53889d85e7
- Introduced new API endpoints for creating, retrieving, amending, and listing CVSS receipts. - Updated IPolicyEngineClient interface to include methods for CVSS receipt operations. - Implemented PolicyEngineClient to handle CVSS receipt requests. - Enhanced Program.cs to map new CVSS receipt routes with appropriate authorization. - Added necessary models and contracts for CVSS receipt requests and responses. - Integrated Postgres document store for managing CVSS receipts and related data. - Updated database schema with new migrations for source documents and payload storage. - Refactored existing components to support new CVSS functionality.
Policy Engine Host Template
This service hosts the Policy Engine APIs and background workers introduced in Policy Engine v2. The project currently ships a minimal bootstrap that validates configuration, registers Authority clients, and exposes readiness/health endpoints. Future tasks will extend it with compilation, evaluation, and persistence features.
Compliance Checklist
- Configuration loads from
policy-engine.yaml/environment variables and validates on startup. - Authority client scaffolding enforces
policy:*+effective:writescopes and respects back-channel timeouts. - Resource server authentication requires Policy Engine scopes with tenant-aware policies.
- Health and readiness endpoints exist for platform probes.
- Deterministic policy evaluation pipeline implemented (POLICY-ENGINE-20-002).
- Mongo materialisation writers implemented (POLICY-ENGINE-20-004).
- Observability (metrics/traces/logs) completed (POLICY-ENGINE-20-007).
- Comprehensive test suites and perf baselines established (POLICY-ENGINE-20-008).