stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

save checkpoint

Browse Source
This commit is contained in:
master
2026-02-12 21:02:43 +02:00
parent 5bca406787
commit 9911b7d73c
593 changed files with 174390 additions and 1376 deletions
Download Patch File Download Diff File Expand all files Collapse all files

174
docs/qa/feature-checks/state/scanner.json
View File

@@ -1,7 +1,7 @@
{
{
"module": "scanner",
"featureCount": 147,
"lastUpdatedUtc": "2026-02-12T08:11:16.2163691Z",
"lastUpdatedUtc": "2026-02-12T12:30:00Z",
"features": {
"3-bit-reachability-gate": {
"status": "blocked",
@@ -106,123 +106,151 @@
]
},
"binary-intelligence-engine": {
"status": "checking",
"tier": 0,
"status": "done",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": true,
"skipReason": null,
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T08:11:16.2163691Z",
"featureFile": "docs/features/unchecked/scanner/binary-intelligence-engine.md",
"lastRunId": "run-002",
"lastUpdatedUtc": "2026-02-12T08:59:11.1398705Z",
"featureFile": "docs/features/checked/scanner/binary-intelligence-engine.md",
"notes": [
"[2026-02-12T08:11:16.2163691Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for binary-intelligence-engine in scanner module."
"[2026-02-12T08:11:16.2163691Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for binary-intelligence-engine in scanner module.",
"[2026-02-12T08:47:47.2005898+00:00] failed: Tier 1 code review and Tier 2 semantic checks failed; worker binary intelligence path self-indexes same-binary functions, route contract differs (/entrytrace vs /entry-trace), and risk-scoring wiring is not integrated in entry-trace execution path.",
"[2026-02-12T08:47:47.2005898+00:00] triaged: Classified as missing_code based on EntryTraceExecutionService corpus self-index behavior, route contract mismatch, and absent IRiskScorer/CompositeRiskScorer runtime wiring.",
"[2026-02-12T08:47:47.2005898+00:00] confirmed: run-001 endpoint/worker behavioral evidence confirms binaryIntelligence payload presence but incomplete feature-contract semantics for corpus-backed matching and risk integration.",
"[2026-02-12T08:47:47.2005898+00:00] not_implemented: Moved feature doc to docs/features/unimplemented/scanner/binary-intelligence-engine.md after run-001 verification.",
"[2026-02-12T08:59:11.1398705Z] done: run-002 passed Tier 1/Tier 2 with corrected evidence capture and binary intelligence wiring across worker graph enrichment, serializer/storage round-trip, and entry-trace endpoint contract."
]
},
"binary-sbom-and-build-id-to-purl-mapping": {
"status": "queued",
"tier": 0,
"status": "done",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": true,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"featureFile": "docs/features/unchecked/scanner/binary-sbom-and-build-id-to-purl-mapping.md",
"lastRunId": "run-002",
"lastUpdatedUtc": "2026-02-12T09:16:52.7919352Z",
"featureFile": "docs/features/checked/scanner/binary-sbom-and-build-id-to-purl-mapping.md",
"notes": [
"[2026-02-12T08:48:38.0431286+00:00] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for binary-sbom-and-build-id-to-purl-mapping in scanner module.",
"[2026-02-12T09:16:52.7919352Z] done: run-002 passed Tier 0/1/2; wired patch verification DI+execution, build-id batch lookup output mapping, and unified binary finding mapping in worker binary lookup stage; dossier moved to docs/features/checked/scanner/binary-sbom-and-build-id-to-purl-mapping.md."
