Auto-sync: 2026-04-19 16:02

wiki/log.md

@@ -1,3 +1,37 @@
+## [2026-04-19] ingest | CTP Topic 49 Container Lifecycle Hardening Standards
+- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/07_Security/ctp-topic-49-container-lifecycle-hardening-standards.md
+- Status: ✅ 成功摄入
+- Summary: Micro Focus 容器生命周期加固标准，构建阶段 11 项安全最佳实践（基础镜像、init 系统、敏感信息管理、只读文件系统、镜像扫描等）
+- Concepts created: Container Lifecycle Hardening, Read Only Root Filesystem, Container Image Scanning, Init System, Kubernetes Service Account
+- Entities created: Ashish
+- Source page: wiki/sources/ctp-topic-49-container-lifecycle-hardening-standards.md
+- Notes: 与 CTP Topic 21（供应链安全）形成安全体系，后续将覆盖部署和运行阶段标准
+
+## [2026-04-19] ingest | CTP Topic 21 Supply Chain Security in Micro Focus
+- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/07_Security/ctp-topic-21-supply-chain-security-in-micro-focus.md
+- Status: ✅ 成功摄入
+- Summary: Micro Focus 软件供应链安全的新方法，从 99% 研发安全转向全生命周期安全防护，将供应链安全作为 SDL 第五大支柱
+- Concepts created: Supply Chain Security, SDL (Security Development Lifecycle)
+- Entities created: SolarWinds Hack, Shlomi Ben-Hur
+- Source page: wiki/sources/ctp-topic-21-supply-chain-security-in-micro-focus.md
+- Notes: 与 SolarWinds 攻击事件形成警示案例，与 DevSecOps、SDL 形成安全体系
+- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/07_Security/ctp-topic-52-3-lines-of-defence-3lod-framework-cloud-security-posture-management.md
+- Status: ✅ 成功摄入
+- Summary: 三道防线（3LoD）框架与云安全态势管理（CSPM），Coyote 介绍组织安全架构与 Cloud Guard 选型
+- Concepts created: Three Lines of Defense, Cloud Security Posture Management
+- Entities created: Coyote, Cloud Guard
+- Source page: wiki/sources/ctp-topic-52-3-lines-of-defence-3lod-framework-cloud-security-posture-management.md
+- Notes: 与 CTP Topic 55（AWS Firewall Manager）和 CTP Topic 37（Secrets Management）形成企业安全治理体系
+
+## [2026-04-19] ingest | CTP Topic 37 Secrets Certificates Management
+- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/07_Security/ctp-topic-37-secrets-certificates-management.md
+- Status: ✅ 成功摄入
+- Summary: 云转型项目密钥与证书管理方案选型，评估 AWS Secrets Manager、HashiCorp Vault、CryptoArk PAM，30天试点验证后选择 AWS Secrets Manager
+- Concepts created: Secrets Management
+- Entities created: AWS Secrets Manager
+- Source page: wiki/sources/ctp-topic-37-secrets-certificates-management.md
+- Notes: 与 CTP Topic 62（AWS Secrets Manager 实施细节）形成互补，Topic 37 聚焦选型过程，Topic 62 聚焦实施方法
+
 ## [2026-04-19] ingest | Public Cloud Learning Sessions (OpenText) - GIS Security Policies
 - Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/07_Security/public-cloud-learning-sessions-opentext-gis-security-policies-20241015-160257-me.md
 - Status: ✅ 成功摄入
@@ -16,6 +50,15 @@
 - Source page: wiki/sources/ctp-topic-64-scaling-out-with-amazon-eks.md
 - Notes: 与 CTP Topic 59 (EKS 可靠性) 互补扩展策略视角
 
+## [2026-04-19] ingest | CTP Topic 55 AWS Firewall Manager
+- Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/07_Security/ctp-topic-55-aws-firewall-manager.md
+- Status: ✅ 成功摄入
+- Summary: AWS Firewall Manager 多账号安全策略集中管理，跨 Landing Zone 安全组统一配置与自动修复
+- Concepts created: AWS Config, Security Group Policy
+- Entities created: AWS Firewall Manager, AWS Config
+- Source page: wiki/sources/ctp-topic-55-aws-firewall-manager.md
+- Notes: 与 LAPS Landing Zone 早期使用的 Checkpoint Firewall 形成对比，Firewall Manager 提供更细粒度的安全组控制
+
 ## [2026-04-19] ingest | CTP Topic 67 Cloud Native Observability Using OpenTelemetry
 - Source file: raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/04_EKS/ctp-topic-67-cloud-native-observability-using-opentelemetry.md
 - Status: ✅ 成功摄入