Skip to content

feat(cacert): add CACert Transparency Log & Registry design (CEN-T)#23623

Open
BrianCLong wants to merge 1 commit intomainfrom
codex/build-cacert-transparency-log-and-registry
Open

feat(cacert): add CACert Transparency Log & Registry design (CEN-T)#23623
BrianCLong wants to merge 1 commit intomainfrom
codex/build-cacert-transparency-log-and-registry

Conversation

@BrianCLong
Copy link
Copy Markdown
Owner

@BrianCLong BrianCLong commented Apr 8, 2026

Motivation

  • Close the governance gap by providing a non-repudiable, publicly auditable append-only transparency log for CACerts so issuance, omission, and equivocation are detectable.

Description

  • Add the CEN‑T design doc at docs/CACERT_TRANSPARENCY_LOG_REGISTRY.md describing architecture (Merkle/RFC6962-style tree, STHs, witnesses), a ≤7-PR implementation stack (library, Merkle builder, server API, consistency proofs, CLI verifier, CI gate), deterministic JSON schemas (log_entry.json, inclusion_proof.json, consistency_proof.json), and structured failure/error cases; also register the initiative in docs/roadmap/STATUS.json.

Testing

  • Validated the updated roadmap JSON with python -m json.tool docs/roadmap/STATUS.json which succeeded.

Codex Task

@BrianCLong BrianCLong added the codex Codex-owned implementation work label Apr 8, 2026 — with ChatGPT Codex Connector
@gemini-code-assist
Copy link
Copy Markdown
Contributor

gemini-code-assist bot commented Apr 8, 2026

Warning

You have reached your daily quota limit. Please wait up to 24 hours and I will start processing your requests again!

@coderabbitai
Copy link
Copy Markdown

coderabbitai bot commented Apr 8, 2026
edited
Loading

Warning

Rate limit exceeded

@BrianCLong has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 18 minutes and 8 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 18 minutes and 8 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: e516847c-50ae-4e43-9def-94c07f384346

📥 Commits

Reviewing files that changed from the base of the PR and between e87382b and 0afab53.

📒 Files selected for processing (2)
  • docs/CACERT_TRANSPARENCY_LOG_REGISTRY.md
  • docs/roadmap/STATUS.json
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch codex/build-cacert-transparency-log-and-registry

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@BrianCLong BrianCLong force-pushed the codex/build-cacert-transparency-log-and-registry branch from b6d0ab7 to 0afab53 Compare April 9, 2026 01:07
@github-actions github-actions bot enabled auto-merge (squash) April 10, 2026 10:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

auto-merge codex Codex-owned implementation work queue:needs-rebase risk:low

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@BrianCLong