admina-framework 0.9.0__py3-none-any.whl

admina/dashboard/static/index.html

@@ -0,0 +1,1045 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width, initial-scale=1.0">
+<title>Admina — Governance Dashboard</title>
+<!-- Alpine.js — vendored locally so the dashboard works on air-gapped deployments -->
+<script defer src="/vendor/alpinejs.min.js"></script>
+<style>
+  :root {
+    --bg: #0a0f17; --surface: #0d1117; --surface2: #161d2b;
+    --border: #1e2a3d; --border2: #243347; --text: #e2e8f0;
+    --muted: #94a3b8; --dim: #64748b;
+    --teal: #14b8a6; --teal-dark: #0d9488;
+    --teal-bg: rgba(20,184,166,.08); --teal-border: rgba(20,184,166,.25);
+    --green: #22c55e; --red: #ef4444;
+    --amber: #f59e0b; --purple: #a855f7; --blue: #3b82f6;
+    --mono: ui-monospace, "SF Mono", Menlo, Consolas, "Liberation Mono", monospace;
+  }
+  * { margin: 0; padding: 0; box-sizing: border-box; }
+  [x-cloak] { display: none !important; }
+  body { font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", "Helvetica Neue", Arial, sans-serif; background: var(--bg); color: var(--text); min-height: 100vh; }
+
+  /* ── Top bar ─────────────────────────────────────────── */
+  .topbar {
+    position: sticky; top: 0; z-index: 100;
+    display: flex; align-items: center; justify-content: space-between;
+    padding: 12px 24px; border-bottom: 1px solid var(--border);
+    background: rgba(13,17,23,.92); backdrop-filter: blur(12px);
+  }
+  .topbar .logo { display: flex; align-items: center; gap: 10px; font-size: 18px; font-weight: 700; }
+  .topbar .logo img { width: 32px; height: 32px; object-fit: contain; }
+  .topbar .logo .accent { color: var(--teal); }
+  .topbar .right { display: flex; align-items: center; gap: 16px; }
+  .topbar .status { display: flex; align-items: center; gap: 8px; font-size: 13px; color: var(--muted); }
+  .topbar .dot { width: 8px; height: 8px; border-radius: 50%; flex-shrink: 0; animation: pulse 2s infinite; }
+  @keyframes pulse { 0%, 100% { opacity: 1; } 50% { opacity: 0.4; } }
+  .topbar .sep { width: 1px; height: 18px; background: var(--border2); }
+  .topbar .ts { font-size: 12px; color: var(--dim); font-family: var(--mono); }
+  .topbar .refresh-btn {
+    background: transparent; color: var(--teal); border: 1px solid var(--teal-border);
+    padding: 5px 12px; border-radius: 6px; cursor: pointer; font-size: 13px; font-weight: 600;
+    transition: background 0.15s;
+  }
+  .topbar .refresh-btn:hover { background: var(--teal-bg); }
+
+  /* ── Layout ──────────────────────────────────────────── */
+  .main { padding: 24px; display: flex; flex-direction: column; gap: 24px; max-width: 1400px; margin: 0 auto; }
+  .row { display: grid; gap: 16px; }
+  .row-2 { grid-template-columns: 1fr 1fr; }
+  .row-score { grid-template-columns: 340px 1fr; }
+  @media (max-width: 900px) { .row-2, .row-score { grid-template-columns: 1fr; } }
+
+  /* ── Card ─────────────────────────────────────────────── */
+  .card {
+    background: var(--surface); border: 1px solid var(--border); border-radius: 12px;
+    padding: 20px; transition: border-color 0.2s;
+  }
+  .card:hover { border-color: var(--border2); }
+  .card-header { font-size: 12px; text-transform: uppercase; letter-spacing: 0.05em; color: var(--muted); margin-bottom: 16px; display: flex; align-items: center; gap: 8px; }
+  .card-header .icon { font-size: 16px; }
+
+  /* ── Governance Score ────────────────────────────────── */
+  .score-card {
+    background: var(--surface); border: 1px solid var(--teal-border); border-radius: 12px;
+    padding: 28px; text-align: center; position: relative; overflow: hidden;
+  }
+  .score-card::before {
+    content: ''; position: absolute; top: 0; left: 0; right: 0; height: 3px;
+    background: linear-gradient(90deg, var(--teal), var(--green));
+  }
+  .score-ring { position: relative; width: 160px; height: 160px; margin: 0 auto 20px; }
+  .score-ring svg { width: 100%; height: 100%; transform: rotate(-90deg); }
+  .score-ring .bg { fill: none; stroke: var(--border); stroke-width: 10; }
+  .score-ring .fg { fill: none; stroke-width: 10; stroke-linecap: round; transition: stroke-dashoffset 0.8s ease, stroke 0.3s; }
+  .score-ring .value {
+    position: absolute; top: 50%; left: 50%; transform: translate(-50%, -50%);
+    font-size: 44px; font-weight: 800; font-family: var(--mono); line-height: 1;
+  }
+  .score-ring .label { position: absolute; top: 67%; left: 50%; transform: translateX(-50%);
+    font-size: 11px; text-transform: uppercase; color: var(--muted); letter-spacing: 0.1em; }
+  .score-breakdown { display: flex; flex-direction: column; gap: 8px; margin-top: 16px; text-align: left; }
+  .score-row { display: flex; justify-content: space-between; align-items: center; font-size: 13px; }
+  .score-row .name { color: var(--muted); }
+  .score-row .pts { font-family: var(--mono); font-weight: 600; }
+  .score-bar { height: 4px; border-radius: 2px; background: var(--border); margin-top: 3px; overflow: hidden; }
+  .score-bar .fill { height: 100%; border-radius: 2px; transition: width 0.6s ease; }
+
+  /* ── Live Feed ───────────────────────────────────────── */
+  .feed-list { display: flex; flex-direction: column; gap: 6px; max-height: 500px; overflow-y: auto; }
+  .feed-list::-webkit-scrollbar { width: 4px; }
+  .feed-list::-webkit-scrollbar-thumb { background: var(--border2); border-radius: 2px; }
+  .feed-item {
+    display: grid; grid-template-columns: 100px 70px 1fr auto; gap: 12px; align-items: center;
+    padding: 8px 12px; border-radius: 8px; font-size: 13px;
+    background: var(--surface2); border: 1px solid transparent; transition: border-color 0.15s;
+  }
+  .feed-item:hover { border-color: var(--border2); }
+  .feed-item.new { animation: fadeIn 0.3s ease; }
+  @keyframes fadeIn { from { opacity: 0; transform: translateY(-4px); } to { opacity: 1; transform: translateY(0); } }
+  .feed-time { font-family: var(--mono); font-size: 11px; color: var(--dim); }
+  .feed-detail { color: var(--muted); white-space: nowrap; overflow: hidden; text-overflow: ellipsis; }
+  .feed-empty { padding: 40px; text-align: center; color: var(--dim); font-size: 14px; }
+  .ws-status { font-size: 11px; font-weight: 600; padding: 2px 8px; border-radius: 4px; }
+
+  /* ── Badges ──────────────────────────────────────────── */
+  .badge {
+    display: inline-block; padding: 2px 8px; border-radius: 4px;
