artefacts MUST preserve that difference rather than collapsing the two levels into a single undocumented claim.

15.3 Conformance profiles¶

The criteria above describe the full surface. Conformance profiles partition that surface into implementable slices so that partial but honest claims are possible.

15.3.1 Enforcement profiles¶

Four enforcement profiles are defined:

Profile	Minimum criteria	Typical implementer
Wardline-Core	2, 5, 6, 8, 10; and 3, 4, 7 when the tool claims structural verification, taint-aware enforcement, or self-hosting applicability	AST scanner, linter plugin, semantic rule pack
Wardline-Type	1 at the type layer for the core classification groups, plus 5 and 6 for the type-enforced surface	Type checker or checker plugin
Wardline-Governance	9 and 10	CLI orchestrator, CI policy tool, governance runner
Wardline-Full	All ten criteria	Complete regime, or a monolithic tool that truly covers the full surface

Enforcement profile definitions with minimum criteria and typical implementers

Profile rules:

A Wardline-Core tool MAY implement a declared subset of rules. Its documentation MUST name the exact rules it covers.
A Wardline-Core tool that claims semantic-equivalent coverage beyond the base syntax of a rule MUST carry matching corpus evidence for that extra claim.
Criterion 3 applies to a Wardline-Core tool when it claims WL-007, WL-008, WL-009, or binding-defined equivalents.
Criterion 4 applies to a Wardline-Core tool when its severity or detection depends on taint context.
Criterion 7 applies per tool, not once per regime.
Wardline-Full is normally a regime claim, not a marketing label for any tool that covers "most of the interesting bits."

15.3.2 Governance profiles¶

Every deployment MUST declare a governance profile in the root manifest, in SARIF run-level properties, and in its compliance ledger:

lite
assurance

Wardline Lite is the small-team and early-adopter governance profile. It requires a minimal but assessable governance surface. Lite does not relax criterion 8: run-level SARIF properties, including wardline.governanceProfile and wardline.controlLaw, remain mandatory under the general conformance criteria. The Lite-specific governance checklist is:

#	Requirement	Lite status	Assessment expectation
1	Manifest validity and current ratification	MUST	Root manifest is schema-valid and ratification age is within the declared review interval
2	Governance artefact protection	MUST	CODEOWNERS or equivalent protects `wardline.yaml`, overlays, the exception register, and any checked-in governance evidence used for sign-off
3	Exception register integrity	MUST	Every active exception records reviewer identity, rationale, and expiry
4	Temporal separation or documented alternative	MUST	Alternative is declared in the root manifest; same-actor approval is permitted only for enforcement-artefact changes and MUST carry retrospective review within the declared window; policy-artefact changes still require different-human-actor approval
5	Annotation-change review in the assessment window	MUST	Recent annotation changes were visible to and reviewed by a designated reviewer through PR history, commit review, or equivalent evidence
6	Bootstrap corpus correctness	MUST	The bootstrap corpus covers the highest-consequence claimed cells and the current tools classify those specimens correctly
7	Expedited and degraded-governance closure	MUST	Expedited exceptions are documented and retrospective review occurred; any alternate-law or direct-law window is closed by the verifiable retrospective scan required by §10.5 before release sign-off

Wardline Lite governance checklist requirements

Lite defers, but does not erase, the Assurance-level artefacts:

full fingerprint baseline with canonical hashing
full 126+ specimen corpus with the full adversarial surface
automated expedited-ratio threshold findings

Projects that do not yet compute the expedited governance ratio MUST still document their expedited approval process and review it at each manifest ratification cycle.

Wardline Assurance is the full governance profile. It strengthens Lite and adds the full governance surface:

Requirement	Assurance status
Temporal separation	MUST, no alternatives
Manifest coherence as a gate before code-level enforcement	MUST
Full golden corpus with adversarial coverage	MUST
Structured fingerprint baseline with canonical hashing	MUST
Expedited governance ratio, declared threshold, and automated findings	MUST
SIEM export of governance events	SHOULD; MUST for formally accredited systems

Wardline Assurance governance requirements beyond Lite

A deployment is assessed against the profile it declares. Lite is not "Assurance with paperwork removed." It is a narrower but still testable set of controls.

