docs: publish GRA-22 graduation pipeline audit

[Gradata]

Summary

• Publishes the existing Paperclip GRA-22 audit-report as a durable repo artifact.
• No product code changes; documentation-only artifact for the read-only audit.

Verification

• git diff --cached --check before commit: passed
• Verified Paperclip audit-report revision 2 via localhost API before copying
• File added: docs/audits/gra-22-graduation-pipeline-audit.md

Paperclip: GRA-22

[greptile-apps]

Your free trial has ended. If you'd like to continue receiving code reviews, you can add a payment method here.

[coderabbitai]

📝 Walkthrough

• Documentation: Added docs/audits/gra-22-graduation-pipeline-audit.md publishing the GRA-22 Paperclip audit report
• Scope: Documents the complete graduation pipeline flow, including hook capture, correction/lesson creation, graduation/pipeline, and rule export surfaces
• Content: Describes filter/score/dedup gates with current behaviors and code-file evidence
• Analysis: Includes synthetic run outputs and overlap analysis of "spine vs satellite" modules
• Known Issues: Identifies AGENTS.md export gap in the Stop/session-close graduation path
• Recommendations: Lists consolidation and deletion candidates
• Diagnostics: Records noise classes escaping current filtering and includes verification commands
• Update: Includes 2026-06-03 heartbeat addendum with additional synthetic evidence
• No breaking changes, security fixes, or public API modifications

Walkthrough

New audit document describes the graduation pipeline noise filtering end-to-end flow, enumerates filter/score/dedup gates with code evidence, presents synthetic verification outputs, analyzes module overlap, identifies an AGENTS.md export gap in the Stop/session-close path, and records verification commands.

Changes

Graduation Pipeline Audit Report

Layer / File(s)

Summary

Graduation Pipeline Audit Report docs/audits/gra-22-graduation-pipeline-audit.md

Read-only Paperclip audit describing hook capture → correction/lesson creation → graduation/pipeline → rule export flow, enumerating filter/score/dedup gates with code-file citations, synthetic run verification outputs, module overlap analysis (spine vs satellite), identified AGENTS.md export gap for Stop/session-close flow, consolidation/deletion candidates, noise classes escaping filters, verification CLI commands, and 2026-06-03 heartbeat addendum with additional synthetic evidence.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~5 minutes

Suggested labels

docs

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title directly and clearly summarizes the main change: publishing a documentation artifact (the GRA-22 graduation pipeline audit).
Description check	✅ Passed	The description is clearly related to the changeset, explaining the purpose of the audit publication, verification steps, and the specific file added.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch docs/gra-22-audit-artifact

Warning

Tools execution failed with the following error:

Failed to run tools: 13 INTERNAL: Received RST_STREAM with code 2 (Internal server error)

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@docs/audits/gra-22-graduation-pipeline-audit.md`:
- Line 3: Update the ambiguous sentence "No repo files were changed." in this
audit file to clarify scope and avoid PR-level confusion; replace it with a
clearer phrase such as "No source repo files were changed during audit
execution." so the statement explicitly refers to the audit run rather than the
pull request.
- Line 3: The audit artifact exposes local absolute paths and a username (e.g.,
the string "/home/olive/work/gradata-sdk/Gradata" and "olive"); update the
document to redact those occurrences by replacing them with repo-relative
placeholders like "<repo_root>/Gradata" or a neutral placeholder "<user_home>"/
"<username>" (or simply "<repo_root>") so no machine-specific paths or user
identities remain; search for those exact literals in the file (they appear in
the shown diff and also at the other occurrences noted) and perform the
replacements consistently throughout the document.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 040f410b-b648-4ec9-8649-7bd0535cdbc5

📥 Commits

Reviewing files that changed from the base of the PR and between 0f1513c and 02b5577.

📒 Files selected for processing (1)

• docs/audits/gra-22-graduation-pipeline-audit.md

📜 Review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (6)

• GitHub Check: pytest windows-latest / py3.11
• GitHub Check: pytest ubuntu-latest / py3.12
• GitHub Check: pytest macos-latest / py3.11
• GitHub Check: pytest windows-latest / py3.12
• GitHub Check: pytest ubuntu-latest / py3.11
• GitHub Check: pytest macos-latest / py3.12

🧰 Additional context used

🧠 Learnings (1)

📚 Learning: 2026-04-17T17:18:07.439Z

Learnt from: Gradata
Repo: Gradata/gradata PR: 0
File: :0-0
Timestamp: 2026-04-17T17:18:07.439Z
Learning: In PR `#102` (gradata/gradata), Round 2 addressed: cli.py env-first brain resolution (GRADATA_BRAIN > --brain-dir > cwd), _tenant.py corrupt .tenant_id overwrite, _env_int default clamping to minimum, and _events.py tenant-scoped fallback SELECT for dedup. All ruff and 99 tests green after these fixes.

Applied to files:

• docs/audits/gra-22-graduation-pipeline-audit.md

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Clarify the “No repo files were changed” statement to avoid PR-level ambiguity.

Line 3 can be read as contradicting this PR (which adds this file). Consider wording like: “No source repo files were changed during audit execution.”

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@docs/audits/gra-22-graduation-pipeline-audit.md` at line 3, Update the
ambiguous sentence "No repo files were changed." in this audit file to clarify
scope and avoid PR-level confusion; replace it with a clearer phrase such as "No
source repo files were changed during audit execution." so the statement
explicitly refers to the audit run rather than the pull request.

---

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Redact local absolute paths and username before publishing this artifact.

Lines 3, 58, and 139 expose machine-specific paths (/home/olive/...) and user identity context. Replace with repo-relative or placeholder paths (for example, <repo_root>), so the report is portable and avoids leaking local environment details.

Also applies to: 58-58, 139-139

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@docs/audits/gra-22-graduation-pipeline-audit.md` at line 3, The audit
artifact exposes local absolute paths and a username (e.g., the string
"/home/olive/work/gradata-sdk/Gradata" and "olive"); update the document to
redact those occurrences by replacing them with repo-relative placeholders like
"<repo_root>/Gradata" or a neutral placeholder "<user_home>"/ "<username>" (or
simply "<repo_root>") so no machine-specific paths or user identities remain;
search for those exact literals in the file (they appear in the shown diff and
also at the other occurrences noted) and perform the replacements consistently
throughout the document.