generated from coulomb/repo-seed
Define INTENT, refresh SCOPE, and plan NetKingdom stewardship
Add ops-warden INTENT as operational access steward for NetKingdom security (route credential lanes, align docs, issue SSH certs only). Refresh SCOPE for stewardship scope, persist INTENT↔SCOPE gap assessment, and open WARDEN-WP-0006 for routing runbooks and platform alignment.
This commit is contained in:
@@ -4,7 +4,9 @@ SSH Certificate Authority and certificate lifecycle manager for the ops fleet.
|
||||
Signs short-lived certs for `adm` / `agt` / `atm` actors and exposes the
|
||||
`cert_command` interface consumed by `ops-bridge` and other tooling.
|
||||
|
||||
See `SCOPE.md` for boundaries and `wiki/AccessManagementDirective.md` for policy.
|
||||
See `INTENT.md` for direction, `SCOPE.md` for current implementation, and
|
||||
`wiki/AccessManagementDirective.md` for SSH policy. Gap analysis:
|
||||
`history/2026-06-17-intent-scope-assessment.md`.
|
||||
|
||||
## Install
|
||||
|
||||
@@ -54,6 +56,8 @@ uv run ruff check .
|
||||
|
||||
## Documentation
|
||||
|
||||
- `INTENT.md` — operational access steward mission (NetKingdom-aligned)
|
||||
- `wiki/CredentialRouting.md` — *planned WP-0006* — which subsystem for each credential type
|
||||
- `wiki/OpsWardenConfig.md` — configuration reference
|
||||
- `wiki/CertCommandInterface.md` — `cert_command` contract for callers
|
||||
- `wiki/InterHubBootstrapAccessLane.md` — short-lived cert envelope for bootstrap tasks
|
||||
|
||||
Reference in New Issue
Block a user