VOLATILE: public data plane, ChatOps, sandbox, and cockpit slice

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,6 @@
+blank_issues_enabled: true
+contact_links:
+  - name: Security or secret exposure
+    url: https://github.com/ION-operations/ion-codex/security/advisories/new
+    about: Report secrets, credentials, or sensitive vulnerabilities privately.
+

.github/ISSUE_TEMPLATE/ion_work_packet.yml

@@ -0,0 +1,69 @@
+name: ION work packet
+description: Propose a bounded ION work item with proof and authority boundaries.
+title: "[ION Work] "
+labels:
+  - ion-work
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Use this for public, non-secret work proposals. GitHub issues are discussion and data-plane evidence; they do not directly become accepted ION state.
+  - type: textarea
+    id: objective
+    attributes:
+      label: Objective
+      description: What should change or be investigated?
+      placeholder: Build, fix, audit, document, or analyze a bounded ION surface.
+    validations:
+      required: true
+  - type: textarea
+    id: owner_surfaces
+    attributes:
+      label: Existing owner surfaces
+      description: List files or directories that should own this work.
+      placeholder: |
+        ION/02_architecture/...
+        ION/03_registry/...
+        ION/04_packages/kernel/...
+        ION/tests/...
+    validations:
+      required: true
+  - type: dropdown
+    id: output_type
+    attributes:
+      label: Output type
+      options:
+        - protocol/docs
+        - registry/template update
+        - bounded implementation patch
+        - tests/validation
+        - receipt/evidence
+        - question/review
+    validations:
+      required: true
+  - type: checkboxes
+    id: boundaries
+    attributes:
+      label: Authority boundaries
+      options:
+        - label: This does not request production deployment.
+          required: true
+        - label: This does not request secrets, credentials, or private logs.
+          required: true
+        - label: This does not request direct push to main.
+          required: true
+        - label: This should preserve ION packet, receipt, and proof-gate principles.
+          required: true
+  - type: textarea
+    id: validation
+    attributes:
+      label: Expected validation
+      placeholder: |
+        PYTHONDONTWRITEBYTECODE=1 PYTHONPATH=ION/04_packages python3 -S -m kernel.ion_status --ion-root . --json
+        PYTHONDONTWRITEBYTECODE=1 PYTHONPATH=ION/04_packages PYTEST_DISABLE_PLUGIN_AUTOLOAD=1 python3 -m pytest ION/tests -q
+  - type: textarea
+    id: notes
+    attributes:
+      label: Notes, links, or receipts
+      description: Add non-secret context, GitHub refs, ION receipt paths, or prior discussion links.
+

.github/ISSUE_TEMPLATE/public_bug_report.yml

@@ -0,0 +1,45 @@
+name: Public bug report
+description: Report a non-sensitive problem in the public ION Codex repo.
+title: "[Bug] "
+labels:
+  - bug
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Do not include secrets, credentials, private logs, tokens, or production-only state. Use a security advisory for sensitive reports.
+  - type: textarea
+    id: summary
+    attributes:
+      label: Summary
+      description: What is wrong?
+    validations:
+      required: true
+  - type: textarea
+    id: steps
+    attributes:
+      label: Reproduction or evidence
+      description: Include commands, paths, screenshots, or public logs when safe.
+      placeholder: |
+        Command:
+        Expected:
+        Actual:
+    validations:
+      required: true
+  - type: textarea
+    id: affected_paths
+    attributes:
+      label: Affected paths
+      placeholder: |
+        ION/04_packages/kernel/...
+        ION/09_integrations/...
+  - type: checkboxes
+    id: safety
+    attributes:
+      label: Safety check
+      options:
+        - label: I did not include secrets, credentials, tokens, private logs, or production-only state.
+          required: true
+        - label: I understand this issue is public.
+          required: true
+

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,33 @@
+# Summary
+
+Describe the bounded change and the owner surfaces reused.
+
+## ION Boundaries
+
+- Production authority: false
+- Live external execution authority: false
+- Secrets or credentials included: no
+- Direct `main` push requested: no
+- Branch trust class: review | volatile / not trusted | stable promotion
+
+## Touched Paths
+
+```text
+
+```
+
+## Validation
+
+```text
+
+```
+
+## Receipts Or Evidence
+
+```text
+
+```
+
+## Notes
+
+List known blockers, skipped checks, or follow-up work.

