41c676a78e
Enterprise Features: - Hosted mode with remote sync for team pattern aggregation - Community sharing with privacy-preserving anonymization - LLM-based semantic claim extraction with Gemini integration - Pattern learning with promotion to declarative extractors - High-entropy secrets extractor with configurable thresholds - Auth bypass and insecure cookies extractors Module Refactoring: - Split oversized files to comply with 500-line limit - Config split: types/core.rs, types/extractors.rs, types/hosted.rs, etc. - Handlers split: scan.rs, policy.rs, report.rs modules - Extractors split: declarative/, high_entropy_secrets/, insecure_cookies/ - Learning split: store modules with metrics and persistence SDK & Ontology: - stemedb-ontology SDK with fluent builders and StemeDB client - Pharma domain extractors for FDA Orange Book data - Consumer health UAT test infrastructure Code Quality: - Fixed clippy warnings (needless_borrows_for_generic_args) - Added KVStore trait imports where needed - Fixed utoipa path re-exports for OpenAPI docs Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| scripts | ||
| 2026-02-03-benchmark-aphoria-vs-semgrep.md | ||
| 2026-02-03-citadel-scan-v1.md | ||
| 2026-02-03-federated-policy-proposal.md | ||
| 2026-02-03-lessons-learned.md | ||
| 2026-02-03-vulnbank-benchmark.md | ||
| 2026-02-04-full-cycle-precommit-vision.md | ||
| 2026-02-04-masq-unreal-audit.md | ||
| 2026-02-04-uat-plan-unreal.md | ||
| 2026-02-04-uat-policy-source-results.md | ||
| 2026-02-04-uat-policy-source-tracking.md | ||
| 2026-02-04-uat-real-world-policy-source.md | ||
| citadel-scan-v1.md | ||
| future-scenarios.md | ||
| README.md | ||
Aphoria User Acceptance Testing
End-to-end validation of Aphoria workflows.
Quick Start
# Run the enterprise workflow UAT
./scripts/test-enterprise-workflow.sh
UAT Reports
| Report | Status | Description |
|---|---|---|
| Policy Source Tracking | PASS | Trust Pack workflow validation |
| Future Scenarios | Planned | Deferred scenarios awaiting enterprise feedback |
Scripts
| Script | Purpose | Status |
|---|---|---|
| test-enterprise-workflow.sh | Full Trust Pack round-trip test | PASS (12/12) |
| test-multi-pack-conflict.sh | Multiple packs, same concept | PASS (7/7) |
| test-pack-version-update.sh | Pack version supersession | PASS (6/6) |
CI Integration
The UAT is integrated into CI via .github/workflows/ci.yml:
aphoria-uat:
name: Aphoria Enterprise UAT
runs-on: ubuntu-latest
needs: [check, test]
steps:
- name: Build Aphoria
run: cargo build --release --package aphoria
- name: Run Enterprise Workflow UAT
run: ./applications/aphoria/uat/scripts/test-enterprise-workflow.sh
Adding New UAT Scenarios
- Create
YYYY-MM-DD-uat-{scenario}.mdwith test plan - Add automated script in
scripts/ - Update this README
- Add to CI workflow if needed
Structure
uat/
├── README.md # This file
├── 2026-02-04-uat-real-world-policy-source.md # Policy source tracking UAT
├── future-scenarios.md # Tested & deferred scenarios
└── scripts/
├── test-enterprise-workflow.sh # Basic Trust Pack workflow
├── test-multi-pack-conflict.sh # Multi-pack behavior
└── test-pack-version-update.sh # Version supersession