feat: Implement IsolatedReplayContext for deterministic audit replay

- Added IsolatedReplayContext class to provide an isolated environment for replaying audit bundles without external calls. - Introduced methods for initializing the context, verifying input digests, and extracting inputs for policy evaluation. - Created supporting interfaces and options for context configuration. feat: Create ReplayExecutor for executing policy re-evaluation and verdict comparison - Developed ReplayExecutor class to handle the execution of replay processes, including input verification and verdict comparison. - Implemented detailed drift detection and error handling during replay execution. - Added interfaces for policy evaluation and replay execution options. feat: Add ScanSnapshotFetcher for fetching scan data and snapshots - Introduced ScanSnapshotFetcher class to retrieve necessary scan data and snapshots for audit bundle creation. - Implemented methods to fetch scan metadata, advisory feeds, policy snapshots, and VEX statements. - Created supporting interfaces for scan data, feed snapshots, and policy snapshots.
2025-12-23 07:46:34 +02:00
parent e47627cfff
commit 7e384ab610
77 changed files with 153346 additions and 209 deletions
--- a/src/Cli/plugins/cli/StellaOps.Cli.Plugins.Aoc/stellaops.cli.plugins.aoc.manifest.json
+++ b/src/Cli/plugins/cli/StellaOps.Cli.Plugins.Aoc/stellaops.cli.plugins.aoc.manifest.json
@@ -0,0 +1,20 @@
+{
+  "schemaVersion": "1.0",
+  "id": "stellaops.cli.plugins.aoc",
+  "displayName": "AOC Verification Plugin",
+  "version": "1.0.0",
+  "requiresRestart": true,
+  "entryPoint": {
+    "type": "dotnet",
+    "assembly": "StellaOps.Cli.Plugins.Aoc.dll",
+    "typeName": "StellaOps.Cli.Plugins.Aoc.AocCliCommandModule"
+  },
+  "capabilities": [
+    "aoc-verify"
+  ],
+  "metadata": {
+    "description": "Provides AOC (Append-Only Contract) verification commands for the stella CLI",
+    "sprint": "SPRINT_5100_0001_0001_mongodb_cli_cleanup_consolidation",
+    "task": "T2.3"
+  }
+}
--- a/src/Cli/plugins/cli/StellaOps.Cli.Plugins.Symbols/stellaops.cli.plugins.symbols.manifest.json
+++ b/src/Cli/plugins/cli/StellaOps.Cli.Plugins.Symbols/stellaops.cli.plugins.symbols.manifest.json
@@ -0,0 +1,23 @@
+{
+  "schemaVersion": "1.0",
+  "id": "stellaops.cli.plugins.symbols",
+  "displayName": "Symbols Plugin",
+  "version": "1.0.0",
+  "requiresRestart": true,
+  "entryPoint": {
+    "type": "dotnet",
+    "assembly": "StellaOps.Cli.Plugins.Symbols.dll",
+    "typeName": "StellaOps.Cli.Plugins.Symbols.SymbolsCliCommandModule"
+  },
+  "capabilities": [
+    "symbols-ingest",
+    "symbols-upload",
+    "symbols-verify",
+    "symbols-health"
+  ],
+  "metadata": {
+    "description": "Provides symbol ingestion and management commands for the stella CLI",
+    "sprint": "SPRINT_5100_0001_0001_mongodb_cli_cleanup_consolidation",
+    "task": "T2.4"
+  }
+}