# System Reform CEO Brief (Apr 2026)

# CEO Morning Brief — System Reform

**Filed by:** Petter Graff (architect agent), MC #10043  
**Date:** 2026-04-29 (overnight autonomous session)  
**For:** Alem Basic, CEO, ALAI Holding AS

## TL;DR (3 bullets)

1. **CRITICAL SECURITY INCIDENT DISCOVERED:** RSA private keys (SSL/TLS certificates) are committed to git and pushed to GitHub (repo: johnatbasicas/vivacare, project: client/lumiscare). These must be treated as compromised. Your first action of the morning: determine if these certificates protect a live endpoint, then revoke them.
2. **STRUCTURE IS CONSISTENT BUT UNIVERSALLY INCOMPLETE:** All 30 entities (13 companies + 17 projects) follow a similar pattern — they have CLAUDE.md but universally lack blueprint standards (no .alai/manifest.yaml, no brand/, no legal/, no ops/, no RUNBOOK.md, no ADRs). This is fixable with 6-8 weeks of disciplined execution across agents.
3. **THE SYSTEM WORKS — NOW IT NEEDS HARDENING:** The agent routing (John + specialists), task management (mc.js), and knowledge base (BookStack) are ahead of market. The gaps are documentation, CI/CD, and secret hygiene — all mechanical fixes, not architectural rewrites.

## Top 5 Critical Gaps

1. CRITICAL: Private SSL Keys in Git (client/lumiscare)
2. HIGH: Zero ADRs Across All Projects
3. HIGH: No RUNBOOK.md on Any Project
4. HIGH: Tim.html — Internal Pricing Page Publicly Accessible
5. HIGH: Active Client Work Without Confirmed Contracts

## Top 5 Quick Wins (≤2 hours each)

1. Add .alai/manifest.yaml to all 30 entities
2. Add FreeMyEV-v2 .gitignore
3. Add .github/CODEOWNERS + PR template to snowit-site
4. Update bih-tenders CLAUDE.md status to "stalled"
5. Update all company.json files to reference manifest.yaml schema

## 3 Questions Only You Can Answer

1. CRITICAL (answer TODAY): Are MyPrivate.key and CAPrivate.key protecting any live SSL/TLS endpoint?
2. Should bih-tenders be formally deprecated?
3. Should ~/projects/tools/ be renamed to ~/projects/autocoder/?

**File location:** /Users/makinja/system/specs/system-reform-CEO-BRIEF.md  
**MC Task:** #10043  
**Tags:** system-reform-2026-04, MC-10043, petter-graff, CEO-brief