Document audit-core mock sink handoff
This commit is contained in:
parent
c0c6ead5dd
commit
c0d4ec9037
2 changed files with 16 additions and 1 deletions
|
|
@ -286,6 +286,14 @@ OpenBao is unsealed on `2.5.4`, `bao audit list` shows `file/`,
|
|||
workplan. The cached verifier token was then revoked with
|
||||
`bao token revoke -self`.
|
||||
|
||||
**2026-06-01:** Durable tenant-aware audit retention is now a separate
|
||||
`audit-core` product/repo instead of a Railiance OpenBao bootstrap subtask. The
|
||||
initial Audit Core mock backend writes JSONL events under
|
||||
`/tmp/audit-core/audit-YYYYMMDDTHH.jsonl` and removes files older than seven
|
||||
days; it is suitable for interface wiring and setup validation only. Railiance
|
||||
still owns the OpenBao file audit device and PVC, while production retention,
|
||||
tenant policy, and tamper-evident archive belong to Audit Core.
|
||||
|
||||
### T07 - Cross-Repo Transition Tasks
|
||||
|
||||
```task
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue