4170 lines
356 KiB
JSON
4170 lines
356 KiB
JSON
{
|
||
"schema_version": "security_mirror_status_rollup_v1",
|
||
"status": "draft",
|
||
"date": "2026-05-17",
|
||
"mode": "mirror_only",
|
||
"rollup_status": "framework_ready_waiting_approval",
|
||
"runtime_execution_authorized": false,
|
||
"source_indexes": [
|
||
"docs/security/security-supply-chain-contract-manifest.snapshot.json",
|
||
"docs/security/security-mirror-readiness.snapshot.json",
|
||
"docs/security/security-mirror-intake-plan.snapshot.json",
|
||
"docs/security/security-mirror-route.snapshot.json",
|
||
"docs/security/security-mirror-acceptance.snapshot.json",
|
||
"docs/security/security-mirror-quarantine.snapshot.json",
|
||
"docs/security/security-mirror-dry-run.snapshot.json",
|
||
"docs/security/security-approval-queue.snapshot.json",
|
||
"docs/security/security-approval-gate.snapshot.json",
|
||
"docs/security/security-approval-decision-record.snapshot.json",
|
||
"docs/security/security-approval-review-packet.snapshot.json",
|
||
"docs/security/security-approval-state-transition.snapshot.json",
|
||
"docs/security/security-followup-runtime-gate.snapshot.json",
|
||
"docs/security/gitea-authenticated-inventory-export-request.snapshot.json",
|
||
"docs/security/gitea-authenticated-inventory-import-acceptance.snapshot.json",
|
||
"docs/security/gitea-inventory-coverage-attestation.snapshot.json",
|
||
"docs/security/gitea-inventory-owner-attestation-response.snapshot.json",
|
||
"docs/security/github-target-owner-decision-response.snapshot.json",
|
||
"docs/security/source-control-ref-truth-owner-response.snapshot.json",
|
||
"docs/security/source-control-primary-readiness-gate.snapshot.json",
|
||
"docs/security/source-control-primary-rollback-adr.snapshot.json",
|
||
"docs/security/source-control-workflow-secret-name-inventory.snapshot.json",
|
||
"docs/security/source-control-workflow-secret-name-local-evidence.snapshot.json",
|
||
"docs/security/source-control-workflow-secret-name-export-request.snapshot.json",
|
||
"docs/security/source-control-workflow-secret-name-owner-response.snapshot.json",
|
||
"docs/security/source-control-owner-response-validation-rollup.snapshot.json",
|
||
"docs/security/security-rollout-policy.snapshot.json",
|
||
"docs/security/iwooos-posture-projection.snapshot.json"
|
||
],
|
||
"summary": {
|
||
"total_contracts": 36,
|
||
"ready_for_mirror_count": 33,
|
||
"partial_ready_count": 2,
|
||
"contract_only_count": 1,
|
||
"blocked_count": 0,
|
||
"approval_queue_total": 8,
|
||
"approval_review_packet_total": 8,
|
||
"approval_state_transition_rule_total": 5,
|
||
"followup_runtime_gate_template_total": 8,
|
||
"active_runtime_gate_count": 0,
|
||
"gitea_inventory_status": "partial_waiting_authenticated_inventory",
|
||
"gitea_inventory_public_only_repo_count": 2,
|
||
"gitea_inventory_local_gitea_repo_count": 4,
|
||
"gitea_inventory_export_source_option_count": 2,
|
||
"gitea_inventory_token_value_collection_allowed": false,
|
||
"gitea_inventory_import_acceptance_status": "draft_waiting_redacted_inventory_payload",
|
||
"gitea_inventory_import_acceptance_payload_count": 0,
|
||
"gitea_inventory_import_acceptance_quarantine_required": true,
|
||
"gitea_inventory_import_acceptance_execution_authorized": false,
|
||
"gitea_inventory_coverage_attestation_status": "draft_waiting_owner_attestation",
|
||
"gitea_inventory_coverage_attestation_required_count": 5,
|
||
"gitea_inventory_coverage_attestation_received_count": 0,
|
||
"gitea_inventory_coverage_attestation_execution_authorized": false,
|
||
"primary_readiness_candidate_repo_count": 8,
|
||
"github_primary_ready_count": 0,
|
||
"ref_truth_owner_response_template_count": 5,
|
||
"ref_truth_owner_received_response_count": 0,
|
||
"ref_truth_owner_accepted_response_count": 0,
|
||
"ref_truth_owner_rejected_response_count": 0,
|
||
"ref_truth_refs_sync_authorized": false,
|
||
"ref_truth_refs_delete_authorized": false,
|
||
"ref_truth_force_push_authorized": false,
|
||
"primary_rollback_adr_repo_plan_count": 7,
|
||
"primary_rollback_adr_owner_approved_count": 0,
|
||
"primary_rollback_adr_dry_run_completed_count": 0,
|
||
"primary_rollback_execution_authorized": false,
|
||
"workflow_secret_inventory_candidate_repo_count": 8,
|
||
"workflow_secret_inventory_complete_count": 0,
|
||
"workflow_secret_inventory_local_evidence_repo_count": 4,
|
||
"workflow_secret_inventory_local_workflow_file_count": 31,
|
||
"workflow_secret_inventory_unique_secret_name_count": 43,
|
||
"workflow_secret_inventory_export_request_count": 7,
|
||
"workflow_secret_inventory_export_lane_count": 5,
|
||
"workflow_secret_owner_response_template_count": 5,
|
||
"workflow_secret_owner_received_response_count": 0,
|
||
"workflow_secret_owner_accepted_response_count": 0,
|
||
"workflow_secret_owner_rejected_response_count": 0,
|
||
"owner_response_validation_packet_count": 4,
|
||
"owner_response_validation_lane_count": 4,
|
||
"owner_response_validation_template_count": 22,
|
||
"owner_response_validation_received_count": 0,
|
||
"owner_response_validation_accepted_count": 0,
|
||
"owner_response_validation_rejected_count": 0,
|
||
"awooop_read_only_production_landing_evidence_count": 1,
|
||
"awooop_read_only_production_landing_commit": "9e15fd08b3f8839048d0178c5b38421d35041810",
|
||
"awooop_read_only_production_landing_cd_run": "2149",
|
||
"awooop_read_only_production_landing_routes_verified": [
|
||
"/zh-TW/iwooos",
|
||
"/zh-TW/security",
|
||
"/zh-TW/awooop"
|
||
],
|
||
"awooop_read_only_production_landing_execution_router_linked": false,
|
||
"owner_response_validation_cross_packet_check_count": 10,
|
||
"owner_response_validation_quarantine_required": true,
|
||
"workflow_secret_inventory_write_token_allowed": false,
|
||
"workflow_secret_modification_authorized": false,
|
||
"workflow_secret_github_hosted_runner_enable_authorized": false,
|
||
"secret_value_collection_allowed": false,
|
||
"secret_value_detected": false,
|
||
"pending_approval_count": 7,
|
||
"block_candidate_count": 1,
|
||
"dry_run_status": "contract_defined_not_executed",
|
||
"runtime_actions_executed": false,
|
||
"payloads_ingested": false
|
||
},
|
||
"progress_estimate": {
|
||
"overall_percent": 61,
|
||
"framework_percent_min": 86,
|
||
"framework_percent_max": 88,
|
||
"runtime_landing_percent_min": 40,
|
||
"runtime_landing_percent_max": 45,
|
||
"basis": [
|
||
"36 個主要 contract 中 33 個 ready、2 個 partial、1 個 contract-only、0 個 blocked。",
|
||
"S0/S2/S3/S4 多數治理、鏡像、人工批准與 source-control readiness 契約已完成草案。",
|
||
"AwoooP 正式站已只讀顯示 IwoooS / security mirror 狀態,並保留 execution_router_linked=false、runtime_execution_authorized=false。",
|
||
"owner responses、redacted payload ingestion、active runtime gate 與 GitHub primary readiness 仍未完成或尚未批准。"
|
||
],
|
||
"interpretation": "目前處於健康的框架期後段;骨架接近完成,但仍刻意維持低摩擦,不把 read-only evidence 誤升級成 runtime enforcement。",
|
||
"not_authorization": true
|
||
},
|
||
"phase_status": [
|
||
{
|
||
"phase_id": "S0_contracts_and_boundaries",
|
||
"state": "completed",
|
||
"current_result": "Kali / Codex / GitHub / Gitea / AwoooP 邊界已文件化,核心 schema 草案已建立。",
|
||
"next_gate": "AwoooP 只讀 mirror 消費。"
|
||
},
|
||
{
|
||
"phase_id": "S1_readonly_inventory",
|
||
"state": "in_progress",
|
||
"current_result": "已完成多項 read-only evidence;S4.5 已補 Gitea authenticated/admin export request,S4.6 已補 redacted import acceptance,S4.7 已補 owner coverage attestation request,但 private/internal 全量 repo list 仍需批准後補齊。",
|
||
"next_gate": "先取得 owner scope decision / coverage attestation,再等待只讀 token 或 redacted admin export owner approval;收到 payload 後先依 S4.6 驗收與隔離規則檢查,仍不得保存 token value。"
|
||
},
|
||
{
|
||
"phase_id": "S2_mirror_only_consumption",
|
||
"state": "draft_ready",
|
||
"current_result": "Mirror readiness、intake、event、route、acceptance、quarantine、dry-run、status rollup 與 IwoooS posture projection 契約已建立。",
|
||
"next_gate": "AwoooP 主線只建立 read-only / mirror-only UI 與 audit evidence,不新增 execution router。"
|
||
},
|
||
{
|
||
"phase_id": "S3_approval_gate",
|
||
"state": "draft_ready",
|
||
"current_result": "Approval queue 已列出 8 個候選,security_approval_gate_v1 已定義人工 gate,security_approval_decision_record_v1 已定義決策紀錄格式,security_approval_review_packet_v1 已定義人工審查封包,security_approval_state_transition_v1 已定義決策狀態轉移語義,security_followup_runtime_gate_v1 已定義後續 runtime gate 準備模板;S4.8 已把 Gitea queue/gate/review packet/follow-up gate 對齊 S4.7 owner attestation 先行。",
|
||
"next_gate": "先 review redacted finding ingestion、safe crawl 與 Gitea owner attestation + read-only inventory;review packet、decision record、state transition 與 follow-up runtime gate template 都不等於執行授權。"
|
||
},
|
||
{
|
||
"phase_id": "S4_migration_execution",
|
||
"state": "not_started",
|
||
"current_result": "GitHub primary 是長期方向;source_control_primary_readiness_gate_v1 已定義 8 個 candidate repos、7 個 in-scope blocked repos、0 個 primary ready;S4.1 已定義 workflow / secret 名稱 inventory 契約;S4.2 已補 local evidence;S4.3 已補 redacted export request;S4.4 已補 rollback ADR 草案;S4.5 已補 Gitea authenticated inventory export request;S4.6 已補 redacted import acceptance;S4.7 已補 owner coverage attestation request;S4.9 已補 Gitea owner response request packet、5 個 template statuses、3 個 audit event templates、5 個 redaction examples、8 個 display sections、6 個 collection checks、owner response intake packet、6 個 intake preflight checks 與 5 個 outcome lanes;S4.10 已補 GitHub target owner decision response request packet、7 個 template statuses、3 個 audit event templates、5 個 redaction examples、6 個 collection checks、6 個 intake preflight checks 與 intake packet;S4.11 已補 refs truth owner response request packet、5 個 template statuses、3 個 audit event templates、5 個 redaction examples、6 個 collection checks、6 個 intake preflight checks 與收件包;S4.12 已補 workflow / secret 名稱 owner response request packet、5 個 template statuses、3 個 audit event templates、5 個 redaction examples、6 個 collection checks、6 個 intake preflight checks 與 intake packet;S4.13 已補四包 owner response validation rollup、6 條 evidence routing rules、8 個 display sections、7 條 state transition rules、9 個 reviewer checklist items、7 條 reviewer outcome lanes、4 個 reviewer audit event templates、5 個 reviewer audit display sections、6 個 reviewer audit collection checks、5 個 reviewer audit redaction examples、5 條 reviewer audit retention rules、6 個 reviewer audit retention checks、6 個 reviewer audit handoff packets、6 個 reviewer audit handoff checks、6 個 parallel session sync checks、6 條 parallel session conflict lanes、6 個 parallel session recovery checks 與 7 條 parallel session recovery outcome lanes;S1.3 低摩擦 rollout policy 已補 7 條 non-blocking escalation lanes,彙整 22 個 templates、received=0、accepted=0,並標示 next_collection_candidate=S4.9,但 inventory status 仍 partial,S4.9/S4.11/S4.12 audit events emitted 仍 0 筆,GitHub target / refs truth / workflow-secret response 仍 0 筆,S4.13 reviewer audit templates 也仍為 emitted=0,handoff packets / checks、parallel session sync checks、parallel session conflict lanes、recovery checks、recovery outcome lanes 與 non-blocking escalation lanes 只作跨 Session 只讀交接、消費檢查、分支/ledger 同步確認、衝突分流、復原前檢查、復原結果分類與低摩擦升級判讀。",
|
||
"next_gate": "依 S4.13 先集中檢查四包 owner response validation 狀態、6 條 evidence routing rules、8 個 display sections、7 條 state transition rules、9 個 reviewer checklist items、7 條 reviewer outcome lanes、4 個 reviewer audit event templates、5 個 reviewer audit display sections、6 個 reviewer audit collection checks、5 個 reviewer audit redaction examples、5 條 reviewer audit retention rules、6 個 reviewer audit retention checks、6 個 reviewer audit handoff packets、6 個 reviewer audit handoff checks、6 個 parallel session sync checks、6 條 parallel session conflict lanes、6 個 parallel session recovery checks 與 7 條 parallel session recovery outcome lanes,同時用 S1.3 的 7 條 non-blocking escalation lanes 確認 LOW / MEDIUM、缺 owner response、partial mirror、source-control drift、Kali observe finding、workflow / secret name gap 與 headline holding 都不得直接升 blocking;AwoooP 只顯示 next_collection_candidate=S4.9 Gitea owner attestation,依 S4.9 owner response request packet 要求 owner 回覆,並用 template status ledger / audit event templates / redaction examples / display sections / collection checks 維持 request / received / accepted 分離;再依 S4.9 收到並驗收 S4.7 Gitea owner response、依 S4.10 request packet、template status ledger、audit event templates、redaction examples、collection checks 與 intake preflight checks 收到並驗收 7 個 GitHub target owner / visibility / canonical response、依 S4.11 request packet、template status ledger、audit event templates、redaction examples、collection checks 與 intake preflight checks 收到並驗收 5 個 refs truth owner response templates、依 S4.12 request packet、template status ledger、audit event templates、redaction examples、collection checks 與 intake preflight checks 收到並驗收 5 個 workflow / secret 名稱 owner response templates、authenticated inventory payload 通過 S4.6 驗收、rollback ADR owner approval 與逐 repo 人工批准。"
|
||
}
|
||
],
|
||
"progress_display_policy": {
|
||
"headline_percent": 61,
|
||
"headline_status": "reviewed_after_awooop_read_only_production_landing_evidence",
|
||
"why_headline_is_holding": [
|
||
"AwoooP production landing evidence 已由 Gitea main commit 9e15fd08b3f8839048d0178c5b38421d35041810、CD run 2149 與正式站 `/zh-TW/iwooos`、`/zh-TW/security`、`/zh-TW/awooop` 只讀驗證納入本次 headline review,因此整體進度從 58% 保守重估為 61%。",
|
||
"最近完成的是 S4.10 owner response request / status / audit / redaction / collection checks / intake preflight、S4.11 request packet / template status ledger / audit event templates / redaction examples / collection checks / intake preflight、S4.12 request packet / template status ledger / audit event templates / redaction examples / collection checks / intake preflight checks、S4.13 evidence routing rules / display sections / state transition rules / reviewer checklist / reviewer outcome lanes / reviewer audit event templates / reviewer audit display sections / reviewer audit collection checks / reviewer audit redaction examples / reviewer audit retention rules / reviewer audit retention checks / reviewer audit handoff packets / reviewer audit handoff checks / parallel session sync checks / parallel session conflict lanes / parallel session recovery checks / parallel session recovery outcome lanes,以及 S1.3 non-blocking escalation lanes 的框架細節,改善可見性、收件安全、稽核格式、跨 Session 同步、衝突分流、復原前檢查、復原結果分類與低摩擦升級判讀,但 owner response received / accepted 仍為 0。",
|
||
"overall_percent 下一次只在 owner response、redacted payload ingestion、active runtime gate 或 GitHub primary readiness 這些高層 gate 有實質變化時調整。",
|
||
"維持 61% 是為了避免把 read-only scaffold 誤算成 runtime enforcement、Kali scan、repo migration 或 GitHub primary cutover。"
|
||
],
|
||
"recent_micro_progress_visible": true,
|
||
"headline_can_increase_after": [
|
||
"S4.9 Gitea owner attestation response received/accepted 有實際脫敏 evidence",
|
||
"S4.10 GitHub target owner / visibility / canonical response received/accepted 有實際脫敏 evidence",
|
||
"S4.11 refs truth owner response received/accepted 有實際脫敏 evidence",
|
||
"S4.12 workflow / secret name owner response received/accepted 有實際脫敏 evidence",
|
||
"redacted payload ingestion 或 active runtime gate 在人工批准後啟用",
|
||
"GitHub primary readiness gate 的 primary_ready_count 大於 0"
|
||
],
|
||
"runtime_execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
"progress_delta_ledger": [
|
||
{
|
||
"delta_id": "s4_10_owner_response_request_packet",
|
||
"display_order": 1,
|
||
"completed_stage": "S4.10 GitHub target owner response request packet",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "request packet 只讓 AwoooP 顯示 owner 要回覆什麼,不代表 request sent、response received 或 approval。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_10_owner_response_template_status_ledger",
|
||
"display_order": 2,
|
||
"completed_stage": "S4.10 GitHub target owner response template status ledger",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "template status ledger 只逐項顯示 7 個 target 仍為 waiting_owner_response,received / accepted 皆為 0。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_10_owner_response_audit_event_templates",
|
||
"display_order": 3,
|
||
"completed_stage": "S4.10 GitHub target owner response audit event templates",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "audit event templates 仍為 template_only_not_emitted,emitted_event_count=0,尚未啟用 production ingestion。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_10_owner_response_redaction_examples",
|
||
"display_order": 4,
|
||
"completed_stage": "S4.10 GitHub target owner response redaction examples",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "redaction examples 只示範安全 metadata shape,不代表 owner response 已收到、已接受或授權 repo / refs / primary 操作。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_10_owner_response_collection_checks",
|
||
"display_order": 5,
|
||
"completed_stage": "S4.10 GitHub target owner response collection checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "collection checks 只維持 request / received / accepted 狀態分離,不代表 owner response 已收到、已接受或授權 repo / refs / primary 操作。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_10_owner_response_intake_preflight_checks",
|
||
"display_order": 6,
|
||
"completed_stage": "S4.10 GitHub target owner response intake preflight checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "intake preflight checks 只分類可收、補證、隔離或拒收,不代表 owner response 已 accepted 或授權 repo / refs / primary 操作。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_11_ref_truth_owner_response_request_packet",
|
||
"display_order": 7,
|
||
"completed_stage": "S4.11 refs truth owner response request packet",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "request packet 只讓 AwoooP 顯示 owner 要回覆哪 5 類 refs truth 問題,不代表 request sent、response received、accepted 或 refs sync/delete/force push 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_11_ref_truth_owner_response_template_status_ledger",
|
||
"display_order": 8,
|
||
"completed_stage": "S4.11 refs truth owner response template status ledger",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "template status ledger 只逐項顯示 5 類 refs truth response 仍為 waiting_owner_response,received / accepted 皆為 0,不代表 refs sync/delete/force push 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_11_ref_truth_owner_response_audit_event_templates",
|
||
"display_order": 9,
|
||
"completed_stage": "S4.11 refs truth owner response audit event templates",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "audit event templates 仍為 template_only_not_emitted,emitted_event_count=0,尚未啟用 production ingestion,也不代表 refs sync/delete/force push 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_11_ref_truth_owner_response_redaction_examples",
|
||
"display_order": 10,
|
||
"completed_stage": "S4.11 refs truth owner response redaction examples",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "redaction examples 只示範安全 metadata shape,不代表 owner response 已收到、已接受或授權 refs sync/delete/force push。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_11_ref_truth_owner_response_collection_checks",
|
||
"display_order": 11,
|
||
"completed_stage": "S4.11 refs truth owner response collection checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "collection checks 只維持 request / received / accepted 狀態分離,不代表 owner response 已收到、已接受或授權 refs sync/delete/force push。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_11_ref_truth_owner_response_intake_preflight_checks",
|
||
"display_order": 12,
|
||
"completed_stage": "S4.11 refs truth owner response intake preflight checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "intake preflight checks 只分類可審、補證、隔離、拒收或等待,不代表 owner response accepted 或授權 refs sync/delete/force push。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_12_workflow_secret_name_owner_response_request_packet",
|
||
"display_order": 13,
|
||
"completed_stage": "S4.12 workflow / secret 名稱 owner response request packet",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "request packet 只讓 AwoooP 顯示 owner 要回覆哪 5 類 workflow / secret 名稱問題,不代表 request sent、response received、secret value collection、workflow 修改、runner 啟用或 GitHub primary 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_12_workflow_secret_name_owner_response_template_status_ledger",
|
||
"display_order": 14,
|
||
"completed_stage": "S4.12 workflow / secret 名稱 owner response template status ledger",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "template status ledger 只逐項顯示 5 類 workflow / secret 名稱 response 仍為 waiting_owner_response,received / accepted 皆為 0,不代表 secret value collection、workflow 修改、runner 啟用或 primary 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_12_workflow_secret_name_owner_response_audit_event_templates",
|
||
"display_order": 15,
|
||
"completed_stage": "S4.12 workflow / secret 名稱 owner response audit event templates",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "audit event templates 仍為 template_only_not_emitted,emitted_event_count=0,尚未啟用 production ingestion,也不代表 secret value collection、workflow 修改、runner 啟用或 primary 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_12_workflow_secret_name_owner_response_redaction_examples",
|
||
"display_order": 16,
|
||
"completed_stage": "S4.12 workflow / secret 名稱 owner response redaction examples",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "redaction examples 只示範安全回覆形狀,stored_raw_payload_allowed=false,尚未收到 owner response,也不代表 secret value collection、workflow 修改、runner 啟用或 primary 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_12_workflow_secret_name_owner_response_collection_checks",
|
||
"display_order": 17,
|
||
"completed_stage": "S4.12 workflow / secret 名稱 owner response collection checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "collection checks 只維持 request / received / accepted 狀態分離,received_response_count=0、accepted_response_count=0,不代表 secret value collection、workflow 修改、runner 啟用或 primary 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_12_workflow_secret_name_owner_response_intake_preflight_checks",
|
||
"display_order": 18,
|
||
"completed_stage": "S4.12 workflow / secret 名稱 owner response intake preflight checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "intake preflight checks 只分類可審、補證、隔離或拒收,received_response_count=0、accepted_response_count=0,不代表 secret value collection、workflow 修改、runner 啟用或 primary 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_evidence_routing_rules",
|
||
"display_order": 19,
|
||
"completed_stage": "S4.13 owner response validation evidence routing rules",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "evidence routing rules 只決定 owner evidence pointer 應補證、隔離、拒收、進跨包 review 或只讀更新,received_response_count=0、accepted_response_count=0,不代表 approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_display_sections",
|
||
"display_order": 20,
|
||
"completed_stage": "S4.13 owner response validation display sections",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "display sections 只固定 AwoooP 操作控制台的 read-only 呈現順序,received_response_count=0、accepted_response_count=0,不代表 approval、runtime gate、execution queue 或 action button。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_state_transition_rules",
|
||
"display_order": 21,
|
||
"completed_stage": "S4.13 owner response validation state transition rules",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "state transition rules 只固定 owner response validation 的 read-only 狀態語義,received_response_count=0、accepted_response_count=0,不代表 approval、runtime gate、execution queue 或 action button。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_checklist",
|
||
"display_order": 22,
|
||
"completed_stage": "S4.13 owner response validation reviewer checklist",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer checklist 只提供人工審查順序與只讀檢查提示,received_response_count=0、accepted_response_count=0,不代表 approval、runtime gate、execution queue 或 action button。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_outcome_lanes",
|
||
"display_order": 23,
|
||
"completed_stage": "S4.13 owner response validation reviewer outcome lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer outcome lanes 只把人工檢查結果分類成等待、補證、隔離、拒收、跨包 review、只讀更新候選或等待 runtime gate,received_response_count=0、accepted_response_count=0,不代表 approval、runtime gate、execution queue 或 action button。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_event_templates",
|
||
"display_order": 24,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit event templates",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit event templates 只定義未來可留痕的脫敏 metadata 形狀,emitted_event_count=0、received_response_count=0、accepted_response_count=0,不代表 production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_display_sections",
|
||
"display_order": 25,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit display sections",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit display sections 只固定 AwoooP 顯示 4 個 audit templates、允許 metadata、禁止 payload、0 emitted 狀態與非授權邊界,不代表 production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_collection_checks",
|
||
"display_order": 26,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit collection checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit collection checks 只要求 audit template 顯示、metadata-only、forbidden payload 阻擋、emitted 維持 0、無 runtime side effect 與 owner response counters 不變,不代表 production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_redaction_examples",
|
||
"display_order": 27,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit redaction examples",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit redaction examples 只示範 reviewer、classification、quarantine、read-only update 與 runtime gate counter metadata 的安全顯示形狀,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_retention_rules",
|
||
"display_order": 28,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit retention rules",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit retention rules 只定義 reviewer audit metadata 可保留的安全形狀與 raw payload 拒收邊界,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_retention_checks",
|
||
"display_order": 29,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit retention checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit retention checks 只確認 retention rules 可見、metadata-only、raw payload / secret retention blocked、counter snapshot-only 與無 runtime side effect,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_handoff_packets",
|
||
"display_order": 30,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit handoff packets",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit handoff packets 只整理跨 Session resume、必讀 source packets、安全顯示欄位、禁止 runtime 誤讀、下一個 owner response focus 與後續 gates,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_reviewer_audit_handoff_checks",
