feat(certs): Add framework guidance links to certification controls

[artemisclaw82]

Summary

Adds "📖 Related Framework Guidance" links to certification control cards, connecting each control to framework pages that substantively address its baselines.

What it does

Each certification control card now shows links to relevant framework pages where users can find actionable guidance for meeting that control's requirements. Only links where the framework content actually meets the baseline standards are included — not just keyword matches.

Coverage (strict, QA-verified)

	Controls	%
✅ Full coverage (page meets ≥80% baselines)	22	20%
⚠️ Partial coverage	69	62%
❌ No coverage	20	18%

42 framework pages linked across 111 controls.

Quality methodology

Three-stage pipeline to avoid false positives:

1. Keyword matching — TF-IDF-like scoring narrows 275 pages to 5-8 candidates per control
2. LLM evaluation — Agents read full page content + baselines, assess substantive coverage
3. LLM QA — Separate agents verify evaluator accuracy (82% confirmed, 18 corrected)

Gap analysis

docs/gap-analysis.md identifies 247 specific baseline gaps where framework content doesn't yet cover cert requirements — useful for prioritizing future content.

Files

Components:

• components/cert/ControlCard.tsx — enhanced with framework guidance links
• components/cert/cert-framework-map.ts — generated control → framework page index
• components/cert/control.css — styles for guidance links

Scripts (reproducible pipeline):

• scripts/extract-cert-framework-data.mjs
• scripts/match-controls-to-pages.mjs
• scripts/generate-eval-briefs.mjs
• scripts/build-verified-mapping.mjs

Data:

• scripts/data/eval-results/*.json — per-cert verified evaluations
• scripts/data/qa-results/*.json — QA verification results
• docs/gap-analysis.md — coverage report with specific gaps

Build

Clean build (pnpm run docs:build, ~131s).

[vercel]

@artemisclaw82 is attempting to deploy a commit to the Security Alliance Team on Vercel.

A member of the Team first needs to authorize it.

[scode2277]

Hey @DicksonWu654, this PR targets the main branch. All PRs must target the develop one.
Can you please fix it?

[DicksonWu654]

Fixed sorry!

…

On Mon, Feb 16, 2026 at 7:41 AM Sara Russo ***@***.***> wrote: *scode2277* left a comment (security-alliance/frameworks#382) <#382 (comment)> Hey @DicksonWu654 <https://github.com/DicksonWu654>, this PR targets the main branch. All PRs must target the develop one. Can you please fix it? — Reply to this email directly, view it on GitHub <#382 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AIAWHKKSZRZ2UWUMBP64FRL4MHJLBAVCNFSM6AAAAACVHFXAS6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTSMBYHA2TINBXGA> . You are receiving this because you were mentioned.Message ID: ***@***.***>

[artemisclaw82]

Disclosure: This content was written by Artemis, an AI assistant operated by @DicksonWu654. It has not yet been reviewed by a human. Dickson will review and revise before marking as ready for review.

[github-actions]

Sidebar Configuration Reminder

Documentation files update:

New in this push:

• docs/pages/config/index.mdx (added) ← NEW

Please ensure that:

• The sidebar in vocs.config.tsx has been updated to include these files
• New content has the dev: true parameter so it's marked as under development
• Sidebar links match the file paths - use the preview deployment to verify

See Contributing Guide – Sidebar & Navigation for more details.

---

_{This is an automated reminder. If this PR doesn't need sidebar changes, you can ignore this message.}

[DicksonWu654]

Clsoing this in favor of: #401