KB-674F
O11 automation+agent-sandbox bundle — 01 Precheck live / O10 baseline
5 min read Revision 1
dieu44iu-cutterv0.6o11automation-agent-sandboxprecheck
O11 Report 01 — Precheck live / O10 baseline (BRANCH 0)
- macro:
v0.6-o11-automation-agent-sandbox-program-bundle - date_utc: 2026-05-21 · host: Contabo
vmi3080463· gate: BRANCH 0 - result: PASS — O10 deployed state verified; no drift; no production mutation since O10
1. Host & identity
hostname: vmi3080463 # Contabo VPS — expected
user: root
os: Linux 6.8.0-90-generic x86_64 (Ubuntu)
disk: /dev/sda1 72G/96G used (75%), 25G free — OK
2. Active v0.6 tree
path: /opt/incomex/dot/iu-cutter-v0.6
deploy_manifest: DEPLOY-MANIFEST.txt present
source_commit: f111d4abd098bfd6653b157ea45a83e086c0a2fe (expected f111d4a — MATCH)
source_parent: fdcf580351b943dc67807ed7337a14fe7e4fc540
artifact: iu-cutter-v0.6-f111d4a.tar.gz
artifact_sha256: 747a79b216180b00c1018c4e7ebfc5db3ec7e81eff5820f84a26a5ade916000e
file_count: 91
note: the deployed tree is an extracted artifact, NOT a git checkout;
the active commit is the manifest's source_commit (f111d4a).
3. Kill-switch
manifest execution_enabled: False
source of truth: cutter_agent/orchestrator/__init__.py:36
__execution_enabled__ = False # verified in source
guard: execution_enabled() reads the constant freshly at call
time (no value-import) — confirmed in __init__.py
verdict: execution_enabled = False — never flipped
4. Test suite — deployed tree
command: python3 -m unittest discover -s tests -t tests
result: Ran 486 tests — OK (expected 486/486 — MATCH)
5. Runtime root /var/lib/cutter
/var/lib/cutter: exists (root:root 0750)
orchestrator.config.json: present (non-sensitive; credential-name pointers only)
backup_runner.py: present (8946 bytes, F4 artifact — O9)
runs/ approvals/ artifacts/ backups/ rollback/ reports/ locks/: all present
runs/ approvals/ artifacts/ backups/: EMPTY — no run has ever executed
reports/: holds the 9 staged O9 reports (01..09)
6. v0.4 skeleton
path: /opt/incomex/dot/iu-cutter — present, intact
note: source dirs owned 501:staff (Mac-authored); not modified by this macro
verdict: v0.4 skeleton untouched
7. KB read/write reachability
KB SSOT: directus.public.knowledge_documents
read: OK — O10 ruling (id 4400), O10 bundle (4390..4399),
O9 bundle (4380..4388) all read this macro
write path: directus_create into knowledge_documents (this session has no
agent-data upload_document MCP; directus_create is the route)
8. Production DB baseline
public.information_unit: 158 (O9/O10 baseline 158 — MATCH)
public.unit_version: 165 (O9/O10 baseline 165 — MATCH)
public.iu_lifecycle_log: 60 (O9/O10 baseline 60 — MATCH)
cutter_governance.*: NOT VISIBLE to the read-only MCP role — see §9.
9. Findings (non-blocking)
FINDING-1 orchestrator.config.json records deployed_source_commit = cad989a7…
and milestone_of_record = O8B. STALE — actual deployed commit is
f111d4a (O10). The file is NOT auto-loaded by any code (confirmed by
its own _consumption note), so this is documentation drift only.
Fix is the one-line operator step in O11 Report 03 §6 / Report 02.
FINDING-2 O9 Report 06 first-run command package cites PRE-6 fdcf580 / PRE-7
471 tests. O10 superseded these with f111d4a / 486. The package
must be read with the O11 Report 02 re-baseline applied.
FINDING-3 the cutter_governance schema is not visible to the read-only MCP
query role (expected least-privilege posture — that role is NOT
cutter_exec/cutter_verify). The O10 report-of-record governance
counts (cut_change_set 2 / review_decision 3 / verify_result 2)
are carried forward unverified-by-this-macro but un-contradicted:
the IU/UV/lifecycle baseline matched exactly, and no run has executed.
10. Verdict
host: Contabo vmi3080463 PASS
active commit: f111d4a (manifest) PASS
execution_enabled: False (manifest + source) PASS
tests: 486/486 PASS
/var/lib/cutter: present, backup_runner.py PASS
v0.4 skeleton: untouched PASS
KB read: OK PASS
DB baseline: 158/165/60 — match PASS
production mutation since O10: NONE
branch_0: PASS — proceed to BRANCH 1..9