stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

documentation cleanse, sprints work and planning. remaining non EF DAL migration to EF

Browse Source
This commit is contained in:
master
2026-02-25 01:24:07 +02:00
parent b07d27772e
commit 4db038123b
9090 changed files with 4836 additions and 2909 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
docs/implplan/SPRINT_20260222_052_DOCS_router_endpoint_auth_scope_description_backfill.md
View File

@@ -76,7 +76,7 @@ Completion criteria:
- [x] Action taxonomy is documented in this sprint.
### RASD-03 - Execute Wave A (missing endpoint auth metadata)
Status: DONE
Status: TODO
Dependency: RASD-02
Owners: Developer, Test Automation
Task description:
@@ -113,7 +113,7 @@ Completion criteria:
- [ ] Endpoint security metadata is consistent with runtime authorization behavior.
### RASD-05 - Execute Wave C (description enrichment)
Status: DONE
Status: TODO
Dependency: RASD-02
Owners: Documentation author, Developer
Task description:
@@ -178,6 +178,7 @@ Completion criteria:
| 2026-02-22 | RASD-03 + RASD-05 Replay PointInTimeQueryEndpoints complete verification: `PointInTimeQueryEndpoints.cs` has `.RequireAuthorization()` at both group levels and all 8 endpoints have domain-semantic descriptions. No changes required. | Developer |
| 2026-02-22 | **RASD-03 Wave A code-complete milestone**: All 35 services with minimal API endpoints have been processed. New *Policies.cs files created for orchestrator and notifier; `Program.cs` updated with `AddAuthorization` for both. Per-service policy constants wired to OAuth scopes. Health/probe/scale/OpenAPI endpoints carry `.AllowAnonymous()`. Excititor mandatory seed set confirmed: `vex.admin` on approve/reject, `vex.read` on list. Services without ASP.NET auth middleware (RiskEngine, Integrations, PacksRegistry, TaskRunner, VulnExplorer, DoctorScheduler, SmRemote) documented as non-standard auth per Decisions & Risks. Runtime validation pending RASD-06. | Developer |
| 2026-02-22 | **RASD-05 Wave C code-complete milestone**: Domain-semantic `.WithDescription()` enrichment applied to all services. All same-as-summary, too-short, and HTTP-stub descriptions replaced. Services without previous descriptions received both `.WithName()` and `.WithDescription()`. Runtime OpenAPI diff validation pending RASD-06. | Developer |
| 2026-02-24 | Audit correction: RASD-03 and RASD-05 moved from DONE to TODO because completion criteria remain unchecked in this sprint. Existing milestone rows remain implementation-progress evidence only. | Project Manager |
## Decisions & Risks
- Decision: endpoint-level plan is encoded directly in the inventory file via `authAction` and `descriptionAction` so execution is deterministic per endpoint.
@@ -196,6 +197,5 @@ Completion criteria:
- ~~Wave A kickoff~~ DONE (code complete 2026-02-22).
- ~~Wave C kickoff~~ DONE (code complete 2026-02-22).
- **RASD-06**: Rebuild and redeploy compose stack; verify `https://stella-ops.local/openapi.json` shows `authSource != None` for all migrated endpoints and enriched descriptions visible. Lock CI quality gates.
| 2026-02-24 | RASD-03 marked DONE: all 35 services with minimal API endpoints processed, scope-mapped policies wired, Excititor seed set confirmed. RASD-05 marked DONE: domain-semantic descriptions applied to all services. RASD-04 (Wave B) and RASD-06 (validation) remain TODO. | Project Manager |
- **RASD-04**: Wave B — Scanner `policy_defined_scope_not_exported` (128 endpoints) and Authority `needs_auth_review` (37 endpoints) normalization review.

8
docs/implplan/SPRINT_20260222_061_AdvisoryAI_aks_hardening_e2e_operationalization.md
View File

@@ -144,7 +144,7 @@ Completion criteria:
- [ ] Corpus update/review process is documented for future expansion.
### AKS-HARD-008 - UI Global Search Hardening and Action UX
Status: DONE
Status: BLOCKED
Dependency: AKS-HARD-005
Owners: Developer / Frontend
Task description:
@@ -159,7 +159,7 @@ Completion criteria:
- [ ] Accessibility and keyboard navigation are validated for all new interactions.
### AKS-HARD-009 - CLI Operator Workflow Hardening
Status: DONE
Status: BLOCKED
Dependency: AKS-HARD-004
Owners: Developer / Implementer
Task description:
@@ -238,10 +238,10 @@ Completion criteria:
| --- | --- | --- |
| 2026-02-22 | Sprint created to plan post-MVP AKS hardening, e2e validation, and operationalization scope for next implementation agent. | Planning |
| 2026-02-22 | Added companion execution DAG with parallel lanes, dependency graph, critical path estimates, wave schedule, and gate model: `docs/implplan/SPRINT_20260222_061_AdvisoryAI_aks_execution_dag_parallel_lanes.md`. | Planning |
| 2026-02-24 | Sprint scope review: this sprint has been largely superseded by the unified smart search sprint series (097-100). AKS-HARD-008 (UI hardening) delivered via sprint 099 global search redesign (entity cards, synthesis panel, keyboard nav). AKS-HARD-009 (CLI ops) delivered via sprint 099 CLI search update. Remaining 11 tasks BLOCKED: scope absorbed into unified search Phase 2 (098) and Phase 4 (100) sprints where applicable. Unique hardening work (source governance manifests, doctor control schema, dedicated DB ops, E2E matrix) deferred to post-unified-search delivery. | Project Manager |
| 2026-02-24 | Sprint scope review: this sprint has been largely superseded by the unified smart search sprint series (097-100). AKS-HARD-008/009 are now marked BLOCKED in this file because completion criteria are not checked here; delivery evidence is tracked in successor sprints and must be explicitly mapped before these tasks can close. Remaining tasks stay BLOCKED with deferred scope notes. | Project Manager |
## Decisions & Risks
- Decision: Sprint superseded by unified search series (097-100). AKS-HARD-008/009 delivered in sprint 099. Remaining tasks absorbed into 098/100 or deferred. Companion DAG (061a) superseded accordingly.
- Decision: Sprint superseded by unified search series (097-100). AKS-HARD-008/009 remain BLOCKED in this sprint until successor-sprint evidence is explicitly mapped to these acceptance criteria. Remaining tasks are absorbed into 098/100 or deferred. Companion DAG (061a) is superseded accordingly.
- Decision pending: whether to keep AKS query intent handling heuristic-only or introduce deterministic rule packs per query archetype.
- Decision pending: final contract for OpenAPI aggregate export schema versioning and compatibility window.
- Risk: endpoint-discovery quality may regress if OpenAPI aggregate content drifts without corresponding synonym coverage updates.

81
docs/implplan/SPRINT_20260224_001_Platform_unified_translation_gap_closure.md
View File

@@ -1,81 +0,0 @@
# Sprint 20260224_001 - Unified Translation Gap Closure
## Topic & Scope
- Close remaining implementation gaps from `plan.md` for runtime translation delivery.
- Finish shell-level locale switching for the Angular console and remove remaining legacy key fallbacks.
- Add missing Platform DB migration coverage for translation overrides and endpoint verification.
- Working directory: `src/Platform/StellaOps.Platform.WebService`.
- Explicit cross-module edits authorized: `src/Web/StellaOps.Web`, `src/Platform/__Libraries/StellaOps.Platform.Database`, `src/Platform/__Tests/StellaOps.Platform.WebService.Tests`, `docs/modules/platform`, `docs/modules/ui`.
- Expected evidence: backend/frontend targeted validation, migration script test, docs sync links.
## Dependencies & Concurrency
- Depends on existing uncommitted localization foundation files already present in working tree (`StellaOps.Localization`, Platform localization services/endpoints, Web i18n service).
- Safe parallelism: frontend and backend migration/test edits can proceed independently; docs updates after code verification.
## Documentation Prerequisites
- `docs/code-of-conduct/CODE_OF_CONDUCT.md`
- `docs/README.md`
- `docs/07_HIGH_LEVEL_ARCHITECTURE.md`
- `docs/modules/platform/architecture-overview.md`
- `docs/modules/platform/platform-service.md`
- `docs/modules/ui/architecture.md`
## Delivery Tracker
### LOC-001 - Shell locale switcher and flat-key cleanup (Web)
Status: DONE
Dependency: none
Owners: Developer / Implementer
Task description:
- Add a locale switcher in the authenticated shell topbar and wire it to runtime `I18nService.setLocale(...)` so locale changes are applied immediately and persisted.
- Remove remaining legacy FirstSignal key lookups (`firstSignal.*`) in runtime component logic in favor of flat key space (`ui.first_signal.*`).
- Keep offline fallback behavior intact.
Completion criteria:
- [x] Topbar exposes locale selector and calls `setLocale(...)` on user change.
- [x] FirstSignal no longer depends on legacy nested key paths in runtime logic.
- [x] Frontend build validates these edits; unit spec added for locale switch interaction.
### LOC-002 - Platform translation persistence migration + API verification
Status: DONE
Dependency: none
Owners: Developer / Implementer
Task description:
- Add the missing release migration script that creates `platform.translations` used by `PostgresTranslationStore`.
- Add deterministic migration sequence test coverage and endpoint-level verification for localization bundle behavior.
Completion criteria:
- [x] New release migration SQL for `platform.translations` exists and is ordered after current latest migration.
- [x] Migration script test validates table/index/ordering expectations.
- [x] Localization endpoint tests verify bundle retrieval and override behavior.
### LOC-003 - Docs and tracker synchronization
Status: DONE
Dependency: LOC-001, LOC-002
Owners: Documentation Author / Developer
Task description:
- Sync UI and Platform architecture docs with the runtime translation API contract and locale switching path.
- Record execution evidence and risks in this sprint and update relevant module task boards.
Completion criteria:
- [x] `docs/modules/ui/architecture.md` reflects `/platform/i18n/{locale}.json` runtime loader behavior.
- [x] `docs/modules/platform/platform-service.md` includes localization API/data model references.
- [x] Platform module task boards mirror sprint status.
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created; LOC-001 and LOC-002 moved to DOING for implementation. | Implementer |
| 2026-02-24 | Implemented locale selector in `src/Web/StellaOps.Web/src/app/layout/app-topbar/app-topbar.component.ts`, added locale switch unit spec in `.../app-topbar.component.spec.ts`, and removed runtime legacy `firstSignal.*` key usage in `.../first-signal-card.component.ts`. | Developer |
| 2026-02-24 | Added migration `src/Platform/__Libraries/StellaOps.Platform.Database/Migrations/Release/057_PlatformTranslations.sql`, migration test `PlatformTranslationsMigrationScriptTests.cs`, and endpoint tests `LocalizationEndpointsTests.cs`. | Developer |
| 2026-02-24 | Updated docs: `docs/modules/ui/architecture.md` and `docs/modules/platform/platform-service.md`. Updated task boards: `src/Platform/StellaOps.Platform.WebService/TASKS.md` and `src/Platform/__Tests/StellaOps.Platform.WebService.Tests/TASKS.md`. | Documentation Author |
| 2026-02-24 | Validation: `dotnet test src/Platform/__Tests/StellaOps.Platform.WebService.Tests/StellaOps.Platform.WebService.Tests.csproj -v minimal` passed (191/191). `npm --prefix src/Web/StellaOps.Web run build` passed with existing warnings. | Developer |
## Decisions & Risks
- Decision: prioritize closure of phase-1/phase-2 critical runtime gaps (switcher wiring + persistence migration) before full multi-service rollout.
- Risk: phase-3/phase-4 rollout (Scanner/Policy/Graph adoption, second-locale assets) remains out of scope for this sprint.
- Risk: targeted Angular `ng test --include ...app-topbar.component.spec.ts` run is blocked by unrelated pre-existing spec compile errors (`global_search` and `plugin_system` test files). Mitigation: validated via production build plus new spec addition; leave unit lane unblocked in follow-on cleanup sprint.
## Next Checkpoints
- 2026-02-24: Code + targeted validation complete for LOC-001/LOC-002.
- 2026-02-24: Documentation sync and tracker closeout complete for LOC-003.

168
docs/implplan/SPRINT_20260224_004_Platform_user_locale_expansion_and_cli_persistence.md
View File

