vln-devsecops dashboard

Comprehensive static snapshot of workflow health, compliance signals, release posture, shared-module status, and migration tracking across the repositories coordinated by this workspace.

Generated at 2026-05-01T00:39:02Z from checked-in manifests plus best-effort GitHub metadata available to the workflow token at build time.

Static build generated by this repository's workflow.
Mobile-friendly layout optimized for phone, tablet, and desktop viewing.
Published via GitHub Pages from a private repository, so access is authenticated by GitHub.

Tracked repos

24across 4 owners

Workflow health

7green · 0 failing · 1 pending

Visibility

15private · 9 public

Manifest confirmation

22repos awaiting reconfirmation

Shared modules

7tracked extraction items

Attention items

8from TODO and snapshot gaps

Portfolio summary

Owners: VlinderSoftware: 2, blytkerchan: 10, vln-devsecops: 11, vln-polaris: 1

Categories: application: 1, automation: 1, books: 6, devsecops: 2, github-action: 5, infrastructure: 2, org-profile: 1, website: 1, website-app: 1, website-blog: 2, website-tool: 1, workspace: 1

Roles: extract-shared-parts: 10, inventory-reference: 3, migrated: 7, target: 4

Open attention items

Add a daily job to look for actions etc. that have unmerged minor updates that are applicable to release branches. Update them and create a patch release.
Break up the `doxchange` repository as a separate undertaking.
Build a daily PR scan across the organizations to detect failures that may be automatically remediated with the Copilot CLI, then have Copilot propose fixes as pull requests. Run it as a cron job on the current host, with the required supporting scripts and automation.
Write and publish a blog post on `blytkerchan.github.io` announcing the move of `build-paper` to `vln-devsecops/actions-build-paper`, so any unexpected users have a clear pointer to the new action location.
Update the READMEs for the public actions so their documented `uses:` locations, badges, and repository links point at the new `vln-devsecops` homes.
Add a reusable workflow for the auto-versioning path so repositories can call a more stable shared workflow instead of each depending directly on the more fragile autoversion action wiring.
Repos without live API enrichment in this snapshot: vln-devsecops/github-runners, vln-devsecops/utils-system-cleanup, vln-devsecops/terraform-modules, VlinderSoftware/doxchange, vln-polaris/terraform-aws-coppice ...
Repo manifest entries awaiting reconfirmation: 22

Per-repo status matrix

Repo	Category	Role	Stage	Workflow health	Release and tags	Compliance	Confirmed	Live data	Notes
blytkerchan/applied-paranoia.com	website-blog	extract-shared-parts	dev	green completed / success	v20210827-1	unknown	no	live	current deploy automation is AWS-specific and should not be treated as the default abstraction for future Azure or GCP sites
blytkerchan/arxiv-digest	website-app	extract-shared-parts	main	green completed / success	none	unknown	no	live	—
blytkerchan/blog-copy-editor	website-tool	extract-shared-parts	dev	unknown unknown	none	unknown	no	manifest-only	—
blytkerchan/blytkerchan.github.io	website-blog	extract-shared-parts	master	green completed / success	none	unknown	no	live	—
blytkerchan/book-apoptotic-cascade	books	extract-shared-parts	main	unknown unknown	none	unknown	no	manifest-only	—
blytkerchan/book-cpp4theselftaught	books	extract-shared-parts	main	unknown unknown	none	unknown	no	manifest-only	—
blytkerchan/book-git4theselftaught	books	inventory-reference	master	unknown unknown	none	unknown	no	manifest-only	older tex-based book structure useful as a legacy contrast to the newer automation-heavy books
blytkerchan/book-observer	books	extract-shared-parts	main	unknown unknown	none	unknown	no	manifest-only	—
blytkerchan/book-security4theselftaught	books	inventory-reference	main	unknown unknown	none	unknown	no	manifest-only	older tex-based book structure less obviously aligned with the newer pandoc automation stack
blytkerchan/workspace-books	books	inventory-reference	dev	unknown unknown	none	unknown	no	manifest-only	umbrella workspace for book writing useful for finding cross-book automation patterns
VlinderSoftware/doxchange	application	extract-shared-parts	dev	unknown unknown	none	unknown	no	manifest-only	project-owned infra structure is the precedent for app-specific infra boundaries infra directory contains reusable terraform modules and automation worth extracting
VlinderSoftware/vlinder.ca	website	extract-shared-parts	master	unknown unknown	none	unknown	no	manifest-only	current deployment extraction candidate is AWS-specific; future Azure or GCP patterns may belong in separate or more generalized automation
vln-devsecops/.github	org-profile	target	main	unknown no runs	none	unknown	yes	live	org profile repository for the public-facing organization README and shared org metadata
vln-devsecops/actions-autoversion	github-action	migrated	main	green completed / success	v1.1.2 / v1.1 / v1	unknown	no	live	transferred directly from VlinderSoftware/autoversion old location now redirects to the new repo
vln-devsecops/actions-build-paper	github-action	migrated	dev	green completed / success	v1.1.1 / v1.1 / v1	unknown	yes	live	transferred directly from blytkerchan/build-paper old location now redirects to the new repo
vln-devsecops/actions-generate-licenses	github-action	migrated	main	green completed / success	v1.2.9 / v1.2 / v1	unknown	no	live	transferred directly from VlinderSoftware/generate-licenses old location now redirects to the new repo
vln-devsecops/actions-msvc	github-action	migrated	dev	green completed / success	v1.0.2 / v1.0 / v1	unknown	no	live	transferred directly from blytkerchan/devsecops-setup-msvc old location now redirects to the new repo
vln-devsecops/actions-validate-coverage	github-action	migrated	main	neutral completed / skipped	v1.0.17 / v1.0 / v1	unknown	no	live	transferred directly from VlinderSoftware/validate-coverage old location now redirects to the new repo
vln-devsecops/automation-books	automation	target	dev	unknown unknown	none	unknown	no	manifest-only	initialized on dev with lightweight compliance workflows intended home for shared book build and editorial automation
vln-devsecops/github-runners	devsecops	migrated	main	unknown unknown	none	unknown	no	manifest-only	inactive shared runner infrastructure transferred from VlinderSoftware/devsecops-gha-runner
vln-devsecops/operations	workspace	target	dev	pending in_progress / n/a	none	baseline	no	live	central devsecops workspace tracks the broader org migration/extraction plan and the org-profile repository
vln-devsecops/terraform-modules	infrastructure	target	main	unknown unknown	none	unknown	no	manifest-only	intended home for extracted reusable Terraform modules and infra patterns extracted modules currently include modules/aws/deployment_bucket, modules/aws/dynamodb, modules/aws/mail, and modules/aws/lambda
vln-devsecops/utils-system-cleanup	devsecops	migrated	main	unknown unknown	none	unknown	no	manifest-only	transferred from VlinderSoftware/devsecops-utils-system-cleanup old location now redirects to the new repo
vln-polaris/terraform-aws-coppice	infrastructure	extract-shared-parts	dev	unknown unknown	none	unknown	no	manifest-only	active application infrastructure requires separate analysis to isolate reusable modules and patterns

