Macro-2 Do-Not-Implement Register — R2-B2 (2026-06-19)
Macro-2 Do-Not-Implement Register — R2-B2
Date: 2026-06-19 · Workstream: R2-B2-MACRO-2-OWNER-DECISION-PREREQ-CLOSURE-READINESS-2026-06-19 (Deliverable 39 of 45) · Editorial revision: rev1
Class: forbidden-action register · READ-ONLY · NON-ENACTING · NON-AUTHORIZING · NO write performed.
Metadata convention. Editorial revision (rev1) only. AgentData storage revision/
content_lengthauthoritative at read time; not pinned here.
Register lock. The explicit do-not-implement register for the path after Macro-2 — the actions that stay forbidden despite the ballots and the fresh evidence. Decision-prep authorizes nothing.
0. Status and non-authorization
STATUS: PASS — engineering / design-only. The consolidated forbidden-action register. Engineering PASS ≠ authority PASS. Default disposition: HOLD. No DB write/DDL/DML; no TD; no blocker resolved; v0.1 not overwritten; v0.2 not authority.
Evidence basis — design synthesis (macro §4 + chain). Reading discipline: main process, no reader-agents.
1. Purpose
State, in one place, what remains forbidden after Macro-2 — so no reader mistakes a prepared ballot or fresh evidence for authorization.
2. Sources / evidence read
The macro §4 forbidden list; the 30-file do-not-implement register; Deliverables 5, 11, 16, 23, 29, 30. Read directly, main process.
3. Do-not-implement register (all FORBIDDEN now)
| # | Forbidden action | Gate to lift later |
|---|---|---|
| 1 | DB write / DDL / DML | Điều 32 |
| 2 | restart/reload container/service | Điều 32 |
| 3 | run worker / cron / job / trigger | Điều 32 + channel + S2 |
| 4 | trigger DOT / KG / birth / certify / promote / repair | Điều 32 |
| 5 | set inspect_pen/inspect_stamp/inspect_gate |
Điều 32 + S2 + channel + staging |
| 6 | set certified=true |
— (never B2; B4's job) |
| 7 | flip app.birth_gate_mode / dot_config gate |
separate B7 package |
| 8 | assign governance owner (S2) | Điều 37 → Điều 32 |
| 9 | select channel as authority | Owner decision |
| 10 | promote agent-api contract DRY_RUN→REAL_RUN |
Điều 32 + contract promotion |
| 11 | install pg_cron / enable queue worker | Điều 32 + infra/master-switch |
| 12 | write env/config; patch source/law/draft/note/prior report | Owner-gated documentary step |
| 13 | create current / staging corpus or schema | Điều 32 (staging build) |
| 14 | write SQL mutate plan / command sequence / rollback script | Điều 32 (TD) |
| 15 | write actual technical design | Owner decision after entry gate Go |
| 16 | implement / build the producer | full gated chain |
| 17 | resolve any blocker | each blocker's separate workstream |
| 18 | adopt Điều 0-G source as authoritative | external S6 / Owner accept-with-caveat |
| 19 | open B5 (backlog) / B7 (GUC) as design | separate future packages |
| 20 | open R1/KG as a workstream | separate R1 macro |
| 21 | make the Owner decision (path/channel/S2/Đ0-G) on the Owner's behalf | the Owner alone |
| 22 | overwrite v0.1-stable / FIX7 V3 baseline | — (never) |
| 23 | promote / use v0.2-hardening as authority | regression + Owner/User promotion |
Macro-2-specific addition (row 21): because this macro prepares Owner decisions, the register adds: do not make the Owner decision — recommend only.
4. Result
All 23 actions remain forbidden after Macro-2's ballots and fresh evidence. Decision-prep ≠ authorization. OWNER_DECISION_REQUIRED.
5. Owner-gated future work
Lifting any row is a separate Owner decision; forbidden now.
6. Owner-gated future work (writes)
Rows 1–16, 18–20, 22–23 are write/authority acts; all forbidden now.
7. What remains unresolved
- All 23 forbidden; no decision made.
- Blockers — all OPEN.
8. Ready for GPT/Codex review
Yes — as the do-not-implement register.
Core rule: fresh evidence + prepared ballots authorize none of the 23 actions; decision-prep ≠ authorization; the Owner decision is not made here.
Default disposition: HOLD. Engineering PASS ≠ authority PASS. All blockers remain OPEN.