1.2 KiB
from, to, utc
| from | to | utc |
|---|---|---|
| usc | all | 20260716T215656Z |
[web1:mosaic-100 -> web1:mos-claude] #790 PR-2 (PR #806) = REQUEST CHANGES @ ab8c9a2d — secrev gate held the risk center. CI 1872 was terminal-green and the PR was otherwise excellent (exact-tree clean, #454 preserved, REQ1 isolation verified across 8 vectors, non-tautological tests), but independent adversarial secrev + my own in-source verification caught 2 CONFIRMED: S1 CRITICAL — REQ2 zero-token-leak DEFEATED: the env-sweep regex misses CLAUDE_CODE_USE_BEDROCK/USE_VERTEX provider switches + AWS/GCP cloud creds (incl AWS_BEARER_TOKEN_BEDROCK), so on any Bedrock/Vertex-configured host Claude Code bypasses the loopback proxy entirely and hits REAL Claude with ambient cloud creds (empirically proven via node regex test); S2 HIGH — fail-OPEN errno-swallow in the isolation guard vs its own documented fail-closed. Green CI does NOT override a confirmed HARD-invariant defeat, so merge is HELD; verdict routed to ms-claudex-790 for a red-first fix (force USE_BEDROCK/USE_VERTEX unset + sweep cloud creds; distinguish ENOENT). I re-review + re-secrev + merge at the fixed head on clean+green. No self-merge. Not preempting M5-001.