|
||
"display_order": 31,
|
||
"completed_stage": "S4.13 owner response validation reviewer audit handoff checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "reviewer audit handoff checks 只確認 handoff packets 可見、counters 不變、source packets 必讀、安全顯示欄位、runtime 誤讀阻擋與 next focus 未被標記 received,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_parallel_session_sync_checks",
|
||
"display_order": 32,
|
||
"completed_stage": "S4.13 owner response validation parallel session sync checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "parallel session sync checks 只確認同一 PR 分支、latest delta 可見、counters 仍為 0、runtime flags 仍為 false、source-control mutation 阻擋與 next focus 維持 S4.9,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_parallel_session_conflict_lanes",
|
||
"display_order": 33,
|
||
"completed_stage": "S4.13 owner response validation parallel session conflict lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "parallel session conflict lanes 只把 stale branch、stale delta、counter drift、runtime flag drift、source-control mutation request 與 next focus drift 分類成只讀處理路徑,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_parallel_session_recovery_checks",
|
||
"display_order": 34,
|
||
"completed_stage": "S4.13 owner response validation parallel session recovery checks",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "parallel session recovery checks 只確認 fetch/branch compare、latest ledger、read-only guards、staged diff review、runtime flags false 與 next focus S4.9,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s4_13_owner_response_validation_parallel_session_recovery_outcome_lanes",
|
||
"display_order": 35,
|
||
"completed_stage": "S4.13 owner response validation parallel session recovery outcome lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "parallel session recovery outcome lanes 只把復原結果分類成 ready、branch diverged、ledger stale、guard failed、diff out-of-scope、runtime flag drift 或 next focus drift,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s1_3_low_friction_non_blocking_escalation_lanes",
|
||
"display_order": 36,
|
||
"completed_stage": "S1.3 low-friction non-blocking escalation lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "non-blocking escalation lanes 只確認 LOW / MEDIUM observation、缺 owner response、partial mirror、source-control drift、Kali observe finding、workflow / secret name gap 與 headline holding 先維持 observe / warn,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_8_iwooos_frontend_posture_entry",
|
||
"display_order": 37,
|
||
"completed_stage": "S2.8 IwoooS frontend posture entry",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只把 mirror-only security posture、exposure、approval boundary、evidence 與 non-blocking lanes 呈現在前端,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_9_iwooos_posture_projection_contract",
|
||
"display_order": 38,
|
||
"completed_stage": "S2.9 IwoooS posture projection contract",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS posture projection 只把前端顯示資料固定成可驗證契約,不代表 owner response received、production ingestion、approval、runtime gate 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_10_iwooos_existing_frontend_surface_integration",
|
||
"display_order": 39,
|
||
"completed_stage": "S2.10 IwoooS existing frontend security surface integration",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只把既有前端資安相關頁面整理成只讀索引與 projection evidence,不代表 owner response received、production ingestion、approval、runtime gate、Kali scan、Code Review gating 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_11_iwooos_surface_coverage_boundary_matrix",
|
||
"display_order": 40,
|
||
"completed_stage": "S2.11 IwoooS surface coverage boundary matrix",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS coverage boundary matrix 只把 10 個既有前端資安頁面分組並顯示重疊 / 衝突控制,不代表 owner response received、production ingestion、approval、runtime gate、Kali scan、Code Review gating 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_12_iwooos_operator_journey_projection",
|
||
"display_order": 41,
|
||
"completed_stage": "S2.12 IwoooS operator journey projection",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS operator journey 只把目前使用者可見的資安處理流程整理成 read-only 狀態圖,不代表 owner response received、production ingestion、approval、runtime gate、Kali scan、Code Review gating 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_13_iwooos_owner_evidence_readiness_board",
|
||
"display_order": 42,
|
||
"completed_stage": "S2.13 IwoooS owner evidence readiness board",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS owner evidence readiness board 只顯示下一步需要收哪些 owner evidence / approval gate,所有 received / accepted 仍為 0,不代表 owner response received、production ingestion、approval、runtime gate、Kali scan、Code Review gating 或 execution authorization。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_14_iwooos_host_coverage_view",
|
||
"display_order": 43,
|
||
"completed_stage": "S2.14 IwoooS host coverage view",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host coverage view 只顯示 Kali 112 與 168 / 111 開發主機已納入 observe-only 資安視野;active scan、SSH 變更、主機更新、credentialed scan、runtime gate、Kali /execute 或 execution authorization 仍未批准。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_15_iwooos_host_action_gate_matrix",
|
||
"display_order": 44,
|
||
"completed_stage": "S2.15 IwoooS host action gate matrix",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host action gate matrix 只把 active scan、credentialed scan、Kali /execute、SSH/host change、Kali host update 與 runtime blocking control 拆成只讀 gate;所有 active_scan、credentialed_scan、ssh_change、host_update、runtime execution 與 action button 仍為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_16_iwooos_host_evidence_readiness_board",
|
||
"display_order": 45,
|
||
"completed_stage": "S2.16 IwoooS host evidence readiness board",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence readiness board 只顯示主機掃描、SSH/host change、Kali update 與 runtime blocking 前仍缺 scope、owner decision、credential handling、maintenance window、rollback、validation metrics 與 redacted ingestion evidence;received / accepted 仍為 0,所有主機動作授權仍為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_17_iwooos_host_evidence_collection_order",
|
||
"display_order": 46,
|
||
"completed_stage": "S2.17 IwoooS host evidence collection order",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence collection order 只把 scope boundary、owner decision、credential handling、maintenance window、rollback、validation metrics 與 redacted ingestion 排成只讀收件順序;received / accepted 仍為 0,沒有 active scan、SSH/host change、Kali update、raw evidence ingestion、runtime execution 或 action button 授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_18_iwooos_host_evidence_intake_preflight",
|
||
"display_order": 47,
|
||
"completed_stage": "S2.18 IwoooS host evidence intake preflight",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence intake preflight 只顯示主機 evidence 進人工 review 前的 metadata pointer、依賴順序、scope、owner decision、credential plaintext、raw payload 與 counter freeze 預檢;received / accepted 仍為 0,raw payload、secret value、runtime execution 與 action button 仍為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_19_iwooos_host_evidence_review_outcome_lanes",
|
||
"display_order": 48,
|
||
"completed_stage": "S2.19 IwoooS host evidence review outcome lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence review outcome lanes 只顯示主機 evidence 通過 preflight 後可能進入 ready for human review、needs scope、needs owner decision、quarantine、reject raw payload、reject credential plaintext 或 waiting runtime gate 等只讀分流;received / accepted、approval record、runtime execution 與 action button 仍全部為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_20_iwooos_host_evidence_review_handoff_packets",
|
||
"display_order": 49,
|
||
"completed_stage": "S2.20 IwoooS host evidence review handoff packets",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence review handoff packets 只顯示人工 reviewer 需要的 scope summary、owner decision、credential handling、maintenance / rollback、validation metrics、redaction attestation 與 runtime gate pointer 七個只讀交接包;received / accepted、approval record、raw payload、secret value、runtime execution 與 action button 仍全部為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_21_iwooos_host_evidence_reviewer_checklist",
|
||
"display_order": 50,
|
||
"completed_stage": "S2.21 IwoooS host evidence reviewer checklist",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence reviewer checklist 只顯示 reviewer 在 handoff packets 後需要確認的 scope boundary、owner decision、credential handling、redaction、maintenance / rollback、validation metrics 與 runtime gate separation 七個只讀檢查;received / accepted、approval record、runtime gate、raw payload、secret value、runtime execution 與 action button 仍全部為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_22_iwooos_host_evidence_reviewer_outcome_lanes",
|
||
"display_order": 51,
|
||
"completed_stage": "S2.22 IwoooS host evidence reviewer outcome lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS host evidence reviewer outcome lanes 只顯示 reviewer checklist 後可能進入 owner decision candidate、scope mismatch、owner expired、credential metadata failed、redaction failed、rollback missing 或 runtime gate required 等只讀分流;checklist passed、received / accepted、approval record、runtime gate、raw payload、secret value、runtime execution 與 action button 仍全部為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_23_iwooos_host_owner_decision_candidate_packets",
|
||
"display_order": 52,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_24_iwooos_host_owner_decision_review_checklist",
|
||
"display_order": 53,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_25_iwooos_host_owner_decision_review_outcome_lanes",
|
||
"display_order": 54,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_26_iwooos_host_owner_decision_record_draft_packets",
|
||
"display_order": 55,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_27_iwooos_host_owner_decision_record_draft_review_checklist",
|
||
"display_order": 56,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_28_iwooos_host_owner_decision_record_draft_review_outcome_lanes",
|
||
"display_order": 57,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_29_iwooos_host_owner_decision_record_writeup_packets",
|
||
"display_order": 58,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_30_iwooos_host_owner_decision_record_writeup_review_checklist",
|
||
"display_order": 59,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_31_iwooos_host_owner_decision_record_writeup_review_outcome_lanes",
|
||
"display_order": 60,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_32_iwooos_host_owner_decision_record_formal_candidate_packets",
|
||
"display_order": 61,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_33_iwooos_host_owner_decision_record_formal_candidate_review_checklist",
|
||
"display_order": 62,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_34_iwooos_host_owner_decision_record_formal_candidate_review_outcome_lanes",
|
||
"display_order": 63,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_35_iwooos_host_owner_decision_record_formal_record_queue_packets",
|
||
"display_order": 64,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_36_iwooos_host_owner_decision_record_formal_record_queue_review_checklist",
|
||
"display_order": 65,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_37_iwooos_host_owner_decision_record_formal_record_queue_review_outcome_lanes",
|
||
"display_order": 66,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_38_iwooos_host_owner_decision_record_human_handoff_readiness_packets",
|
||
"display_order": 67,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_39_iwooos_host_owner_decision_record_human_handoff_readiness_review_checklist",
|
||
"display_order": 68,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_40_iwooos_host_owner_decision_record_human_handoff_readiness_review_outcome_lanes",
|
||
"display_order": 69,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"display_order": 70,
|
||
"delta_id": "s2_41_iwooos_host_owner_decision_record_human_record_owner_review_candidate_packets",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"display_order": 71,
|
||
"delta_id": "s2_42_iwooos_host_owner_decision_record_human_record_owner_review_candidate_checklist",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"display_order": 72,
|
||
"delta_id": "s2_43_iwooos_host_owner_decision_record_human_record_owner_review_candidate_outcome_lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"display_order": 73,
|
||
"delta_id": "s2_44_iwooos_host_owner_decision_record_human_record_owner_review_preparation_packets",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_45_iwooos_host_owner_decision_record_human_record_owner_review_preparation_checklist",
|
||
"display_order": 74,
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_46_iwooos_progress_acceleration_lanes",
|
||
"display_order": 75,
|
||
"completed_stage": "S2.46 IwoooS progress acceleration lanes",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "progress acceleration lanes 只顯示 58% 為何維持與哪些高層 gate 能解鎖下一輪 progress review;owner response、runtime gate、GitHub primary readiness 與 production landing 仍未改變。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_47_iwooos_owner_response_next_action_focus",
|
||
"display_order": 76,
|
||
"completed_stage": "S2.47 IwoooS owner response next-action focus",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "owner response next-action focus 只顯示 S4.9-S4.12 收件順序與下一個 S4.9 焦點;owner response received/accepted 仍為 0,runtime gate、GitHub primary readiness 與 production landing 仍未改變。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_48_iwooos_s4_9_owner_response_preflight",
|
||
"display_order": 77,
|
||
"completed_stage": "S2.48 IwoooS S4.9 owner response preflight",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "S4.9 owner response preflight 只顯示六個收件前檢查;request sent、owner response received/accepted/rejected、audit emitted、runtime gate、Gitea write、refs mutation、GitHub primary readiness 與 production landing 仍未改變。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_49_iwooos_s4_9_owner_response_request_templates",
|
||
"display_order": 78,
|
||
"completed_stage": "S2.49 IwoooS S4.9 owner response request templates",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "S4.9 request templates 只顯示五個 request-ready-not-sent owner response templates;request sent、owner response received/accepted/rejected、audit emitted、Gitea inventory complete、Gitea write、refs mutation、GitHub primary readiness 與 production landing 仍未改變。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_50_iwooos_progress_hold_movement_gates",
|
||
"display_order": 79,
|
||
"completed_stage": "S2.50 IwoooS progress hold movement gates",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "progress hold movement gates 只顯示 58% 維持的五個實質門檻;owner response accepted、payload ingestion、active runtime gate、GitHub primary readiness、AwoooP read-only landing 都仍未改變。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_51_iwooos_awooop_read_only_landing_readiness",
|
||
"display_order": 80,
|
||
"completed_stage": "S2.51 IwoooS AwoooP read-only landing readiness",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP read-only landing readiness 只整理 production 主線接入前要消費的 snapshots、evidence refs、guard checks、route groups 與 forbidden outputs;production_landing_enabled 仍為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_52_iwooos_awooop_cross_session_handoff_packets",
|
||
"display_order": 81,
|
||
"completed_stage": "S2.52 IwoooS AwoooP cross-session handoff packets",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP cross-session handoff packets 只整理另一個 Session 接手前的 PR/branch、progress semantics、guard commands、forbidden runtime actions、read-only inputs 與下一個 coordination gate;production_landing_enabled 仍為 false。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_53_awooop_home_iwooos_security_mirror_candidate",
|
||
"display_order": 82,
|
||
"completed_stage": "S2.53 AwoooP home IwoooS security mirror candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP home IwoooS security mirror candidate 只把 IwoooS / security mirror 狀態放進 AwoooP 首頁的只讀候選面板;deployment proof、read-only consumption evidence 與 production_landing_enabled 仍未完成。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_54_awooop_work_items_iwooos_security_mirror_candidate",
|
||
"display_order": 83,
|
||
"completed_stage": "S2.54 AwoooP work-items IwoooS security mirror candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP work-items IwoooS security mirror candidate 只把 IwoooS / security mirror 狀態放進 AwoooP 工作鏈路的只讀觀察項;owner response、deployment proof、read-only consumption evidence 與 production_landing_enabled 仍未完成。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_55_awooop_approvals_iwooos_owner_response_gate_candidate",
|
||
"display_order": 84,
|
||
"completed_stage": "S2.55 AwoooP approvals IwoooS owner response gate candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP approvals IwoooS owner response gate candidate 只把 S4.9-S4.12 owner response 的下一個人工收件焦點放進 AwoooP 審批視野;owner response received/accepted 仍為 0,approval_record_created=false,runtime gate 仍未啟用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_56_awooop_contracts_iwooos_security_contract_candidate",
|
||
"display_order": 85,
|
||
"completed_stage": "S2.56 AwoooP contracts IwoooS security contract candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP contracts IwoooS security contract candidate 只把 security_mirror_status_rollup_v1、iwooos_posture_projection_v1、source_control_owner_response_validation_rollup_v1 與 security_rollout_policy_v1 放進合約儀表板只讀視野;contract_publish_authorized=false,runtime gate 仍未啟用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_57_awooop_tenants_iwooos_tenant_scope_candidate",
|
||
"display_order": 86,
|
||
"completed_stage": "S2.57 AwoooP tenants IwoooS tenant scope candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP tenants IwoooS tenant scope candidate 只把 AWOOOI 第一租戶、IwoooS security mirror、Kali 112 / Dev 168 / Dev 111 與 owner response waiting 放進租戶管理只讀視野;tenant_migration_mode_changed=false,tenant policy 仍未變更。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_58_awooop_runs_iwooos_run_state_candidate",
|
||
"display_order": 87,
|
||
"completed_stage": "S2.58 AwoooP runs IwoooS run state candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP runs IwoooS run state candidate 只把 security mirror 投影到 Run 監控只讀語境;security_run_created=false,execution_router_linked=false,runtime gate 仍未啟用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_59_existing_security_pages_iwooos_reverse_bridge",
|
||
"display_order": 88,
|
||
"completed_stage": "S2.59 existing security pages IwoooS reverse bridge",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "既有 SecurityPanel、CompliancePanel、/security 與 /compliance 只新增 IwoooS 只讀橋接;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有新增掃描、修復、批准或部署入口。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_60_security_control_pages_iwooos_reverse_bridge",
|
||
"display_order": 89,
|
||
"completed_stage": "S2.60 security control pages IwoooS reverse bridge",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "Alerts、ErrorsPanel、Authorizations 與 Governance 只新增 IwoooS 只讀橋接;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有新增告警阻擋、簽核批准、修復、部署或 runtime gate。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_61_audit_engineering_pages_iwooos_reverse_bridge",
|
||
"display_order": 90,
|
||
"completed_stage": "S2.61 audit engineering pages IwoooS reverse bridge",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "alert-operation-logs 與 code-review 只新增 IwoooS 深色只讀橋接;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有新增告警阻擋、Code Review gate、Gitea/GitHub action、修復、部署或 runtime gate。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_62_iwooos_frontend_surface_connection_board",
|
||
"display_order": 91,
|
||
"completed_stage": "S2.62 IwoooS frontend surface connection board",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 10 個既有資安入口的連接狀態板,說明 embedded bridge、direct bridge 與 AwoooP read-only candidate;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有新增授權、阻擋、掃描、修復、部署、Code Review blocker 或 Gitea/GitHub action。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_63_iwooos_github_primary_readiness_board",
|
||
"display_order": 92,
|
||
"completed_stage": "S2.63 IwoooS GitHub primary readiness board",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 GitHub Primary Readiness 狀態板,顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有建立 GitHub repo、修改 visibility、sync / delete / force push refs、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_64_awooop_work_items_github_primary_readiness_candidate",
|
||
"display_order": 93,
|
||
"completed_stage": "S2.64 AwoooP work-items GitHub primary readiness candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 工作鏈路只新增 GitHub Primary Readiness 只讀工作項,顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有建立 GitHub repo、修改 visibility、sync / delete / force push refs、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_65_awooop_contracts_github_primary_readiness_candidate",
|
||
"display_order": 94,
|
||
"completed_stage": "S2.65 AwoooP contracts GitHub primary readiness candidate",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 合約儀表板只新增 GitHub Primary Readiness 合約只讀候選,顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有建立 GitHub repo、修改 visibility、sync / delete / force push refs、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_66_awooop_approvals_github_primary_readiness_boundary",
|
||
"display_order": 95,
|
||
"completed_stage": "S2.66 AwoooP approvals GitHub primary readiness boundary",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 審批佇列只新增 GitHub Primary Readiness 審批邊界,顯示 S4.9=0/5、S4.10=0/7、S4.11=0/5、S4.12=0/5、primary_ready_count=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有建立 approval record、建立 GitHub repo、修改 visibility、sync / delete / force push refs、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_67_awooop_home_github_primary_readiness_summary",
|
||
"display_order": 96,
|
||
"completed_stage": "S2.67 AwoooP home GitHub primary readiness summary",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 首頁只新增 GitHub Primary Readiness 只讀摘要,顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有建立 GitHub repo、修改 visibility、sync / delete / force push refs、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_68_awooop_tenants_github_primary_readiness_scope",
|
||
"display_order": 97,
|
||
"completed_stage": "S2.68 AwoooP tenants GitHub primary readiness scope",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 租戶管理只新增 GitHub Primary Readiness 租戶範圍只讀面板,顯示 candidate repos=8、in-scope=7、owner response 0/22、tenant scope changes=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有變更 tenant migration mode、tenant policy、建立 GitHub repo、修改 visibility、sync / delete / force push refs、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_69_awooop_runs_github_primary_readiness_boundary",
|
||
"display_order": 98,
|
||
"completed_stage": "S2.69 AwoooP runs GitHub primary readiness boundary",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP Run 監控只新增 GitHub Primary Readiness Run 邊界只讀面板,顯示 candidate repos=8、in-scope=7、security runs=0、owner response 0/22、workflow inventory complete=0/7;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,沒有建立 platform run、接 execution router、建立 GitHub repo、修改 visibility、sync / delete / force push refs、改 workflow / secrets、收 secret value、切 primary 或停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_70_traditional_chinese_security_surface_wording_guard",
|
||
"display_order": 99,
|
||
"completed_stage": "S2.70 Traditional Chinese security surface wording guard",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "只把 IwoooS / AwoooP 資安可視區塊的使用者可見英文標籤改成繁體中文,並新增 guard 防止 GitHub readiness、owner response、runtime gate、run state、workflow inventory 等關鍵區塊退回英文文案;不新增 runtime、repo、refs、workflow、secret、Kali、GitHub primary 或 Gitea 動作。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_71_awooop_run_detail_traditional_chinese_wording_guard",
|
||
"display_order": 100,
|
||
"completed_stage": "S2.71 AwoooP run detail Traditional Chinese wording guard",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "只把 AwoooP 執行詳情、審批決策與事件證據中的使用者可見英文標籤改成繁體中文,並新增 scoped guard 防止 Trace ID、Trigger、Tool、Scope、Dry-run、Tools、Incident Evidence、Run state、audit trail 等英文文案回流;不新增 runtime、approval execution、repo、refs、workflow、secret、Kali、GitHub primary 或 Gitea 動作。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_72_awooop_home_owner_response_validation_rollup",
|
||
"display_order": 101,
|
||
"completed_stage": "S2.72 AwoooP 首頁負責人回覆驗收總覽",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 首頁只新增四包負責人回覆驗收總覽,顯示 S4.9/S4.10/S4.11/S4.12、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目與 7 條審查結果分流;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_73_awooop_work_items_owner_response_validation_candidate",
|
||
"display_order": 102,
|
||
"completed_stage": "S2.73 AwoooP 工作鏈路負責人回覆驗收只讀工作項",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 工作鏈路只新增負責人回覆驗收只讀工作項,顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由與 8 個顯示區塊;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_74_awooop_contracts_owner_response_validation_candidate",
|
||
"display_order": 103,
|
||
"completed_stage": "S2.74 AwoooP 合約儀表板負責人回覆驗收契約只讀候選",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 合約儀表板只新增負責人回覆驗收契約只讀候選,顯示四包、22 個回覆範本、已收到=0、已接受=0、8 個顯示區塊與五個合約參照;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不發布合約、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_75_awooop_approvals_owner_response_validation_boundary",
|
||
"display_order": 104,
|
||
"completed_stage": "S2.75 AwoooP 審批佇列負責人回覆驗收只讀審查邊界",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 審批佇列只新增負責人回覆驗收只讀審查邊界,顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、8 個顯示區塊與 S4.13 / S4.9-S4.12 來源收件參照;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_76_awooop_tenants_owner_response_validation_scope",
|
||
"display_order": 105,
|
||
"completed_stage": "S2.76 AwoooP 租戶管理負責人回覆驗收租戶範圍",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 租戶管理只新增負責人回覆驗收租戶範圍,顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、租戶政策變更=0、8 個顯示區塊與 S4.13 / S4.9-S4.12 來源收件參照;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不改租戶政策、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_77_awooop_runs_owner_response_validation_boundary",
