Plan actor identity profile registry#73
Conversation
|
Warning Review limit reached
Next review available in: 55 minutes Enable usage-based reviews in Billing to review now. Otherwise, wait until the next included review is available. How can I continue?After more reviews become available, a review can be triggered using the To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based reviews. How do review limits work?CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan review availability. For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, additional reviews become available more gradually as earlier reviews age out of the rolling window. Please refer docs for additional details. Review details⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Plus Run ID: 📒 Files selected for processing (13)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
PR Trust Bundle: WS-POL-001-11
Chunk
WS-POL-001-11- Actor Identity And Profile RegistryGoal
Approve the implementation contract for Workstream's local actor identity and
shared actor profile registry before coding the next backend chunk.
Human-Approved Intent
The user asked to avoid adding only a worker profile path and instead define
one shared actor/profile model for the current actor types: worker, reviewer,
admin, project manager, and project owner.
Chunk contract:
.agent-loop/initiatives/WS-POL-001-submission-artifact-policy-foundation/chunks/WS-POL-001-11-actor-identity-profile-registry.mdWhat Changed
WS-POL-001-11chunk contract.merged.
older task queue spec to align with the actor identity/profile contract.
support workflow eligibility, audit, display, and later reputation context.
project_owneras scoped source/contact metadata, not aroute-authorizing Workstream role.
ActorProfileauthority without wrappers, shadow tables, or dual writes.drills use
POST /api/v1/workers/me/profile.Why It Changed
The live Terminal Benchmark drill showed worker profile setup was now real, but
the broader actor model still needed to be locked before implementation. Without
this contract, worker, reviewer, admin, and project-owner metadata could drift
into separate one-off models or, worse, become hidden permission authority.
Design Chosen
ActorIdentityis the local durable record for a verified Flow actor.ActorProfileis the shared profile and workflow eligibility record.get_current_actorstays pure token verification.route deliberately needs that side effect.
observed,active, anddisabled.workertoken role and active workerprofile.
Alternatives Rejected
duplicated profile authority.
are the route authorization source.
because eligibility must come from explicit profile workflows.
under construction and should not preserve stale compatibility layers.
Scope Control
No backend implementation code changed. No migrations, APIs, services, tests,
CI, frontend, payment, reputation, review lifecycle, checker runtime, agent
runtime, Celery behavior, blockchain behavior, or object storage behavior were
implemented.
Product Behavior
accept,needs_revision, andreject.Acceptance Criteria Proof
ActorContext,ActorIdentity,ActorProfile, route authorization, and workflow eligibility.permissions.
profile privilege-escalation tests, status preservation tests, stale helper
scans, and full task test coverage.
Tests/Checks Run
Result summary:
Test Delta
CI Integrity
Reviewer Results
Internal review evidence:
.agent-loop/initiatives/WS-POL-001-submission-artifact-policy-foundation/reviews/WS-POL-001-11-internal-review-evidence.mdReviewed code SHA:
b769b70c07d22f7a802f6d4219201e7bbd2a3ab0Reviewed diff digest before evidence files:
86a15c53c7e407b902094212a5c08143e9c91cf154544e38ddbfc5e9f123983dReviewer run IDs: see
WS-POL-001-11-internal-review-evidence.md.External Review
External review has not run yet. CodeRabbit and GitHub checks should run after
the PR is opened.
Remaining Risks
tests.
get_current_actoruntil they are deliberately migrated.not
/api/v1/demo/worker-profile.Follow-Up Work
WS-POL-001-11after human approval.actor/profile registry implementation merges.
Human Review Focus
Please inspect:
second.
project_ownerwording as scoped source/contact metadata.Human Merge Ownership
Only the user can approve and merge this PR. Codex must not merge it without
explicit user approval for that specific PR.