refactor: deep audit — fix stale naming, add innervation architecture

Phase 1 housekeeping:
- Replace all stale -scm naming with -a2ml across 33 satellite A2ML
  files (agentic, playbook, neurosym, anchor, meta, overlay)
- Update TOPOLOGY.md: fix diagram, add protocol + integration layers,
  honest 80% overall (was false 100%)
- Rewrite ROADMAP.adoc: reflect actual state, add Phase A (innervation),
  Phase B (evidence), Phase C (visibility), Phase D (maturity)
- Wire Justfile: test/build/lint/fmt/clean now run real sub-project
  suites instead of stubs; add crg-grade and crg-badge recipes
- Fix REQUIRED-FILES.md URLs (×2)

New artefacts:
- coordination.k9: nerve receptor declaring invariants, protected paths,
  afferent/efferent/reflex innervation signals
- .verisimdb/config.toml: port 8097, 5 octad schemas (crg-grade,
  proof-status, compliance-scan, ecosystem-link, inline-annotation)
- .github/workflows/hypatia-scan.yml: dogfooding self-scan
- component-readiness-grades/SELF-ASSESSMENT.adoc: grade B with
  evidence inventory and documented gaps to A

Architecture decision: begin transition from 6a2 static files to
innervation model (coordination.k9 + VeriSimDB + Hypatia + inline
annotations). Standards repo is the pilot.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

Author: hyperpolymath

.github/workflows/hypatia-scan.yml

@@ -0,0 +1,99 @@
+# SPDX-License-Identifier: PMPL-1.0-or-later
+# Hypatia Neurosymbolic CI/CD Security Scan — SELF-SCAN (dogfooding)
+# The standards repo that defines Hypatia scans itself with Hypatia.
+name: Hypatia Self-Scan
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+  schedule:
+    - cron: '0 0 * * 0'  # Weekly on Sunday
+  workflow_dispatch:
+
+permissions: read-all
+
+jobs:
+  scan:
+    name: Hypatia Neurosymbolic Analysis (Dogfooding)
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup Elixir for Hypatia scanner
+        uses: erlef/setup-beam@2f0cc07b4b9bea248ae098aba9e1a8a1de5ec24c # v1.18.2
+        with:
+          elixir-version: '1.19.4'
+          otp-version: '28.3'
+
+      - name: Clone Hypatia
+        run: |
+          git clone --depth 1 https://github.com/hyperpolymath/hypatia.git "$HOME/hypatia"
+
+      - name: Build Hypatia scanner
+        working-directory: ${{ env.HOME }}/hypatia
+        run: |
+          if [ ! -f hypatia-v2 ]; then
+            cd scanner && mix deps.get && mix escript.build && mv hypatia ../hypatia-v2
+          fi
+
+      - name: Run Hypatia scan
+        id: scan
+        run: |
+          echo "Scanning standards repo (dogfooding)"
+          HYPATIA_FORMAT=json "$HOME/hypatia/hypatia-cli.sh" scan . > hypatia-findings.json
+
+          FINDING_COUNT=$(jq '. | length' hypatia-findings.json 2>/dev/null || echo 0)
+          CRITICAL=$(jq '[.[] | select(.severity == "critical")] | length' hypatia-findings.json 2>/dev/null || echo 0)
+          HIGH=$(jq '[.[] | select(.severity == "high")] | length' hypatia-findings.json 2>/dev/null || echo 0)
+          MEDIUM=$(jq '[.[] | select(.severity == "medium")] | length' hypatia-findings.json 2>/dev/null || echo 0)
+
+          echo "findings_count=$FINDING_COUNT" >> $GITHUB_OUTPUT
+          echo "critical=$CRITICAL" >> $GITHUB_OUTPUT
+          echo "high=$HIGH" >> $GITHUB_OUTPUT
+          echo "medium=$MEDIUM" >> $GITHUB_OUTPUT
+
+          echo "## Hypatia Self-Scan Results (Dogfooding)" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "The standards repo scans itself. Findings here are compliance" >> $GITHUB_STEP_SUMMARY
+          echo "gaps between what we define and what we practice." >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "| Severity | Count |" >> $GITHUB_STEP_SUMMARY
+          echo "|----------|-------|" >> $GITHUB_STEP_SUMMARY
+          echo "| Critical | $CRITICAL |" >> $GITHUB_STEP_SUMMARY
+          echo "| High     | $HIGH |" >> $GITHUB_STEP_SUMMARY
+          echo "| Medium   | $MEDIUM |" >> $GITHUB_STEP_SUMMARY
+          echo "| **Total**| $FINDING_COUNT |" >> $GITHUB_STEP_SUMMARY
+
+      - name: Run panic-attack assail
+        run: |
+          # Install panic-attack if available
+          if command -v panic-attack >/dev/null 2>&1; then
+            panic-attack assail . > panic-attack-findings.json 2>&1 || true
+            echo "panic-attack scan complete"
+          else
+            echo "panic-attack not available in CI — install from hyperpolymath/panic-attacker"
+            echo "[]" > panic-attack-findings.json
+          fi
+
+      - name: Upload findings artifacts
+        uses: actions/upload-artifact@65c79d7f54e76e4e3c7a8f34db0f4ac8b515c478 # v4
+        with:
+          name: standards-self-scan
+          path: |
+            hypatia-findings.json
+            panic-attack-findings.json
+          retention-days: 90
+
+      - name: Check for critical issues
+        if: steps.scan.outputs.critical > 0
+        run: |
+          echo "Critical self-scan issues found in the standards repo!"
+          echo "The repo that defines standards has compliance gaps."
+          echo "Review hypatia-findings.json for details."
+          # Warn but don't fail — fix forward