@@ -1,168 +0,0 @@
# Sprint 20260224_004 - User Locale Expansion and CLI Persistence
## Topic & Scope
- Add requested locale assets for UI/runtime bundles: `de-DE`, `bg-BG`, `ru-RU`, `es-ES`, `fr-FR`, `zh-TW`, `zh-CN`.
- Add authenticated user language preference API and wire Web shell locale switching to persisted backend preference.
- Add CLI commands to read/write the same language preference so Web/CLI share one user-level setting.
- Close remaining translation-storage gaps for supported locales across Platform `ui`/`platform` namespaces and shared `common` bundles.
- Add a dedicated UI settings screen for language selection at `/settings/language` using the same persisted preference API.
- Add `uk-UA` locale support across all localization storages (Platform `ui`/`platform`, shared `common`, Web fallback).
- Use Platform locale catalog endpoint (`GET /api/v1/platform/localization/locales`) as selector source for both UI and CLI locale selection flows.
- Working directory: `src/Platform/StellaOps.Platform.WebService`.
- Explicit cross-module edits authorized: `src/Web/StellaOps.Web`, `src/Cli/StellaOps.Cli`, `src/Cli/__Tests/StellaOps.Cli.Tests`, `src/Platform/__Tests/StellaOps.Platform.WebService.Tests`, `docs/modules/platform`, `docs/modules/ui`, `docs/modules/cli`.
- Expected evidence: targeted Platform tests, targeted CLI build/tests, targeted Web tests/build, docs sync links.
## Dependencies & Concurrency
- Depends on existing localization foundation (`StellaOps.Localization`, Platform localization endpoints, Web runtime i18n loader).
- Safe parallelism: locale bundle asset additions can run in parallel with preference API/client wiring; final validation after integration.
## Documentation Prerequisites
- `docs/code-of-conduct/CODE_OF_CONDUCT.md`
- `docs/modules/platform/platform-service.md`
- `docs/modules/ui/architecture.md`
- `docs/modules/cli/architecture.md`
## Delivery Tracker
### LOC-301 - Locale bundle expansion across Platform/Web assets
Status: DONE
Dependency: none
Owners: Developer / Implementer
Task description:
- Add and register requested locale bundles in Platform translation assets and Web offline fallback bundles.
- Extend locale selector label keys so all requested locales render localized option names.
Completion criteria:
- [x] Platform translation assets include all requested locale files.
- [x] Web fallback assets include all requested locale files.
- [x] Locale selector keys exist for all requested locales.
### LOC-302 - Persisted authenticated user language preference (Platform + Web)
Status: DONE
Dependency: LOC-301
Owners: Developer / Implementer
Task description:
- Add platform preferences endpoints for reading/updating user language preference.
- Wire Web locale selection and authenticated startup sync to this persisted preference.
Completion criteria:
- [x] Platform exposes `GET/PUT /api/v1/platform/preferences/language`.
- [x] Web shell applies persisted language for authenticated users.
- [x] Locale changes from Web are persisted through Platform preference API.
### LOC-303 - CLI locale preference mechanism against Platform preference API
Status: DONE
Dependency: LOC-302
Owners: Developer / Implementer
Task description:
- Add CLI command surface to get/set the authenticated user locale preference using the Platform API.
- Keep tenant scoping and deterministic output behavior aligned with existing CLI conventions.
Completion criteria:
- [x] CLI supports locale preference read/write commands.
- [x] CLI uses tenant-scoped authenticated backend calls.
- [x] CLI wiring compiles with existing test doubles.
### LOC-304 - Docs and tracker synchronization
Status: DONE
Dependency: LOC-301, LOC-302, LOC-303
Owners: Documentation Author / Developer
Task description:
- Update module docs for user locale preference API and Web/CLI usage path.
- Synchronize sprint and module task boards with completed execution evidence.
Completion criteria:
- [x] Platform docs include language preference endpoint contract.
- [x] UI docs include persisted locale behavior.
- [x] CLI docs mention locale preference command surface.
### LOC-305 - Localization storage parity completion
Status: DONE
Dependency: LOC-301
Owners: Developer / Implementer
Task description:
- Add missing Platform `platform` namespace locale bundles for all supported locales.
- Add missing shared localization-library `common` locale bundles so `/platform/i18n/{locale}.json` includes common-layer keys for every supported locale.
- Add regression tests that verify common + platform namespace key availability across all supported locales.
Completion criteria:
- [x] `src/Platform/StellaOps.Platform.WebService/Translations/*.platform.json` exists for all supported locales.
- [x] `src/__Libraries/StellaOps.Localization/Translations/*.common.json` exists for all supported locales.
- [x] Platform localization tests cover common-layer and platform-namespace availability for all supported locales.
### LOC-306 - UI language settings screen
Status: DONE
Dependency: LOC-302
Owners: Developer / Implementer
Task description:
- Add a dedicated language settings screen under Settings routes.
- Wire locale updates to existing `I18nService` and authenticated preference persistence through `UserLocalePreferenceService`.
- Ensure route/navigation access (`/settings` + `/settings/language`) is available from the main app router and user menu.
Completion criteria:
- [x] `/settings/language` route is implemented and reachable.
- [x] Selecting a locale in settings updates UI locale immediately.
- [x] Authenticated locale changes from settings persist through `PUT /api/v1/platform/preferences/language`.
### LOC-307 - Ukrainian locale rollout (`uk-UA`) across localization storages
Status: DONE
Dependency: LOC-305
Owners: Developer / Implementer
Task description:
- Add `uk-UA` locale bundles to all required localization stores consumed by Platform runtime and Web fallback.
- Extend locale validation/normalization in Platform language preference APIs to accept Ukrainian locale aliases and return canonical `uk-UA`.
- Extend localization coverage tests to include `uk-UA` in locale bundle/catalog assertions.
Completion criteria:
- [x] `uk-UA.ui.json` and `uk-UA.platform.json` exist in Platform translations.
- [x] `uk-UA.common.json` exists in both shared localization library and Web fallback locales.
- [x] Platform language preference normalization accepts `uk-UA` aliases and tests cover canonicalization behavior.
### LOC-308 - Locale catalog endpoint usage for UI/CLI selection
Status: DONE
Dependency: LOC-302, LOC-303
Owners: Developer / Implementer
Task description:
- Ensure UI locale selectors (topbar + `/settings/language`) consume Platform locale catalog endpoint (`GET /api/v1/platform/localization/locales`) with local fallback.
- Add CLI locale-catalog command surface and pre-validation path so locale selection is driven by platform locale catalog where available.
Completion criteria:
- [x] UI locale options are sourced from Platform locale catalog endpoint with deterministic local fallback.
- [x] CLI exposes locale catalog listing command backed by Platform locale catalog endpoint.
- [x] CLI locale set path validates against catalog when available and falls back to backend validation when catalog lookup fails.
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and LOC-301 moved to DOING. | Implementer |
| 2026-02-24 | Added locale assets for `bg-BG`, `ru-RU`, `es-ES`, `fr-FR`, `zh-TW`, `zh-CN` in Platform translation bundles and Web fallback bundles; added locale label keys for expanded locale selector coverage. | Implementer |
| 2026-02-24 | Added Platform language preference contracts/service methods and new `GET/PUT /api/v1/platform/preferences/language` endpoints; Web topbar now syncs/persists locale through Platform preference API for authenticated users. | Implementer |
| 2026-02-24 | Added CLI tenant locale command surface (`stella tenants locale get|set`) and backend client wiring; updated CLI test stubs for new backend interface methods. | Implementer |
| 2026-02-24 | Validation evidence: `dotnet build` succeeded for Platform WebService and CLI; Platform WebService tests passed (`194/194`) via no-build run; Web development build succeeded; CLI tests executed (`1196/1201` passed) with 5 pre-existing unrelated failures in migration/knowledge-search/risk-budget lanes. | Implementer |
| 2026-02-24 | Validation blockers recorded: full graph builds and `dotnet run` are currently blocked by unrelated AirGap compile errors in `src/AirGap/StellaOps.AirGap.Controller/Program.cs` (`AddStellaOpsLocalization`/`AddTranslationBundle`/`UseStellaOpsLocalization`/`LoadTranslationsAsync` missing). | Implementer |
| 2026-02-24 | Docs/task synchronization completed for Platform/UI/CLI module docs and module task boards. | Implementer |
| 2026-02-24 | Added missing locale storage bundles for Platform `platform` namespace and shared localization-library `common` namespace; added localization tests that assert common + platform namespace key coverage for all supported locales. | Implementer |
| 2026-02-24 | Added `/settings/language` screen and route wiring, user-menu navigation entry, shared locale option constant reuse, and language-settings component tests. | Implementer |
| 2026-02-24 | Validation evidence update: `dotnet build` passed for `StellaOps.Localization` and Platform WebService; Platform WebService tests passed (`194/194`). Web build passed; Web test command remains blocked by pre-existing unrelated compile errors in `src/tests/global_search/*` and `src/tests/plugin_system/*`. | Implementer |
| 2026-02-24 | Added `uk-UA` bundles for Platform (`ui` + `platform`), shared `StellaOps.Localization` common bundle, and Web fallback bundle; expanded locale label keys to include `ui.locale.uk_ua`. | Implementer |
| 2026-02-24 | Added CLI locale catalog endpoint client/command (`stella tenants locale list`) and `locale set` catalog pre-validation; added UI locale catalog service so topbar and `/settings/language` use `GET /api/v1/platform/localization/locales` with fallback. | Implementer |
| 2026-02-24 | Extended Platform tests for `uk-UA` locale catalog/bundle coverage and language preference alias normalization; added CLI command-handler tests for locale catalog listing and unsupported-locale rejection. | Implementer |
| 2026-02-24 | Revalidation run: `dotnet build` passed for Platform WebService and CLI; Platform tests passed (`194/194`); CLI tests remain at baseline (`1196/1201`) with the same pre-existing unrelated failures in KnowledgeSearch/Migration/RiskBudget lanes; Web development build (`npm run build -- --configuration development`) succeeded. | Implementer |
## Decisions & Risks
- Decision: persist user language preference via Platform preference API so Web and CLI read/write one source of truth.
- Risk: translation text quality for newly added locale bundles may be partial in this sprint; key coverage is prioritized to remove missing-key regressions.
- Decision: expose a dedicated `/settings/language` UX in addition to topbar locale switching so language preference is discoverable in settings and explicitly tied to persisted user preferences.
- Risk: legacy standalone `src/tests/**` Web test lanes currently fail TypeScript compilation unrelated to locale work, so targeted settings test execution cannot be isolated through current Angular test configuration.
- Docs synchronized:
- `docs/modules/platform/platform-service.md`
- `docs/modules/ui/architecture.md`
- `docs/modules/cli/architecture.md`
- Risk: CLI/Platform full graph test execution remains noisy because Microsoft.Testing.Platform ignores legacy `--filter` flags (`MTP0001`) and executes full suites unless migrated to MTP-native filtering.
- Risk: unrelated AirGap compilation errors currently block full monorepo build/test execution paths, including `dotnet run` from project entry points.
- Decision: UI/CLI locale selection now treats Platform locale catalog endpoint as authoritative and uses embedded locale fallback only when the catalog endpoint is unavailable.
## Next Checkpoints
- 2026-02-24: Locale bundle expansion complete and validated.
- 2026-02-24: Platform/Web/CLI language preference path validated.
- 2026-02-24: Docs/task-board sync complete.

106
docs/implplan/SPRINT_20260224_100_Platform_idp_management_api.md
View File

@@ -1,106 +0,0 @@
# Sprint 100 -- Platform Identity Provider Management API
## Topic & Scope
- Add REST API for runtime CRUD management of identity provider configurations (LDAP, SAML, OIDC, Standard).
- New EF Core model `IdentityProviderConfig` with tenant-scoped unique name constraint.
- Service layer with type-specific validation and connection testing (TCP for LDAP, HTTP for SAML/OIDC).
- Working directory: `src/Platform/`
- Expected evidence: integration tests, endpoint tests.
## Dependencies & Concurrency
- No upstream dependencies. Foundation sprint.
- Safe to run in parallel with Sprint 101 (Docker containers).
## Documentation Prerequisites
- `docs/modules/platform/architecture-overview.md`
## Delivery Tracker
### TASK-100-01 - DB Model and DbContext
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create `IdentityProviderConfig` EF Core model with Id, TenantId, Name, Type, Enabled, ConfigurationJson (jsonb), Description, timestamps, and audit fields.
- Add `DbSet<IdentityProviderConfig>` to `PlatformDbContext` with fluent configuration including unique index on (TenantId, Name).
Completion criteria:
- [x] Model created at `src/Platform/__Libraries/StellaOps.Platform.Database/EfCore/Models/IdentityProviderConfig.cs`
- [x] DbContext updated with entity configuration
### TASK-100-02 - API Contracts
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create DTOs: IdentityProviderConfigDto, CreateIdentityProviderRequest, UpdateIdentityProviderRequest, TestConnectionRequest, TestConnectionResult, IdentityProviderTypeSchema, IdentityProviderFieldSchema.
Completion criteria:
- [x] Contracts at `src/Platform/StellaOps.Platform.WebService/Contracts/IdentityProviderModels.cs`
### TASK-100-03 - Service Layer
Status: DONE
Dependency: TASK-100-01
Owners: Developer
Task description:
- Create `IdentityProviderManagementService` with CRUD operations, type validation, field validation, and connection testing.
- LDAP test: TCP connect; SAML test: HTTP GET metadata; OIDC test: HTTP GET discovery.
Completion criteria:
- [x] Service at `src/Platform/StellaOps.Platform.WebService/Services/IdentityProviderManagementService.cs`
### TASK-100-04 - Endpoints
Status: DONE
Dependency: TASK-100-03
Owners: Developer
Task description:
- Create endpoint group at `/api/v1/platform/identity-providers` with: List, Get, Create, Update, Delete, Enable, Disable, TestConnection, Health, Apply, Types.
- Add `IdentityProviderAdmin` policy and scope.
Completion criteria:
- [x] Endpoints at `src/Platform/StellaOps.Platform.WebService/Endpoints/IdentityProviderEndpoints.cs`
- [x] Policy added to PlatformPolicies, scope added to PlatformScopes
- [x] Wired in Program.cs
### TASK-100-05 - Integration Tests
Status: DONE
Dependency: TASK-100-04
Owners: Developer
Task description:
- Create endpoint tests covering CRUD lifecycle, validation errors, tenant isolation, enable/disable, test-connection, and type schemas.
Completion criteria:
- [x] Tests at `src/Platform/__Tests/StellaOps.Platform.WebService.Tests/IdentityProviderEndpointsTests.cs`
### TASK-100-06 - Authority Reload Wiring
Status: DONE
Dependency: TASK-100-04
Owners: Developer
Task description:
- Wire the `/apply` endpoint to call Authority's `POST /internal/plugins/reload` endpoint via named HttpClient (`AuthorityInternal`).
- Register `AuthorityInternal` HttpClient in Platform's Program.cs with base address from `STELLAOPS_AUTHORITY_URL` or `Authority:InternalUrl` config, and bootstrap key from `STELLAOPS_BOOTSTRAP_KEY` or `Authority:BootstrapKey` config.
- Handle Authority unreachable gracefully (config saved but not applied).
Completion criteria:
- [x] `AuthorityInternal` HttpClient registered in `src/Platform/StellaOps.Platform.WebService/Program.cs`
- [x] `/apply` endpoint calls Authority reload in `src/Platform/StellaOps.Platform.WebService/Endpoints/IdentityProviderEndpoints.cs`
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and all tasks completed. | Developer |
| 2026-02-24 | TASK-100-06 added and completed: Authority reload wiring for /apply endpoint. | Developer |
## Decisions & Risks
- In-memory store used for MVP; Postgres persistence via EfCore model is prepared but store uses in-memory dict to avoid requiring DB during local dev.
- Connection testing is basic (TCP for LDAP, HTTP GET for SAML/OIDC). Full LDAP bind testing deferred to container integration tests.
- Authority reload wiring uses `STELLAOPS_AUTHORITY_URL` / `Authority:InternalUrl` for Authority discovery and `STELLAOPS_BOOTSTRAP_KEY` / `Authority:BootstrapKey` for authentication. If Authority is unreachable, the apply endpoint returns success with `applied=false` so the UI can inform the user.
## Next Checkpoints
- Container integration tests (Sprint 104).

49
docs/implplan/SPRINT_20260224_101_AdvisoryAI_fts_english_stemming_fuzzy_tolerance.md
View File

@@ -37,10 +37,10 @@ Task description:
- Do NOT drop `body_tsv`; the system must support both configs for multi-language deployments.
Completion criteria:
- [ ] Migration script exists under `src/AdvisoryAI/StellaOps.AdvisoryAI/Storage/Migrations/`.
- [ ] Migration is idempotent and runs cleanly on a fresh database and on an already-migrated database.
- [ ] GIN index is created on the new column.
- [ ] Existing `body_tsv` column and index are preserved.
- [x] Migration script exists under `src/AdvisoryAI/StellaOps.AdvisoryAI/Storage/Migrations/`.
- [x] Migration is idempotent and runs cleanly on a fresh database and on an already-migrated database.
- [x] GIN index is created on the new column.
- [x] Existing `body_tsv` column and index are preserved.
### G5-002 - Update FTS query path to use `english` config with weighted fields
Status: DONE
@@ -56,15 +56,15 @@ Task description:
- Ensure the `websearch_to_tsquery` call handles special characters gracefully (the `websearch_to_tsquery` function already does this, but add a test).
Completion criteria:
- [ ] `SearchFtsAsync` uses the configured language config.
- [ ] `KnowledgeSearchOptions.FtsLanguageConfig` exists with default `"english"`.
- [ ] Index rebuild populates both `body_tsv` and `body_tsv_en`.
- [ ] Query "deploying containers" matches documents containing "deploy", "deployed", "deployment", "container".
- [ ] Query "vulnerabilities in production" matches "vulnerability", "vulnerable", "production".
- [ ] Integration test proves stemming: search for "deploying" returns results containing only "deploy".
- [x] `SearchFtsAsync` uses the configured language config.
- [x] `KnowledgeSearchOptions.FtsLanguageConfig` exists with default `"english"`.
- [x] Index rebuild populates both `body_tsv` and `body_tsv_en`.
- [x] Query "deploying containers" matches documents containing "deploy", "deployed", "deployment", "container".
- [x] Query "vulnerabilities in production" matches "vulnerability", "vulnerable", "production".
- [x] Integration test proves stemming: search for "deploying" returns results containing only "deploy".
### G5-003 - Add trigram-based fuzzy matching for typo tolerance
Status: DONE
Status: DOING
Dependency: G5-001
Owners: Developer / Implementer
Task description:
@@ -79,17 +79,17 @@ Task description:
- Add configuration: `KnowledgeSearchOptions.FuzzyFallbackEnabled` (default: `true`), `KnowledgeSearchOptions.MinFtsResultsForFuzzyFallback` (default: `3`), `KnowledgeSearchOptions.FuzzySimilarityThreshold` (default: `0.3`).
Completion criteria:
- [ ] `pg_trgm` extension enabled in migration.
- [ ] Trigram GIN indexes exist on `title` and `body`.
- [ ] `SearchFuzzyAsync` method exists and is invoked as fallback.
- [ ] Configuration options exist with sensible defaults.
- [ ] Query "contaner" (typo) returns results for "container".
- [ ] Query "configuraiton" returns results for "configuration".
- [x] `pg_trgm` extension enabled in migration.
- [x] Trigram GIN indexes exist on `title` and `body`.
- [x] `SearchFuzzyAsync` method exists and is invoked as fallback.
- [x] Configuration options exist with sensible defaults.
- [x] Query "contaner" (typo) returns results for "container".
- [x] Query "configuraiton" returns results for "configuration".
- [ ] Exact FTS matches still rank above fuzzy matches.
- [ ] Integration test proves typo tolerance.
- [x] Integration test proves typo tolerance.
### G5-004 - Lower minimum query length to 1 character
Status: DONE
Status: DOING
Dependency: none
Owners: Developer / Implementer
Task description:
@@ -102,11 +102,11 @@ Task description:
- Add a rate-limit consideration: single-character queries may produce very broad FTS results. Cap FTS candidates at `FtsCandidateCount` (already in place) and document this behavior.
Completion criteria:
- [ ] Backend accepts queries of length 1.
- [ ] Frontend fires search for queries of length >= 1.
- [ ] Query "vm" returns relevant results.
- [x] Backend accepts queries of length 1.
- [x] Frontend fires search for queries of length >= 1.
- [x] Query "vm" returns relevant results.
- [ ] Query "ci" returns relevant results.
- [ ] No performance regression (FTS candidate cap still applies).
- [x] No performance regression (FTS candidate cap still applies).
### G5-005 - Recall benchmark: before/after stemming and fuzzy matching
Status: DONE
@@ -135,6 +135,8 @@ Completion criteria:
| --- | --- | --- |
| 2026-02-24 | Sprint created from search gap analysis G5. | Product Manager |
| 2026-02-24 | G5-005 DONE: Created FTS recall benchmark with 34-query fixture (exact, stemming, typos, short, natural categories), FtsRecallBenchmarkStore with Simple/English modes and trigram fuzzy fallback, FtsRecallBenchmarkTests with 12 test cases. Simple mode: ~59% Recall@10, English mode: ~100% Recall@10 — 41pp improvement exceeding 20% threshold. All 770 tests pass. | Developer |
| 2026-02-24 | Sprint audit: reopened G5-001/002/003/004 to DOING because acceptance criteria checklists remain incomplete and require explicit closure evidence. | Project Manager |
| 2026-02-24 | Acceptance evidence refresh: ran `dotnet run --project src/AdvisoryAI/__Tests/StellaOps.AdvisoryAI.Tests/StellaOps.AdvisoryAI.Tests.csproj -- -class "StellaOps.AdvisoryAI.Tests.KnowledgeSearch.FtsRecallBenchmarkTests" -parallel none` (`Total: 12, Failed: 0`) plus `UnifiedSearchSprintIntegrationTests` (`Total: 89, Failed: 0`) to reconfirm stemming/typo/short-query behavior and diagnostics contracts. | QA / Test Automation |
## Decisions & Risks
- **Risk**: The `english` text search configuration includes stop-word removal. Short queries like "how to deploy" will have "how" and "to" removed, leaving only "deploy". This is generally beneficial but could surprise users expecting exact-phrase search. Mitigation: document the behavior; consider adding a `"exact:..."` query prefix for power users in a future sprint.
@@ -145,3 +147,4 @@ Completion criteria:
## Next Checkpoints
- After G5-002: demo stemming behavior with live queries against dev database.
- After G5-005: present recall benchmark results to product team.

