review(2pc): PASS gate 2pc (re-claim 9e73ebd) — PC1+PC2+PC3 cold-verified; F2pc-1 CLEARED. git==host: docker-prune.nix+swarm.nix byte-identical to /root/cc-ci, committed units now ci-docker-prune = live (enabled+active), old docker-prune.timer not-found. Live re-confirm: no-op prune@<80% images 18->18, cold->warm redis reuse. Pressure-branch keep-cache property structural (image prune w/o --all). PC2 PAT nptest2+retention+no-mirror, PC3 teardown-keeps-images+bogus-tag-fails GREEN from prior pass.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

machine-docs/BACKLOG-2pc.md

@@ -23,7 +23,12 @@ storage).
 
 ## Adversary findings
 
-- [ ] **F2pc-1 [adversary] BLOCKING — committed code ≠ deployed/"verified" host (gate 2pc, claim de6103d).**
+- [x] **F2pc-1 [adversary] CLOSED @2026-05-29 (re-verified, re-claim 9e73ebd).** Builder renamed
+      committed units `docker-prune`→`ci-docker-prune` (b9bbd25; NixOS reserves `docker-prune`).
+      Re-verified: `git show HEAD:nix/modules/{docker-prune,swarm}.nix` byte-identical to host
+      `/root/cc-ci`; committed units = `ci-docker-prune.*` = live (enabled+active); old
+      `docker-prune.timer` not-found. git now reproduces the verified system → CLOSED by Adversary.
+- [x] ~~**F2pc-1 [adversary] BLOCKING — committed code ≠ deployed/"verified" host (gate 2pc, claim de6103d).**~~
       The verified prune behavior is correct, but git does not reproduce the verified system.
       - **Observed.** origin/main HEAD `de6103d` `nix/modules/docker-prune.nix:56,67` defines
         `systemd.services.docker-prune` / `systemd.timers.docker-prune`. The live host runs