-
Notifications
You must be signed in to change notification settings - Fork 1
Issues
is:issue state:open
is:issue state:open
Issue creation is restricted in this repository
Search results
- Status: Open.#279 In aflock-ai/rookery;
- Status: Open.#280 In aflock-ai/rookery;
- Status: Open.#278 In aflock-ai/rookery;
feat(attestor): command-run-ima — chain eBPF file traces to hardware root via Linux IMA + TPM (PCR-10)
ai-agentAuthored or edited by an AI agentAuthored or edited by an AI agentenhancementNew feature or requestNew feature or requestrelease-hardeningSupply-chain integrity hardening for cilock releasesSupply-chain integrity hardening for cilock releasessecuritySecurity hardening / vulnerability mitigationSecurity hardening / vulnerability mitigationStatus: Open.#276 In aflock-ai/rookery;feat(attestor): cloud-attestation — hardware-rooted TEE quotes (AWS Nitro, GCP Confidential VM, Azure MAA)
ai-agentAuthored or edited by an AI agentAuthored or edited by an AI agentenhancementNew feature or requestNew feature or requestrelease-hardeningSupply-chain integrity hardening for cilock releasesSupply-chain integrity hardening for cilock releasessecuritySecurity hardening / vulnerability mitigationSecurity hardening / vulnerability mitigationStatus: Open.#275 In aflock-ai/rookery;feat(attestor): tpm-quote — measured-boot + TPM2 quote bound to build id
ai-agentAuthored or edited by an AI agentAuthored or edited by an AI agentenhancementNew feature or requestNew feature or requestrelease-hardeningSupply-chain integrity hardening for cilock releasesSupply-chain integrity hardening for cilock releasessecuritySecurity hardening / vulnerability mitigationSecurity hardening / vulnerability mitigationStatus: Open.#274 In aflock-ai/rookery;Blind UX test (Argo CD, macOS): friction log + 6 priority bugs
documentationImprovements or additions to documentationImprovements or additions to documentationStatus: Open.#225 In aflock-ai/rookery;cilock keyid <file> (no subcommand) silently prints help instead of erroring
bugSomething isn't workingSomething isn't workingStatus: Open.#223 In aflock-ai/rookery;cilock run writes partial envelope on attestor failure (no .partial marker)
bugSomething isn't workingSomething isn't workingStatus: Open.#222 In aflock-ai/rookery;cilock exit codes inconsistent: --trace failure = 1, sbom soft-fail = 0 (CI can't gate)
bugSomething isn't workingSomething isn't workingStatus: Open.#221 In aflock-ai/rookery;docs: chain-sidecar-spec.md + migration guide + CILOCK_TRACE_MODE docs
documentationImprovements or additions to documentationImprovements or additions to documentationStatus: Open.#216 In aflock-ai/rookery;ops: audit logging on branch-protection bypass (enforce_admins=false)
securitySecurity hardening / vulnerability mitigationSecurity hardening / vulnerability mitigationStatus: Open.#215 In aflock-ai/rookery;