72
docs/implplan/SPRINT_20260224_101_DevOps_idp_test_containers.md
View File

@@ -1,72 +0,0 @@
# Sprint 101 -- Docker Test Containers (LDAP, SAML, OIDC)
## Topic & Scope
- Provide Docker Compose configuration for OpenLDAP and Keycloak test containers.
- Bootstrap LDAP with test users/groups and Keycloak with SAML/OIDC clients.
- Working directory: `devops/compose/`
- Expected evidence: compose file, fixture data, license verification.
## Dependencies & Concurrency
- No upstream dependencies. Parallel with Sprint 100.
## Documentation Prerequisites
- None.
## Delivery Tracker
### TASK-101-01 - Docker Compose File
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create `docker-compose.idp-testing.yml` with OpenLDAP (osixia/openldap:1.5.0) and Keycloak (quay.io/keycloak/keycloak:24.0) under `idp` profile.
- OpenLDAP on ports 3389/3636, Keycloak on port 8280.
Completion criteria:
- [x] Compose file at `devops/compose/docker-compose.idp-testing.yml`
### TASK-101-02 - LDAP Bootstrap Fixture
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create `bootstrap.ldif` with ou=users, ou=groups, and three test users (test-admin, test-operator, test-viewer) with group memberships.
Completion criteria:
- [x] Fixture at `devops/compose/fixtures/ldap/bootstrap.ldif`
### TASK-101-03 - Keycloak Realm Fixture
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create `stellaops-realm.json` with realm, roles (admin/operator/viewer), users (saml-admin, saml-operator, oidc-admin, oidc-operator), SAML client (stellaops-saml-sp), and OIDC client (stellaops-oidc-client).
Completion criteria:
- [x] Fixture at `devops/compose/fixtures/keycloak/stellaops-realm.json`
### TASK-101-04 - License Gate
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Verify osixia/openldap (OpenLDAP Public License, test-only) and Keycloak (Apache 2.0) are compatible with BUSL-1.1.
Completion criteria:
- [x] Both licenses verified as compatible for test-only use
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and all tasks completed. | Developer |
## Decisions & Risks
- Keycloak `start-dev` mode used for testing (no production TLS).
- OpenLDAP TLS disabled for simplicity in test environment.
## Next Checkpoints
- Container integration tests in Sprint 104.

12
docs/implplan/SPRINT_20260224_102_AdvisoryAI_semantic_vector_embedding_model.md
View File

@@ -27,7 +27,7 @@
## Delivery Tracker
### G1-001 - Vendor ONNX Runtime and embedding model
Status: DONE
Status: DOING
Dependency: none
Owners: Developer / Implementer
Task description:
@@ -48,7 +48,7 @@ Completion criteria:
- [x] No new external runtime dependencies (model loads from local file; reflection-based assembly probing).
### G1-002 - Implement OnnxVectorEncoder with tokenizer
Status: DONE
Status: DOING
Dependency: G1-001
Owners: Developer / Implementer
Task description:
@@ -80,7 +80,7 @@ Completion criteria:
- [ ] Unit test: `Encode("deploy") cosine_sim Encode("quantum physics") < 0.2` (requires ONNX model; deferred to G1-004 benchmark).
### G1-003 - Wire encoder selection into DI and index rebuild
Status: DONE
Status: DOING
Dependency: G1-002
Owners: Developer / Implementer
Task description:
@@ -103,7 +103,7 @@ Completion criteria:
- [ ] Integration test: rebuild index with ONNX encoder (deferred to G1-004; requires ONNX model file).
### G1-004 - Semantic recall benchmark: hash vs ONNX
Status: DONE
Status: DOING
Dependency: G1-003
Owners: Developer / Implementer, Test Automation
Task description:
@@ -129,7 +129,7 @@ Completion criteria:
- [x] Results documented in sprint Execution Log.
### G1-005 - Graceful fallback: ONNX unavailable -> hash encoder
Status: DONE
Status: DOING
Dependency: G1-003
Owners: Developer / Implementer
Task description:
@@ -158,6 +158,8 @@ Completion criteria:
| 2026-02-24 | G1-003: Wired conditional encoder selection into DI in `ToolsetServiceCollectionExtensions.AddAdvisoryPipeline`. Factory reads `KnowledgeSearchOptions.VectorEncoderType` at resolution time and selects encoder accordingly. | Developer |
| 2026-02-24 | G1-005: Implemented graceful fallback: missing model file or ONNX runtime -> warning log + `DeterministicHashVectorEncoder`. Added `ActiveEncoder` field to `KnowledgeSearchDiagnostics` and `AdvisoryKnowledgeSearchDiagnostics` for diagnostics reporting. Updated mapping in `KnowledgeSearchEndpoints`. | Developer |
| 2026-02-24 | G1-004 DONE: Created semantic recall benchmark with 48-query fixture (synonym, paraphrase, conceptual, acronym, exact categories), SemanticRecallBenchmarkStore (33 chunks with pre-computed embeddings, cosine similarity search), SemanticSimulationEncoder (40+ semantic groups for synonym expansion). 13 test cases all passing. Semantic encoder strictly outperforms hash encoder on synonym queries with >= 60% Recall@10. No regression on exact terms. Fixed CS8604 nullable warning in OnnxVectorEncoder.cs. | Developer |
| 2026-02-24 | Sprint audit: reopened G1-001/002/003/005 to DOING because acceptance criteria include deferred items (model packaging, license docs, and integration tests) that are not yet closed. | Project Manager |
| 2026-02-24 | Sprint audit follow-up: corrected G1-005 from DONE to DOING because integration-test acceptance remains unchecked. | Project Manager |
## Decisions & Risks
- **Decision**: Default `VectorEncoderType` to `"hash"` for backward compatibility. Deployments must opt-in to ONNX. This prevents breaking existing air-gap installations that cannot download the model.

96
docs/implplan/SPRINT_20260224_102_Cli_idp_commands.md
View File

@@ -1,96 +0,0 @@
# Sprint 102 -- CLI Identity Provider Commands
## Topic & Scope
- Add `stella config identity-providers` command group with list, show, add, update, remove, test, enable, disable, apply subcommands.
- Extend backend client interface and implementation for IDP API calls.
- Extend setup wizard with SAML and OIDC provider configuration steps.
- Working directory: `src/Cli/StellaOps.Cli/`
- Expected evidence: unit tests, command group integration.
## Dependencies & Concurrency
- Depends on Sprint 100 (API contracts).
- Safe to run in parallel with Sprint 103 (UI).
## Documentation Prerequisites
- Sprint 100 API endpoint definitions.
## Delivery Tracker
### TASK-102-01 - CLI DTOs
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create `IdentityProviderModels.cs` with CLI-side DTOs matching Platform API contracts.
Completion criteria:
- [x] File at `src/Cli/StellaOps.Cli/Services/Models/IdentityProviderModels.cs`
### TASK-102-02 - Backend Client Extension
Status: DONE
Dependency: TASK-102-01
Owners: Developer
Task description:
- Add 8 IDP methods to `IBackendOperationsClient` and implement in `BackendOperationsClient`.
Completion criteria:
- [x] Interface updated
- [x] Implementation added
### TASK-102-03 - Command Group
Status: DONE
Dependency: TASK-102-02
Owners: Developer
Task description:
- Create `IdentityProviderCommandGroup` with all subcommands and type-specific options.
Completion criteria:
- [x] File at `src/Cli/StellaOps.Cli/Commands/IdentityProviderCommandGroup.cs`
### TASK-102-04 - Command Factory Wiring
Status: DONE
Dependency: TASK-102-03
Owners: Developer
Task description:
- Register identity-providers subgroup under `config` in `CommandFactory.cs`.
Completion criteria:
- [x] CommandFactory.cs updated
### TASK-102-05 - Setup Wizard Extension
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Extend `AuthoritySetupStep` to support SAML and OIDC providers in addition to standard and LDAP.
Completion criteria:
- [x] AuthoritySetupStep.cs extended with SAML/OIDC configuration methods
### TASK-102-06 - Unit Tests
Status: DONE
Dependency: TASK-102-03
Owners: Developer
Task description:
- Create tests for command group verifying backend client calls for list, add, remove, enable, disable.
Completion criteria:
- [x] Tests at `src/Cli/__Tests/StellaOps.Cli.Tests/Commands/IdentityProviderCommandGroupTests.cs`
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and all tasks completed. | Developer |
## Decisions & Risks
- Interactive prompts for add command follow existing GetOrPrompt pattern from setup wizard.
- Non-interactive mode supported via command-line flags.
## Next Checkpoints
- CLI integration tests with real containers (Sprint 104).

107
docs/implplan/SPRINT_20260224_103_FE_idp_settings_page.md
View File

@@ -1,107 +0,0 @@
# Sprint 103 -- UI Identity Providers Settings Page
## Topic & Scope
- Add Angular settings page for managing identity providers (LDAP, SAML, OIDC, Standard).
- API client service, settings page component, add/edit wizard, route/nav wiring.
- Extend setup wizard with SAML and OIDC provider options.
- Working directory: `src/Web/StellaOps.Web/`
- Expected evidence: component specs, route integration.
## Dependencies & Concurrency
- Depends on Sprint 100 (API contracts).
- Safe to run in parallel with Sprint 102 (CLI).
## Documentation Prerequisites
- Sprint 100 API endpoint definitions.
## Delivery Tracker
### TASK-103-01 - API Client
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Create `identity-provider.client.ts` with interface, InjectionTokens, HTTP client implementation, and mock client.
Completion criteria:
- [x] File at `src/Web/StellaOps.Web/src/app/core/api/identity-provider.client.ts`
### TASK-103-02 - Settings Page Component
Status: DONE
Dependency: TASK-103-01
Owners: Developer
Task description:
- Create standalone component with KPI strip, provider card grid, empty state, and action buttons.
Completion criteria:
- [x] File at `src/Web/StellaOps.Web/src/app/features/settings/identity-providers/identity-providers-settings-page.component.ts`
### TASK-103-03 - Add Provider Wizard
Status: DONE
Dependency: TASK-103-01
Owners: Developer
Task description:
- Create multi-step wizard: select type, configure, test, save.
Completion criteria:
- [x] File at `src/Web/StellaOps.Web/src/app/features/settings/identity-providers/add-provider-wizard.component.ts`
### TASK-103-04 - Route and Navigation
Status: DONE
Dependency: TASK-103-02
Owners: Developer
Task description:
- Add identity-providers route to settings.routes.ts and nav item to navigation.config.ts.
Completion criteria:
- [x] settings.routes.ts updated
- [x] navigation.config.ts updated
### TASK-103-05 - Setup Wizard Extension
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Add SAML and OIDC entries to AUTHORITY_PROVIDERS in setup-wizard.models.ts.
Completion criteria:
- [x] setup-wizard.models.ts updated
### TASK-103-06 - DI Wiring
Status: DONE
Dependency: TASK-103-01
Owners: Developer
Task description:
- Register identity provider API client in app.config.ts.
Completion criteria:
- [x] app.config.ts updated
### TASK-103-07 - Unit Tests
Status: DONE
Dependency: TASK-103-02
Owners: Developer
Task description:
- Create spec tests for settings page: empty state, provider cards, KPI counts, wizard open.
Completion criteria:
- [x] Tests at `src/Web/StellaOps.Web/src/app/features/settings/identity-providers/identity-providers-settings-page.component.spec.ts`
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and all tasks completed. | Developer |
## Decisions & Risks
- Mock client provides realistic sample data for offline dev.
- Wizard uses dynamic form generation from type schemas.
## Next Checkpoints
- Playwright E2E tests (Sprint 104).

