up
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
console-runner-image / build-runner-image (push) Has been cancelled
Signals CI & Image / signals-ci (push) Has been cancelled
Signals Reachability Scoring & Events / reachability-smoke (push) Has been cancelled
Signals Reachability Scoring & Events / sign-and-upload (push) Has been cancelled
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
console-runner-image / build-runner-image (push) Has been cancelled
Signals CI & Image / signals-ci (push) Has been cancelled
Signals Reachability Scoring & Events / reachability-smoke (push) Has been cancelled
Signals Reachability Scoring & Events / sign-and-upload (push) Has been cancelled
This commit is contained in:
StellaOps Bot
@@ -85,7 +85,7 @@
|
||||
| 2025-12-07 | CVSS-DOCS-190-012 moved to DOING; W4 Documentation wave opened to capture receipt API/CLI/UI docs. | Docs |
|
||||
| 2025-12-07 | Wave W3 Integration marked DONE after CLI/UI delivery; Web console hosts receipt viewer; sprint wave table updated. | Project Mgmt |
|
||||
| 2025-12-07 | CVSS-UI-190-011 DONE: added CVSS receipt viewer to Web console (`src/Web/StellaOps.Web`), route `/cvss/receipts/:receiptId`, with score badge, tabbed sections, stub client, and unit spec. | Implementer |
|
||||
| 2025-12-07 | CVSS-UI-190-011 set to BLOCKED: UI workspace `src/UI/StellaOps.UI` contains no Angular project (only AGENTS/TASKS stubs); cannot implement receipt UI until workspace is restored or scaffolded. | Implementer |
|
||||
| 2025-12-07 | CVSS-UI-190-011 set to BLOCKED: UI workspace `src/Web/StellaOps.Web` contains no Angular project (only AGENTS/TASKS stubs); cannot implement receipt UI until workspace is restored or scaffolded. | Implementer |
|
||||
| 2025-12-07 | System.CommandLine beta5 migration completed; CLI cvss verbs build/run with new API surface. NuGet fallback probing fully disabled via repo-local cache; full CLI build (with deps) now succeeds. Risk R7 mitigated. | Implementer |
|
||||
| 2025-12-07 | Cleared NuGet fallback probing of VS global cache; set repo-local package cache and explicit sources. Shared libraries build; CLI restore now succeeds but System.CommandLine API drift is blocking CLI build and needs follow-up alignment. | Implementer |
|
||||
| 2025-12-06 | CVSS-CLI-190-010 DONE: added CLI `cvss` verbs (score/show/history/export) targeting Policy Gateway CVSS endpoints; uses local vector parsing and policy hash; JSON export supported. | Implementer |
|
||||
|
||||
@@ -76,7 +76,7 @@
|
||||
| 4 | Provide AOC verifier endpoint parity notes for UI-AOC-19-003 | Notifier Guild | 2025-11-27 | BLOCKED (parity notes pending delivery) |
|
||||
| 5 | Receive SDK parity matrix (Wave B, SPRINT_0208_0001_0001_sdk) to unblock Console data providers and scope exports | UI Guild · SDK Generator Guild | 2025-12-16 | BLOCKED (awaiting SDK parity delivery) |
|
||||
| 6 | Publish canonical UI Micro-Interactions advisory (MI1–MI10) with motion tokens, reduced-motion rules, and fixtures referenced by this sprint | Product Mgmt · UX Guild | 2025-12-06 | DONE |
|
||||
| 7 | Align sprint working directory to `src/Web/StellaOps.Web` and verify workspace present (was `src/UI/StellaOps.UI`) | UI Guild | 2025-12-05 | DONE (2025-12-04) |
|
||||
| 7 | Align sprint working directory to `src/Web/StellaOps.Web` and verify workspace present (was `src/Web/StellaOps.Web`) | UI Guild | 2025-12-05 | DONE (2025-12-04) |
|
||||
| 8 | Refresh package-lock with new Storybook/a11y devDependencies (registry auth required) | UI Guild · DevEx | 2025-12-06 | DONE (2025-12-04) |
|
||||
| 9 | Clean node_modules permissions and rerun Storybook + a11y smoke after wrapper addition | UI Guild · DevEx | 2025-12-07 | BLOCKED (Storybook/Angular CLI hang even with Node 20 + analytics disabled; need clean ext4 runner to rerun Storybook + a11y smoke) |
|
||||
| 10 | Migrate Storybook to Angular builder per SB_FRAMEWORK_ANGULAR_0001 guidance | UI Guild | 2025-12-08 | DOING (automigrate + builder wired; ~/.angular/config analytics disabled; Storybook build still hanging locally) |
|
||||
@@ -100,9 +100,9 @@
|
||||
| 2025-12-04 | Resolved npm install by removing obsolete `@storybook/angular-renderer` dependency; refreshed `package-lock.json` with Storybook/a11y devDependencies. Storybook CLI still not runnable via `storybook` bin; requires direct node entrypoint (follow-up). | Implementer |
