notify doctors work, audit work, new product advisory sprints
This commit is contained in:
master
@@ -268,7 +268,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 243 | AUDIT-0081-A | TODO | Approved 2026-01-12 | Guild | src/__Libraries/StellaOps.Evidence.Persistence/StellaOps.Evidence.Persistence.csproj - APPLY |
|
||||
| 244 | AUDIT-0082-M | DONE | Revalidated 2026-01-08 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - MAINT |
|
||||
| 245 | AUDIT-0082-T | DONE | Revalidated 2026-01-08 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - TEST |
|
||||
| 246 | AUDIT-0082-A | TODO | Approved 2026-01-12 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - APPLY |
|
||||
| 246 | AUDIT-0082-A | DONE | Applied 2026-01-13 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - APPLY |
|
||||
| 247 | AUDIT-0083-M | DONE | Revalidated 2026-01-08 (test project) | Guild | src/__Libraries/StellaOps.Facet.Tests/StellaOps.Facet.Tests.csproj - MAINT |
|
||||
| 248 | AUDIT-0083-T | DONE | Revalidated 2026-01-08 (test project) | Guild | src/__Libraries/StellaOps.Facet.Tests/StellaOps.Facet.Tests.csproj - TEST |
|
||||
| 249 | AUDIT-0083-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/__Libraries/StellaOps.Facet.Tests/StellaOps.Facet.Tests.csproj - APPLY |
|
||||
@@ -1447,7 +1447,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1422 | AUDIT-0474-A | TODO | Approved 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Tests/StellaOps.ExportCenter.Tests.csproj - APPLY |
|
||||
| 1423 | AUDIT-0475-M | DONE | Revalidated 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - MAINT |
|
||||
| 1424 | AUDIT-0475-T | DONE | Revalidated 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - TEST |
|
||||
| 1425 | AUDIT-0475-A | TODO | Approved 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - APPLY |
|
||||
| 1425 | AUDIT-0475-A | DONE | Applied 2026-01-13; determinism, DI guards, retention/TLS gating, tests added | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - APPLY |
|
||||
| 1426 | AUDIT-0476-M | DONE | Revalidated 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Worker/StellaOps.ExportCenter.Worker.csproj - MAINT |
|
||||
| 1427 | AUDIT-0476-T | DONE | Revalidated 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Worker/StellaOps.ExportCenter.Worker.csproj - TEST |
|
||||
| 1428 | AUDIT-0476-A | TODO | Approved 2026-01-12 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Worker/StellaOps.ExportCenter.Worker.csproj - APPLY |
|
||||
@@ -1951,10 +1951,10 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1926 | AUDIT-0642-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Bun/StellaOps.Scanner.Analyzers.Lang.Bun.csproj - APPLY |
|
||||
| 1927 | AUDIT-0643-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - MAINT |
|
||||
| 1928 | AUDIT-0643-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - TEST |
|
||||
| 1929 | AUDIT-0643-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - APPLY |
|
||||
| 1929 | AUDIT-0643-A | DONE | Applied 2026-01-13; runtime trace hardening, deterministic ordering, TimeProvider injection, JSON encoder updates, tests added | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - APPLY |
|
||||
| 1930 | AUDIT-0644-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - MAINT |
|
||||
| 1931 | AUDIT-0644-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - TEST |
|
||||
| 1932 | AUDIT-0644-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - APPLY |
|
||||
| 1932 | AUDIT-0644-A | DONE | Applied 2026-01-12; invariant culture metadata, TimeProvider injection, XML resolver disabled, tests added; capability scanner findings are string literals | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - APPLY |
|
||||
| 1933 | AUDIT-0645-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Go/StellaOps.Scanner.Analyzers.Lang.Go.csproj - MAINT |
|
||||
| 1934 | AUDIT-0645-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Go/StellaOps.Scanner.Analyzers.Lang.Go.csproj - TEST |
|
||||
| 1935 | AUDIT-0645-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Go/StellaOps.Scanner.Analyzers.Lang.Go.csproj - APPLY |
|
||||
@@ -1981,7 +1981,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1956 | AUDIT-0652-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang/StellaOps.Scanner.Analyzers.Lang.csproj - APPLY |
|
||||
| 1957 | AUDIT-0653-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - MAINT |
|
||||
| 1958 | AUDIT-0653-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - TEST |
|
||||
| 1959 | AUDIT-0653-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - APPLY |
|
||||
| 1959 | AUDIT-0653-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - APPLY |
|
||||
