boma/docs
sjat eaffd8d900 docs(backup): add backup & DR strategy design (→ ADR-022)
Data-only restic backups, rebuild-from-code recovery (Model A); central
off-cluster pull node (fisi) with 8TB mirror; 3-2-1 via pCloud (rclone)
+ rotated USB air-gap. Per-service backup__* contract + BACKUP.md as a
hard convention. Two-tier restore testing (ubongo container restore-verify
+ semi-annual staging DR rehearsal). One restic password escrowed to
Vaultwarden + paper (restic + vault passwords) for a non-circular
break-glass. Dead-man's-switch alerting via Uptime Kuma.

Resolves TODO 3.8; grounds ADR-011's backup-first assumption.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-10 11:00:01 +02:00
..
access docs(access): correct ADR-021 governance (runbook+gate, not scaffold) 2026-06-09 17:52:24 +02:00
decisions docs(access): correct ADR-021 governance (runbook+gate, not scaffold) 2026-06-09 17:52:24 +02:00
hardware ADR-012/hardware: add ubongo as physical control node 2026-06-05 09:43:09 +02:00
reviews review-repo: 2026-06-05 report (4 auto-fixed, 12 open) 2026-06-05 18:24:39 +02:00
runbooks docs(access): gate ACCESS.md in checklist + new-role runbook (ADR-021) 2026-06-09 17:46:51 +02:00
security docs(access): gate ACCESS.md in checklist + new-role runbook (ADR-021) 2026-06-09 17:46:51 +02:00
superpowers docs(backup): add backup & DR strategy design (→ ADR-022) 2026-06-10 11:00:01 +02:00
testing Git-ignore verify screenshots; add testing/reviews dir 2026-06-05 13:19:04 +02:00
CAPABILITIES.md docs: record base firewall concern built (ADR-020 host layer) 2026-06-06 19:10:27 +02:00
FRICTION.md docs(friction): log execution-mode recurrence; fix list de-indents 2026-06-10 08:54:37 +02:00
README.md Add architecture decision records and runbooks 2026-05-30 14:10:01 +02:00
TODO.md docs(access): wire ADR-021 into CLAUDE.md, STATUS, TODO 2026-06-09 17:48:31 +02:00

docs/

Project documentation.

  • decisions/ — Architecture Decision Records (ADRs): the "why" behind the design. Numbered from 001; each records context, the decision, and what was ruled out.
  • runbooks/ — step-by-step operational procedures (add a host, add a role, rotate secrets).

For what is actually built vs only designed, see STATUS.md at the repo root — the ADRs describe intent, not necessarily current reality.