|
||||
| 2025-12-04 | Added `scripts/storybook.js` wrapper and updated npm scripts. Clean install in temp copy succeeded; `storybook:build` now fails with SB_FRAMEWORK_ANGULAR_0001 (needs Angular Storybook builder migration) and `test:a11y` timed out waiting for dev server. Action #9 remains BLOCKED pending migration and rerun of Storybook + a11y smoke. | Implementer |
|
||||
| 2025-12-04 | Ran Storybook automigrate in clean copy, applied Angular builder targets, updated stories glob, and added @storybook/test/@chromatic-com/storybook. Synced changes into workspace and ran `npm install`; however `ng run stellaops-web:build-storybook` still exits non-zero with no output (Angular CLI appears to hang in this environment). Action #10 remains DOING; tests still blocked. | Implementer |
|
||||
| 2025-12-04 | Confirmed canonical Angular workspace is `src/Web/StellaOps.Web` (not `src/UI/StellaOps.UI`); updated working directory, blockers, and Action #7 accordingly. Graph blockers now tied to generated `graph:*` SDK scopes. | Project mgmt |
|
||||
| 2025-12-04 | Confirmed canonical Angular workspace is `src/Web/StellaOps.Web` (not `src/Web/StellaOps.Web`); updated working directory, blockers, and Action #7 accordingly. Graph blockers now tied to generated `graph:*` SDK scopes. | Project mgmt |
|
||||
| 2025-12-04 | Published canonical UI Micro-Interactions advisory (`docs/product-advisories/30-Nov-2025 - UI Micro-Interactions for StellaOps.md`). UI-MICRO-GAPS-0209-011 remains BLOCKED pending motion token catalog + a11y/Storybook/Playwright harness in `src/Web/StellaOps.Web`. | Project mgmt |
|
||||
| 2025-12-04 | Earlier note: UI-MICRO-GAPS-0209-011 was marked BLOCKED when advisory was still pending and `src/UI/StellaOps.UI` was empty; superseded by publication + path correction the same day. | Project mgmt |
|
||||
| 2025-12-04 | Earlier note: UI-MICRO-GAPS-0209-011 was marked BLOCKED when advisory was still pending and `src/Web/StellaOps.Web` was empty; superseded by publication + path correction the same day. | Project mgmt |
|
||||
| 2025-12-03 | Marked UI-GRAPH-24-001/002/003/004/006 BLOCKED: UI path was empty and `graph:*` scope SDK exports were missing; will re-evaluate after path correction and SDK delivery. | Implementer |
|
||||
| 2025-11-27 | UI-GRAPH-21-001: Created stub `StellaOpsScopes` exports and integrated auth configuration into Graph Explorer. Created `scopes.ts` with: typed scope constants (`GRAPH_READ`, `GRAPH_WRITE`, `GRAPH_ADMIN`, `GRAPH_EXPORT`, `GRAPH_SIMULATE` and scopes for SBOM, Scanner, Policy, Exception, Release, AOC, Admin domains), scope groupings (`GRAPH_VIEWER`, `GRAPH_EDITOR`, `GRAPH_ADMIN`, `RELEASE_MANAGER`, `SECURITY_ADMIN`), human-readable labels, and helper functions (`hasScope`, `hasAllScopes`, `hasAnyScope`). Created `auth.service.ts` with `AuthService` interface and `MockAuthService` implementation providing: user info with tenant context, scope-based permission methods (`canViewGraph`, `canEditGraph`, `canExportGraph`, `canSimulate`). Integrated into `GraphExplorerComponent` via `AUTH_SERVICE` injection token: added computed signals for scope-based permissions (`canViewGraph`, `canEditGraph`, `canExportGraph`, `canSimulate`, `canCreateException`), current user info, and user scopes list. Stub implementation allows Graph Explorer development to proceed; will be replaced by generated SDK exports from SPRINT_0208_0001_0001_sdk. Files added: `src/app/core/auth/scopes.ts`, `src/app/core/auth/auth.service.ts`, `src/app/core/auth/index.ts`. Files updated: `graph-explorer.component.ts`. | UI Guild |
|
||||
| 2025-11-27 | UI-AOC-19-001/002/003: Implemented Sources dashboard with AOC metrics tiles, violation drill-down, and "Verify last 24h" action. Created domain models (`aoc.models.ts`) for AocDashboardSummary, AocPassFailSummary, AocViolationCode, IngestThroughput, AocSource, AocCheckResult, VerificationRequest, ViolationDetail, OffendingField, and ProvenanceMetadata. Created mock API service (`aoc.client.ts`) with fixtures showing pass/fail metrics, 5 violation codes (AOC-001 through AOC-020), 4 tenant throughput records, 4 sources (registry, pipeline, manual), and sample check results. Built `AocDashboardComponent` (`/sources` route) with 3 tiles: (1) Pass/Fail tile with large pass rate percentage, trend indicator (improving/stable/degrading), mini 7-day chart, passed/failed/pending counts; (2) Recent Violations tile with severity badges, violation codes, names, counts, and modal detail view; (3) Ingest Throughput tile with total documents/bytes and per-tenant breakdown table. Added Sources section showing source cards with type icons, pass rates, recent violation chips, and last check time. Implemented "Verify Last 24h" button triggering verification endpoint with progress feedback and CLI parity command display (`stella aoc verify --since 24h --output json`). Created `ViolationDetailComponent` (`/sources/violations/:code` route) showing all occurrences of a violation code with: offending fields list (JSON path, expected vs actual values, reason), provenance metadata (source type/URI, build ID, commit SHA, pipeline URL), and suggested fix. Files added: `src/app/core/api/aoc.{models,client}.ts`, `src/app/features/sources/aoc-dashboard.component.{ts,html,scss}`, `violation-detail.component.ts`, `index.ts`. Routes registered at `/sources` and `/sources/violations/:code`. | UI Guild |
|
||||
|
||||
@@ -130,7 +130,7 @@
|
||||
| --- | --- | --- |
|
||||
| 2025-11-28 | Sprint created from product advisory `docs/product-advisories/archived/27-Nov-2025-superseded/28-Nov-2025 - Vulnerability Triage UX & VEX-First Decisioning.md`. 38 tasks defined across 5 UI task groups, 2 API task groups, 3 schema tasks, 3 DTO tasks, 3 TS interface tasks. | Project mgmt |
|
||||
| 2025-11-30 | Added DOC-11-* doc-sync tasks per advisory handling rules; no scope change to delivery waves. | Project mgmt |
|
||||
| 2025-11-30 | Marked UI-TRIAGE-01-001 and TS-10-* tasks BLOCKED because src/UI/StellaOps.UI lacks Angular workspace; awaiting restoration to proceed. | UI Guild |
|
||||
| 2025-11-30 | Marked UI-TRIAGE-01-001 and TS-10-* tasks BLOCKED because src/Web/StellaOps.Web lacks Angular workspace; awaiting restoration to proceed. | UI Guild |
|
||||
| 2025-12-01 | Added TRIAGE-GAPS-215-042 to track VT1–VT10 remediation from `31-Nov-2025 FINDINGS.md`; status TODO pending schema publication and UI workspace bootstrap. | Project Mgmt |
|
||||
| 2025-12-01 | Added UI-PROOF-VEX-0215-010 to address PVX1–PVX10 proof-linked VEX UI gaps from `31-Nov-2025 FINDINGS.md`; status TODO pending API scope/caching/integrity rules and fixtures. | Project Mgmt |
|
||||
| 2025-12-01 | Added TTE-GAPS-0215-011 to cover TTE1–TTE10 Time-to-Evidence metric gaps from `31-Nov-2025 FINDINGS.md`; status TODO pending schema publication, SLO policy, and telemetry alignment. | Project Mgmt |
|
||||
|
||||
@@ -299,7 +299,7 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 11 — Signing Chain Bring-up | ATTESTOR-VERIFY-11-202 | DONE (2025-10-19) | `/rekor/verify` + retrieval endpoints validating signatures and Merkle proofs. | Attestor Guild | Path: src/Attestor/StellaOps.Attestor | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 11 — Signing Chain Bring-up | ATTESTOR-OBS-11-203 | DONE (2025-10-19) | Telemetry, alerting, mTLS hardening, and archive workflow for Attestor. | Attestor Guild | Path: src/Attestor/StellaOps.Attestor | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 11 — Storage Platform Hardening | SCANNER-STORAGE-11-401 | DONE (2025-10-23) | Migrate scanner object storage integration from MinIO to RustFS with data migration plan. | Scanner Storage Guild | Path: src/Scanner/__Libraries/StellaOps.Scanner.Storage | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 11 — UI Integration | UI-ATTEST-11-005 | DONE (2025-10-23) | Attestation visibility (Rekor id, status) on Scan Detail. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 11 — UI Integration | UI-ATTEST-11-005 | DONE (2025-10-23) | Attestation visibility (Rekor id, status) on Scan Detail. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 12 — Runtime Guardrails | ZASTAVA-CORE-12-201 | DONE (2025-10-23) | Define runtime event/admission DTOs, hashing helpers, and versioning strategy. | Zastava Core Guild | Path: src/Zastava/__Libraries/StellaOps.Zastava.Core | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 12 — Runtime Guardrails | ZASTAVA-CORE-12-202 | DONE (2025-10-23) | Provide configuration/logging/metrics utilities shared by Observer/Webhook. | Zastava Core Guild | Path: src/Zastava/__Libraries/StellaOps.Zastava.Core | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 12 — Runtime Guardrails | ZASTAVA-CORE-12-203 | DONE (2025-10-23) | Authority client helpers, OpTok caching, and security guardrails for runtime services. | Zastava Core Guild | Path: src/Zastava/__Libraries/StellaOps.Zastava.Core | 2025-10-19 |
