Riksdagsmonitor v1.0.18

What's Changed

• [aw] Upgrade available @github-actions[bot] (#2991)

🔒 Security

• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 @dependabot[bot] (#2995)

🧪 Testing

• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 @dependabot[bot] (#2995)

⚡ Performance

• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 @dependabot[bot] (#2995)

♿ Accessibility

• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 @dependabot[bot] (#2995)

🌐 Internationalization

• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 @dependabot[bot] (#2995)

🔧 Maintenance

• chore(deps-dev): bump dompurify from 3.4.10 to 3.4.11 @dependabot[bot] (#2996)
• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 @dependabot[bot] (#2995)
• chore(deps-dev): bump @types/node from 25.9.3 to 26.0.0 @dependabot[bot] (#2993)
• chore(deps-dev): bump happy-dom from 20.10.5 to 20.10.6 in the development-dependencies group @dependabot[bot] (#2989)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.18.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.18.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.18.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.18.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @github-actions[bot], @pethers, dependabot[bot] and github-actions[bot]

Full Changelog: v1.0.17...1.0.18

📦 Release Artifacts

• riksdagsmonitor-v1.0.18.zip - Production build
• riksdagsmonitor-v1.0.18.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.18.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.18.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.17

What's Changed

• [aw] Upgrade available @github-actions[bot] (#2983)
• [aw] Upgrade available @github-actions[bot] (#2979)

🌐 Internationalization

• SEO: backfill meta description fixes and add missing crawler meta tags to 2685 older news pages @copilot-swe-agent[bot] (#2974)

🔧 Maintenance

• chore(deps-dev): bump happy-dom from 20.10.4 to 20.10.5 in the development-dependencies group @dependabot[bot] (#2982)
• chore(deps-dev): bump hono from 4.12.23 to 4.12.25 @dependabot[bot] (#2976)
• chore(deps): bump release-drafter/release-drafter from 7.3.1 to 7.4.0 @dependabot[bot] (#2975)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.17.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.17.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.17.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.17.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@Copilot, @dependabot[bot], @github-actions[bot], @pethers, copilot-swe-agent[bot], dependabot[bot] and github-actions[bot]

Full Changelog: v1.0.15...1.0.17

📦 Release Artifacts

• riksdagsmonitor-v1.0.17.zip - Production build
• riksdagsmonitor-v1.0.17.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.17.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.17.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.15

What's Changed

🔧 Maintenance

• chore(deps-dev): bump the development-dependencies group with 2 updates @dependabot[bot] (#2973)
• chore(deps): bump markdown-it from 14.1.1 to 14.2.0 @dependabot[bot] (#2971)
• chore(deps-dev): bump dompurify from 3.4.1 to 3.4.10 @dependabot[bot] (#2970)
• chore(deps): bump form-data from 4.0.5 to 4.0.6 @dependabot[bot] (#2969)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.15.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.15.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.15.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.15.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @pethers and dependabot[bot]

Full Changelog: v1.0.14...1.0.15

📦 Release Artifacts

• riksdagsmonitor-v1.0.15.zip - Production build
• riksdagsmonitor-v1.0.15.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.15.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.15.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.14

What's Changed

🧪 Testing

• chore(deps-dev): bump typescript-eslint from 8.61.0 to 8.61.1 in the development-dependencies group @dependabot[bot] (#2968)

🔧 Maintenance

• chore(deps-dev): bump typescript-eslint from 8.61.0 to 8.61.1 in the development-dependencies group @dependabot[bot] (#2968)
• chore(deps-dev): bump the development-dependencies group with 3 updates @dependabot[bot] (#2966)
• chore(deps): bump tmp from 0.2.6 to 0.2.7 @dependabot[bot] (#2967)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.14.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.14.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.14.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.14.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@Copilot, @dependabot[bot], @pethers and dependabot[bot]

Full Changelog: v1.0.12...1.0.14

📦 Release Artifacts

• riksdagsmonitor-v1.0.14.zip - Production build
• riksdagsmonitor-v1.0.14.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.14.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.14.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.12

What's Changed

🔒 Security

• chore: pin all workflow runners to ubuntu-26.04 @copilot-swe-agent[bot] (#2962)

📚 Documentation

• chore: pin all workflow runners to ubuntu-26.04 @copilot-swe-agent[bot] (#2962)
• Generate and validate 13 non-English translations for the June 13, 2026 realtime-monitor executive brief @github-actions[bot] (#2958)

🧪 Testing

• chore: pin all workflow runners to ubuntu-26.04 @copilot-swe-agent[bot] (#2962)