+    font-size: 11px; font-weight: 600; text-transform: uppercase; white-space: nowrap;
+  }
+  .badge-allow { background: rgba(34,197,94,.12); color: var(--green); }
+  .badge-block { background: rgba(239,68,68,.12); color: var(--red); }
+  .badge-redact { background: rgba(168,85,247,.12); color: var(--purple); }
+  .badge-circuit_break { background: rgba(245,158,11,.12); color: var(--amber); }
+  .badge-modify { background: rgba(168,85,247,.12); color: var(--purple); }
+  .badge-low { background: rgba(34,197,94,.08); color: var(--green); }
+  .badge-medium { background: rgba(245,158,11,.08); color: var(--amber); }
+  .badge-high { background: rgba(239,68,68,.08); color: var(--red); }
+  .badge-critical { background: rgba(239,68,68,.18); color: #ff5f57; }
+
+  /* ── Compliance ──────────────────────────────────────── */
+  .compliance-grid { display: flex; flex-direction: column; gap: 10px; }
+  .compliance-row {
+    display: grid; grid-template-columns: 1fr 100px 60px; gap: 12px; align-items: center;
+    padding: 12px 16px; border-radius: 8px; background: var(--surface2); font-size: 13px;
+  }
+  .compliance-row .art { font-weight: 600; }
+  .compliance-row .name { color: var(--muted); font-size: 12px; }
+  .compliance-bar { height: 6px; border-radius: 3px; background: var(--border); overflow: hidden; }
+  .compliance-bar .fill { height: 100%; border-radius: 3px; transition: width 0.6s; }
+  .compliance-pct { font-family: var(--mono); font-weight: 600; font-size: 13px; text-align: right; }
+  .countdown-box {
+    display: flex; align-items: center; gap: 12px; padding: 14px 16px;
+    background: rgba(239,68,68,.06); border: 1px solid rgba(239,68,68,.2);
+    border-radius: 8px; margin-bottom: 12px;
+  }
+  .countdown-box .days { font-size: 28px; font-weight: 800; font-family: var(--mono); color: var(--red); }
+  .countdown-box .label { font-size: 12px; color: var(--muted); }
+  .countdown-box .sublabel { font-size: 11px; color: var(--dim); }
+
+  /* ── Sovereignty ─────────────────────────────────────── */
+  .zone-grid { display: grid; grid-template-columns: repeat(auto-fit, minmax(200px, 1fr)); gap: 12px; }
+  .zone-card {
+    background: var(--surface2); border: 1px solid var(--border); border-radius: 10px;
+    padding: 16px; position: relative; overflow: hidden;
+  }
+  .zone-card::before {
+    content: ''; position: absolute; top: 0; left: 0; right: 0; height: 3px;
+    background: linear-gradient(90deg, var(--green), transparent);
+  }
+  .zone-card .zone-name { font-size: 14px; font-weight: 600; margin-bottom: 4px; }
+  .zone-card .zone-status { font-size: 12px; margin-bottom: 8px; }
+  .zone-card .zone-desc { font-size: 12px; color: var(--dim); }
+  .zone-card .zone-count { font-size: 28px; font-weight: 700; font-family: var(--mono); margin-top: 8px; }
+  .zone-card .zone-count-label { font-size: 11px; color: var(--muted); }
+
+  /* ── KPI Cards (existing stats) ──────────────────────── */
+  .kpi-grid { display: grid; grid-template-columns: repeat(auto-fit, minmax(140px, 1fr)); gap: 12px; }
+  .kpi { background: var(--surface2); border: 1px solid var(--border); border-radius: 10px; padding: 16px; }
+  .kpi .kpi-label { font-size: 11px; text-transform: uppercase; letter-spacing: 0.05em; color: var(--muted); margin-bottom: 6px; }
+  .kpi .kpi-value { font-size: 24px; font-weight: 700; font-family: var(--mono); }
+  .kpi .kpi-sub { font-size: 11px; color: var(--dim); margin-top: 3px; }
+
+  /* ── Infrastructure Health ────────────────────────────── */
+  .infra-grid { display: grid; grid-template-columns: repeat(auto-fit, minmax(200px, 1fr)); gap: 12px; }
+  .infra-card {
+    background: var(--surface2); border: 1px solid var(--border); border-radius: 10px;
+    padding: 16px; position: relative; overflow: hidden;
+  }
+  .infra-card::before {
+    content: ''; position: absolute; top: 0; left: 0; right: 0; height: 3px;
+    transition: background 0.3s;
+  }
+  .infra-card.healthy::before { background: linear-gradient(90deg, var(--green), transparent); }
+  .infra-card.unhealthy::before { background: linear-gradient(90deg, var(--red), transparent); }
+  .infra-card.not_configured::before { background: linear-gradient(90deg, var(--dim), transparent); }
+  .infra-card.degraded::before { background: linear-gradient(90deg, var(--amber), transparent); }
+  .infra-card.unreachable::before { background: linear-gradient(90deg, var(--red), transparent); }
+  .infra-card .ic-name { font-size: 14px; font-weight: 600; margin-bottom: 4px; text-transform: capitalize; }
+  .infra-card .ic-status { font-size: 12px; margin-bottom: 6px; }
+  .infra-card .ic-detail { font-size: 12px; color: var(--dim); font-family: var(--mono); }
+  .infra-summary {
+    display: flex; align-items: center; gap: 12px; margin-bottom: 16px;
+    font-size: 13px; color: var(--muted);
+  }
+  .infra-summary .count { font-size: 20px; font-weight: 700; font-family: var(--mono); }
+
+  /* ── Model Status ───────────────────────────────────── */
+  .model-grid { display: grid; grid-template-columns: repeat(auto-fit, minmax(220px, 1fr)); gap: 12px; }
+  .model-card {
+    background: var(--surface2); border: 1px solid var(--border); border-radius: 10px;
+    padding: 16px; position: relative; overflow: hidden;
+  }
+  .model-card::before {
+    content: ''; position: absolute; top: 0; left: 0; right: 0; height: 3px;
+    background: linear-gradient(90deg, var(--blue), transparent);
+  }
+  .model-card .mc-name { font-size: 14px; font-weight: 600; margin-bottom: 4px; }
+  .model-card .mc-meta { font-size: 12px; color: var(--dim); margin-bottom: 2px; }
+  .model-card .mc-status { margin-top: 8px; }
+
+  /* ── Modal ──────────────────────────────────────────── */
+  .modal-backdrop {
+    position: fixed; inset: 0; background: rgba(0,0,0,.6);
+    display: flex; align-items: center; justify-content: center;
+    z-index: 1000; padding: 24px;
+  }
+  .modal {
+    background: var(--surface); border: 1px solid var(--border);
+    border-radius: 12px; max-width: 720px; width: 100%;
+    max-height: calc(100vh - 48px); overflow-y: auto;
+    box-shadow: 0 20px 60px rgba(0,0,0,.5);
+  }
+  .modal-header {
+    display: flex; align-items: center; justify-content: space-between;
+    padding: 18px 22px; border-bottom: 1px solid var(--border);
+  }
+  .modal-title { font-size: 15px; font-weight: 700; }
+  .modal-close {
