Implement credentialed drill packaging workplan

2026-05-19 01:27:59 +02:00
parent 022cd8d37e
commit 6e0372d21a
23 changed files with 924 additions and 43 deletions
--- a/docs/operational-readiness.md
+++ b/docs/operational-readiness.md
@@ -84,6 +84,16 @@ The WSGI adapter returned by `binding.as_wsgi_app()` is also callable in tests
 without opening a socket. Use this for deployment wrappers so the core service
 operation contract stays framework-neutral.

+For the stdlib deployable entrypoint, use:
+
+```bash
+phase-memory-service --check --store .phase-memory-local
+phase-memory-service --host 127.0.0.1 --port 8080 --store .phase-memory-local
+```
+
+See `docs/operator-readiness-runbook.md` for operator checks and rollback
+guidance.
+
 ## Review-Gated Apply

 Lifecycle actions that require review are denied until an approval marker or
@@ -143,8 +153,12 @@ retention = runner.runtime.audit_retention_plan(retention_days=30)
 ```

 The export batch includes matching audit events and sink retention metadata.
-The retention plan identifies eligible operation ids but does not prune records;
-retention apply is a follow-on operational task.
+The retention plan identifies eligible operation ids. Retention apply prunes
+eligible records and records `audit.retention.apply` after pruning:
+
+```python
+retention_apply = runner.runtime.apply_audit_retention(retention["plan"])
+```

 ## Adapter Pack Compatibility