|
||||
@@ -316,8 +316,8 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 12 — Runtime Guardrails | SCANNER-RUNTIME-12-303 | DONE (2025-10-24) | Align `/policy/runtime` verdicts with canonical policy evaluation (Conselier/Excitor). | Scanner WebService Guild | Path: src/Scanner/StellaOps.Scanner.WebService | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 12 — Runtime Guardrails | SCANNER-RUNTIME-12-304 | DONE (2025-10-24) | Integrate attestation verification into runtime policy metadata. | Scanner WebService Guild | Path: src/Scanner/StellaOps.Scanner.WebService | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 12 — Runtime Guardrails | SCANNER-RUNTIME-12-305 | DONE (2025-10-24) | Deliver shared fixtures + e2e validation with Zastava/CLI teams. | Scanner WebService Guild | Path: src/Scanner/StellaOps.Scanner.WebService | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 13 — UX & CLI Experience | UI-AUTH-13-001 | DONE (2025-10-23) | Integrate Authority OIDC + DPoP flows with session management. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 13 — UX & CLI Experience | UI-NOTIFY-13-006 | DONE (2025-10-25) | Notify panel: channels/rules CRUD, deliveries view, test send. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 13 — UX & CLI Experience | UI-AUTH-13-001 | DONE (2025-10-23) | Integrate Authority OIDC + DPoP flows with session management. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 13 — UX & CLI Experience | UI-NOTIFY-13-006 | DONE (2025-10-25) | Notify panel: channels/rules CRUD, deliveries view, test send. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 13 — Platform Reliability | DEVOPS-NUGET-13-001 | DONE (2025-10-25) | Wire up .NET 10 preview feeds/local mirrors so `dotnet restore` succeeds offline; document updated NuGet bootstrap. | DevOps Guild, Platform Leads | Path: ops/devops | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 15 — Notify Foundations | NOTIFY-QUEUE-15-401 | DONE (2025-10-23) | Bus abstraction + Redis Streams adapter with ordering/idempotency. | Notify Queue Guild | Path: src/Notify/__Libraries/StellaOps.Notify.Queue | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 15 — Notify Foundations | NOTIFY-QUEUE-15-402 | DONE (2025-10-23) | NATS JetStream adapter with health probes and failover. | Notify Queue Guild | Path: src/Notify/__Libraries/StellaOps.Notify.Queue | 2025-10-19 |
|
||||
@@ -471,9 +471,9 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | POLICY-AOC-19-002 | TODO | Enforce Policy-only writes to `effective_finding_*` collections. | Policy Guild, Security Guild | Path: src/Policy/__Libraries/StellaOps.Policy | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | POLICY-AOC-19-003 | TODO | Update Policy readers to consume only raw document fields. | Policy Guild | Path: src/Policy/__Libraries/StellaOps.Policy | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | POLICY-AOC-19-004 | TODO | Add determinism tests for raw-driven policy recomputation. | Policy Guild, QA Guild | Path: src/Policy/__Libraries/StellaOps.Policy | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | UI-AOC-19-001 | TODO | Add Sources dashboard tiles surfacing AOC status and violations. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | UI-AOC-19-002 | TODO | Build violation drill-down view for offending documents. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | UI-AOC-19-003 | TODO | Wire "Verify last 24h" action and CLI parity messaging. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | UI-AOC-19-001 | TODO | Add Sources dashboard tiles surfacing AOC status and violations. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | UI-AOC-19-002 | TODO | Build violation drill-down view for offending documents. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | UI-AOC-19-003 | TODO | Wire "Verify last 24h" action and CLI parity messaging. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | WEB-AOC-19-001 | DOING (2025-10-26) | Provide shared AOC forbidden key set and guard middleware. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | WEB-AOC-19-002 | TODO | Ship provenance builder and signature helpers for ingestion services. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 19 — Aggregation-Only Contract Enforcement | WEB-AOC-19-003 | TODO | Author analyzer + shared test fixtures for guard compliance. | BE-Base Platform Guild, QA Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