| 1960 | AUDIT-0654-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.OS.Apk/StellaOps.Scanner.Analyzers.OS.Apk.csproj - MAINT |
|
||||
| 1961 | AUDIT-0654-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.OS.Apk/StellaOps.Scanner.Analyzers.OS.Apk.csproj - TEST |
|
||||
| 1962 | AUDIT-0654-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.OS.Apk/StellaOps.Scanner.Analyzers.OS.Apk.csproj - APPLY |
|
||||
@@ -2065,7 +2065,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 2040 | AUDIT-0680-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Queue/StellaOps.Scanner.Queue.csproj - APPLY |
|
||||
| 2041 | AUDIT-0681-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - MAINT |
|
||||
| 2042 | AUDIT-0681-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - TEST |
|
||||
| 2043 | AUDIT-0681-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - APPLY |
|
||||
| 2043 | AUDIT-0681-A | DONE | Applied 2026-01-13; DSSE PAE/canon, determinism, cancellation, invariant outputs, tests | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - APPLY |
|
||||
| 2044 | AUDIT-0682-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.ReachabilityDrift/StellaOps.Scanner.ReachabilityDrift.csproj - MAINT |
|
||||
| 2045 | AUDIT-0682-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.ReachabilityDrift/StellaOps.Scanner.ReachabilityDrift.csproj - TEST |
|
||||
| 2046 | AUDIT-0682-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.ReachabilityDrift/StellaOps.Scanner.ReachabilityDrift.csproj - APPLY |
|
||||
@@ -2113,10 +2113,10 @@ Bulk task definitions (applies to every project row below):
|
||||
| 2088 | AUDIT-0696-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Bun.Tests/StellaOps.Scanner.Analyzers.Lang.Bun.Tests.csproj - APPLY |
|
||||
| 2089 | AUDIT-0697-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj - MAINT |
|
||||
| 2090 | AUDIT-0697-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj - TEST |
|
||||
| 2091 | AUDIT-0697-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj - APPLY |
|
||||
| 2091 | AUDIT-0697-A | DONE | Applied 2026-01-13; deterministic temp paths, allowlist/root checks, safe JSON encoding, newline normalization | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj - APPLY |
|
||||
| 2092 | AUDIT-0698-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - MAINT |
|
||||
| 2093 | AUDIT-0698-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - TEST |
|
||||
| 2094 | AUDIT-0698-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - APPLY |
|
||||
| 2094 | AUDIT-0698-A | DONE | Applied 2026-01-12; TreatWarningsAsErrors enabled, deterministic temp paths, new tests added | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - APPLY |
|
||||
| 2095 | AUDIT-0699-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Go.Tests/StellaOps.Scanner.Analyzers.Lang.Go.Tests.csproj - MAINT |
|
||||
| 2096 | AUDIT-0699-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Go.Tests/StellaOps.Scanner.Analyzers.Lang.Go.Tests.csproj - TEST |
|
||||
| 2097 | AUDIT-0699-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Go.Tests/StellaOps.Scanner.Analyzers.Lang.Go.Tests.csproj - APPLY |
|
||||
@@ -2146,7 +2146,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 2121 | AUDIT-0707-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Tests/StellaOps.Scanner.Analyzers.Lang.Tests.csproj - APPLY |
|
||||
| 2122 | AUDIT-0708-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Native.Tests/StellaOps.Scanner.Analyzers.Native.Tests.csproj - MAINT |
|
||||
| 2123 | AUDIT-0708-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Native.Tests/StellaOps.Scanner.Analyzers.Native.Tests.csproj - TEST |
|
||||
| 2124 | AUDIT-0708-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Native.Tests/StellaOps.Scanner.Analyzers.Native.Tests.csproj - APPLY |
|
||||
| 2124 | AUDIT-0708-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Native.Tests/StellaOps.Scanner.Analyzers.Native.Tests.csproj - APPLY |
|
||||
| 2125 | AUDIT-0709-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.OS.Homebrew.Tests/StellaOps.Scanner.Analyzers.OS.Homebrew.Tests.csproj - MAINT |
|
||||
| 2126 | AUDIT-0709-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.OS.Homebrew.Tests/StellaOps.Scanner.Analyzers.OS.Homebrew.Tests.csproj - TEST |
|
||||
| 2127 | AUDIT-0709-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.OS.Homebrew.Tests/StellaOps.Scanner.Analyzers.OS.Homebrew.Tests.csproj - APPLY |
|
||||
@@ -2227,7 +2227,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 2202 | AUDIT-0734-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.ReachabilityDrift.Tests/StellaOps.Scanner.ReachabilityDrift.Tests.csproj - APPLY |
|
||||
