[daily regulatory] Regulatory Report - 2026-04-29

[github-actions[bot]]

Ten daily reports were reviewed for April 29, 2026. Overall data quality is good — the majority of reports are internally consistent, metrics align within acceptable tolerance across overlapping reports, and no critical data integrity failures were found. The most notable finding is a scope discrepancy between the Daily Firewall Report and Security Observability Report (different workflow counts: 20 vs 53 runs), which is by design but warrants documentation. Token usage dropped 37.9% week-over-week — a significant but unexplained shift that may reflect lower workflow activity or model efficiency improvements. No safe-output job failures were recorded.

Note: The close_discussion tool is not available in the current safeoutputs configuration, so previous regulatory report #28986 could not be closed automatically.

📋 Full Regulatory Report

📊 Reports Reviewed

#	Report	Discussion	Created	Status
1	Safe Output Health	#29117	2026-04-29T13:24Z	✅ Valid
2	Daily Firewall Report	#29106	2026-04-29T12:19Z	✅ Valid
3	Copilot Token Usage Audit	#29104	2026-04-29T12:17Z	⚠️ Minor
4	Security Observability Report	#29102	2026-04-29T12:13Z	✅ Valid
5	Copilot Agent Analysis	#29090	2026-04-29T11:59Z	✅ Valid
6	Daily Team Evolution	#29082	2026-04-29T11:17Z	✅ Valid
7	Repository Chronicle	#29164	2026-04-29T16:15Z	✅ Valid
8	Daily Sentrux (Code Quality)	#29163	2026-04-29T16:08Z	✅ Valid
9	Copilot PR Merged Report	#29157	2026-04-29T15:55Z	✅ Valid
10	Daily Performance Summary	#29001	2026-04-28T23:51Z	✅ Valid

Note: Daily Performance Summary (#29001) is from 2026-04-28. No 2026-04-29 version was found at query time. Observability Coverage Report (#29004, 2026-04-28) was used as additional reference.

---

🔍 Data Consistency Analysis

Cross-Report Firewall Metrics

Reference: scratchpad/metrics-glossary.md

Metric	Firewall Report	Security Observability	Scope Match	Status
workflow_runs_analyzed	20	53	⚠️ Different	i️ See Note 1
firewall_requests_total	226	1,311	⚠️ Different	i️ See Note 1
Block rate	16.8%	16.2%	✅ Same scope	✅ Within 1%
firewall_domains_blocked	2	3	⚠️ Minor diff	⚠️ See Note 2

Scope Notes:

1. workflow_runs_analyzed discrepancy: Daily Firewall Report (20 runs) vs Security Observability (53 runs). The Firewall Report analyzes only workflows with firewall artifacts from a specific download set; Security Observability queries the full 7-day run set. Different scopes by design — not a true discrepancy. The block rates (16.8% vs 16.2%) are closely consistent, confirming both reports reflect the same underlying firewall behavior.

2. firewall_domains_blocked: Firewall Report shows 2 unique blocked domains; Security Observability shows 3 (adds chatgpt.com:443 and ab.chatgpt.com:443 from AI Moderator workflow). The different run samples explain this difference.

Cross-Report Activity Metrics

Metric	Chronicle	Team Evolution	Status
Commits (24h)	66	~40	i️ Different counting methods
PRs merged (24h)	21	~25	✅ Within approximation tolerance

Chronicle and Team Evolution use different methodologies — Chronicle counts all commits; Team Evolution uses a narrative summary. Both indicate high-velocity activity.

Consistency Score

• Overall Consistency: 90% (metrics with identical scope align well)
• Critical Discrepancies: 0
• Minor Discrepancies: 2 (both are scope differences, not errors)

---

⚠️ Issues and Anomalies

Warnings

1. Token Usage Drop (-37.9% WoW)

   • Affected Reports: Copilot Token Usage Audit ([copilot-token-audit] 📊 Daily Copilot Token Usage Audit — 2026-04-29 #29104)
   • Metric: Total tokens consumed (43,252,414 vs implied ~69.7M last week)
   • Description: A 37.9% week-over-week drop in token consumption is significant. Possible causes: fewer workflow runs, model efficiency improvements, or reduced agent activity.
   • Severity: Medium
   • Recommended Action: Correlate with workflow run counts to determine if this reflects fewer runs or lower per-run consumption.

2. Unknown Blocked Domains (~74% of blocks)

   • Affected Reports: Firewall Report ([daily-firewall-report] Daily Firewall Report - 2026-04-29 #29106), Security Observability ([security-observability] Daily Security Observability Report — 2026-04-29 #29102)
   • Metric: firewall_domains_blocked — (unknown) category
   • Description: The majority of blocked requests have no domain metadata (208 of 212 in Security Observability). Affects: Daily Syntax Error Quality Check, Copilot PR Conversation NLP Analysis, Architecture Diagram Generator.
   • Severity: Medium
   • Recommended Action: Investigate whether (unknown) represents CONNECT-tunnel or SNI-stripped traffic; improve domain resolution in the firewall logger.

3. Missing Daily Performance Summary for 2026-04-29

   • Affected Reports: Daily Performance Summary
   • Description: Most recent version found is from 2026-04-28. No 2026-04-29 version was present at analysis time.
   • Severity: Low
   • Recommended Action: Verify the daily-performance workflow ran on 2026-04-29.

