/claim #10

Algora claim registration

• Bounty issue: #10
• Active claim PR: https://github.com/SCIBASE-AI/SCIBASE.AI/pull/407
• Supersedes closed duplicate PR 387; this is the active review-ready submission.
• Claim status refresh requested because the issue table still shows my original attempt as WIP.

Summary

Adds repository-component-owner-approval-guard, a self-contained Project Repository & Version Control slice that validates component-owner approval quorum before protected-branch merge or tagged repository release.

The guard evaluates:

• repository component path ownership for manuscript/, data/, code/, notebooks/, protocols/, results/, and metadata.json
• fresh eligible approval coverage per touched component
• restricted data/protocol escalation owners
• stale approvals after changed files move
• conflicted self-approvals by merge request authors
• unmapped repository paths without component policy coverage

Non-overlap

This is not a broad repository ledger, release engine, structured diff/rollback module, provenance attestation layer, release embargo gate, notebook replay tool, schema migration assistant, citation impact verifier, API/export verifier, merge queue, environment drift checker, access review guard, DOI tombstone gate, metadata readiness gate, branch hypothesis lineage guard, sensitive-artifact scanner, dependency-license guard, legal-hold gate, restore rehearsal guard, or compute sandbox policy guard. It focuses specifically on component-owner approval quorum and approval freshness before merge.

Validation

Run from repository-component-owner-approval-guard/:

npm run check
npm test
npm run demo
npm run demo:video

Fresh validation passed after the latest reproducibility hardening commit.

Demo Video

• reports/demo.webm
• reports/demo.mp4

Reviewer Artifacts

• reports/summary.json
• reports/reviewer-packet.md
• reports/summary.svg
• reports/demo.webm
• reports/demo.mp4

Safety

All data is synthetic. The module does not call Git providers, repository hosting APIs, identity systems, storage systems, private repositories, or external services. It does not include private research data, credentials, real users, or live project mutations.

Current status - 2026-05-30 00:19 IST

Verified after newer same-issue #10 activity: this PR remains open, non-draft, CLEAN/mergeable, bounty-table listed, and claim-marked for issue #10.

This PR covers repository component-owner approval quorum before protected branch merge or tagged repository release: component ownership for manuscript/data/code/notebooks/protocols/results/metadata paths, fresh eligible owner approval coverage, restricted data/protocol escalation owners, stale approval handling after file movement, conflicted self-approval blocking, unmapped path coverage, and deterministic reviewer artifacts.

PR #425 covers immutable external-reference pinning and timestamp-freshness hardening for Git submodules, linked datasets, API snapshots, model weights, and external code/data references before DOI/citation publication or export bundle release. That is adjacent repository/version-control work, but it does not replace PR #407’s component-owner approval quorum layer.

No contributor-side code changes are pending unless maintainers request revisions.