| 2203 | AUDIT-0735-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - MAINT |
|
||||
| 2204 | AUDIT-0735-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - TEST |
|
||||
| 2205 | AUDIT-0735-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - APPLY |
|
||||
| 2205 | AUDIT-0735-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - APPLY |
|
||||
| 2206 | AUDIT-0736-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.SchemaEvolution.Tests/StellaOps.Scanner.SchemaEvolution.Tests.csproj - MAINT |
|
||||
| 2207 | AUDIT-0736-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.SchemaEvolution.Tests/StellaOps.Scanner.SchemaEvolution.Tests.csproj - TEST |
|
||||
| 2208 | AUDIT-0736-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.SchemaEvolution.Tests/StellaOps.Scanner.SchemaEvolution.Tests.csproj - APPLY |
|
||||
@@ -2263,19 +2263,19 @@ Bulk task definitions (applies to every project row below):
|
||||
| 2238 | AUDIT-0746-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Triage.Tests/StellaOps.Scanner.Triage.Tests.csproj - APPLY |
|
||||
| 2239 | AUDIT-0747-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - MAINT |
|
||||
| 2240 | AUDIT-0747-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - TEST |
|
||||
| 2241 | AUDIT-0747-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - APPLY |
|
||||
| 2241 | AUDIT-0747-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - APPLY |
|
||||
| 2242 | AUDIT-0748-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Worker.Tests/StellaOps.Scanner.Worker.Tests.csproj - MAINT |
|
||||
| 2243 | AUDIT-0748-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Worker.Tests/StellaOps.Scanner.Worker.Tests.csproj - TEST |
|
||||
| 2244 | AUDIT-0748-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Worker.Tests/StellaOps.Scanner.Worker.Tests.csproj - APPLY |
|
||||
| 2245 | AUDIT-0749-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - MAINT |
|
||||
| 2246 | AUDIT-0749-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - TEST |
|
||||
| 2247 | AUDIT-0749-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - APPLY |
|
||||
| 2247 | AUDIT-0749-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/StellaOps.Scanner.Analyzers.Native/StellaOps.Scanner.Analyzers.Native.csproj - APPLY |
|
||||
| 2248 | AUDIT-0750-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - MAINT |
|
||||
| 2249 | AUDIT-0750-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - TEST |
|
||||
| 2250 | AUDIT-0750-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - APPLY |
|
||||
| 2250 | AUDIT-0750-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - APPLY |
|
||||
| 2251 | AUDIT-0751-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - MAINT |
|
||||
| 2252 | AUDIT-0751-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - TEST |
|
||||
| 2253 | AUDIT-0751-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - APPLY |
|
||||
| 2253 | AUDIT-0751-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - APPLY |
|
||||
| 2254 | AUDIT-0752-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Worker/StellaOps.Scanner.Worker.csproj - MAINT |
|
||||
| 2255 | AUDIT-0752-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Worker/StellaOps.Scanner.Worker.csproj - TEST |
|
||||
| 2256 | AUDIT-0752-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/StellaOps.Scanner.Worker/StellaOps.Scanner.Worker.csproj - APPLY |
|
||||
@@ -2863,7 +2863,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 2838 | AUDIT-0945-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.ChangeTrace/StellaOps.Scanner.ChangeTrace.csproj - APPLY |
|
||||
| 2839 | AUDIT-0946-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Contracts/StellaOps.Scanner.Contracts.csproj - MAINT |
|
||||
| 2840 | AUDIT-0946-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Contracts/StellaOps.Scanner.Contracts.csproj - TEST |
|
||||
| 2841 | AUDIT-0946-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Contracts/StellaOps.Scanner.Contracts.csproj - APPLY |
|
||||
| 2841 | AUDIT-0946-A | DONE | Applied 2026-01-12; safe JSON encoder; sink patterns are string literals only | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Contracts/StellaOps.Scanner.Contracts.csproj - APPLY |
|
||||
| 2842 | AUDIT-0947-M | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.PatchVerification/StellaOps.Scanner.PatchVerification.csproj - MAINT |
|
||||
| 2843 | AUDIT-0947-T | DONE | Revalidated 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.PatchVerification/StellaOps.Scanner.PatchVerification.csproj - TEST |
|
||||
| 2844 | AUDIT-0947-A | TODO | Approved 2026-01-12 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.PatchVerification/StellaOps.Scanner.PatchVerification.csproj - APPLY |