+    background: transparent; border: none; color: var(--muted);
+    font-size: 22px; cursor: pointer; line-height: 1; padding: 0 4px;
+  }
+  .modal-close:hover { color: var(--text); }
+  .modal-body { padding: 18px 22px; font-size: 13px; color: var(--text); line-height: 1.6; }
+  .modal-body p { margin-bottom: 12px; color: var(--muted); }
+  .modal-body code.inline {
+    font-family: var(--mono); color: var(--teal); font-size: 12px;
+    background: var(--surface2); padding: 1px 5px; border-radius: 3px;
+  }
+  .modal-pre {
+    background: var(--surface2); padding: 12px; border-radius: 6px;
+    font-family: var(--mono); font-size: 11px; color: var(--muted);
+    overflow-x: auto; margin: 8px 0 16px; line-height: 1.5;
+    border: 1px solid var(--border);
+  }
+  .modal-copy-btn {
+    background: var(--teal-bg); color: var(--teal); border: 1px solid var(--teal-border);
+    padding: 5px 12px; border-radius: 4px; cursor: pointer; font-size: 12px;
+    font-weight: 600; margin-bottom: 8px;
+  }
+  .modal-copy-btn:hover { background: rgba(20,184,166,.15); }
+
+  /* ── Section header ─────────────────────────────────── */
+  .section-header {
+    margin: 12px 0 -8px;
+    padding: 12px 16px;
+    border-left: 3px solid var(--teal);
+    background: linear-gradient(90deg, rgba(20,184,166,.04), transparent);
+    border-radius: 0 8px 8px 0;
+  }
+  .section-header.section-config {
+    border-left-color: #534AB7;
+    background: linear-gradient(90deg, rgba(83,74,183,.06), transparent);
+  }
+  .section-header .section-title {
+    font-size: 14px; font-weight: 700; letter-spacing: 0.04em;
+    text-transform: uppercase; color: var(--text);
+  }
+  .section-header .section-subtitle {
+    font-size: 12px; color: var(--muted); margin-top: 2px;
+  }
+  .card-header .card-subtitle {
+    font-size: 11px; text-transform: none; letter-spacing: 0;
+    color: var(--dim); font-weight: 400; margin-left: 8px;
+  }
+
+  /* ── OISG Score ──────────────────────────────────────── */
+  .oisg-card {
+    background: var(--surface); border: 1px solid var(--border); border-radius: 12px;
+    padding: 20px; position: relative; overflow: hidden;
+  }
+  .oisg-card::before {
+    content: ''; position: absolute; top: 0; left: 0; right: 0; height: 3px;
+    background: linear-gradient(90deg, #0F6E56, #534AB7, #993C1D, #185FA5);
+  }
+  .oisg-top {
+    display: grid;
+    grid-template-columns: minmax(220px, 1fr) minmax(280px, 2fr);
+    gap: 32px; align-items: start;
+  }
+  @media (max-width: 760px) {
+    .oisg-top { grid-template-columns: 1fr; }
+  }
+  .oisg-quadrant-wrapper { position: relative; width: 100%; }
+  .oisg-quadrant {
+    display: grid; grid-template-columns: 1fr 1fr; gap: 6px;
+    width: 100%; aspect-ratio: 1;
+  }
+  .oisg-quad {
+    display: flex; flex-direction: column; align-items: center; justify-content: center;
+    border-radius: 8px; color: #fff; transition: opacity 0.6s;
+    position: relative;
+  }
+  .oisg-quad-o { background: #0F6E56; clip-path: polygon(0 0, 100% 0, 100% 65%, 65% 100%, 0 100%); }
+  .oisg-quad-i { background: #534AB7; clip-path: polygon(0 0, 100% 0, 100% 100%, 35% 100%, 0 65%); }
+  .oisg-quad-s { background: #993C1D; clip-path: polygon(0 0, 65% 0, 100% 35%, 100% 100%, 0 100%); }
+  .oisg-quad-g { background: #185FA5; clip-path: polygon(35% 0, 100% 0, 100% 100%, 0 100%, 0 35%); }
+  .oisg-quad .q-letter { font-size: 28px; font-weight: 700; font-family: var(--mono); }
+  .oisg-quad .q-name { font-size: 11px; text-transform: uppercase; letter-spacing: 0.05em; opacity: 0.85; }
+  .oisg-quad .q-score { font-size: 15px; font-weight: 600; font-family: var(--mono); }
+  .oisg-center-score {
+    position: absolute; top: 50%; left: 50%; transform: translate(-50%, -50%);
+    text-align: center; pointer-events: none; z-index: 2;
+    background: var(--surface); border-radius: 50%;
+    width: 90px; height: 90px;
+    display: flex; flex-direction: column; align-items: center; justify-content: center;
+    box-shadow: 0 0 0 4px var(--border);
+  }
+  .oisg-center-score .oisg-total { font-size: 32px; font-weight: 800; font-family: var(--mono); line-height: 1; }
+  .oisg-center-score .oisg-max { font-size: 11px; color: var(--dim); }
+  .oisg-center-score .oisg-level { font-size: 9px; font-weight: 600; margin-top: 2px; white-space: nowrap; }
+  .oisg-criteria { min-width: 0; }
+  .oisg-pillar-group { margin-bottom: 10px; }
+  .oisg-pillar-label { font-size: 11px; font-weight: 600; text-transform: uppercase; letter-spacing: 0.05em; margin-bottom: 4px; }
+  .oisg-criterion {
+    display: flex; align-items: center; gap: 8px; font-size: 12px; color: var(--muted);
+    padding: 2px 0;
+  }
+  .oisg-criterion .dot-ok { width: 8px; height: 8px; border-radius: 50%; background: var(--green); flex-shrink: 0; }
+  .oisg-criterion .dot-miss { width: 8px; height: 8px; border-radius: 50%; background: var(--red); opacity: 0.5; flex-shrink: 0; }
+  .oisg-link { display: inline-block; margin-top: 12px; font-size: 12px; color: var(--teal); text-decoration: none; }
+  .oisg-link:hover { text-decoration: underline; }
+
+  /* ── Quick Links ─────────────────────────────────────── */
+  .links-grid { display: grid; grid-template-columns: repeat(auto-fit, minmax(160px, 1fr)); gap: 12px; }
+  .link-card {
+    background: var(--surface2); border: 1px solid var(--border); border-radius: 10px;
+    padding: 16px; text-decoration: none; color: var(--text); transition: border-color 0.15s;
+  }
+  .link-card:hover { border-color: var(--teal); }
+  .link-card .lc-label { font-size: 11px; text-transform: uppercase; color: var(--muted); margin-bottom: 6px; }
+  .link-card .lc-title { font-size: 14px; font-weight: 600; }
+</style>
+</head>
+<body>
+
+<!-- ════════════════════════════════════════════════════════
+     Alpine.js Dashboard Application
+     ════════════════════════════════════════════════════════ -->
+<div x-data="dashboard()" x-init="init()">
+
+  <!-- Top Bar -->
+  <div class="topbar">
+    <div class="logo">
+      <img src="heimdall.png" alt="Heimdall" title="Heimdall — the Governance Owl">
+      <span class="accent">Admina</span> Governance Dashboard <span style="font-size: 12px; font-weight: 400; color: var(--dim); margin-left: 6px;">%%VERSION%% (%%GIT_COMMIT%%)</span>
+    </div>
+    <div class="right">
+      <span class="ts" x-text="lastUpdate"></span>
+      <div class="sep"></div>
