Skip to content

History / Security and Compliance

Revisions

  • Clarify SOC 2 posture alignment and control design in Security & Compliance documentation

    @jfrench9 jfrench9 committed Jul 4, 2026
  • Add Security & Compliance page; refresh security deployment variables New Security-and-Compliance page covers the shared-responsibility model, the built-in platform controls, the optional off-by-default compliance stacks (WAF, CloudTrail + SSM session logging, VPC flow logs, the detective security baseline, audit retention, secrets rotation) and their GitHub-variable toggles, how to enable them, and the SOC 2 posture for forks. Refresh the stale security vars row in the Bootstrap Guide, add the page to the sidebar, and link it from the Architecture Overview security section.

    @jfrench9 jfrench9 committed Jul 3, 2026