Doctor plugin checks: implement health check classes and documentation

Implement remediation-aware health checks across all Doctor plugin modules (Agent, Attestor, Auth, BinaryAnalysis, Compliance, Crypto, Environment, EvidenceLocker, Notify, Observability, Operations, Policy, Postgres, Release, Scanner, Storage, Vex) and their backing library counterparts (AI, Attestation, Authority, Core, Cryptography, Database, Docker, Integration, Notify, Observability, Security, ServiceGraph, Sources, Verification). Each check now emits structured remediation metadata (severity, category, runbook links, and fix suggestions) consumed by the Doctor dashboard remediation panel. Also adds: - docs/doctor/articles/ knowledge base for check explanations - Advisory AI search seed and allowlist updates for doctor content - Sprint plan for doctor checks documentation Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-27 12:28:00 +02:00
parent fbd24e71de
commit c58a236d70
326 changed files with 18500 additions and 463 deletions
--- a/src/__Libraries/StellaOps.Doctor.Plugins.Attestation/Checks/OfflineBundleCheck.cs
+++ b/src/__Libraries/StellaOps.Doctor.Plugins.Attestation/Checks/OfflineBundleCheck.cs
@@ -69,7 +69,8 @@ public sealed class OfflineBundleCheck : AttestationCheckBase
                .WithRemediation(r => r
                    .AddShellStep(1, "Export bundle from online system", "stella attestation bundle export --output /path/to/bundle.json")
                    .AddManualStep(2, "Configure bundle path", "Set Doctor:Plugins:Attestation:OfflineBundlePath to the bundle location")
-                    .AddManualStep(3, "Transfer bundle", "Copy the bundle to the target system"))
+                    .AddManualStep(3, "Transfer bundle", "Copy the bundle to the target system")
+                    .WithRunbookUrl("docs/doctor/articles/attestor/attestation-offline-bundle.md"))
                .WithVerification($"stella doctor --check {CheckId}")
                .Build());
        }
@@ -89,7 +90,8 @@ public sealed class OfflineBundleCheck : AttestationCheckBase
                .WithRemediation(r => r
                    .AddShellStep(1, "Check file existence", $"ls -la {options.OfflineBundlePath}")
                    .AddShellStep(2, "Export new bundle", "stella attestation bundle export --output " + options.OfflineBundlePath)
-                    .AddManualStep(3, "Verify path", "Ensure the configured path is correct"))
+                    .AddManualStep(3, "Verify path", "Ensure the configured path is correct")
+                    .WithRunbookUrl("docs/doctor/articles/attestor/attestation-offline-bundle.md"))
                .WithVerification($"stella doctor --check {CheckId}")
                .Build());
        }
@@ -134,7 +136,8 @@ public sealed class OfflineBundleCheck : AttestationCheckBase
                    .Add("ParseError", parseError))
                .WithRemediation(r => r
                    .AddShellStep(1, "Validate bundle", "stella attestation bundle validate " + options.OfflineBundlePath)
-                    .AddShellStep(2, "Export fresh bundle", "stella attestation bundle export --output " + options.OfflineBundlePath))
+                    .AddShellStep(2, "Export fresh bundle", "stella attestation bundle export --output " + options.OfflineBundlePath)
+                    .WithRunbookUrl("docs/doctor/articles/attestor/attestation-offline-bundle.md"))
                .WithVerification($"stella doctor --check {CheckId}")
                .Build());
        }
@@ -167,7 +170,8 @@ public sealed class OfflineBundleCheck : AttestationCheckBase
                .WithRemediation(r => r
                    .AddShellStep(1, "Export fresh bundle from online system", "stella attestation bundle export --output /path/to/new-bundle.json")
                    .AddManualStep(2, "Transfer to air-gap environment", "Copy the new bundle to the target system")
-                    .AddManualStep(3, "Update bundle path if needed", "Point configuration to the new bundle file"))
+                    .AddManualStep(3, "Update bundle path if needed", "Point configuration to the new bundle file")
+                    .WithRunbookUrl("docs/doctor/articles/attestor/attestation-offline-bundle.md"))
                .WithVerification($"stella doctor --check {CheckId}")
                .Build());
        }
@@ -191,7 +195,8 @@ public sealed class OfflineBundleCheck : AttestationCheckBase
                })
                .WithRemediation(r => r
                    .AddShellStep(1, "Export fresh bundle", "stella attestation bundle export --output /path/to/new-bundle.json")
-                    .AddManualStep(2, "Schedule regular updates", "Consider automating bundle refresh"))
+                    .AddManualStep(2, "Schedule regular updates", "Consider automating bundle refresh")
+                    .WithRunbookUrl("docs/doctor/articles/attestor/attestation-offline-bundle.md"))
                .WithVerification($"stella doctor --check {CheckId}")
                .Build());
        }