From 7e1a5ef87b36135fac54037538396627da4d50a9 Mon Sep 17 00:00:00 2001 From: tegwick Date: Fri, 20 Mar 2026 23:44:33 +0100 Subject: [PATCH] Updated scope --- SCOPE.md | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/SCOPE.md b/SCOPE.md index cee1c2a..4168f74 100644 --- a/SCOPE.md +++ b/SCOPE.md @@ -96,6 +96,31 @@ Railiance is structured as five independent repos per OAS Stack layer. This repo --- +## Provided Capabilities + +```capability +type: infrastructure +title: Server provisioning (Terraform) +description: Provision bare-metal and cloud servers on Hetzner and HostEurope via Terraform with cloud-init first-boot configuration. +keywords: [terraform, server, provisioning, hetzner, hosteurope, cloud-init, infrastructure] +``` + +```capability +type: infrastructure +title: OS hardening and convergence (Ansible) +description: Harden and converge server OS via Ansible (base, security, sops_agent roles) with Goss test suite for baseline validation. +keywords: [ansible, os, hardening, convergence, goss, security, baseline, validation] +``` + +```capability +type: security +title: Secret management (SOPS/age) +description: Manage encrypted secrets at rest in Git using SOPS/age — encrypt, rotate, and distribute secrets for Railiance infrastructure components. +keywords: [sops, age, secrets, encryption, gitops, key-rotation, credential] +``` + +--- + ## Notes Designed for remote execution from HostEurope (92.205.130.254). SSH reverse tunnel required for State Hub access: `ssh -R 8000:127.0.0.1:8000 tegwick@92.205.130.254`.