+      <button class="refresh-btn" @click="refresh()">Refresh</button>
+      <div class="sep"></div>
+      <div class="status">
+        <div class="dot" :style="{ background: healthy ? 'var(--green)' : 'var(--red)' }"></div>
+        <span x-text="healthy ? 'Connected' : 'Disconnected'"></span>
+      </div>
+    </div>
+  </div>
+
+  <div class="main">
+
+    <!-- ════ Section: Live governance (runtime metrics) ════ -->
+    <div class="section-header">
+      <div class="section-title">Live Governance</div>
+      <div class="section-subtitle">Runtime metrics from this Admina instance — events processed, attacks blocked, services health.</div>
+    </div>
+
+    <!-- ════ Row 1: Admina Score + Live Feed ════ -->
+    <div class="row row-score">
+
+      <!-- Admina Score Card (runtime weighted composite) -->
+      <div class="score-card">
+        <div class="card-header">
+          ADMINA SCORE
+          <span class="card-subtitle">live runtime composite</span>
+        </div>
+        <div class="score-ring">
+          <svg viewBox="0 0 120 120">
+            <circle class="bg" cx="60" cy="60" r="50"></circle>
+            <circle class="fg" cx="60" cy="60" r="50"
+              :stroke="scoreColor"
+              :stroke-dasharray="314.16"
+              :stroke-dashoffset="314.16 - (314.16 * score.score / 100)">
+            </circle>
+          </svg>
+          <div class="value" :style="{ color: scoreColor }" x-text="score.score"></div>
+          <div class="label">/ 100</div>
+        </div>
+        <div class="score-breakdown">
+          <template x-for="item in scoreItems" :key="item.key">
+            <div>
+              <div class="score-row">
+                <span class="name" x-text="item.label"></span>
+                <span class="pts" :style="{ color: item.value > 0 ? 'var(--green)' : 'var(--dim)' }">
+                  +<span x-text="item.value"></span>/<span x-text="item.max"></span>
+                </span>
+              </div>
+              <div class="score-bar">
+                <div class="fill" :style="{ width: (item.value / item.max * 100) + '%', background: item.value > 0 ? 'var(--teal)' : 'var(--border2)' }"></div>
+              </div>
+              <div x-show="item.hint" :title="item.hint"
+                style="font-size: 10px; color: var(--amber); margin-top: 2px; font-style: italic;"
+                x-text="'\u26A0  ' + (item.hint || '')"></div>
+            </div>
+          </template>
+        </div>
+      </div>
+
+      <!-- Live Governance Feed -->
+      <div class="card">
+        <div class="card-header" style="justify-content: space-between;">
+          <span>LIVE GOVERNANCE FEED</span>
+          <span class="ws-status" :style="{ background: wsConnected ? 'rgba(34,197,94,.12)' : 'rgba(239,68,68,.12)', color: wsConnected ? 'var(--green)' : 'var(--red)' }"
+            x-text="wsConnected ? 'WS LIVE' : 'WS OFF'"></span>
+        </div>
+        <div class="feed-list">
+          <template x-if="feedEvents.length === 0">
+            <div class="feed-empty">Waiting for governance events...</div>
+          </template>
+          <template x-for="(ev, i) in feedEvents" :key="ev._id">
+            <div class="feed-item" :class="{ 'new': i === 0 }">
+              <span class="feed-time" x-text="ev.time"></span>
+              <span>
+                <span class="badge" :class="'badge-' + (ev.action || 'allow').toLowerCase()" x-text="ev.action || 'ALLOW'"></span>
+              </span>
+              <span class="feed-detail" x-text="ev.detail"></span>
+              <span class="badge" :class="'badge-' + (ev.risk_level || 'low').toLowerCase()" x-text="ev.risk_level || 'LOW'"></span>
+            </div>
+          </template>
+        </div>
+      </div>
+    </div>
+
+    <!-- ════ Row 2: Compliance + Sovereignty ════ -->
+    <div class="row row-2">
+
+      <!-- EU AI Act Compliance Gaps -->
+      <div class="card">
+        <div class="card-header">
+          EU AI ACT COMPLIANCE
+          <span class="card-subtitle" x-show="hasAssessment" x-text="'last assessment ' + (complianceData?.latest?.assessed_at?.slice(0, 10) || '')"></span>
+          <span class="card-subtitle" x-show="!hasAssessment" style="color: var(--amber);">no gap analysis run yet</span>
+        </div>
+
+        <!-- No-assessment notice (compact) -->
+        <div x-show="!hasAssessment"
+             style="margin-bottom: 14px; padding: 8px 12px; background: rgba(245,158,11,.06);
+                    border: 1px solid rgba(245,158,11,.3); border-radius: 6px; font-size: 12px;
+                    display: flex; align-items: center; justify-content: space-between; gap: 12px;">
+          <span style="color: var(--amber); font-weight: 600;">
+            ⚠ No real assessment recorded
+            <span style="color: var(--muted); font-weight: 400; margin-left: 6px;">— articles below show defaults</span>
+          </span>
+          <button @click="showAssessmentHelp = true"
+                  style="background: transparent; border: 1px solid var(--amber);
+                         color: var(--amber); padding: 4px 10px; border-radius: 4px;
+                         cursor: pointer; font-size: 12px; font-weight: 600; white-space: nowrap;">
+            click here to fix →
+          </button>
+        </div>
+
+        <!-- Countdown -->
+        <div class="countdown-box">
+          <div>
+            <div class="days" x-text="daysUntilDeadline"></div>
+          </div>
+          <div>
+            <div class="label">days until enforcement</div>
+            <div class="sublabel">Deadline: August 2, 2026</div>
+          </div>
+        </div>
+
+        <!-- Article checklist -->
+        <div class="compliance-grid">
+          <template x-for="art in complianceArticles" :key="art.article">
+            <div class="compliance-row">
+              <div>
+                <div class="art" x-text="art.article"></div>
+                <div class="name" x-text="art.name"></div>
+              </div>
+              <div class="compliance-bar">
+                <div class="fill" :style="{
+                  width: art.pct + '%',
+                  background: art.pct === 100 ? 'var(--green)' : art.pct >= 50 ? 'var(--amber)' : 'var(--red)'
+                }"></div>
+              </div>
+              <div class="compliance-pct" :style="{
+                color: art.pct === 100 ? 'var(--green)' : art.pct >= 50 ? 'var(--amber)' : 'var(--red)'