15.3.3 Governance profile graduation¶

Graduation from Lite to Assurance occurs when governance capacity and risk context justify the full surface.

Graduation triggers include:

formal security accreditation
data at PROTECTED classification or above
sustained contributor growth beyond small-team governance assumptions
operation through multiple ratification cycles with a stable Wardline program
explicit organisational risk appetite for Assurance-level controls

Before changing the declared profile from lite to assurance, the following MUST be satisfied:

The corpus has expanded from bootstrap coverage to the full rule and adversarial surface.
A structured fingerprint baseline is established and has completed at least one review cycle.
Temporal separation is operational without alternatives.
The expedited governance ratio threshold is declared and enforced.
Lite-era exceptions have been re-reviewed under Assurance expectations.

15.3.4 Bootstrap Assurance Reference¶

Bootstrap Assurance Reference (BAR) is a named sub-profile of Assurance, not a third governance profile and not a relaxation of Assurance. It exists solely to allow a reference implementation of this specification to make an honest Assurance-level claim while operating under a declared single-maintainer configuration.

BAR rests on a property-vs-mechanism distinction the specification otherwise applies only implicitly. The §15.6 "Reviewer independence" requirement exists to enforce two underlying properties:

No vested interest. The reviewer does not benefit from the claim passing.
Reproducibility. A later assessor can re-run the same review and obtain the same verdict.

The default mechanism — a second human reviewer separated in time — is the expected implementation of these two properties. BAR permits an alternative implementation with equal-or-stronger property guarantees under strictly defined conditions.

Applicability. A deployment MAY declare Bootstrap Assurance Reference if, and only if, all of the following hold and are declared in the root manifest:

The deployment is a reference implementation of the Wardline specification itself, or of a binding of this specification.
The project has a single declared human maintainer.
Independence for BAR-attested obligations is provided by an automated conformant review pipeline (the "BAR pipeline") satisfying the constraints below.
A graduation commitment is declared, with a named target date and a named graduation mechanism.
The compliance ledger surfaces the count of BAR-attested obligations as a distinct summary count.

BAR pipeline specification. The normative specification of the BAR review pipeline used by the Wardline reference implementation is docs/governance/bar-review-pipeline.md. That document defines the pipeline identity, inputs, review policy, determinism verification procedure, author-isolation requirements, evidence artefact format, and lifecycle. A reference implementation declaring BAR MUST satisfy every MUST in that document in addition to the constraints summarized below.

Where the BAR pipeline uses shared reviewer prompt-shaping assets, those assets MUST live in the versioned BAR policy tree as a named skill pack and be bound by the captured review-policy hash. Runtime-only prompt suffixes or undocumented reviewer overlays are not a conformant BAR mechanism.

In the reference implementation, the BAR pipeline is surfaced operationally through wardline bar status (active runtime identity), wardline bar review (three-run self-assessment), and wardline bar rerun (single assessor re-run against captured inputs, with binding verification and verdict comparison against the captured artefact). The governance dashboard surface, wardline regime status, MUST distinguish a manifest that merely declares BAR from one whose runner is actually loadable by exposing BAR runner readiness, the active BAR policy version, and the active BAR runtime identity block (policy hash, skill-pack identity, pinned provider/model, and timeout/retry guardrails).

A BAR self-assessment that satisfies that document's unanimity and stability requirements is represented in the compliance ledger as state: verified with reviewer_metadata.independence: bootstrap_attested. BAR therefore reuses the verified state while recording a different independence mechanism; it does not introduce a separate ledger state.

