Skip to content

feat(exports): maintain-audit --pdf (auditor one-pager) + page footers + exports cheat-sheet#103

Merged
QodeXcli merged 1 commit into
mainfrom
feat/audit-pdf-exports
Jul 2, 2026
Merged

feat(exports): maintain-audit --pdf (auditor one-pager) + page footers + exports cheat-sheet#103
QodeXcli merged 1 commit into
mainfrom
feat/audit-pdf-exports

Conversation

@QodeXcli

@QodeXcli QodeXcli commented Jul 2, 2026

Copy link
Copy Markdown
Owner

Completes the export/presentability story.

qodex maintain-audit --sign --pdf — the enterprise artifact

An auditor-facing one-pager:

  • Verification status up top: chain INTACT/BROKEN (with the first broken index), head match, signature VALID/INVALID/unsigned (with keyId), overall PASS / FAIL — do not trust
  • The full run chain as a readable table: seq, date, scope, outcome ([OK] opened / [BLOCKED]), files touched, the checks that ran (✓/✗ per command), and the PR link
  • Foot: the offline-verify instruction (maintain-audit-verify, exit 1 on tamper — CI-friendly)

buildAuditPdfBlocks is PURE (takes the verdict from verifyAuditLog), so the FAIL rendering is tested with an actually-forged chain.

pdf-lite: page-number footers

Page N of M centered on multi-page documents; one-pagers stay clean. (Report/demo/audit PDFs all inherit it.)

ADOPTION.md: "Every export, one place"

An audience → command → artifact table: teammate/README/meeting (demo), PR-standup/manager (report), auditor/CI (audit), archive (signed history). Makes the whole capability surface discoverable in one glance.

axios status: axios/axios#11062 is still OPEN with no review comments — the "merged upstream" update waits for the real merge.

+4 tests (audit PDF content incl. forged-chain FAIL + unsigned; footer on multi-page, absent on one-pagers). Full suite 1538 green, tsc clean.

…s + exports cheat-sheet

Completes the export story — every maintain artifact can now leave the terminal in the format
its audience consumes:

- maintain-audit --pdf: the auditor-facing one-pager — verification status up top (chain
  INTACT/BROKEN, head match, signature VALID/INVALID/unsigned, overall PASS/FAIL), then the full
  run chain as a readable table (seq, date, scope, outcome, files, checks, PR link), and the
  offline-verify instruction at the foot. buildAuditPdfBlocks is PURE (takes the verdict from
  verifyAuditLog); composes with --sign.
- pdf-lite: "Page N of M" footers on multi-page documents (one-pagers stay clean).
- ADOPTION.md "Every export, one place": an audience→command→artifact table covering demo/
  report/audit/history exports; notes all PDFs come from the dependency-free writer.

(axios/axios#11062 still OPEN with no review comments — the "merged upstream" docs update waits
for the actual merge, honestly.)
@QodeXcli QodeXcli merged commit d9a2145 into main Jul 2, 2026
2 checks passed
@QodeXcli QodeXcli deleted the feat/audit-pdf-exports branch July 2, 2026 02:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant