Sensitive Guardrail Eval Runs Handoff

Local evaluator proof for sensitive top-band runtime candidates, without unlocking runtime, embeddings, batch, or production authority.

Ali Mehdi Mukadam · co-authored with Codex · local VDS checkpoint

Eval Runs Became A First-Class Receipt

The new top_band_sensitive_guardrail_eval_runs_v1 lane consumes the fixture pack, executes each local mismatch fixture with deterministic assertion checks, carries forward blocked rows unchanged, and marks passing rows as bridge_candidate_after_eval only.

The CLI now exposes top-band-sensitive-guardrail-eval-runs, and validate checks receipt existence, JSONL row counts, fixture-pack parity, assertion pass status, and locked runtime boundaries.

All 22 Executable Rows Passed

The three blocked rows remain case manager, teacher special education, and paralegal corporate documentation. They stay out of bridge and embedding paths until their specific context, confirmation, or repair conditions are satisfied.

The Same Gate Standard Stayed Green

uv run pytest tests/test_top_band_sensitive_guardrail_eval_runs.py tests/test_top_band_sensitive_guardrail_fixture_pack.py tests/test_top_band_sensitive_source_authority_triage.py tests/test_production_runtime_contracts.py -q
uv run ruff check src/aina_data_engine/top_band_sensitive_guardrail_eval_runs.py src/aina_data_engine/cli.py src/aina_data_engine/reports.py tests/test_top_band_sensitive_guardrail_eval_runs.py
uv run aina-data-engine --root /srv/aina/aina-data-engine-room top-band-sensitive-guardrail-eval-runs
uv run aina-data-engine --root /srv/aina/aina-data-engine-room validate
uv run aina-data-engine --root /srv/aina/aina-data-engine-room ain-506-p0-gate
uv run aina-data-engine --root /srv/aina/aina-data-engine-room ain-510-retrieval-promotion-gate
uv run aina-data-engine --root /srv/aina/aina-data-engine-room production-runtime-readiness

Focused pytest returned 12 passed, Ruff returned All checks passed, validation passed, AIN-506 passed, AIN-510 returned promotion_ready, and production runtime readiness returned ready_to_harden_headless_production_runtime.

AIN-510 still shows 6510 valid Gemini vector rows, complete top-500 and top-1,000 vector coverage, a known-pair mean cosine gap of 0.190463, and zero failed promotion or snapshot checks.

No Authority Was Accidentally Promoted

This slice made the sensitive lane more testable without making it more permissive. It made no live Gemini API call, created no embedding or batch manifest, emitted no runtime bridge, unlocked no public runtime, used no real-user data, wrote nothing externally, enabled no production telemetry, promoted no runtime embedding authority, and mutated no donor repo.

The Proof Is Replayable

The added code lives in /srv/aina/aina-data-engine-room/src/aina_data_engine/top_band_sensitive_guardrail_eval_runs.py, with focused coverage in /srv/aina/aina-data-engine-room/tests/test_top_band_sensitive_guardrail_eval_runs.py. The durable receipts live under artifacts/validation/top_band_sensitive_guardrail_eval_runs_v1*, and the report pair lives under artifacts/reports/top_band_sensitive_guardrail_eval_runs_v1.*.

Bridge Only After Eval Proof

The next production-quality slice is to build the caveated sensitive fallback bridge contract from the 22 passing eval rows. It should carry source refs, risk buckets, required caveats, and evaluator assertion proof into the bridge; keep the three blocked rows out; and continue to block embedding until the bridge contract and AIN-510 gates prove no sensitive mismatch regression.

cd /srv/aina/aina-data-engine-room
git status --short --branch
uv run aina-data-engine --root /srv/aina/aina-data-engine-room top-band-sensitive-guardrail-fixture-pack
uv run aina-data-engine --root /srv/aina/aina-data-engine-room top-band-sensitive-guardrail-eval-runs
uv run aina-data-engine --root /srv/aina/aina-data-engine-room validate
uv run aina-data-engine --root /srv/aina/aina-data-engine-room ain-510-retrieval-promotion-gate