arckit-cli 6.1.1__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (482) hide show
  1. arckit_cli/__init__.py +1120 -0
  2. arckit_cli-6.1.1.data/data/share/arckit/.arckit/memory/sessions.md +293 -0
  3. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/RENDERING.md +22 -0
  4. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/document-control-uae.md +20 -0
  5. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/document-control-uk.md +16 -0
  6. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/adm-preliminary-template.md +135 -0
  7. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/adr-template.md +588 -0
  8. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-design-template.md +390 -0
  9. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-governance-template.md +90 -0
  10. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-integration-template.md +159 -0
  11. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-inventory-template.md +108 -0
  12. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-maturity-template.md +388 -0
  13. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-security-template.md +213 -0
  14. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/analysis-report-template.md +323 -0
  15. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/application-inventory-template.md +221 -0
  16. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-board-template.md +194 -0
  17. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-change-template.md +205 -0
  18. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-diagram-template.md +610 -0
  19. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-principles-template.md +632 -0
  20. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-repository-template.md +107 -0
  21. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-strategy-template.md +666 -0
  22. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-bvergg-template.md +252 -0
  23. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-dsgvo-template.md +354 -0
  24. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-nisg-template.md +236 -0
  25. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-aescsf-template.md +189 -0
  26. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ai-assurance-template.md +243 -0
  27. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-disp-attestation-template.md +297 -0
  28. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-dss-template.md +302 -0
  29. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-e8-posture-template.md +377 -0
  30. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-energy-compliance-template.md +189 -0
  31. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ism-controls-template.md +462 -0
  32. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ndb-playbook-template.md +288 -0
  33. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ot-security-template.md +204 -0
  34. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-pia-template.md +394 -0
  35. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-pspf-template.md +380 -0
  36. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-soci-cirmp-template.md +206 -0
  37. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/aws-research-template.md +605 -0
  38. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/azure-research-template.md +559 -0
  39. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/backlog-template.md +465 -0
  40. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-aia-template.md +206 -0
  41. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-atip-template.md +192 -0
  42. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-charter-template.md +190 -0
  43. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-cloud-residency-template.md +173 -0
  44. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-fitaa-template.md +156 -0
  45. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-gc-digital-standards-template.md +208 -0
  46. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-itsg-33-template.md +228 -0
  47. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-ocap-template.md +205 -0
  48. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-ola-template.md +171 -0
  49. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-pia-template.md +193 -0
  50. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-pspc-template.md +214 -0
  51. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-soia-template.md +219 -0
  52. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/capability-map-template.md +125 -0
  53. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/competitors-template.md +113 -0
  54. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/conformance-assessment-template.md +507 -0
  55. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-mesh-contract-template.md +851 -0
  56. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-model-template.md +1043 -0
  57. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-source-profile-template.md +80 -0
  58. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/datascout-template.md +546 -0
  59. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/devops-template.md +961 -0
  60. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dfd-template.md +161 -0
  61. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dld-review-template.md +427 -0
  62. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dos-requirements-template.md +506 -0
  63. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dpia-template.md +1200 -0
  64. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-ai-act-template.md +227 -0
  65. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-cra-template.md +176 -0
  66. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-data-act-template.md +175 -0
  67. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-dora-template.md +197 -0
  68. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-dsa-template.md +183 -0
  69. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-nis2-template.md +196 -0
  70. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-rgpd-template.md +198 -0
  71. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/evaluation-criteria-template.md +719 -0
  72. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/finops-template.md +662 -0
  73. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-algorithme-public-template.md +162 -0
  74. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-anssi-carto-template.md +196 -0
  75. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-anssi-template.md +190 -0
  76. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-code-reuse-template.md +190 -0
  77. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-dinum-template.md +195 -0
  78. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-dr-template.md +187 -0
  79. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-ebios-template.md +209 -0
  80. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-irn-template.md +311 -0
  81. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-marche-public-template.md +178 -0
  82. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-pssi-template.md +270 -0
  83. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-rgpd-template.md +195 -0
  84. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-secnumcloud-template.md +188 -0
  85. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/framework-overview-template.md +247 -0
  86. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gap-analysis-template.md +198 -0
  87. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcloud-clarify-template.md +340 -0
  88. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcloud-requirements-template.md +370 -0
  89. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcp-research-template.md +585 -0
  90. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/glossary-template.md +117 -0
  91. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-code-search-template.md +213 -0
  92. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-landscape-template.md +271 -0
  93. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-reuse-template.md +214 -0
  94. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/grants-template.md +131 -0
  95. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/hld-review-template.md +760 -0
  96. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/jsp-936-template.md +1394 -0
  97. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/maturity-model-template.md +297 -0
  98. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/mlops-template.md +720 -0
  99. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/mod-secure-by-design-template.md +784 -0
  100. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/operationalize-template.md +1016 -0
  101. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/pages-template.html +5121 -0
  102. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/platform-design-template.md +1610 -0
  103. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/presentation-template.md +270 -0
  104. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/principles-compliance-assessment-template.md +389 -0
  105. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/project-plan-template.md +421 -0
  106. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/rationalization-template.md +208 -0
  107. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/requirements-template.md +1026 -0
  108. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/research-findings-template.md +939 -0
  109. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/risk-register-template.md +883 -0
  110. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/roadmap-template.md +787 -0
  111. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/service-assessment-prep-template.md +448 -0
  112. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/servicenow-design-template.md +273 -0
  113. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/sobc-template.md +1127 -0
  114. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/sow-template.md +785 -0
  115. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/stakeholder-drivers-template.md +493 -0
  116. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/story-template.md +889 -0
  117. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tcop-review-template.md +593 -0
  118. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tech-note-template.md +59 -0
  119. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tenders-template.md +124 -0
  120. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/traceability-matrix-template.md +360 -0
  121. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/transition-architecture-template.md +286 -0
  122. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ai-autonomy-tier-template.md +97 -0
  123. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ai-charter-template.md +81 -0
  124. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-classification-template.md +86 -0
  125. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-cloud-residency-template.md +136 -0
  126. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-data-sharing-template.md +105 -0
  127. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-digital-records-template.md +97 -0
  128. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ias-template.md +109 -0
  129. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-pdpl-template.md +105 -0
  130. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-priorities-alignment-template.md +99 -0
  131. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-procurement-template.md +115 -0
  132. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-uaepass-template.md +129 -0
  133. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-zero-bureaucracy-template.md +85 -0
  134. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-consumer-duty-board-report-template.md +49 -0
  135. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-consumer-duty-template.md +362 -0
  136. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-ctp-dependency-register-template.md +24 -0
  137. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-ctp-dependency-template.md +321 -0
  138. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-safeguarding-reconciliation-template.md +77 -0
  139. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-safeguarding-template.md +348 -0
  140. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-sca-rts-exemption-matrix-template.md +47 -0
  141. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-sca-rts-template.md +273 -0
  142. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-gov-ai-playbook-template.md +942 -0
  143. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-gov-atrs-template.md +1087 -0
  144. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-mdr-classification-template.md +307 -0
  145. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-case-template.md +214 -0
  146. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-hazard-template.md +217 -0
  147. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-safety-template.md +78 -0
  148. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-template.md +13 -0
  149. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-case-template.md +207 -0
  150. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-hazard-template.md +290 -0
  151. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-safety-template.md +81 -0
  152. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-template.md +13 -0
  153. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dtac-template.md +341 -0
  154. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ukgov-secure-by-design-template.md +1031 -0
  155. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-ai-impact-template.md +212 -0
