{ "doc": "fix7-p0-updated-production-blocker-map-after-rehearsal", "date": "2026-06-12", "authority": "blocker map only; production NOT performed; clone rehearsal only", "blockers": [ { "id": "FIX7-P0-PROD-BIRTH-SURFACE-1", "item": "production object-birth surface scope (fn_birth_register / birth_registry / Directus row)", "status": "OPEN", "change_this_lane": "none", "actor_needed": "owner + operator", "next_action": "operator scopes exact production birth-write surface (not invented)", "blocks": "production" }, { "id": "FIX7-P0-PROD-CI-SCOPE-1", "item": "CI/deploy seal-vs-bytes enforcement scope UNKNOWN", "status": "OPEN", "change_this_lane": "CLASSIFIED: unresolvable read-only because the check is NOT YET DESIGNED (see ci-unknown-resolution.json). Does NOT affect clone rehearsal safety.", "actor_needed": "owner + operator", "next_action": "owner decides if a CI seal-vs-bytes gate is wanted; if yes, operator designs it in a throwaway non-production branch first", "blocks": "production-ci" }, { "id": "FIX7-P0-DRYRUN-PROD-ROLLBACK-1", "item": "production rollback proof (snapshot+restore) for the birth surface", "status": "OPEN_PARTIALLY_DISCHARGED", "change_this_lane": "CLONE-REHEARSAL LEG DISCHARGED: snapshot->apply->rollback->restore proven byte/row-exact on an isolated local clone (transactional BEGIN..ROLLBACK + committed+snapshot-restore); hardened validator PASS (after_apply!=before, after_rollback==before, restored_match). PRODUCTION LEG STILL OPEN: requires an operator-provided production-shaped DB dump clone (or production rehearsal) + production OPT-4 + a distinct production-rollback authorization. No production snapshot/restore tooling was built or run.", "actor_needed": "operator (+ separate authorization)", "next_action": "operator provides a production-shaped DB dump clone and snapshot/restore tooling; rehearse on that clone; only then consider a production rehearsal under production OPT-4 + distinct prod-rollback grant", "blocks": "production" }, { "id": "FIX7-P0-PLAN-REALRUN-1", "item": "REAL_RUN requires its own explicit owner grant", "status": "OPEN", "change_this_lane": "none (probe B2 confirms fail-closed)", "actor_needed": "owner", "next_action": "obtain REAL_RUN grant (not implied by rehearsal)", "blocks": "REAL_RUN" }, { "id": "FIX7-P0-PLAN-SEPARATE-AUTH-1", "item": "QT001/apply, permit, activation, repoint, cutover each need separate authorization", "status": "OPEN", "change_this_lane": "none (probes B3/B4 confirm fail-closed)", "actor_needed": "owner", "next_action": "obtain per-action grant before any attempt", "blocks": "cutover/apply/permit/activation/repoint" }, { "id": "FIX7-P0-PROD-OPT4-1", "item": "production-scope owner OPT-4 (rehearsal grant does NOT extend to production)", "status": "OPEN", "change_this_lane": "none; this macro is AUTHORIZE_PRODUCTION_REHEARSAL_ONLY, not production execution", "actor_needed": "owner", "next_action": "issue production OPT-4 after surface/rollback blockers resolved", "blocks": "production" }, { "id": "FIX7-P0-OPERATOR-INPUT-1", "item": "operator input to scope production surfaces + production rollback", "status": "OPEN", "change_this_lane": "narrowed: clone-rehearsal pattern proven, so the remaining operator input is specifically a production-shaped DB dump + snapshot/restore design", "actor_needed": "operator", "next_action": "operator provides production surface map + production-shaped clone/dump + snapshot/restore design", "blocks": "production" } ], "newly_closed_in_this_macro": [], "partially_discharged_in_this_macro": [ "FIX7-P0-DRYRUN-PROD-ROLLBACK-1 (clone-rehearsal leg proven; production leg remains OPEN)" ], "open_count": 7, "production_work_performed": false, "note": "All 7 production blockers remain OPEN. The rollback blocker is partially discharged (clone-rehearsal leg proven with zero production risk); its production leg, and all other blockers, remain owner/operator-gated. Production stays separately gated." }