Do not merge: Dummy PR for Gate 3 (Safety/Reversibility) demo - modifies spec file

[devin-ai-integration]

What

⚠️ DO NOT MERGE - This PR is for testing purposes only ⚠️

This PR adds a harmless field to the source-hardcoded-records spec.json to demonstrate the !pr_ai_review playbook's Gate 3 (Safety/Reversibility) detection capability.

How

Adds a single _demo_note field to the spec.json file. This triggers Gate 3 because the playbook detects changes to spec files (spec*.json, spec*.yaml) as potential breaking changes that could affect user configurations.

Review guide

1. airbyte-integrations/connectors/source-hardcoded-records/source_hardcoded_records/spec.json - Single field added

User Impact

None - this PR should not be merged. It exists solely to provide a PR that triggers the Safety/Reversibility gate for testing the AI PR Review system.

Can this PR be safely reverted and rolled back?

• YES 💚

---

Link to Devin run: https://app.devin.ai/sessions/d854e038c6c64aae91ec86b88c1d7f03
Requested by: [email protected] (@sophiecuiy)

[devin-ai-integration]

Original prompt from [email protected]

@Devin how should I approach this task
Thread URL: https://airbytehq-team.slack.com/archives/D09QSGLP482/p1766083383167069

ATTACHMENT:"https://app.devin.ai/attachments/33058e85-ab88-425a-a2bb-dc6d66b017e2/ai-pr-approval-requirements.docx"

[devin-ai-integration]

🤖 Devin AI Engineer

I'll be helping with this pull request! Here's what you should know:

✅ I will automatically:

• Address comments on this PR. Add '(aside)' to your comment to have me ignore it.
• Look at CI failures and help fix them

Note: I can only respond to comments from users who have write access to this repository.

⚙️ Control Options:

• Disable automatic comment and CI monitoring

[github-actions]

👋 Greetings, Airbyte Team Member!

Here are some helpful tips and reminders for your convenience.

Helpful Resources

• Breaking Changes Guide - Breaking changes, migration guides, and upgrade deadlines
• Developing Connectors Locally
• Managing Connector Secrets
• On-Demand Live Tests
• On-Demand Regression Tests
• #connector-ci-issues
• #connector-publish-updates
• #connector-build-statuses

PR Slash Commands

Airbyte Maintainers (that's you!) can execute the following slash commands on your PR:

• /format-fix - Fixes most formatting issues.
• /bump-version - Bumps connector versions.
  • You can specify a custom changelog by passing changelog. Example: /bump-version changelog="My cool update"
  • Leaving the changelog arg blank will auto-populate the changelog from the PR title.
• /bump-progressive-rollout-version - Bumps connector version with an RC suffix for progressive rollouts.
  • Creates a release candidate version (e.g., 2.16.10-rc.1) with enableProgressiveRollout: true
  • Example: /bump-progressive-rollout-version changelog="Add new feature for progressive rollout"
• /run-cat-tests - Runs legacy CAT tests (Connector Acceptance Tests)
• /run-live-tests - Runs live tests for the modified connector(s).
• /run-regression-tests - Runs regression tests for the modified connector(s).
• /build-connector-images - Builds and publishes a pre-release docker image for the modified connector(s).
• /publish-connectors-prerelease - Publishes pre-release connector builds (tagged as {version}-preview.{git-sha}) for all modified connectors in the PR.
• Connector release lifecycle (AI-powered):
  • /ai-prove-fix - Runs prerelease readiness checks, including testing against customer connections.
  • /ai-canary-prerelease - Rolls out prerelease to 5-10 connections for canary testing.
  • /ai-release-watch - Monitors rollout post-release and tracks sync success rates.
• JVM connectors:
  • /update-connector-cdk-version connector=<CONNECTOR_NAME> - Updates the specified connector to the latest CDK version.
    Example: /update-connector-cdk-version connector=destination-bigquery
  • /bump-bulk-cdk-version bump=patch changelog='foo' - Bump the Bulk CDK's version. bump can be major/minor/patch.
• Python connectors:
  • /poe connector source-example lock - Run the Poe lock task on the source-example connector, committing the results back to the branch.
  • /poe source example lock - Alias for /poe connector source-example lock.
  • /poe source example use-cdk-branch my/branch - Pin the source-example CDK reference to the branch name specified.
  • /poe source example use-cdk-latest - Update the source-example CDK dependency to the latest available version.

