feat: pin constitution hash and manifest evidence
This commit is contained in:
Vault Sovereign
@@ -9,7 +9,7 @@ vm-cc is the continuous compliance and evidence orchestration layer. It ingests
|
||||
## Layout
|
||||
- config/: source/rule/redaction/schedule configs
|
||||
- schemas/: JSON/YAML schemas for evidence, rules, reports
|
||||
- 00-frameworks/: frameworks and mappings (e.g., CIS→rules)
|
||||
- 00-frameworks/: frameworks and mappings (e.g., CIS->rules)
|
||||
- 10-controls/: control definitions
|
||||
- 20-collectors/: collectors to pull evidence from vm-skills, ops, ledger, mcp
|
||||
- 30-evidence/: raw evidence drops (per-run folders)
|
||||
@@ -19,7 +19,7 @@ vm-cc is the continuous compliance and evidence orchestration layer. It ingests
|
||||
- 70-violations/: findings and escalations
|
||||
- 80-remediation/: playbooks/automation for fixes
|
||||
- 90-automation/: pipelines/glue for end-to-end runs
|
||||
- scripts/: thin CLI wrappers to orchestrate collect → evaluate → report → sign
|
||||
- scripts/: thin CLI wrappers to orchestrate collect -> evaluate -> report -> sign
|
||||
|
||||
## Run directories
|
||||
Each execution writes to a per-run folder set:
|
||||
@@ -45,6 +45,7 @@ RUN_ID format: `YYYYMMDDThhmmssZ_<shorthash>`.
|
||||
"sha256": "..."
|
||||
}
|
||||
],
|
||||
"details": { "entries_checked": 18231 }
|
||||
"details": { "entries_checked": 18231 },
|
||||
"remediation": null
|
||||
}
|
||||
```
|
||||
|
||||
Reference in New Issue
Block a user