Cloud primary · Watcher (#42)

RC8 Watcher UI

RC8 component that watches files on prem or in the cloud, ingests them with cryptographic provenance, and gives operators explicit control over lifecycle and integrity.

Interactive prototype — control plane and DynamoDB-backed state are not connected yet.

Operations

Only one controller may hold the watcher lease at a time — that limits blast radius and keeps indexing coherent; the lists below are where ops plug into dashboards and alarms.

Singleton lock per CWID, lease timing, and where to look in CloudWatch (mock lease; static metric list from spec §16).

Lease

Only one active holder per CWID; epoch bumps on new acquisition (spec identity doc).

CWID
a1b2c3d4e5f6789012345678901234ab
Holder task ARN
arn:aws:ecs:us-east-1:123456789012:task/rc8-watchers/abc123def456
Lease expires (Unix)
1742678400
Lease epoch
7
Last updated (Unix)
1742591000

Public key history

The lock table retains historical Ed25519 public keys (e.g. minimum 7-year retention) so COBs signed under older keys still verify after rotation or decommission.

CloudWatch metrics (reference)

Required namespaces and names from watcher spec §16 — not live data.

Watcher

  • Watcher/LockAcquisitionFailure
  • Watcher/LeaseRefreshFailure
  • Watcher/LeaseExpiryImminent
  • Watcher/COBWriteLatency
  • Watcher/COBWriteSuccess
  • Watcher/COBWriteFailure

COB / Cobbler / Picker

  • COB/ValidationFailure
  • COB/ValidationSuccess
  • COB/ValidationLatency
  • COB/QuarantineEvent
  • COB/CacheHit
  • COB/CacheMiss

Dashboards and alarms are configured in AWS; this UI does not embed live graphs.