DD-2026-04-18·NFC-0087 · ACME ROBOTICS · TECHNICAL DUE DILIGENCE·▚ CONFIDENTIAL·NORTHFIELD CAPITAL · PRE-ACQUISITIONREV 1.0·SCAN COMPLETE
subsystems
Technical Due Diligence, powered by AI
Acme
Robotics.
▚ Series B · Pre-acquisition technical assessment
Evidence-based review of codebase health, architectural risk, and engineering capability — 14 repositories, 42 contributors, 180k lines scanned over six weeks.
SERVICEHEALTHYRISKDATA STORE
PREPARED FOR
Northfield Capital Partners
ENGAGEMENT LEAD
Johann Romefort · Principal
SCOPE
14 repos · 42 contributors · 180k LOC
VERDICT
Proceed with conditions
§02EXECUTIVE VERDICT
CONFIDENCE · HIGH
The codebase is ship-worthy.
The org is not.
Acme's platform is architecturally sound, well-tested at the boundary, and serves production traffic without incident. Four of five pillars score at or above the stage benchmark.
Concentration risk in the engineering org is severe. 56% of commits over the last 24 months originate from two engineers (`m.tanaka`, `k.weil`). Both are non-founder employees with no equity vesting beyond Q4 2026. Departure of either is a P0 event.
Two architectural defects (FDG-0031, FDG-0044) require pre-close remediation. Cost: 2–3 engineer-weeks. With the wider register, total remediation runs ≈5 engineer-weeks; we recommend a −4% adjustment to the round and gating close on the personnel-risk plan.
RECOMMENDATIONPROCEED · CONDITIONAL
Proceed with conditions.
CodebaseShip-worthy
Architecture2 critical · remediable
OrganizationConcentration risk
SecurityNo P0 vulnerabilities
IP & licenseClean
— Johann RomefortPRINCIPAL
SUBSYSTEMS INC.
SUBSYSTEMS INC.
§03SCORECARD·FIVE-PILLAR ASSESSMENT · 50 SIGNALS
SCAN · 06 WK · 2026-03-04 → 2026-04-15
OVERALL SCOREPLR-01
7.2/10
FINDINGSPLR-02
CRITICAL2
WARNING7
INFO14
PASS43
AUTHORSHIP · 24MPLR-03
0NORMBUS-FACTOR < 2
VELOCITY · 12MPLR-04
COMMITSPR LEADP0/P1 BUGS
PILLARSPLR-05
§04EVOLUTIONARY FITNESS·TRAJECTORY READ
EVOFIT v0.3.1 · ALPHA
EVOLUTIONARY FITNESS · ACME ROBOTICSSERIES B · 74 / 100
Archetype
Coral
maturing from Vapor → drift toward Organism
Fitness is a trajectory, not a snapshot.
EVOFIT scores Acme as an evolving system — five dimensions derived from Wong et al.'s three modes of selection. Not a checklist: a read on whether the producing mechanism is strengthening or decaying. Acme scores 74 / 100, trajectory accelerating.
SELECTION SIGNATURE · TRAJECTORY-WEIGHTED▲ ACCELERATING
ΔC +2 · ΔR +3 · ΔA +10 — adaptability is the lead indicator
Capability1st-order · static persistence
Validated configurations that resist decay. What still works if everyone takes two weeks off.
Resilience2nd · dynamic persistence
Dissipation, autocatalysis, homeostasis, information processing.
Adaptability3rd · novelty generation
New functions that did not previously exist. Structural optionality preserved for the next move.
Engineleading indicator
The generative mechanism — team, tooling, practices, leadership, AI maturity.
Extinctionenvironmental gate · clear
CLEAR / ELEVATED / CRITICAL. The asteroid does not care about your functional information.
Wong et al., PNAS 120(43), 2023 — “On the roles of function and selection in evolving systems.” ALPHA — pending validation against ≥3 engagements.
§05AUTOMATED SCAN·STATIC + COMMIT ANALYSIS
scan complete · 06:42 elapsed
23 findings.