@@ -500,10 +500,10 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | SCHED-WORKER-20-301 | TODO | Schedule policy runs via API with idempotent job tracking. | Scheduler Worker Guild | Path: src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | SCHED-WORKER-20-302 | TODO | Implement delta targeting leveraging change streams + policy metadata. | Scheduler Worker Guild | Path: src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | SCHED-WORKER-20-303 | TODO | Expose policy scheduling metrics/logs with policy/run identifiers. | Scheduler Worker Guild, Observability Guild | Path: src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-001 | TODO | Ship Monaco-based policy editor with inline diagnostics + checklists. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-002 | TODO | Build simulation panel with deterministic diff rendering + virtualization. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-003 | TODO | Implement submit/review/approve workflow with RBAC + audit trail. | UI Guild, Product Ops | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-004 | TODO | Add run dashboards (heatmap/VEX wins/suppressions) with export. | UI Guild, Observability Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-001 | TODO | Ship Monaco-based policy editor with inline diagnostics + checklists. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-002 | TODO | Build simulation panel with deterministic diff rendering + virtualization. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-003 | TODO | Implement submit/review/approve workflow with RBAC + audit trail. | UI Guild, Product Ops | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | UI-POLICY-20-004 | TODO | Add run dashboards (heatmap/VEX wins/suppressions) with export. | UI Guild, Observability Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | WEB-POLICY-20-001 | TODO | Implement Policy CRUD/compile/run/simulate/findings/explain endpoints. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | WEB-POLICY-20-002 | TODO | Add pagination, filters, deterministic ordering to policy listings. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 20 — Policy Engine v2 | WEB-POLICY-20-003 | TODO | Map engine errors to `ERR_POL_*` responses with contract tests. | BE-Base Platform Guild, QA Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
@@ -549,8 +549,8 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | POLICY-ENGINE-40-001 | TODO | Update severity selection to handle multiple source severities per linkset. | Policy Guild | Path: src/Policy/StellaOps.Policy.Engine | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | POLICY-ENGINE-40-002 | TODO | Integrate VEX linkset conflicts into effective findings/explain traces. | Policy Guild, Excititor Guild | Path: src/Policy/StellaOps.Policy.Engine | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | SCANNER-LNM-21-001 | TODO | Update report/runtime payloads to consume linksets and surface source evidence. | Scanner WebService Guild | Path: src/Scanner/StellaOps.Scanner.WebService | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | UI-LNM-22-001 | TODO | Deliver Evidence panel with policy banner and source observations. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | UI-LNM-22-003 | TODO | Add VEX evidence tab with conflict indicators and exports. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | UI-LNM-22-001 | TODO | Deliver Evidence panel with policy banner and source observations. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | UI-LNM-22-003 | TODO | Add VEX evidence tab with conflict indicators and exports. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | WEB-LNM-21-001 | TODO | Surface advisory observation/linkset APIs through gateway with RBAC. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 22 — Link-Not-Merge v1 | WEB-LNM-21-002 | TODO | Expose VEX observation/linkset endpoints with export handling. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 23 — StellaOps Console | DOCS-CONSOLE-23-015 | TODO | Produce `/docs/architecture/console.md` describing packages, data flow, SSE design. | Docs Guild | Path: docs | 2025-10-19 |
