SCRIMED OS

SCRIMED Build Roadmap

Healthcare intelligence architecture that treats models as interfaces, not the whole system.

This roadmap turns SCRIMED toward world models, active ontology, semantic graphs, decision memory, dynamic context injection, independent validation, workforce intelligence, resource management, and operational benchmarks.

Statusscrimed-build-roadmap-active-no-phi
Directives10
Modules6
World layers6
Benchmarks5
Priority stack8
Doc authpass
De-IDpass
Harnessfail
Pre-indexpass
Validationfail
Contextpass
Executionfail

GO / NO-GO

Roadmap architecture can advance now; production healthcare authority remains blocked.

SCRIMED Build Roadmap is a no-PHI, architecture-and-governance planning layer. It does not authorize live PHI, autonomous diagnosis, treatment, prescribing, patient outreach, payer submission, billing submission, EHR writeback, production connector use, certification claims, clinical validation claims, compliance completion claims, or customer go-live.

GO for no-PHI roadmap architecture, synthetic fixtures, internal build planning, schema and benchmark design, module registry updates, and investor/buyer diligence explanation.

NO-GO for live PHI, autonomous diagnosis, treatment, prescribing, patient outreach, payer submission, billing submission, EHR writeback, production connector use, certification claims, compliance completion claims, clinical validation claims, or customer go-live.

Omnigent-style Meta-Harness

One governed control plane coordinates SCRIMED agents, sessions, tools, approvals, and audit metadata.

SCRIMED Meta-Harness is a synthetic/no-PHI orchestration control plane for coding, clinical, documentation, evidence, operations, and trust/safety agents. It coordinates shared sessions, policies, guardrails, permissions, human approval gates, and audit metadata. It does not process live PHI, grant autonomous clinical authority, submit payer work, write to EHRs, activate production connectors, log raw payloads, or execute protected actions.

Agents: 6. Session: synthetic_shared_session_ready. Approval gate: human_approval_required_for_high_stakes.

human_review_required

meta-harness-low-risk-code-review

Assigned agents: coding_agent, trust_safety_agent. Blocked actions: none.

human_review_required
  • Tools: read_only_code_inspector:allowed, schema_validator:allowed, audit_recorder:allowed
  • No PHI confirmed: yes
  • No external side effects: yes
  • Audit: scrimed-intel-27f15c5e
human_review_required

meta-harness-clinical-review-packet

Assigned agents: clinical_agent, documentation_agent, evidence_agent, trust_safety_agent. Blocked actions: none.

human_review_required
  • Tools: synthetic_context_loader:allowed, schema_validator:allowed, policy_gate:allowed, evidence_binder:allowed, human_approval_queue:allowed, audit_recorder:allowed
  • No PHI confirmed: yes
  • No external side effects: yes
  • Audit: scrimed-intel-cea21115
blocked

meta-harness-blocked-protected-action

Assigned agents: operations_agent, trust_safety_agent. Blocked actions: blocked tool: payer_submission, blocked tool: patient_outreach, blocked tool: ehr_writeback, blocked tool: raw_payload_logger, protected action attempt blocked.

blocked_before_execution
  • Tools: payer_submission:blocked, patient_outreach:blocked, ehr_writeback:blocked, raw_payload_logger:blocked
  • No PHI confirmed: yes
  • No external side effects: yes
  • Audit: scrimed-intel-7e70933a

Pre-Indexed Intelligence

Structure-preserving retrieval metadata reduces thin-connector dependence before model calls.

Pre-Indexed Intelligence is a synthetic/no-PHI, metadata-only ingest-time intelligence scaffold. It preserves document structure, provenance, grounding metadata, and retrieval evaluation for future Clinical Data Fabric and TrustOps workflows. It does not ingest live PHI, store raw connector payloads, expose raw schemas to agents, approve production connectors, make clinical recommendations, submit payer work, contact patients, or write back to EHRs.

Sources: 6. Retrieval tasks: 5. Raw payload storage: blocked.

needs_review

patient matching

Retrieval requires reviewer verification before any protected healthcare use.

Grounding 64
  • Traceability: 70
  • Minimum passing score: 80
  • Candidate sources: preindex-fhir-synthetic-care-summary
  • Human review required: yes
  • Audit: scrimed-intel-d11177b7
needs_review

document similarity

Retrieval requires reviewer verification before any protected healthcare use.

Grounding 57
  • Traceability: 70
  • Minimum passing score: 80
  • Candidate sources: preindex-payer-policy-synthetic-afib, preindex-referral-synthetic-delay, preindex-trial-synthetic-protocol
  • Human review required: yes
  • Audit: scrimed-intel-68d78a90
needs_review

clinical retrieval

Retrieval requires reviewer verification before any protected healthcare use.

Grounding 61
  • Traceability: 70
  • Minimum passing score: 80
  • Candidate sources: preindex-fhir-synthetic-care-summary, preindex-guideline-synthetic-care-gap, preindex-trial-synthetic-protocol
  • Human review required: yes
  • Audit: scrimed-intel-ec192c55
needs_review

payer policy lookup

Retrieval requires reviewer verification before any protected healthcare use.

Grounding 55
  • Traceability: 70
  • Minimum passing score: 80
  • Candidate sources: preindex-payer-policy-synthetic-afib, preindex-rcm-synthetic-denial-playbook
  • Human review required: yes
  • Audit: scrimed-intel-238a7ad6
needs_review

recommendation search

Retrieval requires reviewer verification before any protected healthcare use.

Grounding 58
  • Traceability: 70
  • Minimum passing score: 80
  • Candidate sources: preindex-fhir-synthetic-care-summary, preindex-referral-synthetic-delay, preindex-guideline-synthetic-care-gap, preindex-rcm-synthetic-denial-playbook
  • Human review required: yes
  • Audit: scrimed-intel-94cd4457

On-Device De-Identification

Local-first privacy controls prepare documents for review before any external inference path.

