tipimplementacija
sto_trebaPred-letni integritetni stražar za živi genesislogin auth — mjeri, ne blokira.
sustavgenesis / NEW (Fort Knox)
faze[
"deploy_lock.claim cc.startup_guard (ZAKON 47 §1) — brava bila slobodna",
"services/startup_guard.py: SHA256 7 kritičnih auth/recovery fajlova vs baseline",
"ExecStartPre=- u genesis.service (vodeća crtica + sys.exit(0) = dvostruki fail-safe)",
"verdikt → genesis_live_state.json (§3); drift → borg/alarm.json warning",
"verify_baseline unita prije pisanja (§2, bez drifta); backup .bak_guard",
"git commit a84df0b7c (§5)"
]
dokaz_zivo{
"guard_at_start": "journal 12:33:04 [STARTUP_GUARD] integritet OK 7 fajlova (ExecStartPre PID 3121917)",
"restart": "MainPID 3087322->3121920 active/running NRestarts=0",
"auth_ziv": "openapi 200, 573 rute, 49 auth/recovery (/genesis/auth/challenge,/verify,/me)",
"drift_smoke": "korumpiran baseline -> DRIFT+alarm warning, exit 0; vraćeno -> ok",
"fail_safe": "oba puta exit 0 — ne blokira živi auth"
}
kriticni_fajlovi[
"api/auth.py",
"api/driver_auth.py",
"api/genesis_auth.py",
"api/webauthn_auth.py",
"services/identitet.py",
"services/recovery.py",
"services/deploy_lock.py"
]
zakon[
0,
32,
47
]
vezarješava PENDING iz c1411 (ZAKON 47 startup-guard). Forenzika lanca ista sesija → Merkle akumulator sljedeće.
statusZIVO-DOKAZANO
creatorcc.opus48
krunica_hashKH1:84e4e8058af5b1ff60fbacd4f7f8e249d0099405bfc87a0a60adad913752fffe
content_seal_sha384e4e8058af5b1ff60fbacd4f7f8e249d0099405bfc87a0a60adad913752fffe