{"ok":true,"data":{"version":"onefield.p8-production-bridge.v1","generatedAt":"2026-06-10T23:37:13.328Z","readOnly":true,"state":"blocked","score":19,"summary":"P8 Production Bridge turns OneField's missing production gaps into explicit launch lanes with gates, endpoints, no-data-loss boundaries, and next actions.","operatorContext":{"authenticated":false,"role":null,"elevated":false},"envGates":{"p6WritesEnabled":false,"oneaiLiveEnabled":true,"oneaiKeyConfigured":true,"authSecretReady":true},"lanes":[{"id":"production-write-path","title":"Production Write Path","target":"Write intents can be created only after backup, database mode, P6 env, evidence, approval, and audit gates pass.","status":"watch","summary":"WriteIntent creation exists but remains gated by database mode, backup, and ONEFIELD_P6_WRITES_ENABLED.","action":"Use /api/production/write-intents/dry-run before any real POST, then create only targeted intents.","endpoints":["/api/production/write-intents","/api/production/write-intents/dry-run"],"dataLossBoundary":"No destructive migration, reset, truncate, or bulk overwrite is allowed."},{"id":"user-account-claim-permissions","title":"User Register / Claim / Permission Closure","target":"Move from builder-access preview into durable account registration, builder claim proof, and role request workflow.","status":"watch","summary":"Session signing is production-ready, but durable claim and role request tables still need an additive migration.","action":"Add additive UserClaim, RoleUpgradeRequest, and Invite tables before enabling register/claim writes.","endpoints":["/login","/studio","/api/studio/access"],"dataLossBoundary":"Never overwrite Builder ownership without proof and audit."},{"id":"oneai-live-task-proposal-loop","title":"OneAI Live Task / Proposal Loop","target":"OneAI should read scoped context, return validated proposals, and convert accepted drafts into non-committing write intent candidates.","status":"ready","summary":"OneAI live proposal infrastructure is ready or reachable.","action":"Use /api/oneai/health?probe=true, then POST /api/oneai/live-proposals from an admin/steward session.","endpoints":["/api/oneai/health","/api/oneai/live-proposals","/api/oneai/write-intent-drafts"],"dataLossBoundary":"OneAI cannot commit; it can only propose and produce draft intent payloads."},{"id":"real-time-signal-ingestion","title":"OKX / Binance / X / Telegram Realtime Signal Flow","target":"Move signal adapters from readiness/mock mode toward signed, rate-limited, replay-safe, public-readonly ingestion.","status":"ready","summary":"4 signal sources are configured/live; 0 sources report error.","action":"Keep exchanges public-readonly; add scheduler/webhook replay checks before treating feeds as realtime production.","endpoints":["/api/signals/radar","/api/signals/quality","/api/integrations/telegram/ingest","/api/integrations/onemission/sync"],"dataLossBoundary":"Signal ingestion may create candidates later, but never trades, withdraws, or mutates external accounts."},{"id":"long-term-user-memory","title":"Versioned Long-term User Memory","target":"Memory must support create, version, revoke, export, archive, and evidence-linked lifecycle.","status":"blocked","summary":"FieldMemoryVersion exists, but full memory create/revoke/export lifecycle still needs dedicated routes and policy checks.","action":"Enable memory writes target-by-target after backup; start with versioned memory create and export APIs.","endpoints":["/api/memory/candidates","/api/memory/policy","/api/agent/privacy-governance"],"dataLossBoundary":"Memory edits append versions and revocations instead of silently overwriting history."},{"id":"observability-rate-limit-billing-tenant","title":"Observability / Rate Limit / Billing / Tenant Boundary","target":"Every production route should expose audit, limits, tenant scope, usage counters, and operator-visible health.","status":"blocked","summary":"Basic in-memory rate limiting and audit logging exist; tenant, billing, usage ledger, and external observability are not complete.","action":"Add additive UsageEvent, Tenant, ApiKey, BillingAccount, and SecurityReview tables before opening external customers.","endpoints":["/api/health","/api/agent/readiness","/api/agent/contract-health"],"dataLossBoundary":"Usage and billing must be append-only audit records."},{"id":"security-review","title":"Security Review and Launch Gate","target":"Production launch needs explicit reviews for secrets, auth, permissions, private memory, financial scope, rate limits, and incident response.","status":"blocked","summary":"Security launch review requires admin/steward context.","action":"Run the launch checklist and rotate any exposed keys before opening real external access.","endpoints":["/api/agent/p8-production-readiness","/api/agent/p8-safe-persistence","/api/production/data-safety"],"dataLossBoundary":"Security fixes must not include destructive database resets."}],"nextProductionOrder":["Rotate exposed keys and verify AUTH_SECRET.","Take database backup and restore drill.","Enable write-intent creation only, not commits.","Add durable register/claim/role request tables.","Make OneAI live proposals stable against the production workflow.","Promote realtime signal ingestion with replay protection and source quotas.","Add memory create/version/revoke/export routes behind write intents.","Add tenant, usage, billing, observability, and security-review ledgers."],"guardrails":["Do not reset or migrate destructively to unlock production features.","External exchange adapters remain public-readonly until a separate asset governance system exists.","OneAI can propose, validate, and draft write intents but cannot approve or commit.","User memory writes must preserve versions, consent, revocation, exportability, and audit trails.","Tenant, billing, and usage records must be append-only and never expose secrets."]},"meta":{"generatedAt":"2026-06-10T23:37:13.328Z","version":"onefield.p8-production-bridge.v1","readOnly":true}}