CIA Compliance Manager v1.1.50
·
313 commits
to main
since this release
Immutable
release. Only release title and notes can be modified.
What's Changed
ποΈ Infrastructure & Performance
- build(deps-dev): bump knip from 6.4.0 to 6.4.1 @dependabot[bot] (#1119)
- build(deps-dev): bump globals from 17.4.0 to 17.5.0 @dependabot[bot] (#1118)
- build(deps-dev): bump typedoc from 0.28.18 to 0.28.19 in the documentation group @dependabot[bot] (#1117)
- build(deps-dev): bump knip from 6.3.1 to 6.4.0 @dependabot[bot] (#1116)
π¦ Dependencies
- build(deps-dev): bump knip from 6.4.0 to 6.4.1 @dependabot[bot] (#1119)
- build(deps-dev): bump globals from 17.4.0 to 17.5.0 @dependabot[bot] (#1118)
- build(deps-dev): bump typedoc from 0.28.18 to 0.28.19 in the documentation group @dependabot[bot] (#1117)
- build(deps-dev): bump knip from 6.3.1 to 6.4.0 @dependabot[bot] (#1116)
π¦ npm Package
npm install cia-compliance-managerVerify provenance: npm audit signatures
π Release Metrics & Evidence
All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.
π Security & Supply Chain Protection
This release includes:
- β SLSA Build Provenance Attestations β Cryptographically signed build provenance
- β Software Bill of Materials (SBOM) β Complete dependency inventory in SPDX format
- β npm Provenance β Package published with npm provenance for supply chain integrity
- β CodeQL Security Scanning β Automated vulnerability detection
- β Dependency Scanning β Continuous vulnerability monitoring with Dependabot
Verify attestations:
gh attestation verify cia-compliance-manager-1.1.50.zip -R Hack23/cia-compliance-managerBrowse attestations: View all attestations
Code Quality & Security Analysis
π ISMS Compliance & Policies
Compliance Frameworks
CIA Compliance Manager follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.
Test Documentation
Compliance Evidence
ποΈ Architecture Documentation
| Document | Description |
|---|---|
| ποΈ Architecture | System architecture overview |
| π Security Architecture | Security design and controls |
| π‘οΈ Threat Model | Threat analysis and mitigations |
| π Data Model | Data structures and relationships |
| π Flowchart | Application workflows |
| π State Diagram | State machine documentation |
| π§ Mindmap | Conceptual overview |
| πΌ SWOT Analysis | Strategic analysis |
π¦ Release Artifacts
| Artifact | Description | Verification |
|---|---|---|
cia-compliance-manager-1.1.50.zip |
Production build | SHA-256 checksum, SLSA attestation |
cia-compliance-manager-1.1.50.spdx.json |
SBOM (SPDX format) | SBOM attestation |
*.intoto.jsonl |
SLSA attestations | gh attestation verify |
| npm package | cia-compliance-manager |
npm provenance |
π Deployment & Links
- Live Application: https://ciacompliancemanager.com
- API Documentation: https://ciacompliancemanager.com/docs/api/
- npm Package: https://www.npmjs.com/package/cia-compliance-manager
- GitHub Repository: https://github.com/Hack23/cia-compliance-manager
Hack23 Ecosystem
ποΈ Built With
- β‘ Vite 8.x β Lightning-fast build tool
- βοΈ React 19.x β Modern UI framework
- π· TypeScript 6.0 β Type-safe development
- π Chart.js 4.x β Interactive data visualization
- π§ͺ Vitest 4.x β Fast unit testing framework
- π Cypress 15.x β End-to-end testing
- π¦ Node.js >= 25.0.0 β Runtime environment
- π¨ Tailwind CSS 4.x β Utility-first CSS framework
π€ Contributors
Thanks to @dependabot[bot], @pethers and dependabot[bot] for their contributions to this release!
π Release Information
Full Changelog: v1.1.49...1.1.50
Build Attestations: View SLSA Attestations
Download: Release Assets
Contributors
pethers and dependabot