Implement credentialed drill packaging workplan

workplans/PMEM-WP-0013-credentialed-adapter-drills-and-deployment-packaging.md

@@ -4,7 +4,7 @@ type: workplan
 title: "Credentialed Adapter Drills And Deployment Packaging"
 domain: markitect
 repo: phase-memory
-status: ready
+status: finished
 owner: codex
 topic_slug: phase-memory
 created: "2026-05-19"
@@ -37,7 +37,7 @@ reports, and public API snapshots. The scorecard now rates the repo at
 
 ```task
 id: PMEM-WP-0013-T01
-status: todo
+status: done
 priority: high
 state_hub_task_id: "e4940a9d-130e-47ea-ba16-7b090841855c"
 ```
@@ -55,7 +55,7 @@ Acceptance:
 
 ```task
 id: PMEM-WP-0013-T02
-status: todo
+status: done
 priority: high
 state_hub_task_id: "bf8d2159-761a-47f5-b7be-41ad52460b64"
 ```
@@ -73,7 +73,7 @@ Acceptance:
 
 ```task
 id: PMEM-WP-0013-T03
-status: todo
+status: done
 priority: medium
 state_hub_task_id: "7e39e894-8754-4977-abdd-00f3bf1a73d1"
 ```
@@ -92,7 +92,7 @@ Acceptance:
 
 ```task
 id: PMEM-WP-0013-T04
-status: todo
+status: done
 priority: medium
 state_hub_task_id: "b23e3126-bbfa-44b1-b2a1-22cda968f5d8"
 ```
@@ -109,7 +109,7 @@ Acceptance:
 
 ```task
 id: PMEM-WP-0013-T05
-status: todo
+status: done
 priority: medium
 state_hub_task_id: "2e71fedd-aac6-42c9-822c-6305412ea064"
 ```
@@ -126,7 +126,7 @@ Acceptance:
 
 ```task
 id: PMEM-WP-0013-T06
-status: todo
+status: done
 priority: low
 state_hub_task_id: "c1a8f699-9a0b-4983-8d35-e59cd124dd58"
 ```
@@ -147,4 +147,26 @@ Acceptance:
 
 ## Closure Review
 
-Pending implementation.
+Completed on 2026-05-19.
+
+Implemented:
+
+- Credential-gated adapter drill helpers and a skipped smoke test that lists
+  required environment variables when credentials are absent.
+- `phase-memory-service` stdlib service entrypoint with check mode, WSGI app
+  creation, and no-listener tests.
+- Operator readiness runbook covering startup, readiness, migrations, audit
+  export/retention, credentialed drills, rollback, and compatibility release
+  discipline.
+- Audit retention apply behavior for recording, JSONL, and telemetry sinks,
+  with runtime audit traces and unsupported-sink coverage.
+- Evaluation trend artifacts with run metadata, threshold deltas, metric deltas,
+  and regression diagnostics.
+- Release-note template and public API snapshot gate requiring compatibility
+  release notes for changed exports or service operations.
+- Scorecard update from 4.2 to 4.3 and PMEM-WP-0014 as the next ready
+  refinement workplan.
+
+Verification:
+
+- Focused PMEM-WP-0013 tests passed: 18 passed, 1 skipped.

workplans/PMEM-WP-0014-live-credential-execution-and-managed-deployment-hardening.md

@@ -0,0 +1,130 @@
+---
+id: PMEM-WP-0014
+type: workplan
+title: "Live Credential Execution And Managed Deployment Hardening"
+domain: markitect
+repo: phase-memory
+status: ready
+owner: codex
+topic_slug: phase-memory
+created: "2026-05-19"
+updated: "2026-05-19"
+state_hub_workstream_id: "312a04cb-124d-41b3-9fc0-292281f420ab"
+---
+
+# PMEM-WP-0014: Live Credential Execution And Managed Deployment Hardening
+
+## Goal
+
+Use the credential-gated drill and service packaging created in PMEM-WP-0013 to
+exercise real operator environments, harden deployment packaging, and preserve
+evaluation trend history.
+
+## Current Evidence
+
+`PMEM-WP-0013` added credential-gated drill helpers, stdlib service packaging,
+operator readiness docs, audit retention apply, evaluation trend artifacts, and
+release-note discipline. The scorecard now rates the repo at **4.3 / 5**.
+
+## Non-Goals
+
+- Commit credentials, tokens, or live endpoints.
+- Make credentialed tests mandatory in default CI.
+- Take ownership of Markitect or Kontextual service internals.
+
+## T01 - Run credentialed adapter drills in operator mode
+
+```task
+id: PMEM-WP-0014-T01
+status: todo
+priority: high
+state_hub_task_id: "1d0eb51c-60ce-47ad-bd91-6ce1ee91f0f8"
+```
+
+Exercise the credential-gated smoke drill against real operator-provided
+Markitect/Kontextual endpoints.
+
+Acceptance:
+
+- Default suite still skips without credentials.
+- Operator run records a redacted report with no tokens.
+- Any live incompatibility is captured as explicit diagnostics.
+
+## T02 - Add managed deployment packaging
+
+```task
+id: PMEM-WP-0014-T02
+status: todo
+priority: high
+state_hub_task_id: "37b03680-fcc4-46c2-9ce2-f6bf1f2ef35b"
+```
+
+Add deployment packaging around the stdlib service entrypoint.
+
+Acceptance:
+
+- Health and readiness probes are documented.
+- Packaging can be validated without live credentials.
+- Rollback and local-store mount expectations are explicit.
+
+## T03 - Persist evaluation trend history
+
+```task
+id: PMEM-WP-0014-T03
+status: todo
+priority: medium
+state_hub_task_id: "a3260267-bc8f-4f17-abdd-2296ad2c6ed5"
+```
+
+Persist evaluation trend artifacts across runs for regression review.
+
+Acceptance:
+
+- Trend history format is deterministic.
+- Deltas can be compared across commits or run ids.
+- Regression diagnostics remain actionable.
+
+## T04 - Add credentialed telemetry retention drill
+
+```task
+id: PMEM-WP-0014-T04
+status: todo
+priority: medium
+state_hub_task_id: "b68478ce-90c2-4e21-b621-569cb6925f74"
+```
+
+Exercise audit export and retention apply against a credentialed telemetry
+adapter or operator-approved fixture.
+
+Acceptance:
+
+- Tokens are never written to artifacts.
+- Retention apply records an audit event.
+- Pruned and retained operation ids are reviewable.
+
+## T05 - Expand operator troubleshooting matrix
+
+```task
+id: PMEM-WP-0014-T05
+status: todo
+priority: medium
+state_hub_task_id: "b0974113-debd-4823-929a-761510132c09"
+```
+
+Collect expected operator failures and remediations.
+
+Acceptance:
+
+- Matrix covers credentials, readiness, migrations, audit retention, and
+  adapter manifest failures.
+- Each row includes diagnostic code, likely cause, and operator action.
+
+## Acceptance Criteria
+
+- Evidence moves the project toward the 4.7+ scorecard gate.
+- Credentialed runs are reproducible but optional.
+- Managed deployment packaging is ready for operator review.
+
+## Closure Review
+
+Pending implementation.