Add assurance requirement to launcher release gate

2026-02-18 14:20:06 -08:00 · 2026-02-18 14:20:06 -08:00 · f41b014ebb
commit f41b014ebb
parent 2e5ba323ba
1 changed files with 2 additions and 0 deletions
--- a/docs/release-gate.md
+++ b/docs/release-gate.md
@ -7,6 +7,7 @@
 3. Governance install path fails closed on invalid evidence.
 4. Marketplace and status APIs are called with app-session auth.
 5. Wallet v1 acceptance criteria pass (`docs/wallet-v1-product-spec.md`).
+6. Owner/admin actions block unless `identity_assurance_level=onramp_attested`.

 ## Blockers

@ -14,3 +15,4 @@
 2. Any path that leaks private key material.
 3. Any path that bypasses entitlement checks for governance activation.
 4. Any launch flow that exposes seed phrase by default.
+5. Any owner support/install action that proceeds without required identity assurance.