## DONE — Phase 1b complete: RL1-RL6 all Adversary-PASS <24h, no VETO (lint/format + nix/ + machine-docs/ refactor, D1-D10 re-verified cold, nothing weakened)

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

machine-docs/JOURNAL-1b.md

@@ -168,3 +168,19 @@ REVIEW*, I fix the only in-repo refs (README Loop-state + docs/install.md:15), A
 then I write `## DONE`. Holding all root protocol files in place until that signal (moving them early
 breaks the live watchdog). Loop continues; not idling on a long sleep — short fallback while awaiting
 the orchestrator go-ahead.
+
+## 2026-05-27 — RL6 PASS → Phase 1b DONE
+
+Adversary logged **RL6 PASS** + **FINAL SIGN-OFF: all RL1–RL6 Adversary-PASS, NO VETO** (it moved its
+own REVIEW*.md → machine-docs/, re-verified refs + the watchdog `resolve_state` handoff survived the
+lockstep cutover). No open `[adversary]` findings; advisories → IDEAS + the documented push-webhook one.
+
+DONE-handshake conditions (plan §6.1) met: a <24h Adversary PASS for every RL1–RL6 + the full cold
+D1–D10, no standing `## VETO`. Final Builder health: cc-ci `running`/0-failed, toplevel
+`8i3jcad9mrr01558lqckpi26nxn2ra3m` == fresh-clone build (build==running, byte-identical), 5 stacks up,
+public `https://ci.commoninternet.net/` → 200. Wrote `## DONE` to machine-docs/STATUS-1b.md.
+
+**Phase 1b is genuinely DONE.** The foundation is now: formatted + lint-clean (CI-enforced via the
+`.drone.yml` lint stage), all Nix code under `nix/` (flake at root, `#cc-ci` unchanged), multi-agent
+protocol files under `machine-docs/`, and every Phase-1 D1–D10 re-verified cold on the cleaned closure
+with nothing weakened. Builder loop terminating.

machine-docs/STATUS-1b.md

@@ -1,5 +1,29 @@
 # STATUS — Phase 1b (review & lint pass)
 
+## DONE
+**Phase 1b COMPLETE @2026-05-27.** All Definition-of-Done items **RL1–RL6** are Adversary-PASS within
+24h, **no standing VETO, no open `[adversary]` findings** (machine-docs/REVIEW-1b.md final sign-off):
+- **RL1** lint/format toolchain (`nix develop .#lint` + `scripts/lint.sh` + `.drone.yml` stage) — cold
+  PASS with a break-it probe (injected violations → `lint: FAIL`); whole codebase `lint: PASS`.
+- **RL2** §3 white-box checklist (both loops) — no blocking findings; advisories triaged to IDEAS.
+- **RL3** full cold D1–D10 re-verification on the cleaned+RL5 byte-identical closure — every D1–D10
+  fresh PASS, **nothing weakened** (test diff = ruff line-wrapping only), 2 fresh category-spanning
+  e2e (custom-html #151, keycloak #152) + carried 6/6, D6 leak-clean, D8 fresh-clone rebuild==running.
+- **RL4** docs (README lint section + architecture.md `nix/` layout + DECISIONS).
+- **RL5** all Nix code under `nix/` (`nix/modules`, `nix/hosts`); flake at root (`#cc-ci` unchanged);
+  builds **byte-identical `8i3jcad9`**.
+- **RL6** protocol files → `machine-docs/` (README stays root); watchdog `resolve_state` survived the
+  lockstep cutover; refs updated.
+
+Final Builder health check: cc-ci (`cc-nix-test`, 100.90.116.4) `running`/0-failed, toplevel
+`8i3jcad9mrr01558lqckpi26nxn2ra3m` == fresh-recursive-clone build (`build == running`, byte-identical),
+5 infra stacks up, public `https://ci.commoninternet.net/` → 200. The lint/format + `nix/` + `machine-docs/`
+refactor regressed nothing; the codebase is now formatted, lint-clean, and lint-enforced in CI.
+
+Carried advisories (non-blocking, → IDEAS / operator): flaky Gitea→Drone *push* webhook (lint stage is
+wired + proven via its exact command, auto-fire needs the operator's gateway/webhook); `old_app` fixture
+copy-paste; absent `tests/_template/`; bare-name DECISIONS refs.
+
 **Phase plan (SSOT):** `/srv/cc-ci/cc-ci-plan/plan-phase1b-review-lint.md`
 **Loop state for THIS phase:** STATUS-1b / BACKLOG-1b / REVIEW-1b / JOURNAL-1b (DECISIONS.md shared).
 The repo's STATUS.md / BACKLOG.md / REVIEW.md are Phase-1 HISTORY; STATUS-1c etc. are Phase-1c