00-README.md
What the pack is, how to use it, which file to give an AI agent, and the safety boundary.
Research pack (v5, headline)
One folder that tells a human or an agent where to spend time.
arkheionx research-pack builds a complete local research pack for a single
repository. It is model-agnostic and vendor-agnostic: hand it to a human reviewer or an AI
agent. It makes no vulnerability claims and assigns no severity.
Generate it
Writes by default to .arkheionx/research-pack.
arkheionx research-pack .
arkheionx research-pack . --out .arkheionx/research-pack
arkheionx research-pack . --json02-blind-spots.md
Likely blind-spot candidates, ranked by the transparent score.
03-criticality-map.md
Criticality potential (blast radius) across surfaces. Not severity.
04-counterfactuals.md
Testable "what if this assumption is false?" prompts.
05-agent-brief.md
A scoped brief to hand to a review agent or reviewer.
07-evidence-log.md
Record tests, results, rejections, and human decisions here.
08-do-not-claim.md
The boundary: what must never be claimed.
manifest.json
Machine-readable index of the pack.
Suggested handoff
Give the agent the brief and the counterfactuals.
1. Read 01-review-map-summary.md (how value moves)
2. Read 02-blind-spots.md + 03-criticality-map.md (where to look first)
3. Give 05-agent-brief.md + 04-counterfactuals.md to a review agent
4. Write local tests; record results in 07-evidence-log.md
5. A finding is only ever confirmed by a human with local proofBoundary
A research pack, not a verdict.
Local and static only. No RPC, no exploit automation, no auto-submit, no severity. Blind
spot candidates and criticality potential are heuristics. Human review is required. See
docs/V5_WORKFLOW.md.