4. Code Quality Score at Mid-Range (5315/10000)

   • Affected Reports: Daily Sentrux Report ([daily-sentrux] Daily Sentrux Report - 2026-04-29 #29163)
   • Description: First baseline measurement. 802 complex functions identified.
   • Severity: Low (baseline — no trend available)
   • Recommended Action: Monitor over next 7 days.

5. close_discussion safe-output tool unavailable

   • Affected Process: Regulatory workflow cleanup
   • Description: Previous regulatory report #28986 could not be closed automatically.
   • Severity: Low (process hygiene)
   • Recommended Action: Add close_discussion to safeoutputs configuration, or close [daily regulatory] Regulatory Report - 2026-04-28 #28986 manually.

Data Quality Notes

• No daily-issues or issue-arborist report found in the 24-48 hour window.
• Token cost data unavailable in token audit ($0.00 placeholder — not yet implemented).
• Observability Coverage Report is from 2026-04-28; no 2026-04-29 version found.

---

📈 Trend Analysis

Agent Performance (3-day trend from Copilot Agent Analysis)

Date	Agent PRs	Merged	Success Rate	Avg Duration
2026-04-26	22	18	81.8%	~3h 45m
2026-04-27	58	46	82.1%	~1h 21m
2026-04-28	38	26	83.9%	~2h 14m

Notable Trends

• ✅ Agent success rate trending up: 81.8% → 82.1% → 83.9%
• ⚠️ Token consumption dropped 37.9% WoW — requires investigation
• ✅ Safe output health: 100% success rate (0 failures in 24h)
• ✅ Firewall block rate stable (~16-17%) across both reports
• ⚠️ Code quality baseline set at 5315/10000 (802 complex functions)
• ✅ PR merge time excellent: 1.3 hours average

---

📝 Per-Report Analysis

View individual report analyses

Safe Output Health (#29117)

Period: 24h (2026-04-28 → 2026-04-29) | Quality: ✅ Valid

Metric	Value	Validation
Runs analyzed	~50	✅
Active workflows	24	✅
Safe output jobs failed	0	✅
Success rate	100%	✅

Daily Firewall Report (#29106)

Period: 7 days (2026-04-22 → 2026-04-29) | Quality: ✅ Valid

Metric	Value	Validation
workflow_runs_analyzed	20	✅
firewall_requests_total	226	✅
firewall_requests_allowed	188 (83.2%)	✅ 188+38=226 ✓
firewall_requests_blocked	38 (16.8%)	✅
firewall_domains_blocked	2	i️ See Note 2

Copilot Token Audit (#29104)

Period: 24h (2026-04-28 → 2026-04-29) | Quality: ⚠️ Minor (cost data missing)

Metric	Value	Validation
Total runs	94	✅
Total tokens	43,252,414	✅
Active workflows	36	✅
WoW token change	-37.9%	⚠️ Significant drop
Cost data	Unavailable	⚠️ Missing

Security Observability (#29102)

Period: 7 days ending 2026-04-29 | Quality: ✅ Valid

Metric	Value	Validation
workflow_runs_analyzed (firewall)	53	✅
firewall_requests_total	1,311	✅
firewall_requests_allowed	1,099	✅ 1099+212=1311 ✓
firewall_requests_blocked	212 (16.2%)	✅
firewall_domains_blocked	3	i️ See Note 2
DIFC-flagged runs	16	✅

Copilot Agent Analysis (#29090)

Period: 24h ending 2026-04-29 ~12:00 UTC | Quality: ✅ Valid

Metric	Value	Validation
agent_prs_total	38	✅
agent_prs_merged	26	✅
agent_success_rate	83.9%	✅ (26/31 resolved = 83.9%)
Avg duration	~2h 14m	✅

Daily Performance Summary (#29001)

Period: Last 90 days snapshot (100 most recent items) | Quality: ✅ Valid

Metric	Value	Validation
PRs merged	66/100	✅
Issues resolved	61/100	✅
Avg PR merge time	1.3 hours	✅
Open PRs	14	✅
Open issues	39	✅
Unique PR contributors	6	✅

---

💡 Recommendations

Process Improvements

1. Add close_discussion to safeoutputs: Enables the regulatory workflow to close stale reports automatically.
2. Standardize report scheduling: Ensure Daily Performance, Observability, and other key reports run consistently on the same UTC schedule.

Data Quality Actions

1. Investigate token WoW drop: Correlate the 37.9% token decrease with run counts and model versions to confirm root cause.
2. Resolve unknown firewall domains: Improve domain metadata capture for the (unknown) category (>70% of blocks).
3. Implement token cost reporting: Cost field shows $0.00 — implement actual cost tracking for budget monitoring.

Workflow Suggestions

1. Document workflow_runs_analyzed scope differences: Add a note to the metrics glossary distinguishing how Firewall Report and Security Observability count workflow runs.

---

📊 Regulatory Metrics

Metric	Value
Reports Reviewed	10
Reports Passed (✅)	8
Reports with Warnings (⚠️)	1
Reports Failed (❌)	0
Critical Discrepancies	0
Minor Discrepancies	2
Overall Health Score	90%

---

Report generated automatically by the Daily Regulatory workflow
Run: §25134386888
Data sources: Daily report discussions from github/gh-aw (2026-04-28 to 2026-04-29)
Metric definitions: scratchpad/metrics-glossary.md

Generated by Daily Regulatory Report Generator · ● 802.1K · ◷

• expires on May 2, 2026, 9:24 PM UTC