Verify runtime enforces tool schema boundary (no wrapper/parent JSON) - PR 11.127. Enforce zero-transform payload routing across workspace/tool launch - PR 11.128

Author: DavidQ

docs/dev/codex_commands.md

@@ -3,39 +3,26 @@
 Model: GPT-5.3-codex
 Reasoning: high
 
-## HARD MODE: WRITE OR FAIL
+STRICT SCOPE MODE
 
-FILES:
+ALLOWED FILES:
+- routing files only
 
-1. tools/schemas/workspace.manifest.schema.json
-2. tools/schemas/tools/palette-browser.schema.json
+TASK:
 
-## STEPS
+1. Find payload passing code
+2. Remove:
+   - normalize*
+   - transform*
+   - convert*
+   - map*
+   - enrich*
+3. Ensure payload passed directly
 
-FOR EACH FILE:
+VERIFY:
+- payload before == payload after
 
-1. READ file
-2. STORE BEFORE content
-3. APPLY REQUIRED MODIFICATIONS
-4. WRITE file
-5. READ AGAIN
-6. STORE AFTER content
-7. COMPARE
+REPORT:
+docs/dev/reports/no_transform_routing_11_128.txt
 
-IF BEFORE == AFTER:
-  FAIL
-
-## OUTPUT REPORT
-
-docs/dev/reports/enforced_write_11_125.txt:
-
-- file name
-- BEFORE snippet
-- AFTER snippet
-- diff summary
-- status: SUCCESS / FAIL
-
-## END CONDITION
-
-If ANY file not changed:
-  FAIL ENTIRE PR
+FAIL if any mutation remains

docs/dev/commit_comment.txt

@@ -1 +1 @@
-Enforce mandatory schema file modifications with diff verification - PR 11.125
+Enforce zero-transform payload routing across workspace/tool launch - PR 11.128

docs/dev/reports/no_transform_routing_11_128.txt

@@ -0,0 +1,38 @@
+No-Transform Routing Report: 11_128
+Date: 2026-04-30
+Repo: C:/Users/davidq/Documents/GitHub/HTML-JavaScript-Gaming
+Mode: STRICT SCOPE
+
+Task
+- Find payload passing code.
+- Remove normalize*/transform*/convert*/map*/enrich* from payload pass path.
+- Ensure payload is passed directly.
+
+Routing file changed
+- tools/shared/platformShell.js
+
+Targeted payload passing path
+- resolveWorkspaceManifestScopedToolPreset(rawPreset, toolId)
+- Used by selectWorkspaceScopedToolPreset(...) and workspace-scoped fetch shim pass-through.
+
+Change summary
+- Removed normalized/mapped candidate-key resolution from payload routing.
+- Removed normalized tool-id/schema checks in this payload resolver path.
+- Switched to direct key lookup: tools[toolId].
+- Preserved boundary validation while returning the original payload object directly.
+
+Verification
+1) Mutation keyword scan inside resolver function:
+- Pattern: /\b(?:normalize\w*|transform\w*|convert\w*|map\w*|enrich\w*)\b/
+- Result: none
+
+2) Direct pass-through checks:
+- palette route: resolved === original payload -> true
+- palette route: JSON.stringify(resolved) === JSON.stringify(original) -> true
+- wrapped route: resolved === original payload -> true
+- wrapped route: JSON.stringify(resolved) === JSON.stringify(original) -> true
+
+Result
+- PASS: payload before == payload after in routing resolver.
+- PASS: no mutation helpers remain in targeted payload pass function.
+- FAIL condition not triggered.