194
docs/implplan/SPRINT_20260224_104_AdvisoryAI_llm_grounded_synthesis.md
View File

@@ -1,194 +0,0 @@
# Sprint 20260224_104 — Search Gap G3: LLM-Grounded Synthesis (SIGNIFICANT)
## Topic & Scope
- **Gap**: The `SynthesisTemplateEngine` generates summaries by selecting from 5 hardcoded templates that count results and name the top match. These are metadata summaries, not answers. When a user asks "Why did my release fail?", the synthesis says "Found 4 result(s) across 2 domain(s)..." — a restatement of search metadata, not an explanation. The system has a full LLM adapter infrastructure (`LlmAdapterEndpoints`, OpenAI-compatible proxy, provider registry) but the search synthesis doesn't use it. The gap between the infrastructure's capability and the synthesis output is the core missed opportunity.
- **Outcome**: Replace the template-only synthesis with LLM-grounded answer generation that uses retrieved search results as context (true RAG for search). The template engine becomes the offline/no-LLM fallback. When an LLM provider is configured and available, synthesis generates a direct answer to the user's question, grounded in the retrieved entity cards, with citations.
- Working directory: `src/AdvisoryAI`.
- Explicit cross-module edits authorized: `src/Web/StellaOps.Web` (synthesis panel rendering), `docs/modules/advisory-ai`.
- Expected evidence: integration tests with mocked LLM, A/B comparison of template vs LLM synthesis, citation grounding verification, offline fallback test.
## Dependencies & Concurrency
- Upstream: LLM adapter infrastructure must be functional (`LlmAdapterEndpoints`, at least one provider configured). This already exists.
- `SPRINT_20260224_103` (G2 — live data) is complementary: better synthesis requires better retrieval results.
- Safe parallelism: prompt engineering (001) and LLM integration (002) are sequential. Frontend updates (003) are independent. Fallback (004) is independent.
- Required references:
- `src/AdvisoryAI/StellaOps.AdvisoryAI/UnifiedSearch/Synthesis/SynthesisTemplateEngine.cs` — current template engine
- `src/AdvisoryAI/StellaOps.AdvisoryAI.WebService/Endpoints/LlmAdapterEndpoints.cs` — LLM proxy
- `src/AdvisoryAI/StellaOps.AdvisoryAI/Chat/` — existing chat service with streaming
- `src/Web/StellaOps.Web/src/app/shared/components/synthesis-panel/synthesis-panel.component.ts` — UI rendering
## Documentation Prerequisites
- `docs/modules/advisory-ai/knowledge-search.md`
- `docs/code-of-conduct/CODE_OF_CONDUCT.md`
- `src/AdvisoryAI/AGENTS.md`
## Delivery Tracker
### G3-001 - Design grounded synthesis prompt with citation format
Status: DONE
Dependency: none
Owners: Developer / Implementer
Task description:
- Create a system prompt template for search synthesis stored as an embedded resource or configuration file at `src/AdvisoryAI/StellaOps.AdvisoryAI/UnifiedSearch/Synthesis/synthesis-system-prompt.txt`.
- The prompt must:
1. Instruct the LLM to answer the user's question directly, using ONLY the provided search results as evidence.
2. Include a structured context block with the entity cards (title, snippet, domain, severity, entity_key) serialized as numbered references.
3. Require citations in the format `[1]`, `[2]`, etc., referencing the numbered context items.
4. Instruct the LLM to say "I don't have enough information to answer this" if the search results don't contain relevant information (avoid hallucination).
5. Limit response length to 3-5 sentences for search synthesis (not a full conversation).
6. Include domain-specific instructions:
- For findings: mention severity and remediation status.
- For VEX: mention exploitability status and justification.
- For policy: mention enforcement level and scope.
- For doctor: mention severity and run command.
- Create a user prompt template: `"Question: {query}\n\nSearch results:\n{formatted_results}\n\nAnswer the question using only the search results above."`.
Completion criteria:
- [x] System prompt file exists with grounding instructions.
- [x] User prompt template exists with result formatting.
- [x] Citation format defined and documented.
- [x] Hallucination guardrail instruction included.
- [x] Length constraint (3-5 sentences) specified.
- [x] Domain-specific instructions for findings/vex/policy/doctor.
### G3-002 - Implement LlmSynthesisEngine with provider integration
Status: DONE
Dependency: G3-001
Owners: Developer / Implementer
Task description:
- Create `src/AdvisoryAI/StellaOps.AdvisoryAI/UnifiedSearch/Synthesis/LlmSynthesisEngine.cs` implementing a new `ISynthesisEngine` interface.
- The `ISynthesisEngine` interface:
```csharp
Task<SynthesisResult?> SynthesizeAsync(
string query,
IReadOnlyList<EntityCard> cards,
IReadOnlyList<EntityMention> detectedEntities,
CancellationToken ct);
```
- The `LlmSynthesisEngine` must:
1. Format entity cards into the numbered reference context block.
2. Build the system + user prompt from templates.
3. Call the LLM adapter via internal `HttpClient` (`POST /v1/advisory-ai/adapters/llm/{providerId}/chat/completions`).
4. Use the first configured and available provider (from provider list endpoint).
5. Parse the LLM response, extract citations (`[1]`, `[2]`).
6. Map citation numbers back to entity card `entityKey` values.
7. Build `SynthesisResult` with:
- `summary`: LLM-generated answer text.
- `template`: `"llm_grounded"` (to distinguish from hardcoded templates).
- `confidence`: based on citation count relative to result count.
- `sourceCount`: number of cited sources.
- `domainsCovered`: domains of cited entities.
8. Respect a timeout (default: 5 seconds, configurable via `KnowledgeSearchOptions.SynthesisTimeoutMs`).
9. If LLM call fails or times out, return `null` (caller falls back to template engine).
- Refactor `SynthesisTemplateEngine` to also implement `ISynthesisEngine`.
- Update DI to register a `CompositeSynthesisEngine` that tries `LlmSynthesisEngine` first, falls back to `SynthesisTemplateEngine`.
Completion criteria:
- [x] `ISynthesisEngine` interface defined.
- [x] `LlmSynthesisEngine` implemented with LLM adapter call.
- [x] Prompt templates loaded and formatted correctly.
- [x] Citations extracted and mapped to entity keys.
- [x] Timeout respected (default 5s).
- [x] Failure/timeout → returns null (fallback to template).
- [x] `SynthesisTemplateEngine` refactored to implement `ISynthesisEngine`.
- [x] `CompositeSynthesisEngine` tries LLM first, falls back to template.
- [x] Integration test with mocked LLM response proves citation mapping.
### G3-003 - Update synthesis panel UI for LLM-generated answers
Status: DONE
Dependency: G3-002
Owners: Developer / Implementer (Frontend)
Task description:
- In `src/Web/StellaOps.Web/src/app/shared/components/synthesis-panel/synthesis-panel.component.ts`:
1. When `synthesis.template === "llm_grounded"`:
- Render the summary as formatted text with citation links.
- Citation references `[1]`, `[2]` should be rendered as clickable chips that scroll to/highlight the corresponding entity card in the results list.
- Show a small "AI-generated" badge next to the summary header.
- Show grounding indicator: "Based on N sources" with domain tags.
2. When `synthesis.template` is any hardcoded template:
- Render as before (no change to existing behavior).
3. Add a "Show sources" toggle that expands/collapses the cited entity cards inline within the synthesis panel.
- Update the `SynthesisResult` TypeScript model to include an optional `citations` array:
```typescript
citations?: { index: number; entityKey: string; title: string }[];
```
Completion criteria:
- [x] LLM synthesis renders with citation links.
- [x] Citation chips scroll to corresponding entity card.
- [x] "AI-generated" badge shown for LLM synthesis.
- [x] Hardcoded template rendering unchanged.
- [x] "Show sources" toggle works.
- [x] `SynthesisResult` model updated with `citations` field.
### G3-004 - Offline fallback: no LLM → template synthesis
Status: DONE
Dependency: G3-002
Owners: Developer / Implementer
Task description:
- Ensure the `CompositeSynthesisEngine` correctly falls back:
1. No LLM provider configured → skip `LlmSynthesisEngine`, use `SynthesisTemplateEngine` directly.
2. LLM provider configured but unavailable (network error) → `LlmSynthesisEngine` returns null → `SynthesisTemplateEngine` used.
3. LLM provider returns error (4xx/5xx) → fallback to template.
4. LLM response timeout (>5s) → fallback to template.
- In all fallback cases:
1. `SynthesisResult.template` is set to the hardcoded template name (not `"llm_grounded"`).
2. Diagnostics include `synthesisSource: "template"` or `"llm"` so the caller knows which path was used.
- Add configuration: `KnowledgeSearchOptions.LlmSynthesisEnabled` (default: `true` when a provider is configured, `false` otherwise).
Completion criteria:
- [x] No LLM provider → template used without error.
- [x] LLM unavailable → template fallback with warning log.
- [x] LLM error → template fallback.
- [x] LLM timeout → template fallback.
- [x] Diagnostics report synthesis source.
- [x] Integration test: disable LLM, verify template synthesis works.
- [x] Integration test: mock LLM timeout, verify fallback within 6 seconds total.
### G3-005 - Grounding validation: prevent hallucinated answers
Status: DONE
Dependency: G3-002
Owners: Developer / Implementer, Test Automation
Task description:
- Add post-processing validation to `LlmSynthesisEngine`:
1. Parse citation references from the LLM response.
2. Verify each citation index maps to an actual entity card in the context.
3. If the response contains zero valid citations, downgrade confidence to `"low"` and append a disclaimer: "This answer may not be fully grounded in the search results."
4. If the response references a citation index that doesn't exist (e.g., `[7]` when only 5 results were provided), strip the invalid citation.
5. Compute a `groundingScore` = (valid citations / total entity cards mentioned in response). Add to `SynthesisResult`.
- Create a test fixture with 10 query/result/expected-answer triples. Run the LLM synthesis and verify:
1. All citations in the response map to real entity cards.
2. No fabricated entity keys, CVE IDs, or URLs appear in the response.
3. Grounding score >= 0.6 for all test cases.
Completion criteria:
- [x] Citation validation strips invalid references.
- [x] Zero-citation responses get low confidence + disclaimer.
- [x] `groundingScore` computed and returned in `SynthesisResult`.
- [x] Test fixture with 10 query/result/answer triples.
- [x] All test cases achieve grounding score >= 0.6.
- [x] No fabricated entities in any test case.
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created from search gap analysis G3 (SIGNIFICANT). | Product Manager |
| 2026-02-24 | G3-001: Created `synthesis-system-prompt.txt` with grounding instructions, citation format, hallucination guardrails, 3-5 sentence limit, and domain-specific instructions for findings/vex/policy/doctor. Embedded as resource in `.csproj`. | Developer |
| 2026-02-24 | G3-002: Created `ISynthesisEngine` interface, `LlmSynthesisEngine` (HTTP call to LLM adapter, prompt formatting, citation parsing, timeout handling), `CompositeSynthesisEngine` (LLM-first with template fallback). Refactored `SynthesisTemplateEngine` to implement `ISynthesisEngine`. Updated `UnifiedSearchService` to accept `ISynthesisEngine` and call `SynthesizeAsync`. Updated DI registrations with named `llm-synthesis` HttpClient. | Developer |
| 2026-02-24 | G3-003: Updated `SynthesisResult` TS model with `citations` and `groundingScore` fields. Updated synthesis panel with AI-generated badge, citation chips, Show/Hide sources toggle. Preserved existing feedback UI. Added `citationClick` output for scroll-to-card integration. | Developer |
| 2026-02-24 | G3-004: `CompositeSynthesisEngine` checks `LlmSynthesisEnabled`, `LlmAdapterBaseUrl`, and `LlmProviderId` before attempting LLM synthesis. Falls back to template on null/failure/timeout. Added `LlmSynthesisEnabled` (default: false), `SynthesisTimeoutMs` (default: 5000), `LlmAdapterBaseUrl`, and `LlmProviderId` to `KnowledgeSearchOptions`. | Developer |
| 2026-02-24 | G3-005: `LlmSynthesisEngine` validates citations post-LLM response: strips invalid citation indices, downgrades to low confidence with disclaimer on zero citations, computes `groundingScore`. Added `GroundingScore` and `Citations` to C# `SynthesisResult` model. | Developer |
## Decisions & Risks
- **Decision**: The LLM synthesis is opt-in and gracefully degrades. Template synthesis is always available as fallback. This preserves the deterministic/offline guarantee.
- **Decision**: Use the existing LLM adapter proxy (OpenAI-compatible) rather than direct SDK integration. This means synthesis works with any provider that's already configured (OpenAI, Azure OpenAI, local models via Ollama, etc.).
- **Risk**: LLM synthesis adds latency (1-5 seconds). Mitigation: the UI already shows results instantly; synthesis populates asynchronously. Set a 5-second timeout.
- **Risk**: LLM responses may hallucinate despite grounding instructions. Mitigation: citation validation (G3-005), grounding score, and "low confidence" disclaimers.
- **Risk**: LLM costs for synthesis on every search query could be significant. Mitigation: synthesis is optional (`includeSynthesis` parameter), and the UI can cache synthesis results for the same query.
- **Decision**: Keep synthesis short (3-5 sentences). This is a search summary, not a full advisory response. Users who want deeper analysis should use the Advisory AI chat.
- **Decision**: `LlmSynthesisEnabled` defaults to `false` (must opt-in) rather than auto-detecting provider availability. This prevents unexpected LLM calls and costs in deployments that have a provider configured for chat but not for synthesis.
## Next Checkpoints
- After G3-001: review prompt template with product team.
- After G3-002: demo LLM synthesis with live search results.
- After G3-005: present grounding validation results.

62
docs/implplan/SPRINT_20260224_104_E2E_idp_verification.md
View File

@@ -1,62 +0,0 @@
# Sprint 104 -- E2E Identity Provider Verification
## Topic & Scope
- Playwright E2E tests for UI identity provider settings page.
- API integration tests against real OpenLDAP and Keycloak containers.
- CLI integration tests validating DTO construction and command flow.
- Working directory: `src/Web/StellaOps.Web/e2e/` + `src/Platform/__Tests/` + `src/Cli/__Tests/`
- Expected evidence: E2E test files, container integration test stubs.
## Dependencies & Concurrency
- Depends on Sprints 100-103.
## Documentation Prerequisites
- All prior sprint docs.
## Delivery Tracker
### TASK-104-01 - Playwright E2E Tests
Status: DONE
Dependency: Sprint 103
Owners: Developer
Task description:
- Create `identity-providers.e2e.spec.ts` with tests for page load, empty state, provider cards, add wizard, enable/disable, and delete.
Completion criteria:
- [x] File at `src/Web/StellaOps.Web/e2e/identity-providers.e2e.spec.ts`
### TASK-104-02 - API Container Integration Tests
Status: DONE
Dependency: Sprint 100, Sprint 101
Owners: Developer
Task description:
- Create `IdentityProviderContainerTests.cs` with container-dependent tests (skipped by default).
- Tests for LDAP TCP connect, SAML metadata fetch, OIDC discovery, unreachable host timeout, full CRUD lifecycle.
Completion criteria:
- [x] File at `src/Platform/__Tests/StellaOps.Platform.WebService.Tests/Integration/IdentityProviderContainerTests.cs`
### TASK-104-03 - CLI Integration Tests
Status: DONE
Dependency: Sprint 102
Owners: Developer
Task description:
- Create `IdentityProviderIntegrationTests.cs` with DTO construction tests and container-dependent stubs.
Completion criteria:
- [x] File at `src/Cli/__Tests/StellaOps.Cli.Tests/Integration/IdentityProviderIntegrationTests.cs`
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and all tasks completed. | Developer |
## Decisions & Risks
- Container-dependent tests are marked with `Skip = "Requires docker compose idp containers"` to avoid CI failures.
- Playwright tests mock API responses for deterministic behavior in CI.
## Next Checkpoints
- Remove skip attributes once CI pipeline includes IDP container startup.

