Generation Script: This file is generated from script(s): operations/scripts/generators/governance/reports/generate-repo-governance-status.js.
Purpose: Keep the top-level governance map aligned with the canonical registry and ownerless steady-state architecture.
Run when: Repo-governance registry, validator, helper, operational config taxonomy, or governance paths change.
Important: Do not manually edit this file; run node operations/scripts/generators/governance/reports/generate-repo-governance-status.js --write.
Repo Governance Map
This page is generated from operations/governance/config/repo-governance-surfaces.json and is the live top-level reference for the repo governance control plane.
Cutover status: retired. Canonical governance home: operations/governance.
Governed Governance Surfaces
Registered surfaces: 5. Ownerless-ready now: 4.
| Surface | Name | Type | Gate | Rollout | Ready | Canonical sources | Derived outputs | Escalation | Notes |
|---|
repo-governance-registry | Repo Governance Registry | governance-registry | pr-changed | autofix | yes | operations/governance/config/repo-governance-surfaces.json
operations/governance/config/root-governance.json
operations/governance/config/generated-artifacts.json
operations/governance/config/agent-write-governance.json
operations/governance/config/ownerless-governance-surfaces.json
operations/governance/config/governance-approval-policy.json
.github/pull_request_template.md
operations/scripts/validators/governance/pr/check-governance-approvals.js
docs-guide/repo-ops/config/repo-config-map.mdx | docs-guide/repo-ops/config/repo-governance-map.mdx
workspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.json
workspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.md
workspace/reports/repo-ops/OWNERLESS_REPO_HANDOVER_LATEST.md | auto-fix-pr | Top-level governance index for the ownerless steady-state control plane. |
root-governance | Root Governance | root-governance | pre-commit | autofix | yes | operations/governance/config/root-governance.json
docs-guide/policies/root-allowlist-governance.mdx | .allowlist
docs-guide/repo-ops/config/root-governance-map.mdx
workspace/reports/repo-ops/ROOT_GOVERNANCE_SYNC_LATEST.json
workspace/reports/repo-ops/ROOT_GOVERNANCE_SYNC_LATEST.md | auto-fix-pr | Canonical root-governance manifest under the ownerless steady-state architecture. |
generated-artifact-governance | Generated Artifact Governance | generated-artifact-governance | pr-changed | autofix | yes | operations/governance/config/generated-artifacts.json
docs-guide/policies/generated-artifact-and-hook-governance.mdx | docs-index.json
llms.txt
sitemap-ai.xml
docs-guide/repo-ops/config/root-governance-map.mdx
workspace/reports/repo-ops/ROOT_GOVERNANCE_SYNC_LATEST.json
workspace/reports/repo-ops/ROOT_GOVERNANCE_SYNC_LATEST.md
docs-guide/repo-ops/config/repo-governance-map.mdx
workspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.json
workspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.md | auto-fix-pr | Canonical generated-artifact governance manifest under the ownerless steady-state architecture. |
ownerless-governance | Ownerless Governance | ownerless-governance | pr-changed | autofix | yes | operations/governance/config/ownerless-governance-surfaces.json
docs-guide/policies/ownerless-governance.mdx
operations/governance/config/governance-approval-policy.json | | auto-fix-pr | Canonical ownerless-governance manifest under the ownerless steady-state architecture. |
github-workspace-governance | GitHub Workspace Governance | github-workspace-governance | pr-changed | migrating | no | operations/governance/config/repo-governance-surfaces.json
.github/workspace/framework-canonical.md
.github/workspace/decisions-log.mdx | docs-guide/repo-ops/config/repo-governance-map.mdx
workspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.json
workspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.md | human-review-required | .github/workspace contains classified transitional support, generated reference material, and archived design history; this prevents the whole tree from being treated as canonical runtime governance. |
Path Classes
| Class | Allowed paths | Notes |
|---|
governance-config | operations/governance/config/** | Canonical governance manifests live under operations/governance/config in the target model. |
governance-docs | docs-guide/policies/**
docs-guide/repo-ops/** | Policy prose and generated governance reference pages live under docs-guide. |
governance-runtime | operations/config/**
tools/lib/governance/**
operations/scripts/**
operations/tests/**
.githooks/**
.github/** | Ownerless runtime and enforcement paths remain active under operations/config, operations/governance, operations/scripts, and operations/tests. |
workspace-report | workspace/reports/** | Tracked governance reports and generated status outputs belong under workspace/reports. |
workspace-local | workspace/reports/_local/**
workspace/tmp/** | Local-only diagnostics, captures, and scratch outputs must stay out of repo root and canonical docs paths. |
Agent Output Classes
| Class | Default destination | Commit policy | Notes |
|---|
canonical | declared governed surface paths only | tracked | Canonical repo changes must target an admitted governed surface. |
generated | manifest-declared generated outputs only | tracked | Generated tracked outputs must be declared by a governance or artifact manifest. |
report | workspace/reports/** | task_dependent | Tracked reports are allowed only when the task explicitly calls for a committed report. |
scratch | workspace/reports/_local/** | untracked | Default destination for temporary diagnostics and ad hoc working outputs. |
capture | workspace/reports/_local/** | untracked | Screenshots, browser captures, and similar agent artifacts must remain local-only by default. |
task-state | workspace/thread-outputs/** | tracked | Session and thread state belongs in the governed workspace thread-output tree. |
forbidden | repo root or ad hoc top-level paths | forbidden | Agents must not create undeclared top-level files or folders outside admitted governance and workspace paths. |
Historical Approval Checkpoints
| Checkpoint | Label | Phase | Human approval | Trigger | Required evidence |
|---|
design-lock | Design Lock | design | yes | Before registry schema, path classes, and agent-write classes are treated as locked. | approved operations/governance taxonomy
approved registry schema
approved steady-state governance model |
first-instance-review | First-Instance Review | implement | yes | After the first thin-slice implementation and before repeating the migration pattern across additional surfaces. | first-slice generator output
first-slice validator output
targeted tests passing |
gate-escalation | Gate Escalation | iterate | yes | Before any governance rule is promoted from advisory or autofix to blocking. | baseline noise review
false-positive review
contributor impact review |
legacy-retirement | Legacy Retirement | cleanup | yes | Before retiring live bridge-mode governance sources under tools/config/runtime or deleting bridge logic. | consumer cutover proof
bridge sync validator pass
retirement inventory |
Production Approval Policy
| Policy element | Value | Notes |
|---|
manifest | operations/governance/config/governance-approval-policy.json | Production governance-sensitive PRs require GitHub labels plus PR-body evidence under the Governance Approval section. |
pr_template | .github/pull_request_template.md | Required PR body section and evidence fields for governance-sensitive changes. |
validator | operations/scripts/validators/governance/pr/check-governance-approvals.js | Changed-file PR validator enforcing labels plus PR-body evidence. |
required_labels | approval:governance-schema
approval:governance-gate
approval:workflow-governance
approval:governance-retirement | GitHub labels that act as the authoritative approval signal in CI. |
GitHub Workspace Classification
Only explicitly classified .github/workspace items should be treated as live support material. Design and audit trees are reference-only unless later promoted.
| Entry | Path | Classification | Runtime role | Future state | Notes |
|---|
workspace-framework | .github/workspace/framework-canonical.md | transitional-runtime | workflow-taxonomy-framework | promote-or-replace | Still referenced for workflow taxonomy and naming rules, but not treated as the long-term canonical governance home. |
workspace-decisions-log | .github/workspace/decisions-log.mdx | transitional-runtime | locked-workflow-decisions | promote-or-replace | Operational decisions remain live transitional support until they are promoted into canonical docs or archived. |
workspace-actions-library | .github/workspace/actions-library | generated-support | workflow-reference-library | retain-generated-support | Generated/reference workflow documentation and supporting assets used for workflow governance visibility. |
workspace-outcomes | .github/workspace/outcomes.md | design-only | visual-design-context | archive-reference | Useful design context and maps, but not an active runtime governance source. |
workspace-phase2 | .github/workspace/phase2 | design-only | pipeline-design-history | archive-reference | Pipeline design and review planning material retained for context, not as canonical runtime governance. |
workspace-design | .github/workspace/design | design-only | concern-design-research | archive-reference | Concern-level design work and research should inform future promotion decisions but does not directly govern runtime behavior. |
workspace-reports-audits | .github/workspace/reports-audits | historical-audit | audit-history | archive-reference | Historical audit packets and dependency analysis remain reference material only. |
Canonical Manifests
operations/governance/config/root-governance.jsonoperations/governance/config/generated-artifacts.jsonoperations/governance/config/agent-write-governance.jsonoperations/governance/config/ownerless-governance-surfaces.jsonoperations/governance/config/governance-approval-policy.json
Canonical Runtime Config
operations/config/content/blueprints/blueprint-mapping.jsonoperations/config/content/blueprints/blueprint-pages.jsonoperations/config/content/navigation/navigation-exclusions.jsonoperations/config/content/reports/v2-internal-report-pages.jsoperations/config/README.mdoperations/config/workspace/retention/report-retention-policy.jsonoperations/config/workspace/schemas/cleanup-manifest.schema.json
Active Governance Reports
workspace/reports/repo-ops/OWNERLESS_REPO_HANDOVER_LATEST.mdworkspace/reports/repo-ops/REPAIR_REPORT_LATEST.jsonworkspace/reports/repo-ops/REPAIR_REPORT_LATEST.mdworkspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.jsonworkspace/reports/repo-ops/REPO_GOVERNANCE_STATUS_LATEST.mdworkspace/reports/repo-ops/ROOT_GOVERNANCE_SYNC_LATEST.jsonworkspace/reports/repo-ops/ROOT_GOVERNANCE_SYNC_LATEST.mdworkspace/reports/repo-ops/SCRIPT_INVENTORY_FULL.jsonworkspace/reports/repo-ops/SCRIPT_INVENTORY_FULL.md
Rollout State Summary
| State | Surface count |
|---|
autofix | 4 |
migrating | 1 |
