stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

audit work

Browse Source
This commit is contained in:
StellaOps Bot
2026-01-02 11:43:43 +02:00
parent 82e55c206a
commit dd581699cc
234 changed files with 5189 additions and 270 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
src/Concelier/__Libraries/StellaOps.Concelier.Connector.Distro.Suse/AGENTS.md Normal file
View File

@@ -0,0 +1,24 @@
# Concelier SUSE Connector Charter
## Mission
Ingest SUSE CSAF advisories and changes.csv feeds into Concelier under the Aggregation-Only Contract (AOC), preserving RPM NEVRA semantics with deterministic, offline-ready mapping.
## Scope
- Connector fetch/parse/map logic in `StellaOps.Concelier.Connector.Distro.Suse`.
- changes.csv parsing, CSAF JSON parsing, cursor and fetch cache handling.
- Mapping to canonical advisories with RPM affected packages and provenance.
- Unit/integration tests and fixtures for changes and advisory parsing.
## Required Reading
- `docs/modules/concelier/architecture.md`
- `docs/modules/platform/architecture-overview.md`
- `docs/ingestion/aggregation-only-contract.md`
- `docs/modules/concelier/operations/mirror.md`
## Working Agreement
1. **Status sync**: update task state to `DOING`/`DONE` in the sprint file and local `TASKS.md` before/after work.
2. **AOC adherence**: do not derive severity or merge fields; persist upstream data with provenance.
3. **Determinism**: sort advisory IDs, CVE lists, packages, and version keys; normalize timestamps to UTC ISO-8601.
4. **Offline readiness**: only fetch from allowlisted SUSE endpoints; document bundle usage for air-gapped runs.
5. **Testing**: add fixtures for changes/CSAF parsing and mapping; keep integration tests deterministic and opt-in.
6. **Documentation**: update connector ops docs when configuration or mapping changes.