|
||||
@@ -586,8 +586,8 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | EXCITITOR-GRAPH-24-001 | TODO | Surface raw VEX statements/linksets for overlay services (no suppression/precedence logic here). | Excititor Core Guild | Path: src/Excititor/__Libraries/StellaOps.Excititor.Core | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | POLICY-ENGINE-60-001 | TODO | Maintain Redis effective decision maps for overlays. | Policy Guild | Path: src/Policy/StellaOps.Policy.Engine | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | POLICY-ENGINE-60-002 | TODO | Provide simulation bridge for graph what-if APIs. | Policy Guild | Path: src/Policy/StellaOps.Policy.Engine | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | UI-GRAPH-24-001 | TODO | Build Graph Explorer canvas with virtualization. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | UI-GRAPH-24-002 | TODO | Implement overlays (Policy/Evidence/License/Exposure). | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | UI-GRAPH-24-001 | TODO | Build Graph Explorer canvas with virtualization. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 24 — Graph & Vuln Explorer v1 | UI-GRAPH-24-002 | TODO | Implement overlays (Policy/Evidence/License/Exposure). | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | DOCS-EXC-25-001 | TODO | Document exception governance concepts/workflow. | Docs Guild | Path: docs | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | DOCS-EXC-25-002 | TODO | Document approvals routing / MFA requirements. | Docs Guild | Path: docs | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | DOCS-EXC-25-003 | TODO | Publish API documentation for exceptions endpoints. | Docs Guild | Path: docs | 2025-10-19 |
|
||||
@@ -604,10 +604,10 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | POLICY-ENGINE-70-005 | TODO | Hook workers/events for activation/expiry. | Policy Guild | Path: src/Policy/StellaOps.Policy.Engine | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | SCHED-WORKER-25-101 | TODO | Implement exception lifecycle worker for activation/expiry. | Scheduler Worker Guild | Path: src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | SCHED-WORKER-25-102 | TODO | Add expiring notification job & metrics. | Scheduler Worker Guild | Path: src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-001 | TODO | Deliver Exception Center (list/kanban) with workflows. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-002 | TODO | Build exception creation wizard with scope/timebox guardrails. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-003 | TODO | Add inline exception drafting/proposing from explorers. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-004 | TODO | Surface badges/countdowns/explain integration. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-001 | TODO | Deliver Exception Center (list/kanban) with workflows. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-002 | TODO | Build exception creation wizard with scope/timebox guardrails. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-003 | TODO | Add inline exception drafting/proposing from explorers. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | UI-EXC-25-004 | TODO | Surface badges/countdowns/explain integration. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | WEB-EXC-25-001 | TODO | Ship exception CRUD + workflow API endpoints. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | WEB-EXC-25-002 | TODO | Extend policy endpoints to include exception metadata. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 25 — Exceptions v1 | WEB-EXC-25-003 | TODO | Emit exception events/notifications with rate limits. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
@@ -638,10 +638,10 @@ Consolidated task ledger for everything under `docs/implplan/archived/` (sprints