  156. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-ai-rmf-template.md +232 -0
  157. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fedramp-readiness-template.md +209 -0
  158. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fedramp-ssp-template.md +352 -0
  159. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fisma-categorization-template.md +145 -0
  160. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-icam-template.md +216 -0
  161. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-nist-800-53-template.md +222 -0
  162. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-privacy-pia-template.md +191 -0
  163. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-sbom-eo-14028-template.md +253 -0
  164. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-zero-trust-template.md +234 -0
  165. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/vendor-profile-template.md +88 -0
  166. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/vendor-scoring-template.md +332 -0
  167. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-climate-template.md +269 -0
  168. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-doctrine-template.md +299 -0
  169. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-gameplay-template.md +346 -0
  170. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-map-template.md +587 -0
  171. arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-value-chain-template.md +256 -0
  172. arckit_cli-6.1.1.data/data/share/arckit/CHANGELOG.md +3554 -0
  173. arckit_cli-6.1.1.data/data/share/arckit/VERSION +1 -0
  174. arckit_cli-6.1.1.data/data/share/arckit/docs/DEPENDENCY-MATRIX.md +929 -0
  175. arckit_cli-6.1.1.data/data/share/arckit/docs/README.md +322 -0
  176. arckit_cli-6.1.1.data/data/share/arckit/docs/WORKFLOW-DIAGRAMS.md +1088 -0
  177. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/adm-preliminary.md +72 -0
  178. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/adr.md +60 -0
  179. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-design.md +71 -0
  180. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-governance.md +61 -0
  181. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-integration.md +59 -0
  182. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-inventory.md +60 -0
  183. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-maturity.md +84 -0
  184. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-security.md +63 -0
  185. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ai-playbook.md +103 -0
  186. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/analyze.md +57 -0
  187. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/application-inventory.md +71 -0
  188. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/application-rationalization.md +71 -0
  189. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-board.md +60 -0
  190. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-change.md +73 -0
  191. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-repository.md +62 -0
  192. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/artifact-health.md +228 -0
  193. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-bvergg.md +86 -0
  194. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-dsgvo.md +75 -0
  195. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-nisg.md +94 -0
  196. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/atrs.md +98 -0
  197. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-aescsf.md +45 -0
  198. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ai-assurance.md +84 -0
  199. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-disp-attestation.md +90 -0
  200. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-dss.md +76 -0
  201. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-e8-posture.md +73 -0
  202. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-energy-compliance.md +47 -0
  203. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-federal-overlay.md +199 -0
  204. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ism-controls.md +78 -0
  205. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ndb-playbook.md +80 -0
  206. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ot-security.md +39 -0
  207. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-pia.md +72 -0
  208. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-pspf.md +81 -0
  209. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-soci-cirmp.md +40 -0
  210. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/autoresearch.md +334 -0
  211. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/aws-research.md +160 -0
  212. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/azure-research.md +157 -0
  213. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/backlog.md +58 -0
  214. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/build.md +132 -0
  215. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/business-capability-map.md +68 -0
  216. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/business-case.md +68 -0
  217. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/c4-layout-science.md +280 -0
  218. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-aia.md +81 -0
  219. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-atip.md +79 -0
  220. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-charter.md +81 -0
  221. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-cloud-residency.md +91 -0
  222. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-fitaa.md +81 -0
  223. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-gc-digital-standards.md +93 -0
  224. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-itsg-33.md +80 -0
  225. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-ocap.md +91 -0
  226. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-ola.md +80 -0
  227. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-pia.md +83 -0
  228. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-pspc.md +96 -0
  229. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-soia.md +87 -0
  230. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/codes-of-practice.md +154 -0
  231. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/competitors.md +202 -0
  232. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/conformance.md +153 -0
  233. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/create.md +61 -0
  234. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/custom-commands.md +236 -0
  235. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/customize.md +108 -0
  236. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-mesh-contract.md +239 -0
  237. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-model.md +69 -0
  238. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-quality-framework.md +118 -0
  239. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/datascout.md +162 -0
  240. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/declaration.md +59 -0
  241. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/design-review.md +66 -0
  242. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/devops.md +96 -0
  243. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dfd.md +187 -0
  244. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/diagram.md +118 -0
  245. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dld-review.md +102 -0
  246. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dos.md +109 -0
  247. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dpia.md +80 -0
  248. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/enterprise-scale.md +260 -0
  249. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-ai-act.md +82 -0
  250. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-cra.md +90 -0
  251. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-data-act.md +85 -0
  252. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-dora.md +83 -0
  253. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-dsa.md +85 -0
  254. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-nis2.md +82 -0
  255. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-rgpd.md +76 -0
  256. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/evaluate.md +115 -0
  257. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/export-okf.md +70 -0
  258. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/finops.md +117 -0
  259. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-algorithme-public.md +86 -0
  260. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-anssi-carto.md +69 -0
  261. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-anssi.md +79 -0
  262. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-code-reuse.md +86 -0
  263. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-dinum.md +83 -0
  264. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-dr.md +88 -0
  265. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-ebios.md +84 -0
  266. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-irn.md +103 -0
  267. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-marche-public.md +94 -0
  268. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-pssi.md +87 -0
  269. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-rgpd.md +75 -0
  270. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-secnumcloud.md +80 -0
  271. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/framework.md +234 -0
  272. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gap-analysis.md +70 -0
  273. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-clarify.md +108 -0
  274. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-competitors.md +61 -0
  275. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-search.md +106 -0
  276. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcp-research.md +169 -0
  277. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/glossary.md +190 -0
  278. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-code-search.md +119 -0
  279. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-landscape.md +114 -0
  280. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-reuse.md +112 -0
  281. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/govs-007-security.md +93 -0
  282. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/grants.md +106 -0
  283. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/graph-report.md +77 -0
  284. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/health.md +234 -0
  285. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/hld-review.md +110 -0
  286. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/hooks.md +121 -0
  287. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/impact.md +68 -0
  288. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/import-okf.md +67 -0
  289. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/init.md +159 -0
  290. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/jsp-936.md +60 -0
  291. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/knowledge-compounding.md +140 -0
  292. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/maturity-model.md +186 -0
  293. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mcp-servers.md +329 -0
  294. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/migration.md +333 -0
  295. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mlops.md +126 -0
  296. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mod-secure.md +124 -0
  297. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/national-data-strategy.md +115 -0
  298. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/navigator.md +86 -0
  299. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/operationalize.md +143 -0
  300. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pages.md +227 -0
  301. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pinecone-mcp.md +128 -0
  302. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/plan.md +66 -0
  303. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/platform-design.md +600 -0
  304. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/presentation.md +137 -0
  305. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pricing.md +62 -0
  306. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/principles-compliance.md +63 -0
  307. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/principles.md +55 -0
  308. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/procurement.md +57 -0
  309. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/productivity.md +217 -0
  310. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/remote-control.md +151 -0
  311. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/requirements.md +61 -0
  312. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/research.md +65 -0
  313. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/review.md +61 -0
  314. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/risk-management.md +70 -0
  315. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/risk.md +132 -0
  316. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roadmap.md +58 -0
  317. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/README.md +68 -0
  318. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/business-analyst.md +70 -0
  319. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/business-architect.md +70 -0
  320. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/cdo.md +59 -0
  321. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/ciso.md +61 -0
  322. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/cto-cdio.md +59 -0
  323. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/data-architect.md +68 -0
  324. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/data-governance-manager.md +59 -0
  325. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/delivery-manager.md +63 -0
  326. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/devops-engineer.md +55 -0
  327. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/enterprise-architect.md +84 -0
