docs(epic-108): auditor pack + newcomer onboarding (#154)#167
Conversation
…154) - Add make auditor-pack: docker-compose path + offline auditorpackgen fallback - Commit examples/auditor-pack sample signed export and compliance reports - README Proof Pack section; docs "New here?" evaluator/builder tracks - scripts/verify-newcomer-path.sh + make verify-newcomer - docs/contributor/mission-control-screenshots.md for maintainer UX captures - Refresh docs/QUICKSTART.md install matrix alignment Closes #154 Closes #108
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 2 potential issues.
Bugbot Autofix is ON, but it could not run because the branch was deleted or merged before autofix could start.
Reviewed by Cursor Bugbot for commit 73c1ec8. Configure here.
| { | ||
| CorrelationID: "corr_demo_eu_summary", TenantID: "default", AgentID: "gateway", | ||
| InvocationType: "gateway", | ||
| PolicyDecision: evidence.PolicyDecision{Allowed: true, Action: "allow", Reasons: []string{"within budget"}}, |
There was a problem hiding this comment.
Allow record shows cost denial
Medium Severity
The offline auditor pack’s first scenario uses legacy reason within budget on an allowed decision. Legacy mapping tags any “budget” reason as POLICY_DENIED_COST while keeping decision allow, so the committed sample shows “blocked by cost policy” on an allowed record.
Reviewed by Cursor Bugbot for commit 73c1ec8. Configure here.
| if [ "$i" -eq 60 ]; then | ||
| echo "Error: Talon did not become healthy at ${GATEWAY}/health" >&2 | ||
| docker compose logs talon --tail 30 >&2 || true | ||
| exit 1 |
There was a problem hiding this comment.
Compose left up on failure
Medium Severity
After docker compose up succeeds, generate-auditor-pack.sh only runs docker compose down on the happy path. Health-check timeout, demo-recorder failure, export errors, or the secret-leak guard exit without tearing down the stack, leaving the demo on port 8080.
Additional Locations (1)
Reviewed by Cursor Bugbot for commit 73c1ec8. Configure here.
1 participant
Summary
Closes credibility epic #108 and onboarding issue #154.
Sample auditor pack (epic gap)
make auditor-pack/scripts/generate-auditor-pack.sh— docker-compose + demo-recorder when Docker is availablescripts/auditorpackgenoffline fallback when Docker is notexamples/auditor-pack/(signed JSON, compliance HTML/JSON, manifest)#154 Newcomer onboarding
docs/README.md(evaluator vs builder)docs/QUICKSTART.mdaligned with README install matrixmake verify-newcomer— cold-start smoke (init --scaffold+run --dry-run)docs/contributor/mission-control-screenshots.mdDiscoverability
Epic #108 checklist
#107 (live 10-minute demo) remains open under M0.
Test plan
scripts/check-claim-discipline.shmake auditor-pack(offline path)make verify-newcomerCloses #154
Closes #108
Note
Low Risk
Documentation, sample fixtures, and Makefile-wrapped scripts only; no changes to gateway auth, policy enforcement, or signing logic in production paths.
Overview
Adds a reproducible sample auditor handoff (
make auditor-pack): Docker Compose +demo-recorderwhen available, otherwiseauditorpackgenwrites committed artifacts underexamples/auditor-pack/(signed evidence, compliance HTML/JSON, manifest). Introducesmake verify-newcomerto smoke-testtalon init --scaffoldandtalon run --dry-runon a clean directory.Docs/onboarding: README Proof Pack section;
docs/README.mdNew here? evaluator vs builder paths and auditor-first job;docs/QUICKSTART.mdaligned with install matrix, dry-run flow, and trust links; maintainer note for Mission Control screenshots inCONTRIBUTING.mdanddocs/contributor/mission-control-screenshots.md.Reviewed by Cursor Bugbot for commit 73c1ec8. Configure here.