Skip to content

Docs: restructure architecture and guides around CSSC stages#132

Merged
toddysm merged 1 commit into
mainfrom
docs/restructure-by-stage
Jul 2, 2026
Merged

Docs: restructure architecture and guides around CSSC stages#132
toddysm merged 1 commit into
mainfrom
docs/restructure-by-stage

Conversation

@toddysm

@toddysm toddysm commented Jul 2, 2026

Copy link
Copy Markdown
Owner

Closes #127.

Reorganizes docs/architecture/ and docs/guides/ around the five CSSC framework stages — Acquire, Catalog, Build, Deploy, Run.

Decisions (agreed up front)

  • Themes as subsections within each stage (Authenticity & Integrity, Supply Chain Observability) — stages stay the primary structure; a doc can carry both themes, listed under its primary theme with a note.
  • Layout: docs/architecture/<stage>/ and docs/guides/<stage>/.
  • docs/reference/ and docs/contributing/ stay as cross-cutting top-level areas.
  • Pipeline-wide design docs live under docs/architecture/cross-cutting/.

Moves

From To
architecture/workflows/image-mirror-workflows.md architecture/acquire/
architecture/workflows/promote-from-quarantine-workflows.md architecture/catalog/
architecture/workflows/promote-from-quarantine-override-approval.md architecture/catalog/
architecture/workflows/build-workflows.md architecture/build/
architecture/workflows/ci-failure-notifications.md architecture/cross-cutting/
architecture/apps/cssc-dashboard.md architecture/run/
guides/mirroring-base-images.md guides/acquire/
guides/configuring-override-approval.md guides/catalog/
guides/image-tagging.md, reading-image-annotations.md, verifying-image-attestations.md guides/build/

Also

  • New per-stage index READMEs (architecture + guides) with theme subsections; rewritten top docs/README.md, docs/architecture/README.md, docs/guides/README.md.
  • Updated every internal cross-link, plus external references to the moved docs: workflow comments, the org.opencontainers.image.documentation annotation in build-cssc-dashboard.yml (now points at architecture/run/cssc-dashboard.md), and the app READMEs.
  • Deploy (both areas) and Run guides have placeholder indexes (no docs yet).

Validation

  • Repo-wide link check: 162 relative links, no dead links.
  • The workflow/app edits are link-only (comments + the documentation annotation). Pre-existing actionlint shellcheck info/style notes in the promote workflows are unchanged by this PR.

Reorganize docs/architecture/ and docs/guides/ around the five CSSC framework
stages (Acquire, Catalog, Build, Deploy, Run). Within each stage, documents are
grouped under two cross-cutting themes where they apply — Authenticity and
Integrity, and Supply Chain Observability — as index subsections (stages stay
the primary structure). docs/reference/ and docs/contributing/ remain
cross-cutting top-level areas.

Moves:
- architecture/workflows/image-mirror-workflows.md -> architecture/acquire/
- architecture/workflows/promote-from-quarantine{,-override-approval}.md -> catalog/
- architecture/workflows/build-workflows.md -> architecture/build/
- architecture/workflows/ci-failure-notifications.md -> architecture/cross-cutting/
- architecture/apps/cssc-dashboard.md -> architecture/run/
- guides/mirroring-base-images.md -> guides/acquire/
- guides/configuring-override-approval.md -> guides/catalog/
- guides/{image-tagging,reading-image-annotations,verifying-image-attestations}.md -> guides/build/

Add per-stage index READMEs (architecture + guides) with theme subsections;
rewrite the top docs/architecture, docs/guides, and docs README indexes around
the stages. Update every internal cross-link plus external references (workflow
comments, the build documentation annotation, and the app READMEs) to the new
paths. Verified no dead links.

Closes #127
Copilot AI review requested due to automatic review settings July 2, 2026 03:08

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Restructures repository documentation so architecture and guides are organized by the five CSSC stages (Acquire, Catalog, Build, Deploy, Run), with cross-cutting design docs under architecture/cross-cutting/. The PR also updates internal/external cross-links (including workflow comments and an OCI org.opencontainers.image.documentation annotation) to point at the moved docs.

Changes:

  • Reorganized docs/architecture/ and docs/guides/ into per-stage subfolders with new per-stage index READMEs and updated top-level doc indexes.
  • Moved/renamed existing stage-relevant docs into the new structure (Acquire/Catalog/Build/Run) and introduced placeholder indexes for Deploy/Run guides and Deploy architecture.
  • Updated cross-links in docs plus link-only references in workflows/actions and app READMEs to reflect the new doc locations.