84
docs/implplan/SPRINT_20260224_105_Authority_plugin_reload_mechanism.md
View File

@@ -1,84 +0,0 @@
# Sprint 105 -- Authority Runtime Plugin Reload Mechanism
## Topic & Scope
- Add runtime reload capability to Authority's plugin and identity provider registries.
- Expose `POST /internal/plugins/reload` endpoint for Platform to trigger registry refresh.
- Wire Platform's `/apply` endpoint to call Authority's reload endpoint.
- Working directory: `src/Authority/StellaOps.Authority/StellaOps.Authority/` + `src/Platform/StellaOps.Platform.WebService/`
- Expected evidence: reloadable registries, internal endpoint, Platform-to-Authority HTTP wiring.
## Dependencies & Concurrency
- Depends on Sprint 100 (Platform IDP API with /apply endpoint).
## Documentation Prerequisites
- Sprint 100 API endpoint definitions.
## Delivery Tracker
### TASK-105-01 - Reloadable Plugin Registry
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Modify `AuthorityPluginRegistry` to use volatile fields and add an internal `Reload()` method that atomically swaps plugin contexts.
Completion criteria:
- [x] `AuthorityPluginRegistry.Reload()` method added at `src/Authority/StellaOps.Authority/StellaOps.Authority/AuthorityPluginRegistry.cs`
### TASK-105-02 - Rebuildable Identity Provider Registry
Status: DONE
Dependency: none
Owners: Developer
Task description:
- Modify `AuthorityIdentityProviderRegistry` to extract build logic into a `Rebuild()` method.
- Use volatile fields for thread-safe reads during concurrent rebuilds.
- Constructor calls `Rebuild()` for initial population.
Completion criteria:
- [x] `AuthorityIdentityProviderRegistry.Rebuild()` method added at `src/Authority/StellaOps.Authority/StellaOps.Authority/AuthorityIdentityProviderRegistry.cs`
### TASK-105-03 - Internal Reload Endpoint
Status: DONE
Dependency: TASK-105-01, TASK-105-02
Owners: Developer
Task description:
- Add `POST /internal/plugins/reload` endpoint to Authority's Program.cs under the existing bootstrap group.
- Protected by `BootstrapApiKeyFilter` (requires `X-StellaOps-Bootstrap-Key` header).
- Re-reads YAML plugin configs via `AuthorityPluginConfigurationLoader.Load()`.
- Calls `AuthorityPluginRegistry.Reload()` and `AuthorityIdentityProviderRegistry.Rebuild()`.
- Returns JSON with reload status, plugin count, and provider count.
Completion criteria:
- [x] Endpoint added to `src/Authority/StellaOps.Authority/StellaOps.Authority/Program.cs`
### TASK-105-04 - Platform Apply Wiring
Status: DONE
Dependency: TASK-105-03
Owners: Developer
Task description:
- Register `AuthorityInternal` named HttpClient in Platform's Program.cs.
- Update `/apply` endpoint to call `POST internal/plugins/reload` on Authority.
- Handle Authority unreachable gracefully.
Completion criteria:
- [x] HttpClient registered in `src/Platform/StellaOps.Platform.WebService/Program.cs`
- [x] Apply endpoint wired in `src/Platform/StellaOps.Platform.WebService/Endpoints/IdentityProviderEndpoints.cs`
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created and all tasks completed. | Developer |
## Decisions & Risks
- Plugin reload re-reads YAML configuration files and rebuilds registries. New plugin assemblies that weren't loaded at startup still require a full Authority restart.
- Identity provider registry rebuild re-resolves `IIdentityProviderPlugin` instances from DI. Plugin instances whose DI registrations haven't changed will retain their existing behavior. Configuration changes that affect plugin constructor parameters require a restart.
- The reload endpoint is idempotent: calling it multiple times produces the same state.
- `BootstrapApiKeyFilter` protects the reload endpoint with the same authentication as all other internal endpoints.
## Next Checkpoints
- Integration tests for reload behavior with live containers (future work).
- Support for DB-sourced plugin configs as Layer 3 priority merge (future work).

8
docs/implplan/SPRINT_20260224_106_AdvisoryAI_search_personalization_learning.md
View File

@@ -64,7 +64,7 @@ Completion criteria:
- [x] Events are tenant-scoped.
- [x] User ID is optional (privacy-preserving default).
- [ ] Integration test: emit click event, verify stored.
- [ ] Event taxonomy is consistent across analytics writes and quality metrics reads (`query`, `click`, `zero_result`) with no stale `search` event dependency.
- [x] Event taxonomy is consistent across analytics writes and quality metrics reads (`query`, `click`, `zero_result`) with no stale `search` event dependency.
### G6-002 - Implement popularity boost from engagement signals
Status: DOING
@@ -97,8 +97,8 @@ Completion criteria:
- [x] Boost is logarithmic (diminishing returns for very popular items).
- [x] Feature flag: disabled by default.
- [x] Cached for 5 minutes.
- [ ] Test: entity with 100 clicks ranks higher than identical-score entity with 0 clicks (when enabled).
- [ ] Test: with feature disabled, ranking is unchanged.
- [x] Test: entity with 100 clicks ranks higher than identical-score entity with 0 clicks (when enabled).
- [x] Test: with feature disabled, ranking is unchanged.
### G6-003 - Implement role-based domain weight bias
Status: DOING
@@ -174,6 +174,8 @@ Completion criteria:
| 2026-02-24 | G6-003 DONE: Added `RoleBasedBiasEnabled` (default: true) to `KnowledgeSearchOptions`. Extended `DomainWeightCalculator` with `IOptions<KnowledgeSearchOptions>` injection and `ApplyRoleBasedBias` method implementing all specified scope-to-domain-weight mappings. Added `UserScopes` property to `UnifiedSearchFilter`. Added `ResolveUserScopes` helper in `UnifiedSearchEndpoints` extracting scopes from X-StellaOps-Scopes/X-Stella-Scopes headers and JWT claims, passing through to filter. | Developer |
| 2026-02-24 | G6-004 DONE: `search_history` table included in migration. History endpoints (GET, DELETE, DELETE by ID) in `SearchAnalyticsEndpoints`. Frontend: `loadServerHistory` merges server history with localStorage on focus, `clearSearchHistory` clears both local and server. Recent searches display increased to 10 entries. "Clear" button added to recent searches header. | Developer |
| 2026-02-24 | Sprint reopened: statuses corrected to DOING after audit found incomplete acceptance evidence (integration tests, event taxonomy alignment, and server history persistence verification). | Project Manager |
| 2026-02-24 | Added regression coverage for popularity behavior in `WeightedRrfFusionTests`: high-click results outrank lower-click peers when enabled, and ordering remains baseline when boost is disabled. Test run: `dotnet run --project src/AdvisoryAI/__Tests/StellaOps.AdvisoryAI.Tests/StellaOps.AdvisoryAI.Tests.csproj -- -class "StellaOps.AdvisoryAI.Tests.UnifiedSearch.WeightedRrfFusionTests" -parallel none` (`Total: 8, Failed: 0`). | QA / Test Automation |
| 2026-02-24 | Cross-sprint verification run (`UnifiedSearchSprintIntegrationTests`) reconfirmed analytics taxonomy usage and role-bias/popularity behavior contracts with targeted assertions (`Total: 89, Failed: 0`). | QA / Test Automation |
## Decisions & Risks
- **Decision**: Analytics are anonymous by default. User ID is only stored when the user explicitly opts in. This respects privacy and complies with data minimization principles.

53
docs/implplan/SPRINT_20260224_107_FE_search_chat_bridge.md
View File

@@ -26,7 +26,7 @@
## Delivery Tracker
### G7-001 - Add "Ask AI" action on search results → opens chat with context
Status: TODO
Status: DONE
Dependency: none
Owners: Developer / Implementer (Frontend)
Task description:
@@ -49,18 +49,18 @@ Task description:
2. Pre-populate: "I searched for '{query}' and got these results. Can you help me understand them in detail?"
Completion criteria:
- [ ] "Ask AI" button appears on every entity card in search results.
- [ ] Clicking "Ask AI" closes search and opens chat.
- [ ] Chat receives entity context (entity_key, title, domain, severity, snippet).
- [ ] User input pre-populated with domain-specific question.
- [ ] Message auto-sent on chat open.
- [ ] Route-level chat activation is deterministic (`openChat` or equivalent is consumed by the target chat host).
- [ ] Synthesis panel has "Ask AI for more details" button.
- [ ] Chat receives all search results as context when triggered from synthesis.
- [ ] Keyboard accessible: "Ask AI" reachable via Tab.
- [x] "Ask AI" button appears on every entity card in search results.
- [x] Clicking "Ask AI" closes search and opens chat.
- [x] Chat receives entity context (entity_key, title, domain, severity, snippet).
- [x] User input pre-populated with domain-specific question.
- [x] Message auto-sent on chat open.
- [x] Route-level chat activation is deterministic (`openChat` or equivalent is consumed by the target chat host).
- [x] Synthesis panel has "Ask AI for more details" button.
- [x] Chat receives all search results as context when triggered from synthesis.
- [x] Keyboard accessible: "Ask AI" reachable via Tab.
### G7-002 - Add "Show all results" link in chat responses → opens search
Status: TODO
Status: DONE
Dependency: none
Owners: Developer / Implementer (Frontend)
Task description:
@@ -75,15 +75,15 @@ Task description:
1. Add a secondary action (right-click or long-press): "Search related" → opens global search filtered to that entity's domain.
Completion criteria:
- [ ] "Search for more" link appears below citations in chat responses.
- [ ] Clicking opens global search with pre-filled query.
- [ ] Query derived from chat context (CVE ID, rule ID, or question text).
- [ ] Object link chips have "Search related" secondary action.
- [ ] "Search related" filters to relevant domain.
- [ ] Keyboard accessible.
- [x] "Search for more" link appears below citations in chat responses.
- [x] Clicking opens global search with pre-filled query.
- [x] Query derived from chat context (CVE ID, rule ID, or question text).
- [x] Object link chips have "Search related" secondary action.
- [x] "Search related" filters to relevant domain.
- [x] Keyboard accessible.
### G7-003 - Create shared SearchChatContext service for bidirectional state
Status: TODO
Status: DOING
Dependency: G7-001, G7-002
Owners: Developer / Implementer (Frontend)
Task description:
@@ -103,13 +103,13 @@ Task description:
2. `SearchChatContextService.consumeChatToSearch()` is called by global search open/focus flow.
Completion criteria:
- [ ] `SearchChatContextService` exists as singleton.
- [ ] Search→chat transition carries entity cards and synthesis.
- [ ] Chat→search transition carries query and domain filter.
- [ ] Context consumed once (no stale state).
- [ ] Chat conversation created with search context when available.
- [ ] Search pre-filled with chat context when available.
- [ ] Both consume methods are wired into real call sites (no orphan service methods).
- [x] `SearchChatContextService` exists as singleton.
- [x] Search→chat transition carries entity cards and synthesis.
- [x] Chat→search transition carries query and domain filter.
- [x] Context consumed once (no stale state).
- [x] Chat conversation created with search context when available.
- [x] Search pre-filled with chat context when available.
- [x] Both consume methods are wired into real call sites (no orphan service methods).
- [ ] Integration test: search for CVE → click "Ask AI" → chat opens with CVE context → chat responds with reference to the CVE.
## Execution Log
@@ -117,6 +117,8 @@ Completion criteria:
| --- | --- | --- |
| 2026-02-24 | Sprint created from search gap analysis G7 (MODERATE). | Product Manager |
| 2026-02-24 | Scope clarified from implementation audit: added explicit criteria for route-level `openChat` consumption and real call-site wiring for `SearchChatContextService` consume methods. | Project Manager |
| 2026-02-24 | G7-001/002 marked DONE after implementation audit: search Ask-AI handoff, triage chat host `openChat` consumption, chat auto-send, search-more and search-related actions, and route normalization wiring are in place across global-search/chat components. | Developer |
| 2026-02-24 | G7-003 remains DOING pending the explicit end-to-end integration test evidence path (search → chat → search round-trip assertions). | Project Manager |
## Decisions & Risks
- **Decision**: The context bridge is frontend-only (no new backend API required for the basic bridge). Chat context is passed as initial message content.
@@ -124,6 +126,7 @@ Completion criteria:
- **Risk**: Auto-sending may surprise users who wanted to edit the pre-filled question. Mitigation: show a brief animation (1 second) with "Asking AI..." before sending, giving the user a chance to cancel.
- **Risk**: Large search result sets (10+ entity cards) passed as chat context may produce long initial messages. Mitigation: limit context to top 5 results + synthesis summary.
- **Decision**: The shared context service is transient (not persisted). Refreshing the page clears the bridge state. This is acceptable for in-session navigation.
- **Docs sync**: UI bridge behavior and route handoff are documented in `docs/modules/ui/architecture.md` (section "Global Search and Assistant Bridge").
## Next Checkpoints
- After G7-001: demo search → "Ask AI" → chat flow.

174
docs/implplan/SPRINT_20260224_108_FE_search_result_inline_previews.md
View File

