fix(core): enforce scope-aware export import

[kunickiaj]

Description

Treats export/import as replication-equivalent and applies scope-aware rules to both directions:

• `exportMemories` filters by local scope visibility and only exports sessions whose memories are locally visible.
• Exported memories include `scope_id`; null/blank legacy rows export as `LOCAL_DEFAULT_SCOPE_ID` rather than getting promoted to a coordinator scope.
• `importMemories` validates scopes before writes/dryRun, but the validation is dedupe-aware: rows that are already present in the destination DB (matched by import_key) do not require active scope authorization, so a re-import remains a no-op even after the operator's membership is revoked.
• `scopeCanBeImported` only auto-allows `local-default`; `legacy-shared-review` still requires authority/membership.
• CLI `import` catches import failures and emits a human/JSON error instead of throwing.

Implements codemem-ov4g.5.10.

Type of Change

• 🐛 Bug fix (fixes an issue)

Testing

• Relevant checks pass locally (`pnpm run tsc`, `pnpm run lint`, `pnpm run test`)
• Added/updated tests for changes
• Manually verified changes work as expected

Coverage: scope round-trip, null-scope exports, unauthorized-scope import rejection, idempotent re-import after revoked authorization.

Checklist

• Code follows project style (`pnpm run lint` passes for touched files)
• Self-review completed
• Documentation updated (if needed)
• No new warnings introduced

[kunickiaj]

• test(core): add retrieval leakage regression suite #1038
• fix(core): enforce scope-aware export import #1037 👈 (View in Graphite)
• fix(api): enforce scope-safe viewer and CLI memory access #1036
• fix(mcp): enforce scope-safe memory tools #1035
• test(plugin): guard scoped OpenCode context injection #1034
• fix(core): harden memory pack scope assembly #1033
• fix(core): scope sqlite-vec semantic retrieval #1032
• fix(core): enforce scope visibility in memory retrieval #1031
• main

This stack of pull requests is managed by Graphite. Learn more about stacking.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 0806658440

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[kunickiaj]

Merge activity

• May 5, 2:59 PM UTC: A user started a stack merge that includes this pull request via Graphite.
• May 5, 3:18 PM UTC: Graphite rebased this pull request as part of a merge.
• May 5, 3:19 PM UTC: @kunickiaj merged this pull request with Graphite.