Implementation

Implementation

Files Modified (20 existing standards)

:std-scope: universal added after :std-owner: Evan Rosado in each page file:

pages/standards/ai-interaction/delegation-boundary.adoc
pages/standards/documentation/antora-attributes.adoc
pages/standards/documentation/asciidoc-conventions.adoc
pages/standards/documentation/codex-entry-format.adoc
pages/standards/documentation/diagram-catalog.adoc
pages/standards/documentation/discoveries-lifecycle.adoc
pages/standards/documentation/file-naming.adoc
pages/standards/documentation/portfolio-format.adoc
pages/standards/documentation/project-structure.adoc
pages/standards/documentation/repository-architecture.adoc
pages/standards/documentation/training-curriculum.adoc
pages/standards/documentation/worklog-system.adoc
pages/standards/operations/case-studies-taxonomy.adoc
pages/standards/operations/change-control.adoc
pages/standards/operations/incident-response.adoc
pages/standards/operations/root-cause-analysis.adoc
pages/standards/operations/runbook-structure.adoc
pages/standards/operations/validation.adoc
pages/standards/security/secrets-handling.adoc
pages/standards/workflow/cli-quality.adoc

Files Created (3 new standards)

STD-021: Change Advisory Board (Work)

partials/standards/operations/cab-process.adoc
pages/standards/operations/cab-process.adoc

Content: iTrack Details Tab fields (Summary, Description, Requested By, Manager, Director, Implementers, Schedule), Change Plans Tab fields (Implementation Plan, Backout Plan, Testing Plan, Communication Plan, Risk Analysis, Benefits), change lifecycle states (Logged → Reviewed → Approved → Implemented → Closed), personnel roles (Requester, Implementer, Tester, CAB Reviewer), scheduling rules.

STD-022: CHLA Network Operations (Work)

partials/standards/operations/chla-network-ops.adoc
pages/standards/operations/chla-network-ops.adoc

Content: ISE Authorization Profile requirements, Authorization Rule requirements, RADIUS Live Logs verification, VLAN provisioning workflow (verify → create → trunk → verify), trunk configuration (explicit allowed VLANs), 802.1X closed mode requirements, verification commands (show vlan, show authentication sessions, show ip access-lists), personnel roles for network changes.

STD-023: Home Lab Infrastructure (Personal)

partials/standards/operations/home-lab-infrastructure.adoc
pages/standards/operations/home-lab-infrastructure.adoc

Content: LUKS requirements (LUKS2, aes-xts-plain64, 512-bit), AppArmor deployment (enforce mode, credential lockdown, 80% target), firewall (UFW, default deny), kernel hardening (8 sysctl parameters with expected values), systemd sandboxing targets, network authentication (802.1X EAP-TLS), key management (age, GPG, SSH), security dashboard as validation tool (sudo MPLBACKEND=Agg python3 security-dashboard.py). Baseline: 59/100 (Grade D). Target: 80/100 (Grade B).

Files Updated

pages/standards/registry.adoc       — Scope column added, 3 new rows, max ID updated to STD-023
partials/nav/standards.adoc          — 3 new entries with scope labels
.claude/CLAUDE.md (repo)             — Standards registry table updated, scope explanation added