Releases: Hack23/cia
Release 2026.3.30
Highlights
🏗️ Infrastructure & Performance
- build(deps): bump github/codeql-action from 4.35.0 to 4.35.1 @dependabot[bot] (#8497)
- build(deps): bump bridgecrewio/checkov-action from 12.3091.0 to 12.3092.0 @dependabot[bot] (#8496)
📦 Dependencies
- build(deps): bump org.bsc.maven:maven-processor-plugin from 5.1-jdk8 to 5.2-jdk8 @dependabot[bot] (#8502)
- build(deps): bump org.apache.logging.log4j:log4j-bom from 2.25.3 to 2.25.4 @dependabot[bot] (#8501)
- build(deps): bump org.codehaus.plexus:plexus-utils from 4.0.2 to 4.0.3 @dependabot[bot] (#8499)
- build(deps): bump org.codehaus.plexus:plexus-utils from 4.0.2 to 4.0.3 in /testfoundation in the maven group across 1 directory @dependabot[bot] (#8498)
- build(deps): bump github/codeql-action from 4.35.0 to 4.35.1 @dependabot[bot] (#8497)
- build(deps): bump bridgecrewio/checkov-action from 12.3091.0 to 12.3092.0 @dependabot[bot] (#8496)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.30.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.30.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.14 • Database: PostgreSQL 18
🙏 Contributors
Thanks to @dependabot[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.27...2026.3.30
Contributors
Assets 12
Release 2026.3.27
Highlights
🏗️ Infrastructure & Performance
- build(deps): bump bridgecrewio/checkov-action from 12.3090.0 to 12.3091.0 @dependabot[bot] (#8495)
- build(deps): bump github/codeql-action from 4.34.1 to 4.35.0 @dependabot[bot] (#8494)
- build(deps): bump bridgecrewio/checkov-action from 12.3089.0 to 12.3090.0 @dependabot[bot] (#8493)
📦 Dependencies
- build(deps): bump bridgecrewio/checkov-action from 12.3090.0 to 12.3091.0 @dependabot[bot] (#8495)
- build(deps): bump github/codeql-action from 4.34.1 to 4.35.0 @dependabot[bot] (#8494)
- build(deps): bump bridgecrewio/checkov-action from 12.3089.0 to 12.3090.0 @dependabot[bot] (#8493)
- build(deps): bump io.netty:netty-bom from 4.2.11.Final to 4.2.12.Final @dependabot[bot] (#8492)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.27.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.27.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.14 • Database: PostgreSQL 18
🙏 Contributors
Thanks to @dependabot[bot], @pethers and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.25...2026.3.27
Contributors
Assets 12
Release 2026.3.25
Highlights
🏗️ Infrastructure & Performance
- fix: align release artifact SPDX and intoto filenames with primary artifacts @copilot-swe-agent[bot] (#8491)
📝 Documentation
- fix: align release artifact SPDX and intoto filenames with primary artifacts @copilot-swe-agent[bot] (#8491)
📦 Dependencies
- build(deps): bump io.netty:netty-bom from 4.2.10.Final to 4.2.11.Final @dependabot[bot] (#8490)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.25.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.25.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.14 • Database: PostgreSQL 18
🙏 Contributors
Thanks to @Copilot, @dependabot[bot], copilot-swe-agent[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.23...2026.3.25
Contributors
Assets 12
Release 2026.3.23
Highlights
- fix: correct data quality bugs in 34 database view definitions and ensure JPA backward compatibility @copilot-swe-agent[bot] (#8486)
🏗️ Infrastructure & Performance
- chore: replace unmaintained unix-maven-plugin with jdeb, upgrade Maven to 3.9.14 @copilot-swe-agent[bot] (#8487)
📝 Documentation
- chore: replace unmaintained unix-maven-plugin with jdeb, upgrade Maven to 3.9.14 @copilot-swe-agent[bot] (#8487)
📦 Dependencies
- chore: replace unmaintained unix-maven-plugin with jdeb, upgrade Maven to 3.9.14 @copilot-swe-agent[bot] (#8487)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.23.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.23.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.14 • Database: PostgreSQL 18
🙏 Contributors
Thanks to @Copilot and copilot-swe-agent[bot] for their contributions to this release!
