stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity

Implement VEX document verification system with issuer management and signature verification

Browse Source 
- Added IIssuerDirectory interface for managing VEX document issuers, including methods for registration, revocation, and trust validation.
- Created InMemoryIssuerDirectory class as an in-memory implementation of IIssuerDirectory for testing and single-instance deployments.
- Introduced ISignatureVerifier interface for verifying signatures on VEX documents, with support for multiple signature formats.
- Developed SignatureVerifier class as the default implementation of ISignatureVerifier, allowing extensibility for different signature formats.
- Implemented handlers for DSSE and JWS signature formats, including methods for verification and signature extraction.
- Defined various records and enums for issuer and signature metadata, enhancing the structure and clarity of the verification process.
This commit is contained in:
StellaOps Bot
2025-12-06 13:41:22 +02:00
parent 2141196496
commit 5e514532df
112 changed files with 24861 additions and 211 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
docs/implplan/BLOCKED_DEPENDENCY_TREE.md
View File

@@ -892,8 +892,12 @@ LEDGER-AIRGAP-56-002 staleness spec + AirGap time anchors
| ~~CLI-401-007~~ | ~~Reachability evidence chain contract~~ ✅ UNBLOCKED (2025-12-04) | UI & CLI Guilds |
| ~~CLI-401-021~~ | ~~Reachability chain CI/attestor contract~~ ✅ UNBLOCKED (2025-12-04) | CLI/DevOps Guild |
| SVC-35-001 | Unspecified | Exporter Service Guild |
| VEX-30-001 | Unspecified | Console/BE-Base Guild |
| VULN-29-001 | Unspecified | Console/BE-Base Guild |
| VEX-30-001 | VEX Lens release images/digests not published in deploy/releases manifest (2025.09-stable) | Console/BE-Base Guild |
| VULN-29-001 | Findings Ledger / Vuln Explorer release images/digests missing from release manifests | Console/BE-Base Guild |
| DOWNLOADS-CONSOLE-23-001 | Console release artefacts/digests missing; cannot sign downloads manifest | DevOps Guild / Console Guild |
| DEPLOY-PACKS-42-001 | Packs registry / task-runner release artefacts absent; no digests to pin overlays | Packs Registry Guild / Deployment Guild |
| DEPLOY-PACKS-43-001 | Blocked by DEPLOY-PACKS-42-001; task-runner remote worker profiles depend on packs artefacts | Task Runner Guild / Deployment Guild |
| COMPOSE-44-003 | Base compose bundle (COMPOSE-44-001) service list/version pins not published; seed/wizard packaging cannot proceed | Deployment Guild |
| WEB-RISK-66-001 | npm ci hangs; Angular tests broken | BE-Base/Policy Guild |
| ~~CONCELIER-LNM-21-003~~ | ~~Requires #8 heuristics~~ ✅ DONE (2025-11-22) | Concelier Core Guild |