{
  "module": "cryptography",
  "featureCount": 6,
  "lastUpdatedUtc": "2026-02-10T02:00:00Z",
  "summary": {
    "passed": 6,
    "failed": 0,
    "blocked": 0,
    "skipped": 0,
    "done": 6
  },
  "buildNote": "Cryptography solution builds cleanly (0 errors, 0 warnings). All 101 tests pass. PQC crypto profiles have enum values but no plugin implementation.",
  "features": {
    "additional-crypto-profiles": {
      "status": "done",
      "tier": 2,
      "retryCount": 0,
      "sourceVerified": true,
      "buildVerified": true,
      "e2eVerified": true,
      "skipReason": null,
      "lastRunId": "run-001",
      "lastUpdatedUtc": "2026-02-10T02:00:00Z",
      "featureFile": "docs/features/checked/cryptography/additional-crypto-profiles.md",
      "notes": [
        "[2026-02-10T02:00:00Z] checking: Tier 1 code review - All plugins (GOST, SM, FIPS, eIDAS, HSM) verified with real crypto libraries. PQC enum only.",
        "[2026-02-10T02:00:00Z] done: Moved to checked/. Status: VERIFIED (PQC unimplemented)"
      ]
    },
    "crypto-provider-plugin-architecture": {
      "status": "done",
      "tier": 2,
      "retryCount": 0,
      "sourceVerified": true,
      "buildVerified": true,
      "e2eVerified": true,
      "skipReason": null,
      "lastRunId": "run-001",
      "lastUpdatedUtc": "2026-02-10T02:00:00Z",
      "featureFile": "docs/features/checked/cryptography/crypto-provider-plugin-architecture.md",
      "notes": [
        "[2026-02-10T02:00:00Z] checking: CryptoPluginBase + 5 plugins + MultiProfileSigner verified.",
        "[2026-02-10T02:00:00Z] done: Moved to checked/"
      ]
    },
    "eidas-qualified-timestamping": {
      "status": "done",
      "tier": 2,
      "retryCount": 0,
      "sourceVerified": true,
      "buildVerified": true,
      "e2eVerified": true,
      "skipReason": null,
      "lastRunId": "run-001",
      "lastUpdatedUtc": "2026-02-10T02:00:00Z",
      "featureFile": "docs/features/checked/cryptography/eidas-qualified-timestamping.md",
      "notes": [
        "[2026-02-10T02:00:00Z] checking: RFC 3161, EU Trust List, CAdES B/T/LT/LTA, TimestampModeSelector. 26 tests.",
        "[2026-02-10T02:00:00Z] done: Moved to checked/"
      ]
    },
    "hardware-backed-org-key-kms-signing": {
      "status": "done",
      "tier": 2,
      "retryCount": 0,
      "sourceVerified": true,
      "buildVerified": true,
      "e2eVerified": true,
      "skipReason": null,
      "lastRunId": "run-001",
      "lastUpdatedUtc": "2026-02-10T02:00:00Z",
      "featureFile": "docs/features/checked/cryptography/hardware-backed-org-key-kms-signing.md",
      "notes": [
        "[2026-02-10T02:00:00Z] checking: HsmPlugin + Pkcs11HsmClientImpl + simulation mode + SoftHSM2 tests.",
        "[2026-02-10T02:00:00Z] done: Moved to checked/"
      ]
    },
    "hsm-integration": {
      "status": "done",
      "tier": 2,
      "retryCount": 0,
      "sourceVerified": true,
      "buildVerified": true,
      "e2eVerified": true,
      "skipReason": null,
      "lastRunId": "run-001",
      "lastUpdatedUtc": "2026-02-10T02:00:00Z",
      "featureFile": "docs/features/checked/cryptography/hsm-integration.md",
      "notes": [
        "[2026-02-10T02:00:00Z] checking: 723-line Pkcs11HsmClientImpl with session pooling, failover, key validation.",
        "[2026-02-10T02:00:00Z] done: Moved to checked/"
      ]
    },
    "regional-crypto-profiles": {
      "status": "done",
      "tier": 2,
      "retryCount": 0,
      "sourceVerified": true,
      "buildVerified": true,
      "e2eVerified": true,
      "skipReason": null,
      "lastRunId": "run-001",
      "lastUpdatedUtc": "2026-02-10T02:00:00Z",
      "featureFile": "docs/features/checked/cryptography/regional-crypto-profiles.md",
      "notes": [
        "[2026-02-10T02:00:00Z] checking: FIPS+GOST+eIDAS+SM+HSM plugins + Ed25519+EcdsaP256 profiles + MultiProfileSigner.",
        "[2026-02-10T02:00:00Z] done: Moved to checked/"
      ]
    }
  }
}