stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity

up
Some checks failed
AOC Guard CI / aoc-guard (push) Has been cancelled
Details
AOC Guard CI / aoc-verify (push) Has been cancelled
Details
Docs CI / lint-and-preview (push) Has been cancelled
Details
Policy Lint & Smoke / policy-lint (push) Has been cancelled
Details

Browse Source
This commit is contained in:
StellaOps Bot
2025-12-01 21:16:22 +02:00
parent c11d87d252
commit 909d9b6220
208 changed files with 860954 additions and 832 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
samples/graph/scripts/generate-fixture-plan.md
View File

@@ -1,18 +1,24 @@
# Generation driver (stub) — SAMPLES-GRAPH-24-003
# Interim & final fixture generation — SAMPLES-GRAPH-24-003
> Blocked: overlay schema + mock SBOM bundle list pending. Script outline only.
## Current status
- Interim synthetic fixtures (50k/100k) are generated via `samples/graph/interim/generate.py` (deterministic, hashes in manifest). Use these for BENCH-GRAPH-21-001/002 until overlay schema is finalized.
- Canonical fixture remains blocked on overlay field confirmation from Graph Guild.
## Outline
1) Input bundle(s): scanner surface mock bundle v1 (or real caches when available).
2) Deterministic seeding: `RANDOM_SEED=424242`; time source frozen at `2025-11-22T00:00:00Z`.
3) Steps (once unblocked):
- Parse SBOM mock bundle, expand to node/edge sets following Graph schema.
- Generate policy overlay snapshot with placeholder verdicts until final fields confirmed.
## Plan for canonical fixture
1) **Inputs:** scanner surface mock bundle v1 (or real caches when cleared), overlay schema from Graph Guild, tenant `demo-tenant`.
2) **Determinism:** `RANDOM_SEED=424242`, timestamps frozen to `2025-11-22T00:00:00Z`, UTF-8, sorted keys/rows.
3) **Generation steps (once unblocked):**
- Parse mock SBOM bundle → node/edge sets per Graph schema.
- Generate policy overlay snapshot using final overlay fields; include verdict, ruleId, severity, provenance hash.
- Write NDJSON (`nodes.ndjson`, `edges.ndjson`, `overlays/policy.ndjson`) sorted by `id`.
- Emit `manifest.json` with SHA-256, counts, timestamps.
- Add `verify.sh` to recompute hashes and validate counts.
- Emit `manifest.json` with SHA-256, counts, timestamps; DSSE-sign manifest for offline kits.
- Add `verify.sh` to recompute hashes and validate counts/overlay fields.
## TODO when unblocked
- Fill overlay field mapping once Graph Guild confirms schema (checkpoint 2025-11-22).
- Confirm allowed mock SBOM source list with SBOM / Graph guilds.
- Implement generator script in Python or C# (deterministic ordering, no network access).
## TODO to unblock
- Receive overlay field mapping + file naming from Graph Guild (was due 2025-11-22).
- Confirm allowed mock SBOM source list and artifact naming (Graph Guild / SBOM Service Guild).
- Provide expected node/edge cardinality breakdown to guide generation.
## Scripts
- Interim: `samples/graph/interim/generate.py`
- Canonical (to write): `samples/graph/scripts/generate-canonical.py` + `verify.sh` (DSSE + hash check), once schema confirmed.