docs: bespoke documentation for idrisiser meta-prover

Replace all template placeholders with idrisiser-specific content.
Idrisiser is the meta-prover of the -iser family: it takes interface
definitions (OpenAPI, C headers, .proto, type signatures) and generates
Idris2 dependent-type wrappers with formal proofs of correctness.

- README.adoc: architecture pipeline, Idris2 concepts (dependent types,
  totality, elaborator reflection, QTT), use cases, quick start
- ROADMAP.adoc: Phase 0-6 (scaffold → parser → proof gen → compilation
  → multi-interface → self-bootstrapping → ecosystem)
- TOPOLOGY.md: new file — module map, data flow diagram, ecosystem position
- Types.idr: InterfaceContract, ProofObligation, DependentWrapper,
  QuantitativeUsage, Totality, ProofFailure result code
- Layout.idr: ProofWitnessLayout (erased at runtime), contract struct
  layout bridge, bespoke documentation
- Foreign.idr: proof engine lifecycle, interface parsing, proof generation,
  proof compilation, wrapper emission — all idrisiser_* functions
- main.zig: EngineState with proof tracking, idrisiser_* FFI exports
  matching Foreign.idr, InterfaceFormat enum, operation ordering
- build.zig: idrisiser library names, bespoke step descriptions
- integration_test.zig: proof workflow ordering tests, format validation,
  proof count tests, build info verification
- 0-AI-MANIFEST.a2ml: idrisiser-specific invariants (no believe_me,
  proof completeness, ABI-FFI agreement)
- 6a2/*.a2ml: bespoke STATE, META, ECOSYSTEM, AGENTIC, NEUROSYM, PLAYBOOK
- All sub-directory README.adoc files updated with specific content

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

Author: hyperpolymath

.machine_readable/6a2/AGENTIC.a2ml

@@ -1,12 +1,12 @@
 # SPDX-License-Identifier: PMPL-1.0-or-later
 # Copyright (c) 2026 Jonathan D.A. Jewell (hyperpolymath) <j.d.a.jewell@open.ac.uk>
 #
-# AGENTIC.a2ml — AI agent constraints and capabilities
+# AGENTIC.a2ml — AI agent constraints and capabilities for idrisiser
 # Defines what AI agents can and cannot do in this repository.
 
 [metadata]
 version = "0.1.0"
-last-updated = "{{CURRENT_DATE}}"
+last-updated = "2026-03-21"
 
 [agent-permissions]
 can-edit-source = true
@@ -16,12 +16,21 @@ can-edit-config = true
 can-create-files = true
 
 [agent-constraints]
-# What AI agents must NOT do:
-# - Never use banned language patterns (believe_me, unsafeCoerce, etc.)
+# What AI agents must NOT do in idrisiser:
+# - Never use believe_me, assert_total, sorry, unsafeCoerce in generated Idris2 code
 # - Never commit secrets or credentials
 # - Never use banned languages (TypeScript, Python, Go, etc.)
 # - Never place state files in repository root (must be in .machine_readable/)
 # - Never use AGPL license (use PMPL-1.0-or-later)
+# - Never generate partial Idris2 functions — all generated code must be total
+# - Never emit a DependentWrapper with undischarged proof obligations
+
+[idrisiser-specific-constraints]
+# Proof soundness is non-negotiable:
+# - All generated Types.idr must use %default total
+# - All proof witnesses must have 0-multiplicity (erased at runtime)
+# - Foreign.idr exports must exactly match Zig FFI function signatures
+# - Layout.idr proofs must cover all target platforms
 
 [maintenance-integrity]
 fail-closed = true
@@ -31,6 +40,6 @@ require-rerun-after-fix = true
 release-claim-requires-hard-pass = true
 
 [automation-hooks]
-# on-enter: Read 0-AI-MANIFEST.a2ml, then STATE.a2ml
+# on-enter: Read 0-AI-MANIFEST.a2ml, then .machine_readable/6a2/STATE.a2ml
 # on-exit: Update STATE.a2ml with session outcomes
 # on-commit: Run just validate-rsr

