Skip to main content
AI SYNDICATE
← Back to homepage

Enterprise readiness evidence

This page is a public navigation layer over the enterprise-readiness package. It points to evidence categories rather than making standalone claims.

Execution Control

Execution control maps to protected execution code paths and fail-closed tests. The evidence package references internal/controlplane/controlplane.go, cmd/syndicate-server/server.go, and tests/enforcement/.

  • fail-closed enforcement tests
  • policy evaluation before execution
  • unauthorized actions blocked

Authorization Model

Authorization maps to OIDC/JWT validation, RBAC role mapping, gRPC middleware, HTTP middleware, and auth tests. The evidence package references tests/auth/, internal/server/auth/oidc/, internal/server/auth/rbac/, cmd/syndicate-server/server.go, and cmd/syndicate-server/telemetry_http.go.

  • issuer, audience, expiration, signature, and JWKS validation
  • control_owner, policy_author, and operator role mapping
  • protected endpoints reject missing or invalid authorization

Build and Security Controls

CI controls map to readiness checks, fail-closed tests, OIDC/RBAC tests, PostgreSQL integration tests, restore validation, SBOM generation, SAST, secret scanning, Trivy scanning, provenance, and release gates.

  • ci-artifacts/scan-summary.json
  • ci-artifacts/final-readiness-check.txt
  • ci-artifacts/security-review-check.txt

Evidence package paths

Reviewer briefreadiness brief Pilot scopeboundary mapping Recovery verificationbackup-restore-proof Incident reconstructionincident-demo Build securityci-artifacts