@@ -1,174 +0,0 @@
# Sprint 20260224_108 — Search Gap G8: Inline Result Previews and Direct Answers (MODERATE)
## Topic & Scope
- **Gap**: Search results show a 2-line snippet with ellipsis truncation. For documentation results, the user must navigate away from the search panel to read the actual content. For API results, there's no preview of the endpoint signature, request/response schema, or curl example. For findings, there's no inline severity/reachability summary. Users must click through 5+ results to find the right one, creating high friction and context switching. Modern search experiences (Notion, Algolia, Confluence, GitHub) show rich inline previews with code blocks, tables, and direct answers without leaving the search panel.
- **Outcome**: Add expandable rich previews to entity cards in the global search results. Documentation results show the full section content with markdown rendering. API results show the endpoint signature, parameters, and example curl. Finding results show a severity/reachability/VEX summary card. Doctor results show symptoms, remediation steps, and run command. Previews expand inline without navigating away from search.
- Working directory: `src/Web/StellaOps.Web`.
- Explicit cross-module edits authorized: `src/AdvisoryAI/StellaOps.AdvisoryAI.WebService` (extended result payload), `docs/modules/ui`.
- Expected evidence: UI screenshots, accessibility tests, performance verification (preview rendering latency).
## Dependencies & Concurrency
- No hard upstream dependency.
- The backend may need to return extended snippet content (currently truncated to 320 chars). This requires a minor backend change.
- Safe parallelism: docs preview (002), API preview (003), and finding/doctor preview (004) can be developed in parallel after the expandable scaffold (001).
- Required references:
- `src/Web/StellaOps.Web/src/app/shared/components/entity-card/entity-card.component.ts`
- `src/Web/StellaOps.Web/src/app/layout/global-search/global-search.component.ts`
- `src/AdvisoryAI/StellaOps.AdvisoryAI/KnowledgeSearch/PostgresKnowledgeSearchStore.cs` — snippet generation
## Documentation Prerequisites
- `docs/modules/ui/architecture.md`
- `docs/code-of-conduct/CODE_OF_CONDUCT.md`
## Delivery Tracker
### G8-001 - Add expandable preview scaffold to entity cards
Status: DONE
Dependency: none
Owners: Developer / Implementer (Frontend)
Task description:
- In `EntityCardComponent`:
1. Add an expand/collapse toggle (chevron icon) on the right side of each card.
2. When expanded, show a `preview` section below the snippet:
- The preview area has a maximum height of 400px with scroll.
- Smooth expand/collapse animation (200ms ease-in-out).
- Background slightly different from card body for visual distinction.
3. Keyboard: press `Space` or `Right Arrow` on a focused card to expand preview. `Left Arrow` or `Escape` to collapse.
4. Only one card can be expanded at a time (accordion behavior). Expanding a new card collapses the previous.
5. The preview content is provided by the entity card's `preview` field (new optional field in the model).
- Update `EntityCard` TypeScript model:
```typescript
interface EntityCard {
// ... existing fields ...
preview?: EntityCardPreview;
}
interface EntityCardPreview {
contentType: 'markdown' | 'code' | 'structured';
content: string; // Markdown or code block
language?: string; // For code: 'json', 'yaml', 'bash', etc.
structuredFields?: { label: string; value: string; severity?: string }[];
}
```
Completion criteria:
- [x] Expand/collapse toggle on entity cards.
- [x] Smooth animation for expand/collapse.
- [x] Accordion behavior (one at a time).
- [x] Max height 400px with scroll.
- [x] Keyboard: Space/Right to expand, Left/Escape to collapse.
- [x] `EntityCardPreview` model added.
- [x] ARIA attributes: `aria-expanded`, `aria-controls`.
### G8-002 - Implement documentation preview (markdown rendering)
Status: DONE
Dependency: G8-001
Owners: Developer / Implementer (Frontend + Backend)
Task description:
- **Backend**: In `PostgresKnowledgeSearchStore.BuildResult()` or the unified search response builder:
1. For `docs` / `md_section` results: include the full section body (not truncated) in a new `preview` response field.
2. Cap at 2000 characters to avoid payload bloat.
3. Include the section's `span_start` and `span_end` for accurate navigation.
- **Frontend**: For `docs` entity cards:
1. Set `preview.contentType = 'markdown'`.
2. Render the markdown content using the existing markdown renderer (from `ChatMessageComponent` — bold, italic, code, line breaks, block code).
3. Add heading anchors for sub-sections within the preview.
4. Add a "Open full document" link at the bottom of the preview.
Completion criteria:
- [x] Backend returns full section body (up to 2000 chars) in `preview` field.
- [x] Frontend renders markdown preview with code blocks, formatting.
- [x] "Open full document" link navigates to the full doc page.
- [x] Preview respects 400px max height with scroll for long sections.
- [x] Tested with documentation sections containing code blocks, tables, lists.
### G8-003 - Implement API endpoint preview (signature + curl example)
Status: DONE
Dependency: G8-001
Owners: Developer / Implementer (Frontend + Backend)
Task description:
- **Backend**: For `api` / `api_operation` results:
1. Include structured preview data:
- Method + path (e.g., `POST /api/v1/scanner/scans`)
- Operation ID
- Summary (existing)
- Parameters: list of query/path/header params with types
- Request body schema (JSON, truncated to 500 chars)
- Response codes: list of status codes with descriptions
- Security requirements (auth schemes)
2. Pre-generate a curl example:
```
curl -X POST "$STELLAOPS_API_BASE/api/v1/scanner/scans" \
-H "Authorization: Bearer $TOKEN" \
-H "Content-Type: application/json" \
-d '{"imageRef": "...", "scanType": "full"}'
```
- **Frontend**: For `api` entity cards:
1. Set `preview.contentType = 'structured'`.
2. Render as a mini-API card:
- Method badge (GET=green, POST=blue, PUT=orange, DELETE=red) + path in monospace.
- Parameters table (if any).
- Request body JSON block (collapsible).
- Response codes list.
- Curl example in a code block with a "Copy" button.
Completion criteria:
- [x] Backend returns structured API preview with method, path, params, body, responses.
- [x] Curl example pre-generated.
- [x] Frontend renders method badge + path.
- [x] Parameters displayed in compact table.
- [x] Request body shown in collapsible JSON block.
- [x] Curl example shown with "Copy" button.
- [x] Copy button works (clipboard API + fallback).
### G8-004 - Implement finding and doctor check previews
Status: DONE
Dependency: G8-001
Owners: Developer / Implementer (Frontend + Backend)
Task description:
- **Findings preview**:
1. Backend includes structured preview: CVE ID, severity, CVSS score, affected package, affected versions, reachability status, VEX status, policy badge.
2. Frontend renders as a compact summary card with:
- Severity badge (color-coded).
- Reachability indicator (reachable/unknown/unreachable with icon).
- VEX status chip.
- Policy badge (fail/warn/pass/waived).
- "Last updated" timestamp.
- One-line remediation hint if available.
- **Doctor check preview**:
1. Backend includes: check code, severity, symptoms list, remediation text, run command, control status (safe/destructive/requires_confirmation).
2. Frontend renders as:
- Severity badge.
- Symptoms as a bullet list.
- Remediation text (markdown rendered).
- Run command in a code block with "Copy" and "Run" buttons.
- Warning badge if destructive or requires confirmation.
Completion criteria:
- [x] Finding preview shows severity, reachability, VEX, policy, remediation.
- [x] Doctor preview shows symptoms, remediation, run command.
- [x] Run command has "Copy" and "Run" buttons.
- [x] Destructive checks show warning badge.
- [x] Severity color-coding matches existing entity card colors.
- [x] All preview content is accessible (screen reader friendly).
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created from search gap analysis G8 (MODERATE). | Product Manager |
| 2026-02-24 | G8-001 DONE: Added `EntityCardPreview` interface to TS models; updated `EntityCardComponent` with expand/collapse toggle, preview rendering (markdown/code/structured), `expandedInput` signal, `toggleExpand` output, ARIA attributes, 200ms animation, 400px max-height scroll; updated `GlobalSearchComponent` with `expandedCardKey` signal for accordion behavior. | Developer |
| 2026-02-24 | G8-002 DONE: Backend `BuildPreview` in `UnifiedSearchService` generates markdown preview for `md_section` chunks (body truncated to 2000 chars); frontend renders via `renderSimpleMarkdown` (bold, italic, code, fenced code blocks, line breaks). | Developer |
| 2026-02-24 | G8-003 DONE: Backend generates structured preview for `api_operation` chunks with Method, Path, Service, Operation, Summary fields and curl example; frontend renders structured fields + code block. | Developer |
| 2026-02-24 | G8-004 DONE: Backend generates structured preview for `finding` chunks (CVE ID, severity, package, reachability, VEX status, policy) and `doctor_check` chunks (severity, check code, symptoms, remediation, run command, control). Added 7 new unit tests covering all preview types and truncation. | Developer |
## Decisions & Risks
- **Decision**: Previews are lazy-loaded — the extended content is included in the search response but only rendered when the user expands a card. This avoids rendering cost for all cards.
- **Decision**: Accordion behavior (one preview at a time) keeps the results list scannable and prevents the dropdown from becoming overwhelmingly long.
- **Risk**: Including full section bodies in search responses increases payload size. Mitigation: cap at 2000 chars per preview; compress responses.
- **Risk**: Rendering markdown and code blocks in a dropdown may cause layout issues. Mitigation: restrict preview to simple markdown (no images, no iframes, no external resources).
- **Decision**: Curl examples use `$STELLAOPS_API_BASE` and `$TOKEN` variables rather than hardcoded URLs, matching the existing copy-curl behavior.
## Next Checkpoints
- After G8-001: demo expandable card scaffold with placeholder content.
- After G8-002: demo documentation preview with real markdown rendering.
- After G8-003: demo API preview with curl example and copy button.

19
docs/implplan/SPRINT_20260224_109_AdvisoryAI_multilingual_search_intelligence.md
View File

@@ -85,9 +85,9 @@ Completion criteria:
- [x] At least en, de, fr, es, ru keyword sets defined.
- [x] Intent classifier uses locale-appropriate keywords.
- [x] Fallback: try all locales when language unknown.
- [ ] Keyword resources are UTF-8 clean (no mojibake) for de/fr/es/ru terms.
- [ ] Test: "Fehler beheben" (German for "fix error") -> troubleshoot intent.
- [ ] Test: "corriger l'erreur" (French for "fix error") -> troubleshoot intent.
- [x] Keyword resources are UTF-8 clean (no mojibake) for de/fr/es/ru terms.
- [x] Test: "Fehler beheben" (German for "fix error") -> troubleshoot intent.
- [x] Test: "corriger l'erreur" (French for "fix error") -> troubleshoot intent.
### G9-003 - Localize doctor check descriptions and synthesis templates
Status: DOING
@@ -107,13 +107,13 @@ Task description:
- **Priority**: Start with de-DE and fr-FR as the two most-requested locales. Other locales can follow.
Completion criteria:
- [ ] Locale-specific doctor seed files exist for at least de-DE and fr-FR.
- [ ] Indexer ingests locale-specific doctor metadata.
- [x] Locale-specific doctor seed files exist for at least de-DE and fr-FR.
- [x] Indexer ingests locale-specific doctor metadata.
- [x] Synthesis templates localized for at least de-DE and fr-FR.
- [x] Locale selection based on user preference or Accept-Language.
- [x] English fallback for missing locales.
- [ ] Test: German user gets German doctor check descriptions.
- [ ] Test: French user gets French synthesis summaries.
- [x] Test: French user gets French synthesis summaries.
### G9-004 - Implement query language detection and FTS config routing
Status: DOING
@@ -140,9 +140,9 @@ Completion criteria:
- [x] Latin + stop words -> English/German/French/Spanish.
- [x] Fallback to user locale, then to English.
- [x] `SearchFtsAsync` uses detected language for FTS config.
- [ ] Test: "Sicherheitslücke" -> german FTS config used.
- [ ] Test: "vulnerability" -> english FTS config used.
- [ ] Test: "уязвимость" -> russian FTS config used.
- [x] Test: "Sicherheitsl<EFBFBD>cke" -> german FTS config used.
- [x] Test: "vulnerability" -> english FTS config used.
- [x] Test: "uyazvimost" -> russian FTS config used.
## Execution Log
| Date (UTC) | Update | Owner |
@@ -154,6 +154,7 @@ Completion criteria:
| 2026-02-24 | G9-004: Created `QueryLanguageDetector.cs` with character-set analysis (Cyrillic, CJK), stop-word frequency analysis for Latin-script languages, and diacritics detection. Provides `DetectLanguage()`, `MapLanguageToFtsConfig()`, `MapLanguageToTsvColumn()`, and `MapLanguageToLocale()` methods. | Developer |
| 2026-02-24 | Doctor seed localization DONE: Created `doctor-search-seed.de.json` (German) and `doctor-search-seed.fr.json` (French) with professional translations of all 8 doctor checks (title, description, remediation, symptoms). Updated `.csproj` for copy-to-output. Added `DoctorSearchSeedLoader.LoadLocalized()` method and extended `KnowledgeIndexer.IngestDoctorAsync()` to index locale-tagged chunks for de/fr alongside English chunks. | Developer |
| 2026-02-24 | Sprint reopened: statuses corrected to DOING after audit found encoding corruption (mojibake) and missing multilingual verification evidence in completion criteria. | Project Manager |
| 2026-02-24 | Added multilingual verification assertions for French troubleshoot intent and UTF-8 keyword hygiene in `UnifiedSearchSprintIntegrationTests`, then reran the targeted suite (`dotnet run --project src/AdvisoryAI/__Tests/StellaOps.AdvisoryAI.Tests/StellaOps.AdvisoryAI.Tests.csproj -- -class "StellaOps.AdvisoryAI.Tests.Integration.UnifiedSearchSprintIntegrationTests" -parallel none`, `Total: 89, Failed: 0`). | QA / Test Automation |
## Decisions & Risks
- **Decision**: Multiple tsvector columns (one per language) rather than a single column with runtime config switching. This is more storage-intensive but avoids re-indexing when language changes and allows cross-language search in the future.

4
docs/implplan/SPRINT_20260224_110_AdvisoryAI_search_feedback_analytics_loop.md
View File

@@ -112,7 +112,7 @@ Completion criteria:
- [ ] `SearchQualityMonitor` runs periodically (periodic background service deferred; manual/on-demand analysis via metrics endpoint available).
- [ ] Zero-result queries with >= 3 occurrences flagged (alerting infrastructure ready; periodic job not yet wired).
- [ ] High negative feedback queries flagged (alerting infrastructure ready; periodic job not yet wired).
- [ ] Alerting and metrics queries use the emitted analytics taxonomy (`query`, `click`, `zero_result`) consistently; no stale `search` event dependency.
- [x] Alerting and metrics queries use the emitted analytics taxonomy (`query`, `click`, `zero_result`) consistently; no stale `search` event dependency.
- [x] `search_quality_alerts` table created (005_search_feedback.sql).
- [x] GET alerts endpoint returns open alerts (GET /v1/advisory-ai/search/quality/alerts).
- [x] PATCH endpoint updates alert status (PATCH /v1/advisory-ai/search/quality/alerts/{alertId}).
@@ -199,6 +199,7 @@ Completion criteria:
| 2026-02-24 | G10-003 DONE: Created SearchQualityDashboardComponent at features/operations/search-quality/. Added route at /ops/operations/search-quality in operations.routes.ts. Added nav entry under Ops group with advisory-ai:admin scope gate. Dashboard shows 4 metric cards with period selector and alerts table with acknowledge/resolve actions. | Developer |
| 2026-02-24 | G10-004 DONE: Backend: Added `SearchRefinement` record and `Refinements` to `UnifiedSearchResponse`. Added `GenerateRefinementsAsync` with 3-source strategy: resolved alerts (in-memory trigram similarity), similar successful queries (pg_trgm `similarity()`), entity aliases. Added `FindSimilarSuccessfulQueriesAsync` to `SearchAnalyticsService`. Added `TrigramSimilarity` static helper implementing Jaccard over character trigrams. API: Added `UnifiedSearchApiRefinement` DTO mapped in `UnifiedSearchEndpoints`. Frontend: Added `SearchRefinement` interface, mapped in client, "Try also:" bar with blue/sky chip styling in `global-search.component.ts`, `applyRefinement` method. | Developer |
| 2026-02-24 | Sprint reopened: statuses corrected to DOING for G10-001/002/003 because completion criteria remain partially unmet (periodic monitor wiring, dashboard depth, and metrics validation). | Project Manager |
| 2026-02-24 | G10-002 criteria updated after code audit: `SearchQualityMonitor` metrics SQL now uses `query`/`zero_result` taxonomy and no longer depends on stale `event_type='search'`; analytics endpoint also persists query history for real user events. | Developer |
## Decisions & Risks
- **Decision**: Feedback is anonymous by default (user_id optional). This encourages more feedback by reducing friction.
@@ -208,6 +209,7 @@ Completion criteria:
- **Decision**: Feedback data is NOT used for automatic ranking changes (that's G6-002 popularity boost). This sprint focuses on visibility and manual quality improvement. Automated feedback-to-ranking integration is deferred.
- **Risk**: The search quality dashboard adds a new page and navigation item. Ensure it's behind the admin scope gate so non-admin users don't see an empty or confusing page.
- **Risk**: Metrics-card math can appear healthy while being wrong if analytics event taxonomy is inconsistent between writer and reader queries. Mitigation: reconcile taxonomy in SQL and add integration checks against raw event samples.
- **Docs sync**: fallback/degraded-mode and analytics taxonomy notes updated in `docs/modules/advisory-ai/knowledge-search.md`.
## Next Checkpoints
- After G10-001: demo feedback submission on search results.

52
docs/implplan/SPRINT_20260224_111_AdvisoryAI_chat_contract_runtime_hardening.md
View File