+              }" x-text="art.pct + '%'"></div>
+            </div>
+          </template>
+        </div>
+
+        <div style="margin-top: 12px; font-size: 12px; color: var(--dim);">
+          <template x-if="hasAssessment">
+            <span>
+              Overall: <span style="font-weight: 600;" :style="{ color: complianceScore === 100 ? 'var(--green)' : 'var(--amber)' }"
+                x-text="complianceScore + '%'"></span> compliant
+              <span x-show="complianceGapCount > 0" style="margin-left: 8px;">
+                (<span x-text="complianceGapCount"></span> gaps to address)
+              </span>
+            </span>
+          </template>
+          <template x-if="!hasAssessment">
+            <span style="font-style: italic;">Overall: <span style="color: var(--amber); font-weight: 600;">unknown</span> — run a gap analysis to compute</span>
+          </template>
+        </div>
+      </div>
+
+      <!-- Data Sovereignty Map -->
+      <div class="card">
+        <div class="card-header">DATA SOVEREIGNTY</div>
+
+        <div style="margin-bottom: 16px; display: flex; align-items: center; gap: 12px;">
+          <span class="badge badge-allow" x-show="sovereignty.data_residency_enforced">RESIDENCY ENFORCED</span>
+          <span style="font-size: 12px; color: var(--dim);">
+            <span x-text="sovereignty.total_governed_events || 0" style="font-weight: 600; color: var(--text);"></span> total governed events
+          </span>
+        </div>
+
+        <div class="zone-grid">
+          <template x-for="(zone, key) in sovereignty.zones || {}" :key="key">
+            <div class="zone-card">
+              <div class="zone-name" x-text="zone.name"></div>
+              <div class="zone-status">
+                <span class="badge" :class="zone.status === 'enforced' ? 'badge-allow' : 'badge-medium'"
+                  x-text="zone.status"></span>
+              </div>
+              <div class="zone-desc" x-text="zone.description"></div>
+            </div>
+          </template>
+        </div>
+
+        <!-- Proxy stats overview -->
+        <div style="margin-top: 20px;">
+          <div class="card-header">PROXY METRICS</div>
+          <div class="kpi-grid">
+            <div class="kpi">
+              <div class="kpi-label">Total Requests</div>
+              <div class="kpi-value" x-text="stats.proxy?.requests_total ?? '—'"></div>
+            </div>
+            <div class="kpi">
+              <div class="kpi-label">Allowed</div>
+              <div class="kpi-value" style="color: var(--green);" x-text="stats.proxy?.requests_allowed ?? '—'"></div>
+            </div>
+            <div class="kpi">
+              <div class="kpi-label">Blocked</div>
+              <div class="kpi-value" style="color: var(--red);" x-text="stats.proxy?.requests_blocked ?? '—'"></div>
+            </div>
+            <div class="kpi">
+              <div class="kpi-label">PII Redacted</div>
+              <div class="kpi-value" style="color: var(--purple);" x-text="stats.proxy?.requests_redacted ?? '—'"></div>
+            </div>
+            <div class="kpi">
+              <div class="kpi-label">Avg Latency</div>
+              <div class="kpi-value" x-text="stats.proxy?.avg_latency_ms != null ? stats.proxy.avg_latency_ms.toFixed(1) + 'ms' : '—'"></div>
+            </div>
+            <div class="kpi">
+              <div class="kpi-label">Forensic Records</div>
+              <div class="kpi-value" x-text="stats.forensic_blackbox?.record_count ?? '—'"></div>
+            </div>
+          </div>
+        </div>
+      </div>
+    </div>
+
+    <!-- ════ Row 3: Model Status + Infrastructure Health ════ -->
+    <div class="row row-2">
+
+      <!-- Model Status -->
+      <div class="card">
+        <div class="card-header">MODEL STATUS</div>
+
+        <div style="margin-bottom: 16px; display: flex; align-items: center; gap: 12px; flex-wrap: wrap;">
+          <span class="badge" :class="modelData.engine?.rust_available ? 'badge-allow' : 'badge-medium'"
+            x-text="modelData.engine?.engine === 'rust' ? 'RUST ENGINE' : 'PYTHON ENGINE'"></span>
+          <span x-show="modelData.engine?.rust_version" style="font-size: 12px; color: var(--dim);">
+            v<span x-text="modelData.engine?.rust_version || ''"></span>
+          </span>
+          <span x-show="modelData.ai_infra_enabled" class="badge badge-allow">AI INFRA ENABLED</span>
+          <span x-show="!modelData.ai_infra_enabled" style="font-size: 12px; color: var(--dim);">
+            AI infra not enabled (activate in admina.yaml)
+          </span>
+        </div>
+
+        <div class="model-grid">
+          <template x-for="model in modelData.models || []" :key="model.name">
+            <div class="model-card">
+              <div class="mc-name" x-text="model.name"></div>
+              <div class="mc-meta">Type: <span x-text="model.type"></span></div>
+              <div class="mc-meta">Backend: <span x-text="model.backend"></span></div>
+              <div class="mc-meta" x-show="model.version">Version: <span x-text="model.version || ''"></span></div>
+              <div class="mc-meta" x-show="model.size">Size: <span x-text="formatBytes(model.size)"></span></div>
+              <div class="mc-status">
+                <span class="badge" :class="model.status === 'active' || model.status === 'loaded' ? 'badge-allow' : 'badge-medium'"
+                  x-text="model.status"></span>
+              </div>
+            </div>
+          </template>
+        </div>
+
+        <template x-if="modelData.gpu">
+          <div style="margin-top: 16px;">
+            <div class="card-header">GPU UTILIZATION</div>
+            <div class="kpi-grid">
+              <div class="kpi">
+                <div class="kpi-label">GPU Name</div>
+                <div class="kpi-value" style="font-size: 16px;" x-text="modelData.gpu?.name || '—'"></div>
+              </div>
+              <div class="kpi">
+                <div class="kpi-label">VRAM Used</div>
+                <div class="kpi-value" style="font-size: 16px;" x-text="modelData.gpu?.vram_used || '—'"></div>
+              </div>
+              <div class="kpi">
+                <div class="kpi-label">Utilization</div>
+                <div class="kpi-value" style="font-size: 16px;" x-text="modelData.gpu?.utilization || '—'"></div>
