petervartanian
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 147 additions & 0 deletions b/‎CONTRIBUTING.md‎
Lines changed: 147 additions & 0 deletions
diff --git a/‎LICENSE‎
Lines changed: 30 additions & 0 deletions b/‎LICENSE‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 180 additions & 0 deletions b/‎README.md‎
Lines changed: 180 additions & 0 deletions
@@ -0,0 +1,147 @@
+# Contributing to omphalOS
+
+Thank you for your interest in contributing to omphalOS. This document outlines how to contribute code, investigations, documentation, and bug reports.
+
+## Code of Conduct
+
+Be professional, respectful, and constructive. This is a tool for serious analytical work—maintain that standard in all interactions.
+
+## How to Contribute
+
+### 1. Bug Reports
+
+Use GitHub Issues to report bugs. Include:
+- What you did (exact commands, case definitions)
+- What you expected
+- What actually happened
+- System information (OS, Python version, omphalOS commit SHA)
+
+### 2. Investigation Contributions
+
+Have a novel pattern for detecting evasion/proliferation? Contribute it:
+
+**Steps**:
+1. Write SQL investigation following catalog conventions (Canon/Margin headers, CTE structure, LIMIT clause)
+2. Place in `core/sql/investigations/custom/custom_<initials>_<date>_<description>.sql`
+3. Create test case with synthetic data showing the pattern
+4. Document false positive scenarios
+5. Submit pull request with investigation + test + docs
+
+**Example**:
+```sql
+-- Investigation: custom_jd_20260123_circular_flows
+-- Domain: all
+-- Intent: Detect circular shipment patterns (A→B→A)
+-- [Canon 01-60 + Margin 001-045]
+WITH ...
+```
+
+### 3. Documentation Improvements
+
+Found unclear docs? Submit PR with improvements. Follow existing tone (technical but accessible).
+
+### 4. Code Contributions
+
+**Before coding**:
+- Open an issue describing what you want to build
+- Discuss approach with maintainers
+- Get approval before significant work
+
+**Code standards**:
+- Python: Follow PEP 8, use `black` formatter
+- Rust: Use `rustfmt`
+- Go: Use `gofmt`
+- All code must include docstrings/comments
+- No external dependencies without approval (offline-first requirement)
+
+**Testing**:
+- All new investigations must have test cases
+- All code changes must not break existing tests
+- Run `pytest` before submitting
+
+### 5. Security Contributions
+
+Found a vulnerability? See SECURITY.md for responsible disclosure process.
+
+**Do NOT** open public issues for security vulnerabilities.
+
+## Contribution Requirements
+
+### What You Can Submit
+
+✅ **Allowed**:
+- SQL investigations using synthetic data
+- Documentation improvements
+- Bug fixes
+- Performance optimizations
+- New verifiers (additional languages)
+- UI enhancements
+- Test cases
+
+❌ **Prohibited**:
+- Real trade data, PII, BCI, or classified information
+- Credentials, API keys, or secrets (even fake ones that look real)
+- Copyrighted material without attribution
+- Malicious code or backdoors
+
+### Data Requirements
+
+**CRITICAL**: All contributed data must be **synthetic and non-identifiable**.
+
+- Do NOT include real company names, addresses, or transaction records
+- Do NOT include data derived from classified sources
+- Do NOT include proprietary data from commercial providers
+
+When in doubt, generate synthetic test data using omphalOS's world builder.
+
+## Pull Request Process
+
+1. **Fork** the repository
+2. **Create branch**: `git checkout -b feature/your-feature-name`
+3. **Make changes**: Follow code standards above
+4. **Test**: Ensure `pytest` passes, run verification on sample cases
+5. **Commit**: Use clear commit messages explaining *why*, not just *what*
+6. **Push**: `git push origin feature/your-feature-name`
+7. **Open PR**: Describe changes, link to related issues, explain testing performed
+
+**PR Requirements**:
+- Passes all CI checks (linting, tests, pack verification)
+- Includes documentation updates if changing user-facing behavior
+- Includes test cases for new functionality
+- No merge conflicts with `main`
+
+## Review Process
+
+Maintainers will review within 7 days. Expect:
+- Questions about design choices
+- Requests for additional tests or documentation
+- Style/formatting feedback
+
+**Be patient**. This is a system used for national security work—thoroughness matters more than speed.
+
+## License
+
+By contributing, you agree that your contributions will be licensed under CC0 (public domain). You affirm that:
+- You have the right to submit the contribution
+- The contribution is your original work or properly attributed
+- The contribution contains no classified, proprietary, or sensitive information
+
+## Recognition
+
+Contributors will be acknowledged in:
+- `CONTRIBUTORS.md` file (if substantial contribution)
+- Release notes for version where contribution appears
+- Academic publications citing omphalOS (if contribution is methodologically significant)
+
+## Questions?
+
+Open a GitHub Discussion (not an Issue) for:
+- How to implement a feature
+- Design questions
+- General usage questions
+
+Use Issues only for bugs and concrete feature requests.
+
+---
+
+**Thank you for helping make intelligence analysis more transparent, reproducible, and defensible.**
@@ -0,0 +1,30 @@
+CC0 1.0 Universal
+
+Statement of Purpose
+
+The laws of most jurisdictions throughout the world automatically confer
+exclusive Copyright and Related Rights (defined below) upon the creator and
+subsequent owner(s) (each and all, an "owner") of an original work of
+authorship and/or a database (each, a "Work").
+
+Certain owners wish to permanently relinquish those rights to a Work for the
+purpose of contributing to a commons of creative, cultural and scientific
+works ("Commons") that the public can reliably and without fear of later
+claims of infringement build upon, modify, incorporate in other works, reuse
+and redistribute as freely as possible in any form whatsoever and for any
+purposes, including without limitation commercial purposes. These owners may
+contribute to the Commons to promote the ideal of a free culture and the
+further production of creative, cultural and scientific works, or to gain
+reputation or greater distribution for their Work in part through the use and
+efforts of others.
+
+For these and/or other purposes and motivations, and without any expectation
+of additional consideration or compensation, the person associating CC0 with a
+Work (the "Affirmer"), to the extent that he or she is an owner of Copyright
+and Related Rights in the Work, voluntarily elects to apply CC0 to the Work
+and publicly distribute the Work under its terms, with knowledge of his or her
+Copyright and Related Rights in the Work and the meaning and intended legal
+effect of CC0 on those rights.
+
+This work was produced by the United States Government and is not subject to
+copyright protection in the United States. Foreign copyrights may apply.
@@ -0,0 +1,180 @@
+# omphalOS
+
+**Computational infrastructure for institutionalized doubt.**
+
+[![License: CC0](https://img.shields.io/badge/License-CC0-lightgrey.svg)](https://creativecommons.org/publicdomain/zero/1.0/)
+[![Python 3.10+](https://img.shields.io/badge/python-3.10+-blue.svg)](https://www.python.org/downloads/)
+[![DOI](https://zenodo.org/badge/DOI/10.5281/zenodo.18344930.svg)](https://doi.org/10.5281/zenodo.18344930)
+
+## What This Is
+
+omphalOS surfaces patterns for review, then forces the record to carry uncertainty, rival explanations, and falsifiers as first-class structure.
+
+You cannot export a packet without documenting what you don't know. Every SQL query scrolls you past epistemic warnings before you reach the data. Three years later when someone challenges your analysis, every step is reproducible bit-for-bit.
+
+This is not risk scoring. This is not classification. This is hypothesis-generating pattern detection where the system makes doubt structurally unavoidable.
+
+## Who Uses This
+
+Intelligence analysts, export control investigators, sanctions compliance officers, trade finance investigators—anyone working in adversarial legal contexts where "the algorithm flagged it" is insufficient and analytical reasoning must survive scrutiny.
+
+Application domains: export control casework (EAR, ITAR), sanctions enforcement (OFAC, multilateral regimes), trade-based money laundering, supply chain risk, proliferation finance.
+
+## Quick Start
+
+```bash
+# Clone and verify
+git clone https://github.com/your-org/omphalOS
+cd omphalOS
+PYTHONPATH=core/src python -m omphalos.cli pack verify packs/INDEX.json
+
+# Build synthetic world and execute case
+PYTHONPATH=core/src python -m omphalos.cli world build --profile hydrate --out hydrate/world
+PYTHONPATH=core/src python -m omphalos.cli case run hydrate/cases/case_chemicals.json --out hydrate/runs
+
+# Verify integrity and apply export gate
+PYTHONPATH=core/src python -m omphalos.cli case verify hydrate/runs/case_chemicals/<run_id>/
+PYTHONPATH=core/src python -m omphalos.cli export hydrate/runs/case_chemicals/<run_id>/packet.json
+
+# Run conformance suite
+PYTHONPATH=core/src python -m omphalos.cli conformance
+```
+
+Workbench UI: `core/ui/analyst-workbench.html` (single offline HTML file)
+
+See [TUTORIAL.md](docs/TUTORIAL.md) for walkthrough.
+
+## Architecture
+
+Three object types:
+
+- **Cases**: investigative questions, scope, selected investigations
+- **Runs**: portable executions producing checksummed artifacts
+- **Packets**: claims with mandatory doubt structure (unknowns, alternatives, falsifiers)
+
+Trust is distributed across independent implementations (Python reference runtime, Rust cryptographic attestation, Go independent SQL execution). No single implementation is authoritative.
+
+Offline-first: operates in air-gapped environments. All dependencies pre-packaged in cryptographically signed packs.
+
+```
+┌───────────────────────────────────────────┐
+│              omphalOS                      │
+├───────────────────────────────────────────┤
+│  Cases → Python Runtime → SQL Warehouse   │
+│              ↓                             │
+│         Run Artifacts (Packets)           │
+│              ↓                             │
+│    ┌────────┬────────┬────────┐          │
+│    │  Rust  │   Go   │ Export │          │
+│    │ Verify │ Verify │  Gate  │          │
+│    └────────┴────────┴────────┘          │
+└───────────────────────────────────────────┘
+```
+
+See [ARCHITECTURE.md](docs/ARCHITECTURE.md) for complete design.