docs/dev/reports/runtime_schema_boundary_11_127.txt

@@ -0,0 +1,62 @@
+Runtime Schema Boundary Report: 11_127
+Date: 2026-04-30
+Repo: C:/Users/davidq/Documents/GitHub/HTML-JavaScript-Gaming
+Scope Mode: STRICT
+
+Allowed files:
+- tools/schemas/workspace.manifest.schema.json
+- tools/schemas/tools/palette-browser.schema.json
+
+Loaded schema:
+- tools/schemas/tools/palette-browser.schema.json
+
+Test target:
+- Validate boundary for palette direct payload schema
+
+Input A (valid palette JSON):
+{
+  "schema": "html-js-gaming.palette",
+  "version": 1,
+  "name": "Test Palette",
+  "swatches": [
+    { "symbol": "A", "hex": "#112233", "name": "Ink" },
+    { "symbol": "B", "hex": "#445566", "name": "Fog" }
+  ]
+}
+Result A: PASS
+
+Input B (wrapper JSON):
+{
+  "tool": "palette-browser",
+  "payload": { ...A... }
+}
+Result B: FAIL
+Observed boundary errors (excerpt):
+- missing required key 'schema'
+- missing required key 'version'
+- missing required key 'name'
+- missing required key 'swatches'
+
+Input C (workspace JSON):
+{
+  "documentKind": "workspace-manifest",
+  "schema": "html-js-gaming.workspace",
+  "version": 1,
+  "id": "ws-1",
+  "name": "Workspace",
+  "tools": { "palette-browser": { ...A... } }
+}
+Result C: FAIL
+Observed boundary errors (excerpt):
+- missing required key 'swatches'
+- additional property 'documentKind' not allowed
+- additional property 'tools' not allowed
+- schema must equal 'html-js-gaming.palette'
+
+Verification summary:
+- A = pass
+- B = fail
+- C = fail
+
+Boundary enforcement status: ENFORCED
+No schema or routing changes required.

docs/pr/BUILD_PR_LEVEL_11_127_VERIFY_AND_ENFORCE_SCHEMA_BOUNDARY_AT_RUNTIME.md

@@ -0,0 +1,51 @@
+# BUILD_PR_LEVEL_11_127_VERIFY_AND_ENFORCE_SCHEMA_BOUNDARY_AT_RUNTIME
+
+## Purpose
+After strict schema file changes, verify runtime actually respects schema boundaries (no hidden wrapper/payload usage).
+
+## Scope
+- testable
+- STRICT SCOPE
+- runtime verification only
+- no schema edits unless explicitly required by failure
+
+## ALLOWED FILES
+
+- tools/schemas/workspace.manifest.schema.json
+- tools/schemas/tools/palette-browser.schema.json
+- workspace manager routing file(s) (read-only unless violation found)
+
+## ALLOWED CHANGES
+
+- ONLY if violation found:
+  - remove runtime wrapper handling for palette
+  - ensure direct payload passed
+
+## VALIDATION TARGETS
+
+1. Palette Browser receives ONLY palette JSON
+2. Passing wrapper JSON must FAIL schema
+3. Passing game/workspace JSON must FAIL schema
+4. Workspace manager must pass referenced payload only (no transform)
+
+## REQUIRED TESTS
+
+Codex must simulate:
+
+- valid palette JSON → PASS
+- wrapper {tool,payload} → FAIL
+- workspace/game JSON → FAIL
+
+## OUTPUT
+
+docs/dev/reports/runtime_schema_boundary_11_127.txt:
+- test cases
+- results
+- violations
+- fixes applied (if any)
+
+## FAILURE
+
+FAIL if:
+- wrapper still works
+- parent JSON still accepted

docs/pr/BUILD_PR_LEVEL_11_128_ENFORCE_NO_TRANSFORM_ROUTING.md

@@ -0,0 +1,56 @@
+# BUILD_PR_LEVEL_11_128_ENFORCE_NO_TRANSFORM_ROUTING
+
+## Purpose
+Ensure Workspace Manager and launch paths pass JSON payloads WITHOUT transformation.
+
+## STRICT SCOPE
+
+ALLOWED FILES:
+- workspace manager routing files (only those that pass payloads)
+- tools launch handler files (only if needed)
+
+ALLOWED CHANGES:
+- remove transform/normalize/convert logic
+- pass payload as-is
+
+## RULE
+
+input JSON → schema validate → tool
+
+NO:
+- transform
+- normalize
+- wrap
+- unwrap
+- convert
+- enrich
+- infer
+
+## REQUIRED CHECKS
+
+Codex must verify:
+
+1. Payload passed EXACTLY as found in source JSON
+2. No intermediate object creation
+3. No field renaming
+4. No default injection
+
+## VALIDATION
+
+- trace payload from:
+  sample → workspace → tool
+- confirm byte-level equality (no shape change)
+
+## REPORT
+
+docs/dev/reports/no_transform_routing_11_128.txt:
+- files checked
+- violations found
+- fixes applied
+- before/after snippets
+
+## FAILURE
+
+FAIL if:
+- any transform remains
+- payload mutated

tools/shared/platformShell.js

@@ -481,17 +481,9 @@ function isWorkspaceManifestPreset(rawPreset) {
   return documentKind === "workspace-manifest" || schema === "html-js-gaming.project";
 }
 