Shared-platform view

Module status counts: deferred: 1, extracted: 6

Module	Source repo	Target path	Status	Provider	Completed checks
rxmail	VlinderSoftware/doxchange	modules/aws/rxmail	deferred	aws	none
deployment_bucket	VlinderSoftware/doxchange	modules/aws/deployment_bucket	extracted	aws	static_checks_complete, terraform_test_complete, integration_test_complete, examples_complete, policy_checks_complete
dynamodb	VlinderSoftware/doxchange	modules/aws/dynamodb	extracted	aws	static_checks_complete, terraform_test_complete, integration_test_complete, examples_complete, policy_checks_complete
lambda	VlinderSoftware/doxchange	modules/aws/lambda	extracted	aws	static_checks_complete, terraform_test_complete, integration_test_complete, examples_complete, policy_checks_complete
lambda	vln-polaris/terraform-aws-coppice	modules/aws/lambda	extracted	aws	static_checks_complete, terraform_test_complete, integration_test_complete, examples_complete, policy_checks_complete
mail	VlinderSoftware/doxchange	modules/aws/mail	extracted	aws	static_checks_complete, terraform_test_complete, integration_test_complete, examples_complete, policy_checks_complete
static_site	blytkerchan/applied-paranoia.com	modules/aws/static_site	extracted	aws	static_checks_complete, terraform_test_complete, examples_complete, policy_checks_complete

Operations run history

cd_publish_org_dashboard
workflow_dispatch · 2026-05-01T00:38:32Z

in_progress
cd_publish_org_dashboard
workflow_dispatch · 2026-05-01T00:36:13Z

failure
ci_validate_yaml
push · 2026-05-01T00:36:01Z

success
ci_lint_markdown
push · 2026-05-01T00:36:01Z

success
ci_validate_yaml
push · 2026-04-30T21:25:59Z

success
cd_publish_org_dashboard
workflow_dispatch · 2026-04-30T21:25:58Z

success
ci_validate_yaml
push · 2026-04-30T21:24:38Z

success
cd_publish_org_dashboard
workflow_dispatch · 2026-04-30T21:24:37Z

success

Adoption and migration view

Migration posture: this snapshot reflects the repo manifest and in-repo TODO list as of 2026-05-01T00:39:02Z. Remaining tracked follow-ups stay explicit in the prompt docs for archive cleanup and the shared Lambda@Edge gap.

The dashboard is intentionally static at publish time. Any richer cross-owner live API enrichment can be added later without changing the hosted security model.