🧠 Conceptual Maps for Democratic Intelligence Architecture
🎯 System Overview · Security · CI/CD · Data Integration · Compliance
📋 Document Owner: CEO | 📄 Version: 1.5 | 📅 Last Updated: 2026-05-06 (UTC)
🔄 Review Cycle: Quarterly | ⏰ Next Review: 2026-08-03
🏢 Owner: Hack23 AB (Org.nr 5595347807) | 🏷️ Classification: Public
🆕 What changed since last review (v1.4 → v1.5, 2026-05-06):
- Added §11 Political Intelligence Methods Mindmap (18 methodologies grouped by domain).
- Added §12 Analysis Templates Mindmap (39 templates grouped by function).
- Added §13 Horizon Stratification Mindmap (T+72h → T+1460d model with analysis gate).
- Updated platform version to v0.8.76, test count to 3,319+, toolchain to Vite 8.0.10 / Vitest 4.1.5.
- Updated agent/skills counts: 24 agents, 93 skills.
🆕 What changed since last review (v1.2 → v1.3, 2026-04-20):
- 📈 Added 🌐 IMF branch under Data Integration alongside World Bank (WEO, Fiscal Monitor, IFS, SDMX 3.0, T+5 projections, pure-TypeScript client
scripts/imf-client.ts— not an MCP server, per ADR 0001).🆕 What changed since last review (v1.1 → v1.2, 2026-04-20):
- Mindmaps expanded to explicitly enumerate the 15 CIA data subsystems (anomaly, coalition, committee, distribution, election, election-cycle, ministry, parties, party, percentile, politician, pre-election, risk, seasonal, voting), 14 agentic news workflows, 24 Copilot agents, 91 skills, 8 MCP servers, 14 languages, and the dual distribution model (static site +
riksdagsmonitornpm package with SLSA provenance).- Added mindmap branch for toolchain: Node.js ≥26, TypeScript 6.0.3, Vite 8.0.9, Vitest 4.1.4, ESLint 10.2.1, Cypress 15.14.0, Playwright 1.59.1, typedoc 0.28.19.
- Added mindmap branch for compliance frameworks anchored to ISMS-PUBLIC: ISO 27001:2022, NIST CSF 2.0, CIS Controls v8.1, GDPR, NIS2, EU CRA, OpenSSF Best Practices #12069, OpenSSF Scorecard.
This document provides conceptual mindmaps for Riksdagsmonitor, offering intuitive visual representations of the system's organization, workflows, and architecture. These mindmaps complement the detailed technical documentation and serve as entry points for understanding the platform's structure.
| Document | Focus | Description |
|---|---|---|
| 🏛️ Architecture | 🏗️ C4 Models | System context, containers, components |
| 📊 Data Model | 📊 Data | Entity relationships and data dictionary |
| 🔄 Flowchart | 🔄 Processes | Business and data flow diagrams |
| 📈 State Diagram | 📈 States | System state transitions and lifecycles |
| 🧠 Mindmap | 🧠 Concepts | System conceptual relationships |
| 💼 SWOT | 💼 Strategy | Strategic analysis and positioning |
| 🛡️ Security Architecture | 🔒 Security | Current security controls and design |
| 🚀 Future Security | 🔮 Security | Planned security improvements |
| 🎯 Threat Model | 🎯 Threats | STRIDE/MITRE ATT&CK analysis |
| 🔧 Workflows | 🔧 DevOps | CI/CD automation and pipelines |
| 🛡️ CRA Assessment | ⚖️ Compliance | EU Cyber Resilience Act conformity |
| 🚀 Future Architecture | 🔮 Evolution | Architectural evolution roadmap |
| 📊 Future Data Model | 🔮 Data | Enhanced data architecture plans |
| 🔄 Future Flowchart | 🔮 Processes | Improved process workflows |
| 📈 Future State Diagram | 🔮 States | Advanced state management |
| 🧠 Future Mindmap | 🔮 Concepts | Capability expansion plans |
| 💼 Future SWOT | 🔮 Strategy | Future strategic opportunities |
mindmap
root((🗳️ Riksdagsmonitor))
🎯 Mission
Swedish Parliament Intelligence
