Add ClinicOps synthetic proof

Author: rpelevin

README.md

@@ -37,6 +37,13 @@ Agent intent -> Action Card -> Agent Action Gateway -> Decision Receipt -> devel
 | 03 | MCP Risk Gate | `npm run proof:mcp-risk-gate -- --dry-run --json` |
 | 04 | CommerceOps Fire Drill | `npm run proof:commerceops-fire-drill -- --dry-run --json` |
 
+Applied proof cases also include:
+
+```bash
+npm run proof:clinicops-synthetic -- --dry-run --json
+npm run verify:clinicops-synthetic
+```
+
 No downstream execution by Neura. The developer-owned runtime decides whether to execute, revise, escalate, or stop after reading the receipt.
 
 Distribution proof:
@@ -76,6 +83,7 @@ The foundation has four pieces:
 - Decision Receipt Standard: the working receipt shape for what was authorized before execution.
 - MCP Risk Gate: tool-call intent binds to server, tool, target, actor, and params hash.
 - CommerceOps Fire Drill: commerce actions receive receipts before money-moving or customer-facing execution.
+- ClinicOps Synthetic Proof: regulated-style synthetic actions receive receipts before scheduling, patient-message, prior-auth, insurance follow-up, or policy-exception execution.
 
 Run:
 
@@ -89,6 +97,8 @@ npm run proof:mcp-risk-gate -- --dry-run --json
 npm run verify:mcp-risk-gate
 npm run proof:commerceops-fire-drill -- --dry-run --json
 npm run verify:commerceops-fire-drill
+npm run proof:clinicops-synthetic -- --dry-run --json
+npm run verify:clinicops-synthetic
 ```
 
 Docs:
@@ -98,12 +108,15 @@ Docs:
 - [`docs/agent-action-firewall.md`](docs/agent-action-firewall.md)
 - [`docs/mcp-risk-gate.md`](docs/mcp-risk-gate.md)
 - [`docs/commerceops-fire-drill.md`](docs/commerceops-fire-drill.md)
+- [`docs/clinicops-synthetic-proof.md`](docs/clinicops-synthetic-proof.md)
 
 MCP Risk Gate applies the same foundation at the tool-call boundary. It shows how an MCP-style call intent binds a receipt to the exact server, tool, target, actor, and params hash before runtime-owned execution.
 
 CommerceOps Fire Drill applies the foundation to a Shopify-style merchant workflow. It shows how routine tracking replies, refunds, discounts, address changes, cancellations, and unsupported customer promises are allowed, revised, escalated, or stopped before execution.
 
-This is a synthetic dry-run proof. It does not touch Shopify, payment rails, customer accounts, production systems, external message channels, MCP providers, or real data. It does not claim provider approval, marketplace listing, compliance certification, production integration, partnership, or downstream execution by Neura.
+ClinicOps Synthetic Proof applies the foundation to regulated-style synthetic workflows. It shows how scheduling changes, patient-message drafts, prior-auth notes, insurance follow-up, and policy exceptions are escalated, revised, or stopped before external use.
+
+This is a synthetic dry-run proof. It does not touch Shopify, payment rails, customer accounts, production systems, external message channels, MCP providers, real provider systems, real insurer systems, real EHRs, real scheduling systems, real patient messages, or real data. It does not claim provider approval, insurer approval, marketplace listing, compliance certification, HIPAA compliance, medical advice, clinical accuracy, production integration, partnership, or downstream execution by Neura.
 
 ## Ecosystem Availability: Use Neura Today
 

docs/agent-action-gateway.md

@@ -28,6 +28,7 @@ npm run proof:agent-action-firewall -- --dry-run --json
 npm run verify:decision-receipt-standard
 npm run proof:mcp-risk-gate -- --dry-run --json
 npm run proof:commerceops-fire-drill -- --dry-run --json
+npm run proof:clinicops-synthetic -- --dry-run --json
 ```
 
 | Step | Proof | What it confirms |
@@ -37,6 +38,12 @@ npm run proof:commerceops-fire-drill -- --dry-run --json
 | 03 | MCP Risk Gate | MCP-style tool calls bind to exact server, tool, target, actor, and params hash before runtime-owned execution |
 | 04 | CommerceOps Fire Drill | Commerce actions such as refunds, discounts, address changes, cancellations, replies, and promises receive receipts before execution |
 
+Applied proof cases can extend the ladder without changing the core four-step Gateway proof. ClinicOps Synthetic Proof is one such applied case for regulated-style synthetic workflows:
+
+```bash
+npm run verify:clinicops-synthetic
+```
+
 ## Output
 
 The full ladder returns one JSON artifact with:
@@ -58,6 +65,7 @@ This proof shows the same mechanism across three environments:
 - a generic proposed agent action
 - an MCP-style tool-call boundary
 - a money-moving commerce workflow
+- a regulated-style synthetic workflow
 
 Different contexts, same Relay mechanism:
 
@@ -71,9 +79,9 @@ This is a local dry-run proof with synthetic data only.
 