On-Device De-Identification is a synthetic/no-PHI local-first privacy scaffold for browser, Mac, and iPhone-capable preprocessing. It emits metadata-only redaction manifests for PDFs, scans, images, HL7 v2, CDA, FHIR, CSV, NDJSON, and chat logs. It does not store raw payloads, process live PHI, send data to external inference, certify de-identification, or authorize production connector use.

Runtime targets: browser, mac, iphone. Document families covered: 9.

pdf

deid-pdf-synthetic-intake

Status: manual_verification_required. Simulated categories: patient_name, date_of_birth, mrn.

metadata_manifest_only
  • Targets: browser, mac
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-c4a02514
scan

deid-scan-synthetic-referral

Status: manual_verification_required. Simulated categories: patient_name, phone.

metadata_manifest_only
  • Targets: mac, iphone
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-43c78ea5
image

deid-image-synthetic-card

Status: manual_verification_required. Simulated categories: device_identifier.

metadata_manifest_only
  • Targets: browser, iphone
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-b9bde5a3
hl7_v2

deid-hl7-v2-synthetic-adt

Status: manual_verification_required. Simulated categories: patient_name, mrn, phone.

metadata_manifest_only
  • Targets: mac
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-e4cf5f1e
cda

deid-cda-synthetic-summary

Status: manual_verification_required. Simulated categories: patient_name, date_of_birth, address.

metadata_manifest_only
  • Targets: browser, mac
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-ec2c8e0b
fhir

deid-fhir-synthetic-bundle

Status: manual_verification_required. Simulated categories: patient_name, mrn, email.

metadata_manifest_only
  • Targets: browser, mac
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-a370ea14
csv

deid-csv-synthetic-roster

Status: manual_verification_required. Simulated categories: patient_name, phone, email.

metadata_manifest_only
  • Targets: browser, mac
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-d1aa70eb
ndjson

deid-ndjson-synthetic-export

Status: manual_verification_required. Simulated categories: mrn, device_identifier.

metadata_manifest_only
  • Targets: mac
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-efa2f0ab
chat_log

deid-chat-log-synthetic-support

Status: manual_verification_required. Simulated categories: patient_name, phone, email.

metadata_manifest_only
  • Targets: browser, mac, iphone
  • External inference allowed: no
  • Raw payload stored: no
  • Human verification required: yes
  • Audit: scrimed-intel-bb21a697

Documentation-Before-Authorization Engine

Prior-auth risk is reduced before submission by finding documentation gaps first.

Documentation-Before-Authorization Engine is synthetic/no-PHI pre-submission intelligence. It can identify documentation gaps, draft reviewer packets, and estimate prior-auth risk for demo workflows only. It does not submit prior authorizations, file claims, determine medical necessity, provide legal advice, contact payers, write to EHRs, or use live patient data.

high

doc-auth-afib-ablation-synthetic-gap

Readiness: blocked_before_submission. Missing evidence: Symptom language, Functional status, Visit timing, Recent visit note, Reviewer attestation.

clinical_reviewer
  • Prior-auth risk: missing symptom language, missing functional status, missing visit timing, missing recent visit note, missing reviewer attestation, human reviewer attestation incomplete
  • Automation: blocked
  • Human review required: yes
  • Payer submission allowed: no
  • Audit: scrimed-intel-40ecb0ad
low

doc-auth-imaging-synthetic-review-ready

Readiness: review_ready. Missing evidence: none in synthetic packet.

rcm_reviewer
  • Prior-auth risk: low synthetic risk
  • Automation: recommendation_only
  • Human review required: yes
  • Payer submission allowed: no
  • Audit: scrimed-intel-13d48030

Priority Stack

SCRIMED is now explicitly organized as a governed healthcare meta-harness.

SCRIMED must be a governed healthcare meta-harness: orchestrating agents, data, documentation, evidence, and outcomes with human oversight at every high-stakes step.

P0

Omnigent-style Meta-Harness

Unify coding, clinical, documentation, evidence, and operations agents under one orchestrator with shared sessions, guardrails, policies, auditability, and approval gates.

Bind Agent Runtime, TrustOps, Intelligence Platform evaluator, and Dynamic Context Injection into one metadata-only orchestration contract.
  • Lane: single orchestrator contract, shared session context, agent permission manifest, policy gate, human approval checkpoint
  • Outputs: orchestration plan, tool access decision, approval route, audit hash, blocked action list
  • Oversight: Human approval remains required before any protected clinical, payer, connector, outreach, or system-of-record action.
  • Boundaries: no live PHI, no autonomous clinical authority, no direct database or connector action by models
P0

Documentation-Before-Authorization Engine

Detect prior-authorization documentation gaps before submission, including symptom language, functional status, visit timing, medical-necessity phrasing, policy criteria, and denial risk.

Create synthetic prior-auth documentation gap fixtures and connect them to TrustOps reviewer queues.
  • Lane: payer-policy checklist schema, documentation gap detector, medical necessity phrase map, visit timing validator, pre-submission risk packet
  • Outputs: documentation gap list, prior-auth risk score, reviewer packet, missing evidence map, submission blocked status
  • Oversight: RCM or clinical reviewer must approve any payer-facing packet; SCRIMED does not submit prior authorizations or claims.
  • Boundaries: no payer submission, no billing submission, no medical necessity final determination
P1

Edge Clinical Trial Evidence Layer

Prepare site/device-level trial evidence capture that can validate, hash, and sync decentralized-trial metadata without exposing live participant data.