Real-time Monitoring
Historical Analysis
Coalition Predictions
📊 Data Products
Intelligence Dashboard
Party Performance
Government Cabinet
Top 10 Rankings
🔐 Security
ISO 27001 Aligned
STRIDE Threat Model
Defense-in-Depth
99.7% Risk Reduction
🌐 Technology
Static HTML/CSS
GitHub Pages
CI/CD Automation
Global CDN
📋 ISMS Compliance
Security Architecture
Threat Model
Workflows Documentation
Future Roadmap
📦 Platform v0.8.76
3,319+ Tests (84 files)
24 Agents · 93 Skills
14 Languages
8 MCP Servers
mindmap
root((🛡️ Security<br/>Architecture))
🌐 Network Layer
TLS 1.3 Encryption
HTTPS-Only
GitHub CDN
DDoS Protection
🛡️ Application Layer
Static Files Only
No Server-Side Code
No User Input Processing
XSS/SQLi Immune
🔑 Access Control
GitHub MFA Required
SSH Key Authentication
GPG Commit Signing
Branch Protection
📋 Data Integrity
Git Immutable History
Branch Protection Rules
Code Review Required
Audit Trail Complete
🔍 Monitoring
Dependabot Alerts
CodeQL Scanning
Secret Scanning
GitHub Security Dashboard
🚨 Incident Response
Documented Procedures
Rollback Capability
17-Minute RTO
Audit Logs Available
mindmap
root((🔄 CI/CD<br/>Workflows))
✅ Quality Checks
HTML Validation
HTMLHint
Zero Errors
Link Checking
Linkinator v6
Internal + External
Summary Report
Artifacts
30-Day Retention
🔒 Dependency Review
Vulnerability Scanning
Critical/High Block
Medium Warning
License Compliance
Apache 2.0 Required
SBOM Generation
PR Comments
Always Visible
Actionable
🤖 Copilot Setup
MCP Server Init
Filesystem
GitHub API
Git Operations
Agent Environment
Memory
Sequential Thinking
Playwright
Permissions
Least Privilege
Scoped Tokens
🚀 Deployment
GitHub Pages
Automatic
CDN Distribution
HTTPS Enforced
TLS 1.3
Valid Certificate
Global Availability
Low Latency
High Uptime
mindmap
root((📊 Data<br/>Integration))
🏛️ CIA Platform
Intelligence Dashboard
Party Performance
Government Cabinet
Politician Analysis
🇸🇪 Swedish Parliament
Votes Database
Documents Archive
Committee Work
MP Information
🗳️ Election Authority
Results Data
Voter Turnout
Electoral Statistics
Historical Trends
💰 Financial Authority
Budget Data
Spending Analysis
Ministry Finances
Cost Tracking
🌍 World Bank
Country Indicators
Economic Data
Development Metrics
Comparative Analysis
🌐 IMF
WEO (NGDP_RPCH, PCPIPCH, LUR, GGXWDG_NGDP, BCA_NGDPD)
Fiscal Monitor
IFS (monthly monetary/FX/BOP)
GFS_COFOG (committee-aligned spending)
SDMX 3.0 + Datamapper JSON
T+5 Projections (2031 horizon)
Pure-TS client (scripts/imf-client.ts, no MCP)
mindmap
root((🛡️ ISMS<br/>Compliance))
📋 ISO 27001:2022
7 Controls Implemented
Access Control
Cryptography
Network Security
Monitoring
Incident Response
Secure Development
Logging
Control Mapping
Security Architecture
Threat Model
Evidence Documentation
🎯 NIST CSF 2.0
6 Functions Aligned
Identify Assets
Protect Systems
Detect Threats
Respond to Incidents
Recover Operations
Govern Security
Implementation Evidence
Workflows
Architecture Docs
Security Controls
🏆 CIS Controls v8.1
6 Controls Active
IG1: 3 Controls
Encryption
Account Inventory
Audit Logs
IG2: 3 Controls
RBAC
Security Alerting
Secure Development
Compliance Checklist
Regular Reviews
Evidence Collection
mindmap
root((🚀 Future<br/>Evolution))
🔐 Post-Quantum Crypto
2027 Assessment
2027 Hybrid Mode
2028 Full PQC
NIST Standards
🤖 AI-Augmented Security
Anomaly Detection
Threat Intelligence
Behavioral Analysis
Predictive Security
🛡️ Zero-Trust Architecture
Contributor Access