|
||
"display_order": 106,
|
||
"completed_stage": "S2.77 AwoooP 執行監控負責人回覆驗收執行邊界",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 執行監控只新增負責人回覆驗收執行邊界,顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、資安執行數=0、8 個顯示區塊與 S4.13 / S4.9-S4.12 來源收件參照;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不建立平台執行、不接執行路由器、不建立審批紀錄、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_78_awooop_run_detail_owner_response_validation_boundary",
|
||
"display_order": 107,
|
||
"completed_stage": "S2.78 AwoooP 執行詳情負責人回覆驗收詳情邊界",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 執行詳情只新增負責人回覆驗收詳情邊界,顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、驗收執行=0、8 個顯示區塊與 S4.13 / S4.9-S4.12 來源收件參照;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不建立審批紀錄、不啟動 MCP 或補救、不建立平台執行、不接執行路由器、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_79_awooop_approval_detail_owner_response_validation_boundary",
|
||
"display_order": 108,
|
||
"completed_stage": "S2.79 AwoooP 審批決策負責人回覆驗收審批邊界",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "AwoooP 審批決策只新增負責人回覆驗收審批邊界,顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、審批接受=0、8 個顯示區塊與 S4.13 / S4.9-S4.12 來源收件參照;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不標記負責人回覆已收到 / 已接受、不把審批決策當負責人回覆接受、不建立專案庫、不改分支 / 標籤參照、不改工作流程 / 機密設定、不收機密明文值、不切主要來源、不停用 Gitea。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_80_iwooos_awooop_route_coverage_board",
|
||
"display_order": 109,
|
||
"completed_stage": "S2.80 IwoooS AwoooP 資安入口覆蓋狀態板",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 AwoooP 資安入口覆蓋狀態板,顯示 8 個 AwoooP 實際入口、8 個已覆蓋、執行期閘門=0、執行按鈕=0,並把 S2.72-S2.79 的只讀入口串成可讀地圖;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把入口覆蓋當審批、負責人回覆接受、專案庫、分支 / 標籤參照、工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_81_iwooos_gradual_convergence_roadmap",
|
||
"display_order": 110,
|
||
"completed_stage": "S2.81 IwoooS 階段式資安收斂節奏圖",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增階段式資安收斂節奏圖,明確顯示初期先可視、只提醒、不阻擋,並把入口覆蓋 8/8、負責人回覆已接受=0、脫敏證據匯入=0、人工決策=0、執行期閘門=0、主要來源切換=0 排成逐步收斂路線;phase_tightening_mode=gradual、initial_enforcement_level=observe_warn_only、blocking_controls_enabled=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把收斂節奏圖當阻擋型控制、Kali / SSH / 主機更新、專案庫、分支 / 標籤參照、工作流程 / 機密設定、主要來源切換或 Gitea 停用授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_82_iwooos_owner_response_collection_board",
|
||
"display_order": 111,
|
||
"completed_stage": "S2.82 IwoooS 下一步人工收件作戰板",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增下一步人工收件作戰板,顯示 S4.9-S4.12 四個負責人回覆收件包、22 個必備回覆範本、已收到=0、已接受=0、已拒收=0,讓 58% 下一步高層門檻可見;owner_response_collection_mode=human_intake_only、response_packet_created=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把收件作戰板當寄送、收件完成、接受、審批、專案庫、分支 / 標籤參照、工作流程 / 機密設定或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_83_iwooos_owner_response_intake_safety_board",
|
||
"display_order": 112,
|
||
"completed_stage": "S2.83 IwoooS 人工回覆安全驗收閘道",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工回覆安全驗收閘道,顯示 6 條收件後可收、補證、隔離與拒收分流,並固定已匯入=0、已隔離=0、已拒收=0;owner_response_auto_accept_allowed=false、owner_response_secret_value_quarantine_required=true、owner_response_mutation_request_allowed=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把驗收閘道當自動接受、正式匯入、資安審批、機密明文收集、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_84_iwooos_owner_response_review_outcome_board",
|
||
"display_order": 113,
|
||
"completed_stage": "S2.84 IwoooS 人工回覆審查結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工回覆審查結果分流,顯示 7 條安全驗收後可能結果:維持等待、要求補證、可進人工審查、隔離、拒收、只讀更新與需要人工決策,並固定可審=0、已接受=0、執行期閘門=0;owner_response_review_auto_decision_allowed=false、owner_response_review_human_decision_required=true、owner_response_review_only_updates_readonly_state=true、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把審查結果分流當自動決策、接受、批准、正式匯入、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_85_iwooos_owner_response_human_decision_queue_board",
|
||
"display_order": 114,
|
||
"completed_stage": "S2.85 IwoooS 人工決策準備佇列",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策準備佇列,顯示 6 個決策前置項目:決策包草稿、證據追溯包、審查人指派、回滾窗口候選、執行期閘門分離與主要來源切換分離,並固定可決策=0、已批准=0、執行期閘門=0;owner_response_human_decision_record_created=false、owner_response_human_decision_auto_approval_allowed=false、owner_response_human_decision_requires_reviewer=true、owner_response_human_decision_only_prepares_packet=true、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把人工決策準備佇列當人工批准、正式決策、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_86_iwooos_owner_response_decision_record_draft_guard_board",
|
||
"display_order": 115,
|
||
"completed_stage": "S2.86 IwoooS 人工決策紀錄草稿防誤用",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策紀錄草稿防誤用看板,顯示 6 條草稿保護線:紀錄身分草稿、決策範圍快照、審查角色預留、證據版本凍結、批准不等於執行、後續執行期指標,並固定草稿=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_decision_record_draft_only=true、owner_response_decision_record_write_authorized=false、owner_response_decision_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把紀錄草稿當正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_87_iwooos_owner_response_formal_record_candidate_preflight_board",
|
||
"display_order": 116,
|
||
"completed_stage": "S2.87 IwoooS 人工決策正式紀錄候選預檢",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄候選預檢看板,顯示 7 個候選完整性檢查:候選身分追溯、審查人身分邊界、證據版本鏈、範圍與期限、風險與回滾欄位、執行期分離與主要來源分離,並固定候選=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_candidate_only=true、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把正式紀錄候選當正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_88_iwooos_owner_response_formal_record_candidate_outcome_board",
|
||
"display_order": 117,
|
||
"completed_stage": "S2.88 IwoooS 人工決策正式紀錄候選結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄候選結果分流看板,顯示 8 條候選分流:維持候選等待、退回草稿補齊、要求證據更新、要求審查說明、可交紀錄負責人、隔離敏感載荷、拒收變更要求、另開執行或切換閘門,並固定可交接=0、已升格=0、執行期閘門=0;owner_response_formal_record_candidate_review_only=true、owner_response_formal_record_auto_promotion_allowed=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把候選分流當正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_89_iwooos_owner_response_formal_record_owner_handoff_board",
|
||
"display_order": 118,
|
||
"completed_stage": "S2.89 IwoooS 人工決策正式紀錄負責人交接準備",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人交接準備看板,顯示 7 個交接包:身分追溯包、決策脈絡包、證據鎖定包、審查備註包、風險回滾包、執行期閘門指標包、主要來源指標包,並固定可交接=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_handoff_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把交接準備當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_90_iwooos_owner_response_formal_record_owner_handoff_review_board",
|
||
"display_order": 119,
|
||
"completed_stage": "S2.90 IwoooS 人工決策正式紀錄負責人交接驗收清單",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人交接驗收清單,顯示 7 個只讀驗收項:交接包完整性、負責人身分範圍、權責邊界比對、證據版本確認、審查備註確認、變更要求拒收檢查、執行與切換分離,並固定通過=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_handoff_review_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把交接驗收當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_91_iwooos_owner_response_formal_record_owner_handoff_review_outcome_board",
|
||
"display_order": 120,
|
||
"completed_stage": "S2.91 IwoooS 人工決策正式紀錄負責人交接驗收結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人交接驗收結果分流看板,顯示 8 條只讀結果分流:維持驗收等待、要求補齊交接包、要求負責人範圍說明、要求證據版本更新、可進負責人檢查、隔離敏感載荷、拒收變更要求、另開執行或切換閘門,並固定可進檢查=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_handoff_review_outcome_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把交接驗收結果分流當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_92_iwooos_owner_response_formal_record_owner_review_preparation_board",
|
||
"display_order": 121,
|
||
"completed_stage": "S2.92 IwoooS 人工決策正式紀錄負責人檢查準備包",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人檢查準備包看板,顯示 8 個只讀準備包:檢查身分包、交接結果快照、負責人範圍包、權責邊界包、證據追溯包、審查備註包、變更拒收包、執行切換指標包,並固定可檢查=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_review_preparation_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把負責人檢查準備包當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_93_iwooos_owner_response_formal_record_owner_review_checklist_board",
|
||
"display_order": 122,
|
||
"completed_stage": "S2.93 IwoooS 人工決策正式紀錄負責人檢查清單",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人檢查清單看板,顯示 8 個只讀檢查項:身分追溯檢查、交接結果檢查、負責人範圍檢查、權責邊界檢查、證據追溯檢查、審查備註檢查、變更拒收檢查、執行切換分離檢查,並固定通過=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_review_checklist_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把負責人檢查清單當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_94_iwooos_owner_response_formal_record_owner_review_outcome_board",
|
||
"display_order": 123,
|
||
"completed_stage": "S2.94 IwoooS 人工決策正式紀錄負責人檢查結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人檢查結果分流看板,顯示 8 條只讀結果分流:維持負責人檢查等待、要求追溯鏈補齊、要求負責人範圍說明、要求權責邊界修正、可進人工指派確認、隔離敏感載荷、拒收變更要求、另開執行或主要來源閘門,並固定可進人工指派確認=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_review_outcome_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把負責人檢查結果分流當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_95_iwooos_owner_response_formal_record_owner_assignment_preparation_board",
|
||
"display_order": 124,
|
||
"completed_stage": "S2.95 IwoooS 人工決策正式紀錄負責人指派確認準備包",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人指派確認準備包看板,顯示 8 個只讀準備包:指派身分候選包、負責人範圍確認包、權責邊界確認包、證據追溯確認包、審查結果引用包、代理與備援說明包、變更要求拒收確認包、執行與主要來源分離包,並固定可確認=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_assignment_preparation_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把指派確認準備包當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_96_iwooos_owner_response_formal_record_owner_assignment_checklist_board",
|
||
"display_order": 125,
|
||
"completed_stage": "S2.96 IwoooS 人工決策正式紀錄負責人指派確認清單",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人指派確認清單看板,顯示 8 個只讀確認檢查:指派身分可讀檢查、負責人範圍有效檢查、權責邊界可讀檢查、證據追溯可讀檢查、審查結果引用檢查、代理與備援說明檢查、變更要求拒收檢查、執行與主要來源分離檢查,並固定通過=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_assignment_checklist_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把指派確認清單當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_97_iwooos_owner_response_formal_record_owner_assignment_outcome_board",
|
||
"display_order": 126,
|
||
"completed_stage": "S2.97 IwoooS 人工決策正式紀錄負責人指派確認結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人指派確認結果分流看板,顯示 8 條只讀結果分流:維持指派確認等待、要求身分說明補齊、要求負責人範圍更新、要求權責邊界修正、可進人工指派決策、隔離敏感載荷、拒收變更要求、另開執行或主要來源閘門,並固定可進人工指派決策=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_assignment_outcome_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把指派確認結果分流當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_98_iwooos_owner_response_formal_record_owner_assignment_decision_preparation_board",
|
||
"display_order": 127,
|
||
"completed_stage": "S2.98 IwoooS 人工決策正式紀錄負責人指派決策準備包",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人指派決策準備包看板,顯示 8 個只讀準備包:結果分流追溯包、負責人身分包、範圍快照包、權責邊界包、證據審查包、隔離與例外包、變更拒收包、執行與主要來源閘門包,並固定可進決策=0、已決策=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_assignment_decision_preparation_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把指派決策準備包當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_99_iwooos_owner_response_formal_record_owner_assignment_decision_checklist_board",
|
||
"display_order": 128,
|
||
"completed_stage": "S2.99 IwoooS 人工決策正式紀錄負責人指派決策檢查清單",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增人工決策正式紀錄負責人指派決策檢查清單看板,顯示 8 個只讀檢查項:決策追溯可讀檢查、負責人身分可確認檢查、範圍快照有效檢查、權責邊界已檢查、證據鏈可讀檢查、隔離與例外已檢查、變更拒收已檢查、執行與主要來源分離檢查,並固定通過=0、已決策=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_assignment_decision_checklist_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把指派決策檢查清單當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_100_iwooos_headline_movement_acceptance_gate_board",
|
||
"display_order": 129,
|
||
"completed_stage": "S2.100 IwoooS 58% 重估驗收閘門",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 58% 重估驗收閘門看板,顯示 S4.9 負責人回覆驗收、脫敏 payload 匯入驗收、執行期閘門人工批准、GitHub 主要來源就緒證據、AwoooP 正式只讀消費證據與下一次 headline review record 六個只讀判定項;headline_percent_after_this_stage=58、headline_movement_signal_count=0、owner_response_received_count=0、owner_response_accepted_count=0、owner_response_acceptance_gate_open=false、redacted_payload_ingested=false、active_runtime_gate_count=0、github_primary_ready_count=0、production_landing_enabled=false、progress_review_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false,不把重估閘門看板當負責人回覆已收到 / 已接受、脫敏匯入完成、人工批准、審批紀錄、執行期閘門、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或正式落地。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_101_iwooos_s49_owner_response_work_order_board",
|
||
"display_order": 130,
|
||
"completed_stage": "S2.101 IwoooS S4.9 Owner Response 人工收件工作單",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 S4.9 Owner Response 人工收件工作單看板,顯示 public-only / local gap 回覆、Gitea wooo endpoint 身分回覆、110 adjacent source scope 回覆、repo owner / canonical scope 回覆、legacy / inaccessible disposition 回覆五個收件項,並固定每項必填欄位=6、已收到=0、已接受=0、已拒收=0;s4_9_owner_response_request_sent=false、s4_9_owner_response_intake_open=false、owner_response_acceptance_gate_open=false、audit_events_emitted=0、progress_review_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把人工收件工作單當 request sent、owner response received / accepted、audit event emitted、progress review、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_102_iwooos_s49_owner_response_envelope_board",
|
||
"display_order": 131,
|
||
"completed_stage": "S2.102 IwoooS S4.9 負責人回覆封套欄位",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 S4.9 負責人回覆封套欄位看板,顯示負責人角色 / 團隊、判定 / 處置、判定理由、受影響範圍、脫敏證據參照、後續負責人六個只讀必填欄位,並固定已填=0、已提交=0、已接受=0、已拒收=0;s4_9_owner_response_request_sent=false、s4_9_owner_response_received_count=0、s4_9_owner_response_accepted_count=0、owner_response_acceptance_gate_open=false、audit_events_emitted=0、progress_review_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把回覆封套欄位當 request sent、owner response submitted / received / accepted、audit event emitted、progress review、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_103_iwooos_s49_owner_response_envelope_preflight_board",
|
||
"display_order": 132,
|
||
"completed_stage": "S2.103 IwoooS S4.9 負責人回覆封套送件前檢查",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 S4.9 負責人回覆封套送件前檢查看板,顯示六欄完整檢查、判定值允許檢查、脫敏證據檢查、範圍追溯檢查、變更要求拒收檢查與後續負責人追溯檢查六個只讀檢查項,並固定通過=0、可送件=0、已提交=0、已接受=0;s4_9_owner_response_envelope_preflight_check_count=6、s4_9_owner_response_envelope_preflight_passed_count=0、s4_9_owner_response_envelope_ready_to_submit_count=0、s4_9_owner_response_envelope_submitted_count=0、s4_9_owner_response_envelope_accepted_count=0、s4_9_owner_response_request_sent=false、owner_response_acceptance_gate_open=false、audit_events_emitted=0、progress_review_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把送件前檢查當 request sent、owner response submitted / received / accepted、audit event emitted、progress review、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_104_iwooos_s49_owner_response_envelope_preflight_outcome_board",
|
||
"display_order": 133,
|
||
"completed_stage": "S2.104 IwoooS S4.9 負責人回覆封套送件前結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 S4.9 負責人回覆封套送件前結果分流看板,顯示維持封套等待、要求補齊欄位、要求修正判定、隔離敏感證據、要求修正範圍、拒收變更要求與維持後續負責人等待七條只讀分流,並固定可進收件=0、已隔離=0、已拒收=0、已提交=0、已接受=0;s4_9_owner_response_envelope_preflight_outcome_lane_count=7、s4_9_owner_response_envelope_preflight_ready_for_intake_count=0、s4_9_owner_response_envelope_preflight_quarantined_count=0、s4_9_owner_response_envelope_preflight_rejected_count=0、s4_9_owner_response_envelope_submitted_count=0、s4_9_owner_response_envelope_accepted_count=0、s4_9_owner_response_request_sent=false、owner_response_acceptance_gate_open=false、audit_events_emitted=0、progress_review_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把送件前結果分流當 request sent、owner response submitted / received / accepted、audit event emitted、progress review、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_105_iwooos_s49_owner_response_request_draft_board",
|
||
"display_order": 134,
|
||
"completed_stage": "S2.105 IwoooS S4.9 負責人回覆送件請求草稿",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 S4.9 負責人回覆送件請求草稿看板,顯示收件範圍對應草稿、負責人收件對象草稿、脫敏證據參照草稿、禁止變更條款草稿、稽核事件範本草稿與人工送件閘門草稿六個只讀草稿項,並固定可送件=0、已送出=0、稽核事件=0;s4_9_owner_response_request_draft_item_count=6、s4_9_owner_response_request_draft_ready_count=0、s4_9_owner_response_request_dispatch_authorized=false、s4_9_owner_response_request_sent=false、s4_9_owner_response_request_sent_count=0、s4_9_owner_response_request_recipients_confirmed_count=0、s4_9_owner_response_request_audit_events_emitted=0、owner_response_acceptance_gate_open=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把送件請求草稿當 request sent、owner response received / accepted、audit event emitted、人工批准、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_106_iwooos_s49_owner_response_dispatch_flow_board",
|
||
"display_order": 135,
|
||
"completed_stage": "S2.106 IwoooS S4.9 負責人回覆送件鏈路摘要",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 S4.9 負責人回覆送件鏈路摘要,將人工收件工作單、回覆封套欄位、送件前檢查、結果分流、送件請求草稿與人工送件閘門整理成六段專業只讀流程,並固定目前焦點=request_draft、已送出=0、已接受=0;s4_9_owner_response_dispatch_flow_step_count=6、s4_9_owner_response_dispatch_flow_current_step=request_draft、s4_9_owner_response_dispatch_flow_completed_count=0、s4_9_owner_response_request_sent=false、s4_9_owner_response_request_dispatch_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把送件鏈路摘要當 request sent、owner response received / accepted、audit event emitted、人工批准、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換或執行期授權。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_107_security_compliance_iwooos_frontstage_bridge",
|
||
"display_order": 136,
|
||
"completed_stage": "S2.107 前台安全合規 IwoooS 整合入口",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增前台安全合規整合判定,保留 /security-compliance 作為既有安全監控與合規統計入口,並把它橋接到 IwoooS 作為資安網總覽與唯一姿態來源;security_compliance_route_preserved=true、security_compliance_removed=false、security_compliance_integration_mode=iwooos_frontstage_bridge、iwooos_authoritative_security_entry=true、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,不把前台入口整合當 runtime 授權、審批、掃描、修復、部署、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_108_iwooos_frontstage_security_entry_roles",
|
||
"display_order": 137,
|
||
"completed_stage": "S2.108 IwoooS 前台資安入口角色分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增前台資安入口角色分流,將 IwoooS、/security-compliance、/security、/compliance、/awooop/approvals 五個入口的使用情境與邊界說清楚;frontstage_security_entry_role_count=5、frontstage_security_primary_entry=iwooos、frontstage_security_familiar_entry=security_compliance、frontstage_security_execution_entry_count=0、frontstage_security_action_buttons_allowed=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把入口分流當 runtime 授權、審批、掃描、修復、部署、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_109_security_compliance_frontstage_route_role_map",
|
||
"display_order": 138,
|
||
"completed_stage": "S2.109 安全合規前台入口角色對照",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "安全合規只新增前台入口角色對照,讓使用者從 /security-compliance 也能看懂 IwoooS、/security-compliance、/security、/compliance、/awooop/approvals 五個入口各自用途;security_compliance_frontstage_route_role_count=5、security_compliance_frontstage_primary_source=iwooos、security_compliance_frontstage_execution_entry_count=0、security_compliance_frontstage_links_read_only=true、runtime_execution_authorized=false、active_runtime_gate_count=0,不把入口對照當 runtime 授權、審批、掃描、修復、部署、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_110_security_compliance_low_friction_rollout_ladder",
|
||
"display_order": 139,
|
||
"completed_stage": "S2.110 安全合規低摩擦分階段收斂",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "安全合規只新增低摩擦分階段收斂階梯,顯示 observe_first、補齊證據、人工審查、批准後開閘、逐步收嚴五段;security_compliance_rollout_phase_count=5、security_compliance_rollout_current_phase=observe_first、security_compliance_rollout_runtime_phase_enabled=false、security_compliance_rollout_enforcement_enabled=false、security_compliance_rollout_action_buttons_allowed=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把分階段收斂視覺化當 runtime 授權、審批、掃描、修復、部署、硬性阻擋控制、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_111_iwooos_low_friction_rollout_ladder",
|
||
"display_order": 140,
|
||
"completed_stage": "S2.111 IwoooS 低摩擦分階段收斂主控",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增低摩擦分階段收斂主控,將安全合規 S2.110 的 observe-first 策略同步到主入口,顯示觀測與盤點、補齊證據、人工審查、批准後開閘、逐步收嚴五段;iwooos_rollout_phase_count=5、iwooos_rollout_current_phase=observe_first、iwooos_rollout_frontstage_source=security_compliance_s2_110、iwooos_rollout_runtime_phase_enabled=false、iwooos_rollout_enforcement_enabled=false、iwooos_rollout_action_buttons_allowed=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把主控視覺化當 runtime 授權、審批、掃描、修復、部署、硬性阻擋控制、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_112_iwooos_low_friction_next_action_boundary",
|
||
"display_order": 141,
|
||
"completed_stage": "S2.112 IwoooS 低摩擦下一步行動邊界",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增低摩擦下一步行動邊界,把目前可做的只讀盤點、脫敏證據包、人工審查準備與仍禁止的執行期動作拆開;iwooos_next_action_item_count=4、iwooos_next_action_allowed_mode=observe_and_evidence_only、iwooos_next_action_runtime_gate_required=true、iwooos_next_action_scan_authorized=false、iwooos_next_action_host_change_authorized=false、iwooos_next_action_deploy_authorized=false、iwooos_next_action_source_control_mutation_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把下一步行動邊界當 runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_113_iwooos_progress_movement_signal_strip",
|
||
"display_order": 142,
|
||
"completed_stage": "S2.113 IwoooS 58% 進度移動訊號驗收條",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增 58% 進度移動訊號驗收條,把真正會讓 headline 往前的負責人回覆接受、脫敏證據匯入、執行期閘門、GitHub 主要來源就緒與 AwoooP 落地證據拆成五個可見訊號;iwooos_progress_movement_signal_count=5、iwooos_progress_current_headline_percent=58、iwooos_progress_owner_response_accepted_count=0、iwooos_progress_redacted_payload_ingested=false、iwooos_progress_active_runtime_gate_count=0、iwooos_progress_github_primary_ready_count=0、iwooos_progress_awooop_landing_evidence_count=0、iwooos_progress_review_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把訊號驗收條當進度灌水、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_114_iwooos_first_progress_unlock_path",
|
||
"display_order": 143,
|
||
"completed_stage": "S2.114 IwoooS 第一個進度解鎖路徑",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一個進度解鎖路徑,把 58% 下一個可能真正前進的 S4.9 負責人回覆收斂為收到負責人回覆、補齊脫敏證據參照、通過收件預檢、審查接受、成為進度審查候選五步;iwooos_first_unlock_path_step_count=5、iwooos_first_unlock_path_current_focus=s4_9_owner_response、iwooos_first_unlock_path_owner_response_received_count=0、iwooos_first_unlock_path_owner_response_accepted_count=0、iwooos_first_unlock_path_redacted_evidence_pointer_count=0、iwooos_first_unlock_path_intake_preflight_passed_count=0、iwooos_first_unlock_path_headline_review_authorized=false、iwooos_first_unlock_path_runtime_gate_opened=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把第一解鎖路徑當送件完成、回覆已收到、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_115_iwooos_first_unlock_evidence_packet",
|
||
"display_order": 144,
|
||
"completed_stage": "S2.115 IwoooS 第一解鎖證據包",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包,把 S4.9 要讓 58% 真正前進所需的負責人判定 metadata、範圍與來源參照、脫敏聲明、收件預檢軌跡、審查接受摘要收斂成五個欄位;iwooos_first_unlock_evidence_packet_slot_count=5、iwooos_first_unlock_evidence_packet_current_focus=s4_9_owner_response、iwooos_first_unlock_evidence_packet_filled_count=0、iwooos_first_unlock_evidence_packet_accepted_count=0、iwooos_first_unlock_evidence_packet_redacted_pointer_required=true、iwooos_first_unlock_evidence_packet_raw_payload_allowed=false、iwooos_first_unlock_evidence_packet_secret_value_allowed=false、iwooos_first_unlock_evidence_packet_headline_review_authorized=false、iwooos_first_unlock_evidence_packet_runtime_gate_opened=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把證據包欄位定義當送件完成、回覆已收到、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_116_iwooos_first_unlock_evidence_packet_preflight_outcomes",
|
||
"display_order": 145,
|
||
"completed_stage": "S2.116 IwoooS 第一解鎖證據包預檢分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包預檢分流,把可進審查、補 owner metadata、補範圍參照、隔離 raw payload、拒收機密值、等待 reviewer 六種結果拆開;iwooos_first_unlock_evidence_packet_preflight_outcome_lane_count=6、iwooos_first_unlock_evidence_packet_preflight_ready_for_review_count=0、iwooos_first_unlock_evidence_packet_preflight_needs_supplement_count=0、iwooos_first_unlock_evidence_packet_preflight_quarantined_count=0、iwooos_first_unlock_evidence_packet_preflight_rejected_count=0、iwooos_first_unlock_evidence_packet_review_accepted_count=0、iwooos_first_unlock_evidence_packet_headline_review_authorized=false、iwooos_first_unlock_evidence_packet_runtime_gate_opened=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把預檢分流當證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_117_iwooos_first_unlock_evidence_packet_supplement_path",
|
||
"display_order": 146,
|
||
"completed_stage": "S2.117 IwoooS 第一解鎖證據包補件路徑",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包補件路徑,把補 owner metadata、補範圍參照、補脫敏聲明、補預檢軌跡、等待 reviewer queue 五步拆開;iwooos_first_unlock_evidence_packet_supplement_path_step_count=5、iwooos_first_unlock_evidence_packet_supplement_current_focus=owner_metadata_and_scope_refs、iwooos_first_unlock_evidence_packet_supplement_ready_count=0、iwooos_first_unlock_evidence_packet_supplement_submitted_count=0、iwooos_first_unlock_evidence_packet_supplement_accepted_count=0、iwooos_first_unlock_evidence_packet_supplement_blocked_count=0、iwooos_first_unlock_evidence_packet_supplement_quarantined_count=0、iwooos_first_unlock_evidence_packet_supplement_request_sent=false、iwooos_first_unlock_evidence_packet_supplement_raw_payload_allowed=false、iwooos_first_unlock_evidence_packet_supplement_secret_value_allowed=false、iwooos_first_unlock_evidence_packet_headline_review_authorized=false、iwooos_first_unlock_evidence_packet_runtime_gate_opened=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把補件路徑當 request sent、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_118_iwooos_first_unlock_evidence_packet_supplement_pre_review",
|
||
"display_order": 147,
|
||
"completed_stage": "S2.118 IwoooS 第一解鎖證據包補件送審前檢查",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包補件送審前檢查,把 owner metadata 完整、範圍參照可追溯、脫敏聲明成立、預檢軌跡附上、禁止變更條款維持、reviewer queue 未開六項拆開;iwooos_first_unlock_evidence_packet_supplement_pre_review_check_count=6、iwooos_first_unlock_evidence_packet_supplement_pre_review_current_focus=supplement_pre_review、iwooos_first_unlock_evidence_packet_supplement_pre_review_passed_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_failed_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_ready_for_review_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_queue_open=false、iwooos_first_unlock_evidence_packet_supplement_request_sent=false、iwooos_first_unlock_evidence_packet_supplement_submitted_count=0、iwooos_first_unlock_evidence_packet_supplement_accepted_count=0、iwooos_first_unlock_evidence_packet_supplement_raw_payload_allowed=false、iwooos_first_unlock_evidence_packet_supplement_secret_value_allowed=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把送審前檢查當 request sent、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_119_iwooos_first_unlock_evidence_packet_supplement_pre_review_outcomes",
