Answer the Auditor's Question in 30 Seconds, Not 3 Days.
We've all lived through the mad scramble: an auditor or compliance officer asks for the evidence associated with a specific release, and the frantic search for reports, tickets, and approvals begins. Signet automates this entire process, creating a permanent, auditable "paper trail" for every single deployment, making you audit-ready by default.
Signet answers your critical questions:
- "How can we completely automate the creation of detailed, professional release notes?"
- "How do we create a centralized 'system of record' that links every release to the specific work items and evidence that justified it?"
- "When an auditor asks for the 'validation report' for release 1.7.3, how can we find it instantly?"
Key Business Values:
- Automate All Release Documentation
- Signet eliminates the manual, error-prone task of writing release notes. It automatically generates a complete artifact that is ready to be published to your wiki, saving dozens of hours per release cycle.
- Achieve "Audit-Readiness" by Default
- The generated artifact is a self-contained, auditable package that links every release to its business justification (work items) and its technical evidence (tool outputs), making audit preparation a trivial, on-demand task.
- Create a Single, Searchable Source of Truth
- Signet builds a standardized wiki structure that becomes the definitive, searchable history for your release portfolio, accessible to everyone from engineers to executives.
Let the Pipeline Tell Its Own Story.
Commit messages are a starting point, but they don't tell the whole story of a release. Signet acts as the final, intelligent step in your pipeline, automatically discovering all the important artifacts in your workspace and weaving them into a coherent, cross-linked set of Markdown pages that explain the "what" and the "why" of every deployment.
The Evidence Aggregation Workflow:
- Automatically Link Commits to Work Items
- Signet scans the Git log, parses out work item IDs (e.g., `PROJ-1234`), connects to your Jira or ADO instance, and generates a perfectly formatted list of every ticket included in the release, complete with titles and links.
- Discover and Index All Tool Artifacts
- Your pipeline is already running tools that produce valuable JSON artifacts (`protega-report.json`, `voda-analysis.json`, etc.). Signet automatically discovers these files and generates a dedicated, cross-linked wiki page for each one.
- Enrich Evidence with Forensic-Level Detail
- Signet doesn't just show you the output of a tool; it shows you *how it was configured*. It reads a standardized log file to find the specific execution entry for each artifact and embeds a "Forensic Details" table showing every environment variable present during that tool's run.
An Autonomous Documentation and Auditing Agent.
As an operator, your goal is a fully automated "end-to-end" process that includes not just build and deploy, but also auditing and documentation. Signet is the final, autonomous step in this process—a containerized tool designed to run post-build with zero manual intervention.
Designed for the Enterprise Pipeline:
- Environment-Aware: Discovers its context by reading standard CI/CD environment variables, allowing it to operate in Azure DevOps, GitHub Actions, and GitLab without platform-specific configuration.
- Convention over Configuration: Automatically finds `pipeline-log.json` and other known 3SC artifacts, requiring minimal setup to provide immediate value.
- Graceful Degradation: If it can't connect to a work item provider, it still lists the raw IDs it found. If it can't find forensic data, it notes it's unavailable. It prioritizes producing a useful artifact over failing the build.
Execution Modes:
execute: The primary CI mode. Discovers evidence, scrapes commit logs, enriches data from external systems, and generates the final Markdown artifact.serve-docs: The offline documentation mode. Serves the tool's full documentation in an air-gapped environment.