docs(specs): high-value implementation proposal from .specs/ review

[glassBead-tc]

What

Adds .specs/HIGH-VALUE-IMPLEMENTATION-PROPOSAL.md — a review of the entire .specs/ corpus (171 files, 33 directories) and a prioritized plan for the ideas I judge highest value, with explicit reasoning for each choice.

How it was produced

• Full read of .specs/, digested by six parallel exploration passes grouped by cluster (peer-notebooks/code-mode, auditability/observatory, cognitive-harness/gateway, autonomy/eval/QD, governance/DGM/security, infra/ops/finalstretch).
• Every "highest value" claim cross-checked against current source under src/, apps/web/, supabase/migrations/, infra/, and .github/workflows/ — not spec text alone. This matters because much of the corpus is stale or superseded (e.g. gateway specs vs the shipped Code Mode surface; Letta DGM specs targeting a codebase not in this monorepo).

The ranked plan

• P0 — Close the v1 "one coherent run" loop (correlation contract + failure state machine + live demo proof). The declared north star; substrate (runs table, reconciliation, web OTEL query fix) is ~80% built; remaining gap is the legibility/failure-state layer.
• P1 — Surface built-but-invisible capabilities: Knowledge Graph UI (backend populated, UI zero) + audit-manifest/structured-thought surfacing (aggregation exists in src/audit/, no UI/query API).
• P1 — Reliability: session recovery via MCP root (SPEC-SRC-006) — fixes a verified 67-thought-loss incident; small, no deps.
• P2 — Security tail: finish identity-binding-audit deferred items (A1 OAuth open redirect, latent C2) + MCP service-role sister audit.
• P2 — Harness efficiency bundle (Code Mode token/friction: CHX Update: README #1/feat: add tool annotations and LICENSE file for Smithery quality impr… #2/chore: add LICENSE to npm package files array #3 + Harness T2 defaults + deliberation/session-type audit).
• P3 — Evaluation flywheel + control-plane CI honesty gate; peer-notebook manifest lifecycle (ADR-022 Part 2).

Includes a "deliberately deprioritized" table (superseded gateway specs, wrong-target Letta DGM, long-horizon rewrites) and cheap spec-hygiene closures, each with reasoning.

Notes

Documentation-only change. Verification was factual grounding of every code citation against the repo; key claims (no /knowledge route, no binding_missing states, runs migration present, KG tables present, src/audit/manifest-generator.ts, hub routes mounted only when !isMultiTenant) were directly confirmed. No runtime/build behavior changes.

  

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
thoughtbox-web-two	Ready	Preview, Comment	Jun 3, 2026 5:26am

[supabase]

This pull request has been ignored for the connected project akjccuoncxlvrrtkvtno because there are no changes detected in supabase directory. You can change this behaviour in Project Integrations Settings ↗︎.

---

Preview Branches by Supabase.
Learn more about Supabase Branching ↗︎.