|
||
"display_order": 148,
|
||
"completed_stage": "S2.119 IwoooS 第一解鎖證據包補件送審結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包補件送審結果分流,把可排入 reviewer queue、退回補件、隔離敏感材料、拒收變更要求、維持佇列未開、等待 reviewer 指派六條結果拆開;iwooos_first_unlock_evidence_packet_supplement_pre_review_outcome_lane_count=6、iwooos_first_unlock_evidence_packet_supplement_pre_review_ready_for_queue_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_returned_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_quarantined_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_rejected_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_reviewer_assigned_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_queue_open=false、iwooos_first_unlock_evidence_packet_supplement_request_sent=false、iwooos_first_unlock_evidence_packet_supplement_submitted_count=0、iwooos_first_unlock_evidence_packet_supplement_accepted_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把結果分流當 queue 已開、request sent、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_120_iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation",
|
||
"display_order": 149,
|
||
"completed_stage": "S2.120 IwoooS 第一解鎖證據包 reviewer 指派準備包",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包 reviewer 指派準備包,把佇列狀態凍結、reviewer 角色邊界、範圍包、證據索引、衝突揭露、指派稽核草稿六個準備包拆開;iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation_packet_count=6、iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation_current_focus=reviewer_assignment_preparation、iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation_ready_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation_reviewer_candidate_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation_reviewer_assigned_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation_audit_event_emitted=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_ready_for_queue_count=0、iwooos_first_unlock_evidence_packet_supplement_pre_review_queue_open=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把指派準備包當 reviewer candidate 已成立、queue 已開、reviewer 已指派、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_121_iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight",
|
||
"display_order": 150,
|
||
"completed_stage": "S2.121 IwoooS 第一解鎖證據包 reviewer 指派前檢查",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包 reviewer 指派前檢查,把佇列仍關閉、角色邊界可追溯、範圍包可追溯、證據索引已脫敏、衝突揭露已釐清、稽核草稿只含 metadata 六項拆開;iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_check_count=6、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_current_focus=reviewer_assignment_preflight、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_passed_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_failed_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_ready_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_reviewer_candidate_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_reviewer_assigned_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_queue_open=false、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_audit_event_emitted=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把指派前檢查當 reviewer candidate 已成立、queue 已開、reviewer 已指派、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_122_iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcomes",
|
||
"display_order": 151,
|
||
"completed_stage": "S2.122 IwoooS 第一解鎖證據包 reviewer 指派前檢查結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增第一解鎖證據包 reviewer 指派前檢查結果分流,把維持佇列關閉、退回角色邊界、退回範圍包、隔離未脫敏證據、暫停衝突揭露、保留 metadata-only 稽核草稿六條拆開;iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_lane_count=6、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_current_focus=reviewer_assignment_preflight_outcomes、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_ready_for_candidate_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_returned_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_quarantined_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_conflict_hold_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcome_audit_event_emitted=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_reviewer_candidate_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_reviewer_assigned_count=0、iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_queue_open=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把結果分流當 reviewer candidate 已成立、queue 已開、reviewer 已指派、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更、專案庫建立、refs sync、workflow 修改、GitHub primary 切換或 Gitea 停用。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_123_iwooos_concrete_security_work_map",
|
||
"display_order": 152,
|
||
"completed_stage": "S2.123 IwoooS 目前具體工作地圖",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增目前具體工作地圖,把前台資安入口與使用者可視化、主機與範圍盤點框架、GitHub/Gitea 版本來源遷移準備、S4.9 負責人回覆與脫敏證據收件、reviewer/人工審查流程、runtime 掃描修復部署與主機變更六條具體工作流拆開;iwooos_concrete_security_workstream_count=6、iwooos_concrete_security_visible_workstream_count=6、iwooos_concrete_security_framework_only_stream_count=6、iwooos_concrete_security_runtime_workstream_count=0、iwooos_concrete_security_next_real_gate=s4_9_owner_response_accepted、iwooos_concrete_security_owner_response_received_count=0、iwooos_concrete_security_owner_response_accepted_count=0、iwooos_concrete_security_redacted_payload_ingested=false、iwooos_concrete_security_active_runtime_gate_count=0、iwooos_concrete_security_github_primary_ready_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把具體工作地圖當 owner response 已收到、證據已接受、runtime gate、Kali 掃描、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_124_iwooos_concrete_security_delivery_checklist",
|
||
"display_order": 153,
|
||
"completed_stage": "S2.124 IwoooS 目前具體交付清單",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增目前具體交付清單,把 IwoooS 前台可見工作台、主機範圍與證據欄位、GitHub/Gitea 遷移證據、S4.9 第一解鎖證據包、人工 reviewer 準備序列、runtime 開閘條件六項拆開;iwooos_concrete_security_delivery_item_count=6、iwooos_concrete_security_delivery_visible_item_count=6、iwooos_concrete_security_delivery_framework_only_count=6、iwooos_concrete_security_delivery_runtime_item_count=0、iwooos_concrete_security_delivery_next_owner_evidence=s4_9_owner_response、iwooos_concrete_security_delivery_ready_for_runtime_count=0、iwooos_concrete_security_delivery_evidence_received_count=0、iwooos_concrete_security_delivery_evidence_accepted_count=0、iwooos_concrete_security_delivery_reviewer_queue_open=false、iwooos_concrete_security_delivery_git_primary_ready=false、iwooos_concrete_security_delivery_kali_execution_ready=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把交付清單當 owner response 已收到、證據已接受、reviewer queue 已開、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_125_iwooos_concrete_security_blocker_resolution",
|
||
"display_order": 154,
|
||
"completed_stage": "S2.125 IwoooS 目前阻塞與解除條件",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增目前阻塞與解除條件,把 S4.9 owner response 尚未收到、脫敏證據參照尚未成立、reviewer queue 仍關閉、GitHub primary readiness 未成立、主機證據仍待收件、runtime gate 未開六個阻塞拆開;iwooos_concrete_security_blocker_count=6、iwooos_concrete_security_visible_blocker_count=6、iwooos_concrete_security_headline_blocker_count=6、iwooos_concrete_security_blocker_resolved_count=0、iwooos_concrete_security_first_resolvable_blocker=s4_9_owner_response_missing、iwooos_concrete_security_owner_response_required=true、iwooos_concrete_security_redacted_evidence_required=true、iwooos_concrete_security_reviewer_queue_open=false、iwooos_concrete_security_github_primary_ready=false、iwooos_concrete_security_kali_execution_ready=false、iwooos_concrete_security_runtime_gate_open=false、runtime_execution_authorized=false、active_runtime_gate_count=0,不把阻塞解除圖當 owner response 已收到、證據已接受、reviewer queue 已開、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_126_iwooos_three_axis_product_progress",
|
||
"display_order": 155,
|
||
"completed_stage": "S2.126 IwoooS 三軸進度與全產品套用範圍",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增三軸進度與全產品套用範圍,把整體加權 58%、框架建置 86-88%、落地執行 35-40% 與所有產品先套只讀治理拆開顯示;iwooos_three_axis_progress_headline_percent=58、iwooos_three_axis_progress_framework_percent=86-88、iwooos_three_axis_progress_runtime_percent=35-40、iwooos_three_axis_progress_product_scope_count=6、iwooos_three_axis_progress_all_products_read_only=true、iwooos_three_axis_progress_runtime_product_rollout_count=0、iwooos_three_axis_progress_first_runtime_gate=s4_9_owner_response_accepted、iwooos_three_axis_progress_owner_response_accepted_count=0、iwooos_three_axis_progress_active_runtime_gate_count=0、iwooos_three_axis_progress_production_deploy_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把全產品三軸進度當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_127_iwooos_product_rollout_wave_ledger",
|
||
"display_order": 156,
|
||
"completed_stage": "S2.127 IwoooS 全產品分階段套用台帳",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品分階段套用台帳,把核心產品、公開網站、版本來源、主機覆蓋、監控工具與未來產品拆成六個 read-only rollout waves;iwooos_product_rollout_wave_count=6、iwooos_product_rollout_all_products_count=6、iwooos_product_rollout_current_wave=read_only_visibility、iwooos_product_rollout_runtime_wave_count=0、iwooos_product_rollout_enforcement_wave_count=0、iwooos_product_rollout_owner_response_accepted_count=0、iwooos_product_rollout_active_runtime_gate_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把全產品 rollout 台帳當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_128_iwooos_product_rollout_acceptance_gates",
|
||
"display_order": 157,
|
||
"completed_stage": "S2.128 IwoooS 全產品 rollout 波次驗收門檻",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品 rollout 波次驗收門檻,把只讀可視證據、負責人證據、脫敏審查、版本來源證明、主機安全窗口與 rollback / disable 條件拆成六個 gates;iwooos_product_rollout_acceptance_gate_count=6、iwooos_product_rollout_acceptance_current_stage=read_only_acceptance、iwooos_product_rollout_acceptance_passed_count=0、iwooos_product_rollout_acceptance_owner_response_received_count=0、iwooos_product_rollout_acceptance_owner_response_accepted_count=0、iwooos_product_rollout_acceptance_runtime_gate_open=false、iwooos_product_rollout_acceptance_runtime_wave_count=0、iwooos_product_rollout_acceptance_enforcement_wave_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把驗收門檻可視化當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_129_iwooos_product_rollout_acceptance_outcomes",
|
||
"display_order": 158,
|
||
"completed_stage": "S2.129 IwoooS 全產品 rollout 驗收結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品 rollout 驗收結果分流,把維持只讀、退回補證、隔離敏感、版本待證、主機暫停、待人工審與 runtime 未開拆成七條結果分流;iwooos_product_rollout_acceptance_outcome_lane_count=7、iwooos_product_rollout_acceptance_outcome_current_stage=read_only_outcome_routing、iwooos_product_rollout_acceptance_outcome_returned_for_evidence_count=0、iwooos_product_rollout_acceptance_outcome_quarantined_count=0、iwooos_product_rollout_acceptance_outcome_human_review_candidate_count=0、iwooos_product_rollout_acceptance_outcome_runtime_candidate_count=0、iwooos_product_rollout_acceptance_outcome_owner_response_accepted_count=0、iwooos_product_rollout_acceptance_outcome_active_runtime_gate_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把結果分流當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_130_iwooos_product_evidence_wiring_map",
|
||
"display_order": 159,
|
||
"completed_stage": "S2.130 IwoooS 全產品證據接線地圖",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品證據接線地圖,把產品範圍、負責人回覆、脫敏證據、版本來源真相、主機安全窗口與監控工具摘要拆成六條 metadata-only evidence channels;iwooos_product_evidence_wiring_channel_count=6、iwooos_product_evidence_wiring_current_stage=read_only_evidence_wiring、iwooos_product_evidence_wiring_connected_product_count=0、iwooos_product_evidence_wiring_owner_response_accepted_count=0、iwooos_product_evidence_wiring_redacted_evidence_pointer_accepted_count=0、iwooos_product_evidence_wiring_source_control_truth_accepted_count=0、iwooos_product_evidence_wiring_ready_for_human_review_count=0、iwooos_product_evidence_wiring_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把證據接線可視化當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_131_iwooos_product_evidence_wiring_preflight",
|
||
"display_order": 160,
|
||
"completed_stage": "S2.131 IwoooS 全產品證據接線預檢",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品證據接線預檢,把範圍 metadata、負責人封套、脫敏邊界、版本來源真相、主機安全窗口與工具摘要拆成六個 read-only preflight checks;iwooos_product_evidence_wiring_preflight_check_count=6、iwooos_product_evidence_wiring_preflight_current_stage=read_only_evidence_wiring_preflight、iwooos_product_evidence_wiring_preflight_passed_count=0、iwooos_product_evidence_wiring_preflight_ready_for_connection_count=0、iwooos_product_evidence_wiring_preflight_quarantined_count=0、iwooos_product_evidence_wiring_preflight_owner_response_accepted_count=0、iwooos_product_evidence_wiring_preflight_ready_for_human_review_count=0、iwooos_product_evidence_wiring_preflight_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把接線預檢可視化當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_132_iwooos_product_evidence_wiring_preflight_outcomes",
|
||
"display_order": 161,
|
||
"completed_stage": "S2.132 IwoooS 全產品證據接線預檢結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品證據接線預檢結果分流,把維持只讀、退回範圍、退回封套、隔離敏感、版本暫停、主機暫停、工具待摘要與 runtime 關閉拆成八條 read-only outcome lanes;iwooos_product_evidence_wiring_preflight_outcome_lane_count=8、iwooos_product_evidence_wiring_preflight_outcome_current_stage=read_only_preflight_outcome_routing、iwooos_product_evidence_wiring_preflight_outcome_ready_for_connection_count=0、iwooos_product_evidence_wiring_preflight_outcome_returned_for_scope_count=0、iwooos_product_evidence_wiring_preflight_outcome_quarantined_count=0、iwooos_product_evidence_wiring_preflight_outcome_runtime_candidate_count=0、iwooos_product_evidence_wiring_preflight_outcome_owner_response_accepted_count=0、iwooos_product_evidence_wiring_preflight_outcome_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把預檢結果分流當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_133_iwooos_product_evidence_wiring_preflight_recovery_ledger",
|
||
"display_order": 162,
|
||
"completed_stage": "S2.133 IwoooS 全產品預檢補件回收台帳",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品預檢補件回收台帳,把範圍補件、封套補件、脫敏重送、版本補證、主機窗口、工具摘要與 runtime 門檻拆成七個 read-only recovery queues;iwooos_product_evidence_wiring_preflight_recovery_queue_count=7、iwooos_product_evidence_wiring_preflight_recovery_current_stage=read_only_recovery_ledger、iwooos_product_evidence_wiring_preflight_recovery_submitted_count=0、iwooos_product_evidence_wiring_preflight_recovery_accepted_count=0、iwooos_product_evidence_wiring_preflight_recovery_ready_for_preflight_retry_count=0、iwooos_product_evidence_wiring_preflight_recovery_ready_for_human_review_count=0、iwooos_product_evidence_wiring_preflight_recovery_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把補件回收台帳當 request sent、owner response 已收到、證據已接受、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_134_iwooos_product_evidence_wiring_preflight_retry_gates",
|
||
"display_order": 163,
|
||
"completed_stage": "S2.134 IwoooS 全產品補件重試門檻",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品補件重試門檻,把範圍、封套、脫敏、版本、主機與工具摘要拆成六個 read-only retry gates;iwooos_product_evidence_wiring_preflight_retry_gate_count=6、iwooos_product_evidence_wiring_preflight_retry_current_stage=read_only_recovery_retry_gate、iwooos_product_evidence_wiring_preflight_retry_candidate_count=0、iwooos_product_evidence_wiring_preflight_retry_submitted_count=0、iwooos_product_evidence_wiring_preflight_retry_passed_count=0、iwooos_product_evidence_wiring_preflight_retry_ready_for_connection_count=0、iwooos_product_evidence_wiring_preflight_retry_ready_for_human_review_count=0、iwooos_product_evidence_wiring_preflight_retry_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把補件重試門檻當 request sent、owner response 已收到、證據已接受、預檢通過、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_135_iwooos_product_evidence_wiring_preflight_retry_outcomes",
|
||
"display_order": 164,
|
||
"completed_stage": "S2.135 IwoooS 全產品重試結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品重試結果分流,把維持只讀候選、退回補件、隔離敏感、版本退回、主機暫停、摘要退回、等待人工審查與 runtime 仍關閉拆成八條 read-only retry outcome lanes;iwooos_product_evidence_wiring_preflight_retry_outcome_lane_count=8、iwooos_product_evidence_wiring_preflight_retry_outcome_current_stage=read_only_retry_outcome_routing、iwooos_product_evidence_wiring_preflight_retry_outcome_ready_for_connection_count=0、iwooos_product_evidence_wiring_preflight_retry_outcome_returned_count=0、iwooos_product_evidence_wiring_preflight_retry_outcome_quarantined_count=0、iwooos_product_evidence_wiring_preflight_retry_outcome_human_review_candidate_count=0、iwooos_product_evidence_wiring_preflight_retry_outcome_runtime_candidate_count=0、iwooos_product_evidence_wiring_preflight_retry_outcome_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把重試結果分流當接線完成、owner response 已收到、證據已接受、reviewer queue 開啟、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_136_iwooos_product_evidence_wiring_preflight_retry_review_candidate",
|
||
"display_order": 165,
|
||
"completed_stage": "S2.136 IwoooS 全產品人工審查候選準備",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品人工審查候選準備,把候選識別、結果來源、負責人與範圍、脫敏聲明、版本來源證據、主機窗口、工具摘要證據與 runtime 分離拆成八個 read-only preparation packets;iwooos_product_evidence_wiring_preflight_retry_review_candidate_packet_count=8、iwooos_product_evidence_wiring_preflight_retry_review_candidate_current_stage=read_only_retry_review_candidate_preparation、iwooos_product_evidence_wiring_preflight_retry_review_candidate_packet_completed_count=0、iwooos_product_evidence_wiring_preflight_retry_review_candidate_ready_count=0、iwooos_product_evidence_wiring_preflight_retry_review_candidate_queue_open=false、iwooos_product_evidence_wiring_preflight_retry_review_candidate_created_count=0、iwooos_product_evidence_wiring_preflight_retry_review_candidate_reviewer_assigned_count=0、iwooos_product_evidence_wiring_preflight_retry_review_candidate_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把人工審查候選準備當 reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_137_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight",
|
||
"display_order": 166,
|
||
"completed_stage": "S2.137 IwoooS 全產品人工審查候選預檢",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品人工審查候選預檢,把候選識別、結果來源、負責人與範圍、脫敏聲明、版本來源證據、主機窗口、工具摘要與 runtime 分離拆成八個 read-only preflight checks;iwooos_product_evidence_wiring_preflight_retry_review_preflight_check_count=8、iwooos_product_evidence_wiring_preflight_retry_review_preflight_current_stage=read_only_retry_review_candidate_preflight、iwooos_product_evidence_wiring_preflight_retry_review_preflight_passed_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_ready_for_queue_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_queue_open=false、iwooos_product_evidence_wiring_preflight_retry_review_preflight_candidate_created_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_reviewer_assigned_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把人工審查候選預檢當 reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_138_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight_outcomes",
|
||
"display_order": 167,
|
||
"completed_stage": "S2.138 IwoooS 全產品人工審查候選預檢結果分流",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品人工審查候選預檢結果分流,把維持只讀、退回識別、退回來源、退回範圍、隔離敏感、版本 / 主機暫停、等待人工審查與 runtime 仍關閉拆成八條 read-only preflight outcome lanes;iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_lane_count=8、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_current_stage=read_only_retry_review_candidate_preflight_outcome_routing、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_ready_for_queue_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_returned_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_quarantined_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_candidate_created_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_reviewer_assigned_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_outcome_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把預檢結果分流當 reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_139_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight_recovery_ledger",
|
||
"display_order": 168,
|
||
"completed_stage": "S2.139 IwoooS 全產品人工審查候選預檢補件回收台帳",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品人工審查候選預檢補件回收台帳,把識別補件、來源補件、範圍補件、脫敏重送、版本補證、主機窗口補證、工具摘要補件與 runtime 聲明拆成八個 read-only recovery queues;iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_queue_count=8、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_current_stage=read_only_retry_review_candidate_preflight_recovery_ledger、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_submitted_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_accepted_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_quarantined_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_ready_for_preflight_retry_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_ready_for_human_review_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把補件回收台帳當補件已送出、已接受、預檢可重跑、reviewer candidate 已建立、reviewer queue 已開、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_140_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight_recovery_retry_gates",
|
||
"display_order": 169,
|
||
"completed_stage": "S2.140 IwoooS 全產品人工審查候選預檢補件重試門檻",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品人工審查候選預檢補件重試門檻,把識別、來源、範圍、脫敏、版本、主機窗口、工具摘要與 runtime 分離拆成八個 read-only retry gates;iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_gate_count=8、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_current_stage=read_only_retry_review_candidate_preflight_recovery_retry_gate、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_candidate_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_submitted_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_passed_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_ready_for_preflight_retry_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_ready_for_human_review_count=0、iwooos_product_evidence_wiring_preflight_retry_review_preflight_recovery_retry_ready_for_runtime_count=0、runtime_execution_authorized=false、active_runtime_gate_count=0,不把補件重試門檻當補件已送出、已接受、預檢通過、reviewer candidate 已建立、reviewer queue 已開、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_141_iwooos_all_product_coverage_snapshot",
|
||
"display_order": 170,
|
||
"completed_stage": "S2.141 IwoooS 全產品只讀套用快照",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只新增全產品只讀套用快照,把核心產品、前台網站、版本來源、Kali / 開發主機、監控工具與未來產品六類範圍濃縮成 compact snapshot;iwooos_all_product_coverage_snapshot_scope_count=6、iwooos_all_product_coverage_snapshot_read_only_count=6、iwooos_all_product_coverage_snapshot_runtime_ready_count=0、iwooos_all_product_coverage_snapshot_default_summary_mode=compact_first、iwooos_all_product_coverage_snapshot_detail_ledger_collapsed=true、runtime_execution_authorized=false、active_runtime_gate_count=0,不把全產品快照當 owner response 已收到、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"delta_id": "s2_142_iwooos_first_unlock_path_first_layer",
|
||
"display_order": 171,
|
||
"completed_stage": "S2.142 IwoooS 第一解鎖路徑首層化",
|
||
"progress_axis": "framework_detail",
|
||
"headline_percent_delta": 0,
|
||
"framework_delta_visible": true,
|
||
"why_headline_unchanged": "IwoooS 只把第一個可讓 61% 真正往前的 S4.9 負責人回覆路徑提升到首頁首層,並放在視覺指揮板之前,同時把詳細 boundary 鍵值預設收合;iwooos_first_unlock_path_step_count=5、iwooos_first_unlock_path_current_focus=s4_9_owner_response、iwooos_first_unlock_path_owner_response_received_count=0、iwooos_first_unlock_path_owner_response_accepted_count=0、iwooos_first_unlock_path_above_visual_dashboard=true、iwooos_first_unlock_path_boundary_details_collapsed=true、runtime_execution_authorized=false、active_runtime_gate_count=0,不把首層顯示當 owner response 已收到、已接受、headline review、runtime gate、Kali 執行、主機變更、repo/refs/workflow/secret 操作、GitHub primary 切換、Gitea 停用或正式部署。",
|
||
"runtime_delta": false,
|
||
"execution_authorized": false,
|
||
"not_authorization": true
|
||
}
|
||
],
|
||
"next_safe_actions": [
|
||
{
|
||
"action_id": "mirror_owner_response_validation_rollup",
|
||
"title": "AwoooP 顯示四包 owner response 驗收總覽",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"顯示 S4.9/S4.10/S4.11/S4.12 四個 response packets",
|
||
"顯示 22 個 templates、received=0、accepted=0、rejected=0",
|
||
"顯示 10 個 cross-packet acceptance checks、6 條 evidence routing rules、8 個 display sections、7 條 state transition rules、9 個 reviewer checklist items、7 條 reviewer outcome lanes、4 個 reviewer audit event templates、5 個 reviewer audit display sections、6 個 reviewer audit collection checks、5 個 reviewer audit redaction examples、5 條 reviewer audit retention rules、6 個 reviewer audit retention checks、6 個 reviewer audit handoff packets、6 個 reviewer audit handoff checks、6 個 parallel session sync checks、6 條 parallel session conflict lanes、6 個 parallel session recovery checks、7 條 parallel session recovery outcome lanes 與 quarantine rules",
|
||
"只更新 read-only wording、matrix 或 readiness evidence"
|
||
],
|
||
"blocked_processing": [
|
||
"把 validation rollup 當成 approval",
|
||
"把 validation rollup 當成 runtime authorization",
|
||
"新增 repo / refs / workflow / secret / runner / primary action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "mirror_status_rollup_to_awooop",
|
||
"title": "AwoooP 顯示資安供應鏈總覽",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"顯示階段狀態、contract readiness、approval queue summary",
|
||
"顯示下一個 gate",
|
||
"寫入 audit evidence"
|
||
],
|
||
"blocked_processing": [
|
||
"把 rollup 當成 runtime authorization",
|
||
"新增 scan / execute / repo / refs action button",
|
||
"把 LOW / MEDIUM observation 變成 blocking gate"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_home_iwooos_security_mirror_candidate",
|
||
"title": "AwoooP 首頁顯示 IwoooS 資安鏡像候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"顯示 58% headline、86-88% framework、35-40% runtime landing 與 0 active runtime gates",
|
||
"顯示 IwoooS projection、rollup guard、owner response waiting 與 production landing pending 四個接入檢查",
|
||
"連到 IwoooS 只讀入口,不新增 scan、execute、repair、deploy、primary switch 或 refs action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 首頁候選面板當成 production_landing_enabled",
|
||
"從 AwoooP 首頁候選面板接 execution router",
|
||
"從 AwoooP 首頁候選面板建立 runtime gate 或 action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_work_items_iwooos_security_mirror_candidate",
|
||
"title": "AwoooP 工作鏈路顯示 IwoooS 資安鏡像候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/work-items 顯示 S2.54 只讀工作項",
|
||
