Skip to content

platform: audit remediation (trace schema, CI, ADRs, telemetry)#40

Open
abhishekeb211 wants to merge 8 commits into
projnanda:mainfrom
abhishekeb211:platform/audit-remediation
Open

platform: audit remediation (trace schema, CI, ADRs, telemetry)#40
abhishekeb211 wants to merge 8 commits into
projnanda:mainfrom
abhishekeb211:platform/audit-remediation

Conversation

@abhishekeb211

Copy link
Copy Markdown

Summary

  • Enterprise audit doc + simulation plugin UserWarnings (jwt, did_key, noop)
  • Trace schema v1: trace_header with schema_version, JSON Schema docs (ADR-003)
  • Windows scripts/ci-local.ps1; CI matrix Python 3.12/3.13; CycloneDX SBOM job
  • Formal ADRs (001-005) + RFC-001 network transport
  • LLM token telemetry (nest_shell.telemetry, judge log_judge_usage)
  • Audit doc refresh with 552-test baseline and gap table updates

Test plan

  • ci-local.ps1 — 552 passed locally
  • nest doctor 7/7
  • nest run marketplace — first JSONL line is trace_header schema 1.0
  • GitHub Actions green on 3.12 + 3.13
  • SBOM artifact produced

Out of scope (60-90 day)

  • TCP/gRPC transport implementation (follow-up PR)
  • OpenTelemetry / production observability
  • SOC2 / formal compliance

Add ENTERPRISE_AUDIT.md forensic documentation, ignore generated PDF, and emit UserWarning when simulation-only reference plugins instantiate.
Write trace_header as first JSONL line with schema_version 1.0. Filter header from validators and metrics. Document schema in docs/trace-schema.md and trace-schema.json.
Add PowerShell CI script for Windows contributors, run lint/typecheck/test on Python 3.12 and 3.13, and upload CycloneDX SBOM artifact from uv export.
Log input/output token counts to stderr when NEST_LLM_TELEMETRY is enabled (default on). Disable with NEST_LLM_TELEMETRY=0.
Refresh Section 17 gaps, gap table, and Appendix A evidence. Fix ruff E402 imports, public log_judge_usage, and trace_header-aware scenario test.
Update baseline to 552 tests, trace_header v1.0, ADR links, gap table, security controls, Sprint 0 checklist, stakeholder matrix, and Appendix A/B for 2026-06-25 refresh.
…opback)

Add PrepaidCredits simulation UserWarning, NEST_JUDGE_MAX_CALLS/NEST_JUDGE_TOKEN_BUDGET, bandit CI job, RFC-001 tcp_loopback transport plugin, and audit doc updates.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant