admin/craftlabs-authorization-sdk
1
0
Fork 0
mirror of https://github.com/hpd840321/craftlabs-authorization-sdk.git synced 2026-06-09 10:00:30 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

docs(i6): solidify I5_I6 design markdown; add Dependabot and ci-security (Trivy, npm audit)

Browse Source 
Made-with: Cursor
This commit is contained in:
huangping
2026-04-06 22:48:58 +08:00
parent 499fef3c2f
commit ce49fe143c
7 changed files with 118 additions and 67 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/engineering/iterations/I6_IMPLEMENTATION_REVIEW.md
+1 -1
View File
@@ -62,7 +62,7 @@
|-------------------------------|------|------|
| UAT 检查表 | [I6_CLOSEOUT.md](./I6_CLOSEOUT.md) | 过程性文档;**不替代**自动化 E2E |
| Runbook:内部 Token、连通性、轮换 | [RUNBOOK.md §10](../../../services/RUNBOOK.md) | 无 |
| 安全响应头 | `SecurityConfig.apiHeaders``X-Content-Type-Options`、frame deny、Referrer-Policy | **HSTS** 依设计交由边缘层 |
| 安全响应头与依赖门禁 | `SecurityConfig.apiHeaders``X-Content-Type-Options`、frame deny、Referrer-Policy**`ci-security`**Trivy + `npm audit`)与 **Dependabot** | **HSTS** 依设计交由边缘层 |
| 前端生产 `VITE_API_BASE` | `main.js` + README + CLOSEOUT §4 | 无 |
| 首页全链路导航 | `HomeView` 模块链接 | 满足轨道 B I6「全链路导航」最低要求 |