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | SIGNALS-24-003 | BLOCKED (2025-10-27) | Ingest runtime facts and persist context data with AOC provenance. Depends on SIGNALS-24-001 base host. | Signals Guild | Path: src/Signals/StellaOps.Signals | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | SIGNALS-24-004 | BLOCKED (2025-10-27) | Deliver reachability scoring engine writing reachability facts. Blocked until ingestion pipelines unblock. | Signals Guild | Path: src/Signals/StellaOps.Signals | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | SIGNALS-24-005 | BLOCKED (2025-10-27) | Implement caches + signals events. Downstream of SIGNALS-24-004. | Signals Guild | Path: src/Signals/StellaOps.Signals | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-001 | TODO | Add reachability columns/badges to Vulnerability Explorer. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-002 | TODO | Enhance Why drawer with call path/timeline. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-003 | TODO | Add reachability overlay/time slider to SBOM Graph. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-004 | TODO | Build Reachability Center + missing sensor view. | UI Guild | Path: src/UI/StellaOps.UI | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-001 | TODO | Add reachability columns/badges to Vulnerability Explorer. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-002 | TODO | Enhance Why drawer with call path/timeline. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-003 | TODO | Add reachability overlay/time slider to SBOM Graph. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | UI-SIG-26-004 | TODO | Build Reachability Center + missing sensor view. | UI Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | WEB-SIG-26-001 | TODO | Expose signals proxy endpoints with pagination and RBAC. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | WEB-SIG-26-002 | TODO | Join reachability data into policy/vuln responses. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
| docs/implplan/archived/updates/tasks.md | Sprint 26 — Reachability v1 | WEB-SIG-26-003 | TODO | Support reachability overrides in simulate APIs. | BE-Base Platform Guild | Path: src/Web/StellaOps.Web | 2025-10-19 |
|
||||
|
||||
@@ -302,7 +302,7 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 11 | Signing Chain Bring-up | src/Attestor/StellaOps.Attestor | DONE (2025-10-19) | Attestor Guild | ATTESTOR-VERIFY-11-202 | `/rekor/verify` + retrieval endpoints validating signatures and Merkle proofs. |
|
||||
| Sprint 11 | Signing Chain Bring-up | src/Attestor/StellaOps.Attestor | DONE (2025-10-19) | Attestor Guild | ATTESTOR-OBS-11-203 | Telemetry, alerting, mTLS hardening, and archive workflow for Attestor. |
|
||||
| Sprint 11 | Storage Platform Hardening | src/Scanner/__Libraries/StellaOps.Scanner.Storage | DONE (2025-10-23) | Scanner Storage Guild | SCANNER-STORAGE-11-401 | Migrate scanner object storage integration from MinIO to RustFS with data migration plan. |
|
||||
| Sprint 11 | UI Integration | src/UI/StellaOps.UI | DONE (2025-10-23) | UI Guild | UI-ATTEST-11-005 | Attestation visibility (Rekor id, status) on Scan Detail. |
|
||||
| Sprint 11 | UI Integration | src/Web/StellaOps.Web | DONE (2025-10-23) | UI Guild | UI-ATTEST-11-005 | Attestation visibility (Rekor id, status) on Scan Detail. |
|
||||
| Sprint 12 | Runtime Guardrails | src/Zastava/__Libraries/StellaOps.Zastava.Core | DONE (2025-10-23) | Zastava Core Guild | ZASTAVA-CORE-12-201 | Define runtime event/admission DTOs, hashing helpers, and versioning strategy. |
|
||||
| Sprint 12 | Runtime Guardrails | src/Zastava/__Libraries/StellaOps.Zastava.Core | DONE (2025-10-23) | Zastava Core Guild | ZASTAVA-CORE-12-202 | Provide configuration/logging/metrics utilities shared by Observer/Webhook. |
|
||||
| Sprint 12 | Runtime Guardrails | src/Zastava/__Libraries/StellaOps.Zastava.Core | DONE (2025-10-23) | Zastava Core Guild | ZASTAVA-CORE-12-203 | Authority client helpers, OpTok caching, and security guardrails for runtime services. |
|
||||
@@ -319,8 +319,8 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 12 | Runtime Guardrails | src/Scanner/StellaOps.Scanner.WebService | DONE (2025-10-24) | Scanner WebService Guild | SCANNER-RUNTIME-12-303 | Align `/policy/runtime` verdicts with canonical policy evaluation (Conselier/Excitor). |
|
||||
| Sprint 12 | Runtime Guardrails | src/Scanner/StellaOps.Scanner.WebService | DONE (2025-10-24) | Scanner WebService Guild | SCANNER-RUNTIME-12-304 | Integrate attestation verification into runtime policy metadata. |
|
||||
| Sprint 12 | Runtime Guardrails | src/Scanner/StellaOps.Scanner.WebService | DONE (2025-10-24) | Scanner WebService Guild | SCANNER-RUNTIME-12-305 | Deliver shared fixtures + e2e validation with Zastava/CLI teams. |