Add a metadata-only edge trial evidence envelope to the Clinical Memory Graph and Evidence Binding layer.
  • Lane: edge evidence envelope, site/device provenance, tamper-evident hash, offline sync status, trial monitor review queue
  • Outputs: evidence envelope, provenance hash, validation status, sync readiness, monitor review flag
  • Oversight: Trial monitor, investigator, or sponsor-designated reviewer must validate before operational or regulatory use.
  • Boundaries: no live participant data, no regulatory submission, no clinical trial enrollment action
P0

On-Device De-Identification

Move PHI detection/redaction toward local browser, Mac, and mobile-capable preprocessing for documents and messages before any external inference path.

Define a local de-identification manifest schema and no-secret fixture set for all supported document families.
  • Lane: document-type detector, PHI span scanner, redaction manifest, local-first processing policy, de-identification audit summary
  • Outputs: redaction manifest, document class, PHI risk score, human verification flag, blocked upload reason
  • Oversight: Human verification remains required before any de-identified artifact is used beyond synthetic demo mode.
  • Boundaries: no raw PHI upload, no raw connector payload logging, no external inference without explicit authorization
P0

Clinical AI Benchmark Lab

Measure SCRIMED against general models by specialty using physician-style grading dimensions without claiming clinical validation.

Extend ClinicalBench with specialty rubrics and evaluator outputs that preserve evidence, uncertainty, and reviewer status.
  • Lane: specialty benchmark suites, physician grader rubric, source-quality scoring, verifiability checks, completeness and utility scoring
  • Outputs: clinical readiness score, source quality score, verifiability score, utility score, review requirement
  • Oversight: Qualified physician graders or designated clinical reviewers remain the authority for benchmark disposition.
  • Boundaries: no diagnosis, no treatment recommendation, no clinical validation claim
P0

Automation Orchestrator

Advance SCRIMED from chatbot UX toward governed workflow execution with tool calls, retries, approvals, audit logs, and rollback plans.

Promote existing execution-attempt envelopes into a deterministic workflow-orchestration contract.
  • Lane: workflow state machine, tool invocation registry, approval gate, retry and fallback policy, audit event stream
  • Outputs: workflow plan, safe tool decision, approval checkpoint, retry decision, audit trace
  • Oversight: Automation can recommend or prepare actions, but protected healthcare actions remain blocked or approval-gated.
  • Boundaries: no autonomous outreach, no EHR writeback, no payer or billing submission
P1

Pre-Indexed Intelligence

Reduce thin-connector dependency by building ingest-time pipelines with enriched indexes, provenance, grounding, and retrieval evaluation.

Add pre-indexed intelligence requirements to Clinical Data Fabric and TrustOps retrieval-evaluation contracts.
  • Lane: ingest-time parser, structure-preserving chunker, provenance index, retrieval evaluation set, grounding quality report
  • Outputs: enriched index record, provenance chain, retrieval score, grounding report, staleness flag
  • Oversight: Governance reviewer approves production indexes, source scope, retention, and connector activation.
  • Boundaries: no raw schema exposure to agents, no production connector approval, no unreviewed source ingestion
P1

AI Medical Education Layer

Expand SCRIMED University into clinician training, AI literacy, skill assessment, feedback loops, and personalized learning paths.

Add SCRIMED University assessment metadata and feedback loops to the product readiness registry.
  • Lane: clinician training track, skill assessment rubric, AI literacy modules, feedback capture, personalized learning plan
  • Outputs: learning plan, skill assessment, feedback packet, readiness milestone, non-certification disclaimer
  • Oversight: Education leaders and clinical governance reviewers approve curriculum and assessment language before external use.
  • Boundaries: no credentialing claim, no certification claim, no clinical competency authorization

Directives

The ten requested roadmap directives are represented as build tracks with validation and boundaries.

ai-interface

Treat LLMs as the interface layer, not the whole system.

SCRIMED should use models for reasoning, summarization, drafting, translation, and human-facing interfaces while deterministic services own state, rules, identity, policy, evidence, and execution boundaries.

active-roadmap
  • Architecture: Separate model interface adapters from workflow state machines., Route all protected actions through policy, schema, evidence, and human-review services., Keep model output as draft or recommendation until validated.
  • Tracks: Model adapter interface, Workflow orchestrator, Policy gate, Evidence binding, Human review queue
  • Validation: Route contract tests prove models do not write directly to systems of record., Generated outputs must pass structured schema checks., Human-review flags must remain true for protected healthcare workflows.
  • Next: Add interface-layer tags to model routes so every AI output declares draft, recommendation, or metadata-only status.
context-world-model

Add world-model/context layers for messy healthcare data.

SCRIMED must represent incomplete, conflicting, delayed, noisy, and context-dependent healthcare data before model calls, not hope a prompt can resolve operational reality.

starter-build-ready
  • Architecture: Create context layers for patient journey state, clinical workflow state, payer state, RCM state, access state, geography, time, capacity, and evidence freshness., Add uncertainty, missingness, conflict, source, and timestamp fields to context packets., Compress context before model use while preserving provenance.
  • Tracks: Context packet schema, World-model state registry, Uncertainty labels, Source freshness checks, Conflict detection
  • Validation: Synthetic messy-data fixtures test missing, conflicting, stale, temporal, and unit-inconsistent inputs., Context packets must expose uncertainty and missingness., Reviewer queues receive escalation when context is insufficient.
  • Next: Create synthetic world-model fixtures for time-series, geography, physical constraints, payer rules, workflow state, and patient journey state.
semantic-graph

Build active ontology + semantic graph for clinical, payer, RCM, patient-access, and operations logic.

