docs(security): add github target owner status ledger
This commit is contained in:
@@ -38,7 +38,7 @@ S3.1 開始,實際人工決策紀錄由 `security_approval_decision_record_v1`
|
||||
| 1 | Redacted finding ingestion | 只批准設計或 draft PR |
|
||||
| 2 | Safe web crawl | 只批准低噪音 scope 定義 |
|
||||
| 3 | Gitea owner attestation + read-only inventory | 先依 S4.9 驗收 S4.7 owner response,再只批准只讀 inventory 或 redacted admin export |
|
||||
| 4 | GitHub target decisions | 只批准逐 repo S4.10 request packet / response 與 S4.12 workflow / secret 名稱 response 驗收與決策草案 |
|
||||
| 4 | GitHub target decisions | 只批准逐 repo S4.10 request packet / template status ledger / response 與 S4.12 workflow / secret 名稱 response 驗收與決策草案 |
|
||||
| 5 | Ref truth review | 只批准 S4.11 owner response 驗收、人工分類與 reconcile 草案 |
|
||||
| 6 | Credentialed scan | 只允許人工 exception 設計,仍需 runtime gate |
|
||||
| 7 | Kali full-upgrade / reboot | 只允許維護窗口與 rollback 規劃 |
|
||||
|
||||
Reference in New Issue
Block a user