BAR pipeline constraints. The BAR pipeline MUST satisfy all of:

Named identity. A stable tool name, tool version, and review-policy hash, captured per obligation.
Determinism. Given the same inputs — commit reference, manifest hash, corpus hash, review-policy hash, and tool version — the pipeline produces the same verdict. A later assessor MUST be able to re-run the pipeline and reproduce the recorded result.
Input provenance. Every BAR-attested obligation record carries the full input identity in its freshness_binding: commit reference, tool version, manifest hash, corpus hash (when corpus evidence is involved), and the review-policy hash. A conformant BAR runner recomputes the manifest/corpus hashes from the reviewed commit snapshot rather than trusting pre-filled ledger values.
Author isolation. The BAR pipeline MUST NOT depend on any artefact produced by the implementation author within the same commit being reviewed. In particular, the review policy is versioned separately from the implementation and its hash is captured at review time.
Reviewable output. The pipeline's verdict, rationale, and input provenance are captured as a retrievable evidence artefact. Oral or transient review is not permitted. When the policy tree defines a shared reviewer skill pack, the evidence artefact also captures that skill-pack identity. In the reference implementation, persisted reviewer citations are normalized against the allowed citation token list derived from the BAR inputs rather than accepting free-form citation strings, and a pass or fail verdict with no surviving valid citation tokens is treated as insufficient_evidence. The evidence artefact also records the raw submitted citation tokens and the dropped-token list for auditability. BAR provider calls are also bounded by policy-declared timeout/retry guardrails and fail closed to insufficient_evidence when those bounds are exhausted.

Graduation commitment. The BAR graduation commitment MUST declare:

A target date by which BAR status terminates.
A graduation mechanism — either (a) onboarding a second human maintainer who re-reviews every BAR-attested obligation under the default §15.6 independence rules, or (b) a named external auditor performing independent review under the default §15.6 independence rules.
When the graduation mechanism is external audit, the declared auditor identity. The identity MAY be an organisation name (e.g., an accredited assessment body) until a specific individual is nominated, but the organisation MUST be identified at declaration time. An external_audit mechanism with no declared auditor is not a valid BAR declaration.
A graduation plan reference — a durable document, normally an ADR, stating how graduation will be conducted and verified.

A BAR-attested obligation whose graduation target date passes without re-review MUST automatically transition to stale in the compliance ledger. The coherence layer enforces this transition; the staleness is not a policy decision that can be deferred.

Graduation date changes. A BAR graduation target date MAY be changed only through a manifest ratification event under the §15.3.2 row 1 process. Each change MUST:

Be approved as a manifest ratification event with documented reviewer identity and rationale, on the same terms as any other ratified manifest field.
Append a reason-for-slip entry to the graduation plan document referenced from bootstrap_reference_declaration.graduation_plan_ref. The entry MUST record the prior target date, the new target date, the rationale for the slip, and the ratification event identifier.
Increment a slip counter (bootstrap_reference_declaration.slip_count). The counter is mandatory; the ledger schema MUST enforce monotonic non-decrease.
Satisfy a maximum slip cap. Over the lifetime of a single BAR declaration, the graduation target date MAY be changed at most two times. A third slip attempt MUST be refused by schema validation. When a project has exhausted its slip budget, the next ratification cycle MUST either complete graduation under the default §15.6 independence rules or downgrade the declared governance profile to Lite. BAR MUST NOT continue in a slip-exhausted state.

The slip counter exists to make slip history visible to assessors at a glance. A BAR declaration's slip_count is exposed in the ledger summary alongside the bootstrap_attested count, and the graduation plan document records the rationale for each slip. A project with a slip_count of 2 is, by spec, on its final graduation window — this is not a recommendation but a structural property of the schema.

The slip cap is per BAR declaration, not per project. A project that successfully graduates out of BAR and later declares a new BAR (for example, when a new binding begins its own reference implementation bootstrap) starts a fresh counter. Each BAR lifecycle is independent.

Unrelaxed Assurance MUSTs. BAR does not relax any other §15.3.2 Assurance requirement. A BAR deployment MUST still satisfy:

Manifest coherence as a blocking gate
Full golden corpus with adversarial coverage
Structured fingerprint baseline with canonical hashing
Expedited governance ratio threshold, declared and enforced
SIEM export (SHOULD in general; MUST for formally accredited systems)
Temporal separation across commits — satisfied trivially in a single-actor workflow because commits are separated in time. The only constraint BAR addresses is the actor-identity requirement, and it substitutes a stricter reproducibility mechanism for the property that requirement protects.

Mutual exclusion with formal accreditation. A deployment operating under BAR MUST NOT claim formal security accreditation (IRAP or equivalent). The two statuses are mutually exclusive until graduation completes. A deployment seeking formal accreditation MUST graduate out of BAR first.

Ledger representation. A BAR deployment's compliance ledger MUST:

Carry a top-level bootstrap_reference_declaration block naming the sole maintainer, declaration date, graduation target date, graduation mechanism, graduation plan reference, and the current slip counter.
Expose a distinct bootstrap_attested count in the ledger summary, separate from the verified count, alongside the current slip_count. Summary verified counts default-independence human verifications only; it MUST NOT fold BAR substitutions into the same count.
Record, on every BAR-attested obligation, the review pipeline name, pipeline version, review-policy hash, graduation target date, and graduation mechanism in reviewer_metadata.
Use the independence value bootstrap_attested on those obligations. No other independence value MAY be used to represent BAR.
Reject (at schema validation time) any attempt to set bootstrap_reference_declaration.slip_count above 2, or to decrease the counter, or to omit it when BAR is declared.

Deterministic review inputs. A BAR runner MUST resolve the obligation's source_refs to deterministic clause excerpts and MUST execute every required evidence class or fail closed to insufficient_evidence/refer. BAR does not permit ad-hoc source slicing, silent evidence skipping, or "best effort" passes.

What BAR is not. BAR is not a "Lite plus" configuration. It is not a general escape hatch for projects that find default Assurance inconvenient. It is not available to production deployments that are not reference implementations. A deployment that does not satisfy clause 1 of the applicability list MUST NOT declare BAR; its options are Lite or default Assurance.

The spec admits BAR because the alternative — requiring every reference implementation of this specification to fabricate a second maintainer or to undersell itself as Lite — is dishonest or self-defeating. Naming the compromise out loud, with stricter reproducibility constraints than the default allows and a hard graduation deadline, is the only intellectually defensible position.

15.4 Enforcement regimes¶

An enforcement regime is the set of tools that collectively enforce a Wardline deployment for a language ecosystem.

An enforcement regime is conformant only when all of the following hold:

Coverage completeness. Every required criterion is mapped to at least one tool and at least one obligation record.
Rule coverage completeness. The union of the regime's rule-implementing tools covers the full claimed rule surface.
Catalog completeness visibility. The regime states whether its obligation catalog is complete for the claimed surface.
Corpus union. The union of tool-specific corpora satisfies the minimum measurement and coverage obligations for the claimed surface.
SARIF aggregation. Multi-tool regimes produce a SARIF log or equivalent aggregated evidence set that preserves per-tool provenance.
Per-tool self-hosting. Every tool that analyses code in its own implementation language passes the rules it claims.

The regime documentation MUST identify:

the tools in the regime
the profile claimed by each tool
the rules or enforcement surface each tool owns
the criteria each tool satisfies
the obligation ID ranges or obligation sets each tool owns
any remaining gaps, waived obligations, stale evidence, or compensating controls

The regime documentation is the assessor's map. It is not optional explanatory material.

15.5 Supplementary group enforcement scope¶

Criterion 1 requires that the binding can express all 17 annotation groups. Criteria 2 through 8 do not require uniform enforcement depth for supplementary groups 5 through 15.

This distinction is mandatory in the compliance ledger and in any derived matrix:

supplementary groups with active enforcement MUST appear as explicit obligations or explicit rows
supplementary groups that are expressiveness-only MUST be marked as such
a regime MUST NOT imply enforcement coverage for supplementary groups it has not actually specified and measured

This keeps incremental adoption honest. A deployment may start by enforcing the core classification surface and later add supplementary-group checks. What it must not do is silently blur "expressible" into "enforced."

