Add scientific artifact hosting governance module

[taherdhanera]

/claim #14

Summary

• Adds a self-contained scientific-artifact-hosting-governance module for Scientific Data & Code Hosting.
• Builds deterministic artifact manifests with type detection, SHA-256 content hashes, versions, access status, preview descriptors, and metadata completeness checks.
• Adds version/diff summaries, executable environment readiness checks, FAIR readiness scoring, JSON-LD/schema.org export payloads, DataCite export payloads, and an audit hash.
• Includes synthetic sample data, a CLI demo, tests, requirement mapping, and privacy-safe visual demo artifacts.

Demo

• Visual demo artifact: scientific-artifact-hosting-governance/docs/demo.svg
• Video demo artifact: scientific-artifact-hosting-governance/docs/demo.webm
• CLI demo: node scientific-artifact-hosting-governance/demo.js
• The demo uses synthetic data only and requires no credentials, live files, package installs, or external services.

Validation

• node scientific-artifact-hosting-governance/test.js -> passed
• node scientific-artifact-hosting-governance/demo.js -> produced reviewer-ready JSON with manifest, version diffs, FAIR exports, runtime readiness, and audit hash
• git diff --check -> passed

Notes

• Dependency-free Node.js implementation using only built-in modules.
• No credentials, live research data, cloud storage calls, or external APIs required.
• Scope is the broad artifact-hosting governance baseline; adjacent preview, retention, model-card, license, redaction, SBOM, and upload-checkpoint slices do not replace this layer.

[taherdhanera]

Demo video for /claim #14: https://github.com/taherdhanera/SCIBASE.AI/blob/bounty-fair-artifact-hosting-14/scientific-artifact-hosting-governance/docs/demo.webm

[taherdhanera]

Review scope note for /claim #14: this PR is intended as the broad artifact-hosting governance baseline, not a single preview, retention, model-card, license, or redaction gate.

It covers deterministic artifact manifests, type detection, SHA-256 hashes, version/access state, metadata-aware previews, version diffs, executable environment readiness, FAIR readiness scoring, JSON-LD/schema.org and DataCite export payloads, audit hashing, synthetic test data, CLI/demo evidence, and the demo video linked above.

Recent #14 submissions such as license compatibility, sensitive-file redaction release gates, model-card/weight lineage, raw-instrument/notebook preview safety, preview cache/version guards, and retention/tombstone ledgers are useful adjacent slices. They do not replace this broader hosting-governance layer for arbitrary scientific artifacts.

[taherdhanera]

Review-ready status for /claim #14: this PR remains open, mergeable, and has no known blocker from my side. Scope is the broad scientific artifact-hosting governance baseline: deterministic manifests, type detection, SHA-256 hashes, version/access state, metadata-aware previews, version diffs, executable-environment readiness, FAIR readiness scoring, JSON-LD/schema.org and DataCite export payloads, audit hashing, tests, and demo evidence. Recent #14 submissions are adjacent slices; this row remains focused on the hosting-governance layer.

[taherdhanera]

Reviewer-ready checkpoint for /claim #14. This PR remains open, non-draft, mergeable/CLEAN, Bounty claim labeled, and the body contains /claim #14. Scope stays on the broad artifact-hosting governance baseline: deterministic manifests, SHA-256 hashes, version/access state, metadata-aware previews, executable-environment readiness, FAIR scoring, JSON-LD/schema.org and DataCite exports, audit hashing, tests, and demo evidence.

[taherdhanera]

Visibility update after PR #410: this existing /claim #14 remains open, non-draft, CLEAN, bounty-labeled, and claim-marked.

Scope remains the scientific artifact hosting governance baseline, separate from the newer malware/archive-bomb quarantine slice. PR #113 covers deterministic manifests, SHA-256 artifact hashes, version/access state, metadata-aware previews, executable-environment readiness, FAIR scoring, JSON-LD/schema.org and DataCite exports, audit hashing, tests, and demo evidence.

I do not see a contributor-side blocker for review/reward decision on this PR.

[taherdhanera]

Status refresh after the latest issue #14 external claim follow-up: PR #113 remains open, non-draft, mergeable, bounty-labeled, and claim-marked for the existing #14 submission. No code changes are needed from my side unless reviewers request revisions.