diff --git a/docs/LOGBOOK.md b/docs/LOGBOOK.md index 4ff832cf..602626b5 100644 --- a/docs/LOGBOOK.md +++ b/docs/LOGBOOK.md @@ -276,6 +276,13 @@ - 完成度:live metadata env gate artifact / guard `100%`;server-side env owner response、secret source metadata、post-enable readback、live query authorization 仍 `0%`。 - 邊界:本段沒有讀 secret、沒有查 Wazuh API、沒有修改 K8s / ArgoCD / Docker / Nginx / firewall、沒有部署、沒有 active response、沒有 host write;部署後 route 200 也不能直接代表可查 Wazuh live metadata。 +**Release lane rebase/readback 補充,22:48 Asia/Taipei**: +- `gitea/main` 已再前進到 `b540fc0c docs(ops): record momo source absence readback [skip ci]`;Wazuh 分支已 rebase 到此基底,沒有覆蓋 MOMO source absence / recovery readback 紀錄。 +- Rebase 後 Wazuh 分支目前只比 `gitea/main` 多六個提交:`38dc3c2f fix(iwooos): 接上 Wazuh 只讀 API 邊界`、`9a53d3e1 docs(iwooos): 記錄 Wazuh release apply proof`、`e9972d47 feat(iwooos): 新增 Wazuh release lane preflight`、`758d419e docs(iwooos): refresh Wazuh release lane readback`、`04db4b8a feat(iwooos): define Wazuh release owner gate`、`8eec298e feat(iwooos): add Wazuh live metadata env gate`。 +- 已重新產生 Wazuh release gate、release lane preflight、owner request、owner response acceptance 與 live metadata env gate snapshots;全部仍固定 push、deploy、production readback、runtime gate、live query、active response、host write 為 `0`。 +- 完成度:rebase / snapshot refresh `100%`;formal release lane owner acks `0/6`、evidence `0/6`;live metadata owner accepted `0`;Gitea push / production deploy / production readback `0%`。 +- 邊界:本段沒有讀 git credential、沒有推送、沒有部署、沒有 Wazuh live query、沒有 secret collection、沒有 Nginx / Docker / K8s / firewall / host / Wazuh secret 變更。 + ## 2026-06-24|21:04 recovery readback 與 MOMO V10.651 雙機基準收斂 **背景**:前一輪 MOMO workspace readback 指到 `V10.646`,但 21:04 live health 已回 `V10.651`。因此本輪重新比對 Gitea `wooo/ewoooc` `main`、正式站 `/health`、Mac Mini / MacBook Pro Codex workspace 與 full-stack cold-start,避免「網站可用」和「版本 / 資料最新」互相混淆。 diff --git a/docs/security/wazuh-readonly-live-metadata-env-gate.snapshot.json b/docs/security/wazuh-readonly-live-metadata-env-gate.snapshot.json index 63838b52..e9249283 100644 --- a/docs/security/wazuh-readonly-live-metadata-env-gate.snapshot.json +++ b/docs/security/wazuh-readonly-live-metadata-env-gate.snapshot.json @@ -41,7 +41,7 @@ "wazuh_active_response_authorized": false, "wazuh_api_live_query_authorized": false }, - "generated_at": "2026-06-24T22:42:00+08:00", + "generated_at": "2026-06-24T22:48:00+08:00", "live_metadata_candidate": { "candidate_id": "iwooos_wazuh_readonly_live_metadata_env", "not_authorization": true, diff --git a/docs/security/wazuh-readonly-release-gate.snapshot.json b/docs/security/wazuh-readonly-release-gate.snapshot.json index 216a2d20..ec58fd40 100644 --- a/docs/security/wazuh-readonly-release-gate.snapshot.json +++ b/docs/security/wazuh-readonly-release-gate.snapshot.json @@ -14,7 +14,7 @@ "wazuh_active_response_authorized": false, "wazuh_api_live_query_authorized": false }, - "generated_at": "2026-06-24T22:26:00+08:00", + "generated_at": "2026-06-24T22:48:00+08:00", "missing_required_source_paths": [], "mode": "repo_release_gate_no_runtime_no_secret_collection", "operator_interpretation": [ diff --git a/docs/security/wazuh-readonly-release-lane-preflight.snapshot.json b/docs/security/wazuh-readonly-release-lane-preflight.snapshot.json index 1210da7d..e269db92 100644 --- a/docs/security/wazuh-readonly-release-lane-preflight.snapshot.json +++ b/docs/security/wazuh-readonly-release-lane-preflight.snapshot.json @@ -30,7 +30,7 @@ "wazuh_active_response_authorized": false, "wazuh_api_live_query_authorized": false }, - "generated_at": "2026-06-24T22:26:00+08:00", + "generated_at": "2026-06-24T22:48:00+08:00", "mode": "repo_preflight_no_secret_no_runtime_no_push", "operator_interpretation": [ "此 preflight 通過前,不得把 Gitea credential blocker 視為可繞過。", diff --git a/docs/security/wazuh-readonly-release-owner-request.snapshot.json b/docs/security/wazuh-readonly-release-owner-request.snapshot.json index 303bb9e8..9598b3df 100644 --- a/docs/security/wazuh-readonly-release-owner-request.snapshot.json +++ b/docs/security/wazuh-readonly-release-owner-request.snapshot.json @@ -17,7 +17,7 @@ "wazuh_active_response_authorized": false, "wazuh_api_live_query_authorized": false }, - "generated_at": "2026-06-24T22:32:00+08:00", + "generated_at": "2026-06-24T22:48:00+08:00", "handoff_envelope_fields": [ "request_id", "stage_id", diff --git a/docs/security/wazuh-readonly-release-owner-response-acceptance.snapshot.json b/docs/security/wazuh-readonly-release-owner-response-acceptance.snapshot.json index d1b07d0d..eb09819e 100644 --- a/docs/security/wazuh-readonly-release-owner-response-acceptance.snapshot.json +++ b/docs/security/wazuh-readonly-release-owner-response-acceptance.snapshot.json @@ -107,7 +107,7 @@ "wazuh_active_response_authorized": false, "wazuh_api_live_query_authorized": false }, - "generated_at": "2026-06-24T22:32:00+08:00", + "generated_at": "2026-06-24T22:48:00+08:00", "mode": "metadata_only_acceptance_no_secret_no_runtime_no_push", "reviewer_instructions": [ "只有具備完整欄位、脫敏 evidence refs、無 secret、無 runtime 要求的 owner response 才能進 reviewer validation。",