Landed on main as 2215356, thanks @edwardmhughes. The SQLITE_CHECKPOINT_TRUNCATE → PASSIVE switch is precisely the right move for shared-cache scenarios — the ftruncate(fd, 0) that TRUNCATE invokes is exactly what makes sibling-process mmap pages disappear underfoot, and the SQLite docs explicitly recommend PASSIVE for this case.

Two notes:

• Because feat(store): expose mmap_size via CBM_SQLITE_MMAP_SIZE env #315 (also yours, also touched Makefile.cbm and tests/test_main.c to wire a new test suite) landed first, this branch ended up conflicting on those two files. GitHub couldn't auto-rebase, so I resolved the conflicts locally by taking the union (both tests/test_store_pragmas.c and tests/test_store_checkpoint.c are now wired in side by side) and cherry-picked your commit with author preserved. The PR shows as closed rather than merged, but the content + your authorship landed verbatim on main.
• The test_store_checkpoint.c smoke test (asserting WAL not truncated to zero) is the right shape — it'd fail under the old TRUNCATE mode under the right timing, so it actually defends the fix.

Pairs nicely with the CBM_SQLITE_MMAP_SIZE=0 knob from #315 — together they close both halves of the macOS multi-instance SIGBUS scenario in #314.