# Rapid42 Review Factory Plan ## Task Demo: review auth gate + dependency manifest + secret-like config routing ## Repo `/private/tmp/rapid42-review-factory-demo/repo` ## Risk tier `full` ## Risk reasons - code changed - security-sensitive path changed - secret-sensitive path changed - dependency manifest changed ## Changed files - `.env` - `requirements.txt` - `src/auth.py` ## Context Factory bundle No context bundle attached. ## Spec Factory contract No spec contract attached. ## Reviewer panel - `spec_compliance` — Spec Compliance Reviewer - `tests_regression` — Tests and Regression Reviewer - `architecture` — Architecture Reviewer - `security` — Security and Approval-Gate Reviewer - `dependency_supply_chain` — Dependency and Supply-Chain Reviewer - `cost_context` — Cost and Context Reviewer - `docs_dx` — Docs and Developer Experience Reviewer - `final_judge` — Coordinator / Final Judge ## Execution instructions 1. Dispatch one reviewer subagent per specialist packet in `reviewers/*.md`, excluding `final_judge.md`. 2. Collect compact verdicts as `.md` or `.txt` files in a findings directory. 3. Run the deterministic hard gate with `rapid42_review_judge.py --review-plan review_plan.json --verification-evidence ...`. 4. If the judge returns `BLOCK` or `REQUEST_CHANGES`, fix, re-test, regenerate/update the plan if files changed, and re-review. 5. Final delivery is allowed only after `rapid42_review_judge.py` returns `APPROVE` and local verification evidence exists. Reference command: ```bash python3 /Users/slothuus/.hermes/rapid42/scripts/rapid42_review_judge.py --findings-dir /path/to/reviewer-findings --output-dir /path/to/fresh-review-decision --task 'Demo: review auth gate + dependency manifest + secret-like config routing' --verification-evidence "" --acceptance-evidence-file /path/to/acceptance_evidence.json --approval-evidence "" --spec-contract /path/to/spec_contract.json --review-plan /path/to/review_plan.json ``` ## Git diff stat ```text untracked files: 1 0 .env (untracked) 1 0 requirements.txt (untracked) 2 0 src/auth.py (untracked) ```