  328. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/it-service-manager.md +55 -0
  329. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/network-architect.md +58 -0
  330. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/performance-analyst.md +67 -0
  331. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/product-manager.md +62 -0
  332. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/security-architect.md +78 -0
  333. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/service-owner.md +58 -0
  334. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/solution-architect.md +75 -0
  335. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/technical-architect.md +68 -0
  336. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/score.md +91 -0
  337. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot1.md +61 -0
  338. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot2.md +62 -0
  339. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot3.md +62 -0
  340. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/search.md +71 -0
  341. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/secure.md +181 -0
  342. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/security-hooks.md +200 -0
  343. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/security.md +62 -0
  344. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/service-assessment.md +47 -0
  345. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/service-design.md +71 -0
  346. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/servicenow.md +152 -0
  347. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/session-memory.md +100 -0
  348. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sobc.md +129 -0
  349. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sow.md +125 -0
  350. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/stakeholder-analysis.md +51 -0
  351. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/stakeholders.md +138 -0
  352. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/start.md +276 -0
  353. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/story.md +61 -0
  354. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/strategy.md +211 -0
  355. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/submission-pack.md +72 -0
  356. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/supplier-profile.md +70 -0
  357. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/tcop.md +124 -0
  358. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/template-builder.md +125 -0
  359. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/tenders.md +193 -0
  360. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/testing-plugin-branches.md +79 -0
  361. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/traceability.md +58 -0
  362. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/transition-architecture.md +69 -0
  363. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/trello.md +139 -0
  364. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ai-autonomy-tier.md +84 -0
  365. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ai-charter.md +89 -0
  366. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-classification.md +73 -0
  367. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-cloud-residency.md +84 -0
  368. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-data-sharing.md +84 -0
  369. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-digital-records.md +71 -0
  370. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ias.md +93 -0
  371. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-overlay-maintenance.md +154 -0
  372. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-overlay.md +208 -0
  373. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-pdpl.md +73 -0
  374. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-priorities-alignment.md +82 -0
  375. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-procurement.md +71 -0
  376. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-uaepass.md +83 -0
  377. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-zero-bureaucracy.md +80 -0
  378. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-consumer-duty.md +178 -0
  379. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-ctp-dependency.md +181 -0
  380. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-payments-overlay.md +216 -0
  381. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-safeguarding.md +176 -0
  382. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-sca-rts.md +164 -0
  383. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/ai-playbook.md +56 -0
  384. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/algorithmic-transparency.md +44 -0
  385. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/digital-marketplace.md +55 -0
  386. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/secure-by-design.md +51 -0
  387. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/standards-map.md +108 -0
  388. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/technology-code-of-practice.md +63 -0
  389. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-mdr-classification.md +59 -0
  390. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-mod/secure-by-design.md +54 -0
  391. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-clinical-safety-overlay.md +214 -0
  392. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dcb0129.md +64 -0
  393. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dcb0160.md +62 -0
  394. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dtac.md +55 -0
  395. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/upgrading.md +130 -0
  396. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-ai-impact.md +71 -0
  397. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-ai-rmf.md +70 -0
  398. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-federal-overlay.md +111 -0
  399. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fedramp-readiness.md +69 -0
  400. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fedramp-ssp.md +71 -0
  401. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fisma-categorization.md +68 -0
  402. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-icam.md +70 -0
  403. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-nist-800-53.md +70 -0
  404. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-privacy-pia.md +74 -0
  405. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-sbom-eo-14028.md +71 -0
  406. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-zero-trust.md +68 -0
  407. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-climate.md +122 -0
  408. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-doctrine.md +120 -0
  409. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-gameplay.md +123 -0
  410. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-value-chain.md +130 -0
  411. arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley.md +173 -0
  412. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/.agents/plugins/marketplace.json +20 -0
  413. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/README.md +325 -0
  414. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/VERSION +1 -0
  415. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/docs/DEPENDENCY-MATRIX.md +616 -0
  416. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/arckit-codex-hook.mjs +1270 -0
  417. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-inject.mjs +1497 -0
  418. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-rollups.mjs +247 -0
  419. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-utils.mjs +363 -0
  420. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/hook-utils.mjs +383 -0
  421. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/hooks.json +80 -0
  422. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/okf-frontmatter.mjs +279 -0
  423. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/project-context-builder.mjs +168 -0
  424. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/sync-guides.mjs +1120 -0
  425. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/README.md +68 -0
  426. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/VERSION +1 -0
  427. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/docs/DEPENDENCY-MATRIX.md +616 -0
  428. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/LICENSE +21 -0
  429. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/README.md +65 -0
  430. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/VERSION +1 -0
  431. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/docs/DEPENDENCY-MATRIX.md +616 -0
  432. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/opencode.json +25 -0
  433. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/.mcp.json +63 -0
  434. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/LICENSE +26 -0
  435. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/README.md +407 -0
  436. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/VERSION +1 -0
  437. arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/vibe-config.toml +62 -0
  438. arckit_cli-6.1.1.data/data/share/arckit/scripts/README.md +680 -0
  439. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/000-global/ARC-000-PRIN-v1.0.md +120 -0
  440. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/001-test-project/ARC-001-STKE-v1.0.md +100 -0
  441. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/001-test-project/README.md +15 -0
  442. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/program-selfharness.md +748 -0
  443. arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/program.md +269 -0
  444. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/check-prerequisites.sh +250 -0
  445. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/common.sh +359 -0
  446. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/create-project.sh +408 -0
  447. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/generate-document-id.sh +146 -0
  448. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/list-projects.sh +359 -0
  449. arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/migrate-filenames.sh +553 -0
  450. arckit_cli-6.1.1.data/data/share/arckit/scripts/bump-version.sh +293 -0
  451. arckit_cli-6.1.1.data/data/share/arckit/scripts/check_doctype_collisions.py +30 -0
  452. arckit_cli-6.1.1.data/data/share/arckit/scripts/check_recipes.py +94 -0
  453. arckit_cli-6.1.1.data/data/share/arckit/scripts/check_references.py +144 -0
  454. arckit_cli-6.1.1.data/data/share/arckit/scripts/convert_vibe_agents.py +198 -0
  455. arckit_cli-6.1.1.data/data/share/arckit/scripts/convert_vibe_skills.py +499 -0
  456. arckit_cli-6.1.1.data/data/share/arckit/scripts/converter.py +2002 -0
  457. arckit_cli-6.1.1.data/data/share/arckit/scripts/create-sdg-repo.py +820 -0
  458. arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-arckit-architecture-hero.py +317 -0
  459. arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-arckit-hero.py +278 -0
  460. arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-release-notes.sh +112 -0
  461. arckit_cli-6.1.1.data/data/share/arckit/scripts/managed-agents/README.md +105 -0
  462. arckit_cli-6.1.1.data/data/share/arckit/scripts/managed-agents/arckit-agent.py +418 -0
  463. arckit_cli-6.1.1.data/data/share/arckit/scripts/push-extensions.sh +424 -0
  464. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/apply_doc_control_marker.py +50 -0
  465. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/common.py +288 -0
  466. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/create-project.py +373 -0
  467. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/generate-document-id.py +96 -0
  468. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/list-projects.py +238 -0
  469. arckit_cli-6.1.1.data/data/share/arckit/scripts/python/migrate_classification.py +94 -0
  470. arckit_cli-6.1.1.data/data/share/arckit/scripts/render-brand-pngs.py +72 -0
  471. arckit_cli-6.1.1.data/data/share/arckit/scripts/standardise-colon.py +128 -0
  472. arckit_cli-6.1.1.data/data/share/arckit/scripts/sync-claude-plugin-layout.py +159 -0
  473. arckit_cli-6.1.1.data/data/share/arckit/scripts/sync-shared-assets.py +132 -0
  474. arckit_cli-6.1.1.data/data/share/arckit/scripts/tag-plugins.sh +65 -0
  475. arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-doc-types-dual-registration.mjs +57 -0
  476. arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-fde-templates.mjs +100 -0
  477. arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-regime-registration.mjs +65 -0
  478. arckit_cli-6.1.1.dist-info/METADATA +1966 -0
  479. arckit_cli-6.1.1.dist-info/RECORD +482 -0
  480. arckit_cli-6.1.1.dist-info/WHEEL +4 -0
  481. arckit_cli-6.1.1.dist-info/entry_points.txt +2 -0
  482. arckit_cli-6.1.1.dist-info/licenses/LICENSE +26 -0
@@ -0,0 +1,216 @@
1
+ # ICAM Architecture (OMB M-19-17 / NIST SP 800-63-3)
2
+
3
+ > **Template Origin**: Community | **ArcKit Version**: [VERSION] | **Command**: `/arckit:us-icam`
4
+
5
+ ## Document Control
6
+
7
+ <!-- DOC-CONTROL-HEADER -->
8
+ <!-- Resolved at command-execution time per _partials/RENDERING.md. -->
9
+ <!-- Classification line MUST be: -->
10
+ <!-- | Classification | PUBLIC / OFFICIAL / OFFICIAL-SENSITIVE (set via `default_classification` user-config) | -->
11
+
12
+ ## Revision History
13
+
14
+ | Version | Date | Author | Changes | Approved By | Approval Date |
15
+ |---------|------|--------|---------|-------------|---------------|
16
+ | [VERSION] | [YYYY-MM-DD] | ArcKit AI | Initial creation from `/arckit:us-icam` command | PENDING | PENDING |
17
+
18
+ ---
19
+
20
+ ## Executive Summary
21
+
22
+ [Two to three paragraphs: scope of the ICAM design, target user populations (employees, contractors, citizens, partners), federation pattern, IAL/AAL/FAL targets, and key implementation decisions (PIV vs derived credentials, login.gov vs Entra ID Gov, SAML vs OIDC).]
