29 lines
1.0 KiB
JSON
29 lines
1.0 KiB
JSON
{
|
|
"feature_id": "F-003",
|
|
"agent": "security",
|
|
"verdict": "APPROVED",
|
|
"summary": "The active tracked SQL baseline no longer contains raw production-like customer or order data. The repo now documents that any private raw snapshot must stay outside git or in ignored local paths.",
|
|
"checks": [
|
|
"tracked SQL data-risk scan",
|
|
"private path and docs review",
|
|
"working tree review"
|
|
],
|
|
"findings": [
|
|
{
|
|
"severity": "medium",
|
|
"title": "Earlier raw snapshot still exists in git history",
|
|
"status": "accepted-risk",
|
|
"paths": [
|
|
"git history before F-003 publish"
|
|
]
|
|
}
|
|
],
|
|
"evidence": [
|
|
"Tracked SQL file now contains a 6.8K sanitized synthetic baseline",
|
|
"Data-risk scan on project/sql/db-25052026.sql returned no customer/order/production URL patterns",
|
|
"Reviewed project/sql/README.md and .gitignore entry for project/sql/private/",
|
|
"Confirmed current working tree no longer ships raw production-like SQL dump content"
|
|
],
|
|
"timestamp": "2026-05-25T06:15:00Z"
|
|
}
|