 No downstream execution by Neura.
 
-It does not touch Shopify, payment rails, fulfillment systems, customer accounts, customer-message channels, real MCP servers, production systems, external providers, private payloads, or real customer records.
+It does not touch Shopify, payment rails, fulfillment systems, customer accounts, customer-message channels, real MCP servers, production systems, external providers, private payloads, real customer records, PHI, real provider systems, real insurer systems, real EHRs, real scheduling systems, real patient messages, or real prior-authorization submissions.
 
-It does not claim provider approval, marketplace listing, compliance certification, production integration, partnership, public token issuance, Registry auto-approval, or downstream execution by Neura.
+It does not claim provider approval, insurer approval, marketplace listing, compliance certification, HIPAA compliance, medical advice, clinical accuracy, production integration, partnership, public token issuance, Registry auto-approval, or downstream execution by Neura.
 
 Developer-owned runtimes still execute, revise, escalate, or stop downstream actions after reading the receipt.
 

docs/clinicops-synthetic-proof.md

@@ -0,0 +1,58 @@
+# ClinicOps Synthetic Proof
+
+ClinicOps Synthetic Proof is a local dry-run proof of Neura Relay as the Agent Action Gateway for regulated-style, policy-heavy synthetic operations.
+
+It shows a synthetic workflow agent proposing scheduling, patient-message, prior-auth, insurance follow-up, and policy-exception actions, then receiving a Decision Receipt before anything external happens.
+
+## Core Path
+
+```text
+Synthetic ClinicOps intent -> Action Card -> Agent Action Gateway -> Decision Receipt -> developer-owned review or restraint
+```
+
+## Run The Proof
+
+```bash
+npm run proof:clinicops-synthetic -- --dry-run --json
+npm run verify:clinicops-synthetic
+```
+
+The proof covers five synthetic regulated-style actions:
+
+| Scenario | Decision | Why |
+| --- | --- | --- |
+| Scheduling change requiring policy check | `human_review` | Policy-sensitive schedule changes need review before update or notice. |
+| Patient message draft requiring human review | `human_review` | Patient-facing administrative messages need qualified review before external use. |
+| Prior-auth draft requiring evidence refs | `human_review` | Prior-auth notes need policy, evidence, and reviewer authority before external use. |
+| Insurance follow-up requiring allowed channel | `revise` | The external channel is not confirmed, so the action must be revised. |
+| Policy exception without approval | `stop` | The exception lacks owner approval and complete supporting evidence. |
+
+## Outputs
+
+Each scenario produces:
+
+- a synthetic Action Card;
+- a Decision Receipt;
+- policy and evidence basis;
+- required reviewer or owner authority;
+- allowed next step;
+- blocked downstream actions;
+- attribution fields for proof measurement;
+- boundary flags showing no real regulated workflow action occurred.
+
+## Files
+
+```text
+examples/clinicops-synthetic-proof/fixtures/*.json
+examples/clinicops-synthetic-proof/scenarios/*.json
+examples/clinicops-synthetic-proof/receipts/*.receipt.json
+examples/clinicops-synthetic-proof/manifest.json
+examples/clinicops-synthetic-proof/run-proof.mjs
+scripts/verify-clinicops-synthetic-proof.mjs
+```
+
+## Boundary
+
+ClinicOps Synthetic Proof uses synthetic data only. It does not use PHI, real patient data, real provider systems, real insurer systems, real EHRs, real scheduling systems, real patient messages, or real prior-authorization submissions.
+
+It does not claim HIPAA compliance, medical advice, clinical accuracy, provider approval, insurer approval, compliance certification, production healthcare integration, partnership, listing, endorsement, or downstream execution by Neura.

