docs(security): add gitea inventory export request gate [skip ci]
This commit is contained in:
@@ -13,6 +13,7 @@
|
||||
"docs/security/source-control-workflow-secret-name-inventory.snapshot.json",
|
||||
"docs/security/source-control-primary-rollback-adr.snapshot.json",
|
||||
"docs/security/gitea-repo-inventory.snapshot.json",
|
||||
"docs/security/gitea-authenticated-inventory-export-request.snapshot.json",
|
||||
"docs/security/gitea-org-repo-inventory-blocked.snapshot.json",
|
||||
"docs/security/security-followup-runtime-gate.snapshot.json"
|
||||
],
|
||||
@@ -40,11 +41,14 @@
|
||||
],
|
||||
"current_gap": [
|
||||
"目前只有 public-only / blocked endpoint evidence",
|
||||
"S4.5 已建立 authenticated/admin export request,但尚未取得 `gitea_repo_inventory_v1.status=ok` evidence",
|
||||
"public-only API 只看到 2 個 repos,本機 remote inventory 看到 4 個 unique Gitea repos,gap 仍待 owner 解釋",
|
||||
"GITEA_READONLY_TOKEN 未提供",
|
||||
"不得使用 write-capable credential 當 read-only token"
|
||||
],
|
||||
"allowed_now": [
|
||||
"顯示 blocked reason",
|
||||
"mirror S4.5 authenticated inventory export request",
|
||||
"等待 read-only token 或 redacted admin export",
|
||||
"更新 approval board 與 decision table"
|
||||
],
|
||||
|
||||
Reference in New Issue
Block a user