What severity is GCI0022?

GCI0022 is a Warn severity rule. Warn rules are reported but do not block the commit unless exitOn is set to Warn in .gauntletci.json.

How do I disable GCI0022?

Add the rule to .gauntletci.json: { "rules": { "GCI0022": { "enabled": false } } }. You can also override the severity to Block or Warn without disabling the rule. See the Configuration docs at https://gauntletci.com/docs/configuration for the full schema.

All rules

GCI0022WarnData Integrity

Idempotency and Retry Safety

Detects HTTP POST endpoints without idempotency keys and raw INSERT statements without upsert guards, which are unsafe under retry logic.

Why this rule exists

Networks retry. Clients retry. Job runners retry. A POST that creates a duplicate row on retry is the canonical cause of double-charged customers.

Code example

Triggers the rule

+ [HttpPost("/orders")]
+ public Task<Order> Create(OrderRequest req) => _svc.CreateAsync(req);

Passes the rule

+ [HttpPost("/orders")]
+ public Task<Order> Create([FromHeader(Name="Idempotency-Key")] Guid key, OrderRequest req)
+     => _svc.CreateAsync(key, req);

Configuration

Disable or adjust the severity of this rule in .gauntletci.json:

{
  "rules": {
    "GCI0022": { "enabled": true, "severity": "Warn" }
  }
}

See Configuration for the full schema.

Related rules

GCI0015Block

Data Integrity Risk

Detects unchecked casts, mass assignment without validation, and SQL ON CONFLICT IGNORE patterns that silently discard errors.

GCI0039Block

External Service Safety

Detects unsafe HTTP client usage and external service call patterns that lack timeout, cancellation, or retry configuration.

Implemented in src/GauntletCI.Core/Rules/Implementations/GCI0022_*.cs.

About the author

Eric Cogen -- Founder, GauntletCI

Twenty years as a senior technical consultant building and modernizing enterprise platforms across .NET, AWS, serverless, microservices, and AI-driven systems.

@EricCogen/GauntletCI on GitHub/More about Eric