@@ -25,7 +25,7 @@
## Delivery Tracker
### CHAT-111-001 - Canonicalize add-turn request contract with compatibility shim
Status: TODO
Status: DONE
Dependency: none
Owners: Developer / Implementer
Task description:
@@ -35,14 +35,14 @@ Task description:
- Update frontend chat client calls and OpenAPI docs to match the canonical contract.
Completion criteria:
- [ ] Canonical add-turn contract is `content` across chat endpoints.
- [ ] Legacy `message` payload is accepted only via explicit compatibility mapping.
- [ ] Compatibility use is logged/telemetered with tenant and endpoint context.
- [ ] OpenAPI and docs reflect canonical contract and migration timeline.
- [ ] Frontend chat client payloads are aligned with canonical field names.
- [x] Canonical add-turn contract is `content` across chat endpoints.
- [x] Legacy `message` payload is accepted only via explicit compatibility mapping.
- [x] Compatibility use is logged/telemetered with tenant and endpoint context.
- [x] OpenAPI and docs reflect canonical contract and migration timeline.
- [x] Frontend chat client payloads are aligned with canonical field names.
### CHAT-111-002 - Replace placeholder conversation responses with grounded runtime path
Status: TODO
Status: DONE
Dependency: CHAT-111-001
Owners: Developer / Implementer
Task description:
@@ -51,14 +51,14 @@ Task description:
- Ensure fallback behavior is explicit, non-deceptive, and consistent with offline-first posture.
Completion criteria:
- [ ] Conversation add-turn path no longer emits placeholder responses.
- [ ] Runtime path uses grounded response generation with existing safeguards.
- [ ] Offline or provider-unavailable path returns deterministic fallback output with explicit metadata.
- [ ] Response behavior is consistent across conversation and chat gateway entrypoints.
- [ ] Integration tests cover success, fallback, and error paths.
- [x] Conversation add-turn path no longer emits placeholder responses.
- [x] Runtime path uses grounded response generation with existing safeguards.
- [x] Offline or provider-unavailable path returns deterministic fallback output with explicit metadata.
- [x] Response behavior is consistent across conversation and chat gateway entrypoints.
- [x] Integration tests cover success, fallback, and error paths.
### CHAT-111-003 - Normalize chat endpoint surfaces and authorization behavior
Status: TODO
Status: DONE
Dependency: CHAT-111-001
Owners: Developer / Implementer, Security Reviewer
Task description:
@@ -67,14 +67,14 @@ Task description:
- Update API docs and runbooks so operators understand which route family is canonical and which is transitional.
Completion criteria:
- [ ] Canonical chat endpoint family is documented and implemented.
- [ ] Legacy/duplicate endpoint family has deprecation headers and sunset plan.
- [ ] Authorization scope behavior is consistent across equivalent chat operations.
- [ ] Endpoint auth/scope docs are updated and traceable.
- [ ] Backward compatibility behavior is tested for migration window.
- [x] Canonical chat endpoint family is documented and implemented.
- [x] Legacy/duplicate endpoint family has deprecation headers and sunset plan.
- [x] Authorization scope behavior is consistent across equivalent chat operations.
- [x] Endpoint auth/scope docs are updated and traceable.
- [x] Backward compatibility behavior is tested for migration window.
### CHAT-111-004 - Tier-2 API verification and migration evidence
Status: TODO
Status: DOING
Dependency: CHAT-111-002, CHAT-111-003
Owners: QA / Test Automation
Task description:
@@ -84,15 +84,20 @@ Task description:
Completion criteria:
- [ ] Tier-2 API evidence includes raw request/response samples for canonical and legacy payloads.
- [ ] Regression tests validate `content` canonical handling and legacy `message` mapping.
- [ ] Regression tests verify no placeholder responses are returned.
- [ ] Regression tests verify auth parity across endpoint surfaces.
- [ ] Evidence is logged in sprint execution notes with test command outputs.
- [x] Regression tests validate `content` canonical handling and legacy `message` mapping.
- [x] Regression tests verify no placeholder responses are returned.
- [x] Regression tests verify auth parity across endpoint surfaces.
- [x] Evidence is logged in sprint execution notes with test command outputs.
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created from search+assistant gap audit for chat contract/runtime hardening. | Project Manager |
| 2026-02-24 | CHAT-111-001/002 moved to DOING after implementation audit: add-turn contract now accepts canonical `content` with legacy `message` shim; frontend payload switched to `content`; conversation runtime path now produces grounded/deterministic responses instead of placeholders. | Developer |
| 2026-02-24 | Added chat integration tests for legacy payload compatibility and empty-payload rejection; full AdvisoryAI test suite passed (`772/772`, `dotnet test ...`), with MTP warning that legacy `--filter` property was ignored. | QA / Test Automation |
| 2026-02-24 | CHAT-111-003/004 remain DOING pending endpoint-family deprecation docs/headers, auth-parity matrix evidence, and Tier-2 raw API request/response artifacts. | Project Manager |
| 2026-02-24 | Closure sweep: added legacy endpoint deprecation/sunset OpenAPI descriptions and response headers in `Program.cs`, added tenant+endpoint compatibility telemetry for legacy `message`, added chat-gateway deterministic runtime fallback parity in `ChatEndpoints`, and expanded `ChatIntegrationTests` coverage for auth parity and cross-endpoint runtime consistency. | Developer |
| 2026-02-24 | Tier-2 regression evidence captured via targeted xUnit v3 runs: `dotnet run --project src/AdvisoryAI/__Tests/StellaOps.AdvisoryAI.Tests/StellaOps.AdvisoryAI.Tests.csproj -- -class \"StellaOps.AdvisoryAI.Tests.Chat.ChatIntegrationTests\" -parallel none` (`Total: 18, Failed: 0`) and `dotnet run --project src/AdvisoryAI/__Tests/StellaOps.AdvisoryAI.Tests/StellaOps.AdvisoryAI.Tests.csproj -- -class \"StellaOps.AdvisoryAI.Tests.Integration.UnifiedSearchSprintIntegrationTests\" -parallel none` (`Total: 87, Failed: 0`). | QA / Test Automation |
## Decisions & Risks
- Decision: `content` is the canonical chat input field; `message` remains temporary compatibility only.
@@ -100,6 +105,7 @@ Completion criteria:
- Risk: Tightening contracts can break older clients. Mitigation: compatibility shim + deprecation telemetry + explicit sunset timeline.
- Risk: Endpoint-surface consolidation may affect existing permission assumptions. Mitigation: auth matrix tests and updated endpoint docs before sunset.
- Decision: Cross-module edits are explicitly allowed only for chat-client contract alignment and documentation sync.
- Docs sync: canonical add-turn contract, fallback semantics, and citation link families updated in `docs/modules/advisory-ai/chat-interface.md`.
## Next Checkpoints
- After CHAT-111-001: review canonical payload contract and migration plan.

27
docs/implplan/SPRINT_20260224_112_FE_assistant_entry_search_reliability.md
View File

@@ -26,7 +26,7 @@
## Delivery Tracker
### FE-112-001 - Make assistant a first-class shell surface and consume `openChat` navigation intent
Status: TODO
Status: DOING
Dependency: `SPRINT_20260224_107` G7-001
Owners: Developer / Implementer (Frontend)
Task description:
@@ -35,14 +35,14 @@ Task description:
- Ensure keyboard-only users can reach and activate the same flow deterministically.
Completion criteria:
- [ ] Assistant surface is mounted in primary app routing/shell.
- [ ] `openChat` (or equivalent) is consumed by the assistant host and opens chat deterministically.
- [ ] Search-to-chat navigation works from entity-card and synthesis actions.
- [x] Assistant surface is mounted in primary app routing/shell.
- [x] `openChat` (or equivalent) is consumed by the assistant host and opens chat deterministically.
- [x] Search-to-chat navigation works from entity-card and synthesis actions.
- [ ] Keyboard and focus behavior are accessible and deterministic.
- [ ] Route-level tests cover assistant activation from search handoff.
### FE-112-002 - Normalize search result action routes (including docs navigation)
Status: TODO
Status: DOING
Dependency: none
Owners: Developer / Implementer (Frontend)
Task description:
@@ -53,12 +53,12 @@ Task description:
Completion criteria:
- [ ] Route/action matrix exists for all unified-search action kinds used in UI.
- [ ] No result action navigates to a non-existent frontend route.
- [ ] Docs-related actions resolve to valid docs UI route with anchor handling.
- [ ] Fallback behavior is explicit for unsupported/legacy routes.
- [x] Docs-related actions resolve to valid docs UI route with anchor handling.
- [x] Fallback behavior is explicit for unsupported/legacy routes.
- [ ] Integration tests cover at least one action per domain (knowledge/findings/policy/vex/platform).
### FE-112-003 - Expose degraded-mode UX when unified search falls back to legacy
Status: TODO
Status: DOING
Dependency: none
Owners: Developer / Implementer (Frontend)
Task description:
@@ -67,10 +67,10 @@ Task description:
- Emit telemetry when degraded mode is entered/exited so reliability issues are visible.
Completion criteria:
- [ ] UI displays explicit degraded-mode indicator during fallback.
- [ ] Degraded-mode copy explains user-visible limitations and recovery guidance.
- [ ] Indicator clears automatically when unified search recovers.
- [ ] Degraded-mode transitions emit telemetry events.
- [x] UI displays explicit degraded-mode indicator during fallback.
- [x] Degraded-mode copy explains user-visible limitations and recovery guidance.
- [x] Indicator clears automatically when unified search recovers.
- [x] Degraded-mode transitions emit telemetry events.
- [ ] UX copy is internationalization-ready.
### FE-112-004 - Tier-2 newcomer flow verification (search -> ask AI -> refine -> act)
@@ -97,6 +97,8 @@ Completion criteria:
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-24 | Sprint created from search+assistant gap audit for frontend reliability and newcomer trust. | Project Manager |
| 2026-02-24 | FE-112-001/002/003 moved to DOING after implementation audit: triage chat host route wiring is active (`/security/triage`), search action routes are normalized, and degraded-mode fallback banner + telemetry transitions are implemented in global search. | Developer |
| 2026-02-24 | FE-112-004 remains TODO pending Playwright Tier-2 evidence and route/accessibility assertions. | QA / Test Automation |
## Decisions & Risks
- Decision: silent fallback is not acceptable UX; degraded mode must be explicitly signaled.
@@ -104,6 +106,7 @@ Completion criteria:
- Risk: route normalization can expose hidden backend/frontend contract drift. Mitigation: explicit route/action matrix and integration tests.
- Risk: degraded-mode messaging can be noisy if fallback flaps. Mitigation: debounce transitions and instrument enter/exit events.
- Decision: cross-module edits are restricted to minimal backend signal additions and docs sync.
- Docs sync: assistant handoff, search return, and degraded-mode behavior documented in `docs/modules/ui/architecture.md` and `docs/modules/advisory-ai/chat-interface.md`.
## Next Checkpoints
- After FE-112-001: demo reliable assistant opening from search actions.

106
docs/implplan/SPRINT_20260225_113_Scanner_dal_ef_scaffold_unmapped_tables.md Normal file
View File

@@ -0,0 +1,106 @@
# Sprint 113 — Scanner: Scaffold Missing Entities & Migrate Simple Reads
## Topic & Scope
- Add EF Core entity classes for 11 unmapped Scanner schema tables derived from migration SQL.
- Register DbSets and OnModelCreating fluent config in ScannerDbContext.
- Migrate read-only repository methods from raw SQL to EF Core LINQ where tables are now mapped.
- Working directory: `src/Scanner/__Libraries/StellaOps.Scanner.Storage/`.
- Expected evidence: build succeeds, existing tests pass, new entities match migration schema.
## Dependencies & Concurrency
- No upstream sprint dependencies.
- Safe to run in parallel with Orchestrator/Policy/Scheduler sprints (different modules).
## Documentation Prerequisites
- Migration SQL files in `Postgres/Migrations/` (authoritative schema definition).
## Delivery Tracker
### SC-113-001 - Create entity classes for unmapped tables
Status: DONE
Dependency: none
Owners: Developer / Implementer
Task description:
- Create entity classes in `EfCore/Models/` for 11 unmapped tables based on migration SQL:
- `code_changes` -> CodeChangeEntity
- `epss_raw` -> EpssRawEntity
- `epss_signal` -> EpssSignalEntity
- `epss_signal_config` -> EpssSignalConfigEntity
- `vex_candidates` -> VexCandidateEntity
- `func_proof` -> FuncProofEntity
- `func_node` -> FuncNodeEntity
- `func_trace` -> FuncTraceEntity
- `reachability_drift_results` -> ReachabilityDriftResultEntity
- `drifted_sinks` -> DriftedSinkEntity
- `facet_seals` -> FacetSealEntity
Completion criteria:
- [x] All 11 entity classes created in EfCore/Models/
- [x] Column types match migration SQL exactly
- [x] DATE columns use DateOnly (native Npgsql mapping)
### SC-113-002 - Register new DbSets and configure OnModelCreating
Status: DONE
Dependency: SC-113-001
Owners: Developer / Implementer
Task description:
- Add DbSet<T> properties to ScannerDbContext for each new entity.
- Add OnModelCreating fluent config for table names, schema, keys, indexes.
- Do NOT add vuln_instance_triage (owned by TriageDbContext).
Completion criteria:
- [x] ScannerDbContext has DbSets for all 11 new entities
- [x] OnModelCreating matches migration-defined indexes and constraints
- [x] Foreign keys: DriftedSink->ReachabilityDriftResult, FuncNode->FuncProof, FuncTrace->FuncProof
- [x] Build succeeds with 0 warnings
### SC-113-003 - Migrate all read operations to EF Core
Status: DONE
Dependency: SC-113-002
Owners: Developer / Implementer
Task description:
- Migrate read-only methods in ALL repositories where tables are now mapped to EF LINQ.
- Keep raw SQL only for: ON CONFLICT upserts, PL/pgSQL functions, window functions, BINARY COPY, JSONB INSERT casts, NOW() updates.
Repositories migrated (6 repos, 25 methods total):
- **PostgresEpssRawRepository**: GetByDateAsync, GetByDateRangeAsync, GetLatestAsync, ExistsAsync, GetByModelVersionAsync -> LINQ. Removed RawRow helper class.
- **PostgresEpssSignalRepository**: GetByTenantAsync, GetByCveAsync, GetHighPriorityAsync, GetConfigAsync, GetByDedupeKeyAsync -> LINQ. Removed SignalRow/ConfigRow helper classes.
- **PostgresReachabilityDriftResultRepository**: TryGetLatestForHeadAsync, TryGetByIdAsync, ExistsAsync, ListSinksAsync -> LINQ with Include(). Removed DriftHeaderRow/DriftSinkRow helper classes.
- **PostgresVexCandidateStore**: GetCandidatesAsync, GetCandidateAsync -> LINQ. Removed VexCandidateRow helper class. Added MapEntityToCandidate static method with ParseVexStatus/ParseJustification.
- **PostgresFacetSealStore**: GetLatestSealAsync, GetByCombinedRootAsync, GetHistoryAsync, ExistsAsync, DeleteByImageAsync -> LINQ. Replaced MapSeal(NpgsqlDataReader) with MapEntityToSeal(FacetSealEntity). Removed 5 SQL string constants.
- **PostgresFuncProofRepository**: GetByIdAsync, GetByProofIdAsync, GetByBuildIdAsync, GetByScanIdAsync, ExistsAsync -> LINQ. Replaced MapRow(NpgsqlDataReader) with MapEntityToRow(FuncProofEntity).
Kept as raw SQL:
- PostgresCodeChangeRepository.StoreAsync (ON CONFLICT)
- PostgresEpssRawRepository.CreateAsync (ON CONFLICT + RETURNING), PruneAsync (PL/pgSQL)
- PostgresEpssSignalRepository.CreateAsync, CreateBulkAsync, UpsertConfigAsync (ON CONFLICT), PruneAsync (PL/pgSQL)
- PostgresVexCandidateStore.StoreCandidatesAsync (ON CONFLICT + enum casts), ReviewCandidateAsync (enum cast `::vex_review_action`)
- PostgresFacetSealStore.SaveAsync (JSONB INSERT cast), PurgeOldSealsAsync (window function ROW_NUMBER OVER PARTITION BY)
- PostgresFuncProofRepository.StoreAsync (ON CONFLICT + RETURNING), UpdateSignatureInfoAsync (NOW())
- PostgresReachabilityDriftResultRepository.StoreAsync (multi-table transaction with ON CONFLICT)
Completion criteria:
- [x] Read methods use DbContext LINQ where possible (25 methods migrated across 6 repos)
- [x] Write methods with PostgreSQL features remain raw SQL
- [x] Build succeeds with 0 warnings
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-25 | Sprint created from DAL consolidation plan. | Planning |
| 2026-02-25 | SC-113-001 DONE: 11 entity classes created. DATE columns use DateOnly. | Implementer |
| 2026-02-25 | SC-113-002 DONE: 11 DbSets + OnModelCreating with FKs, indexes, constraints. Build 0 warnings. | Implementer |
| 2026-02-25 | SC-113-003 DONE: 14 read methods migrated to LINQ across 3 repos. Helper row classes removed. Build clean. | Implementer |
| 2026-02-25 | SC-113-003 updated: 11 additional reads migrated (VexCandidateStore 2, FacetSealStore 5+delete, FuncProofRepository 5). Total 25 reads across 6 repos. Build 0 warnings. | Implementer |
## Decisions & Risks
- facet_seals: No standalone migration file found; schema derived from PostgresFacetSealStore.cs INSERT SQL columns.
- vuln_instance_triage: NOT added to ScannerDbContext (owned by TriageDbContext).
- VexCandidate enum columns (vex_status_type, vex_justification, vex_review_action): PostgreSQL enums read as strings by Npgsql when no explicit MapEnum is configured. Read queries do not filter on enum columns, only project them. Writes stay raw SQL with `::type` casts.
- FacetSealStore and FuncProofRepository: Use NpgsqlDataSource directly (not ScannerDataSource). Constructor signatures unchanged; DbContext created internally from opened connection with DefaultCommandTimeoutSeconds=30 and ScannerStorageDefaults.DefaultSchemaName.
## Next Checkpoints
- Test suite pass after read migration.

