15 minutes · Prerequisite: Module 0.1 + 0.2
Where the model's context actually goes in a typical production session:
Apparent paradox: "the loop is all that matters"?
"The loop doesn't matter" misunderstands worse than "the loop is all that matters." The loop is necessary and cheap. The 98.4% around it is where you earn your keep.
The tell: if your rubric output could come from a README, you didn't audit a decision.
The second names a pattern, a tradeoff, and a use-case fit. That is what the rubric scores.
| # | Module | The decision it audits |
|---|---|---|
| 1 | Execution Loop | ReAct / plan-execute / graph / dumb-loop / conversation |
| 2 | Tool Design | static / dynamic / MCP; schema-first vs free-text; count |
| 3 | Context Mgmt | compaction / masking / JIT / notes / subagent delegation |
| 4 | Memory | in-context / files / semantic / episodic / DB |
| 5 | Sandboxing | inside vs outside; provider; fs/network scope |
| 6 | Permission | auto / deny-default / risk-tiered / plan-mode / flags / HITL |
| 7 | Error Handling | transient / LLM-recoverable / user-fixable / fatal |
| 8 | State & Checkpoint | git / super-steps / file / DB / none |
| 9 | Prompt Assembly | prompt size; tool injection; memory; truncation |
| 10 | Subagent Orch. | as-tools / handoffs / fork / teammate / worktree |
| 11 | Verification | computed / visual / model-judged / human |
| 12 | Observability | logs / traces / token acct / replay / metrics / diffing |
Same pipeline for all 21 deep-dives.
1. First Contact README · cloc · structure · system prompt (from source)
2. Architecture Map loop diagram · tool list · trace one call · stop conditions
3. Decision Audit 12 modules · what & why · 3 agree · 3 disagree · cite file:line
4. Security Audit credential flow · exec paths · injection · blast radius
5. Benchmark published scores · token profile · cold start · compare
6. Score & Synthesize /60 · Architect's Verdict · MLSecOps note · 3 best · 3 fix
Each phase produces an artifact that feeds the next. Phase 6 is the deliverable.
The format constraint is the point — forcing every harness into the same template makes them comparable.
Per the visual stack: n8n first. The methodology is a process; n8n visualizes processes.
Trigger (pick harness)
│
▼
Phase 1: First Contact ── README + cloc + structure
│
Phase 2: Architecture Map ── grep loop/tools/stop-conditions
│
Phase 3: Decision Audit ── grep evidence for 12 modules
│
Phase 4: Security Audit ── grep exec/write/network/credential paths
│
Phase 5: Benchmark ── README published scores + token profile
│
Phase 6: Score & Synthesize ── emit /60 + Verdict + MLSecOps templates
│
▼
Verdict artifact
The workflow does not score for you — a human or LLM judge fills the templates from the grep evidence. It operationalizes the method so no phase gets skipped.
Module 0 complete. Next: Module 1 — the execution loop, in depth.