Infrastructure Verify
Network Isolation
Micro-Segmentation
📊 Advanced Monitoring
APM Integration
SIEM Deployment
Distributed Tracing
Real-Time Analytics
🌐 Platform Evolution
CloudFlare Pages
Multi-CDN Strategy
AWS Migration Option
Enhanced WAF
mindmap
root((👥 Stakeholders))
🌍 End Users
Global Audience
Multi-Language Support
Mobile + Desktop
Accessibility Focus
🏛️ Swedish Citizens
Election Monitoring
MP Performance
Coalition Tracking
Historical Data Access
📰 Media & Journalists
Data Journalism
Fact-Checking
Investigation Support
Open Data Access
🎓 Researchers
Academic Research
Political Science
Data Analysis
Historical Studies
👨💻 Developers
Open Source
API Integration
Documentation
Contributing
🔒 Security Team
Hack23 AB
ISMS Oversight
Incident Response
Compliance Audits
mindmap
root((📈 Metrics<br/>& KPIs))
🔒 Security Metrics
Residual Risk: 5.52/10.0
Risk Reduction: 99.7%
Vulnerabilities: 0 Critical
MTTR: <17 Minutes
✅ Quality Metrics
HTML Validation: ✅ Pass
Link Check: ✅ Pass
Code Coverage: N/A Static
Accessibility: WCAG 2.1 AA
📊 Performance Metrics
FCP: <1 Second
TTI: <2 Seconds
CLS: <0.05
CDN Uptime: 99.9%
🔄 CI/CD Metrics
Workflow Success: >95%
Deployment Frequency: Daily
Lead Time: <2 Minutes
Rollback Time: <17 Minutes
📋 Compliance Metrics
ISO 27001: 7 Controls
NIST CSF 2.0: 6 Functions
CIS Controls: 6 Active
Audit Readiness: ✅
mindmap
root((🔍 Threat<br/>Landscape))
⚠️ Current Threats
Low Risk: 8 Threats
Medium Risk: 3 Threats
High Risk: 0 Threats
Overall: LOW
🎯 STRIDE Analysis
Spoofing: 2 Threats
Tampering: 2 Threats
Repudiation: 1 Threat
Info Disclosure: 2 Threats
DoS: 2 Threats
Elevation: 2 Threats
🛡️ Mitigations
Preventive: 7 Controls
Detective: 4 Controls
Corrective: 3 Controls
Total: 14 Controls
🚀 Future Threats
Quantum Computing
AI-Powered Attacks
Supply Chain Attacks
Nation-State APTs
mindmap
root((🌐 Multi-Language<br/>Support))
🇪🇺 European Languages
🇬🇧 English Primary
🇸🇪 Swedish
🇩🇰 Danish
🇳🇴 Norwegian
��🇮 Finnish
🇩🇪 German
🇫🇷 French
🇪🇸 Spanish
🇳🇱 Dutch
🌏 Middle East & Asia
🇸🇦 Arabic
🇮🇱 Hebrew
🇯🇵 Japanese
🇰🇷 Korean
🇨🇳 Chinese
🔧 Technical Implementation
Hreflang Tags
SEO Optimization
Sitemap.xml Entries
Language Switching
Content Localization
mindmap
root((🔬 Political Intelligence<br/>Methods · 18))
📊 Core Analysis
AI-Driven Analysis Guide
Synthesis Methodology
Per-Artifact Methodologies
Per-Document Methodology
🎯 Political Domain
Political Classification Guide
Political Risk Methodology
Political SWOT Framework
Political Threat Framework
Political Style Guide
🌍 Data Sources
IMF Indicator Mapping
World Bank Indicator Mapping
OSINT Tradecraft Standards
📐 Structural
Structural Metadata Methodology
Artifact Catalog
Strategic Extensions
Electoral Domain Methodology
🔍 Quality
Analytical Supplementary
Reference Quality Thresholds
mindmap
root((📋 Analysis<br/>Templates · 39))
🎯 Core Analysis
Intelligence Assessment
Executive Brief
Synthesis Summary
Analysis Index
Significance Scoring
⚠️ Risk & Threat
Risk Assessment
Threat Analysis
Political STRIDE Assessment
Devils Advocate
Wildcards Black Swans
📈 Strategic
SWOT Analysis
Quantitative SWOT
PESTLE Analysis
Scenario Analysis
Implementation Feasibility
🗳️ Electoral
Election 2026 Analysis
Election Cycle Analysis
Coalition Mathematics
Voter Segmentation
🔭 Forward-Looking
Forward Indicators
Horizon PIR Roll-Forward
Cycle Trajectory
Month-Ahead / Week-Ahead
🌍 Comparative
Comparative International
Historical Parallels