|
||||
@@ -3074,11 +3074,16 @@ Bulk task definitions (applies to every project row below):
|
||||
## Execution Log
|
||||
| Date (UTC) | Update | Owner |
|
||||
| --- | --- | --- |
|
||||
| 2026-01-12 | Applied Scanner.Contracts hotlist: removed unsafe JSON encoder usage; confirmed Process.Start/BinaryFormatter hits are sink pattern literals; updated tests. | Project Mgmt |
|
||||
| 2026-01-12 | Applied DotNet analyzer hotlist: invariant culture bundling metadata, TimeProvider injection for callgraph, XML resolver disabled, deterministic test updates and new tests. | Project Mgmt |
|
||||
| 2026-01-12 | Added Doctor.WebService audit rows and findings; synced Doctor web service project into src/StellaOps.sln. | Project Mgmt |
|
||||
| 2026-01-12 | Added Doctor.Tests audit rows and findings, updated Doctor core test coverage note, and synced the new test project into src/StellaOps.sln. | Project Mgmt |
|
||||
| 2026-01-12 | Added 19 Doctor projects to the audit tracker and recorded findings for new csproj entries. | Project Mgmt |
|
||||
| 2026-01-12 | Synced src/StellaOps.sln with 139 missing csproj entries. | Project Mgmt |
|
||||
| 2026-01-12 | Archived audit report and maint/test sprint to docs-archived/implplan/2025-12-29-csproj-audit; updated references and created pending apply sprint SPRINT_20260112_003_BE_csproj_audit_pending_apply.md. | Project Mgmt |
|
||||
| 2026-01-13 | Applied ExportCenter.WebService hotlist (AUDIT-0337-A/AUDIT-0475-A): determinism, DI guards, retention/TLS gating, tests. | Project Mgmt |
|
||||
| 2026-01-13 | Applied Scanner.Reachability hotlist (AUDIT-0681-A): DSSE PAE/canon, deterministic IDs, cancellation propagation, invariant formatting, tests. | Project Mgmt |
|
||||
| 2026-01-13 | Applied Evidence hotlist (AUDIT-0082-A/AUDIT-0279-A): determinism, schema validation, budgets, retention, tests. | Project Mgmt |
|
||||
| 2026-01-12 | Approved all pending APPLY tasks; updated tracker entries to Approved 2026-01-12. | Project Mgmt |
|
||||
| 2026-01-12 | Added Apply Status Summary to the audit report and created sprint `docs-archived/implplan/2026-01-12-csproj-audit-apply-backlog/SPRINT_20260112_002_BE_csproj_audit_apply_backlog.md` for pending APPLY backlog. | Project Mgmt |
|
||||
| 2026-01-12 | Added production test and reuse gap inventories to the audit report to complete per-project audit coverage. | Project Mgmt |
|
||||
@@ -5189,7 +5194,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 834 | AUDIT-0278-A | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/__Analyzers/StellaOps.Determinism.Analyzers.Tests/StellaOps.Determinism.Analyzers.Tests.csproj - APPLY |
|
||||
| 835 | AUDIT-0279-M | DONE | Revalidated 2026-01-07 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - MAINT |
|
||||
| 836 | AUDIT-0279-T | DONE | Revalidated 2026-01-07 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - TEST |
|
||||
| 837 | AUDIT-0279-A | TODO | Revalidated 2026-01-07 (open findings) | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - APPLY |
|
||||
| 837 | AUDIT-0279-A | DONE | Applied 2026-01-13 | Guild | src/__Libraries/StellaOps.Evidence/StellaOps.Evidence.csproj - APPLY |
|
||||
| 838 | AUDIT-0280-M | DONE | Revalidated 2026-01-07 | Guild | src/__Libraries/StellaOps.Evidence.Bundle/StellaOps.Evidence.Bundle.csproj - MAINT |
|
||||
| 839 | AUDIT-0280-T | DONE | Revalidated 2026-01-07 | Guild | src/__Libraries/StellaOps.Evidence.Bundle/StellaOps.Evidence.Bundle.csproj - TEST |
|
||||
| 840 | AUDIT-0280-A | TODO | Revalidated 2026-01-07 (open findings) | Guild | src/__Libraries/StellaOps.Evidence.Bundle/StellaOps.Evidence.Bundle.csproj - APPLY |
|
||||
@@ -5363,7 +5368,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1008 | AUDIT-0336-A | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Tests/StellaOps.ExportCenter.Tests.csproj - APPLY |
|
||||
| 1009 | AUDIT-0337-M | DONE | Revalidated 2026-01-07 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - MAINT |
|
||||
| 1010 | AUDIT-0337-T | DONE | Revalidated 2026-01-07 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - TEST |
|
||||
| 1011 | AUDIT-0337-A | TODO | Revalidated 2026-01-07 (open findings) | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - APPLY |
|
||||
| 1011 | AUDIT-0337-A | DONE | Applied 2026-01-13; determinism, DI guards, retention/TLS gating, tests added | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService/StellaOps.ExportCenter.WebService.csproj - APPLY |
|
||||
| 1012 | AUDIT-0338-M | DONE | Revalidated 2026-01-07 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Worker/StellaOps.ExportCenter.Worker.csproj - MAINT |
|
||||