"顯示 58% headline、86-88% framework、35-40% runtime landing、0 active runtime gates 與 owner response waiting",
|
||
"連到 /iwooos 只讀入口,不新增 scan、execute、repair、deploy、primary switch、refs action 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 工作鏈路候選項當成 production_landing_enabled",
|
||
"從 AwoooP 工作鏈路候選項建立 execution router 或 runtime gate",
|
||
"把 S2.54 觀察項轉成可點擊的 scan、execute、repair、deploy、primary switch 或 refs action"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_approvals_iwooos_owner_response_gate_candidate",
|
||
"title": "AwoooP 審批佇列顯示 IwoooS owner response 只讀焦點",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/approvals 顯示 S4.9-S4.12 owner response 收件焦點",
|
||
"顯示 received=0、accepted=0、active runtime gates=0、headline=58%",
|
||
"連到 /iwooos 只讀入口,不新增 approve、execute、deploy、primary switch、refs action 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把 owner response 焦點當成 approval_record_created",
|
||
"從 AwoooP approvals 面板標記 owner response received / accepted",
|
||
"從 AwoooP approvals 面板建立 runtime gate、approve action、GitHub/Gitea action、Kali action 或 refs action"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_contracts_iwooos_security_contract_candidate",
|
||
"title": "AwoooP 合約儀表板顯示 IwoooS 資安契約候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/contracts 顯示 security mirror 的四個只讀 contract refs",
|
||
"顯示 total contracts=36、ready=33、partial=2、active runtime gates=0",
|
||
"連到 /iwooos 只讀入口,不發布 contract revision、不改 lifecycle、不新增 scan、execute、deploy、primary switch、refs action 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP contracts 面板當成 contract_publish_authorized",
|
||
"從 AwoooP contracts 面板寫入 platform contracts API 或修改 contract lifecycle",
|
||
"從 AwoooP contracts 面板建立 runtime gate、GitHub/Gitea action、Kali action、secret action 或 refs action"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_tenants_iwooos_tenant_scope_candidate",
|
||
"title": "AwoooP 租戶管理顯示 IwoooS 資安租戶範圍候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/tenants 顯示 AWOOOI 第一租戶與 IwoooS security mirror 範圍",
|
||
"顯示 host coverage=3、tenant policy changes=0、active runtime gates=0",
|
||
"連到 /iwooos 只讀入口,不變更 migration mode、不改 tenant policy、不新增 scan、execute、deploy、primary switch、refs action 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP tenants 面板當成 tenant_migration_mode_changed",
|
||
"從 AwoooP tenants 面板寫入 platform tenants API 或修改 tenant policy",
|
||
"從 AwoooP tenants 面板建立 runtime gate、GitHub/Gitea action、Kali action、secret action 或 refs action"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_runs_iwooos_run_state_candidate",
|
||
"title": "AwoooP Run 監控顯示 IwoooS 執行狀態候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/runs 顯示 security mirror 的執行狀態只讀候選",
|
||
"顯示 security runs=0、active runtime gates=0、owner accepted=0",
|
||
"連到 /iwooos 只讀入口,不建立 platform run、不接 execution router、不新增 scan、execute、repair、deploy、primary switch、refs action 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP runs 面板當成 security_run_created",
|
||
"從 AwoooP runs 面板接 execution router 或建立 platform run",
|
||
"從 AwoooP runs 面板建立 runtime gate、GitHub/Gitea action、Kali action、secret action 或 refs action"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_existing_security_pages_iwooos_reverse_bridge",
|
||
"title": "既有安全 / 合規頁面顯示 IwoooS 只讀橋接",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 SecurityPanel、CompliancePanel、/security 與 /compliance 顯示 IwoooS 只讀橋接",
|
||
"顯示 headline 58%、framework 86-88%、runtime gates=0、action buttons=0",
|
||
"連到 /iwooos 只讀入口,不新增 scan、execute、repair、approve、deploy、primary switch、refs action 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把既有安全 / 合規頁面的橋接面板當成 runtime authorization",
|
||
"從既有安全 / 合規頁面新增掃描、修復、批准、部署或 blocking control",
|
||
"把 /security、/compliance 或 SecurityPanel 的可見性當成 owner response received / accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_security_control_pages_iwooos_reverse_bridge",
|
||
"title": "告警、錯誤、授權與治理頁面顯示 IwoooS 只讀橋接",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /alerts、/errors、/authorizations 與 /governance 顯示 IwoooS 只讀橋接",
|
||
"顯示 headline 58%、framework 86-88%、runtime gates=0、action buttons=0",
|
||
"連到 /iwooos 只讀入口,不新增 scan、execute、repair、approve、deploy、primary switch、refs action、alert blocker 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把告警、錯誤、授權或治理頁面的橋接面板當成 runtime authorization",
|
||
"從告警、錯誤、授權或治理頁面新增掃描、修復、批准、部署、告警阻擋或 blocking control",
|
||
"把 /alerts、/errors、/authorizations 或 /governance 的可見性當成 owner response received / accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_audit_engineering_pages_iwooos_reverse_bridge",
|
||
"title": "稽核與工程審查頁面顯示 IwoooS 只讀橋接",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /alert-operation-logs 與 /code-review 顯示 IwoooS 深色只讀橋接",
|
||
"顯示 headline 58%、framework 86-88%、runtime gates=0、action buttons=0",
|
||
"連到 /iwooos 只讀入口,不新增 scan、execute、repair、approve、deploy、primary switch、refs action、Code Review blocker 或 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"把稽核或工程審查頁面的橋接面板當成 runtime authorization",
|
||
"從 /alert-operation-logs 或 /code-review 新增掃描、修復、批准、部署、Gitea/GitHub action、Code Review blocking gate 或 blocking control",
|
||
"把 /alert-operation-logs 或 /code-review 的可見性當成 owner response received / accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_frontend_surface_connection_board",
|
||
"title": "IwoooS 顯示前端資安頁面連接狀態板",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 10 個既有資安入口的連接狀態",
|
||
"區分 embedded bridge、direct bridge 與 AwoooP read-only candidate",
|
||
"顯示每個入口仍維持 runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true"
|
||
],
|
||
"blocked_processing": [
|
||
"把連接狀態板當成 runtime authorization",
|
||
"從連接狀態板新增 scan、execute、repair、approve、deploy、Code Review blocker、Gitea/GitHub action 或 runtime gate",
|
||
"把 embedded bridge、direct bridge 或 AwoooP read-only candidate 當成 owner response received / accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_github_primary_readiness_board",
|
||
"title": "IwoooS 顯示 GitHub Primary Readiness 只讀狀態板",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 candidate repos=8、in-scope repos=7、primary_ready_count=0",
|
||
"顯示 owner response 0/22、refs truth accepted=0、workflow inventory complete=0/7、rollback ADR approved=0",
|
||
"只協助使用者理解 Gitea 長期轉 GitHub 的 evidence 缺口,不新增任何 repo、refs、workflow、secret 或 primary action"
|
||
],
|
||
"blocked_processing": [
|
||
"從 readiness board 建立 GitHub repo 或改 visibility",
|
||
"從 readiness board sync、delete 或 force push refs",
|
||
"從 readiness board 收 secret value、切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_work_items_github_primary_readiness_candidate",
|
||
"title": "AwoooP 工作鏈路顯示 GitHub Primary Readiness 只讀工作項",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/work-items 顯示 S2.64 GitHub Primary Readiness 只讀工作項",
|
||
"顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7",
|
||
"連到 /iwooos 只讀入口,不新增 repo、visibility、refs、workflow、secret、primary 或 Gitea disablement action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 工作鏈路工作項當成 GitHub primary approval",
|
||
"從 AwoooP 工作鏈路建立 repo、改 visibility、sync/delete/force push refs 或收 secret value",
|
||
"從 AwoooP 工作鏈路切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_work_items_owner_response_validation_candidate",
|
||
"title": "AwoooP 工作鏈路顯示負責人回覆驗收只讀工作項",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/work-items 顯示 S2.73 負責人回覆驗收只讀工作項",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由與 8 個顯示區塊",
|
||
"連到 /iwooos 只讀入口,不新增審批紀錄、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 工作鏈路負責人回覆驗收工作項當成負責人回覆已收到或已接受",
|
||
"從 AwoooP 工作鏈路建立審批紀錄、建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP 工作鏈路切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_contracts_github_primary_readiness_candidate",
|
||
"title": "AwoooP 合約儀表板顯示 GitHub Primary Readiness 合約只讀候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/contracts 顯示 S2.65 GitHub Primary Readiness 合約只讀候選",
|
||
"顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7",
|
||
"連到 /iwooos 只讀入口,不新增 repo、visibility、refs、workflow、secret、primary 或 Gitea disablement action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP contracts 合約候選當成 GitHub primary approval",
|
||
"從 AwoooP contracts 建立 repo、改 visibility、sync/delete/force push refs 或收 secret value",
|
||
"從 AwoooP contracts 切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_contracts_owner_response_validation_candidate",
|
||
"title": "AwoooP 合約儀表板顯示負責人回覆驗收契約只讀候選",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/contracts 顯示 S2.74 負責人回覆驗收契約只讀候選",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、8 個顯示區塊與五個合約參照",
|
||
"連到 /iwooos 只讀入口,不新增審批紀錄、合約發布、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 合約儀表板負責人回覆驗收契約候選當成負責人回覆已收到或已接受",
|
||
"從 AwoooP contracts 建立審批紀錄、發布合約、建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP contracts 切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_approvals_github_primary_readiness_boundary",
|
||
"title": "AwoooP 審批佇列顯示 GitHub Primary Readiness 審批邊界",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/approvals 顯示 S2.66 GitHub Primary Readiness 審批邊界",
|
||
"顯示 S4.9=0/5、S4.10=0/7、S4.11=0/5、S4.12=0/5、primary_ready_count=0",
|
||
"連到 /iwooos 只讀入口,不新增 approval record、repo、visibility、refs、workflow、secret、primary 或 Gitea disablement action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP approvals 的 GitHub readiness 邊界當成 GitHub primary approval",
|
||
"從 AwoooP approvals 建立 approval record、建立 repo、改 visibility、sync/delete/force push refs 或收 secret value",
|
||
"從 AwoooP approvals 切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_approvals_owner_response_validation_boundary",
|
||
"title": "AwoooP 審批佇列顯示負責人回覆驗收只讀審查邊界",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/approvals 顯示 S2.75 負責人回覆驗收只讀審查邊界",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、8 個顯示區塊與 S4.13 / S4.9-S4.12 來源收件參照",
|
||
"連到 /iwooos 只讀入口,不新增審批紀錄、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 審批佇列負責人回覆驗收邊界當成負責人回覆已收到或已接受",
|
||
"從 AwoooP approvals 建立審批紀錄、建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP approvals 切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_home_github_primary_readiness_summary",
|
||
"title": "AwoooP 首頁顯示 GitHub Primary Readiness 只讀摘要",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop 顯示 S2.67 GitHub Primary Readiness 只讀摘要",
|
||
"顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7",
|
||
"連到 /iwooos 只讀入口,不新增 repo、visibility、refs、workflow、secret、primary 或 Gitea disablement action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 首頁 GitHub readiness 摘要當成 GitHub primary approval",
|
||
"從 AwoooP 首頁建立 repo、改 visibility、sync/delete/force push refs 或收 secret value",
|
||
"從 AwoooP 首頁切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_tenants_github_primary_readiness_scope",
|
||
"title": "AwoooP 租戶管理顯示 GitHub Primary Readiness 租戶範圍",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/tenants 顯示 S2.68 GitHub Primary Readiness 租戶範圍",
|
||
"顯示 candidate repos=8、in-scope=7、owner response 0/22、tenant scope changes=0",
|
||
"連到 /iwooos 只讀入口,不新增 tenant policy、repo、visibility、refs、workflow、secret、primary 或 Gitea disablement action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP tenants GitHub readiness 範圍當成 tenant policy approval 或 GitHub primary approval",
|
||
"從 AwoooP tenants 改 migration mode、改 tenant policy、建立 repo、改 visibility、sync/delete/force push refs 或收 secret value",
|
||
"從 AwoooP tenants 切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_tenants_owner_response_validation_scope",
|
||
"title": "AwoooP 租戶管理顯示負責人回覆驗收租戶範圍",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/tenants 顯示 S2.76 負責人回覆驗收租戶範圍",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、租戶政策變更=0 與 8 個顯示區塊",
|
||
"連到 /iwooos 只讀入口,不新增租戶政策、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 租戶管理負責人回覆驗收範圍當成負責人回覆已收到、已接受或租戶政策批准",
|
||
"從 AwoooP 租戶管理建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP 租戶管理修改工作流程 / 機密設定、切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_runs_github_primary_readiness_boundary",
|
||
"title": "AwoooP Run 監控顯示 GitHub Primary Readiness Run 邊界",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/runs 顯示 S2.69 GitHub Primary Readiness Run 邊界",
|
||
"顯示 candidate repos=8、in-scope=7、security runs=0、owner response 0/22、workflow inventory complete=0/7",
|
||
"連到 /iwooos 只讀入口,不新增 platform run、execution router、repo、visibility、refs、workflow、secret、primary 或 Gitea disablement action"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP runs GitHub readiness 邊界當成 platform run、execution router 或 GitHub primary approval",
|
||
"從 AwoooP runs 建立 platform run、接 execution router、建立 repo、改 visibility、sync/delete/force push refs 或收 secret value",
|
||
"從 AwoooP runs 修改 workflow / secrets、切 GitHub primary、停用 Gitea 或把 request-ready 當 owner response accepted"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_runs_owner_response_validation_boundary",
|
||
"title": "AwoooP 執行監控顯示負責人回覆驗收執行邊界",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/runs 顯示 S2.77 負責人回覆驗收執行邊界",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、資安執行數=0 與 8 個顯示區塊",
|
||
"連到 /iwooos 只讀入口,不新增平台執行、執行路由器、審批紀錄、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 執行監控負責人回覆驗收邊界當成負責人回覆已收到、已接受、審批紀錄或平台執行",
|
||
"從 AwoooP 執行監控建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP 執行監控修改工作流程 / 機密設定、切 GitHub 主要來源、停用 Gitea、接執行路由器或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_run_detail_owner_response_validation_boundary",
|
||
"title": "AwoooP 執行詳情顯示負責人回覆驗收詳情邊界",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/runs/[run_id] 顯示 S2.78 負責人回覆驗收詳情邊界",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、驗收執行=0 與 8 個顯示區塊",
|
||
"連到 /iwooos 只讀入口,不新增審批紀錄、MCP 執行、補救執行、平台執行、執行路由器、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 執行詳情負責人回覆驗收邊界當成負責人回覆已收到、已接受、審批紀錄、MCP 執行或補救執行",
|
||
"從 AwoooP 執行詳情建立平台執行、接執行路由器、建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP 執行詳情修改工作流程 / 機密設定、切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_awooop_approval_detail_owner_response_validation_boundary",
|
||
"title": "AwoooP 審批決策顯示負責人回覆驗收審批邊界",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /awooop/approvals/[run_id] 顯示 S2.79 負責人回覆驗收審批邊界",
|
||
"顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、審批接受=0 與 8 個顯示區塊",
|
||
"連到 /iwooos 只讀入口,不新增負責人回覆接受、專案庫、可見性、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 審批決策負責人回覆驗收邊界當成負責人回覆已收到、已接受或 GitHub 主要來源批准",
|
||
"從 AwoooP 審批決策建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 AwoooP 審批決策修改工作流程 / 機密設定、切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_awooop_route_coverage_board",
|
||
"title": "IwoooS 顯示 AwoooP 資安入口覆蓋狀態板",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.80 AwoooP 資安入口覆蓋狀態板",
|
||
"顯示 8 個 AwoooP 實際入口、8 個已覆蓋、執行期閘門=0、執行按鈕=0",
|
||
"連到既有 AwoooP 入口並保留 S2.72-S2.79 只讀邊界,不新增審批、執行、專案庫、分支 / 標籤參照、工作流程、機密設定、主要來源或 Gitea 停用動作"
|
||
],
|
||
"blocked_processing": [
|
||
"把 AwoooP 入口覆蓋狀態當成負責人回覆已收到、已接受或資安審批",
|
||
"從 IwoooS 覆蓋狀態板建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從 IwoooS 覆蓋狀態板修改工作流程 / 機密設定、切 GitHub 主要來源、停用 Gitea、呼叫 Kali 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_gradual_convergence_roadmap",
|
||
"title": "IwoooS 顯示階段式資安收斂節奏圖",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.81 階段式資安收斂節奏圖",
|
||
"顯示先可視、負責人回覆、脫敏證據、人工審查、執行期閘門、主要來源切換六個收斂步驟",
|
||
"顯示 initial_enforcement_level=observe_warn_only、blocking_controls_enabled=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false,避免初期把資安限制拉得過高"
|
||
],
|
||
"blocked_processing": [
|
||
"把收斂節奏圖當成阻擋型控制、執行期授權或資安審批",
|
||
"從收斂節奏圖建立掃描、執行、修復、Kali、SSH、主機更新、專案庫、分支 / 標籤參照或工作流程 / 機密設定動作",
|
||
"從收斂節奏圖切 GitHub 主要來源、停用 Gitea、收機密明文值或提高 LOW / MEDIUM 訊號限制"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_collection_board",
|
||
"title": "IwoooS 顯示下一步人工收件作戰板",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.82 下一步人工收件作戰板",
|
||
"顯示 S4.9-S4.12 四個負責人回覆收件包、22 個必備回覆範本、已收到=0、已接受=0、已拒收=0",
|
||
"只讓人工知道下一步要收哪些脫敏回覆,不寄送、不建立 response packet、不標記已收到或已接受"
|
||
],
|
||
"blocked_processing": [
|
||
"把收件作戰板當成寄送完成、回覆已收到、已接受或資安審批",
|
||
"從收件作戰板建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或收機密明文值",
|
||
"從收件作戰板修改工作流程 / 機密設定、呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_intake_safety_board",
|
||
"title": "IwoooS 顯示人工回覆安全驗收閘道",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.83 人工回覆安全驗收閘道",
|
||
"顯示 6 條收件後可收、補證、隔離與拒收分流,並顯示已匯入=0、已隔離=0、已拒收=0",
|
||
"只讓人工知道回覆進來後要如何安全驗收,不自動接受、不匯入正式狀態、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把安全驗收閘道當成已收到、已接受、已匯入或資安審批",
|
||
"從安全驗收閘道保存、展示、複製、轉送或旋轉機密明文值",
|
||
"從安全驗收閘道建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照、修改工作流程 / 機密設定、呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_review_outcome_board",
|
||
"title": "IwoooS 顯示人工回覆審查結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.84 人工回覆審查結果分流",
|
||
"顯示維持等待、要求補證、可進人工審查、隔離、拒收、只讀更新與需要人工決策七條結果分流",
|
||
"只讓人工知道安全驗收後可能進入哪個只讀結果,不自動接受、不建立批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把審查結果分流當成已收到、已接受、已批准、已匯入或資安審批",
|
||
"從審查結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從審查結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_human_decision_queue_board",
|
||
"title": "IwoooS 顯示人工決策準備佇列",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.85 人工決策準備佇列",
|
||
"顯示決策包草稿、證據追溯包、審查人指派、回滾窗口候選、執行期閘門分離與主要來源切換分離六個前置項目",
|
||
"只讓人工知道正式決策前要整理哪些資料,不自動建立審批紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把人工決策準備佇列當成人工批准、正式決策、審批紀錄或已接受回覆",
|
||
"從人工決策準備佇列建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從人工決策準備佇列呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_decision_record_draft_guard_board",
|
||
"title": "IwoooS 顯示人工決策紀錄草稿防誤用",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.86 人工決策紀錄草稿防誤用",
|
||
"顯示紀錄身分草稿、決策範圍快照、審查角色預留、證據版本凍結、批准不等於執行、後續執行期指標六條保護線",
|
||
"只讓人工知道未來決策紀錄草稿如何避免被誤用,不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把人工決策紀錄草稿當成人工批准、正式決策、審批紀錄或已接受回覆",
|
||
"從人工決策紀錄草稿建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從人工決策紀錄草稿呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_candidate_preflight_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄候選預檢",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.87 人工決策正式紀錄候選預檢",
|
||
"顯示候選身分追溯、審查人身分邊界、證據版本鏈、範圍與期限、風險與回滾欄位、執行期分離、主要來源分離七個候選預檢項",
|
||
"只讓人工知道正式紀錄候選前要補齊哪些欄位,不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄候選當成人工批准、正式決策、審批紀錄或已接受回覆",
|
||
"從正式紀錄候選建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄候選呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_candidate_outcome_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄候選結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.88 人工決策正式紀錄候選結果分流",
|
||
"顯示維持候選等待、退回草稿補齊、要求證據更新、要求審查說明、可交紀錄負責人、隔離敏感載荷、拒收變更要求、另開執行或切換閘門八條候選分流",
|
||
"只讓人工知道正式紀錄候選預檢後如何分流,不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄候選結果分流當成人工批准、正式決策、審批紀錄或已接受回覆",
|
||
"從正式紀錄候選結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄候選結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_handoff_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人交接準備",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.89 人工決策正式紀錄負責人交接準備",
|
||
"顯示身分追溯包、決策脈絡包、證據鎖定包、審查備註包、風險回滾包、執行期閘門指標包、主要來源指標包七個交接包",
|
||
"只讓人工知道正式紀錄候選可交接前要整理哪些資料,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人交接準備當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人交接準備建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人交接準備呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_handoff_review_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人交接驗收清單",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.90 人工決策正式紀錄負責人交接驗收清單",
|
||
"顯示交接包完整性、負責人身分範圍、權責邊界比對、證據版本確認、審查備註確認、變更要求拒收檢查、執行與切換分離七個驗收項",
|
||
"只讓人工知道交接包進入負責人檢查前要確認哪些條件,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人交接驗收清單當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人交接驗收清單建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人交接驗收清單呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_handoff_review_outcome_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人交接驗收結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.91 人工決策正式紀錄負責人交接驗收結果分流",
|
||
"顯示維持驗收等待、要求補齊交接包、要求負責人範圍說明、要求證據版本更新、可進負責人檢查、隔離敏感載荷、拒收變更要求、另開執行或切換閘門八條結果分流",
|
||
"只讓人工知道交接驗收後如何分流,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人交接驗收結果分流當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人交接驗收結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人交接驗收結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_review_preparation_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人檢查準備包",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.92 人工決策正式紀錄負責人檢查準備包",
|
||
"顯示檢查身分包、交接結果快照、負責人範圍包、權責邊界包、證據追溯包、審查備註包、變更拒收包、執行切換指標包八個準備包",
|
||
"只讓人工知道可進負責人檢查前要整理哪些資料,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人檢查準備包當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人檢查準備包建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人檢查準備包呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_review_checklist_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人檢查清單",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.93 人工決策正式紀錄負責人檢查清單",
|
||
"顯示身分追溯檢查、交接結果檢查、負責人範圍檢查、權責邊界檢查、證據追溯檢查、審查備註檢查、變更拒收檢查、執行切換分離檢查八個檢查項",
|
||
"只讓人工知道負責人檢查時要逐項確認哪些條件,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人檢查清單當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人檢查清單建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人檢查清單呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_review_outcome_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人檢查結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.94 人工決策正式紀錄負責人檢查結果分流",
|
||
"顯示維持負責人檢查等待、要求追溯鏈補齊、要求負責人範圍說明、要求權責邊界修正、可進人工指派確認、隔離敏感載荷、拒收變更要求、另開執行或主要來源閘門八條結果分流",
|
||
"只讓人工知道檢查後如何只讀分流,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人檢查結果分流當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人檢查結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人檢查結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_assignment_preparation_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人指派確認準備包",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.95 人工決策正式紀錄負責人指派確認準備包",
|
||
"顯示指派身分候選包、負責人範圍確認包、權責邊界確認包、證據追溯確認包、審查結果引用包、代理與備援說明包、變更要求拒收確認包、執行與主要來源分離包八個只讀準備包",
|
||
"只讓人工知道可進指派確認前需要哪些欄位,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人指派確認準備包當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人指派確認準備包建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人指派確認準備包呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_assignment_checklist_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人指派確認清單",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.96 人工決策正式紀錄負責人指派確認清單",
|
||
"顯示指派身分可讀檢查、負責人範圍有效檢查、權責邊界可讀檢查、證據追溯可讀檢查、審查結果引用檢查、代理與備援說明檢查、變更要求拒收檢查、執行與主要來源分離檢查八個只讀確認檢查",
|
||
"只讓人工知道指派確認前需要逐項檢查哪些條件,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人指派確認清單當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人指派確認清單建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人指派確認清單呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_assignment_outcome_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人指派確認結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.97 人工決策正式紀錄負責人指派確認結果分流",
|
||
"顯示維持指派確認等待、要求身分說明補齊、要求負責人範圍更新、要求權責邊界修正、可進人工指派決策、隔離敏感載荷、拒收變更要求、另開執行或主要來源閘門八條只讀結果分流",
|
||
"只讓人工知道指派確認清單後會落到哪一種結果,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人指派確認結果分流當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人指派確認結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人指派確認結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_assignment_decision_preparation_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人指派決策準備包",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.98 人工決策正式紀錄負責人指派決策準備包",
|
||
"顯示結果分流追溯包、負責人身分包、範圍快照包、權責邊界包、證據審查包、隔離與例外包、變更拒收包、執行與主要來源閘門包八個只讀準備包",
|
||
"只讓人工知道指派決策前需要整理哪些資料,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人指派決策準備包當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人指派決策準備包建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人指派決策準備包呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_response_formal_record_owner_assignment_decision_checklist_board",
|
||
"title": "IwoooS 顯示人工決策正式紀錄負責人指派決策檢查清單",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.99 人工決策正式紀錄負責人指派決策檢查清單",
|
||
"顯示決策追溯可讀檢查、負責人身分可確認檢查、範圍快照有效檢查、權責邊界已檢查、證據鏈可讀檢查、隔離與例外已檢查、變更拒收已檢查、執行與主要來源分離檢查八個只讀檢查項",
|
||
"只讓人工知道指派決策前需要逐項檢查哪些條件,不自動指派紀錄負責人、不建立正式紀錄、不批准、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把正式紀錄負責人指派決策檢查清單當成人工批准、正式決策、審批紀錄、紀錄負責人指派或已接受回覆",
|
||
"從正式紀錄負責人指派決策檢查清單建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從正式紀錄負責人指派決策檢查清單呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_headline_movement_acceptance_gate_board",
|
||
"title": "IwoooS 顯示 58% 重估驗收閘門",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.100 58% 重估驗收閘門",
|
||
"顯示 S4.9 負責人回覆驗收、脫敏 payload 匯入驗收、執行期閘門人工批准、GitHub 主要來源就緒證據、AwoooP 正式只讀消費證據與下一次 headline review record 六個只讀判定項",
|
||
"只讓人工理解為什麼 headline 仍是 58% 以及下一個能推動 headline 的實質 evidence,不自動重估、不加分、不建立審批紀錄、不建立執行期閘門"
|
||
],
|
||
"blocked_processing": [
|
||
"把 58% 重估驗收閘門當負責人回覆已收到 / 已接受、脫敏匯入完成、人工批准、正式審批紀錄或 progress delta",
|
||
"從重估閘門建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從重估閘門呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_s49_owner_response_work_order_board",
|
||
"title": "IwoooS 顯示 S4.9 Owner Response 人工收件工作單",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.101 S4.9 Owner Response 人工收件工作單",
|
||
"顯示 public-only / local gap、Gitea wooo endpoint 身分、110 adjacent source scope、repo owner / canonical scope、legacy / inaccessible disposition 五個只讀收件項與六個必填欄位",
|
||
"只讓人工知道第一個可推動 headline 的 owner response 要怎麼填與怎麼驗收,不自動送出 request、不標記 received / accepted、不建立 audit event、不開 progress review"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.9 人工收件工作單當 request sent、owner response received / accepted、audit event emitted、人工批准、正式審批紀錄或 progress delta",
|
||
"從 S4.9 人工收件工作單建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從 S4.9 人工收件工作單呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_s49_owner_response_envelope_board",
|
||
"title": "IwoooS 顯示 S4.9 負責人回覆封套欄位",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.102 S4.9 負責人回覆封套欄位",
|
||
"顯示負責人角色 / 團隊、判定 / 處置、判定理由、受影響範圍、脫敏證據參照、後續負責人六個只讀必填欄位",
|
||
"只讓人工知道負責人回覆要用哪六欄回覆與審查者要逐欄檢查什麼,不自動送出 request、不標記 submitted / received / accepted、不建立 audit event、不開 progress review"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.9 回覆封套欄位當 request sent、owner response submitted / received / accepted、audit event emitted、人工批准、正式審批紀錄或 progress delta",
|
||
"從 S4.9 回覆封套欄位建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從 S4.9 回覆封套欄位呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_s49_owner_response_envelope_preflight_board",
|
||
"title": "IwoooS 顯示 S4.9 負責人回覆封套送件前檢查",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.103 S4.9 負責人回覆封套送件前檢查",