examples/clinicops-synthetic-proof/fixtures/cases.json

@@ -0,0 +1,42 @@
+[
+  {
+    "synthetic_case_id": "CL-204",
+    "case_type": "prior_authorization",
+    "case_summary": "Synthetic administrative case for local proof only.",
+    "appointment_context": {
+      "appointment_ref": "appt:CL-204-A",
+      "requested_change": "earlier_slot",
+      "policy_sensitive_reason": true,
+      "review_required": true
+    },
+    "message_context": {
+      "draft_ref": "message:CL-204-follow-up",
+      "message_purpose": "administrative_next_steps",
+      "contains_medical_advice": false,
+      "external_use_requires_review": true
+    },
+    "prior_auth_context": {
+      "packet_ref": "prior_auth:CL-204",
+      "policy_notes_ref": "policy_notes:CL-204",
+      "payer_requirement_ref": "payer_requirement:CL-204",
+      "review_required": true
+    },
+    "insurance_context": {
+      "queue_ref": "insurance_queue:CL-204",
+      "allowed_channel_confirmed": false,
+      "external_follow_up_requires_review": true
+    },
+    "exception_context": {
+      "exception_ref": "exception:CL-204",
+      "owner_approval_present": false,
+      "supporting_evidence_complete": false
+    },
+    "boundary": {
+      "synthetic_data_only": true,
+      "phi_used": false,
+      "real_provider_system_touched": false,
+      "real_insurer_system_touched": false,
+      "real_patient_message_sent": false
+    }
+  }
+]

examples/clinicops-synthetic-proof/fixtures/channels.json

@@ -0,0 +1,22 @@
+{
+  "internal_review_queue": {
+    "channel_ref": "channel:internal_review_queue",
+    "external": false,
+    "allowed_for_dry_run": true
+  },
+  "synthetic_patient_message": {
+    "channel_ref": "channel:synthetic_patient_message",
+    "external": true,
+    "allowed_for_dry_run": false
+  },
+  "synthetic_insurer_submission": {
+    "channel_ref": "channel:synthetic_insurer_submission",
+    "external": true,
+    "allowed_for_dry_run": false
+  },
+  "synthetic_clinic_system_write": {
+    "channel_ref": "channel:synthetic_clinic_system_write",
+    "external": false,
+    "allowed_for_dry_run": false
+  }
+}

examples/clinicops-synthetic-proof/fixtures/policies.json

@@ -0,0 +1,8 @@
+{
+  "clinicops.synthetic.scheduling.policy_check": "Scheduling changes with policy-sensitive reason codes require qualified human review before schedule update or patient notice.",
+  "clinicops.synthetic.patient_message.review_required": "Patient-facing administrative message drafts require qualified human review before external use.",
+  "clinicops.synthetic.prior_auth.evidence_refs_required": "Prior-authorization drafts require policy notes, referral or order notes, payer requirement refs, and qualified human review before external use.",
+  "clinicops.synthetic.insurance_follow_up.allowed_channel": "Insurer-facing follow-up must use an allowed channel; if the channel is not confirmed, the action must be revised or sent to review.",
+  "clinicops.synthetic.policy_exception.owner_approval_required": "Policy exceptions cannot be applied without owner approval and complete supporting evidence.",
+  "synthetic_data_only": true
+}

examples/clinicops-synthetic-proof/fixtures/reviewer-roles.json

@@ -0,0 +1,23 @@
+{
+  "qualified_human_reviewer": {
+    "role_ref": "qualified_human_reviewer",
+    "can_approve_external_patient_message": true,
+    "can_approve_prior_auth_packet": true,
+    "can_approve_schedule_change": true,
+    "can_apply_policy_exception": false
+  },
+  "clinic_operations_owner": {
+    "role_ref": "clinic_operations_owner",
+    "can_approve_external_patient_message": false,
+    "can_approve_prior_auth_packet": false,
+    "can_approve_schedule_change": true,
+    "can_apply_policy_exception": false
+  },
+  "policy_exception_owner": {
+    "role_ref": "policy_exception_owner",
+    "can_approve_external_patient_message": false,
+    "can_approve_prior_auth_packet": false,
+    "can_approve_schedule_change": false,
+    "can_apply_policy_exception": true
+  }
+}

examples/clinicops-synthetic-proof/manifest.json

@@ -0,0 +1,33 @@
+{
+  "proof": "clinicops-synthetic-proof",
+  "capability": "ClinicOps Synthetic Proof",
+  "receipt_standard": "neura-decision-receipt-v0.1-draft",
+  "command": "npm run proof:clinicops-synthetic -- --dry-run --json",
+  "verify_command": "npm run verify:clinicops-synthetic",
+  "scenario_count": 5,
+  "decisions_required": ["human_review", "revise", "stop"],
+  "scenarios": [
+    "scheduling-change-policy-check",
+    "patient-message-human-review",
+    "prior-auth-draft-human-review",
+    "insurance-follow-up-channel-revise",
+    "policy-exception-without-approval-stop"
+  ],
+  "boundary": {
+    "synthetic_data_only": true,
+    "phi_used": false,
+    "real_provider_system_touched": false,
+    "real_insurer_system_touched": false,
+    "real_ehr_touched": false,
+    "real_scheduling_system_touched": false,
+    "real_patient_message_sent": false,
+    "real_prior_authorization_submitted": false,
+    "downstream_execution_performed_by_neura": false,
+    "hipaa_compliance_claimed": false,
+    "medical_advice_claimed": false,
+    "clinical_accuracy_claimed": false,
+    "provider_approval_claimed": false,
+    "insurer_approval_claimed": false,
+    "compliance_certification_claimed": false
+  }
+}

examples/clinicops-synthetic-proof/receipts/insurance-follow-up-channel-revise.receipt.json