23
+
24
+ ---
25
+
26
+ ## 1. Identity Use Cases
27
+
28
+ | Use Case ID | Description | User Population | IAL | AAL | FAL | Rationale |
29
+ |-------------|-------------|-----------------|-----|-----|-----|-----------|
30
+ | UC-001 | Federal employee SSO to internal apps | [Federal employees] | IAL3 | AAL3 | FAL2 | [PIV-mandated by HSPD-12; AAL3 driven by privileged data access] |
31
+ | UC-002 | Contractor SSO to internal apps | [Contractors] | IAL3 | AAL3 | FAL2 | [PIV-I or equivalent per HSPD-12 contractor guidance] |
32
+ | UC-003 | Public citizen account on agency portal | [Citizens] | IAL2 | AAL2 | FAL2 | [Verified citizen identity required for benefits; login.gov default] |
33
+ | UC-004 | Partner agency federation | [Partner agency staff] | IAL3 | AAL2 | FAL2 | [Inter-agency federation; partner asserts IAL] |
34
+ | UC-005 | Privileged administrator | [Internal IT admins] | IAL3 | AAL3 | FAL2 | [Phishing-resistant MFA; just-in-time elevation] |
35
+
36
+ ---
37
+
38
+ ## 2. Identity Proofing Flow
39
+
40
+ ### 2.1 Federal Employees and Contractors
41
+
42
+ [For federal employees, identity proofing is performed during PIV enrolment per FIPS 201-3. Reference the agency's HSPD-12 sponsor / registrar / issuer roles. Derived PIV credentials (NIST SP 800-157) may be issued for mobile devices once the primary PIV is established.]
43
+
44
+ ```text
45
+ Sponsor → Registrar (proofing — I-9 docs, biometrics) → Issuer (PIV card) → Activator → Cardholder
46
+ ```
47
+
48
+ ### 2.2 Public Citizens (login.gov)
49
+
50
+ [Identity proofing for citizen-facing systems is performed by login.gov per GSA's IAL2 process. Agencies do not perform direct identity proofing for the public.]
51
+
52
+ ```text
53
+ Citizen → login.gov account creation → IAL2 proofing (ID upload + selfie or in-person USPS PostalProof) → AAL2 authenticator binding → Agency RP receives proofed assertion
54
+ ```
55
+
56
+ ---
57
+
58
+ ## 3. Identity Provider Selection
59
+
60
+ | IdP Option | Use Case | Rationale | Status |
61
+ |-----------|----------|-----------|--------|
62
+ | **PIV / PIV-D (agency PKI)** | Federal employees + contractors | [Mandated by HSPD-12; provides AAL3 phishing-resistant authenticator] | [Selected — primary] |
63
+ | **login.gov** | Public citizens | [GSA-operated; IAL2 + AAL2 default; no agency-side proofing burden] | [Selected — citizen] |
64
+ | **Microsoft Entra ID Government** | Federal employees if Microsoft-centric agency | [Tight integration with M365 GCC / GCC-High; supports FIDO2 + PIV federation] | [Conditional] |
65
+ | **Okta Identity Cloud for Government** | Federal employees | [FedRAMP-Moderate authorised; broad SaaS connector library] | [Conditional] |
66
+ | **Agency-internal SAML / OIDC IdP** | Bespoke internal use | [When PIV is the trust anchor but additional attribute store needed] | [Conditional] |
67
+
68
+ [Document the selected IdP per use case with FedRAMP authorisation reference, supported authenticators, and any custom claims required.]
69
+
70
+ ---
71
+
72
+ ## 4. PIV Integration Architecture (Federal Employees)
73
+
74
+ | Element | Selection |
75
+ |---------|-----------|
76
+ | **Primary credential** | [PIV card per FIPS 201-3] |
77
+ | **Mobile credential** | [Derived PIV per NIST SP 800-157 / SP 800-157A] |
78
+ | **Card lifecycle** | [Agency HSPD-12 issuer; revocation via OCSP / CRL] |
79
+ | **Federation point** | [Agency SAML IdP fronting PIV; or direct PIV-Auth via PKINIT to Entra ID] |
80
+ | **Browser support** | [Smart-card middleware: ActivClient / native macOS / Linux pcsc-lite] |
81
+ | **Derived credential issuer** | [Agency-internal CA or commercial issuer (Entrust, IdenTrust, etc.)] |
82
+ | **Fallback for PIV-incompatible apps** | [Reverse-proxy with PIV-to-OIDC bridge] |
83
+
84
+ ---
85
+
86
+ ## 5. login.gov Integration Architecture (Public Citizens)
87
+
88
+ | Element | Selection |
89
+ |---------|-----------|
90
+ | **Federation protocol** | [SAML 2.0 or OIDC — OIDC preferred for new integrations] |
91
+ | **IAL target** | [IAL1 (no proofing) / IAL2 (verified)] |
92
+ | **AAL target** | [AAL2] |
93
+ | **Attribute mapping** | [email, sub, given_name, family_name, ssn (IAL2), birthdate (IAL2), address (IAL2)] |
94
+ | **Account linking strategy** | [login.gov sub claim as primary key; legacy account migration plan] |
95
+ | **PII minimisation** | [Request only attributes the agency needs; document lawful authority for each] |
96
+ | **Sandbox URL** | [https://idp.int.identitysandbox.gov/] |
97
+ | **Production URL** | [https://secure.login.gov/] |
98
+ | **Integration agreement (IAA)** | [GSA login.gov IAA reference] |
99
+
100
+ ---
101
+
102
+ ## 6. Federation Pattern
103
+
104
+ | Pattern | Choice | Rationale |
105
+ |---------|--------|-----------|
106
+ | **Employee → Internal apps** | [SAML 2.0 / OIDC] | [SAML where SaaS support is mature; OIDC for new builds] |
107
+ | **Citizen → Citizen-facing apps** | [OIDC] | [login.gov OIDC support; mobile-friendly] |
108
+ | **Inter-agency federation** | [SAML 2.0] | [FICAM Trust Framework Solutions (TFS) certified] |
109
+ | **Workload identity (service-to-service)** | [SPIFFE / mTLS / OAuth 2.0 client_credentials] | [Per Zero Trust apps & workloads pillar] |
110
+
111
+ ---
112
+
113
+ ## 7. Credential Lifecycle
114
+
115
+ | Stage | Process | Owner |
116
+ |-------|---------|-------|
117
+ | **Issuance** | [PIV: HSPD-12 enrolment; login.gov: GSA-managed; agency: IT onboarding] | [HSPD-12 issuer / GSA / IT ops] |
118
+ | **Activation** | [In-person PIV activation; login.gov: self-service email + phone] | [Cardholder / user] |
119
+ | **Use** | [Daily authentication; MFA challenge per AAL] | [User] |
120
+ | **Suspension** | [Lost-card / compromised-credential workflow; immediate OCSP revocation] | [HSPD-12 issuer / login.gov] |
121
