sjat
703f1716e5
First /review-repo run on boma. Hardened repo-scan.py (no TODO.md/prose false positives). Applied 7 safe fixes (DNS staleness x2, STATUS factual correction, hosts.yml path generalisation, trunk-based wording x2, scripts/README). Recorded the run and 17 open findings in docs/reviews/2026-05-30-*. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
987 B
987 B
Latest repo review
Most recent: 2026-05-30 → full report: docs/reviews/2026-05-30-review.md
| high | medium | low | total | |
|---|---|---|---|---|
| Auto-fixed | 2 | 3 | 2 | 7 |
| Open | 4 | 4 | 9 | 17 |
Dominant theme: drift from this session's own changes — residual .vault_pass
references after the Vaultwarden/rbw switch, and leftover PR/merge-request language
after going trunk-based.
Suggested follow-up prompt
Remediate the boma 2026-05-30 review (
docs/reviews/2026-05-30-review.md):
- Purge the residual
.vault_passreferences R1–R5 → the rbw/Vaultwarden flow.- Decide the workflow model R6–R7 — I lean "keep deploy approval gates, drop the PR/merge-request framing"; reconcile ADR-003/008 and CLAUDE.md to match.
- Resolve R8 — scaffold
base/docker_hostviamake new-role, or correct STATUS.md/roles/README.md to say the roles don't exist yet.- Fix the Terraform
vlan_tagwiring (R9). Report on the rest.