Adopt Terraform + hybrid repo structure (new sv0-infrastructure for cross-cutting, existing in-repo modules stay) + Terraform Cloud free tier for state and runners. Design modules so each customer tenant can be stamped out as an independent stack for dedicated-deployment clients.
Target authentication architecture for SecurityV0 — portal UI, API, and infrastructure access. Three IdPs (GitHub at L1 perimeter, WorkOS at L2 application, Entra at L3 Azure RBAC), four SSH tiers including a narrow Tier-1.5 emergency key, an Active subscription-Owner Entra account (no PIM, no backup SP — 2nd-human-Owner is the rollback) with Security Defaults MFA-on-sign-in.
Research and recommendation for giving each Claude Code agent (Alpha, Delta) a distinct identity on GitHub
Canonical inventory of every GitHub Environment / repo secret used by sv0 deploys, CI, and tooling. One row per secret: name, repo, scope, exact workflow files that consume it, purpose, status. Includes a VM ↔ secret mapping for migration planning.
Product owner documentation including vision, wedge definitions, and progress tracking for SecurityV0 platform
How product feedback flows through the SV0 Ideas database — from capture through triage to GitHub implementation
Product requirements for GitHub Zombie & Scope Evidence Engine (v0)
Analysis of when SecurityV0 should use source-system audit/history logs versus internal snapshot diffing, including current platform gap assessment, system capability matrix, and recommended hybrid...