diff --git a/apps/web/messages/en.json b/apps/web/messages/en.json
index c90d47a2..5c44b242 100644
--- a/apps/web/messages/en.json
+++ b/apps/web/messages/en.json
@@ -3778,7 +3778,7 @@
           }
         }
       },
-      "githubPrimaryReadiness": {
+    "githubPrimaryReadiness": {
         "title": "GitHub Primary Readiness",
         "subtitle": "AwoooP home mirrors the source-control readiness gap for moving from Gitea to GitHub. It is framework-phase visibility only: no repo creation, refs mutation, secret value collection, or primary switch.",
         "badge": "Read-only summary",
@@ -3809,19 +3809,104 @@
             "detail": "Workflow / secret name inventory is still incomplete for 7 repos."
           }
         },
-        "readinessRefs": {
-          "primaryReadiness": "The GitHub primary readiness gate remains a candidate and must not trigger repo creation or visibility changes.",
-          "ownerValidation": "The owner response validation rollup shows all four response packets still waiting for human reply and acceptance.",
-          "rollbackAdr": "The rollback ADR has no owner-approved dry-run yet, so GitHub cannot become primary.",
-          "workflowInventory": "Workflow / secret name inventory collects names and routing only; it does not collect secret values or change GitHub secrets."
+      "readinessRefs": {
+        "primaryReadiness": "The GitHub primary readiness gate remains a candidate and must not trigger repo creation or visibility changes.",
+        "ownerValidation": "The owner response validation rollup shows all four response packets still waiting for human reply and acceptance.",
+        "rollbackAdr": "The rollback ADR has no owner-approved dry-run yet, so GitHub cannot become primary.",
+        "workflowInventory": "Workflow / secret name inventory collects names and routing only; it does not collect secret values or change GitHub secrets."
+      }
+    },
+    "ownerResponseValidation": {
+      "title": "Owner Response Validation Rollup",
+      "subtitle": "AwoooP home shows the S4.9-S4.12 owner response packets, intake, validation, and audit checks in one read-only board. received / accepted / rejected all remain 0, so this is not approval or execution authorization.",
+      "badge": "Read-only validation",
+      "openIwooos": "Open IwoooS",
+      "packetsTitle": "Four Waiting Response Packets",
+      "validationTitle": "Validation And Audit Checks",
+      "boundaryLabel": "Validation Boundary",
+      "boundaryTitle": "Still waiting for owner evidence",
+      "boundaryDetail": "This rollup only displays source_control_owner_response_validation_rollup_v1. It must not be treated as owner response received, owner response accepted, GitHub primary approval, repo / refs / workflow / secret authorization, or runtime execution.",
+      "fields": {
+        "templates": "Templates",
+        "received": "Received",
+        "accepted": "Accepted",
+        "rejected": "Rejected"
+      },
+      "metrics": {
+        "packets": {
+          "label": "Response Packets",
+          "detail": "S4.9-S4.12 are all still waiting for owner responses."
+        },
+        "templates": {
+          "label": "Response Templates",
+          "detail": "22 templates are questions for owners, not sent requests."
+        },
+        "received": {
+          "label": "Received",
+          "detail": "Still 0; visibility is not receipt completion."
+        },
+        "accepted": {
+          "label": "Accepted",
+          "detail": "Still 0; GitHub primary and runtime gates remain blocked."
+        },
+        "rejected": {
+          "label": "Rejected",
+          "detail": "Still 0; raw payload or secret values must be quarantined."
         }
       },
-      "quality": {
+      "packets": {
+        "giteaInventory": {
+          "title": "Gitea Inventory Owner Attestation",
+          "detail": "Collect public-only / local gap, org / user endpoint, 110 adjacent scope, canonical owner, and legacy disposition."
+        },
+        "githubTarget": {
+          "title": "GitHub Target Owner Decision",
+          "detail": "Confirm target, visibility, and canonical owner per repo; do not create repos or change visibility."
+        },
+        "refTruth": {
+          "title": "Refs Truth Owner Response",
+          "detail": "Confirm main / dev truth, deprecated drift, release tags, and GitHub-only refs; do not sync, delete, or force push refs."
+        },
+        "workflowSecret": {
+          "title": "Workflow / Secret Name Owner Response",
+          "detail": "Collect workflow, runner, deploy key, branch protection, secret names, and owner metadata only; never collect secret values."
+        }
+      },
+      "checks": {
+        "crossPacket": {
+          "label": "Cross-Packet Checks",
+          "detail": "10 cross-packet checks only validate consistency."
+        },
+        "evidenceRouting": {
+          "label": "Evidence Routing",
+          "detail": "6 routing rules only route to more evidence, quarantine, or read-only updates."
+        },
+        "displaySections": {
+          "label": "Display Sections",
+          "detail": "8 sections define AwoooP read-only display order."
+        },
+        "stateTransitions": {
+          "label": "State Transitions",
+          "detail": "7 rules define review semantics only; no execution."
+        },
+        "reviewerChecklist": {
+          "label": "Reviewer Checklist",
+          "detail": "9 checklist items guide human review."
+        },
+        "reviewerOutcomes": {
+          "label": "Reviewer Outcomes",
+          "detail": "7 lanes only route to more evidence, quarantine, rejection, or later gates."
+        }
+      }
+    },
+    "quality": {
         "title": "Automation Quality",
         "subtitle": "Whether recent alerts actually reached AI auto-repair, verification, and learning writeback in the last 24 hours.",
-        "claimReady": "Full Loop Claim Ready",
-        "claimBlocked": "Full Loop Claim Blocked",
-        "unavailable": "Unavailable",
+      "claimReady": "Full Loop Claim Ready",
+      "claimBlocked": "Full Loop Claim Blocked",
+      "claimReadyDetail": "Every alert completed the verified loop",
+      "claimBlockedDetail": "Some alerts still lack execution, verification, or learning records",
+      "unavailable": "Unavailable",
         "loadFailed": "Unable to load the automation quality summary. Check Operator permissions and the truth-chain API.",
         "empty": "No alert quality data is available yet.",
         "yes": "Yes",
diff --git a/apps/web/messages/zh-TW.json b/apps/web/messages/zh-TW.json
index 9c3b9625..2d61d916 100644
--- a/apps/web/messages/zh-TW.json
+++ b/apps/web/messages/zh-TW.json
@@ -3724,106 +3724,191 @@
     "home": {
       "eyebrow": "AI 自動化飛輪控制面",
       "title": "AwoooP 治理總覽",
-      "subtitle": "把租戶、合約、Run、審批與通道狀態收斂到同一個操作面，避免 AI 自動化飛輪和治理面各自長出一套邏輯。",
+      "subtitle": "把租戶、合約、執行紀錄、審批與通道狀態收斂到同一個操作面，避免 AI 自動化飛輪和治理面各自長出一套邏輯。",
       "refresh": "重新整理",
       "snapshotStatus": "快照狀態",
       "lastUpdated": "最後更新",
       "migrationMode": "遷移模式",
-      "migrationValue": "mirror / shadow",
+      "migrationValue": "鏡像 / 影子模式",
       "ready": "同步中",
       "loading": "讀取中",
       "degraded": "降級",
       "securityMirror": {
         "title": "IwoooS 資安鏡像",
-        "subtitle": "AwoooP 首頁以只讀候選方式顯示 IwoooS / 資安鏡像狀態，讓使用者理解資安網進度與邊界；這不是 production landing enabled，也不接執行路由器。",
+        "subtitle": "AwoooP 首頁以只讀候選方式顯示 IwoooS / 資安鏡像狀態，讓使用者理解資安網進度與邊界；這不是正式入口啟用，也不接執行路由器。",
         "badge": "只讀候選",
         "openIwooos": "開啟 IwoooS",
         "checkpointsTitle": "接入檢查",
         "boundaryLabel": "安全邊界",
         "boundaryTitle": "仍維持低摩擦框架期",
-        "boundaryDetail": "這個面板只顯示已提交快照與 guard 口徑，不呼叫 Kali、GitHub、Gitea 或 runtime API，也不提供掃描、執行、修復、部署、主要來源切換或 refs 動作。",
+        "boundaryDetail": "這個面板只顯示已提交快照與防護檢查口徑，不呼叫 Kali、GitHub、Gitea 或執行期 API，也不提供掃描、執行、修復、部署、主要來源切換或分支 / 標籤參照動作。",
         "metrics": {
           "headline": {
             "label": "整體資安網",
-            "detail": "headline 仍等負責人回覆、脫敏匯入、runtime gate、GitHub 主要來源或 AwoooP production landing evidence。"
+            "detail": "整體百分比仍等負責人回覆、脫敏匯入、執行期閘門、GitHub 主要來源或 AwoooP 正式入口證據。"
           },
           "framework": {
             "label": "框架成熟度",
-            "detail": "治理、文件、schema、只讀 evidence 與 IwoooS 投影已接近完整。"
+            "detail": "治理、文件、結構定義、只讀證據與 IwoooS 投影已接近完整。"
           },
           "runtime": {
             "label": "落地執行",
-            "detail": "runtime ingestion、GitHub 主要來源與 AwoooP production landing 仍需後續 evidence。"
+            "detail": "執行期匯入、GitHub 主要來源與 AwoooP 正式入口仍需後續證據。"
           },
           "activeGates": {
             "label": "主動執行閘門",
-            "detail": "目前維持 0，任何主機或 blocking control 都仍需獨立批准。"
+            "detail": "目前維持 0，任何主機或阻擋型控制都仍需獨立批准。"
           }
         },
         "checkpoints": {
           "iwooosProjection": {
             "title": "IwoooS 投影可讀",
-            "detail": "AwoooP 只顯示 IwoooS 態勢、進度、evidence refs 與禁止動作。"
+            "detail": "AwoooP 只顯示 IwoooS 態勢、進度、證據參照與禁止動作。"
           },
           "rollupGuard": {
-            "title": "Guard 口徑一致",
+            "title": "防護檢查口徑一致",
             "detail": "接手前維持 security-mirror-progress-guard.py 與 source-control-owner-response-guard.py 綠燈。"
           },
           "ownerResponse": {
             "title": "負責人回覆仍等待",