@@ -0,0 +1,83 @@
+{
+  "receipt_id": "dr_20260527_clinicops_insurance_follow_up_revise_001",
+  "standard": "neura-decision-receipt-v0.1-draft",
+  "created_at": "2026-05-27T21:13:00-04:00",
+  "action_card_id": "ac_20260527_clinicops_insurance_follow_up_001",
+  "decision": "revise",
+  "runtime_instruction": "continue_with_revision",
+  "decision_reason": "Insurer-facing follow-up cannot use an unconfirmed external channel; the action must be revised before any external use.",
+  "actor": {
+    "type": "agent",
+    "name": "ClinicOps Demo Agent",
+    "runtime": "synthetic_workflow"
+  },
+  "proposed_action": {
+    "action_type": "send_insurer_follow_up",
+    "target": "synthetic_case:CL-204:insurance_queue",
+    "summary": "Send an insurer-facing follow-up through a channel not confirmed as allowed for this synthetic case.",
+    "params_hash": "sha256:clinicops_insurance_follow_up_001",
+    "amount_or_value_at_risk": "regulated-style external administrative communication",
+    "customer_impact": "synthetic insurer-facing communication tied to administrative workflow"
+  },
+  "risk": {
+    "risk_class": "regulated_synthetic_workflow",
+    "consequence_score": 2
+  },
+  "policy_basis": [
+    {
+      "policy_ref": "clinicops.synthetic.insurance_follow_up.allowed_channel",
+      "summary": "Insurer-facing follow-up must use an allowed channel; if the channel is not confirmed, the action must be revised or sent to review."
+    }
+  ],
+  "evidence_basis": [
+    {
+      "evidence_ref": "synthetic_case:CL-204.insurance_context",
+      "summary": "Synthetic insurance context shows the allowed channel has not been confirmed."
+    },
+    {
+      "evidence_ref": "channel:synthetic_insurer_submission",
+      "summary": "Synthetic insurer submission is an external channel and is not allowed for dry run execution."
+    }
+  ],
+  "authority": {
+    "authority_ref": "qualified_human_reviewer",
+    "approval_state": "revision_required",
+    "required_role": "qualified_human_reviewer"
+  },
+  "validity": {
+    "valid_for_action_type": "send_insurer_follow_up",
+    "valid_for_target": "synthetic_case:CL-204:insurance_queue",
+    "valid_for_actor": "ClinicOps Demo Agent",
+    "params_hash": "sha256:clinicops_insurance_follow_up_001",
+    "valid_until": null,
+    "invalid_if_changed": ["action_type", "target", "params_hash", "actor", "policy_refs", "evidence_refs", "approval_state", "required_authority_role"]
+  },
+  "execution": {
+    "allowed_next_step": "select_allowed_channel_or_prepare_human_review",
+    "blocked_downstream_actions": ["send_insurer_follow_up", "attach_case_packet", "write_to_external_queue"],
+    "execution_boundary": "Neura returns a Decision Receipt only; no provider, clinic, scheduling, patient-message, EHR, or insurer system is touched by Neura."
+  },
+  "trace": {
+    "trace_ref": "trace_20260527_clinicops_insurance_follow_up_revise_001",
+    "source": "github",
+    "campaign": "agent_action_gateway",
+    "surface": "clinicops_synthetic_proof"
+  },
+  "boundary": {
+    "synthetic_data_only": true,
+    "phi_used": false,
+    "downstream_execution_performed_by_neura": false,
+    "real_provider_system_touched": false,
+    "real_insurer_system_touched": false,
+    "real_ehr_touched": false,
+    "real_scheduling_system_touched": false,
+    "real_patient_message_sent": false,
+    "real_prior_authorization_submitted": false,
+    "hipaa_compliance_claimed": false,
+    "medical_advice_claimed": false,
+    "clinical_accuracy_claimed": false,
+    "provider_approval_claimed": false,
+    "insurer_approval_claimed": false,
+    "compliance_certification_claimed": false
+  }
+}