Feat: Define governance versioned request resolution

Added

- Version-aware request resolution abstractions for expected state version handling
- Runtime resolver support for stale request outcomes across reject, revalidate, and renewed-approval flows
- Runnable governance example for versioned resolution behavior

Changed

- Governance request decisions now capture stale resolution outcomes explicitly
- Governance package namespace configuration now resolves folder-based namespaces without duplicate Governance segments

Result

Governed requests now resolve against the current state version through explicit runtime semantics instead of silent execution on drifted state. Stale requests produce documented outcomes and append decision history that explains the chosen path.

Author: rian-be

Docs/Decision/Adr/ADR_023_Governance_Versioned_Request_Resolution.md

@@ -4,7 +4,7 @@
 #adr_023
 
 ## Status
-Proposed
+Accepted
 
 ## Date
 2026-06-21
@@ -33,19 +33,33 @@ This is a governance concern, not just a core mutation concern, because it only
 
 ## Decision
 
-The governance package should adopt explicit version-aware request resolution semantics.
-
-Expected direction:
+The governance package adopts explicit version-aware request resolution semantics.
 
 - `MutationRequest` keeps an `ExpectedStateVersion`
-- request resolution must compare current state version with expected version
-- stale requests must not silently execute without an explicit rule
-- runtime resolution should choose among:
-  - re-validate and execute against latest state
-  - reject as stale
-  - require renewed approval
-
-The exact resolution policy is intentionally left open for the first runtime implementation.
+- request resolution compares current state version with expected version
+- stale requests do not silently execute
+- governance runtime resolves stale requests through one of three explicit strategies:
+  - `RejectStale`
+  - `RequireRenewedApproval`
+  - `RevalidateOnLatestState`
+
+Current runtime contract:
+
+- matching version, or no expected version:
+  - request receives `VersionValidated`
+  - outcome is `ExecuteApprovedVersion`
+- stale request with `RejectStale`:
+  - request becomes `Rejected`
+  - request receives `RejectedAsStale`
+- stale request with `RequireRenewedApproval`:
+  - request returns to `Pending`
+  - `PendingReason` becomes `Approval`
+  - `ExpectedStateVersion` is updated to the current version
+  - request receives `RenewedApprovalRequired`
+- stale request with `RevalidateOnLatestState`:
+  - request stays `Approved`
+  - `ExpectedStateVersion` is updated to the current version
+  - request receives `RevalidationRequired`
 
 ## Design Rationale
 
@@ -57,15 +71,18 @@ The exact resolution policy is intentionally left open for the first runtime imp
 
 ### Positive
 
-- Governance runtime will have explicit semantics for stale approvals.
+- Governance runtime now has explicit semantics for stale approvals.
 - Deferred execution becomes safer and more auditable.
+- Request decision history reflects stale detection and final resolution path.
 
 ### Negative
 
 - This introduces additional policy and runtime complexity.
 - Different domains may want different stale resolution strategies.
+- Revalidation itself is still a separate runtime step beyond this version-resolution contract.
 
 ## Related ADRs
 
 - ADR-020: Governance MutationRequest Model
 - ADR-021: Governance Pending Mutation Lifecycle
+- ADR-022: Governance Request Decisions and Storage

Examples/Governance/VersionedResolution/Program.cs

@@ -0,0 +1,3 @@
+using VersionedResolution.Scenarios;
+
+GovernanceVersionedResolutionScenario.Run();