2 critical.
subsystems-scan · acme-robotics · run 4a2f99b
$subsystems scan --target acme --depth full
001› init: loaded 14 repos, 42 contributorsINFO
012› tests: 87.4% line coverage / 94.1% branchPASS
018› ci: median build 3m41s · flake rate 0.4%PASS
024› deps: 0 known-CVE in prod bundlePASS
031› license: 2 GPL-3 transitive deps in core-apiWARN
037› arch: circular dep billing ↔ auth at commit/4a2f99bFAIL
042› org: bus-factor=1.7 · top-2 = 56% of commitsFAIL
049› db: 3 unindexed FKs in ledger.transactionsWARN
055› obs: structured logs 100%, traces 68%INFO
061› sec: secrets in env.example · 2 reposWARN
068› ip: 100% contributor CLAs · no unlicensed third-partyPASS
074› graph: 94 nodes / 218 edges / 7 clustersINFO
›scan complete · 23 findings · 06:42 elapsed
§06ARCHITECTURE·SERVICE TOPOLOGY
FIG. 02 · POST-SCAN GRAPH
FIG. 02 · acme-robotics · service graphn=14 · e=37
SERVICEDATA STORERISK · TAGGEDHEALTHY
FDG-0031CRITICAL
Circular dependency: billing ↔ auth.
Auth imports a token issuer from billing for legacy invoice signing; billing in turn calls auth/verify on every webhook. Both services cannot be deployed independently. Blocks any auth rewrite.
EVIDENCE · commit 4a2f99b · fig. 02 · 2 services
FDG-0044CRITICAL
Ledger writes are non-transactional across services.
`ledger.post` and `ledger.confirm` are separate HTTP calls with no idempotency key. Network partition mid-flight produces double-debits — observed in the wild, 4 incidents in the last 12 months.
EVIDENCE · INC-2025-08, -09, 2026-01, -03
FDG-0019WARNING
Three unindexed foreign keys in `ledger.transactions`.
Tail-latency reports already show p99 query time on `transactions_by_account` exceeding 1.2s at peak. Scale ceiling ≈ 3× current load.
EVIDENCE · pg_stat_statements · 30 days
§07FINDINGS REGISTER·TOP 9 BY MATERIALITY
23 TOTAL · 2 CRIT · 7 WARN · 14 INFO
ID
SEVERITY
TITLE
SUMMARY
EFFORT
OWNER
FDG-0031
● CRITICAL
Circular dependency: billing ↔ auth
Cyclic import between two top-level services prevents independent deploy. Originated 2024-Q2; not remediated despite 3 prior commits referencing the issue.
FDG-0044
● CRITICAL
Non-transactional ledger writes
Cross-service ledger flow lacks idempotency keys; 4 confirmed double-debit incidents in last 12 months. Customer refunds total $42k YTD.
FDG-0019
● WARNING
Unindexed foreign keys in `ledger.transactions`
p99 query time on transactions_by_account exceeds 1.2s at peak; scale ceiling ≈ 3× current load before remediation forced.
FDG-0027
● WARNING
GPL-3 transitive dependencies in `core-api`
Two GPL-3 packages reachable from the production bundle via `report-render → markdown-it-plus → gpl-pkg`. License compatibility unresolved.
FDG-0033
● WARNING
Secrets in `env.example` (2 repos)
Working AWS access keys and a Stripe restricted key found in committed `env.example` files. Currently revoked but historical exposure confirmed via Git history.
FDG-0051
● WARNING
Trace coverage only 68% of request paths
OpenTelemetry instrumentation absent from worker and CLI paths. Incident triage MTTI doubled when issue originates outside the synchronous API.
ORG-0002
● CRITICAL
Bus-factor 1.7 · top-2 own 56% of commits
`m.tanaka` (32%) and `k.weil` (24%) hold institutional knowledge of billing, auth, and payments. Neither has equity vesting beyond Q4 2026.
FDG-0061
● INFO
No formal architecture decision record (ADR) practice
14 major architectural decisions in the last 18 months were undocumented. Onboarding cost is elevated; rationale recoverable only via interviews.