+ | **Revocation** | [Separation, role-change-to-non-eligible, fraud — irreversible] | [HSPD-12 issuer] |
122
+ | **Recovery** | [Reissue per agency policy; identity proofing repeated if > 12 months elapsed] | [HSPD-12 issuer / login.gov] |
123
+
124
+ ---
125
+
126
+ ## 8. Privileged Access Management (PAM)
127
+
128
+ | Capability | Implementation |
129
+ |-----------|----------------|
130
+ | **Break-glass accounts** | [Documented owners; checked into vault; alarm on use; quarterly review] |
131
+ | **Just-in-time elevation** | [PAM tool with approval workflow; max session 4 hours] |
132
+ | **MFA for privileged** | [Phishing-resistant AAL3 — PIV or FIDO2 WebAuthn only; no SMS / TOTP] |
133
+ | **Session recording** | [Full keystroke + video for privileged sessions; retain ≥ 1 year] |
134
+ | **Vaulted credentials** | [PAM vault — service-account creds rotated daily; never in scripts] |
135
+ | **Logging** | [PAM logs forwarded to SIEM; SOC alert on anomalous patterns] |
136
+
137
+ ---
138
+
139
+ ## 9. Compliance to NIST SP 800-63-3
140
+
141
+ ### Volume A (Identity Proofing)
142
+
143
+ | Requirement | IAL2 Status | IAL3 Status |
144
+ |-------------|------------|-------------|
145
+ | Identity evidence (strong + superior or 2× strong) | [Met / Gap] | [N/A — IAL3 via PIV] |
146
+ | Address confirmation | [Met / Gap] | [N/A] |
147
+ | Knowledge-based verification (where used) | [Met / Gap] | [N/A] |
148
+ | Biometric capture (IAL3) | [N/A] | [Met / Gap] |
149
+ | Trusted referee allowed | [Yes / No] | [Yes — supervised remote] |
150
+
151
+ ### Volume B (Authenticators and Lifecycle)
152
+
153
+ | Requirement | AAL2 Status | AAL3 Status |
154
+ |-------------|------------|-------------|
155
+ | Multi-factor (something you have + something you know/are) | [Met] | [Met] |
156
+ | Phishing resistance | [Recommended] | [Required — PIV / FIDO2 WebAuthn] |
157
+ | Verifier-impersonation resistance | [Recommended] | [Required] |
158
+ | Replay resistance | [Required] | [Required] |
159
+ | Cryptographic authenticator | [Recommended] | [Required] |
160
+
161
+ ### Volume C (Federation Assertion)
162
+
163
+ | Requirement | FAL2 Status |
164
+ |-------------|------------|
165
+ | Bearer assertion with audience restriction | [Met / Gap] |
166
+ | Encrypted assertion (or transport TLS) | [Met — TLS 1.2+] |
167
+ | Holder-of-key assertion (FAL3) | [Conditional — only where required] |
168
+ | Replay protection on assertion | [Met] |
169
+
170
+ ---
171
+
172
+ ## 10. Compliance Crosswalk
173
+
174
+ | Framework Requirement | ICAM Element Satisfying |
175
+ |-----------------------|-------------------------|
176
+ | OMB M-19-17 — ICAM modernisation | [Federation architecture; IdP selection] |
177
+ | OMB M-22-09 — phishing-resistant MFA | [PIV + FIDO2 mandate] |
178
+ | HSPD-12 | [PIV issuance per FIPS 201-3] |
179
+ | FIPS 201-3 | [PIV card spec] |
180
+ | NIST SP 800-63-3 | [IAL / AAL / FAL targets] |
181
+ | NIST SP 800-157 / 157A | [Derived PIV] |
182
+
183
+ ---
184
+
185
+ ## 11. References
186
+
187
+ | Reference | Citation | URL |
188
+ |-----------|----------|-----|
189
+ | OMB M-19-17 | Enabling Mission Delivery through Improved Identity, Credential, and Access Management | <https://www.whitehouse.gov/wp-content/uploads/2019/05/M-19-17.pdf> |
190
+ | NIST SP 800-63-3 | Digital Identity Guidelines | <https://pages.nist.gov/800-63-3/> |
191
+ | NIST SP 800-63A | Enrollment and Identity Proofing | <https://pages.nist.gov/800-63-3/sp800-63a.html> |
192
+ | NIST SP 800-63B | Authentication and Lifecycle Management | <https://pages.nist.gov/800-63-3/sp800-63b.html> |
193
+ | NIST SP 800-63C | Federation and Assertions | <https://pages.nist.gov/800-63-3/sp800-63c.html> |
194
+ | FIPS 201-3 | Personal Identity Verification (PIV) of Federal Employees and Contractors | <https://doi.org/10.6028/NIST.FIPS.201-3> |
195
+ | NIST SP 800-157 | Derived PIV Credentials | <https://doi.org/10.6028/NIST.SP.800-157> |
196
+ | login.gov developer docs | login.gov developer documentation | <https://developers.login.gov/> |
197
+ | FICAM | Federal Identity, Credential, and Access Management | <https://www.idmanagement.gov/> |
198
+
199
+ ---
200
+
201
+ ## 12. Approvals
202
+
203
+ | Role | Name | Signature | Date |
204
+ |------|------|-----------|------|
205
+ | ICAM Programme Lead | [Name] | [Signature] | [YYYY-MM-DD] |
206
+ | CISO | [Name] | [Signature] | [YYYY-MM-DD] |
207
+ | Privacy Officer (SAOP) | [Name] | [Signature] | [YYYY-MM-DD] |
208
+ | CIO | [Name] | [Signature] | [YYYY-MM-DD] |
209
+
210
+ ---
211
+
212
+ **Generated by**: ArcKit `/arckit:us-icam` command
213
+ **Generated on**: [DATE]
214
+ **ArcKit Version**: [VERSION]
215
+ **Project**: [PROJECT_NAME]
216
+ **Model**: [AI_MODEL]
@@ -0,0 +1,222 @@
1
+ # NIST SP 800-53 Rev 5 Tailored Control Set
2
+
3
+ > **Template Origin**: Community | **ArcKit Version**: [VERSION] | **Command**: `/arckit:us-nist-800-53`
4
+
5
+ ## Document Control
6
+
7
+ <!-- DOC-CONTROL-HEADER -->
8
+ <!-- Resolved at command-execution time per _partials/RENDERING.md. -->
9
+ <!-- Classification line MUST be: -->
10
+ <!-- | Classification | PUBLIC / OFFICIAL / OFFICIAL-SENSITIVE (set via `default_classification` user-config) | -->
11
+
12
+ ## Revision History
13
+
14
+ | Version | Date | Author | Changes | Approved By | Approval Date |
15
+ |---------|------|--------|---------|-------------|---------------|
16
+ | [VERSION] | [YYYY-MM-DD] | ArcKit AI | Initial creation from `/arckit:us-nist-800-53` command | PENDING | PENDING |
17
+
18
+ ---
19
+
20
+ ## Executive Summary
21
+
22
+ [Two to three paragraphs: scope of the tailored control set, the baseline selected (Low / Moderate / High), the catalog used (FedRAMP Rev 5 vs Agency Rev 5), summary of inherited vs implemented controls, and any significant tailoring decisions (controls added, removed, or compensated).]
