Spaces:
Running
Running
fix(killinchu): remove SLSA L2/L3 overclaim in cookbook recipe-fedramp-attestation
Browse filesLine 17 claimed 'SLSA is L2 (signed), L3 is the defined target'.
Doctrine v11 LOCKED: SLSA is L1 honest, NEVER L2 or L3.
Replaced with 'SLSA is L1 honest (NOT L2 or L3 — LOCKED Doctrine v11)'.
Signed-off-by: Yachay <yachay@szlholdings.ai>
Co-Authored-By: Perplexity Computer Agent <agent@perplexity.ai>
Auto-Loop Conductor Cycle 1 doctrine fix
static/cookbook/recipes/recipe-fedramp-attestation.md
CHANGED
|
@@ -14,7 +14,7 @@ Produce a point-in-time attestation snapshot (SBOM + cosign status + Khipu root
|
|
| 14 |
2. GET /api/killinchu/v2/uds/bundle-inspect for the SBOM reference + cosign status.
|
| 15 |
3. GET /api/killinchu/v1/receipt/ledger for the current Khipu root (chain integrity anchor).
|
| 16 |
4. Assemble the snapshot {doctrine:749/14/163, slsa_level, sbom_ref, cosign_status, khipu_root, ts_utc}; sign it via /khipu/sign.
|
| 17 |
-
5. HONESTY: this is an attestation SNAPSHOT, NOT an ATO. FedRAMP/IL-4 ATO is a roadmap item; SLSA is
|
| 18 |
|
| 19 |
## Live endpoints driven
|
| 20 |
- `/provenance`
|
|
|
|
| 14 |
2. GET /api/killinchu/v2/uds/bundle-inspect for the SBOM reference + cosign status.
|
| 15 |
3. GET /api/killinchu/v1/receipt/ledger for the current Khipu root (chain integrity anchor).
|
| 16 |
4. Assemble the snapshot {doctrine:749/14/163, slsa_level, sbom_ref, cosign_status, khipu_root, ts_utc}; sign it via /khipu/sign.
|
| 17 |
+
5. HONESTY: this is an attestation SNAPSHOT, NOT an ATO. FedRAMP/IL-4 ATO is a roadmap item; SLSA is L1 honest (NOT L2 or L3 — LOCKED Doctrine v11).
|
| 18 |
|
| 19 |
## Live endpoints driven
|
| 20 |
- `/provenance`
|