| no-skipped-tests-introduced | quality | fail | error | SOC2-CC8.1 | Two `pytest.mark.skip` decorators were added to `test_charge_invoice_creates_stripe_charge` and `test_charge_invoice_retries_on_rate_limit` without a linked issue. |
| contract-has-spec-link | contract_spec | pass | warning | CDPD-§3, ISO-27001-A.14.2.1 | Description: 'Stripe test mode has been flaky in CI for the last week. Skipping the two retry tests until the upstream stabilizes. Will re-enable in a follow-up.' |
| no-commented-out-code | quality | pass | info | SOC2-CC8.1 | Only one line of commented-out code was added, not a block of 3+ consecutive lines. |
| no-secrets-in-diff | security | pass | blocker | SOC2-CC6.1, ISO-27001-A.9.4.3, OWASP-ASVS-V2 | No secret patterns detected in the diff. |
| acceptance-criteria-testable | contract_spec | skip | warning | CDPD-§5, SOC2-CC8.1 | MR is skipping existing tests, not implementing new features with acceptance criteria. |
| auth-on-new-public-endpoints | security | skip | blocker | SOC2-CC6.1, OWASP-ASVS-V1 | Diff only modifies test file; no new public endpoints introduced. |
| changed-method-coverage | quality | skip | error | SOC2-CC8.1, ISO-27001-A.14.2.8 | Diff modifies test execution behavior (skipping tests), not application code methods. Rule is not applicable. |
| dependency-advisory-check | security | skip | blocker | SOC2-CC7.1, ISO-27001-A.12.6.1, NIST-SA-11 | Diff does not add or upgrade any dependencies. |
| error-budget-impact-declared | operational | skip | warning | SOC2-CC4.1 | Change is in a test file and does not impact production services or SLOs. |
| integration-boundaries-explicit | contract_spec | skip | warning | CDPD-§6, ISO-27001-A.14.2.5 | Diff only modifies test file; no new integration boundaries introduced. |
| kill-switch-path | contract_spec | skip | warning | CDPD-§9, SOC2-CC7.5 | Change is internal to testing, no user-facing behavior altered. |
| mutation-resilience-critical-paths | quality | skip | warning | SOC2-CC8.1 | Cannot determine if `tests/test_billing.py` is a critical path file or evaluate mutation test results without repo metadata. |
| observability-on-new-endpoints | operational | skip | warning | SOC2-CC7.2, ISO-27001-A.12.4.1 | Diff only modifies test file; no new HTTP/gRPC endpoints introduced. |
| rollback-documented-for-migrations | operational | skip | error | SOC2-CC7.5, ISO-27001-A.14.2.2 | Diff does not contain database migration files. |
| spec-implementation-match | contract_spec | skip | error | CDPD-§7 | No functional changes or new features introduced that would require a spec. |