Full Changelog: 2026.3.22...2026.3.23
Release 2026.3.22
Highlights
🏗️ Infrastructure & Performance
- chore: upgrade PostgreSQL 16 → 18 and align Java 25 → 26 across all workflows, CloudFormation, devcontainer, agents, and documentation @copilot-swe-agent[bot] (#8485)
- build(deps): bump github/codeql-action from 4.34.0 to 4.34.1 @dependabot[bot] (#8480)
🔄 Code Quality & Refactoring
- chore: upgrade PostgreSQL 16 → 18 and align Java 25 → 26 across all workflows, CloudFormation, devcontainer, agents, and documentation @copilot-swe-agent[bot] (#8485)
📝 Documentation
- chore: upgrade PostgreSQL 16 → 18 and align Java 25 → 26 across all workflows, CloudFormation, devcontainer, agents, and documentation @copilot-swe-agent[bot] (#8485)
📦 Dependencies
- build(deps): bump com.google.protobuf:protobuf-java from 4.34.0 to 4.34.1 @dependabot[bot] (#8483)
- build(deps): bump org.apache.artemis:artemis-server from 2.52.0 to 2.53.0 @dependabot[bot] (#8484)
- build(deps): bump org.apache.artemis:artemis-jms-client from 2.52.0 to 2.53.0 @dependabot[bot] (#8482)
- build(deps): bump cia.project.versions.jackson from 2.21.1 to 2.21.2 @dependabot[bot] (#8481)
- build(deps): bump github/codeql-action from 4.34.0 to 4.34.1 @dependabot[bot] (#8480)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.22.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.22.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.9 • Database: PostgreSQL 18
🙏 Contributors
Thanks to @Copilot, @dependabot[bot], copilot-swe-agent[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.21...2026.3.22
Contributors
Assets 12
Release 2026.3.21
Highlights
- fix: apply changelogs 1.76-1.78, fix 32 views with missing data, regenerate schema @copilot-swe-agent[bot] (#8479)
🏗️ Infrastructure & Performance
- build(deps): bump github/codeql-action from 4.33.0 to 4.34.0 @dependabot[bot] (#8478)
📦 Dependencies
- build(deps): bump github/codeql-action from 4.33.0 to 4.34.0 @dependabot[bot] (#8478)
- build(deps): bump nl.basjes.parse.useragent:yauaa from 8.1.0 to 8.1.1 @dependabot[bot] (#8477)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.21.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.21.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.9 • Database: PostgreSQL 16
🙏 Contributors
Thanks to @Copilot, @dependabot[bot], @pethers, copilot-swe-agent[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.19...2026.3.21
Contributors
Assets 12
Release 2026.3.19
Highlights
🏗️ Infrastructure & Performance
- build(deps): bump release-drafter/release-drafter from 7.1.0 to 7.1.1 @dependabot[bot] (#8473)
📝 Documentation
- docs: align CRA-ASSESSMENT.md with ISMS CRA Conformity Assessment Process template and Open Source Policy @copilot-swe-agent[bot] (#8476)
📦 Dependencies
- build(deps): bump commons-net:commons-net from 3.12.0 to 3.13.0 @dependabot[bot] (#8474)
- build(deps): bump release-drafter/release-drafter from 7.1.0 to 7.1.1 @dependabot[bot] (#8473)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.19.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.19.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.9 • Database: PostgreSQL 16
🙏 Contributors
Thanks to @Copilot, @dependabot[bot], @pethers, copilot-swe-agent[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.18...2026.3.19
Contributors
Assets 12
Release 2026.3.18
Highlights
🏗️ Infrastructure & Performance
- build(deps): bump actions/cache from 5.0.3 to 5.0.4 @dependabot[bot] (#8472)
- build(deps): bump bridgecrewio/checkov-action from 12.3088.0 to 12.3089.0 @dependabot[bot] (#8471)
- Fix CI JDK resolution by switching setup-java to Temurin 26-ea @copilot-swe-agent[bot] (#8470)
- build(deps): bump release-drafter/release-drafter from 7.0.0 to 7.1.0 @dependabot[bot] (#8465)
📝 Documentation
- Fix CI JDK resolution by switching setup-java to Temurin 26-ea @copilot-swe-agent[bot] (#8470)
📦 Dependencies
- build(deps): bump actions/cache from 5.0.3 to 5.0.4 @dependabot[bot] (#8472)
- build(deps): bump bridgecrewio/checkov-action from 12.3088.0 to 12.3089.0 @dependabot[bot] (#8471)
- Fix CI JDK resolution by switching setup-java to Temurin 26-ea @copilot-swe-agent[bot] (#8470)
- build(deps): bump com.ibm.icu:icu4j from 78.2 to 78.3 @dependabot[bot] (#8469)