SCRIMED should reason over governed relationships between concepts, rules, workflows, evidence, owners, and allowed actions rather than free-text guesses.

starter-build-ready
  • Architecture: Create ontology domains for clinical, payer, RCM, patient access, operations, workforce, resource, and governance logic., Bind semantic graph nodes to evidence, policy, workflow state, and reviewer ownership., Require graph-derived constraints before model execution.
  • Tracks: Ontology registry, Semantic graph node schema, Relation vocabulary, Evidence lineage, Policy constraint resolver
  • Validation: Graph nodes must have type, owner, evidence requirement, and safety boundary., Edges must be constrained to known relationship types., Contradictory graph paths must route to human review.
  • Next: Extend the TrustOps semantic graph with ontology node types for payer rules, RCM denial logic, access queues, workforce capacity, and resource constraints.
memory-audit

Store agent reasoning traces, audit logs, and decisions as long-term memory.

SCRIMED needs durable institutional memory for decisions, evidence, reviewer outcomes, incidents, model routes, tool calls, and audit events without storing hidden chain-of-thought or PHI.

requires-protected-pilot
  • Architecture: Persist decision trace metadata, cited rationale summaries, inputs hashes, evidence refs, policy refs, model route, tool calls, and reviewer disposition., Separate human-readable rationale summaries from private model chain-of-thought., Tie long-term memory to retention, deletion, tenant, residency, and review controls.
  • Tracks: Decision memory schema, Audit event ledger, Evidence envelope hash, Reviewer disposition, Retention and deletion policy
  • Validation: No hidden model chain-of-thought is required or exposed., Memory records must be metadata-only unless future PHI approval exists., Every persisted decision must include evidence refs, policy refs, and reviewer status.
  • Next: Map TrustOps review packets and execution-attempt durable envelopes into a shared long-term decision-memory contract.
context-injection

Add dynamic context injection: deep reasoning at session start, skill/module listing every turn, and task reminders updated every turn.

SCRIMED agents should receive the right module, skill, policy, task, evidence, and safety context at the right moment without preloading everything.

active-roadmap
  • Architecture: Create a context-injection manifest for session start, every turn, and task completion., Run deep planning summaries at session start without exposing hidden chain-of-thought., List relevant skills/modules every turn and refresh task reminders as state changes.
  • Tracks: Session context primer, Per-turn skill/module manifest, Task reminder ledger, Lazy capability loading, Context compression
  • Validation: Context manifests must cite selected modules and omitted modules., Task reminders must be versioned and updated after each workflow state change., Prompt payloads must exclude secrets, PHI, and irrelevant tools.
  • Next: Create a per-turn context manifest schema with selected modules, skill list, active reminders, omitted context, safety boundaries, and evidence refs.
validation-governance

Avoid the self-correction trap: never trust model self-verification alone; validate with schemas, evidence, external data, rules, and human review.

SCRIMED should treat self-critique as one weak signal, not proof. Quality comes from independent validators, evidence, rules, benchmark suites, and accountable reviewers.

active-roadmap
  • Architecture: Require schema validation for structured outputs., Bind claims to evidence cards and source freshness., Use deterministic rule checks before release., Escalate missing, conflicting, or high-risk outputs to human review.
  • Tracks: Structured-output validator, Evidence verifier, Rule engine, Human-review gate, Regression benchmark
  • Validation: Every generated brief must pass schema fidelity checks., Evidence and source attribution must be present for clinical or operational claims., Human-review status must remain unresolved until qualified disposition.
  • Next: Promote schema, evidence, rules, external-data hooks, and reviewer disposition into a release gate for all TrustOps and module briefs.
workforce-talent

Add workforce/talent module for healthcare hiring, onboarding, vacancy-risk, and labor-cost savings.

SCRIMED can expand into operational workforce intelligence for clinics, health systems, and service delivery without touching patient data.

starter-build-ready
  • Architecture: Create workforce demand, vacancy risk, onboarding readiness, credential checklist, training state, and labor-cost model objects., Connect workforce signals to access, scheduling, referral, and operations bottlenecks., Keep employment, HR, legal, and finance claims review-gated.
  • Tracks: Workforce capacity model, Vacancy-risk signal, Onboarding checklist, Labor-cost savings model, Hiring readiness packet
  • Validation: Use synthetic staffing scenarios only., Cost-savings claims require assumptions, ranges, evidence, and finance review., No hiring, employment, legal, or payroll action is automated.
  • Next: Add workforce/talent registry entries to TrustOps with synthetic vacancy-risk and onboarding-readiness signals.
resource-management

Add project/resource management module tracking compute, storage, quota, model usage, pipeline cost, and agent workload.

SCRIMED needs operating economics and capacity intelligence to protect margins, prevent runaway AI costs, and make enterprise scaling credible.

starter-build-ready
  • Architecture: Track compute, storage, quota, model usage, pipeline cost, agent workload, review queue load, and tenant capacity., Connect resource signals to cost guardrails, model routing, deployment readiness, and sales/package margin controls., Create budget thresholds and recommendation-only mitigation packets.
  • Tracks: Resource usage ledger, Model cost telemetry, Pipeline cost estimator, Agent workload queue, Budget guardrail signal
  • Validation: Synthetic usage scenarios test quota exhaustion, model cost spikes, pipeline delays, and overloaded agent queues., Cost estimates must state assumptions and confidence., Mitigations are recommendation-only until approved.
  • Next: Bind model usage, pipeline cost, quota, storage, and agent workload to the TrustOps Signal Engine as synthetic cost-risk signals.
healthcare-world-model

Build toward healthcare world models: time-series, geography, physical constraints, clinical workflow state, payer rules, and patient journey state.

