Parent: #265
Goal
Add deterministic authorization, visibility, consent, and retention policy for context and memory.
Scope
- Define context/memory scopes:
context:read_current_threadcontext:read_channel_recentcontext:read_user_recent_selfcontext:read_user_recent_anymemory:read_selfmemory:read_projectmemory:write_selfmemory:write_projectmemory:admin
- Enforce source visibility:
- whether the actor can see the original source
- whether the source can be used for the current purpose
- whether the response destination can receive the result
- Define retention defaults for thread snippets, summaries, and durable facts.
- Require confirmation or admin policy for writes to durable memory.
Acceptance criteria
- Context retrieval is denied when the actor cannot see the source.
- Private memory is not echoed into public destinations.
- Durable fact writes require explicit confirmation or admin authority.
- Retention/expiry rules are represented in code and tests.
- Policy decisions are auditable.
Parent: #265
Goal
Add deterministic authorization, visibility, consent, and retention policy for context and memory.
Scope
context:read_current_threadcontext:read_channel_recentcontext:read_user_recent_selfcontext:read_user_recent_anymemory:read_selfmemory:read_projectmemory:write_selfmemory:write_projectmemory:adminAcceptance criteria