← Back to hub
gb-mnadd · scripted walkthrough · fictional deal, canned output

An agentic due diligence, end to end

Project Halcyon: Kestrel Capital Partners acquiring Halcyon Group Holdings, a fictional £250m+ UK connected-building-technology group. The data room is 1,617 real-format PDFs across sixteen sections. This walkthrough replays the pipeline's actual saved output — nothing here calls a model.

The deal, and the pipeline

Due diligence runs in stages, each handing off to the next. Two of them stop for the partner. The rest run unattended.

The DD timeline

#StageProduces
0Handle the documentsA readable, shape-detected data room — PDF, Word or Excel in, markdown out
1PlanA weighted DD plan with risk hypotheses. Stops for partner sign-off.
2ClassifyWhat each document is, and which workstream it belongs to
3Workstream reviews (in parallel)A findings file per workstream, each finding with a verbatim quote
4Risk + cross-linksThe risk register and the compound risks no single workstream would catch
5Seller questionsThe tiered, deduplicated RFI
6ReportA partner-quality draft red flag report with a clear recommendation
How it's driven. Thirty-four plain-English skills — playbook content a senior associate can read and edit — applied by sixteen tightly-scoped agents, each with a written list of what it does not do. The discipline lives in the playbook, not in trusting the model.

Stage 1 — Plan, then stop

The platform reads the deal brief and commits to risk hypotheses before reading a single document. Then it stops and waits for the partner.

/gb-mnadd:dd-plan ./vdr02

Workstream weighting — against the deal thesis

WorkstreamWeightWhy
IP / ITHeavyThe thesis is the Pulse platform — the IP is what Kestrel is paying for
CommercialHeavyCustomer base is pillar two; change-of-control exposure expected
EmploymentStandardEngineering team is pillar three; retention and IP assignment risk
CorporateStandardGroup structure spans five overseas subsidiaries
Tax, real estate, pensions…Out of scopeLeft to separate teams — the platform reviews what the partner puts in scope

Five risk hypotheses — committed before reading

1Gaps in the IP ownership chain for the Pulse platform
2IP protected more weakly than represented
3Open-source contamination — classic for IoT firmware
4Customer concentration with change-of-control rights
5Friction in the German and French subsidiaries
Hold those five. Every one of them came back as a finding. Three came back as Critical. The platform proposes; the partner directs — the next button is the checkpoint.

Stage 2 — Classify every document

Every document gets a type and a workstream. On Halcyon, that's sixteen hundred PDFs.

1,617PDFs in the room
1,614classified & routed
16data-room sections
4workstreams in scope

The move that matters — dual routing

The consultancy agreements behind the IP gaps — Helix and Quayside — route to both employment and IP/IT. "Is this person really a contractor?" is an employment question; "does their code actually belong to Halcyon?" is an IP question. That dual routing is how the platform later joins the two views into the single most important finding on the deal.

Uncertain classifications are flagged with a one-line reason, so a human spot-checks the doubtful ones — not the whole room.

Stage 3 — Four reviewers, in parallel

Each reviewer applies its own playbook to every document on its queue, end to end. The slowest reviewer sets the clock, not the sum of them.

49findings
17commercial
13employment
10IP / IT
9corporate

IP/IT — the contributor gap High

Two outside developers — Helix and Quayside — wrote code that is in the live Pulse platform, and neither signed an IP assignment.

"The Consultant shall provide the Services with reasonable skill and care." helix-consultancy-agreement.pdf · cl. 4 — and that is all it says. No assignment clause exists.

Commercial — the biggest customer High

Brookfield, the largest account, gave only a conditional change-of-control consent — and is sitting on an unwaived product-liability claim.

"Either party may terminate this Agreement on written notice where control of the other party changes." brookfield-msa.pdf · cl. 18.2 — roughly £43m of revenue, a quarter of the year, sits in contracts with triggers a Kestrel acquisition activates.

Every finding carries a verbatim citation back to the source PDF. Finding → source → quoted text → original document — a junior associate can trace any of them.

Stage 4 — Join the risks up

The risk agent reads all forty-nine findings together and works through twenty-seven named compound patterns — places where two ordinary findings become serious when read side by side.

/gb-mnadd:dd-risk ./vdr02

Cross-link 1 — ownership of the codebase Critical

The pattern: weak consultant IP × open-source contamination. Helix and Quayside never assigned their code — and the firmware ships a GPL-2.0 component. Each alone makes you ask whether Halcyon owns its product; together they go to whether Kestrel can own and lawfully ship the thing it's paying £250m for. Escalated to Critical by the playbook rule, unprompted.

Cross-link 2 — Brookfield, three ways at once Critical

Change-of-control × concentration × leverage: the top customer's consent is conditional, and the unwaived product-liability claim is usable as leverage over it.

And the ones that didn't fire

Not triggered  The missing-AI-assessment pattern — a planted Critical on practice deals — did not fire: Halcyon's AI feature has a completed, approved data-protection assessment, and the platform recorded exactly that. It reports what it ruled out, not just what it concluded. A tool that only confirms its own template can't do that.

10cross-links found
3+3criticals (findings + compounds)
19high
13medium

Stage 5 — Ask the seller the right questions

Every question raised across the four workstreams, deduplicated and prioritised by severity.

42questions
12tier 1 · one week

Tier 1 — the questions that change the recommendation

1Produce the executed Helix IP-assignment deed, or confirm none exists.
2Produce the executed Quayside IP-assignment deed, or confirm none exists.
3Confirm whether Brookfield's change-of-control consent conditions can be satisfied before signing, and the status of the product-liability claim.
Several Tier-1 items each merge what two or three workstreams would have asked separately — one well-formed question for the seller, not three near-identical ones.

Stage 6 — The draft red flag report

Partner-quality voice, one of four standard recommendations, and a drafting-ready protections schedule.

Recommendation

Proceed, with specific protections. No finding kills the thesis, and every Critical and High is capable of being addressed in the transaction documents — but two Criticals strike the top two pillars, so signing without protection is not acceptable. reports/red-flag-report-v1.md · executive summary

Condition precedentAnswers
Executed IP-assignment deeds + open-source remediationThe codebase Critical
Unconditional Brookfield consent, claim ring-fencedThe customer Critical
Board resolution limiting option accelerationTeam retention
Early engagement with the pension trusteesThe DB scheme exposure

The item that isn't even a finding

Urgent  "The Northbridge warrant lapses on 30 June — the deal team must act on this immediately." A hard external deadline spotted in the corporate documents and pulled to the front of the report — nineteen days out on the day it was drafted. The kind of thing that gets missed in a spreadsheet and blows up a completion.

The close. From sixteen hundred raw PDFs to a cited, partner-quality draft with a clear recommendation — plan, classify, review, join up, question, report. The partner edited two stages; the pipeline ran the rest unattended.