47168fec38
- Introduced a new VEX compact fixture for testing purposes. - Implemented `verify_export.py` script to validate Findings Ledger exports, ensuring deterministic ordering and applying redaction manifests. - Added a lightweight stub `HarnessRunner` for unit tests to validate ledger hashing expectations. - Documented tasks related to the Mirror Creator. - Created models for entropy signals and implemented the `EntropyPenaltyCalculator` to compute penalties based on scanner outputs. - Developed unit tests for `EntropyPenaltyCalculator` to ensure correct penalty calculations and handling of edge cases. - Added tests for symbol ID normalization in the reachability scanner. - Enhanced console status service with comprehensive unit tests for connection handling and error recovery. - Included Cosign tool version 2.6.0 with checksums for various platforms.
40 lines
894 B
YAML
40 lines
894 B
YAML
schemaVersion: redaction.v1
|
|
generatedAt: 2025-12-02T00:00:00Z
|
|
owner: findings-ledger-guild
|
|
rules:
|
|
ledger.event:
|
|
- path: $.actor.id
|
|
action: mask
|
|
maskWith: "user:<realm>"
|
|
- path: $.payload.comment
|
|
action: drop
|
|
- path: $.payload.ticket.url
|
|
action: drop
|
|
- path: $.payload.attachments[*].downloadUrl
|
|
action: drop
|
|
export.canonical:
|
|
- path: $.actorId
|
|
action: mask
|
|
maskWith: "user:<realm>"
|
|
- path: $.comment
|
|
action: drop
|
|
- path: $.attachments
|
|
action: drop
|
|
export.compact:
|
|
- path: $.actorId
|
|
action: drop
|
|
- path: $.comment
|
|
action: drop
|
|
- path: $.policyRationale
|
|
action: drop
|
|
- path: $.attachments
|
|
action: drop
|
|
- path: $.labels
|
|
action: drop
|
|
observability:
|
|
- path: $.event_body
|
|
action: drop
|
|
- path: $.actor_id
|
|
action: hash
|
|
hashWith: sha256
|