-            "detail": "S4.9 到 S4.12 received / accepted 都仍為 0，不把顯示狀態當驗收完成。"
+            "detail": "S4.9 到 S4.12 收到 / 接受都仍為 0，不把顯示狀態當驗收完成。"
           },
           "productionLanding": {
-            "title": "Production landing 尚未完成",
-            "detail": "AwoooP 主線仍需 deployment proof 與只讀消費 evidence 才能進入 headline 重估。"
+            "title": "正式入口尚未完成",
+            "detail": "AwoooP 主線仍需部署證據與只讀消費證據才能進入整體百分比重估。"
           }
         }
       },
-      "githubPrimaryReadiness": {
-        "title": "GitHub 主要來源就緒度",
-        "subtitle": "AwoooP 首頁同步顯示 Gitea 轉 GitHub 的原始碼管控就緒度缺口；目前只做框架期可視化，不建立 repo、不改 refs、不收 secret value，也不切換主要來源。",
-        "badge": "只讀摘要",
+    "githubPrimaryReadiness": {
+      "title": "GitHub 主要來源就緒度",
+      "subtitle": "AwoooP 首頁同步顯示 Gitea 轉 GitHub 的原始碼管控就緒度缺口；目前只做框架期可視化，不建立專案庫、不改分支 / 標籤參照、不收機密明文值，也不切換主要來源。",
+      "badge": "只讀摘要",
         "openIwooos": "開啟 IwoooS",
-        "readinessRefsTitle": "就緒度 evidence refs",
+        "readinessRefsTitle": "就緒度證據參照",
         "boundaryLabel": "GitHub 主要來源邊界",
         "boundaryTitle": "目前仍不可推進主要來源切換",
-        "boundaryDetail": "這個摘要只顯示已提交快照與負責人回覆缺口，不能被解讀成 GitHub 主要來源批准、repo 建立授權、refs 變更、secret 收集、Gitea 停用或 runtime execution。",
+        "boundaryDetail": "這個摘要只顯示已提交快照與負責人回覆缺口，不能被解讀成 GitHub 主要來源批准、專案庫建立授權、分支 / 標籤參照變更、機密值收集、Gitea 停用或執行期執行。",
         "metrics": {
           "candidateRepos": {
-            "label": "候選 repo",
-            "detail": "S2.63 起已盤點 8 個候選 repo；這不是建立 GitHub repo 的授權。"
+            "label": "候選專案庫",
+            "detail": "S2.63 起已盤點 8 個候選專案庫；這不是建立 GitHub 專案庫的授權。"
           },
           "inScopeRepos": {
-            "label": "範圍內 repo",
-            "detail": "目前 7 個 repo 進入主要來源就緒度範圍，仍等待負責人回覆。"
+            "label": "範圍內專案庫",
+            "detail": "目前 7 個專案庫進入主要來源就緒度範圍，仍等待負責人回覆。"
           },
           "primaryReady": {
             "label": "主要來源就緒數",
-            "detail": "ready count 維持 0，不能切換 GitHub 主要來源或停用 Gitea。"
+            "detail": "就緒數維持 0，不能切換 GitHub 主要來源或停用 Gitea。"
           },
           "ownerResponses": {
             "label": "負責人回覆",
-            "detail": "22 個回覆範本仍為 0 received / 0 accepted。"
+            "detail": "22 個回覆範本仍為 0 收到 / 0 接受。"
           },
           "workflowInventory": {
             "label": "工作流程清冊",
-            "detail": "7 個 repo 的 workflow / secret 名稱清冊尚未完成。"
+            "detail": "7 個專案庫的工作流程 / 機密名稱清冊尚未完成。"
           }
         },
-        "readinessRefs": {
-          "primaryReadiness": "GitHub 主要來源就緒度閘門仍是候選狀態，不能觸發 repo 建立或可見性變更。",
-          "ownerValidation": "負責人回覆驗證彙總顯示四包回覆資料都仍等待人工回覆與驗收。",
-          "rollbackAdr": "Rollback ADR 尚未完成 owner approved dry-run，因此不能把 GitHub 切為主要來源。",
-          "workflowInventory": "Workflow / secret 名稱清冊只收集名稱與路由，不收 secret value、不改 GitHub secrets。"
+      "readinessRefs": {
+        "primaryReadiness": "GitHub 主要來源就緒度閘門仍是候選狀態，不能觸發專案庫建立或可見性變更。",
+        "ownerValidation": "負責人回覆驗證彙總顯示四包回覆資料都仍等待人工回覆與驗收。",
+        "rollbackAdr": "回復架構決策紀錄尚未完成負責人批准的演練，因此不能把 GitHub 切為主要來源。",
+        "workflowInventory": "工作流程 / 機密名稱清冊只收集名稱與路由，不收機密明文值、不改 GitHub 機密設定。"
+      }
+    },
+    "ownerResponseValidation": {
+      "title": "負責人回覆驗收總覽",
+      "subtitle": "AwoooP 首頁把 S4.9 到 S4.12 四包負責人回覆的收件、驗收與稽核檢查放在同一張只讀看板；目前收到 / 接受 / 拒收都是 0，不代表任何批准或執行授權。",
+      "badge": "只讀驗收",
+      "openIwooos": "開啟 IwoooS",
+      "packetsTitle": "四包待收回覆",
+      "validationTitle": "驗收與稽核檢查",
+      "boundaryLabel": "驗收邊界",
+      "boundaryTitle": "仍等待負責人證據，不開執行權限",
+      "boundaryDetail": "這個總覽只顯示 source_control_owner_response_validation_rollup_v1 的只讀狀態；不能被解讀成負責人回覆已收到、已接受、GitHub 主要來源已批准、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定可修改，或執行期可執行。",
+      "fields": {
+        "templates": "範本",
+        "received": "收到",
+        "accepted": "接受",
+        "rejected": "拒收"
+      },
+      "metrics": {
+        "packets": {
+          "label": "回覆包",
+          "detail": "S4.9 到 S4.12 四包都仍是等待收件狀態。"
+        },
+        "templates": {
+          "label": "回覆範本",
+          "detail": "22 個範本只是負責人要回覆的問題，不代表請求已送出。"
+        },
+        "received": {
+          "label": "已收到",
+          "detail": "目前仍為 0，不得把可見看板當成收件完成。"
+        },
+        "accepted": {
+          "label": "已接受",
+          "detail": "目前仍為 0，不得推進 GitHub 主要來源或執行期閘門。"
+        },
+        "rejected": {
+          "label": "已拒收",
+          "detail": "目前仍為 0；若收到原始載荷或機密明文值必須隔離。"
         }
       },
-      "quality": {
-        "title": "自動化品質",
-        "subtitle": "最近 24 小時告警是否真正走到 AI 自動修復、驗證與學習回寫。",
-        "claimReady": "可宣稱完整閉環",
-        "claimBlocked": "不可宣稱完整閉環",
-        "unavailable": "無法讀取",
-        "loadFailed": "無法讀取自動化品質總覽。請確認 Operator 權限與 truth-chain API 狀態。",
+      "packets": {
+        "giteaInventory": {
+          "title": "Gitea 清冊負責人聲明",
+          "detail": "先收公開範圍 / 本地缺口、組織 / 使用者端點、110 相鄰範圍、標準負責人與舊版處置五題。"
+        },
+        "githubTarget": {
+          "title": "GitHub 目標負責人判定",
+          "detail": "逐專案庫確認 GitHub 目標、可見性、標準負責人；不能自動建立專案庫或變更可見性。"
+        },
+        "refTruth": {
+          "title": "分支 / 標籤真相來源負責人回覆",
+          "detail": "確認 main / dev 真相來源、棄用漂移、release tag 與 GitHub-only 分支 / 標籤參照；不能自動同步、刪除或強制推送。"
+        },
+        "workflowSecret": {
+          "title": "工作流程 / 機密名稱負責人回覆",
+          "detail": "只收工作流程、執行器、部署金鑰、分支保護、機密名稱與負責人中繼資料；不收機密明文值。"
+        }
+      },
+      "checks": {
+        "crossPacket": {
+          "label": "跨包驗收",
+          "detail": "10 個跨包檢查只做一致性檢查。"
+        },
+        "evidenceRouting": {
+          "label": "證據路由",
+          "detail": "6 條路由規則只分流補證、隔離或只讀更新。"
+        },
+        "displaySections": {
+          "label": "顯示區塊",
+          "detail": "8 個區塊固定 AwoooP 只讀呈現順序。"
+        },
+        "stateTransitions": {
+          "label": "狀態轉移",
+          "detail": "7 條規則只定義審查狀態語義，不執行。"
+        },
+        "reviewerChecklist": {
+          "label": "審查清單",
+          "detail": "9 個清單項目給人工審查者判讀。"
+        },
+        "reviewerOutcomes": {
+          "label": "審查結果",
+          "detail": "7 條結果分流只導向補證、隔離、拒收或等待後續閘門。"
+        }
+      }
+    },
+    "quality": {
+      "title": "自動化品質",
+      "subtitle": "最近 24 小時告警是否真正走到 AI 自動修復、驗證與學習回寫。",
+      "claimReady": "可宣稱完整閉環",
+      "claimBlocked": "不可宣稱完整閉環",
+      "claimReadyDetail": "所有告警都完成驗證閉環",
+      "claimBlockedDetail": "仍有告警缺少執行、驗證或學習記錄",
+      "unavailable": "無法讀取",
+        "loadFailed": "無法讀取自動化品質總覽。請確認操作員權限與真相鏈 API 狀態。",
         "empty": "尚無可評估的告警品質資料。",
         "yes": "是",
         "no": "否",
@@ -3857,15 +3942,15 @@
         },
         "gates": {
           "sourcePersisted": "來源已落庫",
-          "outboundRecorded": "Outbound 記錄",
+          "outboundRecorded": "外送記錄",
           "evidenceCollected": "證據收集",
-          "mcpGatewayObserved": "MCP Gateway",
+          "mcpGatewayObserved": "MCP 閘道",
           "approvalState": "審批狀態",
           "executionRecorded": "執行記錄",
           "autoRepairRecorded": "自動修復記錄",
           "verificationRecorded": "驗證記錄",
           "learningRecorded": "學習回寫",
-          "timelineRecorded": "Timeline 記錄"
+          "timelineRecorded": "時間軸記錄"
         },
         "gateStatuses": {
           "failed": "失敗",
@@ -3874,7 +3959,7 @@
       },
       "metrics": {
         "tenants": "租戶",
-        "tenantsDetail": "{active} 個啟用，{shadow} 個 shadow",
+        "tenantsDetail": "{active} 個啟用，{shadow} 個影子模式",
         "runs": "操作執行",
         "runsDetail": "執行狀態是非同步任務的唯一觀測入口",
         "approvals": "待審批",
@@ -3893,13 +3978,13 @@
         "approval": {
           "title": "人工閘門",
           "signal": "高風險待批准",
-          "owner": "負責：SRE approve / reject",
+          "owner": "負責：SRE 批准 / 拒絕",
           "route": "流向：審批佇列"
         },
         "execute": {
           "title": "自動執行",
           "signal": "低風險可閉環",
-          "owner": "負責：MCP Gateway 執行並稽核",
+          "owner": "負責：MCP 閘道執行並稽核",
           "route": "流向：執行狀態 / 稽核"
         },
         "manual": {
@@ -3912,21 +3997,21 @@
       "lanes": {
         "title": "飛輪鏈路",
         "live": "已接線",
-        "mirror": "Mirror",
-        "providerName": "Provider 順序",
-        "providerDetail": "GCP-A Ollama -> GCP-B Ollama -> 111 Ollama -> OpenClaw/Nemo -> Gemini",
-        "mcpName": "MCP Gateway",
-        "mcpDetail": "MCP Gateway 先 mirror / wrap，確認 audit 與 redaction 後才切成唯一閘門",
-        "channelName": "Channel Hub",
-        "channelDetail": "Telegram / LINE / Slack 先進 Channel Event，再逐步切換發送責任",
-        "approvalName": "Approval Plane",
+        "mirror": "鏡像",
+        "providerName": "模型供應順序",
+        "providerDetail": "GCP-A Ollama → GCP-B Ollama → 111 Ollama → OpenClaw / Nemo → Gemini",
+        "mcpName": "MCP 閘道",
+        "mcpDetail": "MCP 閘道先鏡像 / 包裝，確認稽核與脫敏後才切成唯一閘門",
+        "channelName": "通道中心",
+        "channelDetail": "Telegram / LINE / Slack 先進通道事件，再逐步切換發送責任",
+        "approvalName": "審批平面",
         "approvalDetail": "執行狀態與審批平面共享同一條審批語義"
       },
       "next": {
         "title": "下一步操作",
-        "item1": "查看執行監控與 provider fallback",
+        "item1": "查看執行監控與模型供應備援",
         "item2": "處理等待審批的高風險操作",
-        "item3": "審查 Contract lifecycle",
+        "item3": "審查合約生命週期",
         "item4": "查看 AwoooP 工作鏈路地圖"
       }
     },
diff --git a/apps/web/src/app/[locale]/awooop/layout.tsx b/apps/web/src/app/[locale]/awooop/layout.tsx
index bd387e57..0cfa20ff 100644
--- a/apps/web/src/app/[locale]/awooop/layout.tsx
+++ b/apps/web/src/app/[locale]/awooop/layout.tsx
@@ -58,7 +58,7 @@ export default function AwoooPLayout({
 
