s8n-ru e4b6516f1c sec: polish THREAT-MODEL.md for v0.7 public launch ... Status flipped Draft → Final. In-scope rows now cite specific config files / settings (auditable from clean checkout): - LUKS2 params from kickstart/veilor-os.ks - sysctl knobs file path - USBGuard policy mode + rule type - sshd_config drop-in path + every directive - auditd rule path + watched paths - chrony NTS endpoints - systemd-resolved DoT settings - bootloader kernel args (lockdown, slab_nomerge, init_on_alloc/free, etc.) Out-of-scope rows un-hedged. 'May not always' phrasings removed; each adversary states unambiguously what veilor-os does NOT do.		2026-05-06 11:14:34 +01:00
..
research/2026-05-05-agent-wave	docs: 9-agent research wave findings — v0.5.32 blocker map	2026-05-05 14:52:53 +01:00
BUILD.md	veilor-os v0.1 scaffold — kickstart + hardening + 3-mode power + DuckSans-ready KDE black theme	2026-04-30 03:43:33 +01:00
CLI.md	v0.6: pre-stage veilor-update + veilor-doctor CLI tools (#11)	2026-05-02 04:39:33 +01:00
HARDENING.md	sec: AppArmor profile skeletons + audit shipping draft + veilor-firstboot SELinux module (#3)	2026-05-02 04:39:39 +01:00
INSTALL.md	veilor-os v0.1 scaffold — kickstart + hardening + 3-mode power + DuckSans-ready KDE black theme	2026-04-30 03:43:33 +01:00
INSTALLER.md	feat(installer): pre-stage gum-based UX assets for v0.5.1 (#7)	2026-05-02 04:38:18 +01:00
POWER.md	veilor-os v0.1 scaffold — kickstart + hardening + 3-mode power + DuckSans-ready KDE black theme	2026-04-30 03:43:33 +01:00
ROADMAP.md	docs: refine strategy — ostreecontainer install + mesh stack + browser stack	2026-05-05 15:15:52 +01:00
STRATEGY.md	docs: STRATEGY.md — primary git host moved to git.s8n.ru (Forgejo)	2026-05-06 02:01:06 +01:00
THREAT-MODEL.md	sec: polish THREAT-MODEL.md for v0.7 public launch	2026-05-06 11:14:34 +01:00