SCRIMED should model healthcare as a dynamic system with time, place, capacity, policy, workflow, and journey state before recommending operations changes.

requires-protected-pilot
  • Architecture: Create world-model layers for time-series trends, geography, physical capacity, clinical state, payer rules, patient journey, workforce, and resource constraints., Represent temporal ordering, dependencies, uncertainty, state transitions, and blocked actions., Use world-model outputs to constrain workflow selection and escalation.
  • Tracks: Time-series state layer, Geography and facility layer, Physical constraints layer, Clinical workflow state layer, Payer rules layer, Patient journey state layer
  • Validation: Synthetic scenarios test impossible timing, geography mismatch, capacity conflicts, payer-rule conflicts, and incomplete journey state., World-model conflicts must block automation and route to review., Outputs must expose limitations and confidence.
  • Next: Create the first synthetic world-model test suite covering temporal order, facility geography, physical capacity, payer rules, and journey state.
benchmarking

Add benchmark layer for structured outputs, schema fidelity, reasoning validity, and operational accuracy.

SCRIMED needs product-specific benchmarks that measure operational correctness and safety rather than generic leaderboard performance.

active-roadmap
  • Architecture: Create benchmark suites for schema fidelity, evidence grounding, reasoning validity, semantic graph consistency, workflow accuracy, and operational impact., Tie benchmark results to release gates and TrustOps scores., Track regressions by module, prompt, model route, and workflow version.
  • Tracks: Benchmark Studio, ClinicalBench, TrustOps score integration, Regression report, Release gate
  • Validation: Structured outputs must match schemas., Reasoning summaries must be evidence-grounded and rule-consistent., Operational outputs must match expected workflow state and owner routing.
  • Next: Add benchmark dimensions to the TrustOps registry and require benchmark status in every build-roadmap release summary.

Modules

New roadmap modules add context injection, ontology, memory, workforce, resource, and benchmark foundations.

Priority build lanes: Dynamic Context Injection Engine and Operational Benchmark Layer.

Agent platform lead

Dynamic Context Injection Engine

Inject session-start planning summaries, per-turn module/skill listings, active task reminders, omitted context, and safety boundaries into agent runs.

Define per-turn context manifest schema and contract smoke for selected modules, skill list, task reminders, and omitted context.
  • Inputs: task request, module registry, skill registry, policy gate, active reminders, evidence refs
  • Outputs: context manifest, selected module list, task reminder update, omitted context log, safety boundary note
  • Controls: no secrets, no PHI, lazy capability loading, context compression, permission-aware tool listing
  • Blocked: tool permission grant, secret exposure, PHI injection, protected action approval
Knowledge systems lead

Active Ontology + Semantic Graph

Represent clinical, payer, RCM, patient-access, operations, workforce, resource, and governance logic as typed graph nodes and constrained relationships.

Add payer, RCM, access, operations, workforce, and resource ontology node types to the existing TrustOps semantic graph.
  • Inputs: ontology registry, policy refs, evidence refs, workflow state, synthetic events
  • Outputs: semantic graph, constraint map, conflict report, evidence lineage, owner routing
  • Controls: typed nodes, known relation vocabulary, evidence required, human review on conflict
  • Blocked: untyped free-form graph mutation, source-less claims, autonomous system-of-record action
TrustOps + platform reliability

Decision Memory Ledger

Store metadata-only decision memory for agent runs, audit logs, evidence refs, policy refs, model route, reviewer disposition, and outcome labels.

Bind TrustOps review packets and execution-attempt envelopes into one memory-record contract.
  • Inputs: execution attempt envelope, TrustOps review packet, audit event, reviewer disposition, benchmark result
  • Outputs: decision memory record, evidence envelope hash, review history, regression trigger, retention event
  • Controls: metadata-only by default, retention policy, deletion policy, tenant scope, no hidden chain-of-thought
  • Blocked: PHI memory without approval, hidden chain-of-thought disclosure, cross-tenant replay
Operations + people systems lead

Workforce / Talent Intelligence

Model healthcare hiring, onboarding, vacancy risk, credential readiness, training readiness, staffing capacity, and labor-cost savings assumptions.

Create synthetic vacancy-risk and onboarding-readiness fixtures tied to access and scheduling bottlenecks.
  • Inputs: synthetic staffing scenarios, role catalog, onboarding checklist, capacity assumptions, labor-cost assumptions
  • Outputs: vacancy-risk signal, onboarding-readiness packet, staffing capacity estimate, labor-cost savings range
  • Controls: synthetic-only, finance review, HR/legal review, assumption disclosure, no payroll mutation
  • Blocked: hiring decision, employment advice, payroll action, credentialing approval, labor-law advice
Platform finance + reliability

Project / Resource Management Intelligence

Track compute, storage, quota, model usage, pipeline cost, agent workload, reviewer load, and tenant capacity.

Add synthetic cost spike, quota exhaustion, pipeline delay, and overloaded-agent signals to TrustOps.
  • Inputs: synthetic usage events, model route telemetry, pipeline estimates, quota thresholds, agent queue load
  • Outputs: cost-risk signal, quota-risk signal, agent workload report, pipeline cost estimate, margin protection packet
  • Controls: budget guardrails, assumption disclosure, human approval, no infrastructure mutation, no financial guarantees
  • Blocked: cloud mutation, billing mutation, service shutdown, secret rotation, financial guarantee
Evaluation + TrustOps lead

Operational Benchmark Layer

Benchmark structured outputs, schema fidelity, evidence grounding, reasoning-summary validity, semantic consistency, and operational accuracy.

Create no-PHI benchmark fixtures for TrustOps review packets, module briefs, semantic graph nodes, and workflow owner routing.
  • Inputs: synthetic scenarios, expected schemas, rules, evidence cards, workflow expected state, reviewer rubric
  • Outputs: benchmark report, schema-fidelity score, reasoning-validity score, operational-accuracy score, release gate
  • Controls: schema validation, evidence validation, rule checks, external data hooks, human review
  • Blocked: leaderboard-only claims, self-verification-only release, clinical validation claim

World models

Healthcare state is modeled through time, geography, capacity, clinical workflow, payer rules, and journey state.

world model

Time-Series Layer

Tracks temporal order, trends, delays, sequence conflicts, freshness, seasonality, and state changes.

Modeled state
  • event time, workflow age, trend window, freshness, sequence validity
  • Validation: synthetic event stream, timestamp rules, freshness checks, temporal contradiction tests
  • Blocked until: Live patient timelines require PHI approval, consent/data-use review, retention rules, and customer authorization.
world model

Geography Layer

Models site, service area, region, distance, jurisdiction, care availability, and local operating constraints.

Modeled state
  • facility location, service area, region, travel constraint, jurisdiction
  • Validation: synthetic facility map, region policy refs, routing constraints, jurisdiction checks
  • Blocked until: Real location or patient travel data requires approved privacy and customer governance.
world model

Physical Constraints Layer

Represents rooms, staff, equipment, modality capacity, appointment slots, and operational bottlenecks.

Modeled state
  • capacity, resource availability, equipment state, queue load, slot feasibility
  • Validation: synthetic capacity fixtures, queue simulations, constraint solver checks, operations review
  • Blocked until: Production scheduling, staffing, or equipment actions require customer approval and connector review.
world model

Clinical Workflow State Layer

Tracks draft, review, escalation, signoff, blocked state, evidence sufficiency, and clinical risk labels.

Modeled state
  • workflow status, review state, risk level, evidence sufficiency, blocked action
  • Validation: ClinicalBench, reviewer rubric, evidence cards, policy gate
  • Blocked until: Live clinical workflows require clinical governance, PHI controls, and qualified human review.
world model

Payer Rules Layer

Represents synthetic payer policy requirements, prior-auth criteria, denial logic, and documentation checklists.

Modeled state
  • policy version, criteria match, documentation gap, denial reason, manual verification state
  • Validation: synthetic payer-policy fixture, rule engine, RCM reviewer rubric, source freshness
  • Blocked until: Real payer submissions, appeals, or claims require customer, payer, legal, and compliance approval.
world model

Patient Journey State Layer

Models synthetic journey milestones, handoffs, care gaps, preferences, access state, and continuity risk.

Modeled state
  • journey milestone, handoff, care gap, access state, continuity risk
  • Validation: synthetic journey fixture, care-gap benchmark, human review, policy boundary
  • Blocked until: Live patient journey memory requires PHI, consent, retention, deletion, and customer approval.
session-start

Generate a concise planning summary, selected roadmap modules, known boundaries, current task objective, and evidence requirements without exposing hidden chain-of-thought.

session context manifest

every-turn

List relevant skills/modules, active task reminders, safety boundaries, omitted tools/context, and required validators for the current step.

turn context manifest

after-state-change

Update task reminders, workflow state, owner, blocked actions, validation status, and next safe action.

task reminder ledger

Dynamic Context Injection Engine

Every synthetic agent run now has a pre-agent-run context manifest with selected modules, skills, reminders, validators, omitted context, and audit metadata.

SCRIMED Dynamic Context Injection Engine is a synthetic/no-PHI pre-agent-run manifest layer. It can select context, modules, skills, reminders, validators, omitted context, and audit metadata, but it cannot grant tool permissions, expose secrets, store hidden chain-of-thought, authorize PHI, or execute protected healthcare actions.

Decision memory remains metadata-only and excludes PHI, credentials, production connector payloads, and hidden chain-of-thought.

pre-agent-run

scrimed-context-manifest-synthetic-pre-agent-run-v1

Concise planning summary only: build the next safe SCRIMED layer by loading the context injection module, TrustOps governance, middleware boundaries, validators, and active reminders before any synthetic agent run. This is not hidden chain-of-thought.

ready-for-synthetic-agent-run
  • Safety decision: allowed
  • Prompt boundary: Prompt payload may include synthetic task objective, selected module summaries, skill/module listing every turn, active task reminders, validators, evidence refs, omitted-context log, and safety boundaries. It must exclude PHI, secrets, credentials, hidden chain-of-thought, irrelevant tools, and production connector payloads.
  • Memory: Store concise rationale summaries and evidence refs only; do not request, expose, or persist hidden model chain-of-thought.
  • Audit hash: synthetic-57c2bdb3
loaded now

Lazy capability loadout

Create the manifest, run safety governance, inject selected modules/skills/reminders/validators, record omitted context, and write metadata-only audit memory.

Fail closed
  • Loaded: dynamic-context-injection-engine, operational-benchmark-layer, workflow-planner, governance-compliance, secure-middleware-gateway, schema-validator, safety-policy-validator
  • Deferred: researchops, clinicalbench, semantic-intelligence-graph, signal-detection, self-healing-operations
  • Blocked: live-phi-context, production-ehr-connector, production-payer-submission, patient-outreach-tools, billing-submission-tools
  • Block the run when PHI, secrets, production connector payloads, missing validators, or protected actions appear.
task reminder v1

reminder-no-phi

Keep the run synthetic/no-PHI and reject live patient data, identifiers, source charts, and credentials.

active
  • Updated: 2026-06-30T00:00:00.000Z
  • Required before next run: yes
task reminder v1

reminder-validate-not-self-correct

Validate with schemas, evidence, deterministic rules, benchmarks, and human review rather than model self-verification alone.

active
  • Updated: 2026-06-30T00:00:00.000Z
  • Required before next run: yes
task reminder v1

reminder-context-minimization

Load only modules, tools, and context needed for this run; document omitted context and why it stayed out.