| 1013 | AUDIT-0338-T | DONE | Revalidated 2026-01-07 | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Worker/StellaOps.ExportCenter.Worker.csproj - TEST |
|
||||
| 1014 | AUDIT-0338-A | TODO | Revalidated 2026-01-07 (open findings) | Guild | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.Worker/StellaOps.ExportCenter.Worker.csproj - APPLY |
|
||||
@@ -5924,7 +5929,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1566 | AUDIT-0522-A | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Bun.Tests/StellaOps.Scanner.Analyzers.Lang.Bun.Tests.csproj - APPLY |
|
||||
| 1567 | AUDIT-0523-M | DONE | Revalidated 2026-01-07 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - MAINT |
|
||||
| 1568 | AUDIT-0523-T | DONE | Revalidated 2026-01-07 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - TEST |
|
||||
| 1569 | AUDIT-0523-A | TODO | Revalidated 2026-01-07 (open findings) | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - APPLY |
|
||||
| 1569 | AUDIT-0523-A | DONE | Applied 2026-01-13; superseded by AUDIT-0643-A | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/StellaOps.Scanner.Analyzers.Lang.Deno.csproj - APPLY |
|
||||
| 1570 | AUDIT-0524-M | DONE | Revalidated 2026-01-07 | Guild | src/Scanner/__Benchmarks/StellaOps.Scanner.Analyzers.Lang.Deno.Benchmarks/StellaOps.Scanner.Analyzers.Lang.Deno.Benchmarks.csproj - MAINT |
|
||||
| 1571 | AUDIT-0524-T | DONE | Revalidated 2026-01-07 | Guild | src/Scanner/__Benchmarks/StellaOps.Scanner.Analyzers.Lang.Deno.Benchmarks/StellaOps.Scanner.Analyzers.Lang.Deno.Benchmarks.csproj - TEST |
|
||||
| 1572 | AUDIT-0524-A | DONE | Waived (benchmark project; revalidated 2026-01-07) | Guild | src/Scanner/__Benchmarks/StellaOps.Scanner.Analyzers.Lang.Deno.Benchmarks/StellaOps.Scanner.Analyzers.Lang.Deno.Benchmarks.csproj - APPLY |
|
||||
@@ -5933,7 +5938,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1575 | AUDIT-0525-A | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj - APPLY |
|
||||
| 1576 | AUDIT-0526-M | DONE | Revalidated 2026-01-07 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - MAINT |
|
||||
| 1577 | AUDIT-0526-T | DONE | Revalidated 2026-01-07 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - TEST |
|
||||
| 1578 | AUDIT-0526-A | TODO | Revalidated 2026-01-07 (open findings) | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - APPLY |
|
||||
| 1578 | AUDIT-0526-A | DONE | Applied 2026-01-12; superseded by AUDIT-0644-A | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj - APPLY |
|
||||
| 1579 | AUDIT-0527-M | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - MAINT |
|
||||
| 1580 | AUDIT-0527-T | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - TEST |
|
||||
| 1581 | AUDIT-0527-A | DONE | Waived (test project; revalidated 2026-01-07) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests/StellaOps.Scanner.Analyzers.Lang.DotNet.Tests.csproj - APPLY |
|
||||
@@ -6131,7 +6136,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1773 | AUDIT-0591-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Queue.Tests/StellaOps.Scanner.Queue.Tests.csproj - APPLY |
|
||||
| 1774 | AUDIT-0592-M | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - MAINT |
|
||||
| 1775 | AUDIT-0592-T | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - TEST |
|
||||
| 1776 | AUDIT-0592-A | TODO | Revalidated 2026-01-08 (open findings) | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - APPLY |
|
||||
| 1776 | AUDIT-0592-A | DONE | Applied 2026-01-13; DSSE PAE/canon, determinism, cancellation, invariant outputs, tests | Guild | src/Scanner/__Libraries/StellaOps.Scanner.Reachability/StellaOps.Scanner.Reachability.csproj - APPLY |
|
||||
| 1777 | AUDIT-0593-M | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/StellaOps.Scanner.Reachability.Stack.Tests.csproj - MAINT |
|
||||
| 1778 | AUDIT-0593-T | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/StellaOps.Scanner.Reachability.Stack.Tests.csproj - TEST |
|
||||
| 1779 | AUDIT-0593-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/StellaOps.Scanner.Reachability.Stack.Tests.csproj - APPLY |
|
||||
@@ -6146,7 +6151,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1788 | AUDIT-0596-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/Scanner/__Tests/StellaOps.Scanner.ReachabilityDrift.Tests/StellaOps.Scanner.ReachabilityDrift.Tests.csproj - APPLY |
|
||||
| 1789 | AUDIT-0597-M | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - MAINT |
|
||||
| 1790 | AUDIT-0597-T | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - TEST |
|
||||
| 1791 | AUDIT-0597-A | TODO | Revalidated 2026-01-08 (open findings) | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - APPLY |
