docs(iwooos): refresh Wazuh gates after rebase
This commit is contained in:
@@ -276,6 +276,13 @@
|
||||
- 完成度:live metadata env gate artifact / guard `100%`;server-side env owner response、secret source metadata、post-enable readback、live query authorization 仍 `0%`。
|
||||
- 邊界:本段沒有讀 secret、沒有查 Wazuh API、沒有修改 K8s / ArgoCD / Docker / Nginx / firewall、沒有部署、沒有 active response、沒有 host write;部署後 route 200 也不能直接代表可查 Wazuh live metadata。
|
||||
|
||||
**Release lane rebase/readback 補充,22:48 Asia/Taipei**:
|
||||
- `gitea/main` 已再前進到 `b540fc0c docs(ops): record momo source absence readback [skip ci]`;Wazuh 分支已 rebase 到此基底,沒有覆蓋 MOMO source absence / recovery readback 紀錄。
|
||||
- Rebase 後 Wazuh 分支目前只比 `gitea/main` 多六個提交:`38dc3c2f fix(iwooos): 接上 Wazuh 只讀 API 邊界`、`9a53d3e1 docs(iwooos): 記錄 Wazuh release apply proof`、`e9972d47 feat(iwooos): 新增 Wazuh release lane preflight`、`758d419e docs(iwooos): refresh Wazuh release lane readback`、`04db4b8a feat(iwooos): define Wazuh release owner gate`、`8eec298e feat(iwooos): add Wazuh live metadata env gate`。
|
||||
- 已重新產生 Wazuh release gate、release lane preflight、owner request、owner response acceptance 與 live metadata env gate snapshots;全部仍固定 push、deploy、production readback、runtime gate、live query、active response、host write 為 `0`。
|
||||
- 完成度:rebase / snapshot refresh `100%`;formal release lane owner acks `0/6`、evidence `0/6`;live metadata owner accepted `0`;Gitea push / production deploy / production readback `0%`。
|
||||
- 邊界:本段沒有讀 git credential、沒有推送、沒有部署、沒有 Wazuh live query、沒有 secret collection、沒有 Nginx / Docker / K8s / firewall / host / Wazuh secret 變更。
|
||||
|
||||
## 2026-06-24|21:04 recovery readback 與 MOMO V10.651 雙機基準收斂
|
||||
|
||||
**背景**:前一輪 MOMO workspace readback 指到 `V10.646`,但 21:04 live health 已回 `V10.651`。因此本輪重新比對 Gitea `wooo/ewoooc` `main`、正式站 `/health`、Mac Mini / MacBook Pro Codex workspace 與 full-stack cold-start,避免「網站可用」和「版本 / 資料最新」互相混淆。
|
||||
|
||||
@@ -41,7 +41,7 @@
|
||||
"wazuh_active_response_authorized": false,
|
||||
"wazuh_api_live_query_authorized": false
|
||||
},
|
||||
"generated_at": "2026-06-24T22:42:00+08:00",
|
||||
"generated_at": "2026-06-24T22:48:00+08:00",
|
||||
"live_metadata_candidate": {
|
||||
"candidate_id": "iwooos_wazuh_readonly_live_metadata_env",
|
||||
"not_authorization": true,
|
||||
|
||||
@@ -14,7 +14,7 @@
|
||||
"wazuh_active_response_authorized": false,
|
||||
"wazuh_api_live_query_authorized": false
|
||||
},
|
||||
"generated_at": "2026-06-24T22:26:00+08:00",
|
||||
"generated_at": "2026-06-24T22:48:00+08:00",
|
||||
"missing_required_source_paths": [],
|
||||
"mode": "repo_release_gate_no_runtime_no_secret_collection",
|
||||
"operator_interpretation": [
|
||||
|
||||
@@ -30,7 +30,7 @@
|
||||
"wazuh_active_response_authorized": false,
|
||||
"wazuh_api_live_query_authorized": false
|
||||
},
|
||||
"generated_at": "2026-06-24T22:26:00+08:00",
|
||||
"generated_at": "2026-06-24T22:48:00+08:00",
|
||||
"mode": "repo_preflight_no_secret_no_runtime_no_push",
|
||||
"operator_interpretation": [
|
||||
"此 preflight 通過前,不得把 Gitea credential blocker 視為可繞過。",
|
||||
|
||||
@@ -17,7 +17,7 @@
|
||||
"wazuh_active_response_authorized": false,
|
||||
"wazuh_api_live_query_authorized": false
|
||||
},
|
||||
"generated_at": "2026-06-24T22:32:00+08:00",
|
||||
"generated_at": "2026-06-24T22:48:00+08:00",
|
||||
"handoff_envelope_fields": [
|
||||
"request_id",
|
||||
"stage_id",
|
||||
|
||||
@@ -107,7 +107,7 @@
|
||||
"wazuh_active_response_authorized": false,
|
||||
"wazuh_api_live_query_authorized": false
|
||||
},
|
||||
"generated_at": "2026-06-24T22:32:00+08:00",
|
||||
"generated_at": "2026-06-24T22:48:00+08:00",
|
||||
"mode": "metadata_only_acceptance_no_secret_no_runtime_no_push",
|
||||
"reviewer_instructions": [
|
||||
"只有具備完整欄位、脫敏 evidence refs、無 secret、無 runtime 要求的 owner response 才能進 reviewer validation。",
|
||||
|
||||
Reference in New Issue
Block a user