coulomb/net-kingdom
2
0
Fork 0
generated from coulomb/repo-seed
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
35 Commits 1 Branch 0 Tags
c10d7d2f8a4e245f5cc697014ad69aad765ed19e
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Bernd Worsch c10d7d2f8a feat(creds): implement NK-WP-0004 Credential Management Foundation 
- .sops.yaml + keys/age.pub: SOPS age encryption for all secrets/ paths
- .gitignore: broad secrets/ catch-all (any depth)
- .githooks/pre-commit: blocks unencrypted secrets/, *.env outside bootstrap/,
  and known plaintext patterns (PI_SECRET_KEY=, LLDAP_JWT_SECRET=, etc.)
- Makefile: full credential lifecycle (creds-init/generate/bundle/apply/verify/
  status/rotate) + SOPS helpers (sops-setup/edit/encrypt/decrypt/rotate/check-secrets)
  + hooks/hooks-test
- creds-apply.sh: runs create-secrets.sh in dependency order (postgresql → lldap →
  authelia → privacyidea), skips keycape with printed instructions, updates state
- creds-verify.sh: checks all K8s secrets exist, updates creds-state.yaml
- creds-status.sh: human-readable state table from creds-state.yaml
- creds-rotate.sh: guided rotation for all 9 secret types with impact descriptions
  and atomic multi-component update sequences
- creds-state.yaml: committable state file tracking generation, bundle, KeePassXC
  confirmation, per-component apply status, enckey and pi-admin bootstrap flags

NK-WP-0003-T01 unblocked. /creds-bootstrap skill registered separately.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-20 23:39:35 +00:00
.githooks
feat(creds): implement NK-WP-0004 Credential Management Foundation
2026-03-20 23:39:35 +00:00
docs
feat(local-identity): Stage 4 — security hardening (NK-WP-0002-T04)
2026-03-02 08:06:56 +01:00
keys
feat(creds): implement NK-WP-0004 Credential Management Foundation
2026-03-20 23:39:35 +00:00
local-identity
refactor(local-identity): post-Stage4 cleanups and micro-fixes
2026-03-02 08:25:21 +01:00
sso-mfa
feat(creds): implement NK-WP-0004 Credential Management Foundation
2026-03-20 23:39:35 +00:00
wiki
Add CLAUDE.md, wiki protoplans, and NK-WP-0001 workplan
2026-02-28 17:21:51 +01:00
workplans
New Workplans
2026-03-21 00:25:42 +01:00
.gitignore
feat(creds): implement NK-WP-0004 Credential Management Foundation
2026-03-20 23:39:35 +00:00
.sops.yaml
feat(creds): implement NK-WP-0004 Credential Management Foundation
2026-03-20 23:39:35 +00:00
CLAUDE.md
Add CLAUDE.md, wiki protoplans, and NK-WP-0001 workplan
2026-02-28 17:21:51 +01:00
CONFIG.md
feat(sso-mfa): T05 SSO stack pivot — Keycloak → Authelia + LLDAP + KeyCape (NK-WP-0001-T05)
2026-03-19 08:31:51 +00:00
DECISIONS.md
docs(decisions): record D4 (ESO) and D5 (local-identity in-repo)
2026-03-02 01:06:58 +01:00
LICENSE
Initial commit
2026-02-28 09:41:41 +00:00
Makefile
feat(creds): implement NK-WP-0004 Credential Management Foundation
2026-03-20 23:39:35 +00:00
README.md
Add CLAUDE.md, wiki protoplans, and NK-WP-0001 workplan
2026-02-28 17:21:51 +01:00
SCOPE.md
Added provided capabilities section
2026-03-20 01:01:52 +01:00

README.md

NetKingdom

NetKingdom provides a dynamic self optimizing full circle security-platform for kubernetes deployed IT-infrastructures.

Reference in New Issue View Git Blame Copy Permalink
Description
Open security core for dev sec ops on kubernetes
Readme MIT-0 4.2 MiB
Languages
Python 61.3%
Shell 35.9%
Makefile 2.8%