A public documentation hub for the safesploitOrg ecosystem β containing design decisions, best practices, runbooks (public-safe), and cross-repo knowledge.
This is the "why" and "how" behind projects, without exposing sensitive implementation details.
This repository exists to:
- Provide a single source of truth for project knowledge and design context.
- Maintain cross-repo documentation for workflows that span Terraform, Ansible, Kubernetes, security tooling, and more.
- Share public-safe best practices and compliance mappings for DevSecOps, cloud, and infrastructure.
- Act as the onboarding hub for contributors and collaborators.
π‘ Rule: If it explains, justifies, or guides β but is not directly deployable code β it belongs here.
docs/
βββ .github/workflows/
βββ architecture/ # High-level diagrams (redacted)
βββ assets/ # Images/diagrams (no secrets in images)
βββ best-practices/ # Org-wide patterns (Terraform, Ansible, CI/CD)
βββ compliance/ # NIST/Cyber Essentials+ mappings (sanitised)
βββ guides/ # How-tos & walkthroughs
βββ postmortems/ # Public-safe lessons learned
βββ repo/ # One page per code repo (public summary)
β βββ ansible-configs.md
β βββ terraform-configs.md
β βββ <more>.md
βββ runbooks/ # Manual/ops procedures (public-safe only)
βββ security/ # Security baselines (no sensitive detail)
βββ templates/ # Re-usable doc templates
βββ README.md