Partner data-exchange API, partner kit, and prominence pass#1
Open
jreaviscsa wants to merge 1 commit into
Open
Partner data-exchange API, partner kit, and prominence pass#1jreaviscsa wants to merge 1 commit into
jreaviscsa wants to merge 1 commit into
Conversation
Research-driven build of the scanner partner data exchange for RiskRubric V2, informed by analysis of Tumeryk (AI Trust Score) and PointGuard AI. Submission API (tool/): - Fix dead-on-arrival auth: rrk_<env>_<key_id>_<secret> keys with O(1) indexed lookup, Bearer + legacy header, constant-time admin compare, key issuance/rotation via CLI (manage_keys.py) and admin API - Add batch ingestion (<=500/call), idempotency keys, status webhooks - Enforce COI gate, TRS<->pillar polarity gate, submission state machine - Suspension now recomputes consensus for affected services - Optional test_case_results passthrough for QC (never enters consensus) - Fix compare enum bug, leaderboard ?pillar= sort, weight-sum guard, multi-version consensus relationship, local (non-Docker) static serving - Recompute mock consensus.json through consensus.py (kills drift); add contributing_scanners to leaderboard for per-row attribution - 27 new end-to-end tests (78 total passing) Partner kit (partner-kit/): - PARTNER_GUIDE.md (engineering how-to), PROTOTYPE_STATUS_MEMO.md (program status + open items), submission.schema.json, dependency-free Python reference client, webhook verifier Prototypes: elevate PointGuard AI / Deloitte / Tumeryk prominence across A/B/C per concept-paper sec 7.3 display rules; fix download links. Docs: recover the two published CSA papers into docs/methodology/; update DISCREPANCIES (D2/D5 resolved, D3 resolved+implemented, D1/D4 routed to the partner memo, D6 added) and SYSTEM_OVERVIEW; add tool/README.md + migration. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
| ) | ||
| print(f"Issued key for {row[0]} ({slug}).") | ||
| print("Deliver this to the partner over a secure channel — it is shown ONCE:\n") | ||
| print(f" {raw_key}\n") |
| "UPDATE scanners SET api_key_id=%s, api_key_hash=%s WHERE id=%s", | ||
| (key_id, key_hash, s["id"]), | ||
| ) | ||
| print(f" {s['slug']}: {raw_key}") |
| from pathlib import Path | ||
|
|
||
| # Must run before any app import: point the app at a throwaway SQLite db | ||
| _DB_FILE = tempfile.mktemp(suffix=".db") |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Builds the scanner partner data exchange for RiskRubric V2 (informed by Tumeryk and PointGuard AI research):
Open items: D4 alpha tuning (partner working session); D1/D6 paper errata; pick prototype direction.
Generated with Claude Code.