   return (
     <AppLayout locale={params.locale} showBackground={false}>
-      <div className="min-h-[calc(100vh-116px)] bg-[#f7f5ee] border border-[#e0ddd4]">
+      <div className="min-h-[calc(100vh-116px)] w-[calc(100vw-48px)] max-w-full overflow-x-hidden border border-[#e0ddd4] bg-[#f7f5ee] md:w-full">
         <div className="border-b border-[#e0ddd4] bg-[#faf9f3] px-5 py-4">
           <div className="flex flex-wrap items-center justify-between gap-3">
             <div className="flex items-center gap-3">
diff --git a/apps/web/src/app/[locale]/awooop/page.tsx b/apps/web/src/app/[locale]/awooop/page.tsx
index 0b8fcfc9..320e4f06 100644
--- a/apps/web/src/app/[locale]/awooop/page.tsx
+++ b/apps/web/src/app/[locale]/awooop/page.tsx
@@ -79,6 +79,29 @@ type GitHubPrimaryReadinessRef = {
   tone: "good" | "warn" | "neutral";
 };
 
+type OwnerResponseValidationMetric = {
+  key: string;
+  value: string;
+  icon: typeof ShieldCheck;
+  tone: "good" | "warn" | "neutral";
+};
+
+type OwnerResponseValidationPacket = {
+  key: string;
+  lane: string;
+  templates: string;
+  received: string;
+  accepted: string;
+  rejected: string;
+  icon: typeof ShieldCheck;
+};
+
+type OwnerResponseValidationCheck = {
+  key: string;
+  value: string;
+  tone: "good" | "warn" | "neutral";
+};
+
 type QualityVerdict = {
   verdict: string;
   total: number;
@@ -183,6 +206,75 @@ const githubPrimaryReadinessBoundaries = [
   "action_buttons_allowed=false",
 ];
 
