Thought I

Front API token was recovered from a backup instead of the live config. Pattern: Teamwork token recovery (March 18), GSC reauth (multiple times), Slack token search. Credentials are scattered across backups, project files, and manual notes with no unified discovery path.

This isn't a technical failure — the credentials exist, recovery works. But it's a knowledge problem: sessions don't have easy centralized access. Results: time waste during execution (hunt the backup), team deployment friction (coworkers don't know where tokens are), and rotation risk (manual refresh, easy to miss a service).

Recovery works every time — but "recovery works" and "discovery is easy" are different problems, and only one of them scales.

Improvement #19 (Google token validator) is a step toward proactive refresh. But credential discovery is the real pain. For team scale: unified vault or documented locations, refresh patterns codified per service, PERMISSIONS.md updated to include recovery steps for every tool.

Connections

PERMISSIONS.md, Improvement #19 (token validator), Improvement #26 (ops runbooks), Front API, Teamwork token, GSC

Action

Observation logged. Cross-referenced Improvement #26 (ops runbooks should include credential refresh SOP per tool). Not urgent (recovery works), but blocking team scale.

Thought II

Mission Control v0.8 shipped five major feature batches in six hours — sort, Teamwork integration, monitoring, page split, export script. But deployment is blocked on: OAuth not implemented, worker not in prod account, KV secrets not migrated, CORS wide open. Features are polished. Deployment is rough.

The gap explains why "deployment timing" is always ambiguous. When is something "ready to deploy"? The current answer is implicit: when features feel complete. The better answer: when ops are ready. Those are different gates, and only one is currently tracked.

Features being shiny and ops being ready are different gates — and we only track one of them.

Making "Deployment Readiness" an explicit tracked item — separate from feature work, with its own checklist (OAuth, CORS, backups, alerting, secrets rotation) — removes the ambiguity and gives the team a clear go-live signal.

Connections

Gmail Mission Control v0.8/v0.9, Improvement #26 (ops runbooks), SESSION-CHECKPOINT.md, Cloudflare Workers deployment

Action

Design principle filed. Recommend: track deployment status in STATUS.md with explicit checklist. Update SESSION-CHECKPOINT to show "🚀 Ready to Deploy" section when deployment checklist clears.

Thought III

improvements.md is at 29 entries and 37KB. Entries range from 🟢 confirmed (Improvements #6, #8, #11) to 💡 design (Improvements #24–29). But there's no signal on which improvements are still relevant, which should be archived, and whether evaluation time is being spent on live ideas or stale ones.

Improvement #27 (measurement) will address "which improvements work?" But there's a downstream problem it doesn't solve: "which improvements are obsolete?" Without archival, the active queue accumulates indefinitely — eventually causing decision fatigue and hiding the most important items in noise.

An improvement log without archival is like an inbox without delete — it eventually contains everything, which means it helps you find nothing.

Solution: quarterly "improvement hygiene" step that audits the active queue, identifies zero-reference improvements from the past 60 days, evaluates relevance, and archives obsolete ones to improvements-archive.md. Keep the active queue lean.

Connections

memory/improvements.md, Improvement #27 (Measurement Framework), Improvement #27 (hygiene prerequisite)

Action

Design principle logged. Will codify "improvement hygiene" as Phase 2.5 in sleep protocol once Improvement #27 measurement framework is live and working.

Changelog