stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

product advisories add change contiang folder

Browse Source
This commit is contained in:
Codex Assistant
2026-01-08 09:06:03 +02:00
parent ae6968d23f
commit 8f0320edd5
599 changed files with 1110 additions and 565 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
docs/modules/policy/architecture.md
View File

@@ -682,13 +682,13 @@ stella exception status <request-id>
The following product advisories provide strategic context for Policy Engine features:
- **[Consolidated: Diff-Aware Release Gates and Risk Budgets](../../product-advisories/CONSOLIDATED%20-%20Diff-Aware%20Release%20Gates%20and%20Risk%20Budgets.md)** Master reference for risk budgets, delta verdicts, VEX trust scoring, and release gate policies. Key sections:
- **[Consolidated: Diff-Aware Release Gates and Risk Budgets](../../product/advisories/CONSOLIDATED%20-%20Diff-Aware%20Release%20Gates%20and%20Risk%20Budgets.md)** Master reference for risk budgets, delta verdicts, VEX trust scoring, and release gate policies. Key sections:
- §2 Risk Budget Model: Service tier definitions and RP scoring formulas
- §4 Delta Verdict Engine: Deterministic evaluation pipeline and replay contract
- §5 Smart-Diff Algorithm: Material risk change detection rules
- §7 VEX Trust Scoring: Confidence/freshness lattice for VEX source weighting
- **[Consolidated: Deterministic Evidence and Verdict Architecture](../../product-advisories/CONSOLIDATED%20-%20Deterministic%20Evidence%20and%20Verdict%20Architecture.md)** Master reference for determinism guarantees, canonical serialization, and signing. Key sections:
- **[Consolidated: Deterministic Evidence and Verdict Architecture](../../product/advisories/CONSOLIDATED%20-%20Deterministic%20Evidence%20and%20Verdict%20Architecture.md)** Master reference for determinism guarantees, canonical serialization, and signing. Key sections:
- §3 Canonical Serialization: RFC 8785 JCS + Unicode NFC rules
- §5 Signing & Attestation: Keyless signing with Sigstore
- §6 Proof-Carrying Reachability: Minimal proof chains
@@ -696,7 +696,7 @@ The following product advisories provide strategic context for Policy Engine fea
- **[Determinism Specification](../../technical/architecture/determinism-specification.md)** Technical specification for all digest algorithms (VerdictId, EvidenceId, GraphRevisionId, ManifestId) and canonicalization rules.
- **[Smart-Diff Technical Reference](../../product-advisories/archived/2025-12-21-moat-gap-closure/14-Dec-2025%20-%20Smart-Diff%20Technical%20Reference.md)** Detailed algorithm specifications for reachability gates, delta computation, and call-stack analysis.
- **[Smart-Diff Technical Reference](../../product/advisories/archived/2025-12-21-moat-gap-closure/14-Dec-2025%20-%20Smart-Diff%20Technical%20Reference.md)** Detailed algorithm specifications for reachability gates, delta computation, and call-stack analysis.
---

2
docs/modules/policy/contracts/spine-versioning-plan.md
View File

@@ -79,4 +79,4 @@ Establish versioned spine API/DTO schemas with migration rules, determinism guar
## Links
- Sprint: `docs/implplan/SPRINT_0186_0001_0001_record_deterministic_execution.md` (SP1SP10)
- Advisory: `docs/product-advisories/31-Nov-2025 FINDINGS.md`
- Advisory: `docs/product/advisories/31-Nov-2025 FINDINGS.md`

2
docs/modules/policy/cvss-v4.md
View File

@@ -1,6 +1,6 @@
# CVSS v4.0 Receipts Hardening Guide
Source advisory: `docs/product-advisories/25-Nov-2025 - Add CVSSv4.0 Score Receipts for Transparency.md` (CV1CV10). This guide turns the gaps into implementable rules for Sprint 0190.
Source advisory: `docs/product/advisories/25-Nov-2025 - Add CVSSv4.0 Score Receipts for Transparency.md` (CV1CV10). This guide turns the gaps into implementable rules for Sprint 0190.
## Canonical hashing (CV2)
- Serializer: JSON Canonicalization Scheme (JCS).

2
docs/modules/policy/guides/score-policy-yaml.md
View File

@@ -287,5 +287,5 @@ Future schema versions (e.g., `score.v2`) will include migration guides and back
## Related Documentation
- [Architecture Overview](../ARCHITECTURE_OVERVIEW.md)
- [Determinism Technical Reference](../product-advisories/14-Dec-2025%20-%20Determinism%20and%20Reproducibility%20Technical%20Reference.md)
- [Determinism Technical Reference](../product/advisories/14-Dec-2025%20-%20Determinism%20and%20Reproducibility%20Technical%20Reference.md)
- [Policy Engine Architecture](../modules/policy/architecture.md)