Mythos clean-room delta-pass — Tier-5 (parser.rs, resolver.rs, adapter/fact.rs, adapter/mod.rs)

VERDICT: NO PROVABLE FINDING. Primary risk (guard fires on wrong/inactive case → silent handle corruption) disproven at the wasm-byte level.

• Guard value/width/offset (hunted hardest) — emit_inner_resource_guard_chain diffed line-by-line against the pointer path's guard block: same dst_base + loop_idx*element_size base, same MemArg{offset: guard.position, memory: callee}, same width match (1→i32.load8_u, 2→i32.load16_u, else→i32.load), same i32.const value/i32.eq/AND-chain/if. Byte-identical code sections proven via round-trip for option-Some {0,1,1}, variant-case-1, and nested result-Ok+option-Some [{0,0,1},{1,1,1}]. Both resource fixup loops use the same base/element_size/memory as the handle load — no offset divergence.
• Payload offset — option<borrow<R>>: disc_size(2)=1, borrow align=4 → payload at align_up(1,4)=4, guard.position=0, byte_size=1; identical to the pointer arm's formula.
• Nested threading — result<borrow,borrow> → two InnerResources guards value=0/1 (mutually exclusive); result<option<borrow>> → 2-guard AND-chain (byte-identity proven).
• own vs borrow — own<R> detected in layout but the adapter continues on is_owned before pushing a fixup; never translated; unchanged.
• Regression — pointer guard emission byte-identical to itself; Record/Tuple resources emit empty guards → no if wrapper; all resource runtime suites green.

Suites (exit 0): lib 351, adapter_safety 13, wit_bindgen_runtime 73.
Caveat: no two-component wasmtime fixture through list<option<borrow<R>>> — Risk-1 proof is at the wasm-emission level (byte-identity to the runtime-validated pointer path) rather than executed end-to-end.

Mythos delta-pass required

This PR modifies one or more Tier-5 source files (per
scripts/mythos/rank.md):

meld-core/src/adapter/fact.rs
meld-core/src/adapter/mod.rs
meld-core/src/parser.rs
meld-core/src/resolver.rs

Before merge, run the Mythos discover protocol on the
modified Tier-5 files:

1. Follow scripts/mythos/discover.md
   — one fresh agent session per touched Tier-5 file.
2. For each finding, the agent must produce both a Kani
   harness and a failing PoC test (per the protocol's
   "if you cannot produce both, do not report" rule).
3. Attach a comment on this PR with either the findings
   (formatted per discover.md's output schema) or
   NO FINDINGS.
4. Add the mythos-pass-done label to this PR.

Why this gate exists: LS-A-10
(CABI alignment padding in async-lift retptr writeback) was
found by the v0.8.0 pre-release Mythos pass — but it had
lived in the callback emitter since #128, across six
releases. A PR-time gate would have caught it at review
time instead of at the release boundary.

The gate check on this PR will pass once the label is
applied.

LS-N verification gate

⚠️ 45/51 verified — 6 missing regression tests

_{Approved loss-scenarios.yaml entries are expected to have a
regression test named ls_<letter>_<num>_* (e.g. LS-A-11 →
ls_a_11_*). The gate runs each prefix via cargo test --lib --no-fail-fast and aggregates pass/fail/missing.}

_{Updated automatically by tools/post_verification_comment.py.
Source of truth: safety/stpa/loss-scenarios.yaml.}

Mythos delta-pass (auto)

✅ NO FINDINGS across 4 Tier-5 file(s)

_{Auto-run via anthropics/claude-code-action@v1
(SHA-pinned) on the touched Tier-5 files, using the
maintainer's Max-plan OAuth token. See
.github/workflows/mythos-auto.yml and
scripts/mythos/discover.md.}