|
||
"顯示六欄完整檢查、判定值允許檢查、脫敏證據檢查、範圍追溯檢查、變更要求拒收檢查與後續負責人追溯檢查六個只讀檢查項",
|
||
"只讓人工知道封套送出前要先檢查什麼,不自動送出 request、不標記 submitted / received / accepted、不建立 audit event、不開 progress review"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.9 送件前檢查當 request sent、owner response submitted / received / accepted、audit event emitted、人工批准、正式審批紀錄或 progress delta",
|
||
"從 S4.9 送件前檢查建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從 S4.9 送件前檢查呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_s49_owner_response_envelope_preflight_outcome_board",
|
||
"title": "IwoooS 顯示 S4.9 負責人回覆封套送件前結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.104 S4.9 負責人回覆封套送件前結果分流",
|
||
"顯示維持封套等待、要求補齊欄位、要求修正判定、隔離敏感證據、要求修正範圍、拒收變更要求與維持後續負責人等待七條只讀分流",
|
||
"只讓人工知道送件前檢查後要回到哪個補正或隔離分流,不自動送出 request、不標記 submitted / received / accepted、不建立 audit event、不開 progress review"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.9 送件前結果分流當 request sent、owner response submitted / received / accepted、audit event emitted、人工批准、正式審批紀錄或 progress delta",
|
||
"從 S4.9 送件前結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從 S4.9 送件前結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_s49_owner_response_request_draft_board",
|
||
"title": "IwoooS 顯示 S4.9 負責人回覆送件請求草稿",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.105 S4.9 負責人回覆送件請求草稿",
|
||
"顯示收件範圍對應草稿、負責人收件對象草稿、脫敏證據參照草稿、禁止變更條款草稿、稽核事件範本草稿與人工送件閘門草稿六個只讀草稿項",
|
||
"只讓人工知道 request 送出前還缺哪些草稿與人工確認,不自動送出 request、不通知負責人、不標記 received / accepted、不建立 audit event、不開 progress review"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.9 送件請求草稿當 request sent、owner response received / accepted、audit event emitted、人工批准、正式審批紀錄或 progress delta",
|
||
"從 S4.9 送件請求草稿建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從 S4.9 送件請求草稿呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_s49_owner_response_dispatch_flow_board",
|
||
"title": "IwoooS 顯示 S4.9 負責人回覆送件鏈路摘要",
|
||
"mode": "observe",
|
||
"source_contract": "source_control_owner_response_validation_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.106 S4.9 負責人回覆送件鏈路摘要",
|
||
"把人工收件工作單、回覆封套欄位、送件前檢查、結果分流、送件請求草稿與人工送件閘門整理成六段只讀流程",
|
||
"只讓人工與 AwoooP 平行 Session 快速判讀目前停在 request_draft,不自動送出 request、不通知負責人、不標記 received / accepted、不建立 audit event、不開 progress review"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.9 送件鏈路摘要當 request sent、owner response received / accepted、audit event emitted、人工批准、正式審批紀錄或 progress delta",
|
||
"從 S4.9 送件鏈路摘要建立專案庫、改可見性、同步 / 刪除 / 強制推送分支或標籤參照,或修改工作流程 / 機密設定",
|
||
"從 S4.9 送件鏈路摘要呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收機密明文值或開執行期閘門"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_security_compliance_frontstage_bridge",
|
||
"title": "前台安全合規保留並整合到 IwoooS",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"保留 /security-compliance 作為前台熟悉入口",
|
||
"在安全合規頁顯示 IwoooS 前台整合說明與只讀導流",
|
||
"在 /iwooos 顯示 S2.107 前台安全合規整合判定,固定 route preserved、removed=false、runtime gate 0 與 action button 0"
|
||
],
|
||
"blocked_processing": [
|
||
"把安全合規入口整合當成 runtime 授權、審批、掃描、修復、部署或 blocking control",
|
||
"從安全合規入口建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從安全合規入口呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_frontstage_security_entry_roles",
|
||
"title": "IwoooS 顯示前台資安入口角色分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.108 前台資安入口角色分流",
|
||
"說明 IwoooS、/security-compliance、/security、/compliance、/awooop/approvals 五個入口各自用途",
|
||
"固定前台入口只做只讀導覽與理解成本收斂,frontstage_security_execution_entry_count=0、action_buttons_allowed=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把前台入口角色分流當成 runtime 授權、審批、掃描、修復、部署或 blocking control",
|
||
"從前台入口角色分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從前台入口角色分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_security_compliance_frontstage_route_role_map",
|
||
"title": "安全合規顯示前台入口角色對照",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /security-compliance 顯示 S2.109 前台入口角色對照",
|
||
"讓使用者從安全合規頁直接理解 IwoooS、/security-compliance、/security、/compliance、/awooop/approvals 五個入口各自用途",
|
||
"固定安全合規入口只做只讀導覽與理解成本收斂,security_compliance_frontstage_execution_entry_count=0、action_buttons_allowed=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把安全合規入口角色對照當成 runtime 授權、審批、掃描、修復、部署或硬性阻擋控制",
|
||
"從安全合規入口角色對照建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從安全合規入口角色對照呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_security_compliance_low_friction_rollout_ladder",
|
||
"title": "安全合規顯示低摩擦分階段收斂",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /security-compliance 顯示 S2.110 低摩擦分階段收斂階梯",
|
||
"說明目前停在 observe_first,後續需補齊證據、人工審查、批准後開閘,再逐步收嚴",
|
||
"固定安全合規分階段收斂只做只讀導覽與預期管理,security_compliance_rollout_runtime_phase_enabled=false、security_compliance_rollout_enforcement_enabled=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把低摩擦分階段收斂階梯當成 runtime 授權、審批、掃描、修復、部署或硬性阻擋控制",
|
||
"從低摩擦分階段收斂階梯建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從低摩擦分階段收斂階梯呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_low_friction_rollout_ladder",
|
||
"title": "IwoooS 顯示低摩擦分階段收斂主控",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.111 低摩擦分階段收斂主控",
|
||
"同步安全合規 S2.110 的 observe-first 策略到 IwoooS 主入口,說明目前仍先觀測與盤點",
|
||
"固定 IwoooS 分階段收斂只做只讀主控視覺化,iwooos_rollout_runtime_phase_enabled=false、iwooos_rollout_enforcement_enabled=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 低摩擦分階段收斂主控當成 runtime 授權、審批、掃描、修復、部署或硬性阻擋控制",
|
||
"從 IwoooS 低摩擦分階段收斂主控建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 低摩擦分階段收斂主控呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_low_friction_next_action_boundary",
|
||
"title": "IwoooS 顯示低摩擦下一步行動邊界",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.112 低摩擦下一步行動邊界",
|
||
"把現階段可做的只讀盤點、脫敏證據包與人工審查準備拆開,並明確標示掃描、主機變更、部署與版本來源操作仍關閉",
|
||
"固定 IwoooS 下一步行動只做前台說明與防誤用,iwooos_next_action_allowed_mode=observe_and_evidence_only、iwooos_next_action_runtime_gate_required=true、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 低摩擦下一步行動邊界當成 runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 低摩擦下一步行動邊界建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 低摩擦下一步行動邊界呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_progress_movement_signal_strip",
|
||
"title": "IwoooS 顯示 58% 進度移動訊號驗收條",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.113 58% 進度移動訊號驗收條",
|
||
"把負責人回覆接受、脫敏證據匯入、執行期閘門、GitHub 主要來源就緒與 AwoooP 落地證據拆成五個 headline movement signals",
|
||
"固定 IwoooS 進度移動訊號只做只讀驗收條,iwooos_progress_current_headline_percent=58、iwooos_progress_review_authorized=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 進度移動訊號驗收條當成進度灌水、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 進度移動訊號驗收條建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 進度移動訊號驗收條呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_progress_unlock_path",
|
||
"title": "IwoooS 顯示第一個進度解鎖路徑",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.114 第一個進度解鎖路徑",
|
||
"把 58% 下一個可推動 headline review 的 S4.9 負責人回覆拆成收到回覆、脫敏證據參照、收件預檢、審查接受與進度審查候選五步",
|
||
"固定 IwoooS 第一解鎖路徑只做只讀收斂,iwooos_first_unlock_path_current_focus=s4_9_owner_response、iwooos_first_unlock_path_headline_review_authorized=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一個進度解鎖路徑當成送件完成、回覆已收到、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一個進度解鎖路徑建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一個進度解鎖路徑呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet",
|
||
"title": "IwoooS 顯示第一解鎖證據包",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.115 第一解鎖證據包",
|
||
"把 S4.9 要讓 58% 真正前進所需的負責人判定 metadata、範圍與來源參照、脫敏聲明、收件預檢軌跡、審查接受摘要拆成五個只讀欄位",
|
||
"固定第一解鎖證據包只做只讀欄位定義,iwooos_first_unlock_evidence_packet_filled_count=0、iwooos_first_unlock_evidence_packet_accepted_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包當成送件完成、回覆已收到、證據已補齊、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收 raw payload 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_preflight_outcomes",
|
||
"title": "IwoooS 顯示第一解鎖證據包預檢分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.116 第一解鎖證據包預檢分流",
|
||
"把可進審查、補 owner metadata、補範圍參照、隔離 raw payload、拒收機密值、等待 reviewer 六條結果拆開",
|
||
"固定預檢分流只做只讀結果說明,ready_for_review_count=0、review_accepted_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包預檢分流當成證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包預檢分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包預檢分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、收 raw payload 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_supplement_path",
|
||
"title": "IwoooS 顯示第一解鎖證據包補件路徑",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.117 第一解鎖證據包補件路徑",
|
||
"把補 owner metadata、補範圍參照、補脫敏聲明、補預檢軌跡、等待 reviewer queue 五步拆開",
|
||
"固定補件路徑只做只讀缺口說明,ready_count=0、submitted_count=0、accepted_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包補件路徑當成 request sent、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包補件路徑建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包補件路徑呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload 或收機密明文值"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_supplement_pre_review",
|
||
"title": "IwoooS 顯示第一解鎖證據包補件送審前檢查",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.118 第一解鎖證據包補件送審前檢查",
|
||
"把 owner metadata 完整、範圍參照可追溯、脫敏聲明成立、預檢軌跡附上、禁止變更條款維持、reviewer queue 未開六項拆開",
|
||
"固定送審前檢查只做只讀條件說明,passed_count=0、ready_for_review_count=0、queue_open=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包補件送審前檢查當成 request sent、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包補件送審前檢查建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包補件送審前檢查呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值或開 reviewer queue"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_supplement_pre_review_outcomes",
|
||
"title": "IwoooS 顯示第一解鎖證據包補件送審結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.119 第一解鎖證據包補件送審結果分流",
|
||
"把可排入 reviewer queue、退回補件、隔離敏感材料、拒收變更要求、維持佇列未開、等待 reviewer 指派六條結果拆開",
|
||
"固定結果分流只做只讀說明,ready_for_queue_count=0、reviewer_assigned_count=0、queue_open=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包補件送審結果分流當成 queue 已開、request sent、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包補件送審結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包補件送審結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue 或指派 reviewer"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_reviewer_assignment_preparation",
|
||
"title": "IwoooS 顯示第一解鎖證據包 reviewer 指派準備包",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.120 第一解鎖證據包 reviewer 指派準備包",
|
||
"把佇列狀態凍結、reviewer 角色邊界、範圍包、證據索引、衝突揭露、指派稽核草稿六個準備包拆開",
|
||
"固定指派準備包只做只讀說明,ready_count=0、reviewer_candidate_count=0、reviewer_assigned_count=0、queue_open=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包 reviewer 指派準備包當成 reviewer candidate 已成立、queue 已開、reviewer 已指派、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包 reviewer 指派準備包建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包 reviewer 指派準備包呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight",
|
||
"title": "IwoooS 顯示第一解鎖證據包 reviewer 指派前檢查",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.121 第一解鎖證據包 reviewer 指派前檢查",
|
||
"把佇列仍關閉、角色邊界可追溯、範圍包可追溯、證據索引已脫敏、衝突揭露已釐清、稽核草稿只含 metadata 六項拆開",
|
||
"固定指派前檢查只做只讀說明,passed_count=0、ready_count=0、reviewer_candidate_count=0、reviewer_assigned_count=0、queue_open=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包 reviewer 指派前檢查當成 reviewer candidate 已成立、queue 已開、reviewer 已指派、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包 reviewer 指派前檢查建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包 reviewer 指派前檢查呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_first_unlock_evidence_packet_reviewer_assignment_preflight_outcomes",
|
||
"title": "IwoooS 顯示第一解鎖證據包 reviewer 指派前檢查結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.122 第一解鎖證據包 reviewer 指派前檢查結果分流",
|
||
"把維持佇列關閉、退回角色邊界、退回範圍包、隔離未脫敏證據、暫停衝突揭露、保留 metadata-only 稽核草稿六條拆開",
|
||
"固定結果分流只做只讀說明,ready_for_candidate_count=0、reviewer_candidate_count=0、reviewer_assigned_count=0、queue_open=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 第一解鎖證據包 reviewer 指派前檢查結果分流當成 reviewer candidate 已成立、queue 已開、reviewer 已指派、補件已送出、證據已補齊、審查已接受、headline review 授權、runtime 授權、審批、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 第一解鎖證據包 reviewer 指派前檢查結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 第一解鎖證據包 reviewer 指派前檢查結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_concrete_security_work_map",
|
||
"title": "IwoooS 顯示目前具體工作地圖",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.123 目前具體工作地圖",
|
||
"把前台資安入口、主機盤點、GitHub/Gitea 遷移準備、S4.9 證據收件、reviewer 人工流程與 runtime 執行 gate 六條具體工作流拆開",
|
||
"固定具體工作地圖只做只讀說明,owner_response_received_count=0、owner_response_accepted_count=0、active_runtime_gate_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 目前具體工作地圖當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 目前具體工作地圖建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 目前具體工作地圖呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_concrete_security_delivery_checklist",
|
||
"title": "IwoooS 顯示目前具體交付清單",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.124 目前具體交付清單",
|
||
"把前台可見工作台、主機範圍與證據欄位、GitHub/Gitea 遷移證據、S4.9 第一解鎖證據包、人工 reviewer 準備序列與 runtime 開閘條件六項交付拆開",
|
||
"固定交付清單只做只讀說明,evidence_received_count=0、evidence_accepted_count=0、reviewer_queue_open=false、ready_for_runtime_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 目前具體交付清單當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 目前具體交付清單建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 目前具體交付清單呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_concrete_security_blocker_resolution",
|
||
"title": "IwoooS 顯示目前阻塞與解除條件",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.125 目前阻塞與解除條件",
|
||
"把 S4.9 owner response、脫敏證據、reviewer queue、GitHub primary readiness、主機證據與 runtime gate 六個阻塞拆開",
|
||
"固定阻塞解除圖只做只讀說明,blocker_resolved_count=0、reviewer_queue_open=false、github_primary_ready=false、runtime_gate_open=false、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 目前阻塞與解除條件當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 目前阻塞與解除條件建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 目前阻塞與解除條件呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_three_axis_product_progress",
|
||
"title": "IwoooS 顯示三軸進度與全產品套用範圍",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.126 三軸進度與全產品套用範圍",
|
||
"把整體加權、框架建置、落地執行與所有產品先套只讀治理拆開",
|
||
"固定全產品第一階段只套三軸進度、只讀資安投影與證據欄位,runtime_product_rollout_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 三軸進度與全產品套用範圍當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 三軸進度與全產品套用範圍建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 三軸進度與全產品套用範圍呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_all_product_coverage_snapshot",
|
||
"title": "IwoooS 顯示全產品只讀套用快照",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 預設展開區顯示 S2.141 全產品只讀套用快照",
|
||
"把核心產品、前台網站、版本來源、Kali / 開發主機、監控工具與未來產品六類範圍濃縮成 compact snapshot",
|
||
"固定完整三軸與 rollout 明細留在進階收合區,runtime_ready_count=0、runtime_execution_authorized=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品只讀套用快照當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品只讀套用快照建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品只讀套用快照呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_rollout_wave_ledger",
|
||
"title": "IwoooS 顯示全產品分階段套用台帳",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.127 全產品分階段套用台帳",
|
||
"把核心產品、公開網站、版本來源、主機覆蓋、監控工具與未來產品拆成六個 read-only rollout waves",
|
||
"固定目前只進 read-only visibility wave,runtime_wave_count=0、enforcement_wave_count=0、owner_response_accepted_count=0、active_runtime_gate_count=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品分階段套用台帳當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品分階段套用台帳建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品分階段套用台帳呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_rollout_acceptance_gates",
|
||
"title": "IwoooS 顯示全產品 rollout 波次驗收門檻",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.128 全產品 rollout 波次驗收門檻",
|
||
"把只讀可視證據、負責人證據、脫敏審查、版本來源證明、主機安全窗口與 rollback / disable 條件拆成六個 gates",
|
||
"固定目前只做到 read-only acceptance,passed_count=0、owner_response_accepted_count=0、runtime_gate_open=false、runtime_wave_count=0、enforcement_wave_count=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品 rollout 波次驗收門檻當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品 rollout 波次驗收門檻建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品 rollout 波次驗收門檻呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_rollout_acceptance_outcomes",
|
||
"title": "IwoooS 顯示全產品 rollout 驗收結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.129 全產品 rollout 驗收結果分流",
|
||
"把維持只讀、退回補證、隔離敏感、版本待證、主機暫停、待人工審與 runtime 未開拆成七條結果分流",
|
||
"固定目前只做 read-only outcome routing,returned=0、quarantined=0、human_review_candidate=0、runtime_candidate=0、owner_response_accepted=0、active_runtime_gate_count=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品 rollout 驗收結果分流當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品 rollout 驗收結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品 rollout 驗收結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_map",
|
||
"title": "IwoooS 顯示全產品證據接線地圖",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.130 全產品證據接線地圖",
|
||
"把產品範圍、負責人回覆、脫敏證據、版本來源真相、主機安全窗口與監控工具摘要拆成六條 metadata-only evidence channels",
|
||
"固定目前只做 read-only evidence wiring,connected_product=0、owner_response_accepted=0、redacted_evidence_pointer_accepted=0、source_control_truth_accepted=0、ready_for_human_review=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品證據接線地圖當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品證據接線地圖建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品證據接線地圖呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight",
|
||
"title": "IwoooS 顯示全產品證據接線預檢",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.131 全產品證據接線預檢",
|
||
"把範圍 metadata、負責人封套、脫敏邊界、版本來源真相、主機安全窗口與工具摘要拆成六個 read-only preflight checks",
|
||
"固定目前只做 read-only evidence wiring preflight,passed=0、ready_for_connection=0、quarantined=0、owner_response_accepted=0、ready_for_human_review=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品證據接線預檢當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品證據接線預檢建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品證據接線預檢呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_outcomes",
|
||
"title": "IwoooS 顯示全產品證據接線預檢結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.132 全產品證據接線預檢結果分流",
|
||
"把維持只讀、退回範圍、退回封套、隔離敏感、版本暫停、主機暫停、工具待摘要與 runtime 關閉拆成八條 read-only outcome lanes",
|
||
"固定目前只做 read-only preflight outcome routing,ready_for_connection=0、returned=0、quarantined=0、runtime_candidate=0、owner_response_accepted=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品證據接線預檢結果分流當成 owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品證據接線預檢結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品證據接線預檢結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_recovery_ledger",
|
||
"title": "IwoooS 顯示全產品預檢補件回收台帳",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.133 全產品預檢補件回收台帳",
|
||
"把範圍補件、封套補件、脫敏重送、版本補證、主機窗口、工具摘要與 runtime 門檻拆成七個 read-only recovery queues",
|
||
"固定目前只做 read-only recovery ledger,submitted=0、accepted=0、returned=0、quarantined=0、ready_for_preflight_retry=0、ready_for_human_review=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品預檢補件回收台帳當成 request sent、owner response 已收到、證據已接受、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品預檢補件回收台帳建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品預檢補件回收台帳呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_gates",
|
||
"title": "IwoooS 顯示全產品補件重試門檻",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.134 全產品補件重試門檻",
|
||
"把範圍、封套、脫敏、版本、主機與工具摘要拆成六個 read-only retry gates",
|
||
"固定目前只做 read-only recovery retry gate,retry_candidate=0、submitted=0、passed=0、failed=0、ready_for_connection=0、ready_for_human_review=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品補件重試門檻當成 request sent、owner response 已收到、證據已接受、預檢通過、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品補件重試門檻建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品補件重試門檻呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_outcomes",
|
||
"title": "IwoooS 顯示全產品重試結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.135 全產品重試結果分流",
|
||
"把維持只讀候選、退回補件、隔離敏感、版本退回、主機暫停、摘要退回、等待人工審查與 runtime 仍關閉拆成八條 read-only retry outcome lanes",
|
||
"固定目前只做 read-only retry outcome routing,ready_for_connection=0、returned=0、quarantined=0、human_review_candidate=0、runtime_candidate=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品重試結果分流當成接線完成、request sent、owner response 已收到、證據已接受、預檢通過、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品重試結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品重試結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_review_candidate",
|
||
"title": "IwoooS 顯示全產品人工審查候選準備",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.136 全產品人工審查候選準備",
|
||
"把候選識別、結果來源、負責人與範圍、脫敏聲明、版本來源證據、主機窗口、工具摘要證據與 runtime 分離拆成八個 read-only preparation packets",
|
||
"固定目前只做 read-only retry review candidate preparation,packet_completed=0、ready=0、queue_open=false、candidate_created=0、reviewer_assigned=0、audit_event_emitted=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品人工審查候選準備當成 reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品人工審查候選準備建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品人工審查候選準備呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight",
|
||
"title": "IwoooS 顯示全產品人工審查候選預檢",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.137 全產品人工審查候選預檢",
|
||
"把候選識別、結果來源、負責人與範圍、脫敏聲明、版本來源證據、主機窗口、工具摘要與 runtime 分離拆成八個 read-only preflight checks",
|
||
"固定目前只做 read-only retry review candidate preflight,passed=0、ready_for_queue=0、queue_open=false、candidate_created=0、reviewer_assigned=0、audit_event_emitted=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品人工審查候選預檢當成 reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品人工審查候選預檢建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品人工審查候選預檢呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight_outcomes",
|
||
"title": "IwoooS 顯示全產品人工審查候選預檢結果分流",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.138 全產品人工審查候選預檢結果分流",
|
||
"把維持只讀、退回識別、退回來源、退回範圍、隔離敏感、版本 / 主機暫停、等待人工審查與 runtime 仍關閉拆成八條 read-only preflight outcome lanes",
|
||
"固定目前只做 read-only retry review candidate preflight outcome routing,ready_for_queue=0、returned=0、quarantined=0、candidate_created=0、reviewer_assigned=0、audit_event_emitted=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品人工審查候選預檢結果分流當成 reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品人工審查候選預檢結果分流建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品人工審查候選預檢結果分流呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight_recovery_ledger",
|
||
"title": "IwoooS 顯示全產品人工審查候選預檢補件回收台帳",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.139 全產品人工審查候選預檢補件回收台帳",
|
||
"把識別補件、來源補件、範圍補件、脫敏重送、版本補證、主機窗口補證、工具摘要補件與 runtime 聲明拆成八個 read-only recovery queues",
|
||
"固定目前只做 read-only retry review candidate preflight recovery ledger,submitted=0、accepted=0、rejected=0、quarantined=0、ready_for_preflight_retry=0、candidate_created=0、reviewer_assigned=0、audit_event_emitted=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品人工審查候選預檢補件回收台帳當成補件已送出、補件已接受、預檢可重跑、reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品人工審查候選預檢補件回收台帳建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品人工審查候選預檢補件回收台帳呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_product_evidence_wiring_preflight_retry_review_candidate_preflight_recovery_retry_gates",
|
||
"title": "IwoooS 顯示全產品人工審查候選預檢補件重試門檻",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"在 /iwooos 顯示 S2.140 全產品人工審查候選預檢補件重試門檻",
|
||
"把識別、來源、範圍、脫敏、版本、主機窗口、工具摘要與 runtime 分離拆成八個 read-only retry gates",
|
||
"固定目前只做 read-only retry review candidate preflight recovery retry gate,candidate=0、submitted=0、passed=0、ready_for_preflight_retry=0、ready_for_human_review=0、candidate_created=0、reviewer_assigned=0、audit_event_emitted=0、ready_for_runtime=0"
|
||
],
|
||
"blocked_processing": [
|
||
"把 IwoooS 全產品人工審查候選預檢補件重試門檻當成補件已送出、補件已接受、預檢通過、reviewer candidate 已建立、reviewer queue 已開、reviewer 已指派、稽核事件已建立、headline review 授權、runtime 授權、掃描、修復、部署、主機變更或版本來源操作入口",
|
||
"從 IwoooS 全產品人工審查候選預檢補件重試門檻建立專案庫、改可見性、同步 / 刪除 / 強制推送 refs,或修改工作流程 / 機密設定",
|
||
"從 IwoooS 全產品人工審查候選預檢補件重試門檻呼叫 Kali、開 SSH、更新主機、切 GitHub 主要來源、停用 Gitea、送出 request、收 raw payload、收機密明文值、開 reviewer queue、建立 reviewer candidate、指派 reviewer 或建立稽核事件"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "enforce_traditional_chinese_security_surface_wording",
|
||
"title": "IwoooS / AwoooP 資安可視區塊維持繁體中文呈現",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 zh-TW 前端文案中使用繁體中文呈現 IwoooS / AwoooP 資安態勢、GitHub readiness、owner response、runtime gate、run state、workflow inventory 與審批邊界",
|
||
"保留 GitHub、Gitea、Kali、AwoooP、IwoooS、refs、workflow、secret、runtime、contract id 與 false flags 作為技術名詞或證據鍵值",
|
||
"以 security-mirror-progress-guard.py 阻擋這批關鍵區塊退回使用者可見英文標籤"
|
||
],
|
||
"blocked_processing": [
|
||
"把繁中文案修正解讀成 runtime 授權、repo 建立、refs 修改、workflow / secrets 修改、secret value 收集、GitHub primary 切換或 Gitea 停用",
|
||
"把技術 contract id、欄位名稱或 false flags 翻譯成無法對照證據的文字",
|
||
"在 zh-TW 使用者可見標題與標籤重新引入 Candidate repos、In-scope repos、Owner response、Workflow inventory、Active runtime gates 或 GitHub Primary Readiness 等英文標籤"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "enforce_awooop_run_detail_traditional_chinese_wording",
|
||
"title": "AwoooP 執行詳情與審批詳情維持繁體中文呈現",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"在 zh-TW 前端文案中使用繁體中文呈現 AwoooP 執行詳情、審批決策、事件證據、MCP Gateway 指標、補救試跑與來源卷宗欄位",
|
||
"保留 run_id、project_id、trace_id、contract id、API 欄位、false flags、MCP Gateway、Runtime 與 ADR-100 作為技術名詞或證據鍵值",
|
||
"以 security-mirror-progress-guard.py 阻擋執行詳情與審批詳情退回英文標籤"
|
||
],
|
||
"blocked_processing": [
|
||
"把詳情頁繁中文案修正解讀成審批批准、runtime 授權、repo 建立、refs 修改、workflow / secrets 修改、secret value 收集、GitHub primary 切換或 Gitea 停用",
|
||
"把技術 ID、API 欄位名稱或 false flags 翻譯成無法對照證據的文字",
|
||
"在 AwoooP 執行詳情、審批詳情或事件證據重新引入 Trace ID、Trigger、Tool、Scope、Dry-run、Tools、Incident Evidence、Run state 或 audit trail 等英文標籤"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "mirror_low_friction_non_blocking_lanes",
|
||
"title": "AwoooP 顯示低摩擦非阻擋升級分流",
|
||
"mode": "observe",
|
||
"source_contract": "security_rollout_policy_v1",
|
||
"allowed_processing": [
|
||
"顯示 7 條 non-blocking escalation lanes",
|
||
"對 LOW / MEDIUM、缺 owner response、partial mirror、source-control drift、Kali observe finding、workflow / secret name gap 與 headline holding 只建立 follow-up",
|
||
"保留 owner_review_required_before_blocking=true 與 runtime_blocking_allowed=false"
|
||
],
|
||
"blocked_processing": [
|
||
"把 follow-up 直接轉成 deploy blocker",
|
||
"把 warn / observe 轉成 runtime enforcement",
|
||
"新增 scan / execute / repo / refs / workflow / secret / runner / primary action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_frontend_posture",
