Ragnor Comerford 6fc92cab06 docs(rfc-003): correct-by-construction fixes from PR review ... Fold the valid #157 review findings into the blueprint as by-design fixes so a from-scratch build cannot reintroduce them: - B.3.1: host/origin policy derived from the server bind + config (loopback -> loopback hosts; non-loopback -> configured public host, else Host-allowlist off with bearer + Origin as the controls). Closes the loopback-only-default footgun that 403s every remote client before bearer auth. - B.6/B.7: stored-query params nested under a `params` object (mirrors POST /queries/{name}), so the branch/snapshot knobs cannot collide with a query param; mutation tools omit `snapshot` + additionalProperties:false, so mutation-against-a-snapshot is unrepresentable. Vector `dim` made intrinsic to the kind, killing the unwrap_or(0) zero-length-array schema. - B.8: one canonical classify(Result<_, ApiError>) for tool errors (5xx -> JSON-RPC, 4xx/409 -> isError), no second mapper to drift; list visibility uses the call-path default-branch authorization, not a branch:None probe that hid branch-scoped-grant tools. - Reconciled the stale Summary count and the section-5-era Rollout/Testing sections (banners pointing to B.12/B.4/B.13).		2026-06-13 11:47:36 +02:00
..
dev	docs(rfc-003): correct-by-construction fixes from PR review	2026-06-13 11:47:36 +02:00
releases	release: bump workspace to 0.7.0	2026-06-12 14:12:33 +03:00
rfcs	governance: external contribution model (issues/discussions/RFCs/PRs) (#143)	2026-06-06 23:58:08 +03:00
user	Recovery liveness, storage fault-injection matrix, and one storage implementation over object_store (#203)	2026-06-13 11:20:08 +02:00