Examples/Governance/VersionedResolution/README.md

@@ -0,0 +1,37 @@
+# Governance VersionedResolution
+
+This example shows how `MutationRequestVersionResolver` handles requests that were approved against an older state version.
+
+It is the direct runnable example for the semantics introduced around `ExpectedStateVersion` and stale request handling.
+
+## What it demonstrates
+
+- resolving a request when the current state version still matches
+- resolving stale requests with `RejectStale`
+- resolving stale requests with `RequireRenewedApproval`
+- resolving stale requests with `RevalidateOnLatestState`
+- inspecting the resulting lifecycle state and appended decision history
+
+## Key files
+
+- [`Program.cs`](Program.cs)
+- [`Scenarios/GovernanceVersionedResolutionScenario.cs`](Scenarios/GovernanceVersionedResolutionScenario.cs)
+- [`src/Governance/Runtime/MutationRequestVersionResolver.cs`](../../../src/Governance/Runtime/MutationRequestVersionResolver.cs)
+- [`src/Governance/Abstractions/Resolution/VersionedRequestResolutionStrategy.cs`](../../../src/Governance/Abstractions/Resolution/VersionedRequestResolutionStrategy.cs)
+- [`src/Governance/Abstractions/Resolution/MutationRequestVersionResolution.cs`](../../../src/Governance/Abstractions/Resolution/MutationRequestVersionResolution.cs)
+
+## Run
+
+```bash
+dotnet run --project Examples/Governance/VersionedResolution/VersionedResolution.csproj
+```
+
+## Expected output
+
+The sample prints one block per resolution strategy and shows:
+
+- selected outcome
+- whether the request was stale
+- resulting request status
+- updated expected version
+- last decision recorded during resolution

Examples/Governance/VersionedResolution/Scenarios/GovernanceVersionedResolutionScenario.cs

@@ -0,0 +1,83 @@
+using ModularityKit.Mutator.Abstractions.Context;
+using ModularityKit.Mutator.Abstractions.Intent;
+using ModularityKit.Mutator.Governance.Abstractions.Requests;
+using ModularityKit.Mutator.Governance.Abstractions.Resolution;
+using ModularityKit.Mutator.Governance.Runtime.Resolution;
+
+namespace VersionedResolution.Scenarios;
+
+internal static class GovernanceVersionedResolutionScenario
+{
+    public static void Run()
+    {
+        var resolver = new MutationRequestVersionResolver();
+
+        PrintSection("Current Version Matches Expected Version");
+        PrintResolution(
+            resolver.Resolve(
+                CreateApprovedRequest("v10"),
+                currentStateVersion: "v10",
+                resolutionContext: MutationContext.User("approver-1", "Approver One", "Current version verified"),
+                strategy: VersionedRequestResolutionStrategy.RejectStale));
+
+        PrintSection("Reject Stale");
+        PrintResolution(
+            resolver.Resolve(
+                CreateApprovedRequest("v10"),
+                currentStateVersion: "v15",
+                resolutionContext: MutationContext.User("approver-2", "Approver Two", "Reject stale request"),
+                strategy: VersionedRequestResolutionStrategy.RejectStale));
+
+        PrintSection("Require Renewed Approval");
+        PrintResolution(
+            resolver.Resolve(
+                CreateApprovedRequest("v10"),
+                currentStateVersion: "v15",
+                resolutionContext: MutationContext.User("approver-3", "Approver Three", "Request renewed approval"),
+                strategy: VersionedRequestResolutionStrategy.RequireRenewedApproval));
+
+        PrintSection("Revalidate On Latest State");
+        PrintResolution(
+            resolver.Resolve(
+                CreateApprovedRequest("v10"),
+                currentStateVersion: "v15",
+                resolutionContext: MutationContext.User("approver-4", "Approver Four", "Revalidate on the latest state"),
+                strategy: VersionedRequestResolutionStrategy.RevalidateOnLatestState));
+    }
+
+    private static MutationRequest CreateApprovedRequest(string expectedStateVersion)
+    {
+        return MutationRequest.Approved(
+            stateId: "tenant-42:roles",
+            stateType: "IamRoleState",
+            mutationType: "GrantRoleMutation",
+            intent: new MutationIntent
+            {
+                OperationName = "GrantRole",
+                Category = "Security",
+                Description = "Grant elevated role to tenant operator"
+            },
+            context: MutationContext.User("requester-1", "Requester One", "Need elevated access for incident"),
+            expectedStateVersion: expectedStateVersion);
+    }
+
+    private static void PrintSection(string title)
+    {
+        Console.WriteLine();
+        Console.WriteLine($"=== {title} ===");
+    }
+
+    private static void PrintResolution(MutationRequestVersionResolution resolution)
+    {
+        var decision = resolution.Request.Decisions[^1];
+
+        Console.WriteLine($"Outcome: {resolution.Outcome}");
+        Console.WriteLine($"Was stale: {resolution.IsStale}");
+        Console.WriteLine($"Expected version: {resolution.ExpectedStateVersion ?? "-"}");
+        Console.WriteLine($"Current version: {resolution.CurrentStateVersion}");
+        Console.WriteLine($"Request status: {resolution.Request.Status}");
+        Console.WriteLine($"Next expected version: {resolution.Request.ExpectedStateVersion ?? "-"}");
+        Console.WriteLine($"Last decision: {decision.Type}");
+        Console.WriteLine($"Decision reason: {decision.Reason}");
+    }
+}

