-
Notifications
You must be signed in to change notification settings - Fork 1
Concepts
Explanation + the "why" behind Evidentia's design. Read these if you're extending Evidentia or evaluating whether it fits your environment.
-
Architecture — 9-package workspace overview + data flow + extension points + design invariants. The foundational page for everything else.
-
Data model —
SecurityFinding,ControlGap,CollectionContext,ComplianceStatusenum, OCSF mapping; the frozen-surface contract. -
Catalog engine — how catalog YAMLs are loaded, validated, indexed; the
_load_catalog_dataext-dispatch pattern; manifest regeneration. -
Crosswalk engine — how crosswalks are loaded; the
CrosswalkDefinitionschema (including v0.10.6provenance/verification/verification_noteadditive fields); OSCAL mapping back-matter. -
Evidence integrity — CIMD envelope structure; signing keys; verification chain; WORM backend interface.
-
Frozen surfaces and stability — public-API contract; append-only MCP tool surface; semantic-versioning policy.
-
RBAC and multi-tenancy — multi-tenant primitives from v0.9.7 (data + decision layer); v0.11+ CLI/REST wiring direction.
Architecture → Data model → Catalog engine → Crosswalk engine → Evidence integrity → Frozen surfaces and stability → RBAC and multi-tenancy.
After this section, jump to Reference for symbol-level detail or Compliance for framework-specific material.
All seven concept pages above are live.
-
- AI Governance
- Air Gapped Install
- Ci Integration
- CONMON Deployment
- Emit Cyclonedx VEX
- Emit OCSF Detection
- Emit SARIF
- Explain Controls
- Generate And Quantify Risk
- Governance Metrics And Workflows
- Ingest OCSF
- Manage Model Risk
- Manage POAM
- Manage Third Party Risk
- MCP Client Setup
- OSPS Self Assessment
- Run Gap Analysis
- Serve The Web Ui
- Sign And Verify Evidence