Small docs sweep: #557 + #561 + #560 + #607 + #608 + #512

[aallan]

Summary

Small docs sweep — six aging documentation issues closed in one PR. No code changes; touches spec/02-types.md, spec/03-slot-references.md, spec/06-contracts.md, SKILL.md, README.md, and HISTORY.md.

Closes #557 — match-arm slot semantics

spec/03-slot-references.md Example 9 said the match-arm pattern binding "shadows the function parameter" without defining "shadow". Two readings were equally consistent with the prose (replace vs push-on-top); the compiler implements push-on-top. Replaced the one-liner with an explicit paragraph spelling out push-on-binding semantics, the resulting De Bruijn ordering for multi-field constructors, and the non-commutative-operations caveat that exposes the rule.

Closes #561 — Tier 1 vs Tier 2 vs Tier 3 accuracy

Two tier-accuracy bugs in spec/06-contracts.md:

• §6.3.1 / §6.3.2 (tier lists) — pure-fn calls in ensures / @T.result / if/then/else were listed under Tier 2 NYI but actually verify at Tier 1 today. Moved all three from §6.3.2 to §6.3.1.
• §6.3.3 (quantifiers) — "Bounded quantification is decidable for finite bounds and is handled by Z3 via finite unrolling" reads as Tier 1, but Tier 2 (the tier that would handle quantifier unrolling) is #427 NYI. Clarified that every forall/exists falls to Tier 3 today.

Closes #560 — invariant(...) NYI markers

The invariant(...) clause on data declarations is documented in spec/02 §2.4.1, spec/06 §6.2.3, and SKILL.md, but every documented form fails with [E130] no <DataName> bindings in scope at v0.0.144. Added inline NYI markers at all three sites pointing at #560, with the working alternative (refinement types). Added the limitation to spec/06's §6.9 Limitations table.

Closes #607 — Int ↔ Nat subtyping

Added a new spec/02-types.md §2.2.1 "Int and Nat compatibility" subsection covering the bidirectional subtyping (Nat <: Int always; Int <: Nat permitted with verifier-discharged obligation). Practical-implication note tells agents not to insert nat_to_int defensively when calling array_length etc. into @Nat positions. Cross-reference added to SKILL.md's "Primitive types" listing.

Closes #608 — Terminal-vs-browser IO seam

Added SKILL.md "IO model: terminal vs browser" subsection under §Browser compilation. Programs using IO.sleep for animation pacing + ANSI escapes for cursor control compile cleanly to --target browser but render escapes as literal text and busy-wait the main thread. Recommended browser pattern documented: "Vera pure simulation core + JS driver via requestAnimationFrame". Two runtime gaps tracked separately (#609 JSPI sleep, #610 ANSI subset interpreter). README.md's "write once, run anywhere" line qualified to acknowledge the IO seam.

Closes #512 — Stage 11 HISTORY trim

All 31 Stage 11 rows in HISTORY.md (v0.0.112 → v0.0.138) trimmed to match the early-stage one-sentence format established in Stage 1–8. Per the canonical template now in long-term memory: **X** ([#N]). per row, no em-dash separator, no secondary clauses, no implementation detail. Detailed mechanism descriptions for each version stay in CHANGELOG under their respective ## [0.0.X] section.

Out-of-scope sweep finding

While verifying spec-doc state for #561/#557/#560, also discovered #226 (Typed Holes) was listed in spec/00-introduction.md "Future Features" table despite being closed 2026-03-30 (six weeks stale). Fixed in the v0.0.144 release PR #651 (already merged); flagged here for traceability and as the motivating example for the check_limitations_sync.py --check-states workflow that should be run before each release.

Validation

• python scripts/check_doc_counts.py — Documentation counts are consistent (3803 tests, 29 files, 86 conformance, 34 examples, 25 hooks, 7 CI jobs).
• python scripts/check_spec_examples.py — All parseable spec code blocks pass (parse + check + verify).
• python scripts/check_skill_examples.py — All SKILL.md Vera code blocks parse successfully. (61 allowlisted, 58 parseable, 0 failed)
• python scripts/check_limitations_sync.py — Limitation tracking is consistent (34 in KNOWN_ISSUES.md, 18 in vera/README.md, 4 across spec chapters).
• python scripts/check_readme_examples.py — All README Vera code blocks parse successfully.

Allowlist drift fixed via scripts/fix_allowlists.py --fix plus four manual corrections for the duplicate-key footgun in scripts/check_skill_examples.py (the known fix_allowlists.py issue — see feedback_spec_allowlist.md note).

Closes #557.
Closes #560.
Closes #561.
Closes #607.
Closes #608.
Closes #512.

