EU Parliament Monitor v1.0.0
·
182 commits
to main
since this release
Immutable
release. Only release title and notes can be modified.
What's Changed
- [aw] Upgrade available @github-actions[bot] (#2275)
🌍 EU Parliament Integration
- docs: complete deep-review refresh of THREAT_MODEL (v2.4) and SWOT (v1.5) @copilot-swe-agent[bot] (#2279)
- Localize RSS feeds and break the aggregator→generators import coupling @copilot-swe-agent[bot] (#2272)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
- Fix duplicated and truncated SEO titles/descriptions across all 14 languages @pethers (#2269)
🎨 UI/UX Improvements
- docs: complete deep-review refresh of THREAT_MODEL (v2.4) and SWOT (v1.5) @copilot-swe-agent[bot] (#2279)
- Localize RSS feeds and break the aggregator→generators import coupling @copilot-swe-agent[bot] (#2272)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
- Fix duplicated and truncated SEO titles/descriptions across all 14 languages @pethers (#2269)
🏗️ Infrastructure & Performance
- build(deps-dev)(deps-dev): bump lint-staged from 17.0.5 to 17.0.6 in the development-dependencies group @dependabot[bot] (#2276)
- Localize RSS feeds and break the aggregator→generators import coupling @copilot-swe-agent[bot] (#2272)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- build(deps-dev)(deps-dev): bump eslint from 10.4.0 to 10.4.1 in the development-dependencies group @dependabot[bot] (#2273)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
- Fix duplicated and truncated SEO titles/descriptions across all 14 languages @pethers (#2269)
🔄 Code Quality & Refactoring
- Localize RSS feeds and break the aggregator→generators import coupling @copilot-swe-agent[bot] (#2272)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
📝 Documentation
- docs: complete deep-review refresh of THREAT_MODEL (v2.4) and SWOT (v1.5) @copilot-swe-agent[bot] (#2279)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
- Fix duplicated and truncated SEO titles/descriptions across all 14 languages @pethers (#2269)
📦 Dependencies
- build(deps-dev)(deps-dev): bump lint-staged from 17.0.5 to 17.0.6 in the development-dependencies group @dependabot[bot] (#2276)
- build(deps-dev)(deps-dev): bump eslint from 10.4.0 to 10.4.1 in the development-dependencies group @dependabot[bot] (#2273)
🧪 Test Coverage Improvements
- Localize RSS feeds and break the aggregator→generators import coupling @copilot-swe-agent[bot] (#2272)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
- Fix duplicated and truncated SEO titles/descriptions across all 14 languages @pethers (#2269)
⚙️ Component Updates
- Localize RSS feeds and break the aggregator→generators import coupling @copilot-swe-agent[bot] (#2272)
- feat(ep-mcp): detect get_meps_feed OVERSIZED_PAYLOAD full-census degradation @copilot-swe-agent[bot] (#2270)
- Always open localized article HTML with the executive brief (localized if present, English otherwise) + executive-brief SEO title guidance @copilot-swe-agent[bot] (#2271)
- Fix duplicated and truncated SEO titles/descriptions across all 14 languages @pethers (#2269)
📊 Release Metrics & Evidence
All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.
🏛️ Architecture & Documentation
| Document | Description |
|---|---|
| Architecture | C4 architecture models and system overview |
| Security Architecture | Security design and controls |
| Threat Model | STRIDE threat analysis |
| Data Model | Data structures and relationships |
| Flowchart | Process flows with security controls |
| State Diagram | State transitions and lifecycles |
| Mindmap | Conceptual relationships |
| SWOT Analysis | Strategic analysis |
| CRA Assessment | Cyber Resilience Act assessment |
| API Documentation | TypeDoc-generated API reference |
🔐 Security & Supply Chain Protection
This release includes:
- ✅ SLSA Build Provenance Attestations — Cryptographically signed build provenance
- ✅ Software Bill of Materials (SBOM) — Complete dependency inventory in SPDX format
- ✅ npm Provenance — Verified package publishing with attestation
- ✅ CodeQL Security Scanning — Automated vulnerability detection
- ✅ Dependency Scanning — Continuous vulnerability monitoring with Dependabot
Verify attestations:
gh attestation verify euparliamentmonitor-1.0.0.zip -R Hack23/euparliamentmonitor
npm audit signaturesBrowse attestations: View all attestations
📋 ISMS Compliance & Policies
Compliance Frameworks
EU Parliament Monitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.
📦 Release Artifacts
| Artifact | Description | Verification |
|---|---|---|
euparliamentmonitor-1.0.0.zip |
Full application package | SHA-256 checksum, SLSA attestation |
euparliamentmonitor-1.0.0.spdx.json |
SBOM (SPDX format) | SBOM attestation |
*.intoto.jsonl |
SLSA attestations | gh attestation verify |
| npm package | euparliamentmonitor |
npm audit signatures |
All artifacts are signed and attested using GitHub's SLSA Level 3 build provenance.
🚀 Deployment
- Primary: https://euparliamentmonitor.com
- Documentation: https://euparliamentmonitor.com/docs/
- API Docs: https://euparliamentmonitor.com/docs/api/
- npm: https://www.npmjs.com/package/euparliamentmonitor
🏗️ Built With
- Node.js: 25.x
- TypeScript: 6.0.x
- Chart.js: 4.5.x
- D3.js: 7.9.x
- Vitest: 4.x
- Playwright: 1.x
- European Parliament MCP Server: 1.x
👥 Contributors
@Copilot, @dependabot[bot], @github-actions[bot], @pethers, copilot-swe-agent[bot], dependabot[bot] and github-actions[bot]
Full Changelog: v0.9.28...1.0.0
📦 Release Artifacts
euparliamentmonitor-v1.0.0.zip- Full application packageeuparliamentmonitor-v1.0.0.spdx.json- SBOM (Software Bill of Materials)*.intoto.jsonl- SLSA Build Provenance Attestations
📦 npm Package
npm install euparliamentmonitor@1.0.0Published with npm provenance for supply chain security.
📚 Documentation
🔐 Security
All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:
gh attestation verify euparliamentmonitor-v1.0.0.zip -R Hack23/euparliamentmonitorContributors
pethers and dependabot