Reviewed changes

Copilot reviewed 39 out of 42 changed files in this pull request and generated no comments.

Show a summary per file
File Description
docs/reference/workflow-actions.md Updates cross-link to moved promote-from-quarantine architecture doc.
docs/reference/image-annotations.md Updates cross-link to the moved image tagging guide.
docs/README.md Rewrites top-level docs entrypoint around stage-based structure.
docs/guides/run/README.md Adds Run-stage guides index placeholder.
docs/guides/README.md Replaces topic list with per-stage guide navigation.
docs/guides/deploy/README.md Adds Deploy-stage guides index placeholder.
docs/guides/catalog/README.md Adds Catalog-stage guides index and theme grouping.
docs/guides/catalog/configuring-override-approval.md Fixes relative links after moving guide under guides/catalog/.
docs/guides/build/verifying-image-attestations.md Fixes relative links after moving guide under guides/build/.
docs/guides/build/README.md Adds Build-stage guides index with theme grouping.
docs/guides/build/reading-image-annotations.md Fixes relative links after moving guide under guides/build/.
docs/guides/build/image-tagging.md Fixes relative links and architecture cross-link after moving guide under guides/build/.
docs/guides/acquire/README.md Adds Acquire-stage guides index and theme grouping.
docs/guides/acquire/mirroring-base-images.md Fixes relative links after moving guide under guides/acquire/.
docs/contributing/workflow-naming.md Updates architecture doc references to new paths.
docs/architecture/workflows/README.md Removes obsolete workflows-topic index under the old structure.
docs/architecture/run/README.md Adds Run-stage architecture index.
docs/architecture/run/cssc-dashboard.md Adds Run-stage CSSC Dashboard architecture doc under new structure.
docs/architecture/README.md Rewrites architecture entrypoint to stage-based navigation + cross-cutting section.
docs/architecture/deploy/README.md Adds Deploy-stage architecture index placeholder.
docs/architecture/cross-cutting/README.md Adds cross-cutting architecture index.
docs/architecture/cross-cutting/ci-failure-notifications.md Moves CI failure notifications doc under cross-cutting and updates internal links.
docs/architecture/catalog/README.md Adds Catalog-stage architecture index and theme grouping.
docs/architecture/catalog/promote-from-quarantine-workflows.md Moves promote-from-quarantine workflows architecture doc under Catalog and updates links.
docs/architecture/catalog/promote-from-quarantine-override-approval.md Moves override-approval design doc under Catalog.
docs/architecture/build/README.md Adds Build-stage architecture index and reference cross-links.
docs/architecture/build/build-workflows.md Moves build workflows architecture doc under Build and updates links.
docs/architecture/apps/README.md Removes obsolete apps-topic index under the old structure.
docs/architecture/acquire/README.md Adds Acquire-stage architecture index.
docs/architecture/acquire/image-mirror-workflows.md Moves image mirror workflows doc under Acquire and updates links.
apps/python-app/services/packages-service/README.md Updates CSSC Dashboard design link to new docs location.
apps/python-app/services/issues-service/README.md Updates CSSC Dashboard design link to new docs location.
apps/python-app/services/dashboard-web/README.md Updates CSSC Dashboard design link to new docs location.
apps/python-app/README.md Updates CSSC Dashboard design link to new docs location.
apps/python-app/libs/cssc_common/README.md Updates CSSC Dashboard design link to new docs location.
.github/workflows/report-ci-failure.yml Updates comment link to moved CI failure notifications doc.
.github/workflows/promote-override.yml Updates comment link to moved override-approval design doc.
.github/workflows/build-cssc-dashboard.yml Updates org.opencontainers.image.documentation annotation URL to new doc path.
.github/workflows/_promote-override.yml Updates comment link to moved override-approval design doc.
.github/workflows/_promote-from-quarantine.yml Updates comment link to moved promote-from-quarantine architecture doc.
.github/workflows/_promote-from-quarantine-sbom.yml Updates comment link to moved promote-from-quarantine architecture doc.
.github/actions/manage-failure-issue/action.yml Updates comment link to moved CI failure notifications doc.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@toddysm toddysm merged commit 9eeee6c into main Jul 2, 2026
4 checks passed
@toddysm toddysm deleted the docs/restructure-by-stage branch July 2, 2026 03:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Docs: restructure architecture and guides around CSSC framework stages

2 participants