🤖 Generated with Claude Code

Summary by CodeRabbit

• Documentation
  • Clarified IO model (terminal vs browser), Int/Nat interchangeability, slot-reference behaviour in match arms, and expanded contract-predicate guidance; noted ADT invariant(...) is not yet implemented and recommended refinement-type workarounds; clarified browser-target semantics for escapes and sleep.
• Tests
  • Updated example allowlists and test references to align with shifted documentation examples.
• Chores
  • Trimmed historical release notes and added an unreleased documentation entry.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Documentation-only sweep: mark ADT invariant(...) as NYI and offer a refinement workaround; clarify match-arm slot-stack semantics; correct contract-tier/quantifier guidance; add SKILL IO and Int↔Nat notes; re-anchor validation-script allowlists; small README/HISTORY/CHANGELOG/ROADMAP edits.

Changes

Match-Arm Slot-Stack Semantics and Contract Verification Status

Layer / File(s)	Summary
Data invariant status & contract tiers spec/02-types.md, spec/06-contracts.md, SKILL.md	Mark data ... invariant(...) as not implemented (E130); add refinement-type workaround; clarify Tier 2 (Z3-guided) is unimplemented so quantifiers fall to Tier 3; add @T.result (ensures-only), conditional expressions, and modular pure-call usage to allowed constructs.
Match-arm slot-stack semantics spec/03-slot-references.md	Example 9 now states pattern bindings push onto the slot stack; the scrutinee binding remains accessible at a deeper De Bruijn index (e.g., becomes @T.1).
SKILL: IO model & Int/Nat note SKILL.md	Add IO-target section contrasting terminal vs browser behaviour (sleep/ANSI/printing/yielding) and clarify Int/Nat interchangeability with verifier non-negativity obligation for narrowing.
Validation scripts: SKILL allowlist scripts/check_skill_examples.py	Re-anchor many ALLOWLIST FRAGMENT entries to the updated SKILL.md fenced-block opening line numbers across multiple example categories.
Validation scripts: spec allowlist scripts/check_spec_examples.py	Update ALLOWLIST / CHECK_ALLOWLIST keys to match shifted code-fence line numbers in 02-types.md and 06-contracts.md.
Docs / metadata README.md, HISTORY.md, CHANGELOG.md	Update browser-target compile guidance in README, condense HISTORY Stage 11 entries, and add an Unreleased Documentation entry in CHANGELOG describing the sweep.
ROADMAP ROADMAP.md	Add a new "Stabilisation tier" row (#653) to perform a spec audit on §§0.2/0.3 design-principle violations.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Possibly related issues

• SKILL.md documentation gap inventory (follow-up to #518) #519: Matches the spec/03-slot-references change clarifying pattern binding slot behaviour.
• data invariant(...) syntax has no working form at v0.0.127; spec/SKILL examples all fail E130 #560: Directly related to marking data ... invariant(...) as not implemented (E130) and adding a refinement workaround.
• spec/06-contracts.md tier accuracy: forall is Tier 3 (not 'decidable'), pure-fn calls in ensures are already Tier 1 (not NYI) #561: Related to contract-tier and quantifier handling clarifications in spec/06-contracts.md.
• Doc: bidirectional Int <: Nat subtyping is undocumented in user-facing materials #607: Documents the Int↔Nat subtyping and browser-vs-terminal IO seam clarified in SKILL.md.

Possibly related PRs

• aallan/vera#581: Overlapping SKILL.md edits and ALLOWLIST adjustments.
• aallan/vera#601: SKILL documentation changes and validation-script allowlist updates; addresses browser-target IO notes.
• aallan/vera#565: Prior SKILL.md and allowlist re-anchoring work.

Suggested labels

docs, spec, ci

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly references six linked issue numbers (#557, #561, #560, #607, #608, #512) and accurately describes a documentation-only sweep addressing those objectives.
Linked Issues check	✅ Passed	All six linked-issue objectives are met: #557 clarifies match-arm push-on-top semantics (spec/03-slot-references.md), #561 corrects contract-tier documentation (spec/06-contracts.md), #560 marks data invariants NYI with refinement-type alternative, #607 documents Int↔Nat bidirectional subtyping, #608 surfaces the terminal-vs-browser IO seam, and #512 trims HISTORY.md Stage 11 rows to concise format.
Out of Scope Changes check	✅ Passed	All changes are within scope: documentation edits to spec/, SKILL.md, README.md, HISTORY.md, CHANGELOG.md, ROADMAP.md, and validation-script allowlist updates (scripts/check_skill_examples.py, scripts/check_spec_examples.py) directly support the six linked issues and their objectives.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch spec-accuracy-fixes