|
||
"title": "IwoooS 顯示資安態勢入口",
|
||
"mode": "observe",
|
||
"source_contract": "security_mirror_status_rollup_v1",
|
||
"allowed_processing": [
|
||
"顯示 58% headline、framework / runtime landing、36 contracts 與 0 active runtime gates",
|
||
"顯示 Exposure Posture、Source-control Supply Chain、Kali 112 Mesh 與 Approval Boundary",
|
||
"顯示 7 條 non-blocking escalation lanes 與目前 evidence refs"
|
||
],
|
||
"blocked_processing": [
|
||
"新增 scan / execute / repair button",
|
||
"把 IwoooS posture 當成 runtime authorization",
|
||
"把前端可見進度當成 GitHub primary、Kali scan 或 repo / refs action approval"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "mirror_iwooos_posture_projection",
|
||
"title": "IwoooS 投影資安態勢契約",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"顯示 58% headline、36 contracts、33 ready、0 active runtime gates",
|
||
"顯示 4 個 posture pillars、7 條 non-blocking lanes 與 evidence refs",
|
||
"顯示 forbidden actions 與 next gate,但不提供 action button",
|
||
"顯示 10 個既有前端資安相關頁面索引:security-compliance、security、compliance、alerts、errors、authorizations、governance、alert-operation-logs、AwoooP approvals、code-review",
|
||
"顯示 4 個 frontend surface coverage groups 與 5 個 conflict controls,協助判讀既有資安頁面的責任邊界",
|
||
"顯示 6 個 operator journey steps:讀態勢、開既有頁面、判讀非阻擋分流、收 owner evidence、等待人工決策、準備後續 runtime gate",
|
||
"顯示 7 個 owner evidence readiness items:S4.9、S4.10、S4.11、S4.12、redacted finding ingestion、Kali scan scope、follow-up runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"新增 scan / execute / repair button",
|
||
"把 posture projection 當成 runtime authorization",
|
||
"把前端 contract count 當成 GitHub primary、Kali scan 或 repo / refs action approval",
|
||
"把既有頁面索引當成 scan、execute、repair、approval、Kali active scan、Code Review gating 或 runtime gate 授權",
|
||
"把 coverage group 或 conflict control 當成 runtime gate、deploy approval、Kali active scan 或 Code Review blocking 授權",
|
||
"把 operator journey step 當成執行流程、自動化 queue、runtime gate、approval 或 deploy 授權",
|
||
"把 owner evidence readiness item 當成已收到 evidence、已批准、runtime gate、Kali active scan 或 GitHub primary 授權"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_existing_frontend_surfaces",
|
||
"title": "IwoooS 顯示既有前端資安頁面索引",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"顯示既有安全、合規、告警、錯誤、授權、治理、稽核、AwoooP approvals 與 Code Review route",
|
||
"只提供頁面連結、來源說明與只讀模式標示",
|
||
"保留原頁既有責任邊界,不在 IwoooS 新增執行控制"
|
||
],
|
||
"blocked_processing": [
|
||
"新增 scan / execute / repair button",
|
||
"把既有頁面索引當成 runtime authorization",
|
||
"把 Code Review 頁面連結當成 blocking gate 或 deploy approval"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_surface_coverage_boundary_matrix",
|
||
"title": "IwoooS 顯示前端資安覆蓋與邊界矩陣",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"顯示 signals / human control / governance audit / engineering review 四個責任面",
|
||
"顯示 preserve ownership、no runtime lift、Code Review not deploy gate、AwoooP approval not security approval、frontend index not Kali caller 五個衝突控制",
|
||
"只更新前端可理解度與 read-only projection evidence"
|
||
],
|
||
"blocked_processing": [
|
||
"把 coverage matrix 當成 runtime authorization",
|
||
"把 overlap control 當成 approval 或 deploy gate",
|
||
"新增 scan / execute / repair / Kali / repo / refs / workflow / runner / primary action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_operator_journey",
|
||
"title": "IwoooS 顯示只讀資安處理旅程",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"顯示 read posture、open surface、triage lane、collect owner evidence、human decision、follow-up runtime gate 六個階段",
|
||
"標示每個階段的責任面與 allowed outcome",
|
||
"只更新前端可理解度與 read-only projection evidence"
|
||
],
|
||
"blocked_processing": [
|
||
"把 journey step 當成 runtime authorization",
|
||
"把 journey step 當成 approval、deploy gate、Kali active scan 或 Code Review blocking gate",
|
||
"新增 scan / execute / repair / repo / refs / workflow / runner / primary action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "show_iwooos_owner_evidence_readiness",
|
||
"title": "IwoooS 顯示 owner evidence readiness board",
|
||
"mode": "observe",
|
||
"source_contract": "iwooos_posture_projection_v1",
|
||
"allowed_processing": [
|
||
"顯示 S4.9 / S4.10 / S4.11 / S4.12 owner response readiness",
|
||
"顯示 redacted finding ingestion、Kali scan scope 與 follow-up runtime gate 仍需人工批准",
|
||
"保留 received=0、accepted=0、active runtime gates=0 的只讀狀態"
|
||
],
|
||
"blocked_processing": [
|
||
"把 readiness board 當成 owner response received 或 accepted",
|
||
"把 readiness board 當成 approval、runtime gate、Kali active scan、repo / refs / workflow / runner / primary 授權",
|
||
"新增 scan / execute / repair / deploy action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "mirror_approval_review_packets",
|
||
"title": "AwoooP 顯示 8 個人工審查封包",
|
||
"mode": "approval_required",
|
||
"source_contract": "security_approval_review_packet_v1",
|
||
"allowed_processing": [
|
||
"顯示 review order、review lane、required reviewers 與 requested decision",
|
||
"顯示仍然禁止事項與 follow-up runtime gate",
|
||
"將人工決策另寫入 security_approval_decision_record_v1"
|
||
],
|
||
"blocked_processing": [
|
||
"把 review packet 當成批准",
|
||
"把 review packet 當成 execution authorization",
|
||
"新增 scan / execute / repo / refs action button"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "mirror_approval_state_transitions",
|
||
"title": "AwoooP 顯示人工決策後狀態轉移",
|
||
"mode": "approval_required",
|
||
"source_contract": "security_approval_state_transition_v1",
|
||
"allowed_processing": [
|
||
"顯示 approve/reject/defer/request_more_evidence/keep_blocked 的 next state",
|
||
"顯示 approve_scope 仍需 follow-up runtime gate",
|
||
"將實際決策另寫入 security_approval_decision_record_v1"
|
||
],
|
||
"blocked_processing": [
|
||
"把 state transition 當成執行命令",
|
||
"批准後立即執行 scan / execute / repo / refs 動作",
|
||
"把 LOW / MEDIUM observation 變成 blocking gate"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "mirror_followup_runtime_gate_templates",
|
||
"title": "AwoooP 顯示後續 runtime gate 準備模板",
|
||
"mode": "approval_required",
|
||
"source_contract": "security_followup_runtime_gate_v1",
|
||
"allowed_processing": [
|
||
"顯示 minimum evidence、preflight checks 與 rollback/disable requirement",
|
||
"顯示 active_runtime_gates=0",
|
||
"提醒 approve_scope 後仍需獨立 runtime gate"
|
||
],
|
||
"blocked_processing": [
|
||
"啟用 runtime gate",
|
||
"新增 scan / execute / repo / refs action button",
|
||
"把 template 當成執行授權"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_redacted_finding_ingestion",
|
||
"title": "先審 redacted finding ingestion adapter",
|
||
"mode": "approval_required",
|
||
"source_contract": "security_approval_queue_v1",
|
||
"allowed_processing": [
|
||
"依 security_approval_gate_v1 人工審查是否可設計 redacted security_finding_v1 ingestion",
|
||
"依 security_approval_decision_record_v1 記錄人工決策",
|
||
"維持只接收摘要與 evidence_ref",
|
||
"保留 patch-only / review gate"
|
||
],
|
||
"blocked_processing": [
|
||
"保存 raw secret/token/cookie/private key/exploit payload",
|
||
"讓 AwoooP 直接啟動 scan",
|
||
"自動修復或自動封鎖 deploy"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_gitea_readonly_inventory",
|
||
"title": "審查 Gitea private/internal 只讀 inventory",
|
||
"mode": "approval_required",
|
||
"source_contract": "gitea_repo_inventory_v1",
|
||
"allowed_processing": [
|
||
"顯示 S4.5 authenticated/admin export request、S4.6 redacted import acceptance、S4.7 owner coverage attestation request 與 coverage gap",
|
||
"顯示 5 個 owner attestation items、received_attestation_count=0 與 accepted_attestation_count=0",
|
||
"顯示 S4.9 owner response request packet、template status ledger、audit event templates、redaction examples、display sections、collection checks、owner response templates、intake preflight checks、outcome lanes、received_response_count=0、audit_events_emitted=0 與 rejection rules",
|
||
"在 security_approval_queue_v1、security_approval_gate_v1、security_approval_review_packet_v1 與 security_followup_runtime_gate_v1 中顯示 S4.7 owner attestation 先行條件",
|
||
"使用 read-only token 或 redacted admin export 補齊 repo list",
|
||
"收到 payload 後只做 schema / redaction / coverage gap 驗收與隔離",
|
||
"只保存 token_present=true/false",
|
||
"更新 migration matrix 與 decision table"
|
||
],
|
||
"blocked_processing": [
|
||
"保存 token value",
|
||
"使用 write-capable token",
|
||
"未完成 S4.7 owner attestation 就標記 inventory complete",
|
||
"把 S4.9 owner response request packet、template status ledger、audit event templates、redaction examples、display sections 或 response packet 當成 read-only inventory 已執行、audit production ingestion 或 primary approval",
|
||
"把 S4.7 owner attestation request 當成 repo migration approval",
|
||
"把 S4.6 payload 驗收當成 primary approval",
|
||
"建立 GitHub repo 或 sync refs"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_github_target_decisions",
|
||
"title": "逐 repo 審 GitHub target / owner / visibility / canonical",
|
||
"mode": "approval_required",
|
||
"source_contract": "source_control_approval_board_v1",
|
||
"allowed_processing": [
|
||
"顯示 S4.10 owner response request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks、owner decision response templates、received_response_count=0 與 rejection rules",
|
||
"逐 repo 更新 owner / visibility / canonical decision",
|
||
"產生 draft reconcile plan 或 ADR",
|
||
"維持 refs action disabled"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.10 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 或 response packet 當成 repo creation、visibility change、refs sync 或 primary approval",
|
||
"建立 repo",
|
||
"修改 visibility",
|
||
"push / delete refs",
|
||
"切 GitHub primary"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_ref_truth_owner_responses",
|
||
"title": "審查 refs truth owner response 收件包",
|
||
"mode": "approval_required",
|
||
"source_contract": "source_control_ref_truth_classification_v1",
|
||
"allowed_processing": [
|
||
"顯示 S4.11 owner response request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks、templates、received_response_count=0 與 rejection rules",
|
||
"依 main/dev truth、deprecated drift、release tag、GitHub-only refs 分組給 owner 判定",
|
||
"response 通過後只更新 read-only classification、draft reconcile plan 與 readiness blocker wording",
|
||
"維持 refs action disabled"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.11 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 或 response packet 當成 refs sync、delete、force push 或 primary approval",
|
||
"fetch / push / delete refs",
|
||
"rewrite branch 或 tag",
|
||
"切 GitHub primary"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_github_primary_readiness_gate",
|
||
"title": "審查 GitHub primary readiness blockers",
|
||
"mode": "approval_required",
|
||
"source_contract": "source_control_primary_readiness_gate_v1",
|
||
"allowed_processing": [
|
||
"顯示 7 個 in-scope repos 仍 blocked",
|
||
"顯示 Gitea inventory、refs truth owner response、workflow/secret name parity 與 rollback ADR 缺口",
|
||
"要求 repo owner 補 owner / visibility / canonical 決策"
|
||
],
|
||
"blocked_processing": [
|
||
"建立 GitHub repo",
|
||
"sync refs",
|
||
"切 GitHub primary",
|
||
"停用或封存 Gitea repo"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_github_primary_rollback_adr",
|
||
"title": "審查 GitHub primary rollback ADR 草案",
|
||
"mode": "approval_required",
|
||
"source_contract": "source_control_primary_rollback_adr_v1",
|
||
"allowed_processing": [
|
||
"顯示 7 個 in-scope repos 的 rollback ADR draft",
|
||
"顯示 owner_approved_count=0、dry_run_completed_count=0、active_cutover_count=0",
|
||
"顯示 rollback triggers、validation windows 與仍禁止事項"
|
||
],
|
||
"blocked_processing": [
|
||
"執行 rollback",
|
||
"切 GitHub primary",
|
||
"sync refs 或修改 webhook",
|
||
"停用 Gitea"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "review_workflow_secret_name_inventory",
|
||
"title": "審查 workflow / secret 名稱 inventory 缺口",
|
||
"mode": "approval_required",
|
||
"source_contract": "source_control_workflow_secret_name_inventory_v1",
|
||
"allowed_processing": [
|
||
"顯示 8 個 candidate repos 的 inventory lanes、4 個 repos 的 local evidence 與 7 個 repos 的 redacted export request",
|
||
"顯示 S4.12 owner response request packet、template statuses、audit event templates、redaction examples、collection checks、intake preflight checks、templates、received_response_count=0 與 rejection rules",
|
||
"要求 repo owner 補 redacted workflow / webhook / runner / deploy key / branch protection / CODEOWNERS / secret 名稱 snapshot",
|
||
"顯示 GitHub hosted runner 額度風險與 self-hosted runner owner review lane",
|
||
"response 通過後只更新 read-only inventory、export request 與 readiness blocker wording",
|
||
"只保存 secret name、owner 與 present/absent metadata,不保存 value"
|
||
],
|
||
"blocked_processing": [
|
||
"把 S4.12 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 或 response packet 當成 workflow 修改、secret 建立、runner 啟用或 primary approval",
|
||
"收集或保存 secret value",
|
||
"修改 workflow 或 webhook",
|
||
"啟用 GitHub hosted runner 或消耗 GitHub Actions 額度",
|
||
"rotate secret",
|
||
"sync refs 或切 GitHub primary"
|
||
]
|
||
},
|
||
{
|
||
"action_id": "keep_kali_execute_blocked",
|
||
"title": "Kali /execute 維持 block candidate",
|
||
"mode": "block_candidate",
|
||
"source_contract": "kali_scan_scope_approval_v1",
|
||
"allowed_processing": [
|
||
"只設計 disable / allowlist / audit gate",
|
||
"保留人工 exception 記錄",
|
||
"持續顯示 blocked reason"
|
||
],
|
||
"blocked_processing": [
|
||
"AwoooP runtime 直接呼叫 /execute",
|
||
"把 /execute 當成一般 MCP action",
|
||
"執行 shell command 自動修復"
|
||
]
|
||
},
|
||
"S2.38 只新增 IwoooS host owner decision record human handoff readiness packets;host_owner_decision_record_human_handoff_readiness_packet_count=8、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 handoff readiness 當 handoff started、handoff ready、review passed、enqueue、正式決策紀錄、接受、批准或 runtime gate。",
|
||
"S2.39 只新增 IwoooS host owner decision record human handoff readiness review checklist;host_owner_decision_record_human_handoff_readiness_review_checklist_item_count=8、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 handoff readiness review 當 review passed、handoff started、handoff ready、enqueue、正式決策紀錄、接受、批准或 runtime gate。",
|
||
"S2.40 只新增 IwoooS host owner decision record human handoff readiness review outcome lanes;host_owner_decision_record_human_handoff_readiness_review_outcome_lane_count=9、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 handoff readiness review outcome 當 review passed、handoff started、handoff ready、enqueue、正式決策紀錄、接受、批准或 runtime gate。",
|
||
"S2.41 只新增 IwoooS host owner decision record human record owner review candidate packets;host_owner_decision_record_human_record_owner_review_candidate_packet_count=9、human_record_owner_review_started_count=0、human_record_owner_review_ready_count=0、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 review candidate packet 當 review started、review ready、handoff、owner decision、正式 decision record、批准或 runtime gate。",
|
||
"S2.42 只新增 IwoooS host owner decision record human record owner review candidate checklist;host_owner_decision_record_human_record_owner_review_candidate_checklist_item_count=9、human_record_owner_review_check_passed_count=0、human_record_owner_review_started_count=0、human_record_owner_review_ready_count=0、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 review candidate checklist 當 checklist passed、review started、review ready、handoff、owner decision、正式 decision record、批准或 runtime gate。"
|
||
],
|
||
"session_sync_notes": [
|
||
"本 rollup 是跨 Session 的共同讀取入口,避免 AwoooP 主線與 Security Supply Chain Session 對進度與 gate 判讀不一致。",
|
||
"S2/S3 目前仍屬框架期;狀態與人工 gate 可見,不代表 production ingestion、scan、repo migration 或 runtime enforcement 已啟用。",
|
||
"S3.1 只新增人工決策紀錄格式;決策紀錄仍維持 execution_authorized=false,不可直接跳到執行面。",
|
||
"S3.2 只新增人工審查封包格式;review packet 只讓 AwoooP 顯示與準備人審,不代表批准。",
|
||
"S3.3 只新增人工決策狀態轉移語義;approve_scope 只進入 waiting runtime gate,不代表可立即執行。",
|
||
"S3.4 只新增後續 runtime gate 準備模板;active_runtime_gates=0,不新增 action button。",
|
||
"S4.0 只新增 GitHub primary readiness gate;github_primary_ready_count=0,不新增 repo / refs / primary switch action。",
|
||
"S4.1 只新增 workflow / secret 名稱 inventory 契約;workflow_secret_inventory_complete_count=0,secret_value_collection_allowed=false,不新增 workflow、secret、repo、refs 或 primary switch action。",
|
||
"S4.2 只新增本機可見 workflow / CODEOWNERS / referenced secret name evidence;local_evidence_repo_count=4、workflow_file_count=31、unique_secret_name_count=43,secret_value_detected=false。",
|
||
"S4.3 只新增 redacted export request package;export_request_count=7、export_lane_count=5、write_token_allowed=false,不呼叫 API、不收 secret value、不修改 GitHub/Gitea 設定。",
|
||
"S4.4 只新增 GitHub primary rollback ADR 草案;repo_rollback_plan_count=7、owner_approved_count=0、dry_run_completed_count=0、rollback_execution_authorized=false,不切 primary、不執行 rollback。",
|
||
"S4.5 只新增 Gitea authenticated inventory export request;public_only_repo_count=2、local_gitea_unique_repo_count=4、export_source_option_count=2、token_value_collection_allowed=false,不使用 token、不寫入 Gitea、不 sync refs。",
|
||
"S4.6 只新增 Gitea redacted import acceptance;received_payload_count=0、accepted_payload_count=0,不匯入 DB dump/git object、不寫 Gitea、不切 primary。",
|
||
"S4.7 只新增 Gitea owner coverage attestation request;required_attestation_item_count=5、received_attestation_count=0,不把 attestation 當 migration approval。",
|
||
"S4.8 只把既有 Gitea approval queue/gate/review packet/follow-up gate 對齊 S4.7 先行條件;approval_queue_total 仍為 8、active_runtime_gates 仍為 0,不新增執行入口。",
|
||
"S4.9 只新增 Gitea owner attestation response request packet、template status ledger、audit event templates、redaction examples、display sections、collection checks 與 response 收件包;owner_response_request_packet_count=1、owner_response_template_status_count=5、owner_response_audit_event_template_count=3、owner_response_redaction_example_count=5、owner_response_display_section_count=8、owner_response_collection_check_count=6、required_response_item_count=5、received_response_count=0、accepted_response_count=0、audit_events_emitted=0,不把 request packet、template status ledger、audit event templates、redaction examples、display sections、collection checks 或 response packet 當 inventory 執行、audit production ingestion 或 primary approval。",
|
||
"S4.10 新增 GitHub target owner decision response request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 與收件包;owner_response_request_packet_count=1、owner_response_template_status_count=7、owner_response_audit_event_template_count=3、owner_response_redaction_example_count=5、owner_response_collection_check_count=6、intake_preflight_check_count=6、response_template_count=7、received_response_count=0、accepted_response_count=0,不把 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 或 response packet 當 repo creation、visibility change、refs sync 或 GitHub primary approval。",
|
||
"S4.11 已新增 refs truth owner response request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 與收件包;owner_response_request_packet_count=1、owner_response_template_status_count=5、owner_response_audit_event_template_count=3、owner_response_redaction_example_count=5、owner_response_collection_check_count=6、intake_preflight_check_count=6、response_template_count=5、received_response_count=0、accepted_response_count=0、audit_events_emitted=0,不把 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 或 response packet 當 refs sync、delete、force push 或 GitHub primary approval。",
|
||
"S4.12 只新增 workflow / secret 名稱 owner response request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 與收件包;owner_response_audit_event_template_count=3、owner_response_redaction_example_count=5、owner_response_collection_check_count=6、intake_preflight_check_count=6、audit_events_emitted=0、response_template_count=5、received_response_count=0、accepted_response_count=0,不把 request packet、template status ledger、audit event templates、redaction examples、collection checks、intake preflight checks 或 response packet 當 secret value collection、workflow modification、GitHub hosted runner enablement 或 GitHub primary approval。",
|
||
"S4.13 只新增 owner response validation rollup、evidence routing rules、display sections、state transition rules、reviewer checklist、reviewer outcome lanes、reviewer audit event templates、reviewer audit display sections、reviewer audit collection checks、reviewer audit redaction examples、reviewer audit retention rules、reviewer audit retention checks、reviewer audit handoff packets、reviewer audit handoff checks、parallel session sync checks、parallel session conflict lanes、parallel session recovery checks 與 parallel session recovery outcome lanes;response_packet_count=4、template_count=22、received_response_count=0、accepted_response_count=0、cross_packet_check_count=10、owner_response_evidence_routing_rule_count=6、owner_response_validation_display_section_count=8、owner_response_validation_state_transition_rule_count=7、owner_response_validation_reviewer_checklist_count=9、owner_response_validation_reviewer_outcome_lane_count=7、owner_response_validation_reviewer_audit_event_template_count=4、owner_response_validation_reviewer_audit_display_section_count=5、owner_response_validation_reviewer_audit_collection_check_count=6、owner_response_validation_reviewer_audit_redaction_example_count=5、owner_response_validation_reviewer_audit_retention_rule_count=5、owner_response_validation_reviewer_audit_retention_check_count=6、owner_response_validation_reviewer_audit_handoff_packet_count=6、owner_response_validation_reviewer_audit_handoff_check_count=6、owner_response_validation_parallel_session_sync_check_count=6、owner_response_validation_parallel_session_conflict_lane_count=6、owner_response_validation_parallel_session_recovery_check_count=6、owner_response_validation_parallel_session_recovery_outcome_lane_count=7、reviewer_audit_events_emitted=0、next_collection_candidate=S4.9,不把 rollup、routing、display sections、state transition rules、reviewer checklist、reviewer outcome lanes、reviewer audit templates、reviewer audit display sections、reviewer audit collection checks、reviewer audit redaction examples、reviewer audit retention rules、reviewer audit retention checks、reviewer audit handoff packets / checks、parallel session sync checks、parallel session conflict lanes、parallel session recovery checks 或 parallel session recovery outcome lanes 當 approval、runtime gate、production ingestion 或 execution authorization。",
|
||
"S1.3 只新增 7 條 low-friction non-blocking escalation lanes;non_blocking_escalation_lane_count=7、owner_review_required_before_blocking=true、runtime_blocking_allowed=false,不把 LOW / MEDIUM、缺 owner response、partial mirror、source-control drift、Kali observe finding、workflow / secret name gap 或 headline holding 直接變 blocking gate、runtime enforcement 或 action button。",
|
||
"S2.29 只新增 IwoooS host owner decision record write-up packets;host_owner_decision_record_writeup_packet_count=7、decision_record_writeup_completed_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 write-up packet 當正式決策紀錄、完成、接受、批准或 runtime gate。",
|
||
"S2.30 只新增 IwoooS host owner decision record write-up review checklist;host_owner_decision_record_writeup_review_checklist_item_count=7、decision_record_writeup_review_passed_count=0、decision_record_writeup_completed_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 write-up review 當正式決策紀錄、完成、接受、批准或 runtime gate。",
|
||
"S2.31 只新增 IwoooS host owner decision record write-up review outcome lanes;host_owner_decision_record_writeup_review_outcome_lane_count=7、decision_record_writeup_review_passed_count=0、decision_record_writeup_completed_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 write-up review outcome 當正式決策紀錄、完成、接受、批准或 runtime gate。",
|
||
"S2.32 只新增 IwoooS host owner decision record formal candidate packets;host_owner_decision_record_formal_candidate_packet_count=7、formal_record_candidate_finalized_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 formal candidate packet 當正式決策紀錄、完成、接受、批准或 runtime gate。",
|
||
"S2.33 只新增 IwoooS host owner decision record formal candidate review checklist;host_owner_decision_record_formal_candidate_review_checklist_item_count=7、formal_record_candidate_review_passed_count=0、formal_record_candidate_finalized_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 formal candidate review 當正式決策紀錄、完成、接受、批准或 runtime gate。",
|
||
"S2.34 只新增 IwoooS host owner decision record formal candidate review outcome lanes;host_owner_decision_record_formal_candidate_review_outcome_lane_count=8、formal_record_candidate_review_passed_count=0、formal_record_candidate_finalized_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 formal candidate review outcome 當正式決策紀錄、完成、接受、批准或 runtime gate。",
|
||
"S2.35 只新增 IwoooS host owner decision record formal record queue packets;host_owner_decision_record_formal_record_queue_packet_count=8、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 formal record queue packet 當 enqueue、正式決策紀錄、接受、批准或 runtime gate。",
|
||
"S2.36 只新增 IwoooS host owner decision record formal record queue review checklist;host_owner_decision_record_formal_record_queue_review_checklist_item_count=8、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 formal record queue review 當 review passed、enqueue、正式決策紀錄、接受、批准或 runtime gate。",
|
||
"S2.37 只新增 IwoooS host owner decision record formal record queue review outcome lanes;host_owner_decision_record_formal_record_queue_review_outcome_lane_count=8、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 formal record queue review outcome 當 review passed、enqueue、正式決策紀錄、接受、批准或 runtime gate。",
|
||
"S2.43 只新增 IwoooS host owner decision record human record owner review candidate outcome lanes;host_owner_decision_record_human_record_owner_review_candidate_outcome_lane_count=9、human_record_owner_review_check_passed_count=0、human_record_owner_review_started_count=0、human_record_owner_review_ready_count=0、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 review candidate outcome 當 checklist passed、review started、review ready、owner decision、正式 decision record、批准或 runtime gate。",
|
||
"S2.44 只新增 IwoooS host owner decision record human record owner review preparation packets;host_owner_decision_record_human_record_owner_review_preparation_packet_count=9、human_record_owner_review_prepared_count=0、human_record_owner_review_check_passed_count=0、human_record_owner_review_started_count=0、human_record_owner_review_ready_count=0、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 review preparation packet 當 preparation completed、review started、review ready、owner decision、正式 decision record、批准或 runtime gate。",
|
||