⚡ Performance

• chore: pin all workflow runners to ubuntu-26.04 @copilot-swe-agent[bot] (#2962)

♿ Accessibility

• chore: pin all workflow runners to ubuntu-26.04 @copilot-swe-agent[bot] (#2962)

🌐 Internationalization

• chore: pin all workflow runners to ubuntu-26.04 @copilot-swe-agent[bot] (#2962)
• Generate and validate 13 non-English translations for the June 13, 2026 realtime-monitor executive brief @github-actions[bot] (#2958)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.12.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.12.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.12.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.12.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@Copilot, @github-actions[bot], @pethers, copilot-swe-agent[bot] and github-actions[bot]

Full Changelog: v1.0.11...1.0.12

📦 Release Artifacts

• riksdagsmonitor-v1.0.12.zip - Production build
• riksdagsmonitor-v1.0.12.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.12.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.12.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.11

What's Changed

• [aw] Upgrade available @github-actions[bot] (#2955)
• [aw] Upgrade available @github-actions[bot] (#2950)
• [aw] Upgrade available @github-actions[bot] (#2946)

🔧 Maintenance

• chore(deps-dev): bump the development-dependencies group with 2 updates @dependabot[bot] (#2954)
• chore(deps-dev): bump esbuild from 0.28.0 to 0.28.1 @dependabot[bot] (#2951)
• chore(deps): bump ruby/setup-ruby from 1.310.0 to 1.313.0 @dependabot[bot] (#2942)
• chore(deps-dev): bump the development-dependencies group across 1 directory with 3 updates @dependabot[bot] (#2943)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.11.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.11.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.11.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.11.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @github-actions[bot], @pethers, dependabot[bot] and github-actions[bot]

Full Changelog: v1.0.10...1.0.11

📦 Release Artifacts

• riksdagsmonitor-v1.0.11.zip - Production build
• riksdagsmonitor-v1.0.11.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.11.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.11.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.10

What's Changed

• [aw] Upgrade available @github-actions[bot] (#2941)
• [aw] Upgrade available @github-actions[bot] (#2936)

🔧 Maintenance

• chore(deps): bump ruby/setup-ruby from 1.310.0 to 1.312.0 @dependabot[bot] (#2940)
• chore(deps-dev): bump start-server-and-test from 3.0.9 to 3.0.10 in the development-dependencies group @dependabot[bot] (#2930)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.10.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.10.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.10.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.10.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @github-actions[bot], @pethers, dependabot[bot] and github-actions[bot]

Full Changelog: v1.0.9...1.0.10

📦 Release Artifacts

• riksdagsmonitor-v1.0.10.zip - Production build
• riksdagsmonitor-v1.0.10.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.10.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.10.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.9

What's Changed

• [aw] Upgrade available @github-actions[bot] (#2928)
• [aw] Upgrade available @github-actions[bot] (#2921)

🔧 Maintenance

• chore(deps): bump ruby/setup-ruby from 1.310.0 to 1.312.0 @dependabot[bot] (#2929)
• chore(deps): bump cypress from 15.16.0 to 15.17.0 in the production-dependencies group @dependabot[bot] (#2924)
• chore(deps): bump ruby/setup-ruby from 1.310.0 to 1.312.0 @dependabot[bot] (#2923)
• chore(deps-dev): bump start-server-and-test from 3.0.8 to 3.0.9 in the development-dependencies group @dependabot[bot] (#2922)
• chore(deps): bump ruby/setup-ruby from 1.310.0 to 1.312.0 @dependabot[bot] (#2920)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.9.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.9.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.9.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.9.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @github-actions[bot], @pethers, dependabot[bot] and github-actions[bot]

Full Changelog: v1.0.8...1.0.9

📦 Release Artifacts

• riksdagsmonitor-v1.0.9.zip - Production build
• riksdagsmonitor-v1.0.9.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.9.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.9.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.8

What's Changed

🔧 Maintenance

• chore(deps-dev): bump typescript-eslint from 8.60.1 to 8.61.0 in the development-dependencies group @dependabot[bot] (#2917)
• chore(deps): bump ruby/setup-ruby from 1.310.0 to 1.311.0 @dependabot[bot] (#2916)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.8.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.8.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.8.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.8.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @pethers and dependabot[bot]

Full Changelog: v1.0.7...1.0.8

📦 Release Artifacts

• riksdagsmonitor-v1.0.8.zip - Production build
• riksdagsmonitor-v1.0.8.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.8.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.8.zip -R Hack23/riksdagsmonitor

