stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

feat: Add documentation and task tracking for Sprints 508 to 514 in Ops & Offline

Browse Source 
- Created detailed markdown files for Sprints 508 (Ops Offline Kit), 509 (Samples), 510 (AirGap), 511 (Api), 512 (Bench), 513 (Provenance), and 514 (Sovereign Crypto Enablement) outlining tasks, dependencies, and owners.
- Introduced a comprehensive Reachability Evidence Delivery Guide to streamline the reachability signal process.
- Implemented unit tests for Advisory AI to block known injection patterns and redact secrets.
- Added AuthoritySenderConstraintHelper to manage sender constraints in OpenIddict transactions.
This commit is contained in:
master
2025-11-08 23:18:28 +02:00
parent 536f6249a6
commit ae69b1a8a1
187 changed files with 4326 additions and 3196 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
docs/implplan/SPRINT_121_policy_reasoning.md Normal file
View File

@@ -0,0 +1,27 @@
# Sprint 121 - Policy & Reasoning
_Last updated: November 8, 2025. Implementation order is DOING → TODO → BLOCKED._
Focus areas below were split out of the previous combined sprint; execute sections in order unless noted.
## Findings.II
Dependency: Sprint 120.B - Findings.I (must land before this track).
Focus: Policy & Reasoning focus on Findings (phase II).
| # | Task ID & handle | State | Key dependency / next step | Owners |
| --- | --- | --- | --- | --- |
| 1 | LEDGER-ATTEST-73-002 | TODO | Enable search/filter in findings projections by verification result and attestation status (Deps: LEDGER-ATTEST-73-001) | Findings Ledger Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 2 | LEDGER-EXPORT-35-001 | TODO | Provide paginated streaming endpoints for advisories, VEX, SBOMs, and findings aligned with export filters, including deterministic ordering and provenance metadata | Findings Ledger Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 3 | LEDGER-OAS-61-001 | TODO | Expand Findings Ledger OAS to include projections, evidence lookups, and filter parameters with examples | Findings Ledger Guild, API Contracts Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 4 | LEDGER-OAS-61-002 | TODO | Implement `/.well-known/openapi` endpoint and ensure version metadata matches release (Deps: LEDGER-OAS-61-001) | Findings Ledger Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 5 | LEDGER-OAS-62-001 | TODO | Provide SDK test cases for findings pagination, filtering, evidence links; ensure typed models expose provenance (Deps: LEDGER-OAS-61-002) | Findings Ledger Guild, SDK Generator Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 6 | LEDGER-OAS-63-001 | TODO | Support deprecation headers and Notifications for retiring finding endpoints (Deps: LEDGER-OAS-62-001) | Findings Ledger Guild, API Governance Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 7 | LEDGER-OBS-50-001 | TODO | Integrate telemetry core within ledger writer/projector services, emitting structured logs and trace spans for ledger append, projector replay, and query APIs with tenant context | Findings Ledger Guild, Observability Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 8 | LEDGER-OBS-51-001 | TODO | Publish metrics for ledger latency, projector lag, event throughput, and policy evaluation linkage. Define SLOs (ledger append P95 < 1s, replay lag < 30s) with burn-rate alerts and dashboards (Deps: LEDGER-OBS-50-001) | Findings Ledger Guild, DevOps Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 9 | LEDGER-OBS-52-001 | TODO | Emit timeline events for ledger writes and projector commits (`ledger.event.appended`, `ledger.projection.updated`) with trace ID, policy version, evidence bundle reference placeholders (Deps: LEDGER-OBS-51-001) | Findings Ledger Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 10 | LEDGER-OBS-53-001 | TODO | Persist evidence bundle references (evaluation/job capsules) alongside ledger entries, exposing lookup API linking findings to evidence manifests and timeline (Deps: LEDGER-OBS-52-001) | Findings Ledger Guild, Evidence Locker Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 11 | LEDGER-OBS-54-001 | TODO | Verify attestation references for ledger-derived exports; expose `/ledger/attestations` endpoint returning DSSE verification state and chain-of-custody summary (Deps: LEDGER-OBS-53-001) | Findings Ledger Guild, Provenance Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 12 | LEDGER-OBS-55-001 | TODO | Enhance incident mode to record additional replay diagnostics (lag traces, conflict snapshots) and extend retention while active. Emit activation events to timeline + notifier (Deps: LEDGER-OBS-54-001) | Findings Ledger Guild, DevOps Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 13 | LEDGER-PACKS-42-001 | TODO | Provide snapshot/time-travel APIs and digestable exports for task pack simulation and CLI offline mode | Findings Ledger Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 14 | LEDGER-RISK-66-001 | TODO | Add schema migrations for `risk_score`, `risk_severity`, `profile_version`, `explanation_id`, and supporting indexes | Findings Ledger Guild, Risk Engine Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |
| 15 | LEDGER-RISK-66-002 | TODO | Implement deterministic upsert of scoring results keyed by finding hash/profile version with history audit (Deps: LEDGER-RISK-66-001) | Findings Ledger Guild / src/Findings/StellaOps.Findings.Ledger/TASKS.md |