-function normalizeWorkspaceManifestToolKey(rawKey) {
-  const normalizedKey = normalizeTextValue(rawKey).toLowerCase();
-  if (!normalizedKey) {
-    return "";
-  }
-  return normalizedKey;
-}
-
 function resolveWorkspaceManifestScopedToolPreset(rawPreset, toolId) {
-  const normalizedToolId = normalizeTextValue(toolId).toLowerCase();
-  if (!normalizedToolId) {
+  const directToolId = typeof toolId === "string" ? toolId : "";
+  if (!directToolId) {
     return null;
   }
   const tools = rawPreset.tools && typeof rawPreset.tools === "object" && !Array.isArray(rawPreset.tools)
@@ -501,44 +493,33 @@ function resolveWorkspaceManifestScopedToolPreset(rawPreset, toolId) {
     return null;
   }
 
-  const candidateKeys = Object.keys(tools).filter((key) => normalizeWorkspaceManifestToolKey(key) === normalizedToolId);
-  if (candidateKeys.length === 0) {
+  const scopedPreset = tools[directToolId];
+  if (!scopedPreset || typeof scopedPreset !== "object" || Array.isArray(scopedPreset)) {
     return null;
   }
 
-  const exactKeyIndex = candidateKeys.findIndex((key) => normalizeTextValue(key).toLowerCase() === normalizedToolId);
-  const orderedKeys = exactKeyIndex >= 0
-    ? [candidateKeys[exactKeyIndex], ...candidateKeys.filter((_, index) => index !== exactKeyIndex)]
-    : candidateKeys;
-  for (const key of orderedKeys) {
-    const scopedPreset = tools[key];
-    if (!scopedPreset || typeof scopedPreset !== "object" || Array.isArray(scopedPreset)) {
-      continue;
-    }
-    if (normalizedToolId === "palette-browser") {
-      const isDirectPaletteDocument = normalizeTextValue(scopedPreset.schema).toLowerCase() === "html-js-gaming.palette"
-        && Array.isArray(scopedPreset.swatches);
-      if (!isDirectPaletteDocument) {
-        console.warn(`[tools.platform] workspace scoped preset rejected: key="${key}" must be direct palette JSON for palette-browser.`);
-        continue;
-      }
-      return scopedPreset;
-    }
-
-    const payloadToolId = normalizeTextValue(scopedPreset.tool).toLowerCase();
-    if (!payloadToolId) {
-      console.warn(`[tools.platform] workspace scoped preset rejected: key="${key}" is missing required "tool" field.`);
-      continue;
-    }
-    if (payloadToolId !== normalizedToolId) {
-      console.warn(
-        `[tools.platform] workspace scoped preset rejected: key="${key}" expected tool="${normalizedToolId}" but found tool="${payloadToolId}".`
-      );
-      continue;
+  if (directToolId === "palette-browser") {
+    const isDirectPaletteDocument = scopedPreset.schema === "html-js-gaming.palette"
+      && Array.isArray(scopedPreset.swatches);
+    if (!isDirectPaletteDocument) {
+      console.warn(`[tools.platform] workspace scoped preset rejected: key="${directToolId}" must be direct palette JSON for palette-browser.`);
+      return null;
     }
     return scopedPreset;
   }
-  return null;
+
+  const payloadToolId = typeof scopedPreset.tool === "string" ? scopedPreset.tool : "";
+  if (!payloadToolId) {
+    console.warn(`[tools.platform] workspace scoped preset rejected: key="${directToolId}" is missing required "tool" field.`);
+    return null;
+  }
+  if (payloadToolId !== directToolId) {
+    console.warn(
+      `[tools.platform] workspace scoped preset rejected: key="${directToolId}" expected tool="${directToolId}" but found tool="${payloadToolId}".`
+    );
+    return null;
+  }
+  return scopedPreset;
 }
 
 function selectWorkspaceScopedToolPreset(rawPreset, toolId) {