15.6 Assessment procedure¶

Assessment proceeds obligation by obligation. The assessor creates or refreshes the obligation catalog before evidence collection begins.

Compliance states:

State	Meaning
`unassessed`	Assessment has not yet been completed
`implemented_no_evidence`	Claimed implementation exists, but assessor-runnable evidence is missing
`evidenced`	Evidence exists, but review or freshness checks are incomplete
`verified`	Requirement, evidence, freshness binding, and reviewer checks all align
`non_compliant`	Evidence contradicts the claim or the implementation does not satisfy the requirement
`waived`	Requirement is not met, but an explicit waiver with scope, approver, rationale, and expiry exists
`not_applicable`	Not required for the declared profile or claimed surface
`stale`	Previously evidenced or verified, but drift invalidated the record

Compliance state definitions for obligation assessment

Remediation planning is separate from compliance state. Local workflows MAY use labels such as fix-code, fix-spec, narrow-claim, or seek-waiver, but those labels MUST NOT be treated as compliance outcomes.

Step 1: Catalog completeness review

Build or refresh the obligation catalog for the claimed profile, binding, and rule surface.
Verify that every claimed criterion maps to obligation records.
Record whether the catalog is complete or partial for the claimed surface.

Step 2: Manifest validation

Run manifest schema validation against wardline.yaml and all overlays.
Verify ratification age, governance profile declaration, and required governance artefacts for the declared profile.
Mark manifest and governance obligations verified only when the manifest is both valid and current.

Step 2.5: Manifest coherence verification

Run coherence checks against manifest declarations, overlays, and code annotations.
Verify absence of orphaned annotations, undeclared boundaries, contradictory contracts, and stale bindings.
Under the Assurance profile, manifest coherence is a blocking gate.

Step 3: Golden corpus verification

Verify corpus integrity against the specimen hash manifest and the declared specification or matrix revision.
Run wardline corpus verify or the binding-equivalent corpus verifier.
Record pass/fail per specimen and per tool.
Measure precision and recall per measurement cell. Precision MUST meet the applicable minimum floor: >= 0.80 generally and >= 0.65 only for MIXED_RAW cells. Recall MUST meet the applicable minimum floor: >= 0.70 for STANDARD and RELAXED cells and >= 0.90 for UNCONDITIONAL cells.
Verify adversarial coverage: at least one adversarial_false_positive and at least one adversarial_false_negative specimen per claimed framework rule or binding-equivalent rule, plus any binding-defined suppression_interaction minimums.
Mark corpus obligations only from assessor-runnable output, never from informal spot checks.

Step 4: Enforcement execution

Run the regime against the target codebase.
Verify required SARIF properties and any other mandated output metadata.
Verify that the release-signoff run reports wardline.controlLaw: "normal". Release sign-off MUST NOT be taken from alternate-law or direct-law output.
If any alternate-law or direct-law window occurred after the last accepted normal-law run, verify that the first returning normal-law run carries wardline.retroactiveScan: true and the matching retrospective-scan range.
Re-run the same inputs and verify deterministic output in verification mode.
Confirm that findings, declared gaps, claimed profile, and claimed release surface match the compliance ledger.

Step 5: Governance artefact review

Inspect CODEOWNERS or equivalent review protection.
Inspect exception registers, fingerprint baselines, retrospective reviews, and expedited governance evidence.
Verify that governance artefacts match the declared profile, that any Lite alternatives are documented, and that any degraded-window retrospective review is closed before release sign-off.

Step 6: Self-hosting verification

For each applicable tool, run the tool against its own source.
Record pass/fail by tool, not just once for the regime.
Define the self-hosting gate in explicit SARIF or equivalent output terms.
Document exemptions explicitly when a tool is implemented in a different language or performs governance-only work.

