diff --git a/apps/web/messages/en.json b/apps/web/messages/en.json
index e4141cb0..f350c10c 100644
--- a/apps/web/messages/en.json
+++ b/apps/web/messages/en.json
@@ -1887,6 +1887,49 @@
"next": "active runtime gates=0; action buttons=false"
}
}
+ },
+ "hostOwnerDecisionRecordWriteups": {
+ "title": "Host Owner Decision Record Write-Up Packets",
+ "subtitle": "When a draft review outcome is ready for write-up, IwoooS can still only display formal decision record write-up fields. It does not create records, mark completed / accepted, or open runtime gates.",
+ "packetLabel": "Write-up packet",
+ "fieldLabel": "Required field",
+ "items": {
+ "decisionSummaryWriteup": {
+ "title": "Decision summary write-up",
+ "body": "Only organizes the human owner decision, risk acceptance boundary, and no-execution statement.",
+ "field": "decision summary; write-up completed=0"
+ },
+ "approvedScopeWriteup": {
+ "title": "Approved scope write-up",
+ "body": "Only organizes hosts, networks, services, exclusions, observation intent, and expiry.",
+ "field": "scope / expiry; record created=false"
+ },
+ "scanModeLimitsWriteup": {
+ "title": "Scan mode limits write-up",
+ "body": "Only organizes limits for observe-only, future active scan, or credentialed scan modes. This is not scan approval.",
+ "field": "mode limits; scan authorized=false"
+ },
+ "credentialBoundaryWriteup": {
+ "title": "Credential boundary write-up",
+ "body": "Only organizes credential handling metadata, owner, retention boundary, and forbidden collection content.",
+ "field": "metadata-only boundary; secret collection=false"
+ },
+ "maintenanceRollbackWriteup": {
+ "title": "Maintenance and rollback write-up",
+ "body": "Only organizes maintenance window candidates, constraints, rollback owner, recovery path, and human contact.",
+ "field": "window / rollback; host update=false"
+ },
+ "validationEvidenceWriteup": {
+ "title": "Validation evidence write-up",
+ "body": "Only organizes post-check metrics, baseline, evidence pointer, and human acceptance condition.",
+ "field": "metrics / evidence; accepted=0"
+ },
+ "runtimeGatePointerWriteup": {
+ "title": "Runtime gate pointer write-up",
+ "body": "Only states that future approval still needs a separate follow-up runtime gate and cannot execute from write-up.",
+ "field": "runtime gate pointer; active gates=0"
+ }
+ }
}
},
"tickets": {
diff --git a/apps/web/messages/zh-TW.json b/apps/web/messages/zh-TW.json
index 6d981284..14cd198c 100644
--- a/apps/web/messages/zh-TW.json
+++ b/apps/web/messages/zh-TW.json
@@ -1888,6 +1888,49 @@
"next": "active runtime gates=0;action buttons=false"
}
}
+ },
+ "hostOwnerDecisionRecordWriteups": {
+ "title": "主機 Owner Decision Record Write-Up Packets",
+ "subtitle": "Draft review outcome 若進入 ready for write-up,IwoooS 也只能顯示正式 decision record 撰寫欄位。不建立 record、不標示 completed / accepted、不開 runtime gate。",
+ "packetLabel": "Write-up packet",
+ "fieldLabel": "必要欄位",
+ "items": {
+ "decisionSummaryWriteup": {
+ "title": "Decision summary write-up",
+ "body": "只整理 owner 要做的人工作業判斷、風險接受邊界與不執行聲明。",
+ "field": "decision summary;write-up completed=0"
+ },
+ "approvedScopeWriteup": {
+ "title": "Approved scope write-up",
+ "body": "只整理主機、網段、服務、排除範圍、觀察目的與到期時間。",
+ "field": "scope / expiry;record created=false"
+ },
+ "scanModeLimitsWriteup": {
+ "title": "Scan mode limits write-up",
+ "body": "只整理 observe-only、future active scan 或 credentialed scan 的限制條件,不代表掃描批准。",
+ "field": "mode limits;scan authorized=false"
+ },
+ "credentialBoundaryWriteup": {
+ "title": "Credential boundary write-up",
+ "body": "只整理 credential handling metadata、owner、保存邊界與不可收集內容。",
+ "field": "metadata-only boundary;secret collection=false"
+ },
+ "maintenanceRollbackWriteup": {
+ "title": "Maintenance and rollback write-up",
+ "body": "只整理維護窗口候選、限制條件、rollback owner、復原路徑與人工聯絡點。",
+ "field": "window / rollback;host update=false"
+ },
+ "validationEvidenceWriteup": {
+ "title": "Validation evidence write-up",
+ "body": "只整理 post-check metrics、baseline、evidence pointer 與人工驗收條件。",
+ "field": "metrics / evidence;accepted=0"
+ },
+ "runtimeGatePointerWriteup": {
+ "title": "Runtime gate pointer write-up",
+ "body": "只標示若未來批准,仍要另開 follow-up runtime gate,不能由 write-up 執行。",