+const ownerResponseValidationMetrics: OwnerResponseValidationMetric[] = [
+  { key: "packets", value: "4", icon: ListChecks, tone: "warn" },
+  { key: "templates", value: "22", icon: FileText, tone: "neutral" },
+  { key: "received", value: "0", icon: Lock, tone: "warn" },
+  { key: "accepted", value: "0", icon: ShieldCheck, tone: "warn" },
+  { key: "rejected", value: "0", icon: TriangleAlert, tone: "neutral" },
+];
+
+const ownerResponseValidationPackets: OwnerResponseValidationPacket[] = [
+  {
+    key: "giteaInventory",
+    lane: "S4.9",
+    templates: "5",
+    received: "0",
+    accepted: "0",
+    rejected: "0",
+    icon: GitBranch,
+  },
+  {
+    key: "githubTarget",
+    lane: "S4.10",
+    templates: "7",
+    received: "0",
+    accepted: "0",
+    rejected: "0",
+    icon: ShieldCheck,
+  },
+  {
+    key: "refTruth",
+    lane: "S4.11",
+    templates: "5",
+    received: "0",
+    accepted: "0",
+    rejected: "0",
+    icon: Waypoints,
+  },
+  {
+    key: "workflowSecret",
+    lane: "S4.12",
+    templates: "5",
+    received: "0",
+    accepted: "0",
+    rejected: "0",
+    icon: SearchCheck,
+  },
+];
+
+const ownerResponseValidationChecks: OwnerResponseValidationCheck[] = [
+  { key: "crossPacket", value: "10", tone: "warn" },
+  { key: "evidenceRouting", value: "6", tone: "neutral" },
+  { key: "displaySections", value: "8", tone: "neutral" },
+  { key: "stateTransitions", value: "7", tone: "neutral" },
+  { key: "reviewerChecklist", value: "9", tone: "neutral" },
+  { key: "reviewerOutcomes", value: "7", tone: "neutral" },
+];
+
+const ownerResponseValidationBoundaries = [
+  "owner_response_validation_received_count=0",
+  "owner_response_validation_accepted_count=0",
+  "owner_response_validation_rejected_count=0",
+  "repo_creation_authorized=false",
+  "refs_sync_authorized=false",
+  "workflow_modification_authorized=false",
+  "secret_value_collection_allowed=false",
+  "github_primary_switch_authorized=false",
+  "runtime_execution_authorized=false",
+  "action_buttons_allowed=false",
+];
+
 function numberValue(value: unknown): number {
   return typeof value === "number" && Number.isFinite(value) ? value : 0;
 }
@@ -606,6 +698,149 @@ function GitHubPrimaryReadinessHomePanel() {
   );
 }
 
+function OwnerResponseValidationRollupPanel() {
+  const t = useTranslations("awooop.home.ownerResponseValidation");
+
+  return (
+    <section className="border border-[#e0ddd4] bg-white">
+      <div className="flex flex-wrap items-start justify-between gap-3 border-b border-[#e0ddd4] bg-[#faf9f3] px-4 py-3">
+        <div className="flex items-start gap-2">
+          <ListChecks className="mt-0.5 h-4 w-4 text-[#d97757]" aria-hidden="true" />
+          <div>
+            <h3 className="text-sm font-semibold text-[#141413]">{t("title")}</h3>
+            <p className="mt-1 max-w-3xl text-xs leading-5 text-[#77736a]">{t("subtitle")}</p>
+          </div>
+        </div>
+        <div className="flex flex-wrap items-center gap-2">
+          <span className="inline-flex border border-[#d9b36f] bg-[#fff7e8] px-2 py-0.5 text-xs font-semibold text-[#8a5a08]">
+            {t("badge")}
+          </span>
+          <Link
+            href="/iwooos"
+            className="inline-flex items-center gap-2 border border-[#d8d3c7] bg-white px-3 py-1.5 text-xs font-semibold text-[#141413] hover:border-[#d97757]"
+          >
+            {t("openIwooos")}
+            <ArrowRight className="h-3.5 w-3.5 text-[#77736a]" aria-hidden="true" />
+          </Link>
+        </div>
+      </div>
+
+      <div className="grid gap-px bg-[#e0ddd4] md:grid-cols-2 xl:grid-cols-5">
+        {ownerResponseValidationMetrics.map((metric) => {
+          const Icon = metric.icon;
+          return (
+            <div key={metric.key} className="min-h-[124px] bg-white px-4 py-3">
+              <div className="flex items-start justify-between gap-3">
+                <div className="min-w-0">
+                  <p className="text-xs font-semibold text-[#77736a]">
+                    {t(`metrics.${metric.key}.label` as never)}
+                  </p>
+                  <p className="mt-2 font-mono text-2xl font-semibold leading-none text-[#141413]">
+                    {metric.value}
+                  </p>
+                </div>
+                <span
+                  className={cn(
+                    "flex h-8 w-8 shrink-0 items-center justify-center border",
+                    metric.tone === "good" && "border-[#9bc7a4] bg-[#f0faf2] text-[#17602a]",
+                    metric.tone === "warn" && "border-[#d9b36f] bg-[#fff7e8] text-[#8a5a08]",
+                    metric.tone === "neutral" && "border-[#d8d3c7] bg-[#faf9f3] text-[#5f5b52]"
+                  )}
+                >
+                  <Icon className="h-4 w-4" aria-hidden="true" />
+                </span>
+              </div>
+              <p className="mt-3 text-xs leading-5 text-[#5f5b52]">
+                {t(`metrics.${metric.key}.detail` as never)}
+              </p>
+            </div>
+          );
+        })}
+      </div>
+
+      <div className="grid min-w-0 gap-4 p-4 xl:grid-cols-[1.25fr_0.75fr]">
+        <div className="min-w-0 border border-[#e0ddd4] bg-white">
+          <div className="border-b border-[#e0ddd4] bg-[#faf9f3] px-4 py-3 text-xs font-semibold text-[#141413]">
+            {t("packetsTitle")}
+          </div>
+          <div className="divide-y divide-[#eee9dd]">
+            {ownerResponseValidationPackets.map((packet) => {
+              const Icon = packet.icon;
+              return (
+                <div key={packet.key} className="grid min-w-0 gap-3 px-4 py-3 lg:grid-cols-[minmax(0,1fr)_240px]">
+                  <div className="min-w-0">
+                    <div className="flex flex-wrap items-center gap-2">
+                      <Icon className="h-4 w-4 text-[#d97757]" aria-hidden="true" />
+                      <span className="border border-[#d9b36f] bg-[#fff7e8] px-2 py-0.5 font-mono text-xs font-semibold text-[#8a5a08]">
+                        {packet.lane}
+                      </span>
+                      <p className="text-sm font-semibold text-[#141413]">
+                        {t(`packets.${packet.key}.title` as never)}
+                      </p>
+                    </div>
+                    <p className="mt-2 text-xs leading-5 text-[#5f5b52]">
+                      {t(`packets.${packet.key}.detail` as never)}
+                    </p>
+                  </div>
+                  <div className="grid min-w-0 grid-cols-4 gap-px bg-[#e0ddd4] text-center">
+                    {[
+                      { label: t("fields.templates"), value: packet.templates },
+                      { label: t("fields.received"), value: packet.received },
+                      { label: t("fields.accepted"), value: packet.accepted },
+                      { label: t("fields.rejected"), value: packet.rejected },
+                    ].map((item) => (
+                      <div key={item.label} className="bg-white px-2 py-2">
+                        <p className="text-[10px] font-semibold text-[#77736a]">{item.label}</p>
+                        <p className="mt-1 font-mono text-base font-semibold text-[#141413]">
+                          {item.value}
+                        </p>
+                      </div>
+                    ))}
+                  </div>
+                </div>
+              );
+            })}
+          </div>
+        </div>
+
+        <div className="grid min-w-0 gap-4">
+          <div className="min-w-0 border border-[#e0ddd4] bg-white">
+            <div className="border-b border-[#e0ddd4] bg-[#faf9f3] px-4 py-3 text-xs font-semibold text-[#141413]">
+              {t("validationTitle")}
+            </div>
+            <div className="grid min-w-0 gap-px bg-[#e0ddd4] sm:grid-cols-2">
+              {ownerResponseValidationChecks.map((check) => (
+                <div key={check.key} className="min-h-[88px] bg-white px-4 py-3">
+                  <p className="text-xs font-semibold text-[#77736a]">
+                    {t(`checks.${check.key}.label` as never)}
+                  </p>
+                  <p className="mt-2 font-mono text-2xl font-semibold leading-none text-[#141413]">
+                    {check.value}
+                  </p>
+                  <p className="mt-2 text-xs leading-5 text-[#5f5b52]">
+                    {t(`checks.${check.key}.detail` as never)}
+                  </p>
+                </div>
+              ))}
+            </div>
+          </div>
+
+          <div className="min-w-0 border border-[#e0ddd4] bg-[#faf9f3] px-4 py-3">
+            <p className="text-xs font-semibold text-[#77736a]">{t("boundaryLabel")}</p>
+            <p className="mt-2 text-sm font-semibold text-[#141413]">{t("boundaryTitle")}</p>
+            <p className="mt-2 break-words text-xs leading-5 text-[#5f5b52]">{t("boundaryDetail")}</p>
+            <div className="mt-4 grid gap-2 break-all font-mono text-xs text-[#141413]">
+              {ownerResponseValidationBoundaries.map((boundary) => (
+                <span key={boundary}>{boundary}</span>
+              ))}
+            </div>
+          </div>
+        </div>
+      </div>
+    </section>
+  );
+}
+
 function AutomationQualityPanel({
   summary,
   error,
@@ -939,6 +1174,8 @@ export default function AwoooPPage() {
 
