Registrum is a state registrar that validates transitions against structural invariants. The interesting bit isn't the validation logic—it's the governance model around releases.
This latest release (v0.1.0) focused entirely on packaging integrity: single version source, explicit checksum vs hash semantics, documented tooling assumptions. No runtime changes at all.
The motivation: I kept running into situations where packaging ambiguity caused trust issues downstream—mismatched versions, unclear hash guarantees, undocumented assumptions. So I decided to treat packaging as part of the system's integrity surface rather than an afterthought.
Happy to answer questions about the dual-witness architecture (two independent invariant engines that must agree) or the governance model.