SicarioSpec v0.1.0
·
21 commits
to main
since this release
Immutable
release. Only release title and notes can be modified.
SicarioSpec v0.1.0
Initial public release of SicarioSpec: a secure-by-default governance bundle for GitHub Spec Kit.
Included
sicarioCLI withinit,verify,assess, and--version.- AppSec, AI system, agent-fleet, cloud/IaC, security-toolchain, supply-chain, compliance, docs, and enterprise-strict profiles.
- Spec Kit presets and Sicario guard extension commands.
- CCM v4.1 and SOX 404 / ICFR starter control maps.
- Terraform, Azure Bicep, Azure Verified Modules, AWS CloudFormation, GCP Terraform, Kubernetes, container, and policy-as-code starters.
- Docusaurus docs scaffold, threat model, abuse cases, evidence index, risk register, exceptions, and accepted-risk defaults.
- Public project health files: MIT license, code of conduct, security policy, support policy, issue forms, PR template, changelog, release process, Dependabot, CodeQL, and OpenSSF Scorecard.
Install
python3 -m pip install "git+https://github.com/dfirs1car1o/sicario-spec.git@v0.1.0"Validation
Validated before release:
python3 -m unittest discover -s tests
python3 -m sicario_cli.cli verify .
python3 -m pip wheel .
python3 setup.py sdist
installed wheel in a clean venv and ran sicario init/verifyKnown limitations
- OpenSSF Best Practices badge is not claimed yet; the repo only adds Scorecard automation and documentation for future self-assessment.
- Control maps are starter traceability aids, not certification claims.