voltsparx
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 8 additions & 0 deletions b/‎.github/workflows/ci.yml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎.github/workflows/pages.yml‎
Lines changed: 7 additions & 0 deletions b/‎.github/workflows/pages.yml‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎SECURITY.md‎
Lines changed: 58 additions & 0 deletions b/‎SECURITY.md‎
Lines changed: 58 additions & 0 deletions
diff --git a/‎docs/website/README.md‎
Lines changed: 8 additions & 2 deletions b/‎docs/website/README.md‎
Lines changed: 8 additions & 2 deletions
diff --git a/‎docs/website/cli-reference.html‎
Lines changed: 3 additions & 0 deletions b/‎docs/website/cli-reference.html‎
Lines changed: 3 additions & 0 deletions
@@ -38,22 +38,27 @@ jobs:
         shell: bash
         run: |
           test -f docs/website/index.html
+          test -f docs/website/development.html
           test -f docs/website/css/core/base.css
           test -f docs/website/css/layout/topbar.css
           test -f docs/website/css/layout/sidebar.css
           test -f docs/website/css/layout/content.css
           test -f docs/website/css/layout/responsive.css
           test -f docs/website/css/components/workflow.css
           test -f docs/website/css/components/modules.css
+          test -f docs/website/css/components/development.css
           test -f docs/website/js/core/site-data.js
           test -f docs/website/js/core/helpers.js
           test -f docs/website/js/features/sidebar.js
           test -f docs/website/js/features/easter-eggs.js
           test -f docs/website/js/features/search.js
           test -f docs/website/js/features/contact-panel.js
           test -f docs/website/js/features/workflow-visual.js
+          test -f docs/website/js/features/raw-popup.js
+          test -f docs/website/js/features/development-feed.js
           test -f docs/website/js/bootstrap/app.js
           test -f docs/website/web_assets/media/favicon.ico
+          test -f SECURITY.md
           test -f docs/website/.nojekyll
 
       - name: Validate website scripts
@@ -76,6 +81,7 @@ jobs:
             grep -q 'css/layout/content.css?v=' "${page}"
             grep -q 'css/components/workflow.css?v=' "${page}"
             grep -q 'css/components/modules.css?v=' "${page}"
+            grep -q 'css/components/development.css?v=' "${page}"
             grep -q 'css/layout/responsive.css?v=' "${page}"
             grep -q 'js/core/site-data.js?v=' "${page}"
             grep -q 'js/core/helpers.js?v=' "${page}"
@@ -84,6 +90,8 @@ jobs:
             grep -q 'js/features/search.js?v=' "${page}"
             grep -q 'js/features/contact-panel.js?v=' "${page}"
             grep -q 'js/features/workflow-visual.js?v=' "${page}"
+            grep -q 'js/features/raw-popup.js?v=' "${page}"
+            grep -q 'js/features/development-feed.js?v=' "${page}"
             grep -q 'js/bootstrap/app.js?v=' "${page}"
             grep -q 'topbar-contact-popover" hidden' "${page}"
           done
 
@@ -43,20 +43,24 @@ jobs:
           done
           test -f docs/website/index.html
           test -f docs/website/download.html
+          test -f docs/website/development.html
           test -f docs/website/css/core/base.css
           test -f docs/website/css/layout/topbar.css
           test -f docs/website/css/layout/sidebar.css
           test -f docs/website/css/layout/content.css
           test -f docs/website/css/layout/responsive.css
           test -f docs/website/css/components/workflow.css
           test -f docs/website/css/components/modules.css
+          test -f docs/website/css/components/development.css
           test -f docs/website/js/core/site-data.js
           test -f docs/website/js/core/helpers.js
           test -f docs/website/js/features/sidebar.js
           test -f docs/website/js/features/easter-eggs.js
           test -f docs/website/js/features/search.js
           test -f docs/website/js/features/contact-panel.js
           test -f docs/website/js/features/workflow-visual.js
+          test -f docs/website/js/features/raw-popup.js
+          test -f docs/website/js/features/development-feed.js
           test -f docs/website/js/bootstrap/app.js
           test -f docs/website/web_assets/media/favicon.ico
           test -f docs/website/web_assets/media/asrfacet-rb-site-preview.png
@@ -80,6 +84,7 @@ jobs:
             grep -q 'css/layout/content.css?v=' "${page}"
             grep -q 'css/components/workflow.css?v=' "${page}"
             grep -q 'css/components/modules.css?v=' "${page}"
+            grep -q 'css/components/development.css?v=' "${page}"
             grep -q 'css/layout/responsive.css?v=' "${page}"
             grep -q 'js/core/site-data.js?v=' "${page}"
             grep -q 'js/core/helpers.js?v=' "${page}"
@@ -88,6 +93,8 @@ jobs:
             grep -q 'js/features/search.js?v=' "${page}"
             grep -q 'js/features/contact-panel.js?v=' "${page}"
             grep -q 'js/features/workflow-visual.js?v=' "${page}"
+            grep -q 'js/features/raw-popup.js?v=' "${page}"
+            grep -q 'js/features/development-feed.js?v=' "${page}"
             grep -q 'js/bootstrap/app.js?v=' "${page}"
           done
 
