elias/everything-claude-code
1
0
Fork 0
mirror of https://github.com/affaan-m/everything-claude-code.git synced 2026-05-14 02:10:07 +08:00
Code Issues Packages Projects Releases Wiki Activity

docs: record cross repo roadmap evidence (#1790)

Browse Source
This commit is contained in:
Affaan Mustafa 2026-05-12 04:40:17 -04:00 committed by GitHub
parent 68229a8996
commit 1f50ab1903
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
docs/ECC-2.0-GA-ROADMAP.md
View File

@ -40,8 +40,15 @@ As of 2026-05-12:
review tail. review tail.
- AgentShield PR #53 reduced two context-rule false positives and closed the - AgentShield PR #53 reduced two context-rule false positives and closed the
remaining AgentShield issues. remaining AgentShield issues.
- AgentShield PR #55 added GitHub Action organization-policy enforcement with
`policy` / `fail-on-policy` inputs, `policy-status` /
`policy-violations` outputs, job-summary evidence, and policy violation
annotations.
- ECC PR #1778 recovered the useful stale #1413 network/homelab architect-agent - ECC PR #1778 recovered the useful stale #1413 network/homelab architect-agent
concepts. concepts.
- ECC-Tools PR #26 added cost/token-risk predictive follow-ups for AI routing,
Claude/model calls, usage limits, quota, and analysis-budget changes that lack
budget, quota, rate-limit, or cost validation evidence.
## Operating Rules ## Operating Rules
@ -149,6 +156,8 @@ Acceptance:
- Formal policy schema exists for org baselines, exceptions, owners, - Formal policy schema exists for org baselines, exceptions, owners,
expiration, severity, and audit trails. expiration, severity, and audit trails.
- SARIF/code-scanning output is implemented and tested. - SARIF/code-scanning output is implemented and tested.
- GitHub Action policy gates expose organization policy status and violation
counts for branch-protection and CI evidence.
- Policy packs are defined for OSS, team, enterprise, regulated, high-risk - Policy packs are defined for OSS, team, enterprise, regulated, high-risk
hooks/MCP, and CI enforcement. hooks/MCP, and CI enforcement.
- Supply-chain intelligence plan covers MCP package provenance, npm/pip - Supply-chain intelligence plan covers MCP package provenance, npm/pip
@ -173,6 +182,8 @@ Acceptance:
- PR check suite taxonomy includes Security Evidence, Harness Drift, Install - PR check suite taxonomy includes Security Evidence, Harness Drift, Install
Manifest Integrity, CI/CD Recommendation, Cost/Token Risk, and Agent Config Manifest Integrity, CI/CD Recommendation, Cost/Token Risk, and Agent Config
Review. Review.
- Cost/token-risk predictive follow-ups flag AI routing, model-call, usage,
quota, and budget changes when budget evidence is missing.
- Linear sync design maps findings to issues/status without flooding the - Linear sync design maps findings to issues/status without flooding the
workspace. workspace.