# Yumi — Workspace Map

One-page index of everything in `~/yumi`, with status. Start here.

## Product artifacts (built this pass)
| Path | What | Status |
|---|---|---|
| `docs/YUMI_MASTER.md` | The master design + gap doc (21 sections, for Shad) | ✅ done |
| `docs/YUMI_PERMISSIONS.md` | Pending approvals/credentials/decisions | ✅ done |
| `docs/architecture.md` `docs/roadmap.md` | Architecture + phased roadmap | ✅ done |
| `docs/WORKSPACE_MAP.md` | This file | ✅ done |
| `packages/design-system/` | Canonical letterbox tokens + README | ✅ done |
| `assets/logo/yumi-logo.svg` `yumi-icon.svg` | Brand mark (knowledge-graph glyph) | ✅ done |
| `apps/showcase/index.html` | Unified letterbox product page | ✅ done |
| `apps/admin/` | Admin console SPA (users/orgs/banks/subs/connectors/audit) + DEPLOY.md | ✅ done (deploy gated) |
| `config/sso/README.md` | Google/Apple/Microsoft SSO runbook | ✅ done |
| `PROVENANCE.md` `CLAUDE.md` `README.md` | Provenance, agent guidance, overview | ✅ done |

## Scripts (ready to run when the harness gate opens)
| Path | Does | Gated by |
|---|---|---|
| `scripts/setup-gitea.sh` | Create `yumi` Gitea org + repo, push clean product, add Shad | bash/Gitea token |
| `scripts/provision-yumi-bank.sh` | Create the `yumi` Hindsight bank + PAT on mmd01 | kubectl mmd01 |

## Consolidated subsystems (copied verbatim; rebrand deferred — `docs/YUMI_MASTER.md §6`)
`apps/open-cowork-mmd` (desktop) · `apps/mmd-cowork-mobile` (web/PWA) ·
`services/mmd-cowork-core` · `services/mmd-cowork-config` · `services/mmd-cowork-m365` ·
`services/mmd-cowork-office` · `services/mmd-llm-gateway` (router) · `services/hindsight`.

## Still gated / blocked (this session)
- **Email to Shad** — content ready at `drafts/email-to-shad.md`; the live send/draft is blocked
  by the harness outbound-email gate (AFK autonomous email treated as impersonation). One-click
  send when Ben returns or grants the permission.
- **Gitea org/repos + Shad access + docs push** — `scripts/setup-gitea.sh` ready; bash-gated.
- **`yumi` Hindsight bank** — `scripts/provision-yumi-bank.sh` ready; kubectl-gated (no mmd01
  kube context on this host).
- **Admin console live deploy behind SSO** — manifests/runbook in `apps/admin/DEPLOY.md`;
  kubectl-gated.

## Confirmed facts (this pass)
- Shad's email: `shad@flow-master.ai` (verified in FlowMaster directory + Ben's local files).
- Mailbox `ben@flow-master.ai` is authenticated (ms365-flowmaster).
- Gitea token present (`gitea.mmd01.flow-master.ai`); subsystem repos live under `mmd-it`.
- Design system to adopt: `mmd-portal-letterbox-v1` (→ `yumi-letterbox-v1` at rebrand); desktop
  is the migration outlier.