.meta/REQUIRED-FILES.md

@@ -50,4 +50,4 @@ When updating these files:
 
 - [RSR (Rhodium Standard Repositories)](https://github.com/hyperpolymath/rhodium-standard-repositories)
 - [Mustfile Specification](https://github.com/hyperpolymath/mustfile)
-- [SCM Format Family](https://github.com/hyperpolymath/meta-scm)
+- [A2ML Format Family](https://github.com/hyperpolymath/standards/tree/main/meta-a2ml)

.verisimdb/config.toml

@@ -0,0 +1,102 @@
+# SPDX-License-Identifier: PMPL-1.0-or-later
+# VeriSimDB instance configuration for the standards monorepo
+# See: https://github.com/hyperpolymath/verisimdb
+
+[instance]
+name = "standards"
+port = 8097
+volume = "standards-verisimdb-data"
+base_image = "cgr.dev/chainguard/wolfi-base:latest"
+
+[instance.health]
+endpoint = "/health"
+interval_seconds = 30
+
+# ─────────────────────────────────────────────────────────────
+# Octad Schemas — what this instance stores
+# ─────────────────────────────────────────────────────────────
+
+# CRG grade tracking — component readiness grades with evidence
+[[octad_schema]]
+entity = "crg-grade"
+description = "Component Readiness Grade assessment with evidence chain"
+
+[octad_schema.modalities]
+semantic = ["component", "grade", "evidence_summary", "reviewer", "repo"]
+temporal = ["graded_at", "promoted_from", "next_review"]
+provenance = ["graded_by", "basis_commit", "ci_run_id", "methodology"]
+vector = ["component_embedding"]
+
+# Proof status — formal verification evidence
+[[octad_schema]]
+entity = "proof-status"
+description = "Formal proof verification result from ECHIDNA"
+
+[octad_schema.modalities]
+semantic = ["file_path", "prover", "theorem_name", "axioms_used", "trust_level"]
+temporal = ["verified_at", "last_source_changed", "proof_age_days"]
+provenance = ["echidna_version", "backend", "ci_run_id"]
+document = ["proof_term_cbor", "type_signature"]
+
+# Compliance scan results — Hypatia findings
+[[octad_schema]]
+entity = "compliance-scan"
+description = "Hypatia/panic-attack scan finding"
+
+[octad_schema.modalities]
+semantic = ["repo", "finding_type", "severity", "rule_id", "message"]
+temporal = ["scanned_at", "resolved_at", "age_days"]
+provenance = ["scanner", "scanner_version", "recipe_applied"]
+graph = ["related_repos", "caused_by_commit"]
+
+# Ecosystem relationships — derived from actual imports/usage
+[[octad_schema]]
+entity = "ecosystem-link"
+description = "Relationship between repos/components derived from code"
+
+[octad_schema.modalities]
+semantic = ["source_repo", "target_repo", "link_type", "strength"]
+temporal = ["first_seen", "last_confirmed", "stale_after_days"]
+graph = ["dependency_chain", "transitive_consumers"]
+provenance = ["detection_method", "evidence_file", "evidence_line"]
+
+# Inline annotations — @trust/@contract/@grade from code
+[[octad_schema]]
+entity = "inline-annotation"
+description = "Machine-readable annotation extracted from source code"
+
+[octad_schema.modalities]
+semantic = ["file_path", "line", "annotation_type", "value", "function_name"]
+temporal = ["extracted_at", "source_last_modified"]
+provenance = ["commit_sha", "extractor_version"]
+vector = ["function_embedding"]
+
+# ─────────────────────────────────────────────────────────────
+# Groove Integration
+# ─────────────────────────────────────────────────────────────
+
+[groove]
+enabled = true
+service_name = "standards-verisimdb"
+capabilities = ["octad-store", "vql-query", "annotation-index"]
+
+[groove.signals]
+# Afferent: what this instance emits
+emit = [
+    "crg.grade.changed",
+    "proof.verified",
+    "proof.stale",
+    "compliance.finding.new",
+    "compliance.finding.resolved",
+    "ecosystem.link.discovered",
+    "ecosystem.link.stale",
+    "annotation.extracted",
+]
+
+# Efferent: what this instance responds to
+respond_to = [
+    "commit.pushed",          # re-index annotations
+    "ci.completed",           # ingest scan results
+    "echidna.proof.verified", # store proof certificate
+    "hypatia.scan.completed", # store findings
+]