Skip to content

Add master roadmap and technical plan for Sentinel AI Governance Dashboard#136

Merged
OneFineStarstuff merged 26 commits into
mainfrom
sentinel-dashboard-roadmap-4113455995665251845
Jun 16, 2026
Merged

Add master roadmap and technical plan for Sentinel AI Governance Dashboard#136
OneFineStarstuff merged 26 commits into
mainfrom
sentinel-dashboard-roadmap-4113455995665251845

feat: delivery of sentinel AI governance roadmap v2.4.1

64ce9c3
Select commit
Loading
Failed to load commit list.
Codeac.io / Codeac Code Quality succeeded Jun 16, 2026 in 1m 36s

Codeac Code Quality

This PR contains 3555 errors and 3287 warnings.

Annotations

Check warning on line 11 in frontend/Dockerfile

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

DL3018

Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`

Check warning on line 45 in frontend/Dockerfile

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

DL3018

Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`

Check warning on line 15 in backend/Dockerfile

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

DL3018

Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`

Check warning on line 37 in backend/Dockerfile

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

DL3018

Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`

Check failure on line 9 in governance_blueprint/confidential_enclave_deployment.tf

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

tfsec-error

Invalid single-argument block definition; Single-line block syntax can include only one argument definition. To define multiple arguments, use the multi-line block syntax with one argument definition per line., and 2 other diagnostic(s)

Check warning on line 40 in tee_tpm_attestation.go

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

package-comments

should have a package comment

Check warning on line 13 in tee_tpm_attestation.go

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

exported

exported type AttestationProvider should have comment or be unexported

Check warning on line 24 in tee_tpm_attestation.go

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

exported

exported method AttestationProvider.VerifyPCRMatch should have comment or be unexported

Check warning on line 1 in backend/package.json

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

NPM Vulnerability Warning

Artifact "@babel/core" 7.28.3 is vulnerable to CVE-2026-49356 - @babel/core: Arbitrary File Read via sourceMappingURL Comment. Vulnerability score: 3.2 (low).

Check failure on line 1 in backend/package.json

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

NPM Vulnerability Error

Artifact "ajv" 6.12.6 is vulnerable to CVE-2025-69873 - ajv has ReDoS when using `$data` option.

Check warning on line 31 in tests/governance/test_governance_artifacts.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 165 in tests/test_governance_validator.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 21 in docs/schemas/test_validate_evidence_manifest.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B603

subprocess call - check for execution of untrusted input.

Check warning on line 136 in tests/test_run_blueprint_artifact_checks.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B603

subprocess call - check for execution of untrusted input.

Check warning on line 131 in tools/validate_governance_artifacts.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 1 in backend/package.json

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

NPM Vulnerability Warning

Artifact "brace-expansion" 1.1.12 is vulnerable to CVE-2026-33750 - brace-expansion: Zero-step sequence causes process hang and memory exhaustion. Vulnerability score: 6.5 (medium).

Check warning on line 32 in tests/governance/test_governance_artifacts.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 166 in tests/test_governance_validator.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 29 in docs/schemas/test_validate_evidence_manifest.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B603

subprocess call - check for execution of untrusted input.

Check warning on line 59 in omni_sentinel_cli.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B105

Possible hardcoded password: '<REDACTED_SECRET>'

Check warning on line 132 in tools/validate_governance_artifacts.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 137 in tests/test_run_blueprint_artifact_checks.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check warning on line 165 in tests/test_validate_blueprint_artifacts.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.

Check failure on line 57 in backend/package.json

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

NPM Vulnerability Error

Artifact "dompurify" 3.3.2 is vulnerable to GHSA-39q2-94rc-95cp - DOMPurify's ADD_TAGS function form bypasses FORBID_TAGS due to short-circuit evaluation.

Check warning on line 30 in test_run_gsifi_governance_checks.py

See this annotation in the file changed.

@codeac-io codeac-io / Codeac Code Quality

B101

Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.