.machine_readable/6a2/ECOSYSTEM.a2ml

@@ -5,34 +5,44 @@
 (ecosystem
   (version "0.1.0")
   (name "idrisiser")
-  (type "tool")
-  (purpose "Generate proven-correct wrappers using Idris2 dependent types")
+  (type "meta-prover tool")
+  (purpose "Generate proven-correct wrappers from interface definitions using Idris2 dependent types")
 
   (position-in-ecosystem
     (family "-iser acceleration frameworks")
     (meta-framework "iseriser")
-    (relationship "sibling")
-    (top-3 ("typedqliser" "chapeliser" "verisimiser")))
+    (rank "Most foundational -iser after iseriser itself")
+    (role "Universal proof generation frontend — every -iser needing formal verification routes through idrisiser")
+    (unique-property "Only -iser that generates proofs, not just code"))
 
   (related-projects
     (project "iseriser"
       (relationship "meta-framework")
-      (description "Generates new -iser project scaffolding"))
+      (description "Generates new -iser project scaffolding; idrisiser was scaffolded by iseriser"))
+    (project "proven"
+      (relationship "dependency")
+      (description "Shared Idris2 verified library — idrisiser reuses proven primitives"))
+    (project "proven-servers"
+      (relationship "consumer")
+      (description "Server implementations that use idrisiser-generated proof wrappers"))
     (project "typedqliser"
       (relationship "sibling-priority-1")
-      (description "Formal type safety for any query language"))
+      (description "Formal type safety for query languages — uses idrisiser for proof generation"))
     (project "chapeliser"
       (relationship "sibling-priority-2")
       (description "Chapel distributed computing acceleration"))
     (project "verisimiser"
       (relationship "sibling-priority-3")
       (description "VeriSimDB octad database augmentation"))
-    (project "squeakwell"
+    (project "halideiser"
       (relationship "sibling")
-      (description "Database recovery via constraint propagation"))
-    (project "proven"
-      (relationship "dependency")
-      (description "Shared Idris2 verified library"))
+      (description "Halide image processing acceleration"))
     (project "typell"
       (relationship "dependency")
-      (description "Type theory engine"))))
+      (description "Type theory engine — provides type-level reasoning foundations"))
+    (project "squeakwell"
+      (relationship "sibling")
+      (description "Database recovery via cross-modal constraint propagation"))
+    (project "boj-server"
+      (relationship "future-consumer")
+      (description "MCP server — idrisiser will be exposed as a BoJ cartridge"))))

.machine_readable/6a2/META.a2ml

@@ -4,38 +4,60 @@
 
 (meta
   (version "0.1.0")
-  (last-updated "2026-03-20")
+  (last-updated "2026-03-21")
 
   (architecture-decisions
-    (adr "001-iser-pattern"
+    (adr "001-idris2-as-sole-prover"
       (status "accepted")
-      (context "Need to make powerful languages accessible without steep learning curves")
-      (decision "Use manifest-driven code generation: user describes WHAT, tool generates HOW")
-      (consequences "Users write zero target language code; all complexity in the -iser"))
+      (context "Need a formal verification language for the hyperpolymath ecosystem; candidates were ATS2, Coq, Lean, Agda, and Idris2")
+      (decision "Idris2 is the sole formal verification language — dependent types, totality checking, elaborator reflection, and quantitative type theory")
+      (consequences "Single prover simplifies tooling; idrisiser is the universal proof generation frontend"))
 