FDG-0072
● INFO
Frontend test coverage 41% (vs 87% backend)
React component tests are sparse; e2e suite covers only happy-path checkout. Regression risk during UI refactors elevated.
§08ORG HEALTH·BUS FACTOR & VELOCITY
CONCENTRATION · ELEVATED
Two people hold the keys.
56% of commits across all 14 repositories originate from two engineers over the last 24 months. Both ship across billing, auth, payments, and the worker plane — the critical surface area of the business.
Bus factor measures at 1.7. Industry P50 is 3.4. Founders are aware; no retention package or knowledge-transfer plan currently exists.
FIG. 03 · COMMIT ATTRIBUTION · 24MTOP-2 = 56%
m.tanaka 32%k.weil 24%r.shah 11%l.chen 8%j.kim 7%38 others 18%
m.tanaka · staff eng · platformsince '22
k.weil · staff eng · paymentssince '23
r.shah · senior · datasince '23
FIG. 04 · CONTRIBUTOR VELOCITY · 12 MONTHS ROLLINGcommits/wk
M.TANAKAK.WEILREST OF ORG (38)FOUNDERS
§09RECOMMENDATIONS·HORIZONS · 0–30 · 30–90 · 90+
11 ITEMS · 2 PRE-CLOSE GATING
PRE-CLOSE0–30D · GATING
- Resolve billing ↔ auth circular dependency.Extract a shared `tokens` module; remove auth's import of billing. 3 engineer-weeks.FDG-0031 · OWNER · m.tanaka
- Add idempotency keys to ledger writes.Single-trip `ledger.post-and-confirm` endpoint; retry-safe. 2 engineer-weeks.FDG-0044 · OWNER · k.weil
- Retention plan for top-2 engineers.Founder LOI: refresh grants vesting through 2028; knowledge-transfer plan filed.ORG-0002 · OWNER · founders
- Rotate & purge committed secrets.History rewrite, key rotation, secret-scanning hook in pre-commit.FDG-0033 · OWNER · security
POST-CLOSE30–90D
- Index foreign keys on `ledger.transactions`.Online schema migration; expect 60% p99 reduction.FDG-0019 · 3 days
- Replace GPL-3 transitives in `core-api`.Swap `markdown-it-plus`; license audit added to CI.FDG-0027 · 1 engineer-week
- Extend trace coverage to workers and CLI.OpenTelemetry SDK across all entry points; target 95% paths.FDG-0051 · 1 engineer-week
- Pin production dependencies; add an SBOM gate to CI.Lockfile enforcement on every build and a generated SBOM checked against the license policy.FDG-0066 · 3 days
STRUCTURAL90D+
- Adopt ADR practice and backfill the top 14 decisions.Onboarding cost halves; institutional memory survives departure.FDG-0061 · ongoing
- Lift frontend coverage from 41% to 70%.Component tests on every PR; e2e past happy-path checkout.FDG-0072 · 2 engineer-weeks
- Formalize an on-call rotation and a retro / OKR cadence.No written rotation or retro cadence exists today; incident and planning load falls on the top-2 engineers.ORG-0005 · ongoing
§10SIGNOFF
END OF REPORT · 10 / 10
Codebase: ship.
Org: price the risk.
We recommend proceeding to close, conditional on the four pre-close items and an executed retention plan for `m.tanaka` and `k.weil`. Material defects total ≈ 5 engineer-weeks of work. Personnel exposure is the dominant risk to the thesis, not the platform.
REPORTDD-2026-04-18 · REV 1.0
ENGAGEMENTNFC-0087
PREPARED FORNorthfield Capital Partners
SUBJECTAcme Robotics, Inc.
SCOPEEngineering DD · 6 weeks
DELIVERED18 April 2026
CLASSIFICATION▚ CONFIDENTIAL · PRIVILEGED
— Johann Romefort
PRINCIPAL · SUBSYSTEMS INC.
END OF REPORT·10 / 10 SECTIONS·▚ CONFIDENTIAL · PRIVILEGEDsubsystems · Technical Due Diligence, powered by AI·FILED · 18.04.2026