       <GitHubPrimaryReadinessHomePanel />
 
+      <OwnerResponseValidationRollupPanel />
+
       <section className="border border-[#e0ddd4] bg-[#e0ddd4]">
         <div className="border-b border-[#e0ddd4] bg-[#faf9f3] px-4 py-3">
           <div className="flex items-center gap-2">
diff --git a/docs/LOGBOOK.md b/docs/LOGBOOK.md
index a9333539..3fd930e5 100644
--- a/docs/LOGBOOK.md
+++ b/docs/LOGBOOK.md
@@ -1,3 +1,17 @@
+## 2026-05-21 | 資安供應鏈 S2.72：AwoooP 首頁負責人回覆驗收總覽
+
+**背景**：S2.63-S2.71 已把 GitHub 主要來源就緒度與 IwoooS / AwoooP 只讀資安可視面板串起來，但使用者在 AwoooP 首頁仍需要更直接看見：真正卡住 GitHub 主要來源與後續執行期閘門的不是頁面或防護檢查，而是 S4.9-S4.12 四包負責人回覆尚未收到與驗收。
+
+**完成**：
+- `/awooop` 新增「負責人回覆驗收總覽」只讀面板，顯示 S4.9 Gitea 清冊負責人聲明、S4.10 GitHub 目標負責人判定、S4.11 分支 / 標籤真相來源負責人回覆、S4.12 工作流程 / 機密名稱負責人回覆四包。
+- 首頁總覽顯示 22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目與 7 條審查結果分流。
+- `security_mirror_status_rollup_v1` 新增 `s2_72_awooop_home_owner_response_validation_rollup`，並由 `security-mirror-progress-guard.py` 驗證 AwoooP 首頁面板、多語系鍵、四包 S4.9-S4.12、來源契約與 `false` 邊界。
+- 同步把 AwoooP 首頁本階段資安面板的可見文案改為繁體中文，並修正手機版內部 grid 寬度，避免負責人回覆表格或長證據鍵值在小螢幕被裁切。
+
+**仍禁止**：
+- S2.72 是 AwoooP 首頁只讀呈現，不代表負責人回覆已收到 / 已接受、審批紀錄已建立、執行期授權、專案庫建立、分支 / 標籤參照變更、工作流程 / 機密設定修改、機密明文值收集、GitHub 主要來源切換、Gitea 停用、Kali `/execute`、SSH 登入、主機更新或阻擋型控制。
+- 整體資安網百分比仍是 58%；框架 / 治理 / 文件 / 結構定義 / 只讀證據仍約 80-85%；真正落地執行 / 執行期匯入 / GitHub 主要來源 / AwoooP 正式入口仍約 35-40%。
+
 ## 2026-05-21 | 資安供應鏈 S2.71：AwoooP 執行詳情 / 審批詳情繁體中文呈現 Guard
 
