MIRAI prototype — evaluate abstract interpretation on traceability engine internals (artifact store, link graph)

[avrabe]

Part of the V&V coverage initiative — Phase 5 (Abstract Interpretation).

Context

Abstract interpretation is the one layer of the PulseEngine V&V chain we do not yet run — the third DO-333 technique class alongside theorem proving (Lean / Rocq) and bounded model checking (Kani). We are running three weekend-scale prototypes across sigil, gale, and rivet to understand what property classes AI catches on our actual code before committing to a long-term investment.

rivet is the third prototype target. Different from the other two: this is not primitives or crypto — it is a traceability engine with artifact indexing, link graph analysis, and YAML parsing. The question is whether MIRAI catches different property classes in higher-level data-structure code than it does in the kernel / crypto targets.

Tool

MIRAI — abstract interpreter for Rust MIR from Meta. Research-grade, low recent activity, open source. Designed for Rust; covers integer overflow, panic reachability, some memory properties.

Target code paths

• rivet-core/src/store.rs — artifact storage / retrieval, index lookups
• rivet-core/src/proofs.rs — Kani-harnessed paths (compare MIRAI and Kani findings head-to-head)
• Link graph analysis — coverage computation, reachability queries
• Schema validation — YAML field access, required-field checks

Property classes to watch for: out-of-bounds on artifact-index access, integer overflow in counts, panic-freedom on malformed YAML, unreachable-code paths in validation.

Acceptance

• MIRAI installed hermetically and running on rivet-core
• Report committed at docs/research/mirai-prototype-report.md documenting:
  • Code paths analyzed
  • Properties MIRAI flagged
  • Side-by-side comparison with existing Kani proofs in rivet-core/src/proofs.rs — did MIRAI find anything Kani missed, or vice versa?
  • Integration cost assessment
  • Verdict: signal worth integration cost on rivet specifically?
  • Go / no-go for MIRAI as a CI gate on rivet
• Findings summary posted back to V&V hub (rivet#184) under Phase 5

Cross-repo synthesis

After all three prototypes (sigil, gale, rivet) complete, we want a cross-repo summary: does MIRAI behave consistently across code styles (crypto parsers, kernel primitives, data-structure code)? That synthesis belongs in the V&V hub update, not in any single prototype report.

Related

• Sibling prototypes (parallel experiments): pulseengine/sigil, pulseengine/gale
• Long-term follow-up: pulseengine/rules_lean — Charon-based value analysis pass on LLBC
• V&V coverage hub: rivet#184

Non-goals

• Production adoption. Evaluation only.
• Replacing Kani. Abstract interpretation is complementary, expected to catch classes Kani does not (non-terminating analysis, cross-function integer-range invariants).

[avrabe]

Triage: acceptance criteria are present and unambiguous, but the work is a research/evaluation prototype (install MIRAI hermetically, run on rivet-core/src/store.rs + proofs.rs, write a comparative report). That's a multi-day timeboxed exercise rather than a one-session implementation, and MIRAI's "research-grade, low recent activity" status means installation feasibility is itself part of the experiment.

Proposed first-step sub-issue (small, oracle-checkable) so the experiment can start:

## Acceptance — MIRAI feasibility spike (sub-issue of #191)
- [ ] Document the exact MIRAI install procedure that works against the rivet rust-toolchain (commit + commands in `docs/research/mirai-prototype-report.md`)
- [ ] One-liner reproducer: `mirai-on-rivet-core` script in `scripts/research/` that runs MIRAI against `rivet-core/src/store.rs` and exits with a stable status
- [ ] First-pass diagnostics dumped to `results/mirai/store.txt` (committed)
- [ ] Report stub committed; sections for "code paths analyzed", "properties flagged", "Kani comparison", "verdict" exist as TODO placeholders

If the spike succeeds, the rest of the original acceptance bullets become tractable as a follow-up. If it fails (install impossible against current toolchain), the spike output is itself the verdict.

Confirm the spike scope and I'll pick it up.

---

Generated by Claude Code

[avrabe]

Draft PR opened — #264 — picking up the feasibility-spike sub-AC proposed in the 2026-04-26 triage comment.

