# Deferred Work

## Deferred from: code review of 1-1-module-scaffold-cicd-pipeline-and-design-token-system (2026-05-21)

- [ ] Vulnerable dependency CVE-2023-43645 — flat-cache-4.0.1 (needs verification)
- [ ] Version conflicts — Multiple versions: make-dir (5.7.2, 6.3.1, 7.8.0), debug (4.4.3, 3.2.7) (npm resolution, pre-existing)

## Deferred from: Group 6 (Tests) - 2026-05-21

- [ ] MAX_PAYLOAD_BYTES size boundary test — Story 1.2+ SocketHandler responsibility (EC-001)
- [ ] Multi-track stream test — Story 1.2+ WebRTC surface (EC-010)
- [ ] Invalid snapshot fixtures (wrong version, null version) — Story 1.3+ StateStore (EC-012)
- [ ] Circular reference in gameWebrtc handling — Story 1.2+ WebRTC probe (EC-020)

## Deferred from: Group 7 (CI/CD & i18n) - 2026-05-21

- [ ] Missing failure notifications — Story 1.2+ (EC-002)
- [ ] Missing build artifact upload — Story 1.2+ (EC-006)
- [ ] No Node.js matrix testing — Story 1.2+ (EC-004)
- [ ] Missing concurrency control — Story 1.2+ (EC-008)
- [ ] Missing i18n schema validation — Story 1.2+ (EC-I18N-003)
- [ ] ubuntu-latest not pinned — Story 1.2+ (EC-003)
- [ ] Missing coverage upload — Story 1.2+ (EC-005)