Appendices
Appendix A: Evidence Artifact Catalogue
Working draft
This page renders the current aws2 working draft. It is not a released standard, certification program, compliance framework, legal analysis, endorsement, or public conformance claim.
This appendix gives first-pass evidence examples. It is not exhaustive.
| Artifact | Supports | Expected owner | Minimum metadata | Redaction guidance |
|---|---|---|---|---|
| Scope record | AWS2-SCP, AWS2-GOV | Organization or governance | system name, boundary, owners, exclusions, date | avoid exporting unrelated system contents |
| Runtime and tool inventory | AWS2-SCP, AWS2-RUN, AWS2-SRC | Runtime platform | runtime, tools, connectors, skills, versions, owners | avoid secrets in configuration details |
| Connected resource inventory | AWS2-SCP, AWS2-WSB, AWS2-SEC | Workspace or endpoint | repositories, files, SaaS systems, shells, networks, data categories | list categories and scopes, not confidential payloads |
| Owner matrix | AWS2-SCP, AWS2-DEL, AWS2-GOV | Organization or governance | owner roles, responsibilities, review dates | minimize personal data where role data is enough |
| Authority model | AWS2-DEL, AWS2-RUN | Organization or governance | user roles, service accounts, delegated authority, approval roles | do not expose credentials or private identity tokens |
| Runtime policy export | AWS2-RUN, AWS2-CTX, AWS2-SEC | Runtime platform | policy version, action classes, allow/deny/approval rules | redact live tokens, prompts, and sensitive examples |
| Approval policy | AWS2-DEL, AWS2-RUN, AWS2-GOV | Organization or governance | approver roles, triggers, expiry, escalation | summarize approver roles when names are unnecessary |
| Workspace boundary configuration | AWS2-WSB, AWS2-SEC | Workspace or endpoint | sandbox, filesystem, repository, network, connector scopes | redact sensitive paths only when review remains possible |
| Source register | AWS2-SRC, AWS2-GOV | Skill or skill-set source | source, maintainer, version, commit, checksum, approval state | share identifiers and hashes before private source code |
| Source-trust profile record | AWS2-SRC, AWS2-LOG, AWS2-GOV, AWS2-VAL | Skill or skill-set source, runtime platform, or evidence owner | action-unit ID, registry or source signal, publisher or namespace status, manifest/hash/signature if available, declared permissions, local review state, drift, rollback or retirement path | preserve identifiers, hashes, metadata, and review decisions; avoid proprietary connector internals, tokens, and raw sensitive payloads |
| Dependency or lockfile record | AWS2-SRC, AWS2-VAL | Skill or skill-set source | package names, versions, hashes, resolution date | avoid embedding private registry credentials |
| Installation or update receipt | AWS2-SRC, AWS2-LOG | Runtime platform | source, version, actor, timestamp, approval state | remove credentials and unrelated payloads |
| High-impact action receipt | AWS2-RUN, AWS2-LOG, AWS2-VAL | Evidence or audit | event ID, timestamp, actor, action class, scope, policy outcome | record metadata and stable references, not raw secrets |
| Denied-action record | AWS2-RUN, AWS2-LOG, AWS2-VAL | Evidence or audit | policy rule, attempted action class, timestamp, actor or runtime | redact attempted payloads that contain sensitive data |
| Sensitive-data handling record | AWS2-SEC, AWS2-LOG, AWS2-VAL | Workspace or endpoint | data category, access rule, redaction state, export outcome | avoid raw personal data or secrets |
| Context-source inventory | AWS2-CTX, AWS2-SCP | Runtime platform | instruction sources, memory sources, retrieval sources, trust order | do not export confidential corpus contents unnecessarily |
| Context-boundary test | AWS2-CTX, AWS2-VAL | Evidence or audit | scenario, expected policy, result, finding, remediation | summarize exploit details when disclosure would increase risk |
| Validation report | AWS2-VAL, all families | Evidence or audit | scope, controls reviewed, method, findings, date, reviewer | publish findings and status before raw test data |
| Exception register | AWS2-GOV, AWS2-VAL | Organization or governance | exception, owner, rationale, expiry, remediation plan | avoid unnecessary personnel and business-sensitive detail |
| Claim-limit record | AWS2-GOV, mapping evidence | Organization or governance | statement, scope, control subset, evidence basis, prohibited claims | keep external-facing wording bounded and reviewable |