Accepted (documentation-first; implementation deferred).
Agents may propose corpus or formal edits. Verification must remain human-gated at merge time (Lean build, validate-all, portal build).
- Contract: Tools expose read-only graph/manifest queries and proposal artifacts (
proof_repair_proposal,proof_repair_apply_bundle). No autonomous write tocorpus/orformal/without a human PR. - Apply path: Only
sm-pipeline proof-repair-applywith--i-understand-human-reviewedmay modifyformal/from a reviewed bundle. CI never runs apply. - Optional worker: A future HTTP or queue worker would enqueue proposals for human review only; no auto-merge. MCP and CLI remain the reference integration surface until a product need justifies a worker service.
Documentation in mcp-lean-tooling.md describes the recommended agent loop. New worker code requires ADR amendment and security review.