When the code stops doing what the spec said it should — caught before it ships.
The most ambitious of the repair axes. Securie reads ADRs + grok-extracted L1 symbols + spec docs + actual execution traces, then semantically compares against current code. When intent and code diverge, Securie opens a fix PR on whichever side rotted (usually code; sometimes docs when grok detects doc-rot).
AI agents iterate on code at a pace that makes documentation-update a chronic loser. Spec said the auth check goes here; six PRs later the auth check is gone but the spec didn't notice. Intent drift is silent — until it isn't.
Securie's intent-vs-code-aligner runs nightly across the Ring 0 Codebase Knowledge Base + ADR set + execution traces. Mismatches escalate to a fix PR or a doc-update PR depending on which side rotted.
Every component declares a machine-checkable contract (effects, capabilities, dataflows, auth boundaries). Code that diverges from its contract is a first-class finding, not a soft-warning.
Architectural auditor specialist (Business+) tracks intent across multiple PRs — a single PR may look fine; three PRs in sequence may collectively drift the auth model.
Documentation drift is one symptom of intent drift, not the whole axis. Securie also catches code drift FROM stable documentation.
AI review tools comment on PRs without a model of declared intent. Securie's intent-vs-code-aligner has explicit machine-checkable contracts to verify against.