 
@@ -0,0 +1,58 @@
+# Security Policy
+
+## Scope
+
+This document covers security issues in the ASRFacet-Rb framework itself.
+
+It does not cover:
+
+- findings discovered on targets scanned with the framework
+- unauthorized use of the framework
+- third-party service outages, bans, or API policy changes
+- local environment issues outside the ASRFacet-Rb codebase
+
+## Supported Versions
+
+Security fixes are currently focused on the latest published release line and
+the current `main` branch.
+
+## Reporting A Vulnerability
+
+Do not open a public GitHub issue for a security vulnerability in the
+framework.
+
+Report it privately to:
+
+- `voltsparx@gmail.com`
+- `voltsparx@proton.me`
+
+Please include:
+
+- affected version
+- operating system and Ruby version
+- a short impact summary
+- clear reproduction steps
+- proof-of-concept details if safe to share
+- any suggested mitigation or workaround you found
+
+## Response Expectations
+
+- acknowledgement target: within 7 days
+- follow-up status target: within 30 days when the report is valid and reproducible
+
+Response time may vary depending on severity, reproducibility, and maintainer
+availability.
+
+## Safe Handling
+
+- Share only the minimum material needed to reproduce the issue.
+- Avoid including credentials, private keys, or unrelated sensitive data.
+- If the issue can be triggered against a live target, reproduce it only in an
+  environment you own or are explicitly authorized to test.
+
+## Disclosure
+
+Please wait for confirmation before public disclosure.
+
+Once a fix, mitigation, or risk statement is ready, the project can coordinate
+an appropriate public note through the normal repository release materials.
@@ -21,6 +21,7 @@ The website is kept separate from the Ruby runtime so it can be:
 - `cli-reference.html` documents commands and flags
 - `modes.html` covers console, web, wizard, and lab usage
 - `reporting.html` explains outputs and configuration
+- `development.html` shows live GitHub development signals and raw file previews
 - `project.html` covers author, repository, and license context
 
 ### CSS
@@ -50,7 +51,8 @@ The HTML pages load CSS in this order:
 4. `css/layout/content.css`
 5. `css/components/workflow.css`
 6. `css/components/modules.css`
-7. `css/layout/responsive.css`
+7. `css/components/development.css`
+8. `css/layout/responsive.css`
 
 The HTML pages load JavaScript in this order:
 
@@ -61,7 +63,9 @@ The HTML pages load JavaScript in this order:
 5. `js/features/search.js`
 6. `js/features/contact-panel.js`
 7. `js/features/workflow-visual.js`
-8. `js/bootstrap/app.js`
+8. `js/features/raw-popup.js`
+9. `js/features/development-feed.js`
+10. `js/bootstrap/app.js`
 
 Do not change that order unless the dependency chain changes too.
 
@@ -95,6 +99,8 @@ node --check docs/website/js/features/easter-eggs.js
 node --check docs/website/js/features/search.js
 node --check docs/website/js/features/contact-panel.js
 node --check docs/website/js/features/workflow-visual.js
+node --check docs/website/js/features/raw-popup.js
+node --check docs/website/js/features/development-feed.js
 node --check docs/website/js/bootstrap/app.js
 ```
 
 
@@ -25,6 +25,7 @@
 <link rel="stylesheet" href="css/layout/content.css?v=1.0.0">
 <link rel="stylesheet" href="css/components/workflow.css?v=1.0.0">
 <link rel="stylesheet" href="css/components/modules.css?v=1.0.0">
+<link rel="stylesheet" href="css/components/development.css?v=1.0.0">
 <link rel="stylesheet" href="css/layout/responsive.css?v=1.0.0">
 <link rel="icon" href="web_assets/media/favicon.ico" sizes="any">
 <link rel="shortcut icon" href="web_assets/media/favicon.ico" type="image/x-icon">
@@ -148,6 +149,8 @@
 <script src="js/features/search.js?v=1.0.0"></script>
 <script src="js/features/contact-panel.js?v=1.0.0"></script>
 <script src="js/features/workflow-visual.js?v=1.0.0"></script>
+<script src="js/features/raw-popup.js?v=1.0.0"></script>
+<script src="js/features/development-feed.js?v=1.0.0"></script>
 <script src="js/bootstrap/app.js?v=1.0.0"></script>
 </body>
 </html>