portal

Author	SHA1	Message	Date
Дмитрий	527a779d9b	docs(security): pg_audit #28 + pg_anonymizer #29 установлены на боевом liderra.ru - CLAUDE.md v2.25->2.26: §3.4 #28/#29 -> прод, §6 +абзац, §0 Tooling cross-ref v2.21->v2.22, §9 +запись - Tooling Прил.Н v2.21->2.22: §5.1 #28/#29 attribute-блоки +статус, §6 compliance-таблица, §10.4 шаг 2 -> прод - новый docs/security/pgaudit-anonymizer-setup.md (установка/использование/закрепление версии PG) Расширения PostgreSQL фазы 3, недоступные на dev native-Windows; установлены на боевом Ubuntu 24.04 / PostgreSQL 16. pg_audit (152-ФЗ аудит-журнал, log_parameter=off), pg_anonymizer 3.0.13 (Rust, on-demand LOAD). Версия PG закреплена (apt-mark hold + PGDG off) после незапланированного 16.13->16.14. Гейты: cross-ref-checker + l1-watcher 0 drift, markdownlint 0. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-22 04:58:47 +03:00
Дмитрий	3fc5501dc5	docs(infosec): A8 ZAP #68 + Ward #70 установлены портативно — PENDING INSTALL снят - ZAP cross-platform 2.17.0 + MCP-аддон mcp-alpha-0.0.1 на portable Temurin JRE 17 (bin/, gitignored) - Ward v0.4.1 собран portable Go 1.26.3 (bin/ward.exe); smoke app/ → 2 находки (APP_DEBUG/APP_ENV) - setup-доки docs/security/zap-setup.md + ward-setup.md - нормативный синк: Tooling v2.21 / CLAUDE.md v2.25 / PSR_v1 v3.21 / Pravila v1.38 - ADR-014 amended (Status/Decision/Consequences) + routing-off-phase v1.5 - gates GREEN: cross-ref + l1-watcher 0 drift / markdownlint / lychee / gitleaks Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-21 15:36:06 +03:00
Дмитрий	05437ba79a	feat(security): Nuclei #69 — install + verified smoke (CLI, not MCP) bin/nuclei.exe v3.8.0 + 13060 templates. Smoke vs live portal verified (1057 reqs sent to 127.0.0.1:8000, scan completed, 0 matched on tech tag). Quirks documented: target 127.0.0.1 not localhost (resolver); low rate-limit for single-threaded artisan serve. Wired as CLI (like gitleaks/squawk/Trivy), not MCP — nuclei doesn't speak MCP; no .mcp.json/l1-watcher needed for #69. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-21 14:32:50 +03:00
Дмитрий	1933129497	docs(security): replace Enlightn (#70 ) with Ward per IS9 vet + L13 Enlightn abandoned (Packagist) + no Laravel 13 support. User chose to find a replacement. Ward (Eljakani/ward, Go, MIT, 316★) — same niche, Go binary so no Laravel-version dependency. infosec-vet.md §ПЕРЕСМОТР #70 + spec/plan amendment notes. Node #70 keeps number/niche; tool + type change. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-21 14:32:49 +03:00
Дмитрий	1bbedf2f95	docs(security): provenance vet of ZAP/Nuclei/Enlightn (IS9)	2026-05-21 14:32:48 +03:00

5 Commits