work
This commit is contained in:
StellaOps Bot
25
docs/modules/cli/guides/commands/advisory.md
Normal file
25
docs/modules/cli/guides/commands/advisory.md
Normal file
@@ -0,0 +1,25 @@
|
||||
# stella advisory — Command Guide
|
||||
|
||||
## Commands
|
||||
- `stella advisory list --source <provider> [--status <status>] [--output json|ndjson|table] [--offline]`
|
||||
- `stella advisory get --id <advisoryId> [--output json|table] [--offline]`
|
||||
- `stella advisory export --bundle <path> [--offline]`
|
||||
|
||||
## Flags (common)
|
||||
- `--offline`: pull from cached advisory snapshots/mirror bundles only; exit code 5 if remote needed.
|
||||
- `--source`: provider filter (msrc, nvd, osv, csaf, etc.).
|
||||
- `--status`: affected, fixed, not_affected, withdrawn, disputed.
|
||||
- `--output`: json (default), ndjson, table.
|
||||
|
||||
## Inputs/outputs
|
||||
- Inputs: Concelier/Excititor advisory projections; cached mirror bundles when offline.
|
||||
- Outputs: raw evidence with provenance (`observationId`, `linksetId`, signatures); no merging/inference.
|
||||
- Exit codes per `output-and-exit-codes.md`; not found → 4, offline violation → 5.
|
||||
|
||||
## Determinism rules
|
||||
- Sorted by advisory key; withdrawn/duplicate handling matches upstream evidence; no severity inference.
|
||||
- Timestamps UTC; hashes lowercase hex.
|
||||
|
||||
## Offline/air-gap notes
|
||||
- Mirror bundles must be preloaded for offline use; CLI verifies signatures against trust roots.
|
||||
- Export uses local evidence only; produces deterministic bundle with manifest + checksums.
|
||||
Reference in New Issue
Block a user