{
  "platform": "H11I",
  "state": "bounded-continuous-evolution",
  "automatic": [
    "learn user preferences and intent patterns",
    "update non-sensitive memory",
    "measure response and provider failures",
    "create improvement proposals",
    "expand evaluation candidates",
    "adapt reversible routing weights"
  ],
  "approval_gated": [
    "modify production source code",
    "change safety or governance invariants",
    "promote model weights",
    "deploy a new runtime release",
    "execute externally consequential actions"
  ],
  "release_pipeline": [
    "observe",
    "diagnose",
    "propose",
    "sandbox",
    "benchmark",
    "safety evaluate",
    "human approval",
    "canary release",
    "monitor",
    "promote or rollback"
  ],
  "bounded_self_modification": {
    "state": "active",
    "scope": "reversible intelligence-runtime policy only; never real-world execution",
    "automatically_mutable": [
      "model temperature ceiling within declared numeric limits",
      "current and general evidence minimums within declared numeric limits",
      "native model routing mode within an enumerated allowlist",
      "public answer style within an enumerated allowlist",
      "learning adaptation and memory-priority strategy within enumerated allowlists",
      "reasoning depth and candidate breadth within enumerated allowlists",
      "problem decomposition and verification strategy within an enumerated allowlist",
      "decision evidence policy within an enumerated allowlist",
      "internal agent-routing breadth within an enumerated allowlist"
    ],
    "evaluation": "Changes require an aggregate outcome window and a deterministic benchmark rule. Raw user content is not stored in the global evaluator.",
    "rollback": "Every applied policy version stores its predecessor and can be automatically restored when the next evaluation window regresses.",
    "audit": "Applied changes and rollbacks are recorded with policy versions, reasons, aggregate metrics, and timestamps.",
    "cannot_modify": [
      "credentials or authorization",
      "privacy, safety, provenance, or approval rules",
      "production source code",
      "model weights",
      "external action permissions"
    ]
  },
  "invariants": [
    "Never claim consciousness without scientific evidence.",
    "Never rewrite production code or model weights without evaluation and authorization.",
    "Never bypass privacy, provenance, safety, approval, or rollback controls.",
    "Never convert untrusted web content directly into executable instructions.",
    "Never represent benchmark maturity or ASI status without reproducible independent evidence."
  ]
}