Arukh HaShulchan Yomi · Startup Mensch · Standard
Arukh HaShulchan, Orach Chaim 314:20-26
Hook
Every founder is a professional rule-breaker. In the early days, we are told that the ultimate sin is inertia. To survive, we build scrapers, we bypass legacy gates, we run manual workarounds that look like automated systems, and we extract data from platforms that would rather keep it locked away. We call this "moving fast and breaking things." We justify it as the necessary friction of market entry.
But there is a silent, creeping inflection point where a clever, temporary hack hardens into a permanent, unauthorized infrastructure.
You started by writing a simple script to pull public data to prove a concept. Now, that script runs on a cron job every five minutes, hitting a competitor’s undocumented API, feeding your core production database, and generating 40% of your recurring revenue. You didn't just break a jar to eat the honey inside; you built a permanent pipeline into someone else’s beehive. You have turned an ad-hoc bypass into an unauthorized, structural dependency.
This is not just a technical debt problem; it is an ethical and systemic risk. When you build your business model on the unauthorized, permanent utilization of another entity's infrastructure, you expose your investors to catastrophic platform risk, your engineering team to structural dishonesty, and your brand to litigation.
The ancient laws of Shabbat—specifically the prohibition of Boneh (building) and Tikkun Keli (perfecting or creating a functional vessel)—deal directly with this transition from temporary extraction to permanent structural creation. In the classic work Arukh HaShulchan, written by Rabbi Yechiel Michel Epstein, we find a sophisticated framework for distinguishing between an act of temporary destruction to access immediate value and the unauthorized creation of a permanent functional interface.
As a founder, your job is to build value, not to build parasitic structures. This text provides the exact architectural decision rules you need to determine when your fast-moving hacks have crossed the line from aggressive market entry into systemic, unethical theft of infrastructure.
Full Experience in the App
Listen. Chat. Go deeper.
Audio playback, interactive chevruta, Hebrew tools, and every daily learning track — only in Derekh Learning.
Text Snapshot
"אם היא שלמה, אסור לנקבה... אבל אם היא שבורה ומודבקת בזפת... מותר לשברה כדי לאכול מה שבתוכה, ובלבד שלא יתכוון לעשות לה פתח יפה... שכל שמתכוון לעשות פתח יפה, הרי זה מתקן כלי ויש בו משום בונה או מכה בפטיש."
"If [the barrel] is whole, it is forbidden to pierce it... but if it was already broken and stuck together with pitch... one may break it to eat what is inside it, provided that one does not intend to make a beautiful opening (petach yafeh)... for anyone who intends to make a beautiful, functional opening is completing a vessel, which violates the prohibition of building (Boneh) or striking the final blow (Makeh B'Patish)." — Arukh HaShulchan, Orach Chaim 314:20
Analysis
To scale a venture-backed startup, you must master the boundaries of system design, intellectual property, and market competition. The Arukh HaShulchan in Arukh HaShulchan, Orach Chaim 314:20-26 analyzes the mechanics of how one may access food stored inside sealed containers on Shabbat. The core halachic challenge is navigating the laws of Boneh (building) and Tikkun Keli (making or completing a functional tool/vessel).
If you break open a sealed jar merely to extract the food inside, you are engaged in an act of destructive consumption (mefarek or soter in a destructive manner), which is generally permitted on Shabbat for the sake of eating. However, if you open that jar so cleanly and precisely that the jar itself becomes a permanently useful container with a new, functional lid or spout, you have transitioned from "destroying to eat" to "building a tool." You have created a functional opening (petach yafeh).
In the modern digital and physical economy, this distinction maps directly to how we interact with external systems, competitor data, and legacy frameworks. Below are three core decision rules derived from this text, organized by the principles of Fairness, Truth, and Competition.
Insight 1: Fairness (The Extraction Rule — Destruction for Consumption vs. Creation of Infrastructure)
In Arukh HaShulchan, Orach Chaim 314:20, the author distinguishes between a pristine vessel and one that is "broken and stuck together with pitch" (shvura u'mudeveket b'zefet). If a barrel is whole, making a new hole in it is strictly forbidden because you are creating a new utility—a functional portal. However, if the barrel is already compromised and held together by temporary means, you may break it apart to get the food, provided you do not create a neat, reusable opening (petach yafeh).
The decision rule for founders is clear: You may bypass an external system's barriers to extract immediate, ad-hoc value (where legally and contractually permissible as a fair-use or one-time action), but you may never build a permanent, automated pipeline that relies on the ongoing exploitation of their uncompensated infrastructure.
When your engineering team writes a scraper to download a competitor's directory once to analyze market pricing, they are "breaking the jar to eat the food inside" Arukh HaShulchan, Orach Chaim 314:20. It is an episodic extraction. The jar is broken; the action is destructive and finite.