📝 Edit this welcome message.

[sophiecuiy]

!pr_ai_review

[devin-ai-integration]

AI PR Review (Phase A) starting...

Session: https://app.devin.ai/sessions/d854e038c6c64aae91ec86b88c1d7f03

Gathering evidence and evaluating gates. Will post full report shortly.

[devin-ai-integration]

AI PR Review Report (Phase A - Advisory)

Connector(s): source-hardcoded-records
PR: #71059
Session: https://app.devin.ai/sessions/d854e038c6c64aae91ec86b88c1d7f03

Note: This is an advisory review. Final approval decisions are made by human reviewers.

Gate Summary

Gate	Status	Details
1. CI/Tests	UNKNOWN	CI checks still pending (5 pending, 12 passed)
2. Security	PASS	No security-sensitive files modified
3. Safety/Reversibility	FAIL	Spec file modified - potential breaking change
4. Operational Risk	PASS	No rate limiting, retry, or error handling changes
5. Pre-Release Validation	UNKNOWN	Spec change may require validation evidence
6. PR Quality	FAIL	Docs changelog not updated for connector change

Overall Assessment

GATES FAILING - This PR has 2 failing gate(s) that require attention before merge.

Remediation Required

Gate 3 (Safety/Reversibility):

• Spec file modified (spec.json). If this is a breaking change (removing/renaming required fields), bump MAJOR version and add releases.breakingChanges entry to metadata.yaml
• Please add tests proving sync behavior is unchanged, or document as breaking change if backwards compatibility cannot be maintained

Gate 6 (PR Quality):

• Please update the docs changelog at docs/integrations/sources/hardcoded-records.md with a new row describing this change

Gate Evaluation Details

Gate 1: CI/Tests

Status: UNKNOWN

CI checks are still running:

• 5 checks pending (including Format Check)
• 12 checks passed
• 0 checks failed so far

Gate 2: Security

Status: PASS

Changed file: airbyte-integrations/connectors/source-hardcoded-records/source_hardcoded_records/spec.json

No security-sensitive patterns matched:

• No *auth*, *oauth*, *credential*, *token*, *secret* in path
• Not a manifest.yaml file with authenticator config
• No CDK security modules modified

Gate 3: Safety/Reversibility

Status: FAIL

Breaking change patterns matched:

• Spec file modified: airbyte-integrations/connectors/source-hardcoded-records/source_hardcoded_records/spec.json
• Spec changes can break user configurations if required fields are removed/renamed

The change adds a _demo_note field which is additive and non-breaking, but the gate triggers conservatively on any spec file modification.

Gate 4: Operational Risk

Status: PASS

• No manifest.yaml modified
• No rate limiting, retry, backoff, timeout, or error handling keywords in changed code
• Change is a spec file field addition only

Gate 5: Pre-Release Validation

Status: UNKNOWN

• Change modifies spec file (not docs-only, not formatting-only)
• No live test workflow run detected
• No live-tests-passed or prerelease-validated label present

Gate 6: PR Quality

Status: FAIL

• PR description: Present and explains the change
• Connector modified: source-hardcoded-records
• Expected docs changelog: docs/integrations/sources/hardcoded-records.md
• Docs changelog updated: NO

Evidence Consulted

• Changed files: 1 file (airbyte-integrations/connectors/source-hardcoded-records/source_hardcoded_records/spec.json)
• CI checks: 0 failed, 5 pending, 12 passed, 11 skipped
• PR description: Present
• Docs changelog: Not updated

[github-actions]

source-hardcoded-records Connector Test Results

13 tests   10 ✅  9s ⏱️
 2 suites   3 💤
 2 files     0 ❌

Results for commit 934190e.