+
+## The Canon
+
+Every SQL investigation contains 60+ repetitions of "interpret with restraint; prefer simpler explanations; record unknowns" before you reach the query. This is not documentation—it is infrastructure that makes epistemic humility structurally unavoidable.
+
+Research shows single warnings are psychologically distant. Repeated environmental cues durably shift judgment patterns. The Canon exploits this.
+
+See [CANON.md](docs/CANON.md) for philosophical foundation.
+
+## Investigation Catalog
+
+20,000 parametric SQL queries detecting patterns: payment fragmentation, entity clustering, temporal anomalies, cross-domain procurement, price outliers, network topology.
+
+Each investigation includes Canon and Margin headers (epistemic safeguards), metadata (domain, intent, method), CTE-based SQL (reviewable), limited result sets (bounded).
+
+See [INVESTIGATIONS.md](docs/INVESTIGATIONS.md) for taxonomy.
+
+## Export Gate
+
+Packets must contain:
+- Evidence (artifact pointers with cryptographic hashes)
+- Unknowns (what claims do not establish)
+- Alternatives (rival explanations)
+- Falsifiers (what would overturn claims)
+
+No exceptions. The export gate rejects packets lacking any of these. It scans for prohibited certainty language ("proves", "must be", "conclusively"). This is enforced programmatically.
+
+See [STANDARDS_OF_REVIEW.md](docs/STANDARDS_OF_REVIEW.md) for normative requirements.
+
+## Conformance
+
+The conformance suite gates integrity:
+
+(i) Pack checksum verification
+(ii) Case execution producing checksummed run
+(iii) Manifest integrity validation
+(iv) Export gate evaluation (packet admissibility)
+(v) Polycentric verification (Rust, Go)
+
+```bash
+PYTHONPATH=core/src python -m omphalos.cli conformance
+```
+
+See [CONFORMANCE.md](docs/CONFORMANCE.md) for release contract.
+
+## Documentation
+
+| Document | Coverage |
+|----------|----------|
+| [CONFORMANCE.md](docs/CONFORMANCE.md) | Conformance suite and release contract |
+| [STANDARDS_OF_REVIEW.md](docs/STANDARDS_OF_REVIEW.md) | Export gate requirements (normative) |
+| [CANON.md](docs/CANON.md) | Epistemic humility as infrastructure |
+| [ARCHITECTURE.md](docs/ARCHITECTURE.md) | System design and polycentric verification |
+| [INVESTIGATIONS.md](docs/INVESTIGATIONS.md) | SQL catalog and pattern taxonomy |
+| [TUTORIAL.md](docs/TUTORIAL.md) | First case walkthrough |
+| [THREAT_MODEL.md](docs/THREAT_MODEL.md) | Security assumptions and mitigations |
+| [DEPLOYMENT.md](docs/DEPLOYMENT.md) | Production deployment |
+| [RESEARCH.md](docs/RESEARCH.md) | Academic positioning |
+
+## Design Philosophy
+
+Traditional algorithmic systems optimize for precision and recall, treating detection as classification. This fails when (i) base rates are exceptionally low (<0.01% of transactions), (ii) adversaries adapt through FOIA and litigation disclosure, (iii) conclusions must survive adversarial legal scrutiny.
+
+omphalOS inverts this: hypothesis-generating pattern detection (not classification), transparency by design (assumes disclosure), systematic documentation of unknowns (not confident predictions).
+
+Epistemic humility is architectural, not aspirational.
+
+## Security and Privacy
+
+**Export Control Notice**: Publicly released, not subject to EAR controls. Contains no controlled technical data. Datasets are synthetic and non-identifiable.
+
+**Privacy by Design**: Packets contain aggregates, not individual transactions. Export gates block credentials and secrets. Demonstration world-states are synthetic; production deployments apply redaction protocols.
+
+See [THREAT_MODEL.md](docs/THREAT_MODEL.md) and [SECURITY.md](SECURITY.md).
+
+## Contributing
+
+See [CONTRIBUTING.md](CONTRIBUTING.md) and [SECURITY.md](SECURITY.md).
+
+Requirements: (i) synthetic data only, (ii) SQL investigations follow Canon/Margin conventions, (iii) code passes verification, (iv) no credentials or classified material.
+
+## License
+
+CC0 1.0 Universal (Public Domain)
+
+U.S. Government work not subject to copyright protection domestically. Foreign copyrights may apply. To the extent possible under law, all copyright and related rights dedicated to the public domain worldwide.
+
+See [LICENSE](LICENSE).
+
+## Citation
+
+```bibtex
+@software{omphalos2026,
+  author = {{U.S. Government}},
+  title = {omphalOS: Computational Infrastructure for Institutionalized Doubt},
+  year = {2026},
+  doi = {10.5281/zenodo.18344930},
+  url = {https://github.com/your-org/omphalOS}
+}
+```
+
+## Acknowledgments
+
+Influenced by Richards Heuer's *Psychology of Intelligence Analysis*, Elinor Ostrom's polycentric governance theory, the CompCert verified software project.
+
+The system is transparent not because it has nothing to hide, but because transparency is what makes it defensible.