23
+
24
+ ---
25
+
26
+ ## 1. Baseline Selection
27
+
28
+ | Field | Value |
29
+ |-------|-------|
30
+ | **FIPS 199 High-Water Mark** | [LOW / MODERATE / HIGH — cross-ref `ARC-{P}-FISMA-v*`] |
31
+ | **Selected Control Baseline** | [Low / Moderate / High] |
32
+ | **Baseline Source** | [NIST SP 800-53B / FedRAMP Rev 5 / Agency Overlay] |
33
+ | **Catalog Version** | [NIST SP 800-53 Rev 5.1.1 / FedRAMP Rev 5 Baselines vNN] |
34
+ | **Total Controls in Baseline** | [Count] |
35
+ | **Tailoring Rationale** | [Brief narrative — why this baseline matches the system's risk profile and mission] |
36
+
37
+ ---
38
+
39
+ ## 2. FedRAMP vs Agency Baseline
40
+
41
+ | Aspect | Selection | Rationale |
42
+ |--------|-----------|-----------|
43
+ | **Catalog tailored against** | [FedRAMP Rev 5 / Agency Rev 5 / Hybrid] | [Why] |
44
+ | **CSP-hosted?** | [Yes — CSP name / No] | [If CSP-hosted and pursuing FedRAMP authorisation, the FedRAMP baseline is the canonical tailoring source.] |
45
+ | **Agency-specific overlay applied** | [Yes — overlay reference / No] | [E.g., DoD CC SRG IL2/IL4/IL5, IRS Pub 1075, CJIS, HHS ePHI] |
46
+
47
+ ---
48
+
49
+ ## 3. Control Family Summary
50
+
51
+ | Family Code | Family Name | Baseline Controls | Implemented | Inherited | Hybrid | Not Applicable | Planned |
52
+ |-------------|------------|-------------------|-------------|-----------|--------|----------------|---------|
53
+ | AC | Access Control | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
54
+ | AT | Awareness and Training | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
55
+ | AU | Audit and Accountability | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
56
+ | CA | Assessment, Authorization, and Monitoring | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
57
+ | CM | Configuration Management | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
58
+ | CP | Contingency Planning | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
59
+ | IA | Identification and Authentication | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
60
+ | IR | Incident Response | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
61
+ | MA | Maintenance | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
62
+ | MP | Media Protection | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
63
+ | PE | Physical and Environmental Protection | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
64
+ | PL | Planning | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
65
+ | PM | Program Management | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
66
+ | PS | Personnel Security | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
67
+ | PT | PII Processing and Transparency | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
68
+ | RA | Risk Assessment | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
69
+ | SA | System and Services Acquisition | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
70
+ | SC | System and Communications Protection | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
71
+ | SI | System and Information Integrity | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
72
+ | SR | Supply Chain Risk Management | [Count] | [Count] | [Count] | [Count] | [Count] | [Count] |
73
+
74
+ ---
75
+
76
+ ## 4. Tailoring Matrix
77
+
78
+ | Control ID | Control Title | Baseline | Implementation Status | Inheritance Source | Parameter Assignments | Compensating Controls | Notes |
79
+ |-----------|---------------|----------|----------------------|--------------------|----------------------|----------------------|-------|
80
+ | AC-2 | Account Management | [Mod] | [Implemented] | [N/A] | [Account types: Individual, Shared, Service, Application] | [None] | [Cross-ref ICAM artefact] |
81
+ | AC-2(2) | Automated Temporary and Emergency Account Management | [Mod] | [Implemented] | [N/A] | [Org-defined period: 30 days] | [None] | [Inactive accounts disabled at 30 days] |
82
+ | AC-17 | Remote Access | [Mod] | [Hybrid] | [CSP: AWS GovCloud — VPN substrate] | [Authorised remote access: VPN, BeyondCorp] | [None] | [Customer responsibility: device posture] |
83
+ | AU-2 | Event Logging | [Mod] | [Implemented] | [Partial — CSP logs network plane] | [Auditable events: §AU-2.a] | [None] | [Cross-ref ConMon plan] |
84
+ | AU-6 | Audit Record Review, Analysis, and Reporting | [Mod] | [Implemented] | [N/A] | [Review frequency: daily; reporting: weekly to SOC] | [None] | [SIEM-driven; alerts triaged in-platform] |
85
+ | CM-6 | Configuration Settings | [Mod] | [Implemented] | [N/A] | [Common Secure Configurations: DISA STIG / CIS Benchmarks Level 1] | [None] | [Compliance scanner: quarterly] |
86
+ | CP-9 | System Backup | [Mod] | [Inherited] | [CSP: AWS Backup cross-region] | [Frequency: daily; retention: 90 days] | [None] | [Customer validates restore quarterly] |
87
+ | IA-2(1) | MFA to Privileged Accounts | [Mod] | [Implemented] | [N/A] | [Phishing-resistant authenticator required] | [None] | [Cross-ref Zero Trust Identity pillar] |
88
+ | IR-4 | Incident Handling | [Mod] | [Implemented] | [N/A] | [IR Plan: ARC-{P}-IR-v*] | [None] | [US-CERT reporting: 1 hour] |
89
+ | RA-5 | Vulnerability Monitoring and Scanning | [Mod] | [Implemented] | [N/A] | [Scan frequency: weekly authenticated; monthly external] | [None] | [Cross-ref ConMon] |
90
+ | SC-7 | Boundary Protection | [Mod] | [Hybrid] | [CSP: AWS WAF / Shield] | [Egress filtering: deny-by-default] | [None] | [Customer responsibility: WAF rules] |
91
+ | SI-2 | Flaw Remediation | [Mod] | [Implemented] | [N/A] | [Patch windows: High = 30 days, Med = 90 days] | [None] | [Tracked via vulnerability-management platform] |
92
+
93
+ [Continue for every control in the baseline. For inherited controls, identify the FedRAMP-authorised CSP and the customer responsibility carry-over per the CRM.]
94
+
95
+ ---
96
+
97
+ ## 5. Parameter Assignments by Family
98
+
99
+ ### AC — Access Control
100
+
101
+ | Control | Parameter | Org-Defined Value |
102
+ |---------|-----------|-------------------|
103
+ | AC-2(2) | Account inactivity period | [30 days] |
104
+ | AC-2(3) | Disable accounts after inactivity | [60 days] |
105
+ | AC-7 | Failed login attempts | [5 attempts; lockout 15 minutes] |
106
+ | AC-11 | Session lock after inactivity | [15 minutes] |
107
+ | AC-12 | Session termination after inactivity | [60 minutes] |
108
+
109
+ ### AU — Audit and Accountability
110
+
111
+ | Control | Parameter | Org-Defined Value |
112
+ |---------|-----------|-------------------|
113
+ | AU-4 | Audit log storage capacity | [Retain online ≥ 90 days; archive ≥ 1 year] |
114
+ | AU-5 | Audit failure response | [Alert SOC; shift to backup logging] |
115
+ | AU-11 | Audit record retention | [3 years per NARA / agency schedule] |
116
+
117
+ ### CP — Contingency Planning
118
+
119
+ | Control | Parameter | Org-Defined Value |
120
+ |---------|-----------|-------------------|
121
+ | CP-2 | Contingency plan review frequency | [Annual + after material change] |
122
+ | CP-4 | Contingency plan testing frequency | [Annual tabletop + every 3 years functional] |
123
+ | CP-9 | Backup frequency | [Daily incremental; weekly full] |
124
+
125
+ ### IA — Identification and Authentication
126
+
127
+ | Control | Parameter | Org-Defined Value |
128
+ |---------|-----------|-------------------|
129
+ | IA-2 | MFA assurance level | [AAL2 standard users / AAL3 privileged] |
130
+ | IA-5 | Password complexity | [NIST SP 800-63B Section 5.1.1.2] |
131
+
132
+ ### IR — Incident Response
133
+
134
+ | Control | Parameter | Org-Defined Value |
135
+ |---------|-----------|-------------------|
136
+ | IR-2 | Incident response training frequency | [Annual + on role change] |
137
+ | IR-3 | Incident response testing frequency | [Annual + after major change] |
138
+ | IR-6 | Incident reporting timeframes | [US-CERT: 1 hour; Agency CISO: 30 minutes] |
139
+
140
+ ### SI — System and Information Integrity
141
+
142
+ | Control | Parameter | Org-Defined Value |
143
+ |---------|-----------|-------------------|
144
+ | SI-2 | Flaw remediation timeframes | [Critical = 15 days; High = 30 days; Med = 90 days] |
145
+ | SI-4 | System monitoring | [Continuous (24/7); detection signatures updated daily] |
146
+
147
+ ---
148
+
149
+ ## 6. Compensating Controls Register
150
+
151
+ When a baseline control cannot be implemented as written, document the alternative.
152
+
153
+ | Control ID | Reason Not Implemented | Compensating Control | Equivalent Risk Mitigation | Owner | Approval |
154
+ |-----------|------------------------|---------------------|----------------------------|-------|----------|
155
+ | [Control] | [Reason] | [Alternative] | [Equivalence narrative] | [Role] | [AO sign-off] |
156
+
157
+ ---
158
+
159
+ ## 7. Cloud Service Provider Inheritance
160
+
161
+ ### Inherited FedRAMP-Authorised Services
162
+
163
+ | CSP | Service | FedRAMP Authorisation ID | Baseline | Customer Responsibility Matrix Reference |
164
+ |-----|---------|--------------------------|----------|----------------------------------------|
165
+ | [AWS GovCloud] | [Service] | [FR-MOD-NNNNN] | [Moderate / High] | [CRM URL / artefact] |
166
+ | [Azure Government] | [Service] | [FR-MOD-NNNNN] | [Moderate / High] | [CRM URL / artefact] |
167
+
168
+ ### Customer Responsibility Matrix (Summary)
169
+
170
+ | Control Family | Provider Provides | Customer Configures | Joint |
171
+ |----------------|-------------------|---------------------|-------|
172
+ | AC | [Authentication primitives] | [Account lifecycle, role definitions] | [SSO integration] |
173
+ | AU | [Network plane logs] | [Application-tier logs, retention] | [Aggregation] |
174
+ | SC | [Encryption primitives] | [Encryption-key policy, certificate management] | [WAF rules] |
175
+ | SI | [Patching the platform] | [Patching customer workloads] | [Vulnerability disclosure] |
176
+
177
+ [Full CRM mapping per inherited CSP referenced in `external/` or vendor portal.]