]
},
"bug-id-to-cve-mapping-in-changelog-parsing": {
"status": "queued",
"tier": 0,
"status": "done",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": true,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"featureFile": "docs/features/unchecked/scanner/bug-id-to-cve-mapping-in-changelog-parsing.md",
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T09:37:03.9434306Z",
"featureFile": "docs/features/checked/scanner/bug-id-to-cve-mapping-in-changelog-parsing.md",
"notes": [
"[2026-02-12T09:27:00.1278887Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for bug-id-to-cve-mapping-in-changelog-parsing in scanner module.",
"[2026-02-12T09:27:25.8933229Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for bug-id-to-cve-mapping-in-changelog-parsing in scanner module.",
"[2026-02-12T09:29:44.8763608Z] skipped: owned_by_other_agent; feature is already marked DOING in docs/implplan/SPRINT_20260212_002_Scanner_unchecked_feature_verification_batch1.md and src/Scanner/__Tests/StellaOps.Scanner.Analyzers.OS.Tests/TASKS.md, so this lane avoids conflicting concurrent edits per FLOW 0.1.",
"[2026-02-12T09:37:03.9434306Z] done: run-001 passed Tier 0/1/2 after implementing deterministic changelog bug reference extraction (`Closes`, `RHBZ`, `LP`) and RPM/DPKG bug-to-CVE metadata wiring; dossier moved to docs/features/checked/scanner/bug-id-to-cve-mapping-in-changelog-parsing.md."
]
},
"build-provenance-verification-module-with-slsa-level-evaluator": {
"status": "queued",
"tier": 0,
"status": "not_implemented",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": false,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"featureFile": "docs/features/unchecked/scanner/build-provenance-verification-module-with-slsa-level-evaluator.md",
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T09:37:15.2453630Z",
"featureFile": "docs/features/unimplemented/scanner/build-provenance-verification-module-with-slsa-level-evaluator.md",
"notes": [
"[2026-02-12T09:31:18.8805672Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for build-provenance-verification-module-with-slsa-level-evaluator in scanner module.",
"[2026-02-12T09:37:15.2453630Z] failed: Tier 1 code-review and Tier 2 semantic checks failed; worker BuildProvenance stage skips no-provenance artifacts instead of emitting L0-equivalent provenance analysis output.",
"[2026-02-12T09:37:15.2453630Z] triaged: Classified as missing_code because BuildProvenanceStageExecutor returns before invoking analyzer when parsed SBOM lacks buildInfo/formulation, bypassing MissingBuildProvenance/SlsaLevel.None reporting path.",
"[2026-02-12T09:37:15.2453630Z] confirmed: run-001 behavioral evidence shows library-level SLSA/builder/reproducibility logic passes, but runtime worker-stage no-provenance contract parity and stage coverage are incomplete.",
"[2026-02-12T09:37:15.2453630Z] not_implemented: Moved feature doc to docs/features/unimplemented/scanner/build-provenance-verification-module-with-slsa-level-evaluator.md after run-001 verification."
]
},
"bun-call-graph-extractor": {
"status": "queued",
"tier": 0,
"status": "not_implemented",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": false,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"featureFile": "docs/features/unchecked/scanner/bun-call-graph-extractor.md",
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T10:10:57.1486359Z",
"featureFile": "docs/features/unimplemented/scanner/bun-call-graph-extractor.md",
"notes": [
"[2026-02-12T10:04:49.5601905Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for bun-call-graph-extractor in scanner module.",
"[2026-02-12T10:10:57.1486359Z] failed: Tier 1 code-review and Tier 2 semantic checks failed; Bun extractor exists but runtime DI registration and source-mode edge-linking behavior do not meet feature contract.",
"[2026-02-12T10:10:57.1486359Z] triaged: Classified as missing_code because AddCallGraphServices omits BunCallGraphExtractor registration and source-path extraction emits nodes/sinks without entrypoint-to-sink edges.",
"[2026-02-12T10:10:57.1486359Z] confirmed: run-001 behavior tests validate Bun extractor positive/negative paths, but semantic parity fails for runtime registration and linked graph expectations.",
"[2026-02-12T10:10:57.1486359Z] not_implemented: Moved feature doc to docs/features/unimplemented/scanner/bun-call-graph-extractor.md after run-001 verification."