Release-critical gate checks

Gate	Pass condition	Fail condition
Claimed release surface is explicit	Release projection names the claimed profiles, required rule surface, active binding-specific rows, and explicit out-of-scope rows	Claimed profile or scope is ambiguous
Derived release projection is runnable	Release matrix exposes row identifier, scope, backing obligations, state, next action, reviewer status, and explicit `not_applicable` rows	Release matrix is only a catalogue or summary
Self-hosting gate passes	Zero findings where `wardline.severity` is `"ERROR"` and `wardline.excepted` is `false` for a scan of the tool's own source (§11, property 2)	Any unexcepted ERROR finding exists, including `TOOL-ERROR`
Corpus verification is current	Corpus integrity is verified, per-cell floors are met, and required adversarial/suppression-interaction minima are present	Integrity, floor, or minimum-coverage checks fail
Control law is normal for sign-off	Release-signoff run reports `wardline.controlLaw: "normal"`	Sign-off relies on alternate-law or direct-law output
Retrospective scan closure is verifiable	Any degraded window is closed by the first returning normal-law run with `wardline.retroactiveScan: true` and matching range	Required retrospective scan is missing or unbounded
Lite or Assurance governance checklist passes	Every item in the declared governance-profile checklist is evidenced for the assessment window	Any checklist item is missing, undocumented, or stale

Release-critical gate checks with pass and fail conditions

Freshness binding. A verified, waived, or stale obligation MUST bind to the evidence identity required to know whether it is current. For code-scoped claims this normally includes:

commit reference
tool version
manifest hash
corpus hash, if corpus evidence is involved
input hash or equivalent run identity, if scan output is involved
evidence artefact identifiers or hashes

If the implementation surface or any bound evidence input changes without re-verification, the obligation becomes stale.

Reviewer independence. Every verified or waived obligation MUST record the reviewer identity and review date. For Assurance-profile claims, and for any formally accredited claim, the record MUST also identify whether the reviewer is independent of the implementation author for that obligation.

The default mechanism for satisfying independence is a second human reviewer separated in time. A deployment operating under §15.3.4 Bootstrap Assurance Reference MAY substitute an automated conformant review pipeline under the constraints declared in §15.3.4; the substitution is available only to reference implementations of this specification and only with a declared graduation commitment. A formally accredited deployment MUST NOT use the BAR substitution. The underlying property requirements — no vested interest in the claim passing, and reproducibility of the review by a later assessor — apply to both mechanisms.

Derived views. After the ledger is current, the regime MAY generate:

a certification matrix for human review
a release projection
a profile-specific compliance summary
a ship/no-ship gate

Those views MUST be reproducible from the ledger. They MUST NOT hide failed, waived, stale, or unassessed obligations.

Where a derived view is used for release authorization, it MUST also expose the row state, current disposition or next action, reviewer status, and explicit not_applicable rows or states for intentionally unclaimed surfaces.

15.6.1 Worked example: ledger excerpt¶

The following excerpt is an illustrative, non-factual example that shows the minimum shape of a useful compliance ledger. Every identifier in this table is a placeholder drawn from the §15.1 reserved illustrative namespace (P1-S0-*, C-CRIT-0-*, *-EXAMPLE-*) and does not refer to any real Wardline obligation. The states shown are chosen pedagogically — one per meaningful state value — so that a reader can see what each state looks like in context. This example is not evidence about any live ledger and makes no factual claim about the current compliance posture of the reference implementation or any other regime.

Obligation ID	Source	Summary	State	Freshness binding
`C-CRIT-0-EXAMPLE-MEASUREMENT`	illustrative §15.2 row	Per-cell precision and recall are published (illustrative)	`non_compliant`	corpus hash + conformance report
`P1-S0-EXAMPLE-JOIN-ALGEBRA`	illustrative Part I clause	Taint propagation preserves the normative join algebra (illustrative)	`verified`	commit + taint-flow corpus evidence
`C-CRIT-0-EXAMPLE-DETERMINISM`	illustrative §15.2 row	Verification-mode SARIF is deterministic (illustrative)	`stale`	prior input hash no longer matches current scan inputs
`G-LITE-EXAMPLE-EXCEPTION-REGISTER`	illustrative §15.3.2 row	Lite exception register requirements are satisfied (illustrative)	`waived`	manifest hash + exception register review + waiver record

