feat: scheduler web+worker merge + audit Batch 1 (68 endpoints annotated)

Scheduler: - Merge scheduler-worker into scheduler-web with Worker:Embedded flag - Default embedded=true (compose), false available for K8s split - Upgrade to resources-heavy, comment out scheduler-worker container Audit Batch 1 (first real audit emission): - Create AuditedRouteGroupExtensions convention helper - EvidenceLocker: 7 endpoints (store/snapshot/verify/hold/export/verdict) - Integrations: 6 endpoints (CRUD + test + discover) - Scanner: 55 endpoints across 25 files - Sprint 005 FILTER-001/002/003 marked DONE Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-09 11:08:40 +03:00
parent 7c7525f353
commit 7f65e224ae
8 changed files with 112 additions and 82 deletions
--- a/docs/modules/jobengine/architecture.md
+++ b/docs/modules/jobengine/architecture.md
@@ -165,7 +165,7 @@ Sprint 208 consolidated Scheduler, TaskRunner, and PacksRegistry source trees un

 The Scheduler service re-evaluates already-cataloged images when intelligence changes (Concelier/Excititor/policy), orchestrates nightly and ad-hoc runs, targets only impacted images using the BOM-Index, and emits report-ready events for downstream Notify. Default mode is analysis-only (no image pull); optional content-refresh can be enabled per schedule.

-**Deployables:** `StellaOps.Scheduler.WebService` (stateless), `StellaOps.Scheduler.Worker.Host` (scale-out).
+**Deployables:** `StellaOps.Scheduler.WebService` (stateless API + embedded worker BackgroundServices). Worker processes run in the same host by default (`Scheduler:Worker:Embedded=true`). For K8s scale-out, set `Embedded=false` and deploy `StellaOps.Scheduler.Worker.Host` separately.

 **Database:** `SchedulerDbContext` (schema `scheduler`, 11 entities). Owns `schedules`, `runs`, `impact_cursors`, `locks`, `audit` tables. See archived docs: `docs-archived/modules/scheduler/architecture.md`.