 **背景**：S2.70 已把 IwoooS / AwoooP 主要資安可視面板改為繁體中文，但 AwoooP 執行詳情、審批決策與事件證據仍有部分可見英文標籤，例如 Trace ID、Trigger、Tool、Scope、Dry-run、Tools、Incident Evidence、Run state 與 audit trail。
diff --git a/docs/security/SECURITY-MIRROR-STATUS-ROLLUP.md b/docs/security/SECURITY-MIRROR-STATUS-ROLLUP.md
index a5e4ca3b..18f12aa5 100644
--- a/docs/security/SECURITY-MIRROR-STATUS-ROLLUP.md
+++ b/docs/security/SECURITY-MIRROR-STATUS-ROLLUP.md
@@ -53,6 +53,7 @@
 | AwoooP runs GitHub primary readiness boundary | S2.69 已在 `/awooop/runs` 顯示 GitHub Primary Readiness Run 邊界；candidate repos=8、in-scope=7、security runs=0、owner response 0/22、workflow inventory complete=0/7；仍不建立 platform run、不接 execution router、不建立 repo、不改 visibility、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea |
 | IwoooS / AwoooP Traditional Chinese security surface wording guard | S2.70 已把 zh-TW 資安可視區塊使用者可見英文標籤改成繁體中文，並由 guard 阻擋 Candidate repos、In-scope repos、Owner response、Workflow inventory、Active runtime gates、GitHub Primary Readiness 等英文標籤回流；保留 contract id 與 false flags 作為證據鍵值；仍不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea |
 | AwoooP run detail Traditional Chinese wording guard | S2.71 已把 AwoooP 執行詳情、審批決策與事件證據的使用者可見英文標籤改成繁體中文，並由 scoped guard 阻擋 Trace ID、Trigger、Tool、Scope、Dry-run、Tools、Incident Evidence、Run state、audit trail 等英文文案回流；保留技術 ID 與證據鍵值；仍不建立 approval record、不執行 runtime、不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea |
+| AwoooP 首頁負責人回覆驗收總覽 | S2.72 已在 `/awooop` 顯示四包負責人回覆驗收總覽；S4.9/S4.10/S4.11/S4.12、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目、7 條審查結果分流；仍不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不開執行期閘門 |
 | Dry-run | `contract_defined_not_executed`；已納入 `CHECK_PROGRESS_GUARD` 與 `CHECK_OWNER_RESPONSE_GUARD`，latest local validation 為 `repo_snapshot_guard_pass`，仍不代表 production ingestion |
 | Runtime actions | `false` |
 | Payload ingestion | `false` |
diff --git a/docs/security/SECURITY-SUPPLY-CHAIN-PROGRESS.md b/docs/security/SECURITY-SUPPLY-CHAIN-PROGRESS.md
index 7ab522fa..2bd067a4 100644
--- a/docs/security/SECURITY-SUPPLY-CHAIN-PROGRESS.md
+++ b/docs/security/SECURITY-SUPPLY-CHAIN-PROGRESS.md
@@ -5,7 +5,7 @@
 | 日期 | 2026-05-17 |
 | 狀態 | S0/S1 read-only evidence 建置中 |
 | 本階段完成 | 資安供應鏈 contract manifest + Source Control Approval Board + Draft Reconcile Plan + Ref Detail Diff + Ref Truth Classification + Source Control Ref Truth Owner Response 收件包 + GitHub Primary Readiness Gate + GitHub Primary Rollback ADR + GitHub Target Owner Decision Response 收件包 + Gitea 認證清冊匯出請求 + Gitea 認證清冊匯入驗收契約 + Gitea 清冊覆蓋 Owner Attestation + Gitea Owner Attestation Approval Lane 對齊 + Gitea Owner Attestation Response 收件包 + Workflow / Secret Name Inventory + Workflow / Secret Name Local Evidence + Workflow / Secret Name Redacted Export Request + Workflow / Secret Name Owner Response 收件包 + Source Control Owner Response Validation Rollup + Kali 112 live integration status + Security Finding contract + Kali scan scope approval package + Security Approval Queue + S3 人工批准 Gate + S3 人工決策紀錄 + S3 人工審查封包 + S3 人工決策狀態轉移 + S3 後續 runtime gate 準備契約 + 鏡像 readiness index + 鏡像接收計畫 + 鏡像事件信封 + 鏡像路由矩陣 + 鏡像驗收契約 + 鏡像隔離契約 + 鏡像 dry-run 報告契約 + 鏡像狀態彙整契約 + IwoooS 前端態勢入口 + IwoooS posture projection contract + IwoooS 既有前端資安頁面整合 + IwoooS 覆蓋與邊界矩陣 + IwoooS 只讀資安處理旅程 + IwoooS owner evidence readiness board + IwoooS host coverage view + IwoooS host action gate matrix + IwoooS host evidence readiness board + IwoooS host evidence collection order + IwoooS host evidence intake preflight + IwoooS host evidence review outcome lanes + IwoooS host evidence review handoff packets + IwoooS host evidence reviewer checklist + IwoooS host evidence reviewer outcome lanes + IwoooS host owner decision candidate packets + IwoooS host owner decision review checklist + IwoooS host owner decision review outcome lanes + IwoooS host owner decision record draft packets + IwoooS host owner decision record draft review checklist + IwoooS host owner decision record draft review outcome lanes + IwoooS host owner decision record write-up packets + IwoooS host owner decision record write-up review checklist + IwoooS host owner decision record write-up review outcome lanes + IwoooS host owner decision record formal candidate packets + IwoooS host owner decision record formal candidate review checklist + IwoooS host owner decision record formal candidate review outcome lanes + IwoooS host owner decision record formal record queue packets + IwoooS host owner decision record formal record queue review checklist + IwoooS host owner decision record formal record queue review outcome lanes + IwoooS host owner decision record human handoff readiness packets + IwoooS host owner decision record human handoff readiness review checklist + IwoooS host owner decision record human handoff readiness review outcome lanes + IwoooS host owner decision record human record owner review candidate packets + IwoooS host owner decision record human record owner review candidate checklist + IwoooS host owner decision record human record owner review candidate outcome lanes + IwoooS host owner decision record human record owner review preparation packets + IwoooS host owner decision record human record owner review preparation checklist + IwoooS progress acceleration lanes + IwoooS owner response next-action focus + IwoooS S4.9 owner response preflight + IwoooS S4.9 owner response request templates + IwoooS progress hold movement gates + IwoooS AwoooP read-only landing readiness + IwoooS AwoooP cross-session handoff packets + AwoooP 首頁 IwoooS 資安鏡像候選 + AwoooP 工作鏈路 IwoooS 資安鏡像候選 + AwoooP 審批佇列 IwoooS owner response 只讀焦點 |
-| 本階段追加 | AwoooP 合約儀表板 IwoooS 資安契約只讀候選 + AwoooP 租戶管理 IwoooS 資安租戶範圍只讀候選 + AwoooP Run 監控 IwoooS Run State 只讀候選 + 既有安全 / 合規頁面 IwoooS 只讀反向橋接 + 告警 / 錯誤 / 授權 / 治理頁面 IwoooS 只讀反向橋接 + 稽核 / 工程審查頁面 IwoooS 深色只讀反向橋接 + IwoooS 前端資安頁面連接狀態板 + IwoooS GitHub Primary Readiness 只讀狀態板 + AwoooP 工作鏈路 GitHub Primary Readiness 只讀工作項 + AwoooP 合約儀表板 GitHub Primary Readiness 合約只讀候選 + AwoooP 審批佇列 GitHub Primary Readiness 審批邊界 + AwoooP 首頁 GitHub Primary Readiness 只讀摘要 + AwoooP 租戶管理 GitHub Primary Readiness 租戶範圍 + AwoooP Run 監控 GitHub Primary Readiness Run 邊界 + IwoooS / AwoooP 資安可視區塊繁體中文呈現 guard + AwoooP 執行詳情 / 審批詳情繁體中文呈現 guard |
+| 本階段追加 | AwoooP 合約儀表板 IwoooS 資安契約只讀候選 + AwoooP 租戶管理 IwoooS 資安租戶範圍只讀候選 + AwoooP 執行監控 IwoooS 執行狀態只讀候選 + 既有安全 / 合規頁面 IwoooS 只讀反向橋接 + 告警 / 錯誤 / 授權 / 治理頁面 IwoooS 只讀反向橋接 + 稽核 / 工程審查頁面 IwoooS 深色只讀反向橋接 + IwoooS 前端資安頁面連接狀態板 + IwoooS GitHub 主要來源就緒度只讀狀態板 + AwoooP 工作鏈路 GitHub 主要來源就緒度只讀工作項 + AwoooP 合約儀表板 GitHub 主要來源就緒度合約只讀候選 + AwoooP 審批佇列 GitHub 主要來源就緒度審批邊界 + AwoooP 首頁 GitHub 主要來源就緒度只讀摘要 + AwoooP 租戶管理 GitHub 主要來源就緒度租戶範圍 + AwoooP 執行監控 GitHub 主要來源就緒度執行邊界 + IwoooS / AwoooP 資安可視區塊繁體中文呈現防護檢查 + AwoooP 執行詳情 / 審批詳情繁體中文呈現防護檢查 + AwoooP 首頁負責人回覆驗收總覽 |
 | 原則 | 低摩擦分階段；文件、schema、read-only evidence 優先；不做 runtime enforcement、不切 primary |
 
 ## 0. 本階段完成後整體進度
@@ -28,7 +28,7 @@ python3 scripts/security/security-mirror-progress-guard.py
 
 ### 0.2 Headline 58% 不代表停滯
 
-近期 S4.10 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks、S4.11 request packet / template status ledger / audit event templates / redaction examples / collection checks / intake preflight checks、S4.12 request packet / template status ledger / audit event templates / redaction examples / collection checks / intake preflight checks、S4.13 evidence routing rules / display sections / state transition rules / reviewer checklist / reviewer outcome lanes / reviewer audit event templates / reviewer audit display sections / reviewer audit collection checks / reviewer audit redaction examples / reviewer audit retention rules / reviewer audit retention checks / reviewer audit handoff packets / reviewer audit handoff checks / parallel session sync checks / parallel session conflict lanes / parallel session recovery checks / recovery outcome lanes、S1.3 non-blocking escalation lanes、S2.8 IwoooS frontend posture entry，以及 S2.9-S2.71 IwoooS / AwoooP security projection contract 都是有效進展，但它們是 framework detail，不是 owner response、runtime gate、production ingestion 或 GitHub primary readiness。因此 headline 仍維持 58%，避免把只讀框架誤算成已落地執行。
+近期 S4.10 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks、S4.11 request packet / template status ledger / audit event templates / redaction examples / collection checks / intake preflight checks、S4.12 request packet / template status ledger / audit event templates / redaction examples / collection checks / intake preflight checks、S4.13 evidence routing rules / display sections / state transition rules / reviewer checklist / reviewer outcome lanes / reviewer audit event templates / reviewer audit display sections / reviewer audit collection checks / reviewer audit redaction examples / reviewer audit retention rules / reviewer audit retention checks / reviewer audit handoff packets / reviewer audit handoff checks / parallel session sync checks / parallel session conflict lanes / parallel session recovery checks / recovery outcome lanes、S1.3 non-blocking escalation lanes、S2.8 IwoooS frontend posture entry，以及 S2.9-S2.72 IwoooS / AwoooP security projection contract 都是有效進展，但它們是 framework detail，不是 owner response、runtime gate、production ingestion 或 GitHub primary readiness。因此 headline 仍維持 58%，避免把只讀框架誤算成已落地執行。
 
 S2.50 也把「為什麼 58% 還不動」拆成五個可見 gate：owner response accepted、redacted payload ingestion、active runtime gate、GitHub primary ready、AwoooP read-only landing。這五個 gate 目前仍全部是 0 / false，所以 headline 不應被灌水提高。
 