-    (adr "002-abi-ffi-standard"
+    (adr "002-meta-prover-architecture"
       (status "accepted")
-      (context "Need verified interop between Rust CLI, target language, and user code")
-      (decision "Idris2 ABI for formal proofs, Zig FFI for C-ABI bridge")
+      (context "Developers should not need to learn Idris2 to get formal guarantees")
+      (decision "Idrisiser parses interface definitions and generates Idris2 proofs automatically — users write manifests, not proof terms")
+      (consequences "Proof generation is deterministic and reproducible; users get compile-time guarantees without type theory expertise"))
+
+    (adr "003-multi-format-interface-parsing"
+      (status "accepted")
+      (context "Interfaces come in many formats: REST APIs, C headers, protobuf, type signatures")
+      (decision "Pluggable parser architecture with bridge adapters per format, all producing a common IR")
+      (consequences "New interface formats can be added without changing the proof engine"))
+
+    (adr "004-abi-ffi-standard"
+      (status "accepted")
+      (context "Need verified interop between Idris2 proof engine and native output")
+      (decision "Idris2 ABI for formal proofs, Zig FFI for C-ABI bridge — per hyperpolymath universal standard")
       (consequences "Compile-time correctness guarantees; zero runtime overhead from proofs"))
 
-    (adr "003-rsr-template"
+    (adr "005-proof-erasure"
+      (status "accepted")
+      (context "Proofs must not impose runtime cost on generated wrappers")
+      (decision "All proof witnesses are erased during Idris2 compilation (QTT 0-usage)")
+      (consequences "Native wrapper is as fast as hand-written C; proofs exist only at compile time"))
+
+    (adr "006-no-unsafe-patterns"
       (status "accepted")
-      (context "Need consistent project structure across 29+ -iser repos")
-      (decision "All repos cloned from rsr-template-repo with full CI/CD and governance")
-      (consequences "17 workflows, SECURITY.md, CONTRIBUTING, bot directives from day one")))
+      (context "Generated Idris2 code must be trustworthy")
+      (decision "Never use believe_me, assert_total, sorry, unsafeCoerce, or any escape hatch in generated code")
+      (consequences "If a proof cannot be discharged, idrisiser reports a clear error rather than silently unsound output")))
 
   (development-practices
-    (language "Rust" (purpose "CLI and orchestration"))
-    (language "Idris2" (purpose "ABI formal proofs"))
-    (language "Zig" (purpose "FFI C-ABI bridge"))
-    (build-tool "cargo")
+    (language "Rust" (purpose "CLI orchestrator — parses manifest, invokes parsers and codegen"))
+    (language "Idris2" (purpose "ABI layer — formal proofs of interface correctness"))
+    (language "Zig" (purpose "FFI layer — C-ABI bridge implementing proof engine operations"))
+    (build-tool "cargo" (purpose "Rust CLI build"))
+    (build-tool "zig build" (purpose "FFI shared/static library build"))
+    (build-tool "idris2" (purpose "Proof compilation and totality checking"))
     (ci "GitHub Actions (17 workflows)"))
 
   (design-rationale
-    (principle "Manifest-driven"
-      (explanation "User intent captured in TOML; all generation is deterministic and reproducible"))
-    (principle "Formally verified bridges"
-      (explanation "Idris2 dependent types prove interface correctness at compile time"))
-    (principle "Zero target language exposure"
-      (explanation "Users never write Chapel/Julia/Futhark/etc. — the -iser handles everything"))))
+    (principle "Interface-first"
+      (explanation "The parsed interface is the single source of truth; all proofs, FFI, and native output derive from it"))
+    (principle "Proof obligations, not proof terms"
+      (explanation "Idrisiser derives WHAT must be proven from the interface; Idris2 elaborator reflection builds HOW"))
+    (principle "Deterministic generation"
+      (explanation "Same manifest + same interface = same output, always; no randomness, no heuristics"))
+    (principle "Fail loudly on unproven obligations"
+      (explanation "A proof that cannot be discharged halts generation with a clear diagnostic; never emit unsound code"))))

.machine_readable/6a2/NEUROSYM.a2ml

@@ -1,23 +1,34 @@
 # SPDX-License-Identifier: PMPL-1.0-or-later
 # Copyright (c) 2026 Jonathan D.A. Jewell (hyperpolymath) <j.d.a.jewell@open.ac.uk>
 #
-# NEUROSYM.a2ml — Neurosymbolic integration metadata
+# NEUROSYM.a2ml — Neurosymbolic integration metadata for idrisiser
 # Configuration for Hypatia scanning and symbolic reasoning.
 
