| error-budget-impact-declared | operational | fail | warning | SOC2-CC4.1 | The MR description does not declare the expected error-budget impact for this database migration. |
| rollback-documented-for-migrations | operational | fail | error | SOC2-CC7.5, ISO-27001-A.14.2.2 | The migration file `migrations/versions/002_add_encounters.py` contains an `upgrade()` function but is missing the corresponding `downgrade()` function to define the rollback path. |
| contract-has-spec-link | contract_spec | pass | warning | CDPD-§3, ISO-27001-A.14.2.1 | MR description includes 'Closes #142' linking to a spec issue. |
| integration-boundaries-explicit | contract_spec | pass | warning | CDPD-§6, ISO-27001-A.14.2.5 | The database migration file explicitly defines the schema for new tables `encounters` and `encounter_icd10_codes`, serving as the contract. |
| no-commented-out-code | quality | pass | info | SOC2-CC8.1 | No blocks of commented-out code (3+ consecutive lines) were found in the diff. |
| no-secrets-in-diff | security | pass | blocker | SOC2-CC6.1, ISO-27001-A.9.4.3, OWASP-ASVS-V2 | No secret patterns (API keys, tokens, private keys, connection strings with passwords) were detected in the diff. |
| no-skipped-tests-introduced | quality | pass | error | SOC2-CC8.1 | The diff does not contain any test files or introduce skipped tests. |
| spec-implementation-match | contract_spec | pass | error | CDPD-§7 | MR description states 'adds the encounter + ICD-10 schema' and the diff creates `encounters` and `encounter_icd10_codes` tables as described. |
| acceptance-criteria-testable | contract_spec | skip | warning | CDPD-§5, SOC2-CC8.1 | MR diff contains only a database migration; no application-level tests are present to evaluate against acceptance criteria. |
| auth-on-new-public-endpoints | security | skip | blocker | SOC2-CC6.1, OWASP-ASVS-V1 | This MR introduces database schema changes, not new public endpoints or handlers. |
| changed-method-coverage | quality | skip | error | SOC2-CC8.1, ISO-27001-A.14.2.8 | The diff introduces a new database migration file and does not modify existing application methods or include new tests. |
| dependency-advisory-check | security | skip | blocker | SOC2-CC7.1, ISO-27001-A.12.6.1, NIST-SA-11 | The diff does not add or upgrade project dependencies; it is a database migration file. |
| kill-switch-path | contract_spec | skip | warning | CDPD-§9, SOC2-CC7.5 | This MR introduces database schema changes, not direct user-facing behavior. Rollback for migrations is covered by `rollback-documented-for-migrations`. |
| mutation-resilience-critical-paths | quality | skip | warning | SOC2-CC8.1 | No information provided regarding `critical_path` labels or mutation test results for the changed files. |
| observability-on-new-endpoints | operational | skip | warning | SOC2-CC7.2, ISO-27001-A.12.4.1 | This MR introduces database schema changes, not new HTTP/gRPC endpoints. |