@@ -134,6 +134,7 @@ S2.50 也把「為什麼 58% 還不動」拆成五個可見 gate：owner respons
 | S2.69 AwoooP runs GitHub primary readiness boundary | 已完成草案，在 `/awooop/runs` 顯示 GitHub Primary Readiness Run 邊界，連回 `/iwooos`，並顯示 candidate repos=8、in-scope=7、security runs=0、owner response 0/22、workflow inventory complete=0/7；security_run_created=false、execution_router_linked=false、repo_creation_authorized=false、refs_mutation_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false | 0 |
 | S2.70 IwoooS / AwoooP security surface Traditional Chinese wording guard | 已完成草案，將 IwoooS / AwoooP 資安可視區塊的使用者可見英文標籤改成繁體中文，並由 guard 阻擋 Candidate repos、In-scope repos、Owner response、Workflow inventory、Active runtime gates、GitHub Primary Readiness 等英文標籤回流；技術 contract id 與 false flags 保留可追溯 | 0 |
 | S2.71 AwoooP run detail Traditional Chinese wording guard | 已完成草案，將 AwoooP 執行詳情、審批決策與事件證據的使用者可見英文標籤改成繁體中文，並由 scoped guard 阻擋 Trace ID、Trigger、Tool、Scope、Dry-run、Tools、Incident Evidence、Run state、audit trail 等英文文案回流；技術 ID 與 false flags 保留可追溯 | 0 |
+| S2.72 AwoooP 首頁負責人回覆驗收總覽 | 已完成草案，在 `/awooop` 顯示 S4.9/S4.10/S4.11/S4.12 四包負責人回覆、22 個回覆範本、已收到=0、已接受=0、已拒收=0 與人工審查驗收檢查；仍不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不開執行期閘門 | 0 |
 
 headline 要再往上，需要 S4.9 / S4.10 / S4.11 / S4.12 任一 owner response 收到並通過脫敏驗收，或人工批准後出現 active runtime gate、redacted payload ingestion、GitHub primary readiness 這類落地 evidence。
 
@@ -224,6 +225,7 @@ headline 要再往上，需要 S4.9 / S4.10 / S4.11 / S4.12 任一 owner respons
 | S2.69 AwoooP Runs GitHub Primary Readiness Boundary | 完成草案 | `/awooop/runs` 新增 GitHub Primary Readiness Run 邊界，顯示 primary readiness、owner response validation、workflow / secret name inventory、rollback ADR refs，以及 security runs=0 | 使用者與另一個 AwoooP Session 能在 Run 監控理解 GitHub primary readiness 仍不能變成 platform run 或 execution router；Run 邊界仍不是 repo creation、visibility change、refs mutation、workflow / secret mutation、secret value collection、primary switch、Gitea disablement 或 runtime 授權 |
 | S2.70 IwoooS / AwoooP Traditional Chinese Security Surface Guard | 完成草案 | zh-TW 前端資安可視文案改為繁體中文，並新增 guard 防止關鍵英文標籤回流 | 使用者看到的資安入口、AwoooP 首頁、租戶、執行、合約、審批等資安可視區塊以繁體中文理解；本修正仍只是文案與 guard，不是 runtime、repo、refs、workflow、secret、GitHub primary 或 Gitea 動作 |
 | S2.71 AwoooP Run Detail Traditional Chinese Wording Guard | 完成草案 | zh-TW AwoooP 執行詳情、審批決策與事件證據文案改為繁體中文，並新增 scoped guard 防止詳情頁英文標籤回流 | 使用者進入執行時間線、審批決策與事件證據時能以繁體中文理解狀態、來源、MCP、補救試跑與稽核欄位；本修正仍只是文案與 guard，不是 approval record、runtime、repo、refs、workflow、secret、GitHub primary 或 Gitea 動作 |
+| S2.72 AwoooP 首頁負責人回覆驗收總覽 | 完成草案 | `/awooop` 新增四包負責人回覆驗收總覽，顯示 22 個範本、0 已收到、0 已接受、0 已拒收、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目與 7 條審查結果分流 | 使用者能在首頁看懂 GitHub 主要來源前真正卡住的是負責人證據收件與驗收；總覽仍不是審批紀錄、負責人回覆已接受、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定動作、GitHub 主要來源或執行期閘門 |
 | S3 approval gate | 進行中 | `security_approval_gate_v1` 已建立 8 個人工 gate items：7 pending、1 block candidate、0 approved | 不得繞過人工批准；批准後仍需 follow-up runtime gate |
 | S3.0 人工批准 Gate 契約 | 完成草案 | 定義批准範圍、決策選項、required reviewers、still forbidden 與 follow-up runtime gate | AwoooP 可記錄決策，不可執行 gate item |
 | S3.1 人工決策紀錄契約 | 完成草案 | `security_approval_decision_record_v1` 已建立；目前 0 筆 decision records、0 個 runtime action 授權 | AwoooP 可稽核決策，不可把決策當執行 |
diff --git a/docs/security/security-mirror-status-rollup.snapshot.json b/docs/security/security-mirror-status-rollup.snapshot.json
index 951f2bfb..c1c70df0 100644
--- a/docs/security/security-mirror-status-rollup.snapshot.json
+++ b/docs/security/security-mirror-status-rollup.snapshot.json
@@ -1322,6 +1322,18 @@
       "runtime_delta": false,
       "execution_authorized": false,
       "not_authorization": true
+    },
+    {
+      "delta_id": "s2_72_awooop_home_owner_response_validation_rollup",
+      "display_order": 101,
+      "completed_stage": "S2.72 AwoooP 首頁負責人回覆驗收總覽",
+      "progress_axis": "framework_detail",
+      "headline_percent_delta": 0,
+      "framework_delta_visible": true,
+      "why_headline_unchanged": "AwoooP 首頁只新增四包負責人回覆驗收總覽，顯示 S4.9/S4.10/S4.11/S4.12、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目與 7 條審查結果分流；runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false，不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
+      "runtime_delta": false,
+      "execution_authorized": false,
+      "not_authorization": true
     }
   ],
   "next_safe_actions": [
@@ -2046,7 +2058,8 @@
     "S2.68 新增 AwoooP tenants GitHub Primary Readiness 租戶範圍；/awooop/tenants 顯示 AWOOOI first tenant source-control scope、S4.9、S4.10、S4.12 owner scope refs、candidate repos=8、in-scope=7、owner response 0/22、tenant scope changes=0，並連回 /iwooos；tenant_source_control_scope_accepted=false、repo_owner_response_accepted=false、repo_creation_authorized=false、refs_mutation_authorized=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false、tenant_policy_mutation_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true，不把租戶範圍當 tenant policy approval 或 GitHub primary approval、不改 migration mode、不改 tenant policy、不建立 repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
     "S2.69 新增 AwoooP runs GitHub Primary Readiness Run 邊界；/awooop/runs 顯示 source_control_primary_readiness_gate_v1、source_control_owner_response_validation_rollup_v1、source_control_workflow_secret_name_inventory_v1、source_control_primary_rollback_adr_v1、candidate repos=8、in-scope=7、security runs=0、owner response 0/22、workflow inventory complete=0/7，並連回 /iwooos；security_run_created=false、github_primary_run_created=false、execution_router_linked=false、repo_creation_authorized=false、refs_mutation_authorized=false、workflow_secret_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true，不把 Run 邊界當 platform run、execution router 或 GitHub primary approval、不建立 repo、不改 visibility、不 sync/delete/force push refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。",
     "S2.70 修正 IwoooS / AwoooP 資安可視區塊繁體中文呈現；zh-TW 前端文案將 GitHub readiness、owner response、runtime gate、run state、workflow inventory、tenant scope、contract refs、approval lanes 等使用者可見英文標籤改成繁體中文，並由 security-mirror-progress-guard.py 阻擋 Candidate repos、In-scope repos、Owner response、Workflow inventory、Active runtime gates、GitHub Primary Readiness 等英文標籤回流；保留 GitHub、Gitea、Kali、AwoooP、IwoooS、refs、workflow、secret、runtime、contract id 與 false flags 作為技術名詞或證據鍵值；runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true，不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。",
-    "S2.71 修正 AwoooP 執行詳情、審批決策與事件證據繁體中文呈現；zh-TW 前端文案將 Trace ID、Trigger、Trigger Ref、Tool、Scope、First-class、Policy enforced、Approval executor、Legacy bridge、Dry-run、Tools、Incident Evidence、Run state、audit trail 等使用者可見英文標籤改成繁體中文，並由 security-mirror-progress-guard.py 新增 scoped guard 阻擋回流；保留 run_id、project_id、trace_id、MCP Gateway、Runtime、ADR-100 與 false flags 作為技術名詞或證據鍵值；runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true，不建立 approval record、不執行 runtime、不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。"
+    "S2.71 修正 AwoooP 執行詳情、審批決策與事件證據繁體中文呈現；zh-TW 前端文案將 Trace ID、Trigger、Trigger Ref、Tool、Scope、First-class、Policy enforced、Approval executor、Legacy bridge、Dry-run、Tools、Incident Evidence、Run state、audit trail 等使用者可見英文標籤改成繁體中文，並由 security-mirror-progress-guard.py 新增 scoped guard 阻擋回流；保留 run_id、project_id、trace_id、MCP Gateway、Runtime、ADR-100 與 false flags 作為技術名詞或證據鍵值；runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true，不建立 approval record、不執行 runtime、不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。",
+    "S2.72 新增 AwoooP 首頁負責人回覆驗收總覽；/awooop 顯示 S4.9/S4.10/S4.11/S4.12 四包負責人回覆、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目與 7 條審查結果分流；owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true，不把首頁驗收總覽當負責人回覆已收到 / 已接受、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。"
   ],
   "forbidden_actions": [
     "start_kali_scan",
diff --git a/scripts/security/security-mirror-progress-guard.py b/scripts/security/security-mirror-progress-guard.py
index e3dca4f6..2d6398e3 100755
--- a/scripts/security/security-mirror-progress-guard.py
+++ b/scripts/security/security-mirror-progress-guard.py
@@ -289,6 +289,7 @@ def validate(root: Path) -> None:
         "s2_69_awooop_runs_github_primary_readiness_boundary",
         "s2_70_traditional_chinese_security_surface_wording_guard",
         "s2_71_awooop_run_detail_traditional_chinese_wording_guard",
+        "s2_72_awooop_home_owner_response_validation_rollup",
     ]
     assert_equal(
         "progress_delta_ledger.delta_ids",
@@ -318,6 +319,11 @@ def validate(root: Path) -> None:
     assert_equal("rollup.workflow_secret_inventory_complete_count", rollup_summary["workflow_secret_inventory_complete_count"], 0)
     assert_false("rollup.secret_value_collection_allowed", rollup_summary["secret_value_collection_allowed"])
     assert_false("rollup.secret_value_detected", rollup_summary["secret_value_detected"])
+    assert_contains(
+        "rollup.next_safe_actions.action_ids",
+        [item["action_id"] for item in rollup["next_safe_actions"] if isinstance(item, dict)],
+        "mirror_owner_response_validation_rollup",
+    )
     assert_contains(
         "rollup.next_safe_actions.action_ids",
         [item["action_id"] for item in rollup["next_safe_actions"] if isinstance(item, dict)],
@@ -482,6 +488,76 @@ def validate(root: Path) -> None:
     ]:
         assert_text_not_contains("web_messages.zh-TW.awooop_run_detail_wording", zh_awooop_run_detail_text, forbidden)
 