+ "field": "runtime gate pointer;active gates=0"
+ }
+ }
}
},
"tickets": {
diff --git a/apps/web/src/app/[locale]/iwooos/page.tsx b/apps/web/src/app/[locale]/iwooos/page.tsx
index 2e7249bf..af367544 100644
--- a/apps/web/src/app/[locale]/iwooos/page.tsx
+++ b/apps/web/src/app/[locale]/iwooos/page.tsx
@@ -179,6 +179,13 @@ type HostOwnerDecisionRecordDraftReviewOutcomeLane = {
tone: 'steady' | 'warn' | 'locked'
}
+type HostOwnerDecisionRecordWriteupPacket = {
+ key: string
+ packet: string
+ icon: typeof ShieldCheck
+ tone: 'steady' | 'warn' | 'locked'
+}
+
const postureMetrics: PostureMetric[] = [
{ key: 'overall', value: '58%', tone: 'warn' },
{ key: 'framework', value: '80-85%', tone: 'steady' },
@@ -420,6 +427,16 @@ const hostOwnerDecisionRecordDraftReviewOutcomeLanes: HostOwnerDecisionRecordDra
{ key: 'runtimeGateStillRequired', lane: 'DV7', icon: ShieldCheck, tone: 'locked' },
]
+const hostOwnerDecisionRecordWriteupPackets: HostOwnerDecisionRecordWriteupPacket[] = [
+ { key: 'decisionSummaryWriteup', packet: 'WU1', icon: ClipboardCheck, tone: 'warn' },
+ { key: 'approvedScopeWriteup', packet: 'WU2', icon: Radar, tone: 'warn' },
+ { key: 'scanModeLimitsWriteup', packet: 'WU3', icon: Activity, tone: 'locked' },
+ { key: 'credentialBoundaryWriteup', packet: 'WU4', icon: Lock, tone: 'locked' },
+ { key: 'maintenanceRollbackWriteup', packet: 'WU5', icon: Clock3, tone: 'warn' },
+ { key: 'validationEvidenceWriteup', packet: 'WU6', icon: CheckCircle2, tone: 'warn' },
+ { key: 'runtimeGatePointerWriteup', packet: 'WU7', icon: ShieldCheck, tone: 'locked' },
+]
+
const evidenceItems = [
'iwooos-posture-projection.snapshot.json',
'security-rollout-policy.snapshot.json',
@@ -1090,6 +1107,34 @@ function HostOwnerDecisionRecordDraftReviewOutcomeCard({
)
}
+function HostOwnerDecisionRecordWriteupCard({ item }: { item: HostOwnerDecisionRecordWriteupPacket }) {
+ const t = useTranslations('iwooos.hostOwnerDecisionRecordWriteups')
+ const Icon = item.icon
+ return (
+
+
+
+
+ {t('packetLabel')}
+
+
{item.packet}
+
+
+ {t(`items.${item.key}.title` as never)}
+
+
+ {t(`items.${item.key}.body` as never)}
+
+
+
{t('fieldLabel')}
+
+ {t(`items.${item.key}.field` as never)}
+
+
+
+ )
+}
+
export default function IwoooSPage({ params }: { params: { locale: string } }) {
const t = useTranslations('iwooos')
@@ -1462,6 +1507,26 @@ export default function IwoooSPage({ params }: { params: { locale: string } }) {
+
+
+
{t('hostOwnerDecisionRecordWriteups.title')}
+
+ {t('hostOwnerDecisionRecordWriteups.subtitle')}
+
+
+
+ {hostOwnerDecisionRecordWriteupPackets.map(item => (
+
+ ))}
+
+
+
None:
"s2_26_iwooos_host_owner_decision_record_draft_packets",
"s2_27_iwooos_host_owner_decision_record_draft_review_checklist",
"s2_28_iwooos_host_owner_decision_record_draft_review_outcome_lanes",
+ "s2_29_iwooos_host_owner_decision_record_writeup_packets",
]
assert_equal(
"progress_delta_ledger.delta_ids",
@@ -478,6 +479,15 @@ def validate(root: Path) -> None:
"host_decision_record_rollback_owner_incomplete_outcome_lane",
"host_decision_record_runtime_gate_required_outcome_lane",
]
+ expected_iwooos_host_owner_decision_record_writeup_packet_ids = [
+ "host_decision_record_summary_writeup_packet",
+ "host_decision_record_scope_writeup_packet",
+ "host_decision_record_scan_mode_limits_writeup_packet",
+ "host_decision_record_credential_boundary_writeup_packet",
+ "host_decision_record_maintenance_rollback_writeup_packet",
+ "host_decision_record_validation_evidence_writeup_packet",
+ "host_decision_record_runtime_gate_pointer_writeup_packet",
+ ]
assert_equal(
"iwooos_projection.summary.frontend_surface_coverage_group_count",
iwooos_projection["summary"]["frontend_surface_coverage_group_count"],
@@ -573,6 +583,11 @@ def validate(root: Path) -> None:
iwooos_projection["summary"]["host_owner_decision_record_draft_review_outcome_lane_count"],
len(expected_iwooos_host_owner_decision_record_draft_review_outcome_lane_ids),
)
+ assert_equal(
+ "iwooos_projection.summary.host_owner_decision_record_writeup_packet_count",
+ iwooos_projection["summary"]["host_owner_decision_record_writeup_packet_count"],
+ len(expected_iwooos_host_owner_decision_record_writeup_packet_ids),
+ )
iwooos_progress = iwooos_projection["progress"]
