-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathexample-chain.jsonl
More file actions
5 lines (5 loc) · 2.82 KB
/
example-chain.jsonl
File metadata and controls
5 lines (5 loc) · 2.82 KB
1
2
3
4
5
{"receipt_id":"rcpt-discover-001","action":"scan_code","actor":"sb:agent:security-scanner","timestamp":"2026-04-08T10:00:00Z","payload":{"vulnerability_id":"EXAMPLE-2026-001","severity":"high","affected_package":"example-lib@1.2.3","affected_file":"src/auth.ts","description":"Timing side-channel in token verification allows brute-force attacks","cwe":"CWE-208"},"policy_digest":"sha256:9d0f3a2b1c4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a","previousReceiptHash":null,"signature":"ed25519:EXAMPLE_SIGNATURE_DISCOVER"}
{"receipt_id":"rcpt-assess-001","action":"report_finding","actor":"sb:agent:security-scanner","timestamp":"2026-04-08T10:05:00Z","payload":{"vulnerability_id":"EXAMPLE-2026-001","severity":"high","report_destination":"internal","cvss_score":7.5,"exploitability":"medium","impact":"authentication bypass","recommended_action":"Replace timing-vulnerable comparison with constant-time alternative","escalated_to_human":true},"policy_digest":"sha256:9d0f3a2b1c4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a","previousReceiptHash":"sha256:a1b2c3d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a1b2","signature":"ed25519:EXAMPLE_SIGNATURE_ASSESS"}
{"receipt_id":"rcpt-disclose-001","action":"disclose_vulnerability","actor":"sb:human:tom","timestamp":"2026-04-08T10:30:00Z","payload":{"vulnerability_id":"EXAMPLE-2026-001","disclosure_target":"internal","notified_parties":["security@example.com"],"embargo_until":"2026-07-08T00:00:00Z","human_approval":true,"approver":"sb:human:tom"},"policy_digest":"sha256:9d0f3a2b1c4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a","previousReceiptHash":"sha256:b2c3d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a1b2c3","signature":"ed25519:EXAMPLE_SIGNATURE_DISCLOSE"}
{"receipt_id":"rcpt-patch-001","action":"deploy_patch","actor":"sb:agent:trader","timestamp":"2026-04-08T14:00:00Z","payload":{"vulnerability_id":"EXAMPLE-2026-001","patch_hash":"sha256:patch_abc123","environment":"staging","test_results":"all_pass","reviewer":"sb:human:tom","human_approval":true},"policy_digest":"sha256:9d0f3a2b1c4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a","previousReceiptHash":"sha256:c3d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a1b2c3d4","signature":"ed25519:EXAMPLE_SIGNATURE_PATCH"}
{"receipt_id":"rcpt-deploy-001","action":"deploy_patch","actor":"sb:human:tom","timestamp":"2026-04-09T09:00:00Z","payload":{"vulnerability_id":"EXAMPLE-2026-001","patch_hash":"sha256:patch_abc123","environment":"production","deployment_method":"rolling","rollback_available":true,"human_approval":true,"approver":"sb:human:tom","post_deploy_verification":"pass"},"policy_digest":"sha256:9d0f3a2b1c4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a","previousReceiptHash":"sha256:d4e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0c1d2e3f4a5b6c7d8e9f0a1b2c3d4e5","signature":"ed25519:EXAMPLE_SIGNATURE_DEPLOY"}