eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/docs/changelog.d
History
Erich Blume a59ff04249 Review security-model.md (#153) 
## Summary
- Fix Ansible secret example: replaced incorrect `op item get --fields` with `op read` to match project convention
- Add new "Tailscale Operator Privileges" section documenting the operator's namespaced RBAC and OAuth client permissions
- Stamp `last-reviewed: 2026-02-11`

## Review Notes
First review of this doc (previously never reviewed). Verified:
- All wiki-links resolve
- ACL structure matches actual `pulumi/tailscale/policy.hujson`
- TruffleHog pre-commit config exists as documented
- Ansible `op read` pattern matches actual usage in playbooks/roles

Reviewed-on: https://forge.ops.eblu.me/eblume/blumeops/pulls/153
2026-02-11 12:16:32 -08:00
..
.gitkeep Add towncrier changelog system (#86) 2026-02-03 11:48:13 -08:00
feature-ci-and-fork-plans.doc.md Add plans for Dagger CI/CD and upstream fork strategy (#150) 2026-02-11 10:20:14 -08:00
fix-flyio-proxy-oom.bugfix.md Bump Fly.io proxy VM to 512MB, fix TruffleHog scanning (#152) 2026-02-11 12:03:51 -08:00
plan-backlog-to-plans.doc.md Transcribe backlog tasks into plan documents (#151) 2026-02-11 11:47:23 -08:00
review-security-model-doc.doc.md Review security-model.md (#153) 2026-02-11 12:16:32 -08:00