Platform meta-workspace controller for the SocioProphet ecosystem.
Sociosphere owns the canonical workspace manifest + lock, runner semantics, protocol fixtures, deterministic multi-repo materialization, source-exposure governance, adversarial hardening critique, and validation lanes for platform build and release readiness.
- Repository topology and dependency rules — canonical source for repo roles, directionality, and the submodule update playbook.
- Naming and versioning policy — single source of truth for repo naming, SemVer discipline, and submodule pin-bump rules.
- Angel of the Lord Hardening Regime — adversarial CI and workspace critique regime for repository, boundary, release, and evidence hardening.
- Source Exposure Governance Standard — publication-safety rules for public source, public release mirrors, inner-source development, and restricted security/operations material.
Sociosphere is responsible for:
- Declaring workspace repositories and roles in
manifest/workspace.toml. - Pinning exact revisions in
manifest/workspace.lock.json. - Materializing and validating the workspace with
tools/runner/runner.py. - Enforcing topology and dependency-direction policies via
tools/check_topology.py. - Maintaining cross-repo governance and registry metadata in
registry/+governance/. - Owning the Angel of the Lord adversarial hardening regime across workspace CI lanes.
- Validating source-exposure publication safety with
tools/check_source_exposure.py.
Sociosphere is not the place for feature implementation inside downstream component repositories.
- Documentation index:
docs/README.md - Architecture baseline:
docs/architecture/overview.md - Upstream bindings (edge capabilities):
docs/architecture/upstream-bindings-edge-capabilities.md - Scope/current state/backlog:
docs/SCOPE_PURPOSE_STATUS_BACKLOG.md - Integration ledger:
docs/INTEGRATION_STATUS.md - Namespace ownership map:
governance/CANONICAL_SOURCES.yaml - Angel of the Lord hardening regime:
standards/angel-of-the-lord/README.md - Source exposure standard:
standards/source-exposure/README.md
| File | Description |
|---|---|
registry/canonical-repos.yaml |
Canonical repo inventory and metadata |
registry/repository-ontology.yaml |
Semantic identity, roles, and topic bindings |
registry/dependency-graph.yaml |
Dependency edges and impact reasoning |
registry/change-propagation-rules.yaml |
Change cascade and notification rules |
registry/devops-automation.yaml |
CI/CD automation policies |
registry/deduplication-map.yaml |
Duplicate consolidation tracker |
registry/upstream-bindings-edge-capabilities.yaml |
Machine-readable upstream baselines, dispositions, and tracked risk notes for edge-capability donor/dependency repos |
| Module | Description |
|---|---|
engines/ontology_engine.py |
Controlled vocabulary and topic extraction |
engines/propagation_engine.py |
Cascading update computation |
engines/devops_orchestrator.py |
Build/test/deploy orchestration |
engines/metrics_collector.py |
Runtime and coverage metrics |
| File | Description |
|---|---|
standards/qes/README.md |
Quality Evidence Standard |
standards/angel-of-the-lord/README.md |
Angel of the Lord adversarial hardening regime |
standards/source-exposure/README.md |
Source Exposure Governance Standard |
standards/source-exposure/policy.v0.json |
Machine-readable source-exposure policy |
standards/source-exposure/schemas/source_exposure_report.v1.json |
Source exposure report schema |
# Registry and ontology maintenance
python cli/rebuild-registry.py
python cli/analyze-ontology.py [repo-name ...]
python cli/validate-deps.py
# Upstream drift checks
python3 tools/check_upstream_edge_capabilities.py
# Source exposure publication safety
python3 tools/check_source_exposure.py
make source-exposure-check
# Success and dedup reporting
python cli/measure-success.py
python cli/dedup-report.pyWEBHOOK_SECRET=<shared-secret> python webhooks/github_handler.py --port 8080python3 tools/runner/runner.py list
python3 tools/runner/runner.py fetch
python3 tools/runner/runner.py lock-verify
python3 tools/runner/runner.py validate-policy
python3 tools/runner/runner.py validate-trust
python3 tools/runner/runner.py trust-report
python3 tools/runner/runner.py run test --allThe runner supports manifest/overrides.toml for local development overrides.
The file is optional and should remain gitignored.
A minimal example:
[[repos]]
name = "agentplane"
local_path = "components/agentplane-local"
[[repos]]
name = "mcp-a2a-zero-trust"
local_path = "components/mcp_a2a_zero_trust_local"At runtime, runner.py merges override repo entries by name on top of the canonical
workspace manifest. Source fields like local_path, url, ref, and rev may be
overridden locally without editing the committed manifest.
To avoid conflicting documentation:
- Keep exactly one canonical source per active topic.
- Keep historical branch/PR narratives for provenance, but mark them archival.
- If docs disagree, canonical current-state docs win over archival summaries.