a2ml 0.1.0

Parser and renderer for A2ML (Attested Markup Language)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85

= AI Conventions
<!-- SPDX-License-Identifier: PMPL-1.0-or-later -->
<!-- Copyright (c) {{CURRENT_YEAR}} {{AUTHOR}} ({{OWNER}}) <{{AUTHOR_EMAIL}}> -->

# AI Conventions (Authoritative Source)

All AI coding agents working in this repository MUST follow these rules.
Per-tool config files (.cursorrules, .clinerules, etc.) reference this document.

## Session Startup

1. Read `0-AI-MANIFEST.a2ml` FIRST (mandatory gatekeeper).
2. Read `.machine_readable/STATE.a2ml` for current status and blockers.
3. Read `.machine_readable/anchors/ANCHOR.a2ml` for canonical authority boundaries.
4. Read `.machine_readable/policies/MAINTENANCE-AXES.a2ml` for maintenance/audit sequencing.
5. Read `.machine_readable/policies/MAINTENANCE-CHECKLIST.a2ml` for baseline controls.
6. Read `.machine_readable/policies/SOFTWARE-DEVELOPMENT-APPROACH.a2ml` for execution order.
7. Read `.machine_readable/AGENTIC.a2ml` for agent constraints.

## License

- All original code: **PMPL-1.0-or-later**
- Fallback (platform-required only): MPL-2.0 with comment explaining why.
- NEVER use AGPL-3.0.
- Preserve third-party licenses verbatim.
- Every source file needs `# SPDX-License-Identifier: PMPL-1.0-or-later`.

## Author Attribution

- Name: **{{AUTHOR}}**
- Email: **{{AUTHOR_EMAIL}}**
- Copyright: `Copyright (c) {{CURRENT_YEAR}} {{AUTHOR}} ({{OWNER}}) <{{AUTHOR_EMAIL}}>`

## State Files

State/metadata files, anchors, and policies (.a2ml) belong in `.machine_readable/` ONLY.
NEVER create STATE.a2ml, META.a2ml, ECOSYSTEM.a2ml, AGENTIC.a2ml,
NEUROSYM.a2ml, PLAYBOOK.a2ml, ANCHOR.a2ml, MAINTENANCE-AXES.a2ml,
MAINTENANCE-CHECKLIST.a2ml, or SOFTWARE-DEVELOPMENT-APPROACH.a2ml in the repository root.

## Banned Patterns

| Language | Banned                              | Reason                    |
|----------|-------------------------------------|---------------------------|
| Idris2   | `believe_me`, `assert_total`        | Unsound escape hatches    |
| Haskell  | `unsafeCoerce`, `unsafePerformIO`   | Breaks type safety        |
| OCaml    | `Obj.magic`, `Obj.repr`, `Obj.obj`  | Unsafe casting            |
| Coq      | `Admitted`                          | Unproven assumption       |
| Lean     | `sorry`                             | Unproven assumption       |
| Rust     | `transmute` (unless FFI + SAFETY:)  | Unsound reinterpret       |

## Banned Languages

| Banned              | Use Instead        |
|---------------------|--------------------|
| TypeScript          | ReScript           |
| Node.js / npm / bun | Deno               |
| Go                  | Rust               |
| Python              | Julia / Rust       |

## Container Standard

- Runtime: **Podman** (never Docker).
- File: **Containerfile** (never Dockerfile).
- Base images: `cgr.dev/chainguard/wolfi-base:latest` or `cgr.dev/chainguard/static:latest`.

## ABI/FFI Standard

- ABI definitions: **Idris2** with dependent types (`src/abi/`).
- FFI implementation: **Zig** with C ABI compatibility (`ffi/zig/`).
- Generated C headers: `generated/abi/`.

## Build System

Use `just` (justfile) for all build, test, lint, and format tasks.

## References

- `0-AI-MANIFEST.a2ml` -- universal AI entry point
- `.machine_readable/AGENTIC.a2ml` -- agent permissions and constraints
- `.machine_readable/STATE.a2ml` -- current project state
- `.machine_readable/anchors/ANCHOR.a2ml` -- canonical authority and policy boundary
- `.machine_readable/policies/MAINTENANCE-AXES.a2ml` -- canonical axis sequencing and audit requirements
- `.machine_readable/policies/MAINTENANCE-CHECKLIST.a2ml` -- baseline maintenance checklist policy
- `.machine_readable/policies/SOFTWARE-DEVELOPMENT-APPROACH.a2ml` -- axis execution approach policy