stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

audit remarks work

Browse Source
This commit is contained in:
master
2025-12-30 16:10:34 +02:00
parent e6ee092c7a
commit c706b3d3e0
72 changed files with 9997 additions and 5323 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
docs/implplan/SPRINT_20251229_049_BE_csproj_audit_maint_tests.md
View File

@@ -46,10 +46,10 @@ Bulk task definitions (applies to every project row below):
| 24 | AUDIT-0008-A | DONE | Applied + tests | Guild | src/Tools/LanguageAnalyzerSmoke/LanguageAnalyzerSmoke.csproj - APPLY |
| 25 | AUDIT-0009-M | DONE | Report | Guild | src/Findings/StellaOps.Findings.Ledger/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - MAINT |
| 26 | AUDIT-0009-T | DONE | Report | Guild | src/Findings/StellaOps.Findings.Ledger/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - TEST |
| 27 | AUDIT-0009-A | BLOCKED | Missing docs/modules/findings-ledger/implementation_plan.md required by AGENTS | Guild | src/Findings/StellaOps.Findings.Ledger/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - APPLY |
| 27 | AUDIT-0009-A | TODO | Approval | Guild | src/Findings/StellaOps.Findings.Ledger/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - APPLY |
| 28 | AUDIT-0010-M | DONE | Report | Guild | src/Findings/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - MAINT |
| 29 | AUDIT-0010-T | DONE | Report | Guild | src/Findings/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - TEST |
| 30 | AUDIT-0010-A | BLOCKED | Missing docs/modules/findings-ledger/implementation_plan.md required by AGENTS | Guild | src/Findings/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - APPLY |
| 30 | AUDIT-0010-A | TODO | Approval | Guild | src/Findings/tools/LedgerReplayHarness/LedgerReplayHarness.csproj - APPLY |
| 31 | AUDIT-0011-M | DONE | Report | Guild | src/Tools/NotifySmokeCheck/NotifySmokeCheck.csproj - MAINT |
| 32 | AUDIT-0011-T | DONE | Report | Guild | src/Tools/NotifySmokeCheck/NotifySmokeCheck.csproj - TEST |
| 33 | AUDIT-0011-A | DONE | Applied + tests | Guild | src/Tools/NotifySmokeCheck/NotifySmokeCheck.csproj - APPLY |
@@ -2162,6 +2162,7 @@ Bulk task definitions (applies to every project row below):
| --- | --- | --- |
| 2025-12-30 | CLI: moved run manifest parsing into CLI (removed test-only manifest dependency) and added serializer tests; audit report updated. | Implementer |
| 2025-12-30 | Blocked AUDIT-0009-A and AUDIT-0010-A due to missing findings-ledger implementation_plan doc required by AGENTS. | Implementer |
| 2025-12-30 | Added docs/modules/findings-ledger/implementation_plan.md; unblocked AUDIT-0009-A and AUDIT-0010-A. | Implementer |
| 2025-12-30 | Applied audit fixes for FixtureUpdater, LanguageAnalyzerSmoke, NotifySmokeCheck, RustFsMigrator, Scheduler.Backfill; added deterministic CLI/retry/cancellation updates, tests, and moved GHSA fixtures to GHSA test folder with OSV parity fixture resolution update. | Implementer |
| 2025-12-30 | Added /tools CLI command group for policy tooling; moved implementations into shared library for CLI consumption. | Implementer |
| 2025-12-30 | Applied audit fixes for PolicyDslValidator, PolicySchemaExporter, PolicySimulationSmoke; added tests and updated report dispositions. | Implementer |
@@ -2377,7 +2378,7 @@ Bulk task definitions (applies to every project row below):
- Risk: Scale of audit is large; mitigate with per-project checklists and parallel execution.
- Risk: Coverage measurement can be inconsistent; mitigate with deterministic test runs and documented tooling.
- Note: GHSA parity fixtures moved to the GHSA test fixture directory; OSV parity fixture resolution updated accordingly (cross-module change recorded).
- Blocker: AUDIT-0009-A/AUDIT-0010-A require docs/modules/findings-ledger/implementation_plan.md per Findings AGENTS; file is missing and needs PM update before APPLY.
- Resolution: Added docs/modules/findings-ledger/implementation_plan.md; AUDIT-0009-A/AUDIT-0010-A unblocked (approval still required).
## Next Checkpoints
- TBD: Audit report review and approval checkpoint.

4
docs/implplan/SPRINT_20251229_049_BE_csproj_audit_report.md
View File

@@ -59,7 +59,7 @@
- MAINT: Duplicate harness exists at src/Findings/tools/LedgerReplayHarness; unclear canonical tool.
- TEST: No tests for parsing/percentile/checksum logic.
- Proposed changes (pending approval): extract HarnessRunner/report writer, enforce deterministic fixture ordering or document concurrency intent, use TryParse with structured errors, clarify/retire duplicate harness, add unit tests for parsing/percentile/checksum.
- Disposition: blocked (missing docs/modules/findings-ledger/implementation_plan.md required by AGENTS)
- Disposition: pending implementation (non-test project; apply recommendations remain open)
### src/Findings/tools/LedgerReplayHarness/LedgerReplayHarness.csproj
- MAINT: eventCount increments for every non-empty line even when no record is appended; reported eventsWritten can diverge from actual appends.
- MAINT: JsonNode.Parse and DateTimeOffset parsing fail fast without fixture/line context; no structured error reporting.
@@ -68,7 +68,7 @@
- MAINT: Duplicate harness exists at src/Findings/StellaOps.Findings.Ledger/tools/LedgerReplayHarness; unclear canonical tool.
- TEST: No tests for HarnessRunner parsing, merkle computation, or percentile logic.
- Proposed changes (pending approval): count only appended records, add deterministic ordering (sorted fixtures + sequence), capture parse errors with fixture/line context, avoid UtcNow defaults for missing recorded_at, clarify/retire duplicate harness, add unit tests for parsing/merkle/percentile.
- Disposition: blocked (missing docs/modules/findings-ledger/implementation_plan.md required by AGENTS)
- Disposition: pending implementation (non-test project; apply recommendations remain open)
### src/Tools/NotifySmokeCheck/NotifySmokeCheck.csproj
- MAINT: Console output includes non-ASCII/mojibake characters; not portable for logs.
- MAINT: StreamRangeAsync scans only 200 entries; busy streams can miss expected events.