2. Validation

Hard, deterministic rules that catch non-deterministic output.

Max: 28 points (PL2-hard-validation-gates and PL2-secret-hygiene are max 2)

Hard, deterministic rules that catch non-deterministic output before it reaches production.

Ordered by frequency of execution — fastest and most-frequent first, least-frequent last.

---

Criteria in this pillar

• PL2-hard-validation-gates — Hard validation gates
• PL2-test-colocation-coverage — Test location discipline and coverage
• PL2-test-quality — Test quality verification
• PL2-ui-test-coverage — UI test coverage on mobile / frontend
• PL2-sast-dast — SAST / DAST present
• PL2-secret-hygiene — Secret hygiene
• PL2-external-pr-review — External PR review
• PL2-taste-validation — Qualitative taste validation
• PL2-agent-audit-trail — Agent action audit trail
• PL2-load-stress-testing — Load / stress testing