opnDossier - Status Snapshot - Post v1.4.0#

Report period: 2026-04-03 (v1.4.0 release) through 2026-04-15
Audience: Executive / Historical reference
Generated: 2026-04-15

Status: 🟢 On Track#

Two v2.0-milestone items and one Rust sister-project milestone shipped since v1.4.0. Performance and architectural-debt reduction cycles completed cleanly. No issues in Blocked state; no critical blockers identified.

Key Metrics#

Metric	Value
Issues resolved since v1.4.0	3
Issues in progress	8
High-priority open	18
Commits on `main` since v1.4.0	12

Highlights#

NATS-6** — Template System Migration Complete.** Eliminated the last template-execution code paths in opnDossier, migrated all report generation to type-safe programmatic Go, and cleaned up 5 post-removal residuals discovered during an audit against the original acceptance criteria. Unblocks the v2.0 release. Net: +23 / −120 across 8 files in the residuals pass alone.
NATS-7** — O(n²) → O(n) Duplicate Rule Detection.** Rewrote firewall-rule deduplication using FNV-64a hash buckets with collision fallback. Expected 15–25% reduction in total enrichment time for configs with 200+ rules; 50x speedup for worst-case configs of 500+ rules per interface. Critical for analyzing large enterprise firewall configurations.
NATS-1** — VLAN Data Generation Engine (Rust, sister project).** Completed in the Rust-based OPNsense-config-faker. Full input validation, RFC 1918 network compliance, DHCP/reservation generation, streaming CSV/XML export, CLI integration. 1,700+ LoC with property-based and fuzz testing.

Work In Progress#

Eight refactors in flight, concentrated on audit-plugin hardening and the shared-model Go module extraction:

Key	Summary	Priority
NATS-3	Create shared `evilbitlabs-network-model` Go module	High
NATS-18	Full cleanup to programmatic Go templates	Medium
NATS-34	Extract shared `ProcessFile` helper (~75 lines dedup'd)	Medium
NATS-134	Break temporal coupling in audit plugin registration	Medium
NATS-135	Extract audit plugin interface for testability	Medium
NATS-136	Consolidate duplicate severity/status mapping	Medium
NATS-137	Remove dead audit plumbing code	Low
NATS-76	Progress tracking with `indicatif` (Rust sister)	Low

Upcoming High-Priority Work#

Eighteen high-priority issues are open. Four distinct investment themes:

Commercial / Pro scaffolding — License key system (NATS-101), sales infrastructure (NATS-93), professional report output (NATS-98), STIG migration to Pro tier (NATS-82, NATS-90).
Compliance expansion — PCI-DSS firewall checks (NATS-4), custom compliance rule engine (NATS-5, NATS-96), structured remediation guidance (NATS-22), Pro compliance scanning integration (NATS-17).
Audit & inventory — Blue/red mode completion (NATS-32), VPN/NTP/syslog/certificate inventory controls (NATS-129), Finding.Control field population (NATS-138).
Rust sister project (OPNsense-config-faker) — Continuous monitoring mode (NATS-2), testing strategy (NATS-8), data-model framework (NATS-10), error handling infrastructure (NATS-11).

Blockers#

None identified. No issues in Blocked status.

Git Activity Since v1.4.0#

12 commits on main between v1.4.0 (2026-04-03) and 2026-04-15. Mix composition:

3 feature/perf/refactor commits tied to NATS-6 and NATS-7
4 dependency bumps (alpine, golang.org/x/text, golang.org/x/term, docker/login-action)
2 CI/config updates (Mergify upgrade, CodeRabbit labeling)
2 documentation commits
1 infra commit (Docker + action.yaml)

Caveats for Historical Readers#

The Jira NATS project was bootstrapped on 2026-04-11 by importing approximately 100+ existing GitHub issues. The "issues created since v1.4.0" metric therefore reflects a one-time data migration rather than new intake, and is omitted from the metrics table above.
All issue counts are point-in-time as of 2026-04-15. Live status is always available in the linked tickets.

*Generated from Jira NATS queries (resolved since 2026-04-03, in-progress, high-priority open) cross-referenced with *git log v1.4.0..HEAD.