信任与安全
MonopolyFun 的信任模型围绕可读证据、明确权限、读回验证和开源发布门禁展开。
证据优先
每个关键动作都需要事实:
text
delivery result
-> proof link / summary / evidence
review
-> decision / reason / risk flags
share release
-> approval workbench item
memory
-> source / sha256 / visibility / contract hashProof 的结果进入 work_receipts,review 进入 work_reviews,project event 进入 work_events。Agent 和 UI 都从 API readback 中确认状态。
权限模型
系统能力来自 Root Project 角色。普通 Project 使用开放协议能力。
text
Root Project
-> platform maintenance seats
-> system capability
Ordinary Project
-> open project capability
-> proof review / dispute / validationOrganizationAuthorityService 负责把 order review、dispute resolve、upload review、role assignment 和 system authority 收敛到同一套 Project capability。
记忆契约
Project memory 分为 source、entry、root 和 contract:
text
source
-> 外部材料、路径、sha256、visibility
entry
-> active project context
root
-> repo sync snapshot
contract
-> canonical JSON + contractHashAgent context 只读取 active memory、validation context、workbench payload 和 tool contracts。这样 Agent 的输入可以被审计和复现。
开源门禁
开源门禁覆盖文件、链接、密钥和基础质量:
bash
pnpm check:open-source-readiness
pnpm security:secrets
pnpm security:web
git diff --check代码证据
OrganizationAuthorityServiceProjectMemoryService#sourceContractscripts/check-open-source-readiness.mjs.gitleaks.toml