But when your team takes that script, optimizes it, wraps it in an API, and treats it as a permanent, real-time data feed for your application without the host's consent, they have created a petach yafeh—a beautiful, functional opening Arukh HaShulchan, Orach Chaim 314:21. You have built a structural pipe into their database. You are no longer just consuming content; you are leveraging their servers, their hosting costs, and their engineering labor to run your product.
This is unfair exploitation. If you need their data permanently, you must negotiate an API license or build your own database. If you build a business model around an unauthorized petach yafeh, you are stealing the physical and digital masonry of another builder to construct your own house.
Insight 2: Truth (The Legacy and Glue Rule — Navigating Duct-Taped Systems)
The Arukh HaShulchan notes that "if it was already broken and stuck together with pitch... one may break it" Arukh HaShulchan, Orach Chaim 314:20. Why? Because a vessel that is already structurally compromised and held together by temporary adhesive does not possess the status of a "complete vessel" (keli shalem). Breaking it does not constitute classic "demolishing" (soter), and accessing its contents does not carry the same structural weight as breaching a pristine, highly engineered system.
In business, this applies to how we interact with legacy markets, open-source software, and poorly secured systems. Many enterprise markets are "stuck together with pitch" Arukh HaShulchan, Orach Chaim 314:22. They run on legacy COBOL code, manual spreadsheets, and fragile human networks.
When you enter a market that is structurally broken, your ethical obligation is to be ruthlessly truthful about the nature of the systems you are interacting with. There are two critical applications of this rule:
- Do not overpromise on the stability of integrations built on "pitch." If you are building a middleware startup that syncs with legacy banking software by simulated browser clicks (RPA), you are building on a broken vessel Arukh HaShulchan, Orach Chaim 314:22. To represent this to your investors or customers as a "robust, enterprise-grade direct integration" is a violation of truth. You must classify it for what it is: a temporary, fragile bridge.
- Do not exploit a competitor's poor security as an invitation to build a permanent parasite. Just because a competitor left their API key exposed or failed to implement a basic firewall (a vessel "stuck together with pitch") does not give you the ethical license to build a permanent, unauthorized commercial integration into their backend. The fact that their "vessel" is poorly maintained does not transform your unauthorized construction of a permanent gateway (petach) into an ethical act Arukh HaShulchan, Orach Chaim 314:20.
Insight 3: Competition (The "No Beautiful Openings" Rule — Ethical Competitive Boundaries)
In Arukh HaShulchan, Orach Chaim 314:24, the text discusses tearing leather coverings or breaking seals on vessels. If you tear a leather cover over a jar to get to the wine inside, you must do so in a destructive manner. If you cut it neatly to create a functional, reusable lid, you have violated the Shabbat law of Tikkun Keli (making a utensil). You have turned a protective seal into a permanent, structured asset.
Translate this to competitive strategy and IP: When you are utilizing open-source tools, public data, or competitor features to build your product, you must do so in a way that respects the boundary between consumption and structural imitation.
If you are reverse-engineering a competitor’s feature set, you are allowed to analyze their product, decompose it, and learn from it to build your own unique solution. This is equivalent to "tearing the cover" to access the knowledge inside Arukh HaShulchan, Orach Chaim 314:24.
However, if you copy their exact API schemas, replicate their proprietary user interface components, or lift their underlying system architecture so precisely that your product becomes a drop-in, plug-and-play replacement that piggybacks on their documentation and user training, you have created a petach yafeh Arukh HaShulchan, Orach Chaim 314:21. You have not designed your own vessel; you have stolen their vessel's design and commercialized it.
True, ethical competition requires that your product's architecture is the result of your own capital, your own intellect, and your own engineering labor. If your product's value proposition depends on the user being able to seamlessly swap out a competitor's proprietary system for yours without changing a single line of their custom integration code—because you copied their proprietary endpoint names and payload structures—you have crossed the line from market competition to structural plagiarism.
Policy Move
To operationalize these insights and protect your startup from catastrophic platform risk, legal liability, and ethical rot, you must implement the "Architectural Integrity Protocol" (AIP).
This policy draws a hard, enforceable line between temporary, destructive exploratory hacks (which are permitted for market discovery) and permanent, structured integrations (which require formal authorization or native build-out).
The Architectural Integrity Protocol (AIP)
Phase 1: Classification of Data & System Access
Every data ingestion pipeline, API integration, and scraping script must be registered in the company’s architecture directory under one of two classifications:
- Exploratory (The "Broken Jar" Protocol): Temporary, ad-hoc scripts designed to extract a finite data set for market validation, customer discovery, or competitive analysis.
