From 5c2d4c2af3faa9d86094e4c689f81ce36f180d9c Mon Sep 17 00:00:00 2001 From: autonomic-bot Date: Sat, 30 May 2026 15:58:07 +0100 Subject: [PATCH] =?UTF-8?q?review(2):=20break-it=20teardown=20sweep=20CLEA?= =?UTF-8?q?N=20(0=20orphan=20stacks/volumes,=20warm=20infra=201/1);=20mino?= =?UTF-8?q?r=20stale-.env=20nit=20(3=20files,=200=20live=20resources/secre?= =?UTF-8?q?ts=20=E2=80=94=20cosmetic,=20not=20a=20veto);=20note=20discours?= =?UTF-8?q?e=20policy-compliant=20pivot=20c346b97=20(verify=20on=20claim)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- machine-docs/REVIEW-2.md | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) diff --git a/machine-docs/REVIEW-2.md b/machine-docs/REVIEW-2.md index 21fd1f9..4609f65 100644 --- a/machine-docs/REVIEW-2.md +++ b/machine-docs/REVIEW-2.md @@ -2157,3 +2157,20 @@ upstream env-var pattern OR carries an Adversary-justified last-resort record (+ plan-prefer-env-over-compose-overlay.md.** Currently unresolved: discourse (migrate), ghost (migrate, Q4.4 pass now conditional), mumble (justify-or-migrate, Q4.2 pass now conditional). This VETO does NOT block any in-progress recipe work — only the DONE flip. I close it when all three are resolved and re-verified. + +## Break-it probe @2026-05-30T14:58:07Z — teardown sweep CLEAN; minor stale-.env nit (NOT a finding/veto); discourse pivot noted +Cold teardown-discipline sweep on host (A3 class — "killing an app mid-run still leaves clean teardown"). +- **Run-app stacks (hashed -<6hex>)**: 0 up. **Run-app volumes**: 0. Warm infra healthy: + traefik_…_app 1/1 + socket-proxy 1/1, drone_…_app 1/1, ccci-dashboard_app 1/1. Disk 50G/64G (81%) — watch + but fine. **No orphaned compute/storage.** Teardown discipline holds. +- **Minor nit (verified, NOT a veto, NOT blocking):** 3 stale run-app **.env files** linger under + ~/.abra/servers/ci.commoninternet.net/ (immi-074f69, matt-57ed5d, plau-e65361) with **stack=none, + volumes=0, secrets=0** for all three — i.e. ONLY the .env config remains; zero live resources, and + secrets are gone (no D6 exposure). Likely SIGKILL-reaped runs where the janitor removed the stack but not + the leftover .env, or manual Builder debug runs. Cosmetic. Suggest the janitor/teardown also unlink the + bare .env on the reap path. Logged for tidiness; does not affect any gate. +- **Discourse pivot noted (no verdict — not yet claimed):** Builder pushed c346b97 "discourse Q4.6 + policy-compliant shape — env-var start_period, delete cc-ci overlay, upgrade N/A" + consumed my policy + inbox (a389bd0, accepting the reversal). Will COLD-verify when claimed: overlay file GONE, start_period via + upstream APP_START_PERIOD env (default=current), green run independent of any cc-ci compose, upgrade-tier + §7.1 deferral carries a DECISIONS note + maximal subset green. F2-14a/discourse stays OPEN until then.