The PMFA Execution Model

All business reality is produced through one lawful pipeline.

UI expresses intent →

Kernel validates intent against law →

Events record immutable truth →

Projections derive observable state →

Reality becomes explainable and replayable

There is no mutation.
There is no override.
There is no silent change.

Event-Sourced Core

Every action is an event. Events are immutable. The current state is always a projection of all events. This is not a pattern—it is a requirement. Systems that mutate state directly are not PMFA-compliant.

Policy Engine

Business rules are not scattered in code. They live in a dedicated policy layer that is executable, testable, and auditable. Policy changes are versioned and traceable.

Kernel/Extension Separation

The kernel is sacred. It contains invariants that cannot be violated. Extensions can add functionality but cannot modify kernel behavior. This separation is absolute.

Temporal Model

Time is a first-class dimension. Every fact has a valid-time and a transaction-time. Retroactive changes are tracked, not hidden. The system knows what it knew when.

Projection Infrastructure

Read models are projections. They can be rebuilt from events at any time. They are optimized for queries but are never the source of truth.

Audit by Design

Audit is not a feature. It is a consequence of architecture. Because all state changes are events, and all events are immutable, every system built on PMFA is inherently auditable.

Canonical text. Interpretations are invalid.
SHA-256: 555600dffa9d6208fa3183c82b3e801a8319499b3df95548e9641c638285be17