CONTRIBUTING.md

@@ -0,0 +1,115 @@
+# Contributing
+
+This repository is public for collaboration, but ION state is still governed by
+packets, receipts, proof gates, and bounded carrier authority.
+
+## Start Here
+
+Read the public landing page first:
+
+- `README.md`
+
+Then use the docs layer for the shape of the system:
+
+- `ION/docs/README.md`
+- `ION/docs/GITHUB_BRANCHING_AND_LIVE_STATE_POLICY.md`
+- `ION/docs/ION_FUNDAMENTALS.md`
+- `ION/docs/ION_DOMAIN_GRAPH_AND_FISSION.md`
+- `ION/docs/ION_PARALLEL_SETTLEMENT.md`
+- `ION/docs/ION_PROJECT_INGESTION.md`
+- `ION/docs/TEMPLATE_LAW.md`
+- `ION/docs/CONTEXT_SYSTEM.md`
+- `ION/docs/AGENTS_ROLES_CARRIERS.md`
+
+Use the encyclopedia for broad history and architecture:
+
+- `ION/docs/encyclopedia/ION_Production_Encyclopedia_v4_0_LIVE_V96_V100_CONTEXT_SYSTEM_AND_AUTONOMOUS_LOOP_RECOVERY.md`
+
+The encyclopedia is reference material, not active runtime authority.
+
+## Before You Change Files
+
+1. Read `ION/REPO_AUTHORITY.md`.
+2. Use a scoped branch:
+   - `docs/<short-topic>`
+   - `work/<short-topic>`
+   - `agent/<short-topic>`
+   - `data-plane/<short-topic>`
+   - `volatile/live-YYYYMMDD-<short-topic>` for public live-state snapshots
+     that are useful for collaboration but not yet trusted ION state.
+3. Keep changes narrow and explain the owner surface you reused.
+4. Run the smallest meaningful validation for the change.
+5. Open a pull request with evidence.
+
+## Contribution Lanes
+
+Use the smallest lane that matches the work:
+
+| Lane | Good for |
+| --- | --- |
+| Docs | README, guides, explanation, public navigation. |
+| Kernel | Python runtime, tests, audits, gates, queue projections. |
+| Integration | MCP, browser extension, daemon, Cursor, Codex carrier surfaces. |
+| Context evidence | Receipts, work packets, queue settlement, lifecycle records. |
+| Project ingestion | Quarantine, manifests, cartography, domain partition, first context packages. |
+
+Keep public docs, runtime implementation, and active-state evidence in separate
+pull requests when possible. That makes review and future indexing cleaner.
+
+## Volatile Live Branches
+
+ION can use `volatile/*` branches to show the real local project posture to
+other humans and AI carriers. These branches may move quickly and may contain
+still-settling code, docs, and non-secret evidence.
+
+They must be labeled as:
+
+```text
+VOLATILE / NOT TRUSTED ION STATE
+```
+
+Do not treat a volatile branch as Steward acceptance, production authority, or
+runtime truth. It is visibility for collaboration. Promotion still requires the
+normal packet, proof, gate, review, and receipt path.
+
+Never commit secrets, credentials, private connector auth state, private browser
+profiles, or sensitive live tunnel material to a volatile branch. Live connector
+URLs and logs should stay local unless they are intentionally public-safe and
+useful as redacted evidence.
+
+## Pull Request Evidence
+
+Include:
+
+- objective
+- touched paths
+- validations run
+- known blockers or skipped checks
+- relevant ION packet, receipt, issue, branch, or artifact references
+
+## What Not To Submit
+
+- secrets, credentials, tokens, private browser profiles, tunnel credentials, or
+  `.env` files
+- production deployment changes unless explicitly authorized by ION policy and
+  Braden
+- broad rewrites that bypass existing architecture, registry, packet, or
+  receipt owners
+- raw AI output as accepted state without proof-gated integration
+
+## Validation Commands
+
+Useful defaults from the shell root:
+
+```bash
+PYTHONDONTWRITEBYTECODE=1 PYTHONPATH=ION/04_packages python3 -S -m kernel.ion_status --ion-root . --json
+PYTHONDONTWRITEBYTECODE=1 PYTHONPATH=ION/04_packages PYTEST_DISABLE_PLUGIN_AUTOLOAD=1 python3 -m pytest ION/tests -q
+```
+
+## GitHub Is A Data Plane
+
+GitHub issues and pull requests are collaboration surfaces. They do not grant
+runtime authority, production authority, secret authority, or Steward
+acceptance by themselves. Accepted state still requires the ION proof path:
+packet, context, template, proof-bearing return, gate, Steward decision, and
+receipt.