Important finding before the spike even starts: the issue body references facebookexperimental/MIRAI, which was archived on 2024-08-22. Active maintenance lives at endorlabs/MIRAI (latest v1.1.12, 2025-03-04, nightly-2025-01-10 pin). The PR's scaffolding targets the Endor Labs fork; the report flags the substitution. The issue body and the parent V&V hub's Phase-5 entry will likely want a corresponding update.

Spike progress:

• ✅ Validated install procedure (rustup + clone + cargo install pipeline) — encoded in scripts/research/mirai-on-rivet-core.sh.
• ✅ Report stub at docs/research/mirai-prototype-report.md with all section placeholders the original AC demands.
• ⏳ First-pass diagnostics: cargo install --locked --path ./checker is compiling at PR-open time (10-15 min on a 4-core box). Diagnostics will land as a follow-up commit on the branch (or as an honest install-failure record per the prior triage's "if install fails, the spike output is itself the verdict" framing).

PR is draft until the diagnostics are committed.

---

Generated by Claude Code — issue-triage agent run 2026-05-07.

---

Generated by Claude Code

[avrabe]

Spike completed end-to-end this run — PR #264 now carries the verdict commit on top of the scaffold. Headline:

Verdict (outcome 3 of the framed three): hold the prototype. MIRAI v1.1.12's pinned toolchain (nightly-2025-01-10, rustc 1.86.0-nightly) cannot build today's rivet-core because:

1. rivet-core/Cargo.toml declares rust-version = "1.89" (cargo refuses).
2. With --ignore-rust-version, spar-annex (via the spar external) uses stable-since-1.88 let_chains syntax that the pre-stabilization nightly rejects.

Both errors are committed under results/mirai/ (install-summary.txt, run-msrv.txt, run-let-chains.txt).

This is exactly the "if install fails, the spike output is itself the verdict" outcome the 2026-04-26 triage comment framed up. The blocker is upstream — endorlabs/MIRAI pinning a let_chains-stable nightly (≥ ~2025-04) — not rivet code. The runner script scripts/research/mirai-on-rivet-core.sh resumes the experiment in one shot when that happens.

Also flagged in the PR: the issue body and the #184 Phase-5 row reference facebookexperimental/MIRAI, which has been archived since 2024-08-22. Live fork is endorlabs/MIRAI. Worth a one-line edit if you agree.

PR is still draft — let me know if you want it flipped to ready-for-review as a spike report, or held until the upstream pin moves and we can resume.

---

Generated by Claude Code — issue-triage agent run 2026-05-07.

---

Generated by Claude Code

[avrabe]

State update (issue-triage agent run 2026-05-15):

PR #264 merged today at 14:14 UTC — feasibility-spike report, runner script, and committed failure diagnostics are now on main as commit 06f6fbe.

Mapping back to this issue's original ## Acceptance:

• Report committed at docs/research/mirai-prototype-report.md — shipped via spike(research): MIRAI feasibility scaffold for rivet-core (#191) #264.
• Findings summary posted back to V&V hub (Tracking: pulseengine-wide V&V coverage initiative #184) under Phase 5 — posted just now.
• MIRAI installed hermetically and running on rivet-core — install procedure works; running against rivet-core remains gated upstream.

Upstream gate re-verified 2026-05-15: endorlabs/MIRAI has no release after v1.1.12 (2025-03-04). Its rust-toolchain.toml on main still pins nightly-2025-01-10 — pre-let_chains stabilization, and below rivet-core's rust-version = "1.89". The runner script will resume the prototype in one shot when upstream bumps that pin past rustc 1.88 (~ nightly-2025-04 or later). No iteration possible from rivet-side this run.

Issue stays open as a holding placeholder for the upstream gate.

🤖 issue-triage agent run 2026-05-15.

---

Generated by Claude Code

[avrabe]

Spike landed in #264. Verdict: hold — MIRAI v1.1.12 pins nightly-2025-01-10 (rustc 1.86.0); rivet-core declares MSRV 1.89, and the spar-annex dep uses stable let_chains (rust ≥ 1.88). Both blockers documented in docs/research/mirai-prototype-report.md. Resumable via the in-tree runner script (scripts/research/mirai-on-rivet-core.sh) once Endor Labs bumps the pinned nightly past let_chains stabilization.