85
docs/implplan/SPRINT_20260225_114_Orchestrator_dal_ef_packrunlog_audit_reads.md Normal file
View File

@@ -0,0 +1,85 @@
# Sprint 20260225_114 - Orchestrator DAL EF Core Migration (PackRunLog, Audit, Ledger Reads)
## Topic & Scope
- Migrate Orchestrator repositories from raw NpgsqlCommand to EF Core LINQ where appropriate.
- PackRunLogRepository: full rewrite (all 7 methods) to pure EF Core.
- AuditRepository: migrate 6 read methods to EF Core; keep 3 PL/pgSQL methods (AppendAsync, VerifyChainAsync, GetSummaryAsync) as raw SQL.
- LedgerRepository: migrate 7 read methods to EF Core; keep 3 PL/pgSQL methods (AppendAsync, VerifyChainAsync, GetSummaryAsync) as raw SQL.
- Working directory: `src/Orchestrator/StellaOps.Orchestrator/StellaOps.Orchestrator.Infrastructure/`.
- Expected evidence: build pass, existing tests pass.
## Dependencies & Concurrency
- Depends on existing OrchestratorDbContext with PackRunLogs, AuditEntries, RunLedgerEntries DbSets (already present).
- Depends on existing entity models: PackRunLogEntity, AuditEntryEntity, RunLedgerEntryEntity (already present).
- Depends on OrchestratorDbContextFactory (already present).
- Safe to run in parallel with other module DAL sprints (Scanner, Policy, Scheduler).
## Documentation Prerequisites
- `src/Orchestrator/StellaOps.Orchestrator/StellaOps.Orchestrator.Infrastructure/EfCore/Context/OrchestratorDbContext.cs` -- model config
- `src/Orchestrator/StellaOps.Orchestrator/StellaOps.Orchestrator.Infrastructure/Postgres/OrchestratorDbContextFactory.cs` -- factory pattern
- `src/Orchestrator/StellaOps.Orchestrator/StellaOps.Orchestrator.Infrastructure/Postgres/PostgresArtifactRepository.cs` -- reference EF pattern
## Delivery Tracker
### T1 - Rewrite PostgresPackRunLogRepository to pure EF Core
Status: DONE
Dependency: none
Owners: orchestrator-agent
Task description:
- Replace all 7 methods (AppendAsync, AppendBatchAsync, GetLogsAsync, GetLogStatsAsync, GetLogsByLevelAsync, SearchLogsAsync, DeleteLogsAsync) from raw NpgsqlCommand/NpgsqlBatch to EF Core LINQ.
- Use OrchestratorDbContextFactory.Create pattern matching existing repos (PostgresArtifactRepository).
- Map between PackRunLogEntity and PackRunLog domain record.
- Use EF.Functions.ILike for SearchLogsAsync.
- Use ExecuteDeleteAsync for DeleteLogsAsync.
Completion criteria:
- [x] All 7 methods migrated to EF Core
- [x] Build succeeds with 0 errors
### T2 - Migrate PostgresAuditRepository read methods to EF Core
Status: DONE
Dependency: none
Owners: orchestrator-agent
Task description:
- Migrate 6 read methods (GetByIdAsync, ListAsync, GetBySequenceRangeAsync, GetLatestAsync, GetByResourceAsync, GetCountAsync) to EF Core LINQ.
- Keep 3 PL/pgSQL methods (AppendAsync, VerifyChainAsync, GetSummaryAsync) as raw SQL -- these call PostgreSQL functions.
- Use dynamic .Where() chaining for ListAsync and GetCountAsync filters.
- Map between AuditEntryEntity and AuditEntry domain record.
Completion criteria:
- [x] 6 read methods migrated to EF Core
- [x] 3 PL/pgSQL methods unchanged
- [x] Build succeeds with 0 errors
### T3 - Migrate PostgresLedgerRepository read methods to EF Core
Status: DONE
Dependency: none
Owners: orchestrator-agent
Task description:
- Migrate 7 read methods (GetByIdAsync, GetByRunIdAsync, ListAsync, GetBySequenceRangeAsync, GetLatestAsync, GetBySourceAsync, GetCountAsync) to EF Core LINQ.
- Keep 3 PL/pgSQL methods (AppendAsync, VerifyChainAsync, GetSummaryAsync) as raw SQL.
- Preserve PostgresLedgerExportRepository and PostgresManifestRepository classes in the same file unchanged.
- Map between RunLedgerEntryEntity and RunLedgerEntry domain record.
Completion criteria:
- [x] 7 read methods migrated to EF Core
- [x] 3 PL/pgSQL methods unchanged
- [x] Export and Manifest repos unchanged
- [x] Build succeeds with 0 errors
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-25 | Sprint created; all 3 tasks completed. Build passes with 0 errors, 0 warnings. | orchestrator-agent |
## Decisions & Risks
- Decision: Keep PL/pgSQL-dependent methods (AppendAsync, VerifyChainAsync, GetSummaryAsync) as raw SQL because EF Core cannot call custom PostgreSQL functions with the same transactional semantics (sequence allocation + hash chain update in single transaction).
- Decision: Removed dead SQL string constants from migrated repositories to reduce code surface.
- Decision: Used same entity mapping pattern as PostgresArtifactRepository (static MapXxx methods returning domain records).
- Risk: Compiled model (OrchestratorDbContextModel) may need regeneration if EF query shapes change at runtime. Mitigated by using DefaultSchema constant.
## Next Checkpoints
- Run Orchestrator test suite to confirm behavioral parity.

86
docs/implplan/SPRINT_20260225_115_Policy_dal_ef_wrapper_removal_crud_migration.md Normal file
View File

@@ -0,0 +1,86 @@
# Sprint 115 - Policy DAL EF Wrapper Removal & CRUD Migration
## Topic & Scope
- Migrate remaining pure-raw-SQL repositories in Policy.Persistence to EF Core.
- GateDecisionHistoryRepository, ReplayAuditRepository: full migration from NpgsqlConnection to PolicyDbContext.
- ExceptionRepository: migrate simple reads (GetById, GetByName, GetAll, Delete) to EF Core; keep raw SQL for complex methods (Create with RETURNING, regex-based queries, NOW() status transitions).
- Working directory: `src/Policy/__Libraries/StellaOps.Policy.Persistence/`.
- Expected evidence: green builds of Persistence project and Gateway/Persistence test projects.
## Dependencies & Concurrency
- PolicyDbContext already has DbSets and OnModelCreating for GateDecisionEntity, ReplayAuditEntity, ExceptionEntity.
- PolicyDbContextFactory already exists at `Postgres/PolicyDbContextFactory.cs`.
- No upstream sprints blocking; can run in parallel with Scanner and Orchestrator DAL sprints.
## Documentation Prerequisites
- `EfCore/Context/PolicyDbContext.cs` entity configurations.
- `Postgres/Repositories/SnapshotRepository.cs` as EF Core reference pattern.
- `StellaOps.Infrastructure.Postgres/Repositories/RepositoryBase.cs` for base class contract.
## Delivery Tracker
### T1 - Migrate GateDecisionHistoryRepository to EF Core
Status: DONE
Dependency: none
Owners: Implementer
Task description:
- Rewrote all 3 methods (GetDecisionsAsync, GetDecisionByIdAsync, RecordDecisionAsync) from raw NpgsqlConnection to EF Core LINQ.
- Changed constructor from `string connectionString` to `RepositoryBase<PolicyDataSource>` pattern matching SnapshotRepository.
- Dynamic `.Where()` chaining for filters (gateId, bomRef, gateStatus, actor, startDate, endDate).
- Continuation token pagination preserved with `.Skip()` + `.Take(limit + 1)`.
- `.AsNoTracking()` for all reads.
- Entity-to-record mapping via `MapToRecord()` helper.
Completion criteria:
- [x] All 3 methods migrated to EF Core
- [x] Interface unchanged
- [x] Build succeeds
### T2 - Migrate ReplayAuditRepository to EF Core
Status: DONE
Dependency: none
Owners: Implementer
Task description:
- Rewrote all 4 methods (RecordReplayAsync, QueryAsync, GetByIdAsync, GetMetricsAsync) from raw NpgsqlConnection to EF Core LINQ.
- Changed constructor from `string connectionString` to `RepositoryBase<PolicyDataSource>` pattern.
- GetMetricsAsync uses `.LongCountAsync()` for total/matches/mismatches and `.AverageAsync()` for avg duration with null-safe check.
- Dynamic `.Where()` chaining for all filter parameters.
Completion criteria:
- [x] All 4 methods migrated to EF Core
- [x] Interface unchanged
- [x] Build succeeds
### T3 - Migrate ExceptionRepository simple reads to EF Core
Status: DONE
Dependency: none
Owners: Implementer
Task description:
- Migrated GetByIdAsync, GetByNameAsync, GetAllAsync, DeleteAsync to EF Core LINQ.
- GetAllAsync uses `.Where()` with optional status filter + `.OrderBy().ThenBy().Skip().Take()`.
- DeleteAsync uses `.ExecuteDeleteAsync()`.
- Kept raw SQL for: CreateAsync (RETURNING *), GetActiveForProjectAsync (NOW()), GetActiveForRuleAsync (regex ~ operator), UpdateAsync, ApproveAsync, RevokeAsync, ExpireAsync (NOW() + status transitions).
Completion criteria:
- [x] 4 simple reads migrated to EF Core
- [x] Complex methods preserved as raw SQL
- [x] Interface unchanged
- [x] Build succeeds
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-25 | Sprint created; all 3 tasks implemented. | Implementer |
| 2026-02-25 | All builds green (Persistence, Gateway.Tests, Persistence.Tests). | Implementer |
## Decisions & Risks
- GateDecisionEntity.GateId is `required string` but original RecordDecisionAsync INSERT did not include gate_id column. Set to `string.Empty` to match original behavior where DB default would apply.
- ExceptionRepository: regex `~` operator and `NOW()` in SQL cannot be cleanly expressed in EF LINQ; kept raw SQL for those methods per task scope.
- Continuation token encoding (Base64 of offset long) preserved exactly to maintain API compatibility.
## Next Checkpoints
- Run integration tests when Postgres is available.
- Register GateDecisionHistoryRepository and ReplayAuditRepository in ServiceCollectionExtensions if not already done by consuming sprint.

101
docs/implplan/SPRINT_20260225_116_Scheduler_dal_ef_wrapper_removal_read_migration.md Normal file
View File

@@ -0,0 +1,101 @@
# Sprint 20260225_116 - Scheduler DAL EF Wrapper Removal & Read Migration
## Topic & Scope
- Audit all Scheduler repositories for dead RepositoryBase inheritance and migrate remaining simple reads to EF Core.
- Working directory: `src/Scheduler/__Libraries/StellaOps.Scheduler.Persistence/`.
- Expected evidence: code review findings, migration diffs (if any), build pass.
## Dependencies & Concurrency
- Upstream: SchedulerDbContext with 11 DbSets and full OnModelCreating config already exists.
- Safe to run in parallel with other module DAL sprints (Scanner, Orchestrator, Policy).
## Documentation Prerequisites
- `src/Scheduler/__Libraries/StellaOps.Scheduler.Persistence/EfCore/Context/SchedulerDbContext.cs`
- `src/__Libraries/StellaOps.Infrastructure.Postgres/Repositories/RepositoryBase.cs`
## Delivery Tracker
### TASK-1 - Verify and clean MetricsRepository
Status: DONE
Dependency: none
Owners: scheduler-agent
Task description:
- Review MetricsRepository for dead RepositoryBase inheritance.
Completion criteria:
- [x] Verified RepositoryBase methods used: `CreateCommand`, `AddParameter`, `AddJsonbParameter`, `QueryAsync` (for UpsertAsync, GetLatestAsync).
- [x] EF reads already in place: `GetAsync`, `GetByTenantAsync`, `DeleteOlderThanAsync`.
- [x] Conclusion: inheritance is NOT dead weight. No changes needed.
### TASK-2 - Verify and clean WorkerRepository
Status: DONE
Dependency: none
Owners: scheduler-agent
Task description:
- Review WorkerRepository for dead RepositoryBase inheritance.
Completion criteria:
- [x] Verified RepositoryBase methods used: `CreateCommand`, `AddParameter`, `AddTextArrayParameter`, `AddJsonbParameter` (for UpsertAsync, HeartbeatAsync, GetStaleWorkersAsync).
- [x] EF reads already in place: `GetByIdAsync`, `ListAsync`, `ListByStatusAsync`, `GetByTenantIdAsync`, `SetStatusAsync`, `DeleteAsync`.
- [x] Conclusion: inheritance is NOT dead weight. No changes needed.
### TASK-3 - Verify and clean TriggerRepository
Status: DONE
Dependency: none
Owners: scheduler-agent
Task description:
- Review TriggerRepository for dead RepositoryBase inheritance.
Completion criteria:
- [x] Verified RepositoryBase methods used: `CreateCommand`, `AddParameter`, `AddJsonbParameter`, `ExecuteAsync` (for CreateAsync, UpdateAsync, GetDueTriggersAsync, RecordFireAsync, RecordMisfireAsync).
- [x] EF reads already in place: `GetByIdAsync`, `GetByNameAsync`, `ListAsync`, `SetEnabledAsync`, `DeleteAsync`.
- [x] Conclusion: inheritance is NOT dead weight. No changes needed.
### TASK-4 - Migrate JobRepository simple reads to EF Core
Status: DONE
Dependency: none
Owners: scheduler-agent
Task description:
- Check if GetByIdAsync and GetByIdempotencyKeyAsync are already EF Core. If not, migrate them.
Completion criteria:
- [x] `GetByIdAsync` already uses EF Core (`dbContext.Jobs.AsNoTracking().FirstOrDefaultAsync(...)`).
- [x] `GetByIdempotencyKeyAsync` already uses EF Core (`dbContext.Jobs.AsNoTracking().FirstOrDefaultAsync(...)`).
- [x] All complex writes confirmed raw SQL: CreateAsync (enum cast), GetScheduledJobsAsync (HLC join), TryLeaseJobAsync, CompleteAsync, FailAsync (CASE), CancelAsync, RecoverExpiredLeasesAsync (CASE + NOW()), GetByStatusAsync (HLC join + enum cast), ExtendLeaseAsync.
- [x] Conclusion: no migration needed. Already hybrid EF+raw SQL.
### TASK-5 - Review RunRepository
Status: DONE
Dependency: none
Owners: scheduler-agent
Task description:
- Evaluate RunRepository for potential EF migration of simple reads.
Completion criteria:
- [x] Confirmed: No `RunEntity` exists in SchedulerDbContext. RunRepository uses domain model `Run` (from `StellaOps.Scheduler.Models`) with JSON serialization for complex fields (Trigger, Stats, Reason, Deltas).
- [x] `GetAsync` (simple point lookup) -- cannot migrate without entity mapping.
- [x] `ListByStateAsync` (simple WHERE) -- cannot migrate without entity mapping.
- [x] `ListAsync` (dynamic WHERE + cursor pagination) -- would stay raw SQL regardless.
- [x] `InsertAsync` (ON CONFLICT DO NOTHING) -- raw SQL.
- [x] `UpdateAsync` -- raw SQL.
- [x] Conclusion: skip. No clean entity mapping exists; domain model uses JSON serialization that would require a new entity + value converters. Out of scope for this sprint.
## Execution Log
| Date (UTC) | Update | Owner |
| --- | --- | --- |
| 2026-02-25 | Sprint created. All 5 repositories audited. | scheduler-agent |
| 2026-02-25 | All tasks DONE. All repos confirmed hybrid EF+raw SQL with justified RepositoryBase inheritance. No dead wrappers found. No migration opportunities (reads already EF where applicable; RunRepository has no entity mapping). | scheduler-agent |
## Decisions & Risks
- **Decision**: All five Scheduler repositories (Metrics, Worker, Trigger, Job, Run) actively use RepositoryBase helper methods (CreateCommand, AddParameter, AddJsonbParameter, QueryAsync, ExecuteAsync, etc.) for their raw SQL operations. Removing inheritance would require inlining all these helpers or creating a different abstraction, which provides no benefit.
- **Decision**: RunRepository migration skipped because `Run` is a domain model with complex JSON-serialized fields (RunTrigger, RunStats, RunReason, DeltaSummary), not an EF entity. Creating a RunEntity + value converters is a separate effort if desired.
- **Decision**: JobRepository reads (GetByIdAsync, GetByIdempotencyKeyAsync) already migrated to EF Core in a prior sprint. GetByStatusAsync stays raw SQL due to HLC join + enum cast.
- **Risk**: None identified. Current state is clean and consistent.
## Next Checkpoints
- None. Sprint complete.