+              </div>
+            </div>
+          </div>
+        </template>
+      </div>
+
+      <!-- Infrastructure Health -->
+      <div class="card">
+        <div class="card-header">INFRASTRUCTURE HEALTH</div>
+
+        <div class="infra-summary">
+          <span class="badge" :class="infraData.overall === 'healthy' ? 'badge-allow' : 'badge-medium'"
+            x-text="(infraData.overall || 'unknown').toUpperCase()"></span>
+          <span>
+            <span class="count" :style="{ color: infraData.healthy_count === infraData.total_count ? 'var(--green)' : 'var(--amber)' }"
+              x-text="infraData.healthy_count || 0"></span>/<span x-text="infraData.total_count || 0"></span> services healthy
+          </span>
+        </div>
+
+        <div class="infra-grid">
+          <template x-for="(svc, name) in infraData.services || {}" :key="name">
+            <div class="infra-card" :class="svc.status">
+              <div class="ic-name" x-text="name.replace('_', ' ')"></div>
+              <div class="ic-status">
+                <span class="badge" :class="{
+                  'badge-allow': svc.status === 'healthy',
+                  'badge-high': svc.status === 'unhealthy' || svc.status === 'unreachable',
+                  'badge-medium': svc.status === 'degraded' || svc.status === 'not_configured'
+                }" x-text="svc.status"></span>
+              </div>
+              <div class="ic-detail" x-show="svc.latency_ms != null">
+                <span x-text="svc.latency_ms + 'ms'"></span> response
+              </div>
+              <div class="ic-detail" x-show="svc.used_memory_human">
+                Memory: <span x-text="svc.used_memory_human || ''"></span>
+              </div>
+              <div class="ic-detail" x-show="svc.event_count != null">
+                <span x-text="svc.event_count"></span> events stored
+              </div>
+              <div class="ic-detail" x-show="svc.bucket_count != null">
+                <span x-text="svc.bucket_count"></span> buckets
+              </div>
+              <div class="ic-detail" x-show="svc.url">
+                <span x-text="svc.url || ''"></span>
+              </div>
+              <div class="ic-detail" x-show="svc.error" style="color: var(--red);">
+                <span x-text="svc.error || ''"></span>
+              </div>
+            </div>
+          </template>
+        </div>
+      </div>
+    </div>
+
+    <!-- ════ Modal: How to populate the EU AI Act gap analysis ════ -->
+    <div class="modal-backdrop" x-show="showAssessmentHelp" x-cloak
+         @click.self="showAssessmentHelp = false"
+         @keydown.escape.window="showAssessmentHelp = false">
+      <div class="modal">
+        <div class="modal-header">
+          <div class="modal-title">How to populate the EU AI Act gap analysis</div>
+          <button class="modal-close" @click="showAssessmentHelp = false" aria-label="Close">×</button>
+        </div>
+        <div class="modal-body">
+          <p>
+            EU AI Act requirements (Articles 9–15) are <strong>policy and process attestations</strong>
+            that Admina cannot infer from runtime traffic alone — they require a human to declare
+            which checks the organisation has actually completed (e.g. "risk management process documented",
+            "data bias examination performed").
+          </p>
+          <p>
+            Until you submit a real assessment, the dashboard renders all articles at 0% with a default
+            placeholder. To record your real coverage, POST your declared evidence to
+            <code class="inline">/api/compliance/gap-analysis</code>.
+          </p>
+          <p style="margin-bottom: 6px;"><strong>Example request:</strong></p>
+          <button class="modal-copy-btn" @click="copyAssessmentCmd($event)">Copy command</button>
+          <pre class="modal-pre" id="assessment-cmd">curl -X POST http://localhost:8080/api/compliance/gap-analysis \
+  -H "X-API-Key: $ADMINA_API_KEY" -H "Content-Type: application/json" \
+  -d '{"risk_category": "high",
+       "current_compliance": {
+         "risk_management":         [true, true, false, true],
+         "data_governance":         [true, false, true, true],
+         "technical_documentation": [false, false, true, false],
+         "record_keeping":          [true, true, true, true],
+         "transparency":            [true, false, false, false],
+         "human_oversight":         [false, true, false, false],
+         "accuracy_robustness":     [true, true, false, true]
+       }}'</pre>
+          <p style="font-size: 12px;">
+            Each list has 4 booleans, one per check defined for that article. Replace the placeholder
+            values with your real evidence. After submitting, refresh the dashboard to see the article
+            grid and Admina Score reflect your actual coverage.
+          </p>
+        </div>
+      </div>
+    </div>
+
+    <!-- Quick Links -->
+    <div class="card">
+      <div class="card-header">QUICK LINKS</div>
+      <div class="links-grid">
+        <a href="/docs" target="_blank" class="link-card">
+          <div class="lc-label">Proxy API</div>
+          <div class="lc-title">Swagger UI</div>
+        </a>
+        <a href="http://localhost:3001" target="_blank" class="link-card">
+          <div class="lc-label">Grafana</div>
+          <div class="lc-title">OTEL Dashboards</div>
+        </a>
+        <a href="http://localhost:9090" target="_blank" class="link-card">
+          <div class="lc-label">MinIO</div>
+          <div class="lc-title">Forensic Storage</div>
+        </a>
+        <a href="http://localhost:8123/play" target="_blank" class="link-card">
+          <div class="lc-label">ClickHouse</div>
+          <div class="lc-title">Query Events</div>
+        </a>
+      </div>
+    </div>
+
+    <!-- ════ Section: Instance Configuration (OISG) ════ -->
+    <div class="section-header section-config">
+      <div class="section-title">Instance Configuration</div>
+      <div class="section-subtitle">
+        Static adequacy assessment of which OISG capabilities this Admina deployment enables —
+        independent of runtime traffic. Reflects <a href="https://oisg.ai" target="_blank" rel="noopener" style="color: var(--teal); text-decoration: none;">oisg.ai</a> adequacy criteria.
