Align AOC tasks for Excititor and Concelier

docs/modules/zastava/AGENTS.md

@@ -1,22 +1,22 @@
-# Zastava agent guide
-
-## Mission
-Zastava monitors running workloads, verifies supply chain posture, and enforces runtime policy via Kubernetes admission webhooks.
-
-## Key docs
-- [Module README](./README.md)
-- [Architecture](./architecture.md)
-- [Implementation plan](./implementation_plan.md)
-- [Task board](./TASKS.md)
-
-## How to get started
-1. Open ../../implplan/SPRINTS.md and locate the stories referencing this module.
-2. Review ./TASKS.md for local follow-ups and confirm status transitions (TODO → DOING → DONE/BLOCKED).
-3. Read the architecture and README for domain context before editing code or docs.
-4. Coordinate cross-module changes in the main /AGENTS.md description and through the sprint plan.
-
-## Guardrails
-- Honour the Aggregation-Only Contract where applicable (see ../../ingestion/aggregation-only-contract.md).
-- Preserve determinism: sort outputs, normalise timestamps (UTC ISO-8601), and avoid machine-specific artefacts.
-- Keep Offline Kit parity in mind—document air-gapped workflows for any new feature.
+# Zastava agent guide
+
+## Mission
+Zastava monitors running workloads, verifies supply chain posture, and enforces runtime policy via Kubernetes admission webhooks.
+
+## Key docs
+- [Module README](./README.md)
+- [Architecture](./architecture.md)
+- [Implementation plan](./implementation_plan.md)
+- [Task board](./TASKS.md)
+
+## How to get started
+1. Open ../../implplan/SPRINTS.md and locate the stories referencing this module.
+2. Review ./TASKS.md for local follow-ups and confirm status transitions (TODO → DOING → DONE/BLOCKED).
+3. Read the architecture and README for domain context before editing code or docs.
+4. Coordinate cross-module changes in the main /AGENTS.md description and through the sprint plan.
+
+## Guardrails
+- Honour the Aggregation-Only Contract where applicable (see ../../ingestion/aggregation-only-contract.md).
+- Preserve determinism: sort outputs, normalise timestamps (UTC ISO-8601), and avoid machine-specific artefacts.
+- Keep Offline Kit parity in mind—document air-gapped workflows for any new feature.
 - Update runbooks/observability assets when operational characteristics change.

docs/modules/zastava/README.md

@@ -1,33 +1,33 @@
-# StellaOps Zastava
-
-Zastava monitors running workloads, verifies supply chain posture, and enforces runtime policy via Kubernetes admission webhooks.
-
-## Responsibilities
-- Observe node/container activity and emit runtime events.
-- Validate signatures, SBOM presence, and backend verdicts before allowing containers.
-- Buffer and replay events during disconnections.
-- Trigger delta scans when runtime posture drifts.
-
-## Key components
-- `StellaOps.Zastava.Observer` daemonset.
-- `StellaOps.Zastava.Webhook` admission controller.
-- Shared contracts in `StellaOps.Zastava.Core`.
-
-## Integrations & dependencies
-- Authority for OpToks and mTLS.
-- Scanner/Scheduler for remediation triggers.
-- Notify/UI for runtime alerts and dashboards.
-
-## Operational notes
-- Runbook ./operations/runtime.md with Grafana/Prometheus assets.
-- Offline kit assets bundling webhook charts.
-- DPoP/mTLS rotation guidance shared with Authority.
-
-## Related resources
-- ./operations/runtime.md
-- ./operations/runtime-grafana-dashboard.json
-- ./operations/runtime-prometheus-rules.yaml
-
-## Backlog references
-- ZASTAVA runtime tasks in ../../TASKS.md.
-- Webhook smoke tests tracked in src/Zastava/**/TASKS.md.
+# StellaOps Zastava
+
+Zastava monitors running workloads, verifies supply chain posture, and enforces runtime policy via Kubernetes admission webhooks.
+
+## Responsibilities
+- Observe node/container activity and emit runtime events.
+- Validate signatures, SBOM presence, and backend verdicts before allowing containers.
+- Buffer and replay events during disconnections.
+- Trigger delta scans when runtime posture drifts.
+
+## Key components
+- `StellaOps.Zastava.Observer` daemonset.
+- `StellaOps.Zastava.Webhook` admission controller.
+- Shared contracts in `StellaOps.Zastava.Core`.
+
+## Integrations & dependencies
+- Authority for OpToks and mTLS.
+- Scanner/Scheduler for remediation triggers.
+- Notify/UI for runtime alerts and dashboards.
+
+## Operational notes
+- Runbook ./operations/runtime.md with Grafana/Prometheus assets.
+- Offline kit assets bundling webhook charts.
+- DPoP/mTLS rotation guidance shared with Authority.
+
+## Related resources
+- ./operations/runtime.md
+- ./operations/runtime-grafana-dashboard.json
+- ./operations/runtime-prometheus-rules.yaml
+
+## Backlog references
+- ZASTAVA runtime tasks in ../../TASKS.md.
+- Webhook smoke tests tracked in src/Zastava/**/TASKS.md.

