Benjamin Admin ed31fdc0df fill: NIST primary_implementation -> obligation_id (Handoff #4, jetzt 10/10) ...

SI-2 -> provide_security_updates (stark, (2)(c)/Art.13) · SI-7 -> signed_update_integrity
(update-scoped) · CM-7 -> remote_access_attack_surface_min (remote-scoped). Validiert gegen
Registries (join_keys 93). GAP-BEFUND (Cross-Domain-Review): generische Parent-Obligations
software_integrity_protection + attack_surface_minimization fehlen (SI-7/CM-7 sind breiter
als die domaenen-scoped Treffer) -> Kandidaten fuer neue Obligations (User-Entscheidung).

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-06-25 19:15:49 +02:00

..

controls_for_obligation_mapping.json

fill: NIST primary_implementation -> obligation_id (Handoff #4, jetzt 10/10)

2026-06-25 19:15:49 +02:00

cra_authentication.json

Add curated CRA authentication obligations (scaling test)

2026-06-25 07:30:55 +02:00

cra_logging.json

feat(bridge): logging/audit obligation cut (CRA Annex I (2)(k)) + 7/7 control mapping

2026-06-25 11:57:16 +02:00

cra_procedures.json

Add CRA procedure model (SBOM + Vuln)

2026-06-25 09:28:40 +02:00

cra_remote_access.json

feat(bridge): remote-access obligation cut (CRA Annex I) — 18 obligations

2026-06-25 18:37:10 +02:00

cra_updates.json

feat(bridge): security-updates obligation cut (CRA Annex I (2)(c)/Art 13) — 9 obligations

2026-06-25 18:51:09 +02:00

cra.json

Add proposed CRA obligation relationships

2026-06-25 00:08:47 +02:00

cross_domain_relationships.json

feat: cross-domain relationship discovery — Capability-Schicht-Entwurf (CRA P1)

2026-06-25 19:12:17 +02:00

obligation_join_keys.json

feat(bridge): security-updates obligation cut (CRA Annex I (2)(c)/Art 13) — 9 obligations

2026-06-25 18:51:09 +02:00