coulomb/ops-warden
2
0
Fork 0
generated from coulomb/repo-seed
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7 Commits 1 Branch 0 Tags
c66cb1b0fef71498643d4a634769d9befd8a88c4
Commit Graph

7 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
tegwick
c66cb1b0fe chore(workplans): add WARDEN-WP-0002 and WARDEN-WP-0003 
WP-0002 — Correctness and Operational Completeness (priority: high)
  T1: TTL max enforcement per ActorType
  T2: Stale cert cleanup command (warden cleanup)
  T3: Outgoing signatures log (warden log)

WP-0003 — Test Coverage and Code Quality (priority: medium)
  T1: VaultCA tests
  T2: LocalCA.generate_keypair tests
  T3: CLI tests (test_cli.py)
  T4: Real ssh-keygen integration test
  T5: File permissions enforcement (mode 600)
  T6: warden status --state-dir override

Both registered in Custodian State Hub under ops-warden repo (74df727e).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-05-15 15:28:31 +02:00
tegwick
26391b0479 chore(workplan): mark WARDEN-WP-0001 all tasks done 
All 10 tasks complete; 42 tests passing, ruff clean.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-05-15 14:33:12 +02:00
tegwick
9ae395de68 chore(consistency): sync task status from DB [auto] 
Updated by fix-consistency on 2026-05-15:
  - update .custodian-brief.md for ops-warden
 2026-05-15 13:50:51 +02:00
tegwick
42ca370085 feat(bootstrap): WARDEN-WP-0001 initial implementation — 42 tests passing 
- LocalCA: ssh-keygen -s signing, keypair generation, cert parsing via ssh-keygen -L
- VaultCA: Vault SSH engine backend via httpx
- Inventory: YAML actor registry with ActorType, principals, TTL policy
- Scorecard: four cert-side compliance checks (prefixes, principals, no expired/stale)
- CLI: sign (cert_command interface), issue, status, scorecard, inventory subcommands
- ops-ssh-wrapper: acquire cert and exec SSH command
- Fix: principal parser stops at section headers containing ':' (Critical Options, Extensions)
- Move WARDEN-WP-0001 workplan from ops-bridge; register repo in state-hub (74df727e)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-05-15 13:27:49 +02:00
tegwick
fee16417b8 chore(consistency): sync task status from DB [auto] 
Updated by fix-consistency on 2026-05-15:
  - update .custodian-brief.md for ops-warden
 2026-05-15 12:14:32 +02:00
Bernd Worsch
5ae6b988aa Initial Commit 2026-03-28 00:45:43 +00:00
Coulomb Social
a436a7569d Initial commit 2026-03-28 00:35:11 +00:00