+      </div>
+    </div>
+
+    <!-- OISG Adequacy Score (capability/config snapshot) -->
+    <div class="oisg-card" x-show="oisg.total != null">
+      <div class="card-header" style="justify-content: space-between;">
+        <span>
+          OISG ADEQUACY SCORE
+          <span class="card-subtitle">instance capabilities snapshot</span>
+        </span>
+        <a class="oisg-link" href="https://oisg.ai" target="_blank" rel="noopener" style="margin: 0;">oisg.ai &rarr;</a>
+      </div>
+      <div class="oisg-top">
+
+        <!-- Quadrant map with center score -->
+        <div class="oisg-quadrant-wrapper">
+          <div class="oisg-quadrant">
+            <div class="oisg-quad oisg-quad-o" :style="{ opacity: 0.15 + ((oisg.pillars?.open?.score || 0) / 25) * 0.85 }">
+              <span class="q-letter">O</span><span class="q-name">Open</span>
+              <span class="q-score" x-text="(oisg.pillars?.open?.score || 0) + '/25'"></span>
+            </div>
+            <div class="oisg-quad oisg-quad-i" :style="{ opacity: 0.15 + ((oisg.pillars?.intelligent?.score || 0) / 25) * 0.85 }">
+              <span class="q-letter">I</span><span class="q-name">Intelligent</span>
+              <span class="q-score" x-text="(oisg.pillars?.intelligent?.score || 0) + '/25'"></span>
+            </div>
+            <div class="oisg-quad oisg-quad-s" :style="{ opacity: 0.15 + ((oisg.pillars?.secure?.score || 0) / 25) * 0.85 }">
+              <span class="q-letter">S</span><span class="q-name">Secure</span>
+              <span class="q-score" x-text="(oisg.pillars?.secure?.score || 0) + '/25'"></span>
+            </div>
+            <div class="oisg-quad oisg-quad-g" :style="{ opacity: 0.15 + ((oisg.pillars?.governed?.score || 0) / 25) * 0.85 }">
+              <span class="q-letter">G</span><span class="q-name">Governed</span>
+              <span class="q-score" x-text="(oisg.pillars?.governed?.score || 0) + '/25'"></span>
+            </div>
+          </div>
+          <!-- Center score overlay -->
+          <div class="oisg-center-score">
+            <div class="oisg-total" :style="{ color: oisgColor }" x-text="oisg.total || 0"></div>
+            <div class="oisg-max">/ 100</div>
+            <div class="oisg-level" :style="{ color: oisgColor }" x-text="oisg.level || ''"></div>
+          </div>
+        </div>
+
+        <!-- Criteria checklist -->
+        <div class="oisg-criteria">
+          <template x-for="(pillar, pkey) in oisg.pillars || {}" :key="pkey">
+            <div class="oisg-pillar-group">
+              <div class="oisg-pillar-label" :style="{ color: oisgPillarColor(pkey) }" x-text="pillar.name"></div>
+              <template x-for="c in pillar.criteria || []" :key="c.id">
+                <div class="oisg-criterion" :title="c.reason">
+                  <span :class="c.satisfied ? 'dot-ok' : 'dot-miss'"></span>
+                  <span x-text="c.id.toUpperCase()" style="font-family: var(--mono); font-weight: 600; width: 22px;"></span>
+                  <span x-text="c.satisfied ? 'Met' : 'Gap'" :style="{ color: c.satisfied ? 'var(--green)' : 'var(--red)', fontWeight: 600, width: '28px' }"></span>
+                  <span style="flex: 1; white-space: nowrap; overflow: hidden; text-overflow: ellipsis;" x-text="c.reason"></span>
+                </div>
+              </template>
+            </div>
+          </template>
+        </div>
+
+      </div>
+    </div>
+
+  </div>
+</div>
+
+<script>
+/**
+ * Admina Governance Dashboard — Alpine.js application.
+ *
+ * Reads from the Phase 3.1 API endpoints. Does NOT write.
+ * All API calls go through the nginx reverse proxy (/api/*).
+ */
+function dashboard() {
+  return {
+    // ── State ──────────────────────────────────────────
+    healthy: false,
+    lastUpdate: '—',
+    score: { score: 0, max_score: 100, breakdown: {} },
+    feedEvents: [],
+    wsConnected: false,
+    sovereignty: {},
+    stats: {},
+    complianceData: null,
+    infraData: {},
+    modelData: {},
+    oisg: {},
+    showAssessmentHelp: false,
+    _ws: null,
+    _feedId: 0,
+    _refreshTimer: null,
+
+    // ── Computed ────────────────────────────────────────
+    get scoreColor() {
+      const s = this.score.score;
+      if (s >= 80) return 'var(--green)';
+      if (s >= 50) return 'var(--amber)';
+      return 'var(--red)';
+    },
+
+    get oisgColor() {
+      const t = this.oisg.total || 0;
+      if (t >= 80) return '#5DCAA5';
+      if (t >= 50) return '#85B7EB';
+      if (t >= 25) return '#AFA9EC';
+      return '#F0997B';
+    },
+
+    oisgPillarColor(key) {
+      const map = { open: '#5DCAA5', intelligent: '#AFA9EC', secure: '#F0997B', governed: '#85B7EB' };
+      return map[key] || 'var(--muted)';
+    },
+
+    get scoreItems() {
+      const bd = this.score.breakdown || {};
+      const noAssessment = this.complianceData && this.complianceData.has_assessment === false;
+      return [
+        { key: 'data_residency',       label: 'Data residency enforced',     value: bd.data_residency ?? 0,       max: 25 },
+        { key: 'interactions_audited',  label: 'All interactions audited',    value: bd.interactions_audited ?? 0,  max: 25 },
+        {
+          key: 'eu_ai_act_coverage',
+          label: 'EU AI Act gap coverage',
+          value: bd.eu_ai_act_coverage ?? 0,
+          max: 25,
+          hint: noAssessment ? 'No gap analysis run yet — see EU AI Act card' : null,
+        },
+        { key: 'no_recent_attacks',     label: 'No blocked attacks (24h)',    value: bd.no_recent_attacks ?? 0,     max: 15 },
+        { key: 'forensic_chain_valid',  label: 'Forensic chain valid',        value: bd.forensic_chain_valid ?? 0,  max: 10 },
+      ];
+    },
+
+    get hasAssessment() {
+      return !!(this.complianceData && this.complianceData.has_assessment);
+    },
+
+    get daysUntilDeadline() {
+      // Pick the deadline from the live /api/dashboard/compliance payload
+      // when available, otherwise fall back to the Annex III high-risk date
+      // as agreed in the Omnibus VII deal (Council/Parliament, 7 May 2026).
