diff --git a/docs/work/_system/_state.json b/docs/work/_system/_state.json index 786a592..4fbb196 100644 --- a/docs/work/_system/_state.json +++ b/docs/work/_system/_state.json @@ -1,5 +1,5 @@ { - "updated_at": "2026-05-20T11:33:08.030Z", + "updated_at": "2026-05-20T11:41:53.388Z", "epics": { "binder-wrap-helper": { "status": "done", @@ -675,10 +675,10 @@ "blocks": [] }, "11-documentation": { - "status": "todo", + "status": "in-progress", "title": "Documentation and conformance reference updates", "ac_total": 2, - "ac_completed": 0, + "ac_completed": 1, "depends_on": [], "blocks": [] } diff --git a/docs/work/epics/security-headers-rate-limit-sbom/11-documentation/_story.md b/docs/work/epics/security-headers-rate-limit-sbom/11-documentation/_story.md index 1ec0293..3d6fb19 100644 --- a/docs/work/epics/security-headers-rate-limit-sbom/11-documentation/_story.md +++ b/docs/work/epics/security-headers-rate-limit-sbom/11-documentation/_story.md @@ -3,7 +3,7 @@ id: 11-documentation epic: security-headers-rate-limit-sbom title: Documentation and conformance reference updates type: technical-story -status: todo +status: in-progress feature: core-shared depends-on: [ @@ -14,7 +14,7 @@ depends-on: ] blocks: [] created: 2026-05-20T00:00:00Z -updated: 2026-05-20T08:14:55.907Z +updated: 2026-05-20T11:41:53.228Z --- ## Goal @@ -50,5 +50,5 @@ Implementations are complete after Story 10, but the institutional knowledge of ## Tasks -- [ ] Write `docs/guides/security-headers.md` (per-framework wiring, nonce threading for consumer inline scripts, CSP allowlist customization, Sentry nonce integration, securityheaders.com verification) and `docs/guides/rate-limiting.md` (manifest field, key-naming convention `::`, multi-budget patterns, dev/staging/prod backend wiring); all gates pass. +- [x] Write `docs/guides/security-headers.md` (per-framework wiring, nonce threading for consumer inline scripts, CSP allowlist customization, Sentry nonce integration, securityheaders.com verification) and `docs/guides/rate-limiting.md` (manifest field, key-naming convention `::`, multi-budget patterns, dev/staging/prod backend wiring); all gates pass. - [ ] Add entries for `IRateLimit`, `RateLimited` brand, `withRateLimit`, `SecurityHeadersConfig`, `buildSecurityHeaders`, `SBOM`, `nonce` (CSP context) to `docs/glossary.md`; update `CLAUDE.md` conformance rule count 12 → 13 and add `rateLimit?: RateLimitBudget[]` to the manifest field documentation; add `no-undeclared-rate-limit` as the 13th rule in `docs/guides/conformance-quickref.md`; all gates pass.