active
  • Updated: 2026-06-30T00:00:00.000Z
  • Required before next run: yes
pass

pre-agent-run-context-manifest-ready

Manifest must be ready only for synthetic/no-PHI pre-agent-run use.

scrimed-context-manifest-v2026-06-30
pass

selected-modules-listed-every-turn

Manifest must include selected modules plus skill/module listing every turn.

scrimed-context-manifest-v2026-06-30
pass

task-reminders-versioned

Task reminders must be versioned and required before the next agent run.

scrimed-context-manifest-v2026-06-30
pass

omitted-context-protects-phi-secrets-connectors-and-hidden-chain-of-thought

Manifest must explicitly omit PHI, secrets, production connectors, and hidden chain-of-thought.

scrimed-context-manifest-v2026-06-30
pass

validators-avoid-self-correction-trap

Manifest must validate with schemas, evidence, rules, benchmarks, and human review.

scrimed-context-manifest-v2026-06-30
pass

manifest-cannot-grant-tool-access

Context injection may select context but cannot grant tools or permissions.

scrimed-context-manifest-v2026-06-30
pass

memory-plan-metadata-only-no-hidden-cot

Long-term memory plan must stay metadata-only and block PHI plus hidden chain-of-thought.

scrimed-context-manifest-v2026-06-30
pass

safety-governance-pass

Manifest must pass SCRIMED's no-PHI safety governance gate.

scrimed-context-manifest-v2026-06-30
Structured Output Fidelity

Generated output validates against typed schema with required safety and evidence fields.

Block release and route to module owner with schema errors.

Schema Fidelity

All structured values conform to expected enum, score, and timestamp rules.

Regenerate only after schema issue is fixed; do not self-approve.

Reasoning Validity

Rationale summary is evidence-grounded, rule-consistent, and routed to review when uncertain.

Escalate to human review and attach contradiction report.

Operational Accuracy

Output matches expected synthetic workflow state, owner, and allowed next action.

Open TrustOps signal and pause automation recommendation.

Semantic Graph Consistency

Graph paths use valid ontology types and expose conflicts.

Block graph-derived output and send conflict packet to governance review.

Strategic Execution Layer

SCRIMED must be measurable, governed, observable, faster, cheaper, safer, and harder to copy.

SCRIMED Strategic Execution Layer is a synthetic/no-PHI operating blueprint. It does not authorize live PHI, autonomous diagnosis, treatment, prescribing, patient outreach, payer submission, billing submission, EHR writeback, production connector use, investment advice, valuation claims, clinical validation claims, compliance claims, or customer go-live.

pre-run-packet-required

Agent Runtime context bridge

Workflow Planner must consume the context manifest before choosing agents, tools, retrieval, model route, workflow steps, or approval gates.

synthetic-802beafe
  • Required before every synthetic agent run: yes
  • Selected modules: dynamic-context-injection-engine, operational-benchmark-layer, workflow-planner, governance-compliance, secure-middleware-gateway
  • Validators: schema-validator, evidence-validator, rule-validator, human-review-validator, safety-policy-validator, operational-benchmark-validator
  • Block agent planning when context manifest is missing, invalid, policy-blocked, PHI-bearing, secret-bearing, or missing human-review validators.
migration-applied-live-db-verified

Stored-vector lookup backend RPCs

Private-schema synthetic/no-PHI pgvector registry with deny-all RLS, no direct table grants, metadata-only lookup events, and no raw embedding return from search RPCs.

supabase/migrations/20260630173000_scrimed_stored_vector_lookup_rpc.sql
  • RPCs: register_scrimed_synthetic_stored_vector, scrimed_match_stored_vector, scrimed_search_similar_documents, scrimed_search_clinical_evidence, scrimed_search_payer_policy, scrimed_search_recommendation_memory
  • Controls: AAL2 governance session required, server runtime token required, tenant-admin/pilot-lead registration only, tenant-admin/pilot-lead/reviewer lookup only
  • Run the authenticated stored-vector RPC smoke with a short-lived AAL2 tenant-admin or pilot-lead token after the app route is deployed and the protected server token is configured.
stored-vector lookup

patient-matching

internal stored-vector lookup search using a source_vector_id and tenant/workflow scope inside the database/RPC boundary.

scrimed_match_stored_vector(source_vector_id, tenant_scope, workflow_scope, match_threshold, match_count)
  • Reduces client round trips, embedding serialization, network transfer, and tail-latency variance.
  • Synthetic/de-identified matching only; no live patient identity resolution or production patient matching authority.
  • Requires pgvector index review, RLS/tenant predicate, audit event, no service-role browser exposure, and PHI approval before live use.
stored-vector lookup

document-similarity

store document embeddings with source, page, table, label, value, unit, and citation metadata; search by stored vector internally.

scrimed_search_similar_documents(source_vector_id, tenant_scope, document_class, match_threshold, match_count)
  • Keeps vector math close to the index and avoids large embedding payload serialization.
  • No live chart documents; public, synthetic, or approved de-identified document evidence only.
  • Requires source attribution, document retention policy, RAG poisoning checks, and reviewer-governed ingestion.
stored-vector lookup

clinical-retrieval

retrieve evidence by stored-vector lookup plus deterministic filters for specialty, freshness, source type, guideline status, and risk level.

scrimed_search_clinical_evidence(source_vector_id, specialty, evidence_class, freshness_window, match_count)
  • Cuts prompt bloat and improves grounding by returning ranked evidence cards instead of raw context dumps.
  • Research/demo only; not diagnosis, treatment, prescribing, or live patient care.
  • Requires clinical evidence steward, freshness policy, citation verification, and qualified reviewer workflow.
stored-vector lookup

payer-policy-lookup

internal stored-vector policy lookup scoped by payer, policy version, service line, criteria type, and document status.

