6 Core · 6 Crystal · 6 Deep. 9 hukum KRITIKAL. Setiap law punya technical binding ke kode runtime. "Framework is commodity, Canon is moat."
Fondasi non-negotiable: human intent, ledger, discipline, tech boundary.
Commercial & isolation rules: proof before scale, tenant isolation, pricing moat.
Agent runtime enforcement: approval gate, budget, escalation, ledger logging.
Fondasi non-negotiable: human intent, ledger, discipline, tech boundary.
"Keputusan strategis tetap di manusia. AI propose, human disposes. Copilot never auto-executes."
approval_gate mandatory pada setiap write action; Copilot propose-only mode
"Setiap action tercatat di WORM ledger SEBELUM execute. Bukti > narasi."
governance_events append dulu, baru tool call; bypass = abort
"Setiap fitur/refactor butuh ADR atau plan entry sebelum coding dimulai."
PR template mandatory ADR reference; docs/adr/ADR-NNN.md
"Conventional commits, scoped, atomic. Tidak ada "WIP" di main branch."
commitlint config + pre-push hook; main = production
"Cloudflare Workers hanya Web APIs. No fs, no path, no child_process."
tsconfig types = @cloudflare/workers-types; serveStatic dari hono/cloudflare-workers
"Satu repo = satu dominant layer (Hub/L1/L2/L3/L4). No cross-layer import."
boundaries/BOUNDARIES-*.md per repo; ESLint import/no-restricted-paths
Commercial & isolation rules: proof before scale, tenant isolation, pricing moat.
"Max 2 adjacent Ring per repo. P4 butuh 3 paid case studies prerequisite."
repo-product-map.rings length ≤ 2 + adjacency check; P4 gate di CRM
"Hanya webapp yang Hub. Semua query D1/KV/R2 WAJIB include tenant_id."
middleware tenantIsolationGuard; D1 RLS policy per tenant
"Invoice WAJIB breakdown per-SKU kanonik. Package = commercial wrapper only."
invoice template mandatory SKU list; package-map canon_compliance_matrix
"Tidak boleh ubah pricing/canon tanpa ADR dan founder sign-off. Freeze aktif hingga 2026-10-22."
docs/canon/ immutable selama freeze; ADR-NNN diperlukan untuk unfreeze
"T5 discount max 20% butuh founder email/e-signature. Governance platform ≠ commodity."
pricing_rules.discount_approval_required = true untuk P4/T5
"Setiap repo = 1 Cloudflare Pages project. Main branch = production. No monorepo fusion."
wrangler.jsonc per repo; deploy hanya dari main
Agent runtime enforcement: approval gate, budget, escalation, ledger logging.
"Semua action dengan side-effect butuh JWT approval_signature + human_confirmed flag."
approval_signature JWT + human_confirmed flag di governance_events
"Setiap AI-role punya daily+monthly USD budget. Exceed = auto-pause + notify founder."
ai_role_budget_usage table + KV counter realtime; hard cap enforcement
"Anomali material (P1 incident, competitor move, brand voice violation x3, enterprise sentiment negatif) → push notif langsung."
escalation config per role; Cloudflare Queues → push service
"AI-Role tidak pernah dijual standalone. Selalu attached ke Lane/Tower/Platform/Template."
sku_matrix.forbidden_combinations standalone_ai_role = reject
"Setiap tool call, approval, handoff, eskalasi → append ke governance_events. Tanpa pengecualian."
Cloudflare Queues → governance_events append; hash chain SHA256
"Framework (LangGraph, OpenAI SDK, smolagents) swap-able via ADR. Canon enforcement INDEPENDEN framework."
Canon check di Layer A & D runtime, bukan framework-dependent
All 18 laws at a glance
| # | Name | Class | Severity | Enforced in |
|---|---|---|---|---|
| #1 | Human Intent Remains Layer 1 | CORE | KRITIKAL | Layer D ledger, Founder Console approval flow |
| #2 | Ledger-First, Reality-First | CORE | KRITIKAL | Layer D, Cloudflare Queues → governance_events |
| #3 | Plan Before Build | CORE | TINGGI | GitHub PR template, docs/adr/ |
| #4 | Commit Discipline | CORE | SEDANG | .husky/, commitlint.config.cjs |
| #5 | No Node.js APIs in Workers | CORE | KRITIKAL | tsconfig.json, vite build |
| #6 | Layer Isolation | CORE | TINGGI | repo-product-map.json, BOUNDARIES-*.md |
| #7 | Proof Before Scale (Ring Boundary) | CRYSTAL | TINGGI | repo-product-map.json guards, Ring 7 advisory CRM |
| #8 | Hub Referensi Tunggal + Tenant Isolation | CRYSTAL | KRITIKAL | webapp middleware, Sovereign-os-platform D1 schema |
| #9 | Sell Per Layer (No Cross-Layer Bundle SKU) | CRYSTAL | TINGGI | Xendit invoice template, P1–P4 package spec |
| #10 | Canon Freeze During Freeze Window | CRYSTAL | KRITIKAL | docs/canon/ protection rule, price_freeze_until metadata |
| #11 | Pricing Discipline (Moat Protection) | CRYSTAL | KRITIKAL | package-map canon_compliance_matrix, Sales CRM approval flow |
| #12 | Deployment Canon (1 Repo = 1 Pages Project) | CRYSTAL | TINGGI | wrangler.jsonc, GitHub Actions deploy workflow |
| #13 | Human Confirmation Gate Mandatory | DEEP | KRITIKAL | Layer D governance_events, Layer C execution graph gate |
| #14 | Budget Guardrails Per Role | DEEP | TINGGI | Layer A Role Registry, Layer B Work Queue budget check |
| #15 | Escalation Trigger = Immediate Founder Alert | DEEP | TINGGI | ai_roles.escalation, Layer E push notification |
| #16 | AI-Role is Payload, Not SKU | DEEP | KRITIKAL | package-map ai_roles_core, Xendit invoice validator |
| #17 | Every Agent Action Logs to Ledger | DEEP | KRITIKAL | Layer D, semua tool wrappers |
| #18 | Framework is Commodity, Canon is Moat | DEEP | SEDANG | Layer A validator, Layer D policy engine |