Examples/Governance/VersionedResolution/VersionedResolution.csproj

@@ -0,0 +1,14 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+    <PropertyGroup>
+        <OutputType>Exe</OutputType>
+        <TargetFramework>net10.0</TargetFramework>
+        <ImplicitUsings>enable</ImplicitUsings>
+        <Nullable>enable</Nullable>
+    </PropertyGroup>
+
+    <ItemGroup>
+      <ProjectReference Include="..\..\..\src\ModularityKit.Mutator.Governance.csproj" />
+    </ItemGroup>
+
+</Project>

src/Governance/Abstractions/Lifecycle/MutationRequestStatus.cs

@@ -1,4 +1,4 @@
-namespace ModularityKit.Mutator.Governance;
+namespace ModularityKit.Mutator.Governance.Abstractions.Lifecycle;
 
 /// <summary>
 /// Represents the lifecycle status of governed mutation request.

src/Governance/Abstractions/Lifecycle/PendingMutationReason.cs

@@ -1,4 +1,4 @@
-namespace ModularityKit.Mutator.Governance;
+namespace ModularityKit.Mutator.Governance.Abstractions.Lifecycle;
 
 /// <summary>
 /// Describes why a mutation request cannot execute immediately.

src/Governance/Abstractions/Requests/MutationRequest.cs

@@ -1,8 +1,9 @@
 using ModularityKit.Mutator.Abstractions.Context;
 using ModularityKit.Mutator.Abstractions.Intent;
 using ModularityKit.Mutator.Abstractions.Policies;
+using ModularityKit.Mutator.Governance.Abstractions.Lifecycle;
 
-namespace ModularityKit.Mutator.Governance;
+namespace ModularityKit.Mutator.Governance.Abstractions.Requests;
 
 /// <summary>
 /// Represents a governed mutation request that may execute immediately or enter a pending lifecycle.
@@ -117,7 +118,11 @@ public static MutationRequest Pending(
                 MutationRequestDecision.Create(
                     MutationRequestDecisionType.Submitted,
                     context,
-                    reason: context.Reason)
+                    reason: context.Reason),
+                MutationRequestDecision.Create(
+                    MutationRequestDecisionType.Pending,
+                    context,
+                    reason: $"Request entered pending lifecycle for reason '{pendingReason}'.")
             ]
         };
     }

src/Governance/Abstractions/Requests/MutationRequestDecision.cs

@@ -1,6 +1,6 @@
 using ModularityKit.Mutator.Abstractions.Context;
 
-namespace ModularityKit.Mutator.Governance;
+namespace ModularityKit.Mutator.Governance.Abstractions.Requests;
 
 /// <summary>
 /// Captures a single decision or lifecycle transition applied to a mutation request.

src/Governance/Abstractions/Requests/MutationRequestDecisionType.cs

@@ -1,15 +1,20 @@
-namespace ModularityKit.Mutator.Governance;
+namespace ModularityKit.Mutator.Governance.Abstractions.Requests;
 
 /// <summary>
 /// Represents a governance decision taken against a mutation request.
 /// </summary>
 public enum MutationRequestDecisionType
 {
     Submitted = 0,
-    Approved = 1,
-    Rejected = 2,
-    Canceled = 3,
-    Expired = 4,
-    Superseded = 5,
-    Executed = 6
+    Pending = 1,
+    Approved = 2,
+    Rejected = 3,
+    Canceled = 4,
+    Expired = 5,
+    Superseded = 6,
+    Executed = 7,
+    VersionValidated = 8,
+    RevalidationRequired = 9,
+    RenewedApprovalRequired = 10,
+    RejectedAsStale = 11
 }