178
+
179
+ ---
180
+
181
+ ## 8. Continuous Monitoring Strategy Summary
182
+
183
+ | Activity | Frequency | Owner | Output |
184
+ |---------|-----------|-------|--------|
185
+ | Authenticated vulnerability scan | [Weekly] | [SOC / SecOps] | [Scan report] |
186
+ | External attack-surface scan | [Monthly] | [SOC] | [External scan] |
187
+ | Configuration compliance scan | [Quarterly] | [Platform team] | [Drift report] |
188
+ | POA&M review | [Monthly] | [ISSO] | [POA&M update] |
189
+ | Control assessment (annual subset) | [Annual — 1/3 of controls] | [AO + 3PAO] | [Assessment report] |
190
+ | Penetration test | [Annual] | [3PAO] | [Pentest report] |
191
+
192
+ [Cross-ref `/arckit:us-fedramp-ssp` Section 13 for full ConMon plan.]
193
+
194
+ ---
195
+
196
+ ## 9. References
197
+
198
+ | Reference | Citation | URL |
199
+ |-----------|----------|-----|
200
+ | NIST SP 800-53 Rev 5 | Security and Privacy Controls for Information Systems and Organizations | <https://doi.org/10.6028/NIST.SP.800-53r5> |
201
+ | NIST SP 800-53B | Control Baselines for Information Systems and Organizations | <https://doi.org/10.6028/NIST.SP.800-53B> |
202
+ | FedRAMP Rev 5 Baselines | FedRAMP Moderate / High / Low Baselines | <https://www.fedramp.gov/baselines/> |
203
+ | OSCAL | Open Security Controls Assessment Language | <https://pages.nist.gov/OSCAL/> |
204
+ | FedRAMP CRM Template | Customer Responsibility Matrix Template | <https://www.fedramp.gov/documents-templates/> |
205
+
206
+ ---
207
+
208
+ ## 10. Approvals
209
+
210
+ | Role | Name | Signature | Date |
211
+ |------|------|-----------|------|
212
+ | System Owner | [Name] | [Signature] | [YYYY-MM-DD] |
213
+ | Information System Security Officer (ISSO) | [Name] | [Signature] | [YYYY-MM-DD] |
214
+ | Authorising Official (AO) | [Name] | [Signature] | [YYYY-MM-DD] |
215
+
216
+ ---
217
+
218
+ **Generated by**: ArcKit `/arckit:us-nist-800-53` command
219
+ **Generated on**: [DATE]
220
+ **ArcKit Version**: [VERSION]
221
+ **Project**: [PROJECT_NAME]
222
+ **Model**: [AI_MODEL]
@@ -0,0 +1,191 @@
1
+ # Privacy Impact Assessment (E-Government Act §208)
2
+
3
+ > **Template Origin**: Community | **ArcKit Version**: [VERSION] | **Command**: `/arckit:us-privacy-pia`
4
+
5
+ ## Document Control
6
+
7
+ <!-- DOC-CONTROL-HEADER -->
8
+ <!-- Resolved at command-execution time per _partials/RENDERING.md. -->
9
+ <!-- Classification line MUST be: -->
10
+ <!-- | Classification | PUBLIC / OFFICIAL / OFFICIAL-SENSITIVE (set via `default_classification` user-config) | -->
11
+
12
+ ## Revision History
13
+
14
+ | Version | Date | Author | Changes | Approved By | Approval Date |
15
+ |---------|------|--------|---------|-------------|---------------|
16
+ | [VERSION] | [YYYY-MM-DD] | ArcKit AI | Initial creation from `/arckit:us-privacy-pia` command | PENDING | PENDING |
17
+
18
+ ---
19
+
20
+ ## Executive Summary
21
+
22
+ [Two to three paragraphs: system being assessed, PII processed, lawful authority, Privacy Act applicability (SoR? new SORN required?), residual privacy risks, and SAOP sign-off status.]
23
+
24
+ ---
25
+
26
+ ## 1. System Overview
27
+
28
+ | Field | Value |
29
+ |-------|-------|
30
+ | **System Name** | [Name] |
31
+ | **System Acronym** | [Acronym] |
32
+ | **Agency** | [Agency] |
33
+ | **Bureau / Component** | [Bureau] |
34
+ | **System Owner** | [Name + role] |
35
+ | **Senior Agency Official for Privacy (SAOP)** | [Name + role] |
36
+ | **Project Phase** | [Initiation / Development / Operations / Decommissioned] |
37
+ | **Project Purpose** | [What the system does] |
38
+ | **PIA Trigger** | [New system / Substantial change / Periodic review / Privacy Act SoR change] |
39
+ | **Cross-ref FISMA Categorization** | [ARC-{P}-FISMA-v*] |
40
+ | **Cross-ref AI Impact Assessment (if AI used)** | [ARC-{P}-AIIA-v*] |
41
+ | **Assessment Date** | [YYYY-MM-DD] |
42
+
43
+ ---
44
+
45
+ ## 2. PII Inventory
46
+
47
+ | Data Element | Source | Lawful Authority | Use | Disclosure | Retention | Disposal Method |
48
+ |--------------|--------|------------------|-----|-----------|-----------|-----------------|
49
+ | Full name | [Individual / agency partner] | [Statutory citation] | [Identity proofing; correspondence] | [Internal only; SOR routine use #1] | [Per NARA schedule N1-NNN] | [Cryptographic erasure] |
50
+ | Social Security Number (SSN) | [Individual / IRS / SSA] | [E.g., 26 USC §6109; Pub L 93-579 §7] | [Benefits eligibility verification] | [SSA matching agreement; SOR routine use #2] | [7 years post-decision] | [Cryptographic erasure + NIST SP 800-88 sanitisation] |
51
+ | Date of birth | [Individual] | [Statutory citation] | [Identity proofing; eligibility] | [Internal only] | [Per NARA schedule N1-NNN] | [Cryptographic erasure] |
52
+ | Residential address | [Individual] | [Statutory citation] | [Correspondence; jurisdictional eligibility] | [USPS for mailing only] | [Per NARA schedule N1-NNN] | [Cryptographic erasure] |
53
+ | Email address | [Individual] | [Statutory citation] | [Service notifications; account recovery] | [None — internal only] | [Per NARA schedule N1-NNN] | [Cryptographic erasure] |
54
+ | Biometric data (facial template, fingerprint) | [Individual via login.gov / agency enrolment] | [HSPD-12 / agency-specific authority] | [Identity proofing IAL3] | [None — held only by issuer] | [Per FIPS 201-3 — lifetime of credential + N years] | [Crypto-erasure + physical destruction of biometric template store] |
55
+
56
+ [Add additional rows for every PII element processed.]
57
+
58
+ ---
59
+
60
+ ## 3. Lawful Authority
61
+
62
+ | Authority Type | Citation | Applies To |
63
+ |----------------|----------|-----------|
64
+ | Statute | [E.g., 5 USC §301; 31 USC §3101; agency enabling statute] | [Collection of named PII elements] |
65
+ | Executive Order | [EO citation] | [Specific elements / processing] |
66
+ | Agency Regulation | [CFR citation] | [Specific processing] |
67
+ | OMB Memorandum | [OMB memo citation] | [Specific processing] |
68
+ | Privacy Act Routine Use | [SOR citation + routine use number] | [Specific disclosures] |
69
+
70
+ [Document the complete legal basis for each PII collection and processing activity.]