Riksdagsmonitor v1.0.7

What's Changed

• [aw] Upgrade available @github-actions[bot] (#2911)
• 📊 Refresh CIA data (129 CSVs + production stats) @github-actions[bot] (#2908)

🔧 Maintenance

• chore(deps-dev): bump the development-dependencies group with 2 updates @dependabot[bot] (#2910)

📦 npm Package

Shared types, theme system, and dashboard utilities are available as an npm package with provenance:

npm install riksdagsmonitor

import {
  DARK_THEME_COLORS, LIGHT_THEME_COLORS,
  getActiveThemeColors, getPartyColor,
  CHART_PALETTE, BREAKPOINTS,
} from 'riksdagsmonitor';

📊 Release Metrics & Evidence

All test reports, coverage metrics, and API documentation are generated during build and available in the Documentation Hub.

🔐 Security & Supply Chain Protection

This release includes:

• ✅ SLSA Build Provenance Attestations - Cryptographically signed build provenance
• ✅ Software Bill of Materials (SBOM) - Complete dependency inventory in SPDX format
• ✅ SHA-256 Checksums - All artifacts include checksums for integrity verification
• ✅ npm Provenance - npm package published with verified provenance attestation
• ✅ CodeQL Security Scanning - Automated vulnerability detection
• ✅ Dependency Scanning - Continuous vulnerability monitoring with Dependabot

Verify attestations:

gh attestation verify riksdagsmonitor-1.0.7.zip -R Hack23/riksdagsmonitor
npm audit signatures

Browse attestations: View all attestations

📋 ISMS Compliance & Policies

Compliance Frameworks

Riksdagsmonitor follows Hack23 AB's comprehensive ISMS with defense-in-depth architecture and documented security controls.

🏗️ Architecture Documentation

Current State	Future State
Architecture	Future Architecture
Security Architecture	Future Security
Threat Model	Future Threat Model
Data Model	Future Data Model
Flowchart	Future Flowchart
State Diagram	Future State Diagram
Mindmap	Future Mindmap
SWOT	Future SWOT

📦 Release Artifacts

Artifact	Description	Verification
riksdagsmonitor-1.0.7.zip	Production build	SHA-256 checksum, SLSA attestation
riksdagsmonitor-1.0.7.zip.sha256	SHA-256 checksum	Compare with sha256sum
riksdagsmonitor-1.0.7.spdx.json	SBOM (SPDX format)	SBOM attestation
*.intoto.jsonl	SLSA attestations	gh attestation verify
riksdagsmonitor (npm)	npm package	npm audit signatures

🚀 Deployment

• Primary: https://riksdagsmonitor.com (AWS S3/CloudFront)
• Backup: GitHub Pages
• Documentation: https://riksdagsmonitor.com/docs/
• API Docs: https://riksdagsmonitor.com/docs/api/
• npm Package: https://www.npmjs.com/package/riksdagsmonitor
• Status:

🌐 Hack23 Ecosystem

Platform	Live Site	API Docs	Repository
Riksdagsmonitor	riksdagsmonitor.com	API	GitHub
EU Parliament MCP	euparliamentmonitor.com	API	GitHub
CIA Compliance Manager	ciacompliancemanager.com	API	GitHub
Black Trigram	blacktrigram.com	API	GitHub
CIA Platform	—	—	GitHub
ISMS Public	—	—	GitHub

🏗️ Built With

• Node.js: 26.x
• Vite: 8.x
• Chart.js: 4.5.x
• D3.js: 7.9.x
• Vitest: 4.x
• Cypress: 15.x
• TypeScript: 6.x

👥 Contributors

@dependabot[bot], @github-actions[bot], @pethers, dependabot[bot] and github-actions[bot]

Full Changelog: v1.0.6...1.0.7

📦 Release Artifacts

• riksdagsmonitor-v1.0.7.zip - Production build
• riksdagsmonitor-v1.0.7.zip.sha256 - Checksum for verification
• riksdagsmonitor-v1.0.7.spdx.json - SBOM (Software Bill of Materials)
• *.intoto.jsonl - SLSA Build Provenance Attestations

📦 npm Package

Shared types, theme system, and utilities are available as an npm package:

npm install riksdagsmonitor

📚 Documentation

• API Documentation
• Test Coverage Report
• E2E Test Reports
• Documentation Hub

🔐 Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify attestations using the GitHub CLI:

gh attestation verify riksdagsmonitor-v1.0.7.zip -R Hack23/riksdagsmonitor