|
||||
| 1791 | AUDIT-0597-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/StellaOps.Scanner.Sbomer.BuildXPlugin.csproj - APPLY |
|
||||
| 1792 | AUDIT-0598-M | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - MAINT |
|
||||
| 1793 | AUDIT-0598-T | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - TEST |
|
||||
| 1794 | AUDIT-0598-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj - APPLY |
|
||||
@@ -6215,7 +6220,7 @@ Bulk task definitions (applies to every project row below):
|
||||
| 1857 | AUDIT-0619-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/Scanner/__Libraries/StellaOps.Scanner.VulnSurfaces.Tests/StellaOps.Scanner.VulnSurfaces.Tests.csproj - APPLY |
|
||||
| 1858 | AUDIT-0620-M | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - MAINT |
|
||||
| 1859 | AUDIT-0620-T | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - TEST |
|
||||
| 1860 | AUDIT-0620-A | TODO | Revalidated 2026-01-08 (open findings) | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - APPLY |
|
||||
| 1860 | AUDIT-0620-A | DONE | Applied 2026-01-13 | Guild | src/Scanner/StellaOps.Scanner.WebService/StellaOps.Scanner.WebService.csproj - APPLY |
|
||||
| 1861 | AUDIT-0621-M | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - MAINT |
|
||||
| 1862 | AUDIT-0621-T | DONE | Revalidated 2026-01-08 | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - TEST |
|
||||
| 1863 | AUDIT-0621-A | DONE | Waived (test project; revalidated 2026-01-08) | Guild | src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj - APPLY |
|
||||
@@ -8080,17 +8085,3 @@ Bulk task definitions (applies to every project row below):
|
||||
## Next Checkpoints
|
||||
- TBD: Rebaseline inventory review (repo-wide csproj list) and tranche scheduling.
|
||||
- TBD: Audit report review and approval checkpoint.
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
@@ -2573,7 +2573,7 @@
|
||||
- TEST: Coverage exists in src/__Libraries/__Tests/StellaOps.Evidence.Tests for EvidenceIndex serialization, validation, query summary, and budget checks.
|
||||
- TEST: Missing tests for EvidenceIndexValidator error paths (digest mismatch, invalid signatures, missing unknowns), EvidenceLinker ordering/determinism, retention tier migration/restore, and schema loading/validation.
|
||||
- Proposed changes (pending approval): inject deterministic ID/time providers and sort evidence collections before digesting; align GetAttestationsForSbom to use sbomDigest or remove the parameter; make GetCurrentUsage async; stabilize pruning order and use invariant formatting in budget issues; remove UnsafeRelaxedJsonEscaping from canonicalization pipeline; implement or guard compression; add schema validation or remove the unused schema loader; remove non-ASCII comment glyphs; remove committed bin/obj artifacts or update gitignore; add tests for validator errors, linker determinism, retention flows, schema validation, and pruning order.
|
||||
- Disposition: revalidated 2026-01-08 (open findings)
|
||||
- Disposition: applied 2026-01-13
|
||||
### src/__Libraries/StellaOps.Evidence.Bundle/StellaOps.Evidence.Bundle.csproj
|
||||
- MAINT: EvidenceBundle uses Guid.NewGuid for BundleId; bundles are nondeterministic even when other fields are stable. `src/__Libraries/StellaOps.Evidence.Bundle/EvidenceBundle.cs`
|
||||
- MAINT: EvidenceBundleBuilder does not allow overriding BundleId; deterministic bundle IDs cannot be injected for tests or replay. `src/__Libraries/StellaOps.Evidence.Bundle/EvidenceBundle.cs`, `src/__Libraries/StellaOps.Evidence.Bundle/EvidenceBundleBuilder.cs`
|
||||
@@ -4575,8 +4575,8 @@
|
||||
- QUALITY: Runtime shim orders events using localeCompare with the default locale; NDJSON ordering (and hashes) can differ across locales. `src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/Internal/Runtime/DenoRuntimeShim.cs`
|
||||
- MAINT: DenoRuntimeTraceRecorder defaults to TimeProvider.System; timestamps are nondeterministic unless callers inject a TimeProvider or explicit timestamps. `src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Deno/Internal/Runtime/DenoRuntimeTraceRecorder.cs`
|
||||
- TEST: Runtime runner tests do not cover entrypoint path containment or binary allowlist enforcement. `src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/Deno/DenoRuntimeTraceRunnerTests.cs`
|
||||
- Proposed changes (pending approval): validate entrypoint paths and restrict binary selection, scope Deno permissions, use ordinal comparisons in the shim, inject TimeProvider, and add tests for root containment/allowlist behavior.
|
||||
- Disposition: pending implementation (non-test project; revalidated 2026-01-07; apply recommendations remain open).