71
+
72
+ ---
73
+
74
+ ## 4. Privacy Act (5 USC §552a) Alignment
75
+
76
+ | Question | Answer |
77
+ |----------|--------|
78
+ | Is this a System of Records (SoR) under the Privacy Act? | [Yes / No] |
79
+ | If Yes, applicable SORN(s) | [Agency-XX-NNN; published Federal Register YYYY-MM-DD] |
80
+ | If Yes, are records retrieved by personal identifier? | [Yes — identifiers listed] |
81
+ | If new SoR being created — SORN drafting plan | [Target Federal Register publication date; OMB / Congressional notice 60-day clock start date] |
82
+ | If existing SoR being modified — modification plan | [Modified SORN draft; OMB / Congressional notice timing] |
83
+ | Privacy Act §(e)(3) notice provided at collection? | [Yes — notice text linked / No — justification] |
84
+ | Privacy Act §(e)(10) safeguards? | [Cross-ref security controls in 800-53 artefact] |
85
+ | Routine uses documented? | [Yes — list / No — gap to close] |
86
+
87
+ [A SORN is required for any system of records covered by the Privacy Act before any record can be collected. Plan the publication timeline accordingly.]
88
+
89
+ ---
90
+
91
+ ## 5. SORN Trigger Check (OMB M-03-22 Decision Tree)
92
+
93
+ | Question | Answer |
94
+ |----------|--------|
95
+ | 1. Does the system collect, maintain, use, or disseminate information about individuals? | [Yes / No] |
96
+ | 2. Is the information about *federal employees, federal contractors, or members of the public*? | [Yes / No] |
97
+ | 3. Will records be retrieved by a personal identifier (name, SSN, biometric, employee ID)? | [Yes / No] |
98
+ | 4. Is this system already covered by an existing published SORN? | [Yes — cite SORN / No] |
99
+
100
+ **SORN Outcome**: [No new SORN required (covered by existing SORN X) / Existing SORN modification required / New SORN required] — [Rationale]
101
+
102
+ ---
103
+
104
+ ## 6. OMB M-03-22 Conformance Checklist
105
+
106
+ | Privacy Principle | Status | Evidence | Gap | Action |
107
+ |-------------------|--------|----------|-----|--------|
108
+ | Notice | [Met / Gap] | [Notice text + posting location] | [Gap] | [Action] |
109
+ | Choice (opt-in / opt-out where applicable) | [Met / Gap] | [Mechanism] | [Gap] | [Action] |
110
+ | Access (individual's right to inspect their record) | [Met / Gap] | [Process + form] | [Gap] | [Action] |
111
+ | Security (cross-ref 800-53 controls) | [Met / Gap] | [Cross-ref ARC-{P}-NIST53-v*] | [Gap] | [Action] |
112
+ | Accountability (designated SAOP, training, audit) | [Met / Gap] | [SAOP designation; training records] | [Gap] | [Action] |
113
+ | Data Quality (accuracy, completeness, timeliness) | [Met / Gap] | [Validation processes] | [Gap] | [Action] |
114
+ | Transparency (publication of PIA + SORN) | [Met / Gap] | [Publication URL] | [Gap] | [Action] |
115
+
116
+ ---
117
+
118
+ ## 7. Privacy Risk Analysis
119
+
120
+ | Risk ID | Risk Description | Likelihood | Impact | Mitigation | Residual Risk | Owner |
121
+ |---------|------------------|-----------|--------|-----------|---------------|-------|
122
+ | PR-001 | [Unauthorised disclosure of SSN via misconfigured S3 bucket] | [Low] | [High] | [SSE-KMS + bucket policy + drift detection + DLP scanning] | [Low] | [Platform team] |
123
+ | PR-002 | [Aggregation enabling re-identification of de-identified records] | [Medium] | [Med] | [Differential privacy on aggregated outputs; minimum cell-size suppression] | [Low] | [Data team] |
124
+ | PR-003 | [Cross-system data flow disclosing PII outside lawful authority] | [Low] | [High] | [Data-loss-prevention + interconnection security agreements] | [Low] | [Privacy office] |
125
+ | PR-004 | [Retention beyond NARA schedule] | [Medium] | [Low] | [Automated retention enforcement; quarterly disposal report] | [Low] | [Records officer] |
126
+
127
+ ---
128
+
129
+ ## 8. Mitigation Tracker
130
+
131
+ | Mitigation ID | Linked Risk | Mitigation Description | Target Date | Owner | Status |
132
+ |---------------|------------|------------------------|-------------|-------|--------|
133
+ | MT-001 | PR-001 | [Implement DLP across object storage] | [YYYY-MM-DD] | [Owner] | [Open / In Progress / Closed] |
134
+
135
+ ---
136
+
137
+ ## 9. Agency SAOP Sign-Off
138
+
139
+ | Sign-Off Item | SAOP Statement |
140
+ |---------------|----------------|
141
+ | PII inventory complete and accurate | [Concur / Concur with conditions / Returned] |
142
+ | Lawful authority documented for every PII element | [Concur / Concur with conditions / Returned] |
143
+ | Privacy Act / SORN compliance confirmed | [Concur / Concur with conditions / Returned] |
144
+ | OMB M-03-22 principles satisfied | [Concur / Concur with conditions / Returned] |
145
+ | Privacy risks identified and mitigated to acceptable residual level | [Concur / Concur with conditions / Returned] |
146
+
147
+ **SAOP Signature**: [Name + signature + date]
148
+
149
+ ---
150
+
151
+ ## 10. Public Posting Plan
152
+
153
+ | Element | Status |
154
+ |---------|--------|
155
+ | PIA approved for public posting? | [Yes / No — partial redaction] |
156
+ | If partial redaction, citation of exception | [E.g., 6 USC §1523(b)(3)(C) — law-enforcement-sensitive] |
157
+ | Target publication URL | [https://www.agency.gov/privacy/pias/...] |
158
+ | Target publication date | [YYYY-MM-DD] |
159
+ | Linked SORN published in Federal Register | [Yes — citation / No — pending] |
160
+
161
+ ---
162
+
163
+ ## 11. References
164
+
165
+ | Reference | Citation | URL |
166
+ |-----------|----------|-----|
167
+ | E-Government Act of 2002 §208 | Privacy Impact Assessment requirement | <https://www.congress.gov/107/plaws/publ347/PLAW-107publ347.pdf> |
168
+ | OMB M-03-22 | Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002 | <https://www.whitehouse.gov/wp-content/uploads/2017/11/203-M-03-22-OMB-Guidance-for-Implementing-the-Privacy-Provisions-of-the-E-Government-Act-of-2002-1.pdf> |
169
+ | Privacy Act of 1974 | 5 USC §552a | <https://www.justice.gov/opcl/privacy-act-1974> |
170
+ | NIST SP 800-122 | Guide to Protecting the Confidentiality of PII | <https://doi.org/10.6028/NIST.SP.800-122> |
171
+ | OMB Circular A-108 | Federal Agency Responsibilities for Review, Reporting, and Publication under the Privacy Act | <https://www.whitehouse.gov/wp-content/uploads/legacy_drupal_files/omb/circulars/A108/omb_circular_a-108.pdf> |
172
+
173
+ ---
174
+
175
+ ## 12. Approvals
176
+
177
+ | Role | Name | Signature | Date |
178
+ |------|------|-----------|------|
179
+ | System Owner | [Name] | [Signature] | [YYYY-MM-DD] |
180
+ | Privacy Officer | [Name] | [Signature] | [YYYY-MM-DD] |
181
+ | Senior Agency Official for Privacy (SAOP) | [Name] | [Signature] | [YYYY-MM-DD] |
182
+ | Agency General Counsel | [Name] | [Signature] | [YYYY-MM-DD] |
183
+ | Authorising Official (AO) | [Name] | [Signature] | [YYYY-MM-DD] |
184
+
185
+ ---
186
+
187
+ **Generated by**: ArcKit `/arckit:us-privacy-pia` command
188
+ **Generated on**: [DATE]
189
+ **ArcKit Version**: [VERSION]
190
+ **Project**: [PROJECT_NAME]
191
+ **Model**: [AI_MODEL]