+    zh_awooop_home_security_text = json.dumps(
+        {
+            "securityMirror": web_messages_zh["awooop"]["home"]["securityMirror"],
+            "githubPrimaryReadiness": web_messages_zh["awooop"]["home"]["githubPrimaryReadiness"],
+            "ownerResponseValidation": web_messages_zh["awooop"]["home"]["ownerResponseValidation"],
+        },
+        ensure_ascii=False,
+    )
+    for forbidden in [
+        "secret value",
+        "secret 明文",
+        "received / accepted",
+        "0 received",
+        "0 accepted",
+        "Production landing",
+        "production landing",
+        "runtime ingestion",
+        "deployment proof",
+        "evidence refs",
+        "Workflow / secret",
+        "workflow / secret",
+        "ready count",
+        "Owner Response Validation",
+        "Response Packets",
+        "Owner Attestation",
+        "Owner Decision",
+        "Owner Response",
+        "Reviewer Checklist",
+        "Reviewer Outcomes",
+        "Cross-Packet Checks",
+        "owner evidence",
+        "owner response",
+        "owner attestation",
+        "owner decision",
+        "checklist items",
+        "outcome lanes",
+    ]:
+        assert_text_not_contains(
+            "web_messages.zh-TW.awooop_home_security_wording",
+            zh_awooop_home_security_text,
+            forbidden,
+        )
+
+    zh_awooop_owner_response_validation_text = json.dumps(
+        web_messages_zh["awooop"]["home"]["ownerResponseValidation"],
+        ensure_ascii=False,
+    )
+    for forbidden in [
+        "Owner Response Validation",
+        "Response Packets",
+        "Owner Attestation",
+        "Owner Decision",
+        "Owner Response",
+        "Reviewer Checklist",
+        "Reviewer Outcomes",
+        "Cross-Packet Checks",
+        "owner evidence",
+        "owner response",
+        "owner attestation",
+        "owner decision",
+        "secret value",
+        "checklist items",
+        "outcome lanes",
+    ]:
+        assert_text_not_contains(
+            "web_messages.zh-TW.awooop_owner_response_validation_wording",
+            zh_awooop_owner_response_validation_text,
+            forbidden,
+        )
+
     assert_equal("rollout_policy.schema_version", rollout_policy["schema_version"], "security_rollout_policy_v1")
     assert_equal("rollout_policy.default_mode", rollout_policy["default_mode"], "observe")
     assert_equal("rollout_policy.enforcement_level", rollout_policy["enforcement_level"], "mirror_only")
@@ -5209,6 +5285,66 @@ def validate(root: Path) -> None:
             key,
         )
 
+    assert_text_contains(
+        "awooop_home_page.owner_response_validation_panel",
+        awooop_home_page,
+        "OwnerResponseValidationRollupPanel",
+    )
+    assert_text_contains(
+        "awooop_home_page.owner_response_validation_packets",
+        awooop_home_page,
+        "ownerResponseValidationPackets",
+    )
+    assert_text_contains(
+        "awooop_home_page.owner_response_validation_checks",
+        awooop_home_page,
+        "ownerResponseValidationChecks",
+    )
+    assert_text_contains("awooop_home_page.owner_response_validation_iwooos_link", awooop_home_page, 'href="/iwooos"')
+    for text in [
+        "source_control_owner_response_validation_rollup_v1",
+        "S4.9",
+        "S4.10",
+        "S4.11",
+        "S4.12",
+        "owner_response_validation_received_count=0",
+        "owner_response_validation_accepted_count=0",
+        "owner_response_validation_rejected_count=0",
+        "repo_creation_authorized=false",
+        "refs_sync_authorized=false",
+        "workflow_modification_authorized=false",
+        "secret_value_collection_allowed=false",
+        "github_primary_switch_authorized=false",
+        "runtime_execution_authorized=false",
+        "action_buttons_allowed=false",
+    ]:
+        assert_text_contains("awooop_home_page.owner_response_validation_boundary", awooop_home_page, text)
+    for key in [
+        "title",
+        "subtitle",
+        "badge",
+        "openIwooos",
+        "packetsTitle",
+        "validationTitle",
+        "boundaryLabel",
+        "boundaryTitle",
+        "boundaryDetail",
+        "fields",
+        "metrics",
+        "packets",
+        "checks",
+    ]:
+        assert_contains(
+            "web_messages.zh-TW.awooop.home.ownerResponseValidation",
+            list(web_messages_zh["awooop"]["home"]["ownerResponseValidation"].keys()),
+            key,
+        )
+        assert_contains(
+            "web_messages.en.awooop.home.ownerResponseValidation",
+            list(web_messages_en["awooop"]["home"]["ownerResponseValidation"].keys()),
+            key,
+        )
+
     assert_text_contains("awooop_work_items_page.security_mirror_item", awooop_work_items_page, "iwooosSecurityMirror")
     assert_text_contains("awooop_work_items_page.github_primary_item", awooop_work_items_page, "githubPrimaryReadiness")
     assert_text_contains(