audit work

src/__Libraries/StellaOps.Cryptography.Plugin.Pkcs11Gost/AGENTS.md

@@ -0,0 +1,17 @@
+# PKCS11 GOST Plugin Charter
+
+## Mission
+Provide PKCS11-backed GOST signing and verification integration for StellaOps cryptography.
+
+## Responsibilities
+- Keep slot and token selection deterministic and explicit.
+- Avoid leaking private key material from descriptors.
+- Track task status in `TASKS.md`.
+
+## Required Reading
+- `docs/modules/platform/architecture-overview.md`
+
+## Working Agreement
+- 1. Update task status in the sprint file and local `TASKS.md`.
+- 2. Validate key options (slot vs token label, PIN sources) explicitly.
+- 3. Gate PKCS11 tests by OS and availability of hardware tokens.

src/__Libraries/StellaOps.Cryptography.Plugin.Pkcs11Gost/TASKS.md

@@ -0,0 +1,10 @@
+# PKCS11 GOST Plugin Task Board
+
+This board mirrors active sprint tasks for this module.
+Source of truth: `docs/implplan/SPRINT_20251229_049_BE_csproj_audit_maint_tests.md`.
+
+| Task ID | Status | Notes |
+| --- | --- | --- |
+| AUDIT-0258-M | DONE | Maintainability audit for StellaOps.Cryptography.Plugin.Pkcs11Gost. |
+| AUDIT-0258-T | DONE | Test coverage audit for StellaOps.Cryptography.Plugin.Pkcs11Gost. |
+| AUDIT-0258-A | TODO | Pending approval for changes. |