Illustrative compliance ledger excerpt showing mixed compliance states

This example is intentionally mixed-state. A useful ledger shows the full truth, not only the green entries — an assessor reading a real ledger should expect to see verified, non_compliant, stale, waived, not_applicable, unassessed, evidenced, and implemented_no_evidence entries side by side. The four rows above cover one verified, one non_compliant, one stale, and one waived entry so that the shape of each of the most commonly-confused states is visible; the remaining four states are defined in §15.6 and follow the same record structure.

15.6.2 Worked example: release projection¶

A release projection is derived from obligation records. The table below is an illustrative, non-factual example. Every obligation identifier and every row label is drawn from the §15.1 reserved illustrative namespace and does not refer to any real Wardline obligation or to any real release. The outcomes shown are chosen pedagogically so that a reader can see what a green, a blocked, and a not_applicable row look like when derived from backing obligations.

Release row	Backing obligations	Result
Claimed surface and profile (illustrative)	`R-EXAMPLE-CLAIM-SURFACE`	`green` only if the claimed profiles, active rows, and out-of-scope rows are explicit
Manifest and governance (illustrative)	`G-LITE-EXAMPLE-EXCEPTION-REGISTER`, `C-CRIT-0-EXAMPLE-GOVERNANCE-MINIMUMS`	`green` only if all applicable obligations are `verified` or `not_applicable`
Pattern rules and corpus (illustrative)	`C-CRIT-0-EXAMPLE-MEASUREMENT`, `C-CRIT-0-EXAMPLE-CORPUS`	`blocked` if any obligation is `non_compliant`, `waived`, `stale`, or missing required adversarial minima
SARIF and control law (illustrative)	`C-CRIT-0-EXAMPLE-DETERMINISM`, `G-CONTROL-EXAMPLE-LAW-NORMAL`	`blocked` until determinism evidence is current and sign-off occurs under normal law
Self-hosting (illustrative)	`C-CRIT-0-EXAMPLE-SELF-HOSTING`	`blocked` until the per-tool gate is explicitly defined and satisfied
Out-of-scope binding-specific row (illustrative)	`R-EXAMPLE-RELEASE-PROJECTION`	`not_applicable` when the release scope excludes the row and the exclusion is named explicitly

Illustrative release projection showing obligation-derived row outcomes

The release view is therefore a query over the ledger, not a second system of truth. As in §15.6.1, these rows make no factual claim about any real release: they illustrate how a release-authorizing projection MUST map backing obligations onto green, blocked, and not_applicable outcomes while preserving the row identifier, backing-obligation list, and next-action columns required by §15.1.

15.6.3 Navigating to Part II¶

Part I defines the framework-level contract. Part II maps that contract to each language ecosystem. The binding reference names the tools in the regime, defines binding-specific rule identifiers, and provides the regime composition material an assessor uses in Step 1.

When a binding statement conflicts with this chapter, Part I governs. When a binding adds stricter obligations for its own rule surface, both the binding and this chapter apply.

15.7 Partial conformance¶

Partial conformance is expected during adoption, but it must be explicit.

A tool or regime is partially conformant when one or more applicable obligations are unassessed, implemented_no_evidence, evidenced, non_compliant, waived, or stale, or when the catalog itself is partial for the claimed surface.

Partial conformance is legitimate only when the documentation clearly states:

which profiles are claimed
whether the obligation catalog is complete or partial for the claimed surface
which rules are implemented
which obligations remain unverified, non-compliant, waived, or stale
which compensating controls, if any, are in place

What partial conformance does not permit is aspirational language. A tool that hopes to satisfy Wardline-Core after future work is not Wardline-Core today. A release projection that looks green while the obligation ledger is partial, stale, or non-compliant is not a conformant release.