Clarify residual risk calibration #15
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "agent/risk-calibration-guidance"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Refs allod/tools#87
This updates the dev-plan risk rubric so agents calibrate residual risk from the worst credible failed run after planned validation, rather than from command names or broad labels alone. It adds a reusable framework around affected state, blast radius, recoverability, propagation, and validation limits.
Risk
R0 docs/process guidance only. This changes planning guidance, not runtime behavior.
Validation
git diff --checkthis change seems really focused on what not to do or how not to score things. can we come up with some lower level guidelines to help agents think through the worst case outcomes of a potential change? the goal is for agents to apply a framework to their thinking and arrive at the same risk level without prescribing risk levels for each use case.
Updated in
9a3dc71to replace the use-case-specific local-checkout guidance with a lower-level worst-case-outcome framework: affected state, blast radius, recoverability, propagation, and validation limits. Also refreshed the PR body to match the new direction.I tested the previous wording by asking a separate subagent to re-grade the
pull-allsync redesign without showing it the existing dev-plan grade. It still graded the full issue and reset-mode PR as R4 because it treated untracked/ignored files and uncommitted work as unique local state whose loss may be unrecoverable.That exposed an ambiguity in the framework: unique local state is a real recoverability concern, but the rubric did not clearly say how to weigh it against explicit operator intent, local containment, fixture-testability, and the lack of propagation into remotes, secrets, provisioning, deployed services, or shared infrastructure.
Updated in
76f8f3eto add intent/detectability as a calibration dimension and to clarify that unique local user-authored state is not automatically R4 when the risky operation is explicit, local-only, testable, and contained. R4 now points at broad, implicit, opaque, cross-boundary, or practically unrecoverable failures.Added
Authority of statein2ff06abas the generic version of the Forge/local-checkout distinction. The goal is not to prescribe that any specific system wins, but to force the plan to identify which copy the workflow treats as authoritative and whether the failed operation mutates that authority or only a reconstructable derivative.I am rerunning the clean-slate
pull-allgrading experiment against this wording next.Reran the clean-slate
pull-allgrading experiment after addingAuthority of statein2ff06ab.Latest result:
This looks like the right calibration. The new wording moved the grader away from R4 because reset mode is explicit, local-only, fixture-testable, preflighted, and does not mutate the authoritative remote or any secrets/provisioning/services/shared infrastructure. It still kept PR 3 at R3 because
--clean/--clean-ignoredcan lose unique local files across multiple repos.Conclusion: the rubric now seems to distinguish authority/propagation from local recoverability without overfitting this one
pull-allcase. I will update thepull-alldev plan separately to match this R3/R2/R2/R3 assessment rather than keep tuning the rubric here.