Patch v1.2.1

## Modified

- Main README to improve overview
- Technical specifications (`docs/specs`) and traceability web site to tidy up TCS and TRP

## Fixed

- SRS items (removed dates)

Author: CryptographySandbox

CHANGELOG.md

@@ -1,3 +1,14 @@
+# 1.2.1 (2026-03-11)
+
+## Modified
+
+- Main README to improve overview
+- Technical specifications (`docs/specs`) and traceability web site to tidy up TCS and TRP
+
+## Fixed
+
+- SRS items (removed dates)
+
 # 1.2 (2026-03-10)
 
 ## Added

README.md

@@ -6,9 +6,9 @@ C5-DEC, short for "Common Criteria for Cybersecurity, Cryptography, Clouds – D
 
 [![Version](https://img.shields.io/badge/version-1.2-blue)](CHANGELOG.md) [![License: AGPL v3](https://img.shields.io/badge/license-AGPL--v3-brightgreen)](LICENSE) [![Python](https://img.shields.io/badge/python-3.8--3.11-blue)](pyproject.toml)
 
-C5-DEC CAD is the software component of C5-DEC — an [AI-enabled](./docs/manual/ssdlc.md#ai-enabled-design-specification-development-and-testing) toolkit for computer-aided secure system design, development and evaluation, accessible through a CLI, a Flask-powered GUI, and an asciimatics-powered TUI, with VS Code devcontainer support and preloaded extensions. Its modules cover: a [Common Criteria Toolbox (CCT)](./docs/manual/cct.md) (SFR/SAR database, CEM checklists, ETR generation); an [SSDLC](./docs/manual/ssdlc.md) pipeline (project scaffolding, [DocEngine](./docs/manual/ssdlc.md#c5-dec-docengine-for-report-generation), [SpecEngine](./docs/specs/SpecEngine/README.md), [certification-oriented](./docs/README.md) documentation tooling); [CRA compliance](./docs/manual/cra.md) (Annex I checklist, Annex VII tech doc, Annex V declaration); [SBOM management](./docs/manual/sbom.md) via [Syft](https://github.com/anchore/syft); a [CPSSA module](./docs/manual/cpssa.md) for STRIDE threat modelling and FAIR risk analysis; a [cryptography module](./docs/manual/cryptography.md) (classical and post-quantum crypto); and [project management](./docs/manual/pm.md) utilities. All artifacts are stored in open formats (Markdown, YAML), complemented by a [CC concept wiki](./c5dec/assets/database/KnowledgeBase/0_MapofContent.md) and an SSDLC/SVV/CPSSA knowledge base, making the full specification tree directly accessible to LLMs.
+C5-DEC CAD is the software component of C5-DEC — an [AI-enabled](./docs/manual/ssdlc.md#ai-enabled-design-specification-development-and-testing) toolkit for computer-aided secure system design, development and evaluation, accessible through native command-line and graphical [interfaces](#usage) (CLI, TUI, GUI), as well as a VS Code workbench with dedicated devcontainer support and preloaded extensions. Its modules cover: a [Common Criteria Toolbox (CCT)](./docs/manual/cct.md) (SFR/SAR database, CEM checklists, ETR generation); an [SSDLC](./docs/manual/ssdlc.md) pipeline (project scaffolding, [SpecEngine](./docs/specs/SpecEngine/README.md) for structured, fully traceable specification management aligned with [certification workflows](./docs/README.md), [DocEngine](./docs/manual/ssdlc.md#c5-dec-docengine-for-report-generation) for smart document authoring and technical/scientific publishing); [CRA compliance](./docs/manual/cra.md) (Annex I checklist, Annex VII tech doc, Annex V declaration); [SBOM management](./docs/manual/sbom.md) via [Syft](https://github.com/anchore/syft); a [CPSSA module](./docs/manual/cpssa.md) for STRIDE threat modelling and FAIR risk analysis; a [cryptography module](./docs/manual/cryptography.md) (classical and post-quantum crypto); and [project management](./docs/manual/pm.md) utilities. All artifacts are stored in open formats (Markdown, YAML), complemented by a [CC concept wiki](./c5dec/assets/database/KnowledgeBase/0_MapofContent.md) and an SSDLC/SVV/CPSSA knowledge base, making the full specification tree directly accessible to LLMs.
 
-This repository contains the source code and full documentation (requirements, technical specifications, schematics, [user manual](./docs/manual/README.md), test case specifications and test reports) of C5-DEC CAD; see our [traceability web page](https://abstractionslab.github.io/c5dec/docs/traceability/index.html) for a live view of the full specification tree and traceability coverage.
+This repository contains the source code and full documentation (requirements, design artifacts, [user manual](./docs/manual/README.md), test case specifications and test reports) of C5-DEC CAD; see our [technical specification traceability web site](https://abstractionslab.github.io/c5dec/docs/traceability/index.html) for a live view of the full specification tree and traceability coverage, produced by the C5-DEC [SpecEngine](./docs/specs/SpecEngine/README.md).
 
