railyard
PI PI-1 Iteration IT-1.2 step iteration-execution ACTIVE last: S-103 moved to in-review by qa
Operations
Tickets
Metrics
Supply chain
Compliance
Pending

Personas

◆ Customer
awaiting nothing

Status pipeline · live

Activity ledger

Backlog hierarchy

    20
    Velocity (pts done · PI-1)
    26.5h
    Avg lead time (ready→done)
    80%
    Predictability

    Velocity by iteration

    SBOM · PI-1 (CycloneDX 1.5)

    components 127valid

    Dependency delta vs PI-0

    + requests 2.31.0
    ~ numpy 1.24.1 → 1.25.0

    Vulnerabilities · PI-1 (OSV)

    0crit 0high 2med 1low
    CVE pkg sev fix VEX
    CVE-2024-12345 requests 2.30.0 medium 2.31.0 in_triage
    CVE-2024-22222 urllib3 1.26.5 medium 1.26.18 waived

    Control coverage · NIS2 (in scope · advisory)

    Control Title Mandatory Evidence Status
    NIS2-21.2.a Risk analysis & infosec policies yes S-101 covered
    NIS2-21.2.d Supply chain security (SBOM) yes S-140 covered
    NIS2-21.2.e Vulnerability handling (VEX) yes gap → enabler S-152

    Customer decisions awaiting you

    PD-002raised by business-owners · 2026-06-22
    Approve PI-1 objectives and team commitments?
    writes pending.json → picked up on next rail-run (harness-neutral)