- Structural (The "Vessel" Protocol): Any automated, recurring, or real-time data ingestion pipeline that directly powers a production feature or customer-facing dashboard.
Phase 2: The "Exploratory" Expiration Rule
Any script classified as "Exploratory" must have a hard-coded expiration date not to exceed 30 days from initial execution.
- After 30 days, the access credentials and script must be automatically deprecated and archived.
- If the business requires continued access to this data, the product team cannot simply renew the script. They must either:
- Negotiate a formal commercial API agreement with the target platform (converting it to an authorized "Vessel").
- Build an in-house, proprietary data generation engine that does not rely on the competitor's infrastructure.
Phase 3: The "No Beautiful Openings" Code Review
During pull request (PR) reviews, systems architects must audit all external integrations to ensure the company is not building unauthorized petach yafeh Arukh HaShulchan, Orach Chaim 314:21. The PR checklist must answer:
- Does this integration rely on undocumented, unauthenticated, or private endpoints of a third-party service? If yes, the PR must be rejected.
- Are we replicating a competitor’s proprietary database schema or system architecture to bypass their paywall or platform terms? If yes, the PR must be rejected.
Key Metric: The Infrastructure Exposure Index (IEI)
To measure your compliance and risk mitigation under this policy, track your Infrastructure Exposure Index (IEI) on your engineering dashboard.
$$\text{IEI} = \frac{\text{Production Features Dependent on Unlicensed/Private Third-Party APIs}}{\text{Total Production Features}} \times 100$$
Target KPI:
- 0% for Enterprise-grade startups.
- < 5% for early-stage startups in active pivot/discovery phases, with a mandatory path to 0% within 90 days of a funding round.
A high IEI means your business is built on a foundation of "duct-taped pitch" Arukh HaShulchan, Orach Chaim 314:20. If a competitor changes their API schema, updates their terms of service, or blocks your IP addresses, your product immediately breaks, and your valuation collapses. Reducing your IEI directly increases your enterprise value by ensuring that your intellectual property is wholly owned, legally defensible, and structurally sound.
Board-Level Question
To bring this ethical and structural analysis to the highest level of corporate governance, the founder or lead independent director should ask the executive team the following question at the next board meeting:
"If our top three competitors or data providers updated their terms of service tomorrow to aggressively block all undocumented, unauthenticated, or scraped access, what percentage of our core product functionality and recurring revenue would disappear within 48 hours?"
Why This Question Matters for Strategy and Valuation:
1. Identification of Parasitic Revenue
This question forces the executive team to admit whether they have built a sustainable business or a parasitic interface (petach yafeh) on someone else's cap-ex Arukh HaShulchan, Orach Chaim 314:21. If a significant portion of your revenue relies on unauthorized data extraction, your margins are artificially inflated. You are not paying the true cost of goods sold (COGS) for your data. You are running on stolen infrastructure, and your financial model is a fiction.
2. Quantification of Platform Risk
In the venture capital ecosystem, platform risk is a silent killer. If your startup is built on top of another platform without a contract, that platform can shut you down overnight (think of the businesses destroyed when Twitter or Reddit suddenly restricted their APIs). By calculating the exact revenue at risk, the board can mandate immediate defensive engineering—such as building proprietary data pipelines or negotiating commercial data partnerships—before the platform owner discovers your "beautiful opening" and seals it shut Arukh HaShulchan, Orach Chaim 314:20.
3. Ethical Alignment and Due Diligence Readiness
During a Series B or C round, or during an M&A process, sophisticated buyers and lead investors will conduct deep technical and legal due diligence. If they discover that your core intellectual property is dependent on unauthorized access to proprietary systems, they will either slash your valuation or walk away from the deal entirely. Asking this question now ensures that you clean up your technical and ethical debt while you still have the runway to do so, transitioning your systems from fragile, "pitch-stuck" workarounds to robust, legally defensible assets Arukh HaShulchan, Orach Chaim 314:22.
Takeaway
In the relentless rush to scale, it is easy to mistake a structural vulnerability for a brilliant growth hack. The Arukh HaShulchan reminds us that there is a profound ethical and physical difference between breaking a temporary barrier to consume what we need today and constructing a permanent, unauthorized gateway into another's domain Arukh HaShulchan, Orach Chaim 314:20.
Hacks are for validation; architecture is for scale.
If you are still running your company on the unauthorized extraction of competitor infrastructure, you have not built a resilient enterprise—you have built a highly sophisticated parasite. Tear down your unauthorized pipelines. Build your own vessels. Elevate your engineering from a series of clever Shabbat-violating workarounds into a monument of enduring, proprietary value.
derekhlearning.com