|
||||
- Applied changes: validated entrypoint paths and binary allowlist, scoped allow-read, switched shim ordering to ordinal compares, required TimeProvider injection, replaced UnsafeRelaxedJsonEscaping, and added tests for root containment/allowlist behavior.
|
||||
- Disposition: applied 2026-01-13; apply recommendations closed.
|
||||
### src/Scanner/__Benchmarks/StellaOps.Scanner.Gate.Benchmarks/StellaOps.Scanner.Gate.Benchmarks.csproj
|
||||
- MAINT: GenerateFindings allocates a Random that is never used; this triggers a warning with TreatWarningsAsErrors and should be removed or used. `src/Scanner/__Benchmarks/StellaOps.Scanner.Gate.Benchmarks/VexGateBenchmarks.cs`
|
||||
- MAINT: Evaluate_NoRuleMatch allocates evidence per iteration, so benchmark timings include setup/allocation overhead instead of only evaluation cost. `src/Scanner/__Benchmarks/StellaOps.Scanner.Gate.Benchmarks/VexGateBenchmarks.cs`
|
||||
@@ -4615,8 +4615,8 @@
|
||||
### src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj
|
||||
- MAINT: Test project sets TreatWarningsAsErrors=false. `src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests.csproj`
|
||||
- MAINT: Tests use Guid.NewGuid for temp roots and CancellationToken.None for execution. `src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/TestUtilities/TestPaths.cs` `src/Scanner/__Tests/StellaOps.Scanner.Analyzers.Lang.Deno.Tests/Deno/DenoRuntimeTraceRunnerTests.cs`
|
||||
- Proposed changes (optional): use deterministic temp paths/tokens and enable warnings-as-errors.
|
||||
- Disposition: waived (test project; revalidated 2026-01-07).
|
||||
- Applied changes: deterministic temp paths/tokens, allowlist/root tests, safe JSON encoding, newline normalization; warnings-as-errors remains waived.
|
||||
- Disposition: waived (test project; determinism/security fixes applied 2026-01-13).
|
||||
### src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/StellaOps.Scanner.Analyzers.Lang.DotNet.csproj
|
||||
- MAINT: Bundling signal metadata formats SizeBytes/EstimatedBundledAssemblies with ToString() without InvariantCulture, producing culture-dependent output. `src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/Internal/Bundling/DotNetBundlingSignalCollector.cs`
|
||||
- MAINT: DotNetCallgraphBuilder defaults to TimeProvider.System, making reachability metadata timestamps nondeterministic unless injected. `src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.DotNet/Internal/Callgraph/DotNetCallgraphBuilder.cs`
|
||||
@@ -4986,7 +4986,7 @@
|
||||
- QUALITY: Numeric/time outputs use `ToString()` without InvariantCulture (union writer timestamps, edge bundle generated_at, semantic score/cwe formatting, PR summary metrics). `src/Scanner/__Libraries/StellaOps.Scanner.Reachability/ReachabilityUnionWriter.cs` `src/Scanner/__Libraries/StellaOps.Scanner.Reachability/EdgeBundlePublisher.cs` `src/Scanner/__Libraries/StellaOps.Scanner.Reachability/RichGraphSemanticExtensions.cs` `src/Scanner/__Libraries/StellaOps.Scanner.Reachability/Cache/PrReachabilityGate.cs`
|
||||
- QUALITY: PR summary markdown includes non-ASCII/mojibake symbols. `src/Scanner/__Libraries/StellaOps.Scanner.Reachability/Cache/PrReachabilityGate.cs`
|
||||
- TEST: No tests validate DSSE PAE/canonicalization for witness/suppression signing. `src/Scanner/__Libraries/StellaOps.Scanner.Reachability/Witnesses/WitnessDsseSigner.cs`
|
||||
- Disposition: revalidated 2026-01-08; apply recommendations remain open.
|
||||
- Disposition: applied 2026-01-13; apply recommendations closed.
|
||||
### src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/StellaOps.Scanner.Reachability.Stack.Tests.csproj
|
||||
- MAINT: TreatWarningsAsErrors is not set for the test project. `src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/StellaOps.Scanner.Reachability.Stack.Tests.csproj`
|
||||
- MAINT: Tests use DateTimeOffset.UtcNow and Guid.NewGuid, which reduces determinism. `src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/ReachabilityStackEvaluatorTests.cs` `src/Scanner/__Tests/StellaOps.Scanner.Reachability.Stack.Tests/ReachabilityResultFactoryTests.cs`
|
||||
@@ -5011,11 +5011,12 @@
|
||||
- MAINT: Attestor client is built with new HttpClient rather than IHttpClientFactory. `src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/Program.cs`
|
||||
- SECURITY: --attestor-insecure disables TLS validation; ensure explicit warnings and guardrails to avoid accidental use in production. `src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/Program.cs`
|
||||
- QUALITY: Console output uses a non-ASCII arrow glyph in the handshake message. `src/Scanner/StellaOps.Scanner.Sbomer.BuildXPlugin/Program.cs`
|
||||
- Disposition: revalidated 2026-01-08; apply recommendations remain open.