docs/modules/zastava/TASKS.md

@@ -1,9 +1,9 @@
-# Task board — Zastava
-
-> Local tasks should link back to ./AGENTS.md and mirror status updates into ../../TASKS.md when applicable.
-
-| ID | Status | Owner(s) | Description | Notes |
-|----|--------|----------|-------------|-------|
-| ZASTAVA-DOCS-0001 | TODO | Docs Guild | Validate that ./README.md aligns with the latest release notes. | See ./AGENTS.md |
-| ZASTAVA-OPS-0001 | TODO | Ops Guild | Review runbooks/observability assets after next sprint demo. | Sync outcomes back to ../../TASKS.md |
-| ZASTAVA-ENG-0001 | TODO | Module Team | Cross-check implementation plan milestones against ../../implplan/SPRINTS.md. | Update status via ./AGENTS.md workflow |
+# Task board — Zastava
+
+> Local tasks should link back to ./AGENTS.md and mirror status updates into ../../TASKS.md when applicable.
+
+| ID | Status | Owner(s) | Description | Notes |
+|----|--------|----------|-------------|-------|
+| ZASTAVA-DOCS-0001 | TODO | Docs Guild | Validate that ./README.md aligns with the latest release notes. | See ./AGENTS.md |
+| ZASTAVA-OPS-0001 | TODO | Ops Guild | Review runbooks/observability assets after next sprint demo. | Sync outcomes back to ../../TASKS.md |
+| ZASTAVA-ENG-0001 | TODO | Module Team | Cross-check implementation plan milestones against ../../implplan/SPRINTS.md. | Update status via ./AGENTS.md workflow |

docs/modules/zastava/implementation_plan.md

@@ -1,19 +1,19 @@
-# Implementation plan — Zastava
-
-## Current objectives
-- Maintain deterministic behaviour and offline parity across releases.
-- Keep documentation, telemetry, and runbooks aligned with the latest sprint outcomes.
-
-## Workstreams
-- Backlog grooming: reconcile open stories in ../../TASKS.md with this module's roadmap.
-- Implementation: collaborate with service owners to land feature work defined in SPRINTS/EPIC docs.
-- Validation: extend tests/fixtures to preserve determinism and provenance requirements.
-
-## Backlog references
-- ZASTAVA runtime tasks in ../../TASKS.md.
-- Webhook smoke tests tracked in src/Zastava/**/TASKS.md.
-
-## Coordination
-- Review ./AGENTS.md before picking up new work.
-- Sync with cross-cutting teams noted in ../../implplan/SPRINTS.md.
-- Update this plan whenever scope, dependencies, or guardrails change.
+# Implementation plan — Zastava
+
+## Current objectives
+- Maintain deterministic behaviour and offline parity across releases.
+- Keep documentation, telemetry, and runbooks aligned with the latest sprint outcomes.
+
+## Workstreams
+- Backlog grooming: reconcile open stories in ../../TASKS.md with this module's roadmap.
+- Implementation: collaborate with service owners to land feature work defined in SPRINTS/EPIC docs.
+- Validation: extend tests/fixtures to preserve determinism and provenance requirements.
+
+## Backlog references
+- ZASTAVA runtime tasks in ../../TASKS.md.
+- Webhook smoke tests tracked in src/Zastava/**/TASKS.md.
+
+## Coordination
+- Review ./AGENTS.md before picking up new work.
+- Sync with cross-cutting teams noted in ../../implplan/SPRINTS.md.
+- Update this plan whenever scope, dependencies, or guardrails change.