{ "schema": "actproof.mapping_guidance.v1", "generated_from": "actproof-events 1.8.1 profile completeness and source-atom coverage", "profile_id": "op:eu.dora.ict_incident_notification_initial.v1", "profile_semantic_hash": "sha256:08283721f9084cfd006df44b501a7f506e9058049209f5e403b75a188d821f50", "package_version": "1.8.1", "field_id_policy": { "universal_claim": false, "note": "Field IDs are stable identifiers within this ActProof profile, not universal market field names. A bank, GRC vendor, auditor or agent may use different names for the same concept and still align by source atom, template locator, required status, data type and evidence expectation. The field name is not the authority; the source binding is.", "align_by": [ "source_atom_overlap", "template_locator", "semantic_meaning", "required_status", "data_type", "evidence_expectation", "interpretive_load", "disclosure_tier" ], "do_not_align_by": [ "field_name_alone", "vendor_label_alone", "form_position_alone", "assumption_that_unmapped_means_irrelevant" ] }, "mapping_principle": "The field name is not the authority. The source binding is.", "live_capabilities": [ { "name": "profile_completeness", "release": "1.8.1", "status": "live", "endpoint": "https://actproof.org/api/v1/profiles/dora/completeness.json" }, { "name": "source_atom_coverage", "release": "1.8.1", "status": "live", "endpoint": "https://actproof.org/api/v1/profiles/dora/source-atom-coverage.json" }, { "name": "field_id_policy_universal_claim_false", "release": "1.8.1", "status": "live", "source": "profile.completeness.field_id_policy" }, { "name": "mapping_guidance", "release": "site", "status": "live", "endpoint": "https://actproof.org/api/v1/profiles/dora/mapping-guidance.json" } ], "planned_capabilities": [ { "name": "challenge_record.v1", "target_release": "1.9.0", "status": "planned_not_live", "note": "Model for missing-field, wrong-source, weak-derivation, outdated-source and ambiguous-mapping challenges." }, { "name": "compare-schema", "target_release": "1.9.0", "status": "planned_not_live", "note": "Candidate external-schema mapping for human review, not authoritative matching." }, { "name": "external_schema_mapping.v1", "target_release": "1.9.0", "status": "planned_not_live", "note": "A reviewable mapping record for external schemas." } ], "map_by": [ "source_atom_overlap", "template_locator", "semantic_meaning", "required_status", "data_type", "evidence_expectation", "interpretive_load", "disclosure_tier" ], "do_not_map_by": [ "field_name_alone", "vendor_label_alone", "form_position_alone", "assumption_that_unmapped_means_irrelevant" ], "missingness_boundary": "A field missing from ActProof is not proof that the field is legally irrelevant. Use source-atom coverage and challenge paths as review signals.", "profile_completeness": { "completeness_status": "candidate", "review_status": "draft", "known_scope": "DORA major ICT-related incident INITIAL notification: the 15 required template-field obligations and 12 contextual optional fields, bound to the pinned DORA stack (Reg 2022/2554, Delegated 2025/301 RTS, Implementing 2025/302 ITS, Delegated 2024/1772 classification).", "not_exhaustive_of": [ "DORA intermediate report", "DORA final report", "national competent authority portal-specific requirements", "institution-specific internal escalation requirements", "provisions of the underlying instruments not yet recorded as source atoms", "future supervisory Q&A or guidance" ], "field_id_policy": { "universal_claim": false, "note": "Field IDs are stable identifiers within this ActProof profile, not universal market field names. A bank, GRC vendor, auditor or agent may use different names for the same concept and still align by source atom, template locator, required status, data type and evidence expectation. The field name is not the authority; the source binding is.", "align_by": [ "source_atom_overlap", "template_locator", "semantic_meaning", "required_status", "data_type", "evidence_expectation", "interpretive_load", "disclosure_tier" ], "do_not_align_by": [ "field_name_alone", "vendor_label_alone", "form_position_alone", "assumption_that_unmapped_means_irrelevant" ] }, "challenge_allowed": true, "challenge_types": [ "missing_field", "wrong_source_atom", "weak_derivation", "incorrect_required_status", "outdated_source", "ambiguous_mapping" ], "challenge_channel": "https://github.com/deyan-paroushev/actproof-events/issues", "self_reported_gaps_note": "Run `actproof-events source-atom-coverage` to see which recorded source atoms are not yet represented by any field. As of this release, 1 of 26 atoms is unused (src.eu.dora.32025R0301.art1.content_rules) — a known, disclosed gap, not a hidden one." }, "source_atom_coverage": { "total_source_atoms": 26, "atoms_used_by_fields": 25, "unused_source_atoms": 1, "unused_source_atom_ids": [ "src.eu.dora.32025R0301.art1.content_rules" ], "atoms_with_required_field_bindings": 23, "atoms_only_in_contextual_bindings": 2, "atoms_only_in_contextual_binding_ids": [ "src.eu.dora.32025R0302.annexI.general_information", "src.eu.dora.32025R0302.annexI.initial_notification" ], "dangling_atom_references": 0, "dangling_atom_reference_ids": [], "coverage_basis": "atoms_referenced_by_at_least_one_field_derivation", "interpretation_note": "An unused source atom means a recorded provision is not yet represented by any field. It is a gap signal for review, not a defect. This coverage does not prove the atom set itself is exhaustive of the underlying instruments." }, "example_candidate_mapping": { "external_field": "major_incident_criteria", "actproof_field_id": "classification_criteria_triggered", "mapping_status": "candidate_for_human_review", "confidence_claim": "not_authoritative", "matched_by": [ "semantic_meaning", "source_atom_overlap", "required_status" ], "review_required": true }, "forbidden_claims": [ "ActProof field names are universal", "An unmapped external field is irrelevant", "compare-schema is live today", "source-atom coverage proves legal completeness" ] }