Changelog

All notable changes to the Organizational Integrity Engineering (OIE) framework and CWE database will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[0.2.2] - 2026-06-09

Added

• TTP Matrix Expansion: Integration of three new TTPs across strategic pillars:
  • T2-005: Hyper-Compressed Deadline Injection (Strategic Execution)
  • T8-006: Isolated Complacency Trap (Information Inversion)
  • T9-007: Cross-Departmental Gridlock Induction (Systemic Fragmentation)

[0.2.1] - 2026-06-09

Added

• TTP Matrix Expansion: Added T7-006 (Triangulated Liability Exposure) to the Social Isolation & Conflict Engineering pillar.

[0.2.0] - 2026-06-09

Added

• TTP Matrix Expansion: Integrated the complete Tactics, Techniques, and Procedures (TTP) framework, totaling 44 active techniques categorized across 10 strategic pillars:
  • T1 (Reconnaissance & Enumeration): Added T1-000 - T1-003 (Irrevocable Compliance Hook).
  • T2 (Strategic Execution): Added T2-000 - T2-004 (Incremental Payload Fragmentation).
  • T3 (Defense Evasion): Added T3-000 - T3-004 (Tactical Threat De-escalation).
  • T4 (Rhetorical Engineering): Added T4-000 - T4-006 (Rhetorical Payload Obfuscation).
  • T5 (Node Profiling): Added T5-000 - T5-003 (Sociometric Faultline Exploitation).
  • T6 (Collection & Synthesis): Added T6-000 - T6-002 (Linchpin State Immobilization).
  • T7 (Social Isolation & Conflict Engineering): Added T7-000 - T7-005 (Asymmetric Warning Shot).
  • T8 (Information Inversion): Added T8-000 - T8-005 (Asymmetric Concession Baiting).
  • T9 (Systemic Fragmentation): Added T9-000 - T9-006 (Omnidirectional Proxy Saturation).
  • T10 (Systemic Domination): Added T10-000 - T10-002 (Retaliation Trigger Architecture).

[0.1.0] - 2026-06-09

Added

• Core Framework Foundations: Established the baseline definitions and methodology for the entire project, including:
  • Organizational Integrity Engineering (OIE)
  • OIE-CWE Database
  • Organizational Severity Score (O-SS)
  • Organizational Pentesting
  • Adversarial Integrity Testing (AIT)
• OIE-CWE Database Initialization: Added the first 12 foundational logic bugs across all four architectural pillars:
  • OIE-101: Improper Alignment of Control Incentives (‘Policy Inversion’) [Governance Logic]
  • OIE-102: Deadlock Condition via Conflicting Mandates (‘Logical Circularity’) [Governance Logic]
  • OIE-201: Unmonitored Divergence from Architectural Standard (‘Process Drift’) [Operational Execution]
  • OIE-202: Improper Limitation of Decision Authority (‘Cognitive Overload’) [Operational Execution]
  • OIE-203: Unrestricted Bypass of Transport Security Controls (‘Triage Cover-Up’) [Operational Execution]
  • OIE-301: Unrestricted Bypass of Established Protocols Under Threat (‘Rogue Governance’) [Crisis Handling]
  • OIE-302: Improper Synchronization of System State with Physical Output (‘Reality-Record Divergence’) [Crisis Handling]
  • OIE-303: Improper Downgrade of Multi-Vector Incident Severity (‘Compliance Scope Reduction’) [Crisis Handling]
  • OIE-304: Weaponization of External Legal Frameworks against Internal Sensors (‘Asymmetric Retaliation’) [Crisis Handling]
  • OIE-401: Improper Handling of Error Reporting Signals (‘Feedback Loop Suppression’) [Human-System Interface]
  • OIE-404: Improper Handling of Asynchronous Faults (‘Strategic Silence’) [Human-System Interface]
  • OIE-405: Improper Integrity Validation in Hierarchical Nodes (‘Collusive Cover-Up’) [Human-System Interface]