assert_equal("iwooos_projection.progress.overall_percent", iwooos_progress["overall_percent"], progress["overall_percent"])
assert_equal(
@@ -1752,6 +1767,86 @@ def validate(root: Path) -> None:
f"iwooos_projection.host_owner_decision_record_draft_review_outcome_lanes.{item['lane_id']}.not_authorization",
item["not_authorization"],
)
+ iwooos_host_owner_decision_record_writeup_packets = iwooos_projection[
+ "host_owner_decision_record_writeup_packets"
+ ]
+ assert_equal(
+ "iwooos_projection.host_owner_decision_record_writeup_packets.ids",
+ [item["packet_id"] for item in iwooos_host_owner_decision_record_writeup_packets],
+ expected_iwooos_host_owner_decision_record_writeup_packet_ids,
+ )
+ assert_equal(
+ "iwooos_projection.host_owner_decision_record_writeup_packets.display_order",
+ [item["display_order"] for item in iwooos_host_owner_decision_record_writeup_packets],
+ list(range(1, len(expected_iwooos_host_owner_decision_record_writeup_packet_ids) + 1)),
+ )
+ expected_iwooos_host_owner_decision_record_writeup_fields = [
+ "decision_summary",
+ "approved_scope_statement",
+ "scan_mode_limits_statement",
+ "credential_boundary_statement",
+ "maintenance_and_rollback_statement",
+ "validation_evidence_statement",
+ "runtime_gate_pointer_statement",
+ ]
+ assert_equal(
+ "iwooos_projection.host_owner_decision_record_writeup_packets.writeup_fields",
+ [item["writeup_field"] for item in iwooos_host_owner_decision_record_writeup_packets],
+ expected_iwooos_host_owner_decision_record_writeup_fields,
+ )
+ for item in iwooos_host_owner_decision_record_writeup_packets:
+ assert_equal(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.display_mode",
+ item["display_mode"],
+ "owner_decision_record_writeup_only",
+ )
+ assert_equal(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.decision_record_writeup_completed_count",
+ item["decision_record_writeup_completed_count"],
+ 0,
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.decision_record_created",
+ item["decision_record_created"],
+ )
+ assert_equal(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.owner_decision_received_count",
+ item["owner_decision_received_count"],
+ 0,
+ )
+ assert_equal(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.owner_decision_accepted_count",
+ item["owner_decision_accepted_count"],
+ 0,
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.owner_approval_record_created",
+ item["owner_approval_record_created"],
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.runtime_gate_opened",
+ item["runtime_gate_opened"],
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.raw_payload_allowed",
+ item["raw_payload_allowed"],
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.secret_value_collection_allowed",
+ item["secret_value_collection_allowed"],
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.runtime_execution_authorized",
+ item["runtime_execution_authorized"],
+ )
+ assert_false(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.action_buttons_allowed",
+ item["action_buttons_allowed"],
+ )
+ assert_true(
+ f"iwooos_projection.host_owner_decision_record_writeup_packets.{item['packet_id']}.not_authorization",
+ item["not_authorization"],
+ )
assert_equal(
"iwooos_projection.non_blocking_lane_ids",
iwooos_projection["non_blocking_lane_ids"],
@@ -1789,6 +1884,7 @@ def validate(root: Path) -> None:
"display_host_owner_decision_record_draft_packets",
"display_host_owner_decision_record_draft_review_checklist",
"display_host_owner_decision_record_draft_review_outcome_lanes",
+ "display_host_owner_decision_record_writeup_packets",
"display_evidence_refs",
"display_forbidden_actions",
]:
@@ -1850,6 +1946,10 @@ def validate(root: Path) -> None:
"mark_host_owner_decision_record_draft_review_outcome_passed",
"create_host_owner_decision_record_from_draft_review_outcome",
"open_runtime_gate_from_owner_decision_record_draft_review_outcome",
+ "create_host_owner_decision_record_from_writeup",
+ "mark_host_owner_decision_record_writeup_completed",
+ "mark_host_owner_decision_record_accepted_from_writeup",
+ "open_runtime_gate_from_owner_decision_record_writeup",
"apply_runtime_blocking_control",
"switch_github_primary",
"production_deploy",