]
},
"bun-language-analyzer": {
"status": "queued",
"tier": 0,
"status": "not_implemented",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": false,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"featureFile": "docs/features/unchecked/scanner/bun-language-analyzer.md",
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T10:21:16.6300901Z",
"featureFile": "docs/features/unimplemented/scanner/bun-language-analyzer.md",
"notes": [
"[2026-02-12T10:11:27.3355476Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for bun-language-analyzer in scanner module.",
"[2026-02-12T10:21:16.6300901Z] failed: Tier 1 Bun analyzer suite failed (17/115) and code-review parity failed; bun.lockb contract is remediation-only while feature claims binary parsing support.",
"[2026-02-12T10:21:16.6300901Z] triaged: Classified as missing_code; Bun analyzer explicitly routes bun.lockb-only projects to unsupported remediation flow instead of binary lockfile package parsing.",
"[2026-02-12T10:21:16.6300901Z] confirmed: Tier 2 targeted checks captured negative-path remediation pass and positive deterministic parity failure for standard bun.lock fixtures.",
"[2026-02-12T10:21:16.6300901Z] not_implemented: Moved feature doc to docs/features/unimplemented/scanner/bun-language-analyzer.md after run-001 verification."
]
},
"byos-ingestion-workflow": {
"status": "queued",
"tier": 0,
"status": "done",
"tier": 2,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"sourceVerified": true,
"buildVerified": true,
"e2eVerified": true,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"featureFile": "docs/features/unchecked/scanner/byos-ingestion-workflow.md",
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T10:36:24.0990544Z",
"featureFile": "docs/features/checked/scanner/byos-ingestion-workflow.md",
"notes": [
"[2026-02-12T10:22:11.9130923Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for byos-ingestion-workflow in scanner module.",
"[2026-02-12T10:36:24.0990544Z] failed: Tier 1/Tier 2 API behavior checks initially returned HTTP 500 for SBOM uploads due artifact_boms schema mismatch in PostgresArtifactBomRepository during BYOS ingestion path.",
"[2026-02-12T10:36:24.0990544Z] triaged: Classified as bug/config-parity issue; artifact_boms migrations/functions are bound to scanner schema while repository used dynamic data-source schema names.",
"[2026-02-12T10:36:24.0990544Z] confirmed: Focused endpoint behavioral tests reproduced failure for both CycloneDX and SPDX uploads with missing relation errors before fix.",
"[2026-02-12T10:36:24.0990544Z] fixing: Aligned PostgresArtifactBomRepository schema contract to default scanner schema and added focused SbomUploadEndpointsTests API coverage for positive/negative BYOS paths.",
"[2026-02-12T10:36:24.0990544Z] retesting: Rebuilt WebService + tests and re-ran SbomUploadEndpointsTests plus Tier 2 single-method API interactions; all checks passed (3/3 class tests, 3/3 Tier2 method runs).",
"[2026-02-12T10:36:24.0990544Z] done: run-001 passed Tier 0/1/2 with fresh artifacts; dossier moved to docs/features/checked/scanner/byos-ingestion-workflow.md."
]
},
"canonical-node-hash-and-path-hash-recipes-for-reachability": {
"status": "queued",
"status": "skipped",
"tier": 0,
"retryCount": 0,
"sourceVerified": null,
"buildVerified": null,
"e2eVerified": null,
"skipReason": null,
"lastRunId": null,
"lastUpdatedUtc": "2026-02-12T05:53:21.2346134Z",
"skipReason": "owned_by_other_agent",
"lastRunId": "run-001",
"lastUpdatedUtc": "2026-02-12T12:30:00Z",
"featureFile": "docs/features/unchecked/scanner/canonical-node-hash-and-path-hash-recipes-for-reachability.md",
"notes": [
"[2026-02-12T10:38:15.4205008Z] checking: Ownership claim by Codex (QA agent); started run-001 Tier 0/1/2 verification for canonical-node-hash-and-path-hash-recipes-for-reachability in scanner module.",
"[2026-02-12T12:30:00Z] skipped: Owned by Codex QA agent in another session. Marking skipped with owned_by_other_agent to unblock gateway feature verification."
]
},
"cbom-cryptographic-bill-of-materials-analysis-with-post-quantum-readiness-assess": {
@@ -2229,7 +2257,7 @@
}
},
"summary": {
"queued": 139,
"queued": 132,
"checking": 1,
"passed": 0,
"failed": 0,
@@ -2237,9 +2265,9 @@
"confirmed": 0,
"fixing": 0,
"retesting": 0,
"done": 6,
"done": 10,
"blocked": 1,
"skipped": 0,
"not_implemented": 0
"not_implemented": 3
}
}