+      const apiDeadline =
+        (this.complianceData && this.complianceData.enforcement_deadline) ||
+        (this.complianceData && this.complianceData.latest &&
+         this.complianceData.latest.enforcement_deadline) ||
+        '2027-12-02';
+      const deadline = new Date(apiDeadline + 'T00:00:00Z');
+      const now = new Date();
+      return Math.max(0, Math.ceil((deadline - now) / (1000 * 60 * 60 * 24)));
+    },
+
+    get complianceArticles() {
+      if (!this.complianceData || !this.complianceData.latest) return [];
+      const latest = this.complianceData.latest;
+      if (!latest.applicable) return [];
+
+      // Build per-article breakdown from gaps
+      const articles = [
+        { article: 'Art. 9',  name: 'Risk Management System',               total: 4 },
+        { article: 'Art. 10', name: 'Data Governance',                        total: 4 },
+        { article: 'Art. 11', name: 'Technical Documentation',                total: 4 },
+        { article: 'Art. 12', name: 'Record Keeping / Logging',               total: 4 },
+        { article: 'Art. 13', name: 'Transparency',                           total: 4 },
+        { article: 'Art. 14', name: 'Human Oversight',                        total: 4 },
+        { article: 'Art. 15', name: 'Accuracy, Robustness, Cybersecurity',    total: 4 },
+      ];
+      const gaps = latest.gaps || [];
+      return articles.map(a => {
+        const artGaps = gaps.filter(g => g.article === a.article).length;
+        const passed = a.total - artGaps;
+        return { ...a, passed, pct: Math.round((passed / a.total) * 100) };
+      });
+    },
+
+    get complianceScore() {
+      const latest = this.complianceData?.latest;
+      if (!latest) return 0;
+      return latest.compliance_score ?? 0;
+    },
+
+    get complianceGapCount() {
+      return this.complianceData?.latest?.gap_count ?? 0;
+    },
+
+    // ── Init ───────────────────────────────────────────
+    async init() {
+      await this.refresh();
+      this.connectWebSocket();
+      // Auto-refresh every 10s
+      this._refreshTimer = setInterval(() => this.refresh(), 10000);
+    },
+
+    // ── Fetch all data ─────────────────────────────────
+    async refresh() {
+      try {
+        const [scoreRes, compRes, sovRes, statsRes, feedRes, infraRes, modelsRes, oisgRes] = await Promise.all([
+          fetch('/api/dashboard/score').then(r => r.json()),
+          fetch('/api/dashboard/compliance').then(r => r.json()),
+          fetch('/api/dashboard/sovereignty').then(r => r.json()),
+          fetch('/api/stats').then(r => r.json()),
+          fetch('/api/dashboard/feed?limit=50').then(r => r.json()),
+          fetch('/api/dashboard/infra').then(r => r.json()),
+          fetch('/api/dashboard/models').then(r => r.json()),
+          fetch('/api/dashboard/oisg').then(r => r.json()).catch(() => ({})),
+        ]);
+
+        this.score = scoreRes;
+        this.complianceData = compRes;
+        this.sovereignty = sovRes;
+        this.stats = statsRes;
+        this.infraData = infraRes;
+        this.modelData = modelsRes;
+        this.oisg = oisgRes;
+        this.healthy = true;
+        this.lastUpdate = new Date().toLocaleTimeString();
+
+        // Seed the feed with historical events if WS hasn't provided any yet
+        if (this.feedEvents.length === 0 && feedRes.events && feedRes.events.length > 0) {
+          this.feedEvents = feedRes.events.slice(0, 50).map(e => this._formatFeedEvent(e));
+        }
+      } catch (err) {
+        console.error('Dashboard refresh failed:', err);
+        this.healthy = false;
+        this.lastUpdate = 'error';
+      }
+    },
+
+    // ── WebSocket ──────────────────────────────────────
+    connectWebSocket() {
+      const proto = location.protocol === 'https:' ? 'wss:' : 'ws:';
+      const url = `${proto}//${location.host}/api/dashboard/live`;
+
+      try {
+        this._ws = new WebSocket(url);
+
+        this._ws.onopen = () => {
+          this.wsConnected = true;
+          console.log('[Admina] WebSocket connected');
+        };
+
+        this._ws.onmessage = (msg) => {
+          try {
+            const ev = JSON.parse(msg.data);
+            const formatted = {
+              _id: ++this._feedId,
+              time: ev.timestamp ? new Date(ev.timestamp).toLocaleTimeString() : new Date().toLocaleTimeString(),
+              action: ev.action || 'ALLOW',
+              risk_level: ev.risk_level || 'LOW',
+              detail: ev.domain ? `[${ev.domain}] ${ev.event_type}` : ev.event_type || 'event',
+            };
+            this.feedEvents.unshift(formatted);
+            if (this.feedEvents.length > 100) this.feedEvents.pop();
+          } catch (e) { /* ignore malformed messages */ }
+        };
+
+        this._ws.onclose = () => {
+          this.wsConnected = false;
+          console.log('[Admina] WebSocket disconnected, reconnecting in 3s...');
+          setTimeout(() => this.connectWebSocket(), 3000);
+        };
+
+        this._ws.onerror = () => {
+          this.wsConnected = false;
+        };
+      } catch (e) {
+        this.wsConnected = false;
+        setTimeout(() => this.connectWebSocket(), 5000);
+      }
+    },
+
+    // ── Helpers ─────────────────────────────────────────
+    copyAssessmentCmd(ev) {
+      const pre = document.getElementById('assessment-cmd');
+      if (!pre) return;
+      navigator.clipboard.writeText(pre.textContent.trim()).then(() => {
+        const btn = ev.currentTarget;
+        const original = btn.textContent;
+        btn.textContent = 'Copied!';
+        setTimeout(() => { btn.textContent = original; }, 1600);
+      }).catch(() => { /* clipboard unavailable */ });
+    },
+
+    formatBytes(bytes) {
+      if (bytes == null) return '—';
+      const units = ['B', 'KB', 'MB', 'GB', 'TB'];
+      let i = 0;
+      let val = bytes;
+      while (val >= 1024 && i < units.length - 1) { val /= 1024; i++; }
+      return val.toFixed(1) + ' ' + units[i];
+    },
+
+    _formatFeedEvent(e) {
+      return {
+        _id: ++this._feedId,
+        time: e.timestamp ? new Date(e.timestamp).toLocaleTimeString() : '—',
+        action: (e.action || 'ALLOW').toUpperCase(),
+        risk_level: (e.risk_level || 'LOW').toUpperCase(),
+        detail: e.method ? `${e.method}${e.tool_name ? ' → ' + e.tool_name : ''}` : e.event_type || 'event',
+      };
+    },
+  };
+}
+</script>
+</body>
+</html>