 [metadata]
 version = "0.1.0"
-last-updated = "{{CURRENT_DATE}}"
+last-updated = "2026-03-21"
 
 [hypatia-config]
 scan-enabled = true
-scan-depth = "standard"  # quick | standard | deep
+scan-depth = "deep"  # deep because proof soundness is critical
 report-format = "logtalk"
 
 [symbolic-rules]
-# Custom symbolic rules for this project
-# - { name = "no-unsafe-ffi", pattern = "believe_me|unsafeCoerce", severity = "critical" }
+# Idrisiser-specific rules for Hypatia scanning:
+# - Detect believe_me, assert_total, sorry in any .idr file
+# - Detect unsafeCoerce, Obj.magic in any generated code
+# - Verify %default total is present in every generated module
+# - Check that all proof witnesses have 0-multiplicity
+# - Verify Foreign.idr function names match Zig FFI exports
+rules = [
+  { name = "no-believe-me", pattern = "believe_me", severity = "critical", scope = "*.idr" },
+  { name = "no-assert-total", pattern = "assert_total", severity = "critical", scope = "*.idr" },
+  { name = "no-sorry", pattern = "\\bsorry\\b", severity = "critical", scope = "*.idr" },
+  { name = "no-unsafe-coerce", pattern = "unsafeCoerce|Obj\\.magic", severity = "critical", scope = "*" },
+  { name = "total-default", pattern = "%default total", severity = "warning", scope = "*.idr", expect = "present" },
+]
 
 [neural-config]
-# Neural pattern detection settings
-# confidence-threshold = 0.85
-# model = "hypatia-v2"
+# Neural pattern detection for proof quality
+confidence-threshold = 0.90
+# Higher threshold because proof soundness errors are catastrophic

.machine_readable/6a2/PLAYBOOK.a2ml

@@ -1,35 +1,45 @@
 # SPDX-License-Identifier: PMPL-1.0-or-later
 # Copyright (c) 2026 Jonathan D.A. Jewell (hyperpolymath) <j.d.a.jewell@open.ac.uk>
 #
-# PLAYBOOK.a2ml — Operational playbook
+# PLAYBOOK.a2ml — Operational playbook for idrisiser
 # Runbooks, incident response, deployment procedures.
 
 [metadata]
 version = "0.1.0"
-last-updated = "{{CURRENT_DATE}}"
+last-updated = "2026-03-21"
 
 [deployment]
-# method = "gitops"  # gitops | manual | ci-triggered
-# target = "container"  # container | binary | library | wasm
+method = "ci-triggered"
+targets = ["binary", "library"]
+# binary: idrisiser CLI (Rust, cargo build --release)
+# library: libidrisiser.so / libidrisiser.a (Zig FFI, zig build)
 
 [incident-response]
-# 1. Check .machine_readable/STATE.a2ml for current status
+# 1. Check .machine_readable/6a2/STATE.a2ml for current status
 # 2. Review recent commits and CI results
-# 3. Run `just validate` to check compliance
-# 4. Run `just security` to audit for vulnerabilities
+# 3. Run `cargo test` to verify Rust CLI
+# 4. Run `cd src/interface/ffi && zig build test` to verify FFI
+# 5. Check that all generated Idris2 code passes `idris2 --check`
+# 6. Run `just validate` to check RSR compliance
 
 [release-process]
-# 1. Update version in STATE.a2ml, META.a2ml, Justfile
+# 1. Update version in STATE.a2ml, META.a2ml, Cargo.toml, build.zig
 # 2. Run `just release-preflight` (validate + quality + security + maint-hard-pass)
-# 3. Optional local permission hardening: `just perms-snapshot && just perms-lock`
-# 4. Tag and push
-# 5. Restore local permissions if needed: `just perms-restore`
+# 3. Run full test suite: cargo test && zig build test && zig build test-integration
+# 4. Verify no holes in generated Idris2: grep -r 'sorry\|believe_me\|assert_total' src/
+# 5. Tag and push
 # 6. Run `just container-push` if applicable
 
