Commit graph

12 commits

Author SHA1 Message Date
86209fa90c CCR-2026-0007: binky IMAP on tenants/ mount + CCR allowlist
All checks were successful
CI Smoke / host-smoke (push) Successful in 0s
CI Smoke / container-smoke (push) Successful in 2s
Enable tenant commercial secrets: applier accepts mount tenants/, apply
policy and OIDC role for company-email IMAP (metadata only; values are
founder Red provision). Extend agent-high-risk-boundary for the path.
2026-07-17 00:09:28 +02:00
a95236d2e5 Add credential-change delegated applier flow 2026-07-01 20:07:26 +02:00
3527bc1cae Request groups scope for whynot OIDC role 2026-06-28 13:23:14 +02:00
adf865611c Mark whynot lane applied pending verification 2026-06-28 12:53:39 +02:00
271aa94642 Record whynot OpenBao lane apply evidence 2026-06-28 12:41:39 +02:00
53f3f4ca10 Document OpenBao Browser CLI limits 2026-06-28 09:18:36 +02:00
f630d5135e Fix OpenBao role payload handoff 2026-06-28 02:33:42 +02:00
248bc58b6a Add credential CCR operator handoff 2026-06-28 00:21:02 +02:00
3706ff703e Link CCR approval to State Hub decision 2026-06-28 00:00:02 +02:00
52687d8b3e Confirm whynot credential binding 2026-06-27 23:45:31 +02:00
aee0dcefad Add credential lane readiness proposals 2026-06-27 23:30:29 +02:00
815b124ab1 Implement credential change request review flow 2026-06-27 22:57:21 +02:00