consolidation of some of the modules, localization fixes, product advisories work, qa work
This commit is contained in:
master
@@ -16,11 +16,26 @@ Manage the attestation and proof chain infrastructure for StellaOps:
|
||||
- Keep proof chain storage schema current with migrations.
|
||||
|
||||
## Key Components
|
||||
|
||||
### Attestor (transparency logging and verification)
|
||||
- **StellaOps.Attestor**: Main attestation service and REST API endpoints
|
||||
- **StellaOps.Attestor.Envelope**: DSSE envelope handling and serialization
|
||||
- **StellaOps.Attestor.Types**: Core attestation models and schemas
|
||||
- **StellaOps.Attestor.Verify**: Verification engine for signatures and Rekor proofs
|
||||
- **__Libraries**: Shared attestation utilities and storage abstractions
|
||||
- **__Libraries/StellaOps.Attestor.***: Shared attestation utilities and storage abstractions
|
||||
|
||||
### Signer (cryptographic signing -- trust domain co-located, Sprint 204)
|
||||
- **StellaOps.Signer/StellaOps.Signer.Core**: Signing pipeline, predicate types, DSSE statement builder
|
||||
- **StellaOps.Signer/StellaOps.Signer.Infrastructure**: Redis/cache/HTTP infrastructure for signing
|
||||
- **StellaOps.Signer/StellaOps.Signer.WebService**: REST API (`/api/v1/signer/sign/dsse`)
|
||||
- **__Libraries/StellaOps.Signer.KeyManagement**: Key rotation, trust anchors, HSM/KMS bindings (separate DB schema)
|
||||
- **__Libraries/StellaOps.Signer.Keyless**: Fulcio/Sigstore keyless signing support
|
||||
|
||||
### Provenance (attestation library -- trust domain co-located, Sprint 204)
|
||||
- **StellaOps.Provenance.Attestation**: SLSA/DSSE attestation generation library
|
||||
- **StellaOps.Provenance.Attestation.Tool**: Forensic verification CLI tool
|
||||
|
||||
### Tests
|
||||
- **__Tests**: Integration tests with Testcontainers for PostgreSQL
|
||||
|
||||
## Required Reading
|
||||
|
||||
Reference in New Issue
Block a user