"S2.45 只新增 IwoooS host owner decision record human record owner review preparation checklist;host_owner_decision_record_human_record_owner_review_preparation_checklist_item_count=9、human_record_owner_review_prepared_count=0、human_record_owner_review_check_passed_count=0、human_record_owner_review_started_count=0、human_record_owner_review_ready_count=0、human_record_owner_handoff_review_passed_count=0、human_record_owner_handoff_started_count=0、human_record_owner_handoff_ready_count=0、formal_record_queue_review_passed_count=0、formal_record_queue_enqueued_count=0、decision_record_created=false、owner_decision_received_count=0、owner_decision_accepted_count=0、owner_approval_record_created=false、runtime_gate_opened=false,不把 review preparation checklist 當 preparation completed、checklist passed、review started、review ready、owner decision、正式 decision record、批准或 runtime gate。",
|
||
"S2.46 新增 IwoooS progress acceleration lanes;progress_acceleration_lane_count=6、headline_percent_after_this_stage=58、owner_response_received_count=0、owner_response_accepted_count=0、payloads_ingested=false、active_runtime_gate_count=0、github_primary_ready_count=0、production_landing_enabled=false,不把 acceleration lane 當授權、進度加分、runtime gate、owner response received、GitHub primary 或 production execution。",
|
||
"S2.47 新增 IwoooS owner response next-action focus;owner_response_next_action_focus_item_count=4,顯示 S4.9 Gitea owner attestation 為下一個收件焦點,S4.10/S4.11/S4.12 依序排隊;owner response received/accepted/rejected 與 audit events emitted 仍為 0,不自動催收、代填、標記 received/accepted、建立 approval record、開 runtime gate 或切 GitHub primary。",
|
||
"S2.48 新增 IwoooS S4.9 owner response preflight;s4_9_owner_response_preflight_check_count=6,顯示 known item、required owner fields、allowed decision、redacted evidence only、no execution request、all five items before accepted 六個收件前檢查;request sent、owner response received/accepted/rejected、preflight passed 與 audit events emitted 仍為 0,不標記 sent/received/accepted、不建立 approval record、不寫 Gitea、不 sync refs、不開 runtime gate 或切 GitHub primary。",
|
||
"S2.49 新增 IwoooS S4.9 owner response request templates;s4_9_owner_response_request_template_count=5,顯示 public-only/local gap、org/user endpoint、110 adjacent scope、repo owner/canonical scope、legacy/inaccessible disposition 五個 request-ready-not-sent templates;request sent、owner response received/accepted/rejected 與 audit events emitted 仍為 0,不自動催收、代填、送出 request、標記 received/accepted、完成 Gitea inventory、寫 Gitea、sync refs 或切 GitHub primary。",
|
||
"S2.50 新增 IwoooS progress hold movement gates;progress_hold_movement_gate_count=5,顯示 owner_response_accepted、redacted_payload_ingested、active_runtime_gate、github_primary_ready、awooop_read_only_landing 五個真正會讓 58% 進入下一輪重估的 gate;owner response received/accepted、payloads_ingested、active_runtime_gate_count、github_primary_ready_count、production_landing_enabled 仍全部為 0/false,不把 gate 顯示當進度加分、授權或 runtime execution。",
|
||
"S2.51 新增 IwoooS AwoooP read-only landing readiness;awooop_read_only_landing_readiness_item_count=6,顯示 rollup snapshot、evidence refs、guard checks、route groups、forbidden outputs 與 production handoff pending;production_landing_enabled=false、execution_router_linked=false、progress_change_applied=false,不把 readiness 當 production consumption、runtime authorization 或 action button。",
|
||
"S2.52 新增 IwoooS AwoooP cross-session handoff packets;awooop_cross_session_handoff_packet_count=6,顯示 PR/branch anchor、progress semantics、required guard commands、forbidden runtime actions、read-only inputs 與 next coordination gate;production_landing_enabled=false、execution_router_linked=false、progress_change_applied=false,不把 handoff 當 merge、deploy、primary switch、refs mutation、guard skip 或 production consumption。",
|
||
"S2.53 新增 AwoooP home IwoooS security mirror candidate;AwoooP 首頁以只讀候選方式顯示 headline 58%、framework 86-88%、runtime 35-40%、active runtime gates 0 與四個接入檢查;production_landing_enabled=false、execution_router_linked=false、runtime_execution_authorized=false、action_buttons_allowed=false,不把首頁候選面板當 production landing、runtime gate、execution router 或 action button。",
|
||
"S2.54 新增 AwoooP work-items IwoooS security mirror candidate;AwoooP 工作鏈路以觀察期只讀工作項顯示 S2.54、IwoooS / security mirror、headline 58%、framework 86-88%、runtime 35-40%、active runtime gates 0 與 owner response waiting;production_landing_enabled=false、execution_router_linked=false、runtime_execution_authorized=false、action_buttons_allowed=false,不把工作項當 production landing、runtime gate、execution router 或 action button。",
|
||
"S2.55 新增 AwoooP approvals IwoooS owner response gate candidate;AwoooP 審批佇列以只讀焦點顯示 S4.9-S4.12 owner response 收件順序、received=0、accepted=0、active runtime gates=0、headline=58%;approval_record_created=false、owner_response_accepted_count=0、runtime_execution_authorized=false、action_buttons_allowed=false,不把 approvals 面板當 owner response received/accepted、approval record、runtime gate、execution router 或 action button。",
|
||
"S2.56 新增 AwoooP contracts IwoooS security contract candidate;AwoooP 合約儀表板以只讀候選顯示 security_mirror_status_rollup_v1、iwooos_posture_projection_v1、source_control_owner_response_validation_rollup_v1、security_rollout_policy_v1、total contracts=36、ready=33、partial=2、active runtime gates=0;contract_publish_authorized=false、contract_mutation_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false,不把 contracts 面板當 contract publish、lifecycle mutation、runtime gate、execution router 或 action button。",
|
||
"S2.57 新增 AwoooP tenants IwoooS tenant scope candidate;AwoooP 租戶管理以只讀候選顯示 AWOOOI first tenant、IwoooS security mirror、Kali 112 / Dev 168 / Dev 111、S4.9-S4.12 owner response waiting、host coverage=3、tenant policy changes=0;tenant_migration_mode_changed=false、tenant_policy_mutation_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false,不把 tenants 面板當 tenant migration、policy mutation、runtime gate、execution router 或 action button。",
|
||
"S2.58 新增 AwoooP runs IwoooS run state candidate;AwoooP Run 監控以只讀候選顯示 security_mirror_run_state_candidate、read_only_dry_run_only、S4.9-S4.12 owner response waiting、active runtime gates 0、security runs=0、owner accepted=0;security_run_created=false、execution_router_linked=false、runtime_execution_authorized=false、action_buttons_allowed=false,不把 runs 面板當 platform run、execution router、runtime gate、execution queue 或 action button。",
|
||
"S2.59 新增既有安全 / 合規頁面 IwoooS reverse bridge;SecurityPanel、CompliancePanel、standalone /security 與 /compliance 反向顯示 IwoooS 只讀納管狀態、headline 58%、framework 86-88%、runtime gates=0、action buttons=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把既有頁面的可見性當 owner response、runtime gate、掃描、修復、批准或部署。",
|
||
"S2.60 新增資安控制頁面 IwoooS reverse bridge;/alerts、/errors、/authorizations 與 /governance 反向顯示 IwoooS 只讀納管狀態、headline 58%、framework 86-88%、runtime gates=0、action buttons=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把告警、錯誤、授權或治理頁面的可見性當 owner response、runtime gate、掃描、修復、批准、部署或 blocking control。",
|
||
"S2.61 新增稽核與工程審查頁面 IwoooS reverse bridge;/alert-operation-logs 與 /code-review 以深色只讀橋接顯示 IwoooS 納管狀態、headline 58%、framework 86-88%、runtime gates=0、action buttons=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把稽核或工程審查頁面的可見性當 owner response、runtime gate、掃描、修復、批准、部署、Code Review blocker 或 Gitea/GitHub action。",
|
||
"S2.62 新增 IwoooS frontend surface connection board;/iwooos 顯示 10 個既有資安入口的連接狀態,區分 embedded bridge、direct bridge 與 AwoooP read-only candidate;frontend_surface_reverse_bridge_status_count=10、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把連接狀態當 owner response、runtime gate、掃描、修復、批准、部署、Code Review blocker 或 Gitea/GitHub action。",
|
||
"S2.63 新增 IwoooS GitHub Primary Readiness 只讀狀態板;/iwooos 顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、refs truth accepted=0、workflow inventory complete=0/7、rollback ADR approved=0;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不建立 GitHub repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.64 新增 AwoooP work-items GitHub Primary Readiness 只讀工作項;/awooop/work-items 顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7,並連回 /iwooos;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把工作項當 GitHub primary approval、不建立 repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.65 新增 AwoooP contracts GitHub Primary Readiness 合約只讀候選;/awooop/contracts 顯示 source_control_primary_readiness_gate_v1、source_control_owner_response_validation_rollup_v1、source_control_primary_rollback_adr_v1、source_control_workflow_secret_name_inventory_v1、iwooos_posture_projection_v1、candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7,並連回 /iwooos;runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把合約候選當 GitHub primary approval、不建立 repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.66 新增 AwoooP approvals GitHub Primary Readiness 審批邊界;/awooop/approvals 顯示 S4.9=0/5、S4.10=0/7、S4.11=0/5、S4.12=0/5、primary_ready_count=0,並連回 /iwooos;approval_record_created=false、github_primary_approval_granted=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把 approvals 邊界當 GitHub primary approval、不建立 repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.67 新增 AwoooP home GitHub Primary Readiness 只讀摘要;/awooop 顯示 candidate repos=8、in-scope=7、primary_ready_count=0、owner response 0/22、workflow inventory complete=0/7,並連回 /iwooos;repo_creation_authorized=false、refs_mutation_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把首頁摘要當 GitHub primary approval、不建立 repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.68 新增 AwoooP tenants GitHub Primary Readiness 租戶範圍;/awooop/tenants 顯示 AWOOOI first tenant source-control scope、S4.9、S4.10、S4.12 owner scope refs、candidate repos=8、in-scope=7、owner response 0/22、tenant scope changes=0,並連回 /iwooos;tenant_source_control_scope_accepted=false、repo_owner_response_accepted=false、repo_creation_authorized=false、refs_mutation_authorized=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false、tenant_policy_mutation_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把租戶範圍當 tenant policy approval 或 GitHub primary approval、不改 migration mode、不改 tenant policy、不建立 repo、不改 visibility、不 sync/delete/force push refs、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.69 新增 AwoooP runs GitHub Primary Readiness Run 邊界;/awooop/runs 顯示 source_control_primary_readiness_gate_v1、source_control_owner_response_validation_rollup_v1、source_control_workflow_secret_name_inventory_v1、source_control_primary_rollback_adr_v1、candidate repos=8、in-scope=7、security runs=0、owner response 0/22、workflow inventory complete=0/7,並連回 /iwooos;security_run_created=false、github_primary_run_created=false、execution_router_linked=false、repo_creation_authorized=false、refs_mutation_authorized=false、workflow_secret_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把 Run 邊界當 platform run、execution router 或 GitHub primary approval、不建立 repo、不改 visibility、不 sync/delete/force push refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.70 修正 IwoooS / AwoooP 資安可視區塊繁體中文呈現;zh-TW 前端文案將 GitHub readiness、owner response、runtime gate、run state、workflow inventory、tenant scope、contract refs、approval lanes 等使用者可見英文標籤改成繁體中文,並由 security-mirror-progress-guard.py 阻擋 Candidate repos、In-scope repos、Owner response、Workflow inventory、Active runtime gates、GitHub Primary Readiness 等英文標籤回流;保留 GitHub、Gitea、Kali、AwoooP、IwoooS、refs、workflow、secret、runtime、contract id 與 false flags 作為技術名詞或證據鍵值;runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.71 修正 AwoooP 執行詳情、審批決策與事件證據繁體中文呈現;zh-TW 前端文案將 Trace ID、Trigger、Trigger Ref、Tool、Scope、First-class、Policy enforced、Approval executor、Legacy bridge、Dry-run、Tools、Incident Evidence、Run state、audit trail 等使用者可見英文標籤改成繁體中文,並由 security-mirror-progress-guard.py 新增 scoped guard 阻擋回流;保留 run_id、project_id、trace_id、MCP Gateway、Runtime、ADR-100 與 false flags 作為技術名詞或證據鍵值;runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不建立 approval record、不執行 runtime、不建立 repo、不改 refs、不改 workflow / secrets、不收 secret value、不切 primary、不停用 Gitea。",
|
||
"S2.72 新增 AwoooP 首頁負責人回覆驗收總覽;/awooop 顯示 S4.9/S4.10/S4.11/S4.12 四包負責人回覆、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由、8 個顯示區塊、7 條狀態轉移、9 個審查清單項目與 7 條審查結果分流;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把首頁驗收總覽當負責人回覆已收到 / 已接受、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.73 新增 AwoooP 工作鏈路負責人回覆驗收只讀工作項;/awooop/work-items 顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、10 個跨包驗收、6 條證據路由與 8 個顯示區塊;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把工作鏈路工作項當負責人回覆已收到 / 已接受、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.74 新增 AwoooP 合約儀表板負責人回覆驗收契約只讀候選;/awooop/contracts 顯示四包、22 個回覆範本、已收到=0、已接受=0、8 個顯示區塊、source_control_owner_response_validation_rollup_v1 與四個來源收件包參照;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、approval_record_created=false、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把合約候選當負責人回覆已收到 / 已接受、審批紀錄、合約發布、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.75 新增 AwoooP 審批佇列負責人回覆驗收只讀審查邊界;/awooop/approvals 顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、8 個顯示區塊、source_control_owner_response_validation_rollup_v1 與四個來源收件包參照;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、owner_response_validation_rejected_count=0、approval_record_created=false、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把審批邊界當負責人回覆已收到 / 已接受、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.76 新增 AwoooP 租戶管理負責人回覆驗收租戶範圍;/awooop/tenants 顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、租戶政策變更=0、8 個顯示區塊、source_control_owner_response_validation_rollup_v1 與四個來源收件包參照;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、owner_response_validation_rejected_count=0、tenant_source_control_scope_accepted=false、tenant_policy_mutation_authorized=false、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把租戶範圍當負責人回覆已收到 / 已接受、租戶政策批准、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.77 新增 AwoooP 執行監控負責人回覆驗收執行邊界;/awooop/runs 顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、資安執行數=0、8 個顯示區塊、source_control_owner_response_validation_rollup_v1 與四個來源收件包參照;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、owner_response_validation_rejected_count=0、security_run_created=false、owner_response_validation_run_created=false、platform_run_creation_authorized=false、execution_router_linked=false、approval_record_created=false、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把執行邊界當負責人回覆已收到 / 已接受、審批紀錄、平台執行、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.78 新增 AwoooP 執行詳情負責人回覆驗收詳情邊界;/awooop/runs/[run_id] 顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、驗收執行=0、8 個顯示區塊、source_control_owner_response_validation_rollup_v1 與四個來源收件包參照;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、owner_response_validation_rejected_count=0、run_detail_owner_response_linked=false、run_detail_approval_record_created=false、mcp_execution_authorized=false、remediation_execution_authorized=false、platform_run_creation_authorized=false、execution_router_linked=false、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把詳情邊界當負責人回覆已收到 / 已接受、審批紀錄、MCP 執行、補救執行、平台執行、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.79 新增 AwoooP 審批決策負責人回覆驗收審批邊界;/awooop/approvals/[run_id] 顯示四包、22 個回覆範本、已收到=0、已接受=0、已拒收=0、審批接受=0、8 個顯示區塊、source_control_owner_response_validation_rollup_v1 與四個來源收件包參照;owner_response_validation_received_count=0、owner_response_validation_accepted_count=0、owner_response_validation_rejected_count=0、approval_decision_owner_response_linked=false、owner_response_acceptance_authorized=false、security_approval_record_created=false、platform_run_creation_authorized=false、execution_router_linked=false、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、runtime_execution_authorized=false、action_buttons_allowed=false、not_authorization=true,不把審批決策邊界當負責人回覆已收到 / 已接受、負責人回覆接受、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.80 新增 IwoooS AwoooP 資安入口覆蓋狀態板;/iwooos 顯示 8 個 AwoooP 實際入口、8 個已覆蓋、執行期閘門=0、執行按鈕=0,並把 S2.72-S2.79 的入口覆蓋集中呈現;awooop_route_coverage_count=8、awooop_route_coverage_visible_count=8、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true、repo_creation_authorized=false、refs_sync_authorized=false、workflow_modification_authorized=false、secret_value_collection_allowed=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false,不把入口覆蓋當負責人回覆已收到 / 已接受、資安審批、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作或執行期閘門。",
|
||
"S2.81 新增 IwoooS 階段式資安收斂節奏圖;/iwooos 顯示先可視、負責人回覆、脫敏證據、人工審查、執行期閘門、主要來源切換六個收斂步驟,並固定初期 observe/warn-only 語義;phase_tightening_mode=gradual、initial_enforcement_level=observe_warn_only、blocking_controls_enabled=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、owner_response_required_before_blocking=true、not_authorization=true、kali_execute_authorized=false、host_update_authorized=false、github_primary_switch_authorized=false、gitea_disablement_authorized=false,不把收斂節奏圖當阻擋型控制、Kali / SSH / 主機更新、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定 / 主要來源動作、Gitea 停用或執行期閘門。",
|
||
"S2.82 新增 IwoooS 下一步人工收件作戰板;/iwooos 顯示 S4.9-S4.12 四個負責人回覆收件包、22 個必備回覆範本、已收到=0、已接受=0、已拒收=0;owner_response_collection_packet_count=4、owner_response_required_template_count=22、owner_response_collection_mode=human_intake_only、request_packet_visible=true、response_packet_created=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把收件作戰板當寄送、回覆已收到 / 已接受、資安審批、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.83 新增 IwoooS 人工回覆安全驗收閘道;/iwooos 顯示 6 條收件後可收、補證、隔離與拒收分流,已匯入=0、已隔離=0、已拒收=0;owner_response_intake_safety_rule_count=6、owner_response_payload_ingested_count=0、owner_response_quarantine_count=0、owner_response_rejection_count=0、owner_response_auto_accept_allowed=false、owner_response_secret_value_quarantine_required=true、owner_response_mutation_request_allowed=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把驗收閘道當自動接受、正式匯入、資安審批、機密明文收集、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.84 新增 IwoooS 人工回覆審查結果分流;/iwooos 顯示維持等待、要求補證、可進人工審查、隔離、拒收、只讀更新與需要人工決策七條結果分流,可審=0、已接受=0、執行期閘門=0;owner_response_review_outcome_lane_count=7、owner_response_review_ready_count=0、owner_response_review_accepted_count=0、owner_response_review_escalated_count=0、owner_response_review_runtime_gate_count=0、owner_response_review_auto_decision_allowed=false、owner_response_review_human_decision_required=true、owner_response_review_only_updates_readonly_state=true、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把審查結果分流當自動決策、接受、批准、正式匯入、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.85 新增 IwoooS 人工決策準備佇列;/iwooos 顯示決策包草稿、證據追溯包、審查人指派、回滾窗口候選、執行期閘門分離與主要來源切換分離六個前置項目,可決策=0、已批准=0、執行期閘門=0;owner_response_human_decision_queue_item_count=6、owner_response_human_decision_ready_count=0、owner_response_human_decision_approved_count=0、owner_response_human_decision_runtime_gate_count=0、owner_response_human_decision_record_created=false、owner_response_human_decision_auto_approval_allowed=false、owner_response_human_decision_requires_reviewer=true、owner_response_human_decision_only_prepares_packet=true、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把人工決策準備佇列當人工批准、正式決策、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.86 新增 IwoooS 人工決策紀錄草稿防誤用;/iwooos 顯示紀錄身分草稿、決策範圍快照、審查角色預留、證據版本凍結、批准不等於執行、後續執行期指標六條保護線,草稿=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_decision_record_draft_guard_count=6、owner_response_decision_record_draft_created_count=0、owner_response_decision_record_formal_count=0、owner_response_decision_record_approved_count=0、owner_response_decision_record_runtime_gate_count=0、owner_response_decision_record_draft_only=true、owner_response_decision_record_write_authorized=false、owner_response_decision_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把紀錄草稿當正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.87 新增 IwoooS 人工決策正式紀錄候選預檢;/iwooos 顯示候選身分追溯、審查人身分邊界、證據版本鏈、範圍與期限、風險與回滾欄位、執行期分離、主要來源分離七個候選預檢項,候選=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_candidate_preflight_count=7、owner_response_formal_record_candidate_count=0、owner_response_formal_record_created_count=0、owner_response_formal_record_approved_count=0、owner_response_formal_record_runtime_gate_count=0、owner_response_formal_record_candidate_only=true、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把正式紀錄候選當正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.88 新增 IwoooS 人工決策正式紀錄候選結果分流;/iwooos 顯示維持候選等待、退回草稿補齊、要求證據更新、要求審查說明、可交紀錄負責人、隔離敏感載荷、拒收變更要求、另開執行或切換閘門八條候選分流,可交接=0、已升格=0、執行期閘門=0;owner_response_formal_record_candidate_outcome_lane_count=8、owner_response_formal_record_candidate_ready_count=0、owner_response_formal_record_candidate_returned_count=0、owner_response_formal_record_candidate_quarantine_count=0、owner_response_formal_record_candidate_rejected_count=0、owner_response_formal_record_candidate_promoted_count=0、owner_response_formal_record_candidate_review_only=true、owner_response_formal_record_auto_promotion_allowed=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把候選結果分流當正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。",
|
||
"S2.89 新增 IwoooS 人工決策正式紀錄負責人交接準備;/iwooos 顯示身分追溯包、決策脈絡包、證據鎖定包、審查備註包、風險回滾包、執行期閘門指標包、主要來源指標包七個交接包,可交接=0、已指派=0、正式紀錄=0、已批准=0、執行期閘門=0;owner_response_formal_record_owner_handoff_packet_count=7、owner_response_formal_record_owner_handoff_ready_count=0、owner_response_formal_record_owner_assigned_count=0、owner_response_formal_record_created_count=0、owner_response_formal_record_approved_count=0、owner_response_formal_record_runtime_gate_count=0、owner_response_formal_record_owner_handoff_only=true、owner_response_formal_record_owner_assignment_authorized=false、owner_response_formal_record_write_authorized=false、owner_response_formal_record_approval_authorized=false、owner_response_formal_record_execution_authorized=false、runtime_execution_authorized=false、active_runtime_gate_count=0、action_buttons_allowed=false、not_authorization=true,不把交接準備當紀錄負責人指派、正式紀錄、人工批准、審批紀錄、專案庫 / 分支與標籤參照 / 工作流程 / 機密設定、主要來源切換、Gitea 停用、Kali / SSH / 主機更新或執行期閘門。"
|
||
],
|
||
"forbidden_actions": [
|
||
"start_kali_scan",
|
||
"call_kali_execute_endpoint",
|
||
"run_credentialed_scan",
|
||
"create_github_repo",
|
||
"change_repo_visibility",
|
||
"sync_git_refs",
|
||
"switch_github_primary",
|
||
"auto_merge",
|
||
"production_deploy",
|
||
"store_secret_token_cookie_private_key_or_exploit_payload",
|
||
"turn_low_medium_observations_into_blocking_gates"
|
||
],
|
||
"progress_acceleration_policy": {
|
||
"display_mode": "progress_acceleration_only",
|
||
"lane_count": 6,
|
||
"headline_percent_after_this_stage": 58,
|
||
"why_previous_progress_felt_slow": "S2.38-S2.45 多數是防止前端誤讀的 framework detail;headline percent 只在 owner response、runtime gate、GitHub primary readiness 或 production landing 變動時調整。",
|
||
"next_cadence": "後續同類 framework detail 合併成 milestone batch,優先推 owner response、AwoooP read-only landing 與 GitHub readiness。",
|
||
"lanes": [
|
||
{
|
||
"lane_id": "progress_acceleration_owner_responses",
|
||
"display_order": 1,
|
||
"acceleration_axis": "owner_response",
|
||
"current_state": "waiting_owner_response",
|
||
"unlock_condition": "S4.9、S4.10、S4.11 或 S4.12 任一 owner response 收到並通過脫敏驗收。",
|
||
"expected_progress_effect": "觸發 headline progress review;不自動加分。",
|
||
"display_mode": "progress_acceleration_only",
|
||
"owner_response_received_count": 0,
|
||
"owner_response_accepted_count": 0,
|
||
"payloads_ingested": false,
|
||
"active_runtime_gate_count": 0,
|
||
"github_primary_ready_count": 0,
|
||
"production_landing_enabled": false,
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"lane_id": "progress_acceleration_redacted_ingestion",
|
||
"display_order": 2,
|
||
"acceleration_axis": "redacted_payload_ingestion",
|
||
"current_state": "waiting_preflight_and_human_review",
|
||
"unlock_condition": "脫敏 payload 通過 preflight、quarantine 與人工 review。",
|
||
"expected_progress_effect": "推進 runtime landing 判讀;不代表 raw payload ingestion。",
|
||
"display_mode": "progress_acceleration_only",
|
||
"owner_response_received_count": 0,
|
||
"owner_response_accepted_count": 0,
|
||
"payloads_ingested": false,
|
||
"active_runtime_gate_count": 0,
|
||
"github_primary_ready_count": 0,
|
||
"production_landing_enabled": false,
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"lane_id": "progress_acceleration_runtime_gate",
|
||
"display_order": 3,
|
||
"acceleration_axis": "runtime_gate",
|
||
"current_state": "intentionally_closed",
|
||
"unlock_condition": "人工批准、scope、rollback、validation evidence 完整後,另開 follow-up runtime gate。",
|
||
"expected_progress_effect": "推進 runtime landing;不得由 IwoooS 前端或 checklist 直接開 gate。",
|
||
"display_mode": "progress_acceleration_only",
|
||
"owner_response_received_count": 0,
|
||
"owner_response_accepted_count": 0,
|
||
"payloads_ingested": false,
|
||
"active_runtime_gate_count": 0,
|
||
"github_primary_ready_count": 0,
|
||
"production_landing_enabled": false,
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"lane_id": "progress_acceleration_github_readiness",
|
||
"display_order": 4,
|
||
"acceleration_axis": "github_primary_readiness",
|
||
"current_state": "waiting_parity_evidence",
|
||
"unlock_condition": "refs truth、workflow / secret 名稱、rollback ADR 與逐 repo owner decision 通過後,primary_ready_count 大於 0。",
|
||
"expected_progress_effect": "觸發 GitHub primary readiness progress review;不自動切 primary。",
|
||
"display_mode": "progress_acceleration_only",
|
||
"owner_response_received_count": 0,
|
||
"owner_response_accepted_count": 0,
|
||
"payloads_ingested": false,
|
||
"active_runtime_gate_count": 0,
|
||
"github_primary_ready_count": 0,
|
||
"production_landing_enabled": false,
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"lane_id": "progress_acceleration_awooop_landing",
|
||
"display_order": 5,
|
||
"acceleration_axis": "awooop_production_landing",
|
||
"current_state": "read_only_landing_pending",
|
||
"unlock_condition": "AwoooP 主線只讀消費 rollup、evidence refs 與 guard result,且不接 execution router。",
|
||
"expected_progress_effect": "讓使用者更有感看到資安網;仍不是 production execution。",
|
||
"display_mode": "progress_acceleration_only",
|
||
"owner_response_received_count": 0,
|
||
"owner_response_accepted_count": 0,
|
||
"payloads_ingested": false,
|
||
"active_runtime_gate_count": 0,
|
||
"github_primary_ready_count": 0,
|
||
"production_landing_enabled": false,
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
},
|
||
{
|
||
"lane_id": "progress_acceleration_cadence_compression",
|
||
"display_order": 6,
|
||
"acceleration_axis": "cadence_compression",
|
||
"current_state": "approved_for_next_framework_work",
|
||
"unlock_condition": "後續同類 packet、checklist、outcome 合併成 milestone batch,除非 guard 需要獨立驗證。",
|
||
"expected_progress_effect": "降低 S2.x 微小增量碎片感;不改變 headline percent。",
|
||
"display_mode": "progress_acceleration_only",
|
||
"owner_response_received_count": 0,
|
||
"owner_response_accepted_count": 0,
|
||
"payloads_ingested": false,
|
||
"active_runtime_gate_count": 0,
|
||
"github_primary_ready_count": 0,
|
||
"production_landing_enabled": false,
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
}
|
||
],
|
||
"runtime_execution_authorized": false,
|
||
"action_buttons_allowed": false,
|
||
"not_authorization": true
|
||
}
|
||
}
|