Media Framing Analysis
👥 Stakeholder
Stakeholder Impact
Political Classification
Per-File Political Intel
🏛️ Parliamentary
Parliamentary Season
Session Baseline
Cross-Session Intelligence
✅ Quality
Methodology Reflection
Reference Analysis Quality
MCP Reliability Audit
Workflow Audit
🔧 Infrastructure
Cross-Reference Map
Cross-Run Diff
Data Download Manifest
mindmap
root((🔭 Horizon<br/>Stratification))
⏱️ Short-Term
T+72h Breaking News
T+7d Week-Ahead Forecast
📅 Medium-Term
T+30d Month-Ahead Analysis
T+90d Quarter Outlook
📆 Long-Term
T+365d Annual Projection
T+1460d Election Cycle
Election Anchor Date
🏗️ Structure
23-Artifact Families A-D
Family A Core Synthesis (9)
Family B Structural Metadata (2)
Family C Strategic Extensions (5)
Family D Electoral Lenses (7)
🚦 Analysis Gate
Checks 1-9b Automated
AI-FIRST 2-Iteration Model
Pass 1 Create
Pass 2 Review and Improve
📊 Scenario Depth
Quarter: 4 Scenarios
Year: 4+5 Wildcards
Election: 12 Leaves + 5 Wildcards
- Start with System Overview to understand the platform
- Review Security Architecture to grasp defense-in-depth
- Study CI/CD Workflows to understand automation
- Explore Data Integration to see external dependencies
- Begin with ISMS Compliance mindmap
- Examine Security Architecture layers
- Review Threat Landscape analysis
- Check Metrics & KPIs for evidence
- Use Stakeholder Interaction to identify your role
- Review System Overview for capabilities
- Check Metrics & KPIs for performance
- Explore Future Evolution for roadmap
- Study CI/CD Workflows for contribution process
- Review Security Architecture for constraints
- Check Data Integration for external APIs
- Explore Technical Implementation details
| Document | Focus | Description |
|---|---|---|
| 🏛️ Architecture | 🏗️ C4 Models | System context, containers, components |
| 📊 Data Model | 📊 Data | Entity relationships and data dictionary |
| 🔄 Flowchart | 🔄 Processes | Business and data flow diagrams |
| 📈 State Diagram | 📈 States | System state transitions and lifecycles |
| 🧠 Mindmap | 🧠 Concepts | System conceptual relationships |
| 💼 SWOT | 💼 Strategy | Strategic analysis and positioning |
| 🛡️ Security Architecture | 🔒 Security | Current security controls and design |
| 🚀 Future Security | 🔮 Security | Planned security improvements |
| 🎯 Threat Model | 🎯 Threats | STRIDE/MITRE ATT&CK analysis |
| 🔧 Workflows | 🔧 DevOps | CI/CD automation and pipelines |
| 🛡️ CRA Assessment | ⚖️ Compliance | EU Cyber Resilience Act conformity |
| 🚀 Future Architecture | 🔮 Evolution | Architectural evolution roadmap |
| 📊 Future Data Model | 🔮 Data | Enhanced data architecture plans |
| 🔄 Future Flowchart | 🔮 Processes | Improved process workflows |
| 📈 Future State Diagram | 🔮 States | Advanced state management |
| 🧠 Future Mindmap | 🔮 Concepts | Capability expansion plans |
| 💼 Future SWOT | 🔮 Strategy | Future strategic opportunities |
- 🛡️ Secure Development Policy — Architecture documentation requirements
- 🏷️ Classification Framework — CIA triad classification
📋 Document Control:
✅ Approved by: James Pether Sörling, CEO
📤 Distribution: Public
🏷️ Classification:
📅 Effective Date: 2026-02-20
⏰ Next Review: 2026-05-20
🎯 Framework Compliance: 
Status: ✅ Implemented and in production. IMF is the primary economic-data source today; the mindmap below shows the IMF subtree as currently realised. World Bank is the residue-only branch (governance / environment / social). Hub:
analysis/imf/.
