Home / Architecture

The Governed Signal Kernel executes substrate governance.

TraceScript is the governance language inside the Coordination OS. Every meaningful input becomes a governed signal before it can change substrate state — then product modules enforce believe, say, and do. Trunk architecture →

Governed configuration assembly

The language foundation defines execution as configuration assembly, not bare state mutation. Every signal proposes an extension; the runtime evaluates compatibility, coherence, reachability, trust, replay, and repair before substrate mutation. Full language foundation → 

raw input
  → GovernedSignal (ingest)
  → GovernanceDecision (integrity evaluate)
  → Trace + phase / influence boundary
  → ReplayReceipt
  → CoordinationState update
  → product-depth branches (memory / disclosure / action / code)
  → replay verification

Language foundation

Ten foundational documents trace TraceScript from medium-oriented programming through specs v0.1–v0.4.2 and the roadmap to constitutional agents (~21k lines). The RC1 runtime implements the enforcement trunk; the corpus defines the language tree.

Trunk architecture (Sprint 33)

Governed Signal Kernel, trace lifecycle, recovery, contradiction — COS integration corpus.

Trunk architecture →

TraceScript from the ground up

Paradigm essay (read online), specs v0.1–v0.5, and roadmap — PDF + Markdown corpus.

Explore foundation →

Medium-Oriented Programming

Start with the paradigm essay — propagate(signal, medium) and the nine language primitives.

Read online →

Evaluation pipeline

ingest signal
  → resolve region + trace
  → load substrate state
  → evaluate equations + threat
  → run 11-layer enforcement
  → decide (allow / review / quarantine / block)
  → mutate or preserve state
  → emit integrity receipt + bindings

Runtime layers

State physics

Pressure, phase, threat, and coordination modeling before enforcement runs.

Deep enforcement

Authority, policy, coherence, memory, membrane, flux, recovery — inside the transaction.

Decision + receipt

Hard decisions with tamper-evident receipts and bindings to every governance artifact.

Async workers (42)

Calibration, flux regulation, recovery, SLO monitoring, audit export — off the hot path.

Production security

API keys, rate limits, request audit, incidents, backup verification, deployment manifests.

Deployment topology

Browser / product app
  → Supabase Edge Function
  → SUBSTRATE_API_URL (Fly.io Fastify API)
  → Supabase Postgres (substrate schema)
  → Worker process (event queue)

TypeScript monorepo · Zod contracts · OpenAPI from live routes · Docker + k8s manifests · CI proof chain.

Three execution modes

Evaluate synchronously

Integrity decisions in the API path, tenant-scoped transaction.

Prove asynchronously

Workers handle drift, recovery, and evidence export without blocking trust.

Operate in production

Auth, audit, rate limits, and posture views — not bolted on later.