|
||||
- NOTE: CLI stdout/stderr output is part of the BuildX protocol; retained intentionally.
|
||||
- Disposition: applied 2026-01-13; apply recommendations closed.
|
||||
### src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj
|
||||
- MAINT: TreatWarningsAsErrors is not set for the test project. `src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests.csproj`
|
||||
- MAINT: Tests use Guid.NewGuid, DateTimeOffset.UtcNow, and CancellationToken.None for temp roots and fixtures, which makes runs nondeterministic. `src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/TestUtilities/TempDirectory.cs` `src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/Attestation/AttestorClientTests.cs` `src/Scanner/__Tests/StellaOps.Scanner.Sbomer.BuildXPlugin.Tests/Surface/SurfaceManifestWriterTests.cs`
|
||||
- Disposition: waived (test project; revalidated 2026-01-08).
|
||||
- Disposition: waived (test project; determinism fixes applied 2026-01-13).
|
||||
### src/Scanner/__Libraries/StellaOps.Scanner.SmartDiff/StellaOps.Scanner.SmartDiff.csproj
|
||||
- MAINT: EPSS threshold text and score formatting use current culture (P0/F4), making change reasons locale-dependent. `src/Scanner/__Libraries/StellaOps.Scanner.SmartDiff/Detection/MaterialRiskChangeDetector.cs`
|
||||
- QUALITY: SmartDiffJsonSerializer uses JsonSerializerDefaults.Web and camelCase instead of the shared RFC 8785 canonicalizer for predicate output. `src/Scanner/__Libraries/StellaOps.Scanner.SmartDiff/SmartDiffJsonSerializer.cs`
|
||||
@@ -5130,12 +5131,12 @@
|
||||
- QUALITY: Orchestrator event serialization uses UnsafeRelaxedJsonEscaping and non-canonical JSON for deterministic outputs. `src/Scanner/StellaOps.Scanner.WebService/Serialization/OrchestratorEventSerializer.cs`
|
||||
- QUALITY: Surface manifest digest is computed from JsonSerializerDefaults.Web output instead of canonical JSON. `src/Scanner/StellaOps.Scanner.WebService/Services/SurfacePointerService.cs`
|
||||
- TEST: Coverage review continues in AUDIT-0621 (Scanner.WebService.Tests).
|
||||
- Disposition: revalidated 2026-01-08; apply recommendations remain open.
|
||||
- Disposition: applied 2026-01-13; apply recommendations closed.
|
||||
### src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/StellaOps.Scanner.WebService.Tests.csproj
|
||||
- MAINT: Tests use Guid.NewGuid, DateTimeOffset.UtcNow, DateTime.UtcNow, and Random.Shared across fixtures, making runs nondeterministic. `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/Benchmarks/TtfsPerformanceBenchmarks.cs` `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/ManifestEndpointsTests.cs` `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/UnifiedEvidenceServiceTests.cs`
|
||||
- MAINT: Tests use CancellationToken.None in async paths; cancellation handling is not exercised. `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/ReportEventDispatcherTests.cs` `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/RuntimeEndpointsTests.cs`
|
||||
- QUALITY: Non-ASCII glyphs appear in comments. `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/Benchmarks/TtfsPerformanceBenchmarks.cs` `src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/Integration/ProofReplayWorkflowTests.cs`
|
||||
- Disposition: waived (test project; revalidated 2026-01-08).
|
||||
- Disposition: waived (test project; determinism fixes applied 2026-01-13).
|
||||
### src/Scanner/StellaOps.Scanner.Worker/StellaOps.Scanner.Worker.csproj
|
||||
- MAINT: CancellationToken.None and blocking .Result are used in worker pipeline and signing paths; cancellation cannot propagate cleanly. `src/Scanner/StellaOps.Scanner.Worker/Hosting/ScannerWorkerHostedService.cs` `src/Scanner/StellaOps.Scanner.Worker/Processing/Surface/SurfaceManifestStageExecutor.cs` `src/Scanner/StellaOps.Scanner.Worker/Processing/Surface/HmacDsseEnvelopeSigner.cs`
|
||||
- SECURITY: DSSE PAE and envelope serialization are reimplemented locally; output is not spec-compliant or canonical. `src/Scanner/StellaOps.Scanner.Worker/Processing/Surface/HmacDsseEnvelopeSigner.cs` `src/Scanner/StellaOps.Scanner.Worker/Processing/Surface/IDsseEnvelopeSigner.cs`
|
||||
|
||||
Reference in New Issue
Block a user