mindmap
root((Economic Data Sources — Current))
IMF [PRIMARY · IMPLEMENTED 2026-04]
Client
scripts/imf-client.ts pure TypeScript
scripts/imf-context.ts high-level
scripts/imf-fetch.ts CLI
scripts/imf-codes.ts registry
Dataflows in production
WEO NGDP_RPCH PCPIPCH LUR GGXWDG_NGDP BCA_NGDPD
Fiscal Monitor cyclically-adjusted balance primary balance EDP debt
IFS monthly CPI policy rates reserves
BOP current account quarterly
DOTS bilateral trade monthly
GFS_COFOG 02 Defence 07 Health 09 Education 10 Social protection
PCPS commodity benchmarks
ER SEK FX daily
MFS_IR MFS_PR monetary survey
Cache and provenance
Vintage-tagged in analysis/daily economic-data.json
SHA-256 payload pin
economicProvenance block in every article
Tests
tests/imf-client.test.ts
tests/imf-codes.test.ts
tests/imf-context.test.ts
tests/imf-inventory.test.ts 13 assertions
tests/economic-context-multi-provider.test.ts
World Bank [RESIDUE ONLY governance environment social]
worldbank-mcp MCP server
WGI governance CC.EST RL.EST VA.EST GE.EST RQ.EST PV.EST
Environment CO2 renewables forest water
Social residue literacy participation gender ratios
Defence depth MS.MIL historicals
SCB [SWEDISH GROUND TRUTH]
scb-mcp MCP server PxWeb v2
AKU monthly labour
KPI monthly inflation
Regional municipal
Budget execution
mindmap
root((Statskontoret Integration))
Purpose
Swedish agency structure
Government-body headcount
Central-government budget execution
Sources
Myndighetsforteckning
Annual
XLSX
Headcount by department
Arsutfall
Annual
XLSX
CSV ZIP
Manadsutfall
Monthly
XLSX
CSV ZIP
Budget time series
Long-run state budget context
Code
statskontoret-client.ts
Discovery
XLSX parser
CSV ZIP parser
Typed StatskontoretError
statskontoret-fetch.ts
list-sources
discover
headcount
Governance
Public classification
No MCP server
No credentials
www.statskontoret.se allowlist
analysis/statskontoret inventory
Tests
client tests
CLI parsing tests
inventory tests
| 🌐 Platforms | 📦 Open-Source Projects | 🛡️ Governance & Standards |
|---|---|---|
|
🗳️ Riksdagsmonitor — Swedish Parliament intelligence 🇪🇺 EU Parliament Monitor — European coverage 🕵️ Citizen Intelligence Agency — political-data engine 🌐 Hack23 AB — corporate site 📰 Hack23 Blog — engineering & policy 💼 Hack23 on LinkedIn |
🗳️ Hack23/riksdagsmonitor 🕵️ Hack23/cia 🇪🇺 Hack23/euparliamentmonitor 🔌 Hack23/european-parliament-mcp ✅ Hack23/cia-compliance-manager 🥋 Hack23/black-trigram 🏠 Hack23/homepage |
🛡️ Hack23 ISMS-PUBLIC — public ISMS 🔒 Information Security Policy 🤖 AI Policy 🧪 Secure Development Policy 🎯 Threat Modeling Policy 🏷️ Classification Framework |
🗳️ Empower citizens · 🔍 Strengthen democratic accountability · 🕵️ Illuminate the political process
© 2008–2026 Hack23 AB (Org.nr 559534-7807) · Maintainer: James Pether Sörling, CISSP CISM