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 90.95%. Comparing base (709d9f9) to head (58040f1).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #650   +/-   ##
=======================================
  Coverage   90.95%   90.95%           
=======================================
  Files          59       59           
  Lines       23197    23197           
  Branches      259      259           
=======================================
  Hits        21098    21098           
  Misses       2092     2092           
  Partials        7        7           

Flag	Coverage Δ
javascript	57.36% <ø> (ø)
python	94.73% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@README.md`:
- Line 149: The sentence asserting "Mandatory parity tests ensure identical
behaviour between the command-line and browser runtimes for all language
constructs" is too strong given documented runtime differences; update the
README sentence that follows the `vera compile --target browser` description to
state that mandatory parity tests ensure identical behaviour only for
tested/supported language constructs/features (not all constructs), and
explicitly call out that I/O and runtime-specific behaviours such as `IO.sleep`
and ANSI escape handling are exceptions; keep the reference to SKILL.md §Browser
compilation (`SKILL.md#browser-compilation`) and preserve the explanation that
the browser target expects Vera as a simulation core with JavaScript driving
timing/rendering.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 6c23181e-1497-47a3-b801-c588d0d7f31e

📥 Commits

Reviewing files that changed from the base of the PR and between 6db7814 and 2c220a7.

⛔ Files ignored due to path filters (2)

• docs/SKILL.md is excluded by !docs/**
• docs/llms-full.txt is excluded by !docs/**

📒 Files selected for processing (9)

• CHANGELOG.md
• HISTORY.md
• README.md
• SKILL.md
• scripts/check_skill_examples.py
• scripts/check_spec_examples.py
• spec/02-types.md
• spec/03-slot-references.md
• spec/06-contracts.md

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@spec/02-types.md`:
- Around line 28-37: Update the implementation note that currently references
"Section 2.1" to instead reference "Section 2.2.1" where the `Nat <: Int`
compatibility rules are documented; locate the text mentioning the `Nat <: Int`
relationship (the implementation note around the `Nat <: Int` phrase) and
replace the section pointer so it reads "Section 2.2.1".

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: bbd464e7-fa3f-409e-bc35-c7eb616b463d

📥 Commits

Reviewing files that changed from the base of the PR and between 2c220a7 and 87849c6.

📒 Files selected for processing (1)

• spec/02-types.md

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@spec/02-types.md`:
- Around line 136-137: Update the paragraph that currently asserts invariants
are "checked at every construction site" to explicitly mark that behavior as
future or not currently enforced; reference the `invariant(...)` clause on
`data` declarations and state that enforcement at construction sites is intended
but not implemented in the reference compiler (tracked in issue `#560`), or
prepend "In future" / "Not yet enforced" to that sentence so the subsection is
factually consistent with the "Not yet implemented" status and with Section 2.6
(refinement types) guidance.
- Around line 30-37: The spec claims both Nat <: Int and verifier-backed Int <:
Nat in §2.2.1 but §2.8's formal numeric-subtyping relation omits Int <: Nat;
reconcile by either (A) adding the verifier-backed Int <: Nat rule into the
formal relation in §2.8 with a note that it is conditional and discharged by the
verifier (e.g., "Int <: Nat when the verifier can prove value >= 0; otherwise
runtime check"), or (B) explicitly mark the §2.2.1 narrowing as an
implementation-only concession (not part of the formal relation) and add
cross-reference text in §2.8 explaining the exception; update the wording for
"Int <: Nat" and the formal relation to mention the verifier/runtime-check
semantics and ensure the same phrasing appears in both §2.2.1 and §2.8 to keep
the normative rules consistent.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 6b07bd83-e356-4229-86ed-10da29bfe602

📥 Commits

Reviewing files that changed from the base of the PR and between 87849c6 and 66dc14f.

📒 Files selected for processing (2)

• README.md
• spec/02-types.md

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@ROADMAP.md`:
- Line 22: The Agent-integration tier rows in ROADMAP.md currently reuse Order 8
which conflicts with the new Stabilisation row; update the Agent-integration
tier's Order column values so they are sequentially numbered 9, 10, and 11
(i.e., change each "Order 8" entry under the "Agent-integration" tier to 9–11
respectively) to restore unique global ordering and preserve the intended
"resumes once stabilisation is done" sequence.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: b734880c-e1fe-457c-99fb-ce4ad2bb7696

📥 Commits

Reviewing files that changed from the base of the PR and between 66dc14f and 6df9021.

📒 Files selected for processing (1)

• ROADMAP.md