 ## Table of contents
 
@@ -26,7 +26,7 @@ This repository contains the source code and full documentation (requirements, t
 
 ## Overview
 
-C5-DEC CAD assists system/software designers, developers, and security analysts with building and evaluating secure software systems. It integrates SSDLC, SVV, and CPSSA within the Common Criteria framework, providing full artifact traceability across the entire development life cycle, along with cryptographic checks, threat modelling, Cyber Resilience Act (CRA) compliance support, and SBOM lifecycle management.
+C5-DEC CAD assists system/software designers, developers, testers and security analysts with building and evaluating secure software systems. It integrates SSDLC, SVV, and CPSSA within the Common Criteria framework, providing full artifact traceability across the entire development life cycle, along with cryptographic checks, threat modelling, quantitative risk analysis, Cyber Resilience Act (CRA) compliance support, and SBOM lifecycle management. Its DocEngine, built on Quarto with custom LaTeX enhancements and pre/post-render scripting, enables smart document authoring, scientific and technical publishing across report, presentation, and CRA technical documentation templates.
 
 ### Knowledge base
 
@@ -150,7 +150,7 @@ Install [Docker Desktop](https://www.docker.com/products/docker-desktop/), [VS C
 | Container | Contents | Best for |
 |-----------|----------|----------|
 | `C5-DEC CAD dev container` | CLI, TUI, GUI, CCT, CRA, SBOM, CPSSA, cryptography | General use and development |
-| `C5-DEC DocEngine dev container` | Quarto, TeX Live, Kryptor, Cryptomator CLI | Report and document publishing |
+| `C5-DEC DocEngine dev container` | `CAD dev container` plus Quarto, TeX Live, Kryptor, Cryptomator CLI | Report and document publishing |
 | `C5-DEC CAD cryptography dev container` | OpenSSL, OQS-OpenSSL provider | Post-quantum cryptography |
 
 Once inside the container, activate the poetry environment with `poetry shell` and run `c5dec -h`.

docs/README.md

@@ -4,26 +4,6 @@ This directory contains all documentation for the C5-DEC CAD (Common Criteria fo
 
 ## Documentation structure
 
-### `dev/` - Developer context guides
-
-**Audience**: AI assistants and developers working on the codebase
-
-**Purpose**: Domain-specific context files that provide focused technical knowledge for specific subsystems or workflows.
-
-**Contents**:
-- `copilot-context-architecture.md` - System architecture and design patterns
-- `copilot-context-cct.md` - Common Criteria Toolbox (CCT)
-- `copilot-context-docengine.md` - DocEngine and publishing system
-- `copilot-context-docker.md` - Docker containers and devcontainer
-- `copilot-context-frontend.md` - CLI, GUI, and TUI interfaces
-- `copilot-context-pm.md` - Project/resource management
-- `copilot-context-ssdlc.md` - SSDLC methodology and Transformer
-- `copilot-context-testing.md` - Test suite and conventions
-- `copilot-doorstop-context.md` - Requirements management with Doorstop
-- `cra.md` - Cyber Resilience Act guidance
-
-**Usage**: AI assistants automatically load relevant context files based on the task. 
-
 ### `manual/` - User and developer manuals
 
 **Audience**: End users, system administrators, and developers

docs/specs/README.md

@@ -2,6 +2,8 @@
 
 This folder holds the authoritative, traceable specifications for IDPS-ESCAPE managed with Doorstop following the [C5-DEC](https://github.com/AbstractionsLab/c5dec) methodology and its enhancements to Doorstop via extra custom code and templates. Use it for defining what the system must do and why, not how to operate it.
 
+> **Note:** `c5traceability_config.yaml` is project-specific. Before running the publish pipeline or traceability analysis on a new project, update this file to reflect your document hierarchy, coverage checks, and defect sources. If the file is missing or outdated, regenerate it automatically with `poetry run python SpecEngine/c5traceability.py --discover --discover-write` from the `docs/specs/` directory.
+
 ## What lives here
 
 | Path | Document type | Role in hierarchy |
@@ -10,8 +12,8 @@ This folder holds the authoritative, traceable specifications for IDPS-ESCAPE ma
 | `srs/` | Software/System Requirements Specifications | Child of MRS |
 | `arc/` | Architecture | Child of MRS |
 | `swd/` | Software design | Child of ARC |
-| `tcs/` | Test case specifications (merged) | Child of SRS |
-| `trp/` | Test reports (merged) | Child of TCS |
+| `tcs/` | Test case specifications | Child of SRS |
+| `trp/` | Test reports | Child of TCS |
 | `docs/publish/` | Generated HTML output | Produced by `publish.sh` |
 
 ### Custom tooling scripts

docs/specs/srs/SRS-053.md

@@ -2,7 +2,6 @@
 acceptance: ''
 active: true
 author: ''
-date: DD.MM.YYYY
 dependence: []
 derived: false
 difficulty: '2'

docs/specs/srs/SRS-054.md

@@ -2,7 +2,6 @@
 acceptance: ''
 active: true
 author: ''
-date: DD.MM.YYYY
 dependence: []
 derived: false
 difficulty: '2'

docs/specs/srs/SRS-055.md

@@ -2,7 +2,6 @@
 acceptance: ''
 active: true
 author: ''
-date: DD.MM.YYYY
 dependence: []
 derived: false
 difficulty: '2'

docs/specs/srs/SRS-056.md

@@ -2,7 +2,6 @@
 acceptance: ''
 active: true
 author: ''
-date: DD.MM.YYYY
 dependence: []
 derived: false
 difficulty: '2'

docs/specs/srs/SRS-057.md

@@ -2,7 +2,6 @@
 acceptance: ''
 active: true
 author: ''
-date: DD.MM.YYYY
 dependence: []
 derived: false
 difficulty: '2'

docs/specs/srs/SRS-058.md

@@ -2,7 +2,6 @@
 acceptance: ''
 active: true
 author: ''
-date: DD.MM.YYYY
 dependence: []
 derived: false
 difficulty: '1'