CMP Tutorial Screencast Script (15–20 min)
Part 1 — What is CMP here?
- Goals: default-deny, GPC, per-site config, scanners, ops.
- Architecture: drop-in ↔ registry; portal; datasets; CI gates.
Part 2 — Portal Walkthrough
- Login (OIDC)
- Sites: copy snippet (SRI), rotate key, verify cmds
- Allowed origins: add second domain, test CORS
- Localization & Policy: edit strings + policy details; copy Policy Block
- Vendors: suggest, add, CSV import
- Overrides: search/paginate/export/import
- Analytics: 7d/30d, GPC %
- Export: CSV/JSON/JSONL
Part 3 — Compliance proof
- Scanner CI (baseline + GPC) artifacts
- Grafana dashboard: latency, 429 ratio, dataset freshness, GPC
- Alerts: dataset stale, 429 ratio, latency
Appendix
- Ops quickstart & runbooks links