scrimed_search_payer_policy(source_vector_id, payer_scope, policy_version, criteria_scope, match_count)
  • Reduces policy payload movement and keeps policy-version constraints deterministic before model synthesis.
  • Recommendation-only; no prior authorization submission, appeal filing, coverage guarantee, or medical-necessity determination.
  • Requires policy source ownership, versioning, reviewer signoff, and payer-action hard stops.
stored-vector lookup

recommendation-search

stored-vector lookup over prior synthetic recommendations tied to outcome labels, reviewer disposition, workflow state, and blocked actions.

scrimed_search_recommendation_memory(source_vector_id, workflow_type, reviewer_status, outcome_label, match_count)
  • Improves reuse of validated patterns while keeping bad or unreviewed recommendations from being retrieved as precedent.
  • No autonomous recommendation release; retrieved patterns are examples for human-reviewed synthetic workflow planning only.
  • Requires decision-memory retention policy, reviewer outcome labels, and explicit exclusion of hidden chain-of-thought.
scheduling

I need an appointment or follow-up.

intake completeness check, capacity-aware option draft, manual scheduler queue

care navigator or scheduling operations review before confirmation or outreach
  • Blocked: autonomous appointment confirmation, emergency triage replacement, patient outreach without consent
  • prepare ranked options and missing-information packet before human action
intake

I need help getting into the right care path.

synthetic intent classification, missing-document checklist, service-line routing recommendation

patient access review before routing or patient-facing communication
  • Blocked: clinical triage, patient-specific care instruction, live record mutation
  • front-load structured intake gaps and owner routing
referrals

My referral needs to move forward.

referral packet readiness, provider-match readiness, leakage/delay signal, closed-loop status packet

referral coordinator review before scheduling, outreach, or acceptance
  • Blocked: autonomous referral acceptance, patient outreach, clinical urgency determination
  • surface delay reasons and next-owner queue
authorizations

My ordered service needs authorization.

policy evidence lookup, missing-document packet, review-only prior-auth draft

RCM or clinical operations reviewer before payer-facing action
  • Blocked: payer submission, coverage guarantee, medical-necessity determination
  • reduce packet-prep time while preserving manual verification
RCM

My bill, claim, or denial needs resolution.

denial root-cause signal, documentation gap packet, appeal outline draft

coding, billing, or revenue-cycle reviewer before claim or appeal action
  • Blocked: final coding, billing submission, appeal filing, reimbursement guarantee
  • prioritize workqueues and evidence gaps
outreach

I need education, reminders, or support.

education draft, adherence-support draft, manual outreach queue

authorized human review plus consent before any communication
  • Blocked: autonomous patient messaging, medical advice, medication change instruction
  • prepare reviewed drafts immediately after approved trigger
support

I need help navigating the system.

support intent summary, handoff packet, owner recommendation

support or care navigation owner before external action
  • Blocked: benefit guarantee, clinical advice, identity-dependent action
  • route to the right owner with context and boundaries
observability

Real-world performance slices prepared for synthetic evaluation first

age, sex, geography, setting, time of day, payer, diagnosis, workflow type

silent degradation detection
  • MedLog-style fields: usage_event_id, workflow_trace_id, input_hash, input_classification, model_provider_and_version, output_hash, action_taken, user_feedback, downstream_outcome, fairness_slice, context_effects, clinician_behavior_change
  • MLflow-style registries: prompt-registry-production-aliases, trace-registry-with-sme-ground-truth, custom-judge-and-deterministic-scorer-registry, rag-evaluation-registry, model-comparison-registry
  • Inference backlog: speculative decoding, block drafting, batching, semantic caching, vLLM/TensorRT-style runtime readiness
patient engagement

Prescription engagement workflow remains review-gated

prescription-event-detected, adherence-barrier-screen, education-and-followup-draft, closed-loop-receipt-check

No autonomous outreach
  • Medication education packet draft with source references and plain-language questions for clinician/pharmacist review.
  • Reviewable barrier checklist for cost, access, pharmacy pickup, language, and understanding.
  • Draft education and follow-up plan for review, with uncertainty and escalation language.
  • Task for manual verification when prescription receipt, pickup, or understanding is uncertain.
pass

all-user-directives-applied

All 10 requested build-roadmap directives must be represented.

pass

llms-interface-not-whole-system

LLMs must remain the interface layer, while deterministic systems own state, policy, and execution boundaries.

pass

self-correction-not-trusted-alone

Model self-verification cannot be sufficient without schema, evidence, rule, and human review checks.

pass

world-model-layers-covered

Healthcare world models must include time-series, geography, physical constraints, clinical workflow, payer rules, and patient journey state.

pass

workforce-and-resource-modules-present

Roadmap must include workforce/talent and project/resource management modules.

pass

benchmark-dimensions-present

Benchmark layer must cover structured outputs, schema fidelity, reasoning validity, and operational accuracy.

pass

priority-stack-items-present

Priority stack must include meta-harness, documentation-before-authorization, edge trial evidence, on-device de-identification, Clinical AI Benchmark Lab, Automation Orchestrator, Pre-Indexed Intelligence, and AI Medical Education.

pass

governed-healthcare-meta-harness-principle

SCRIMED must orchestrate agents, data, documentation, evidence, and outcomes with human oversight at every high-stakes step.

pass

priority-stack-boundaries-preserved

Every priority-stack item must preserve blocked production authority and include validation methods.

fail

no-phi-and-no-autonomous-actions

Every roadmap directive must retain no-PHI or synthetic-only boundaries.