+[proof-verification-runbook]
+# When a proof obligation fails to discharge:
+# 1. Check the proof obligation source (which contract clause?)
+# 2. Check the proof kind (totality? termination? invariant?)
+# 3. Examine the generated Types.idr for the failing obligation
+# 4. Verify the interface definition is well-formed
+# 5. If the interface has an inherently unprovable property, report it clearly
+# 6. NEVER work around the failure with believe_me or sorry
+
 [maintenance-operations]
-# Baseline audit:
-#   just maint-audit
-# Hard release gate:
-#   just maint-hard-pass
-# Permission audit:
-#   just perms-audit
+# Baseline audit: just maint-audit
+# Hard release gate: just maint-hard-pass
+# Permission audit: just perms-audit

.machine_readable/6a2/STATE.a2ml

@@ -5,31 +5,38 @@
 (state
   (metadata
     (version "0.1.0")
-    (last-updated "2026-03-20")
+    (last-updated "2026-03-21")
     (author "Jonathan D.A. Jewell"))
 
   (project-context
     (name "idrisiser")
-    (description "Generate proven-correct wrappers using Idris2 dependent types")
-    (status "scaffold")
-    (priority "—")
-    (ecosystem "-iser family (https://github.com/hyperpolymath/iseriser)"))
+    (description "Meta-prover: generates proven-correct wrappers from interface definitions using Idris2 dependent types")
+    (status "scaffold — codebase in progress")
+    (priority "foundational — most critical -iser after iseriser")
+    (ecosystem "-iser family (https://github.com/hyperpolymath/iseriser)")
+    (role "Every -iser needing formal verification routes through idrisiser"))
 
   (current-position
-    (phase "initial-scaffold")
-    (completion-percentage 5)
-    (milestone "Architecture defined, CLI scaffolded, RSR template complete"))
+    (phase "scaffold-complete")
+    (completion-percentage 10)
+    (milestone "Scaffold complete: CLI, manifest parser, ABI/FFI stubs, bespoke documentation"))
 
   (route-to-mvp
-    (step 1 "Replace codegen stubs with target-language-specific generation")
-    (step 2 "Implement Idris2 ABI proofs for core invariants")
-    (step 3 "Build Zig FFI bridge")
-    (step 4 "Integration tests with real-world examples")
-    (step 5 "Documentation and examples"))
+    (step 1 "Interface parser: OpenAPI 3.x spec → intermediate representation")
+    (step 2 "Interface parser: C headers (.h) → intermediate representation")
+    (step 3 "Interface parser: Protocol Buffers (.proto) → intermediate representation")
+    (step 4 "Proof obligation engine: derive proof obligations from parsed contracts")
+    (step 5 "Idris2 code generation: Types.idr with dependent types encoding contracts")
+    (step 6 "Idris2 code generation: Layout.idr with memory layout proofs")
+    (step 7 "Idris2 code generation: Foreign.idr with FFI declarations")
+    (step 8 "Proof compilation: invoke Idris2 totality checker on generated code")
+    (step 9 "Zig FFI code generation: emit main.zig implementing Foreign.idr")
+    (step 10 "End-to-end: OpenAPI spec → proven native wrapper"))
 
   (blockers-and-issues
     (none "Project is in scaffold phase — no blockers yet"))
 
   (critical-next-actions
-    (action "Implement codegen for primary use case")
-    (action "Write first working example end-to-end")))
+    (action "Implement OpenAPI 3.x parser as the first bridge adapter")
+    (action "Define intermediate representation for parsed interface contracts")
+    (action "Build proof obligation derivation from contract IR")))