clumsies

Appearance

Attestation

What attestation is

Attestation is the structured usage signal produced when agents work through clumsies. It is how the system stops guessing about rule value.

This matters because rule systems often fail in a familiar way: teams write more and more instructions, but nobody can tell which ones are actually being used. Attestation is the mechanism that turns that vague situation into evidence.

Earlier architecture notes and older docs may still call this layer Trace. In the current codebase, the event model, local files, upload endpoints, and Hub handlers have largely moved to Attestation.

What attestation records

At a high level, attestation exists around three kinds of runtime action:

SignalMeaning
discoverthe agent looked for relevant material
loadthe agent pulled material into task context
referthe agent declared an applied constraint

Those signals are not equally strong. Discover is weak evidence. Load is stronger. Refer is strongest because it names the constraint used.

The current attestation model also treats session setup and user input capture as part of the runtime event stream. In other words, attestation is not only about "which rule was mentioned." It is about reconstructing enough structured runtime behavior to support useful later analysis.

Attestation is not only discover, load, and refer. The local event model in src/client/attestation.zig also includes:

  • setup
  • user_prompt
  • agent_report
  • reject
  • context_propose_create
  • context_propose_update
  • context_propose_rename
  • context_propose_delete
  • rule_propose_create
  • rule_propose_update
  • rule_propose_rename
  • rule_propose_delete
  • mpf_propose_create
  • mpf_propose_update
  • mpf_propose_delete
  • draft_discard

That matters because the product is trying to observe more than retrieval. It also wants evidence around turn setup, applied constraints, user input, and content change proposals.

Why hash-bound attestation matters

Attestation is supposed to bind to prompt content hash, not just to a human-readable rule name.

That is a hard requirement if the system wants to support:

  • correct historical analysis after rule edits
  • rename without losing continuity
  • meaningful cross-workspace aggregation

If two versions of a rule share a name but differ in content, the system should not pretend they are the same thing analytically.

Local buffering matters

Attestation is designed to be buffered locally and uploaded asynchronously rather than synchronously sent to Hub on every action.

That is an architectural choice, not an implementation accident. It keeps runtime work non-blocking while still letting Hub become the place where deduplication, persistence, and aggregation happen.

The current local files are session-scoped:

text
~/.clumsies/workspaces/{ws_id}/logs/attestation/{session_id}.jsonl
~/.clumsies/workspaces/{ws_id}/logs/attestation/{session_id}.cursor

The JSONL file stores the append-only event stream for one host-agent session. The cursor file stores that session's upload offset. The TUI background uploader can then flush pending events without blocking work.

Older clients wrote a legacy workspace-level pair:

text
~/.clumsies/workspaces/{ws_id}/attestation.jsonl
~/.clumsies/workspaces/{ws_id}/attestation.cursor

The upload worker still checks that legacy path. Buffered events are preserved, but new events are written under logs/attestation/.

The upload path on the server side is:

text
POST /api/attestations

That endpoint is the handoff between local runtime evidence and Hub-side aggregation.

Attestation and refinement

Attestation does not automatically rewrite rules. That boundary is important.

The system uses attestation to support judgment, not to replace it. Long-unreferred constraints may deserve revision or removal. Frequently referred constraints may prove their value. But that decision still belongs to people operating the system.

The product role of attestation

Attestation is not a nice-to-have analytics page sitting beside the main product. It is one of the three core pillars in the architecture:

  • rule lifecycle management
  • context delivery
  • observability for agent-driven development

That is why attestation belongs in the main conceptual path of the docs instead of a buried appendix.