Signal Composition

Signal composition is the act of reading multiple SimpleStates primitives at a decision point.

• PlanSignal answers: what plan or entitlement facts are known?
• DenySignal answers: is an explicit denial fact present?
• ExpirySignal answers: is this thing expired at read time?
• StateMirror may preserve the evidence after your application evaluates it.

Your application reads these facts, applies its own rules, and owns the outcome.

• Composition is not authorization.
• Composition is not permission.
• Composition is not policy enforcement.
• Composition is not a truth guarantee.
• Composition is not a workflow engine.

SimpleStates returns facts. Your application decides whether those facts are sufficient, stale, missing, contradictory, or unsafe.

Teams often collapse composition into a single boolean:

if (plan === "pro" && !denied && !expired) {
  allow();
}

This looks reasonable, but it hides the hard part: deciding what to do when one fact is stale, missing, delayed, ambiguous, or unavailable.

A boolean can make uncertainty disappear in code without making it disappear in reality.

• Not denied ≠ permitted.
• Not expired ≠ authorized.
• Plan state ≠ access control.
• Absence of a signal is not approval.
• Successful composition is not successful enforcement.

Composition preserves facts.
Enforcement chooses an outcome.

StateMirror belongs after evaluation. It can preserve the facts your application considered at a decision moment.

It does not validate the decision, recompute the signals, interpret the payload, or prove the outcome was correct.

It records the evidence your system chose to submit.

When composition fails, your application must decide explicitly:

• Fail open or fail closed?
• Degrade capability or block entirely?
• Retry, defer, escalate, or record a manual-review path?
• Capture a StateMirror snapshot or skip evidence recording?

SimpleStates does not answer these questions. That responsibility stays outside the signal plane.