- build(deps): bump org.jboss.logging:jboss-logging from 3.6.2.Final to 3.6.3.Final @dependabot[bot] (#8466)
- build(deps): bump org.jboss.logmanager:jboss-logmanager from 3.2.1.Final to 3.2.2.Final @dependabot[bot] (#8467)
- build(deps-dev): bump io.grpc:grpc-context from 1.79.0 to 1.80.0 @dependabot[bot] (#8468)
- build(deps): bump release-drafter/release-drafter from 7.0.0 to 7.1.0 @dependabot[bot] (#8465)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.18.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.18.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 26 (Feature Release) • Source: Java 21 (LTS) • Build: Maven 3.9.9 • Database: PostgreSQL 16
🙏 Contributors
Thanks to @Copilot, @dependabot[bot], @pethers, copilot-swe-agent[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.16...2026.3.18
Contributors
Assets 12
Release 2026.3.16
Highlights
🏗️ Infrastructure & Performance
- build(deps): bump github/codeql-action from 4.32.6 to 4.33.0 @dependabot[bot] (#8462)
- build(deps): bump step-security/harden-runner from 2.15.1 to 2.16.0 @dependabot[bot] (#8460)
- build(deps): bump ncipollo/release-action from 1.20.0 to 1.21.0 @dependabot[bot] (#8459)
📦 Dependencies
- build(deps): bump cia.project.versions.javers from 7.10.0 to 7.11.0 @dependabot[bot] (#8463)
- build(deps): bump github/codeql-action from 4.32.6 to 4.33.0 @dependabot[bot] (#8462)
- build(deps): bump org.jetbrains.kotlin:kotlin-bom from 2.3.10 to 2.3.20 @dependabot[bot] (#8461)
- build(deps): bump step-security/harden-runner from 2.15.1 to 2.16.0 @dependabot[bot] (#8460)
- build(deps): bump ncipollo/release-action from 1.20.0 to 1.21.0 @dependabot[bot] (#8459)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.16.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.16.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 25 (LTS) • Source: Java 21 (LTS) • Build: Maven 3.9.9 • Database: PostgreSQL 16
🙏 Contributors
Thanks to @dependabot[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.14...2026.3.16
Contributors
Assets 12
Release 2026.3.14
Highlights
🏗️ Infrastructure & Performance
- build(deps): bump release-drafter/release-drafter from 6.4.0 to 7.0.0 @dependabot[bot] (#8454)
📦 Dependencies
- build(deps): bump org.codehaus.mojo:extra-enforcer-rules from 1.11.0 to 1.12.0 @dependabot[bot] (#8456)
- build(deps): bump release-drafter/release-drafter from 6.4.0 to 7.0.0 @dependabot[bot] (#8454)
Political Analysis Enhancements
Changes in this release continue to enhance the Citizen Intelligence Agency (OSINT) platform's capabilities for monitoring political figures and institutions, providing improved insights into:
- Political performance metrics
- Institutional transparency
- Decision-making analysis
- Risk assessment
🔐 Hack23 ISMS Policies & Governance
Hack23 is committed to transparency and evidence-based security. Our complete Information Security Management System (ISMS) is publicly available:
Coverage: 32 ISMS policies • 100+ security controls • ISO 27001:2022 • NIST CSF 2.0 • CIS Controls v8.1
🛡️ Security & Compliance
SLSA Build Attestations
Artifact Attestations Available:
- DEB Package Build Provenance - SLSA Level 3 provenance for cia-dist-deb-2026.3.14.all.deb
- WAR Build Provenance - SLSA Level 3 provenance for citizen-intelligence-agency-2026.3.14.war
- DEB SBOM Attestation - Software Bill of Materials in SPDX format
- WAR SBOM Attestation - Software Bill of Materials in SPDX format
Security Posture
Security Scanning Results
📊 Quality & Testing
Code Quality Reports
Detailed Reports Available:
- Maven Site Documentation - Complete project documentation
- JaCoCo Test Coverage - Unit test coverage reports (80%+ line, 70%+ branch)
- JavaDoc API Documentation - Complete API reference
- SonarCloud Dashboard - Code quality metrics
Testing Standards
Per Secure Development Policy:
- ✅ Minimum 80% line coverage
- ✅ Minimum 70% branch coverage
- ✅ Automated security scanning (SAST/DAST)
- ✅ Dependency vulnerability checks
💻 Technology Stack
Runtime: Java 25 (LTS) • Source: Java 21 (LTS) • Build: Maven 3.9.9 • Database: PostgreSQL 16
🙏 Contributors
Thanks to @dependabot[bot] and dependabot[bot] for their contributions to this release!
Full Changelog: 2026.3.12...2026.3.14