|
||||
| Sprint 13 | UX & CLI Experience | src/UI/StellaOps.UI | DONE (2025-10-23) | UI Guild | UI-AUTH-13-001 | Integrate Authority OIDC + DPoP flows with session management. |
|
||||
| Sprint 13 | UX & CLI Experience | src/UI/StellaOps.UI | DONE (2025-10-25) | UI Guild | UI-NOTIFY-13-006 | Notify panel: channels/rules CRUD, deliveries view, test send. |
|
||||
| Sprint 13 | UX & CLI Experience | src/Web/StellaOps.Web | DONE (2025-10-23) | UI Guild | UI-AUTH-13-001 | Integrate Authority OIDC + DPoP flows with session management. |
|
||||
| Sprint 13 | UX & CLI Experience | src/Web/StellaOps.Web | DONE (2025-10-25) | UI Guild | UI-NOTIFY-13-006 | Notify panel: channels/rules CRUD, deliveries view, test send. |
|
||||
| Sprint 13 | Platform Reliability | ops/devops | DONE (2025-10-25) | DevOps Guild, Platform Leads | DEVOPS-NUGET-13-001 | Wire up .NET 10 preview feeds/local mirrors so `dotnet restore` succeeds offline; document updated NuGet bootstrap. |
|
||||
| Sprint 15 | Notify Foundations | src/Notify/__Libraries/StellaOps.Notify.Queue | DONE (2025-10-23) | Notify Queue Guild | NOTIFY-QUEUE-15-401 | Bus abstraction + Redis Streams adapter with ordering/idempotency. |
|
||||
| Sprint 15 | Notify Foundations | src/Notify/__Libraries/StellaOps.Notify.Queue | DONE (2025-10-23) | Notify Queue Guild | NOTIFY-QUEUE-15-402 | NATS JetStream adapter with health probes and failover. |
|
||||
@@ -488,9 +488,9 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Policy/__Libraries/StellaOps.Policy | TODO | Policy Guild, Security Guild | POLICY-AOC-19-002 | Enforce Policy-only writes to `effective_finding_*` collections. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Policy/__Libraries/StellaOps.Policy | TODO | Policy Guild | POLICY-AOC-19-003 | Update Policy readers to consume only raw document fields. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Policy/__Libraries/StellaOps.Policy | TODO | Policy Guild, QA Guild | POLICY-AOC-19-004 | Add determinism tests for raw-driven policy recomputation. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/UI/StellaOps.UI | TODO | UI Guild | UI-AOC-19-001 | Add Sources dashboard tiles surfacing AOC status and violations. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/UI/StellaOps.UI | TODO | UI Guild | UI-AOC-19-002 | Build violation drill-down view for offending documents. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/UI/StellaOps.UI | TODO | UI Guild | UI-AOC-19-003 | Wire "Verify last 24h" action and CLI parity messaging. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Web/StellaOps.Web | TODO | UI Guild | UI-AOC-19-001 | Add Sources dashboard tiles surfacing AOC status and violations. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Web/StellaOps.Web | TODO | UI Guild | UI-AOC-19-002 | Build violation drill-down view for offending documents. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Web/StellaOps.Web | TODO | UI Guild | UI-AOC-19-003 | Wire "Verify last 24h" action and CLI parity messaging. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Web/StellaOps.Web | DOING (2025-10-26) | BE-Base Platform Guild | WEB-AOC-19-001 | Provide shared AOC forbidden key set and guard middleware. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-AOC-19-002 | Ship provenance builder and signature helpers for ingestion services. |
|
||||
| Sprint 19 | Aggregation-Only Contract Enforcement | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild, QA Guild | WEB-AOC-19-003 | Author analyzer + shared test fixtures for guard compliance. |
|
||||
@@ -518,10 +518,10 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 20 | Policy Engine v2 | src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | TODO | Scheduler Worker Guild | SCHED-WORKER-20-301 | Schedule policy runs via API with idempotent job tracking. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | TODO | Scheduler Worker Guild | SCHED-WORKER-20-302 | Implement delta targeting leveraging change streams + policy metadata. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | TODO | Scheduler Worker Guild, Observability Guild | SCHED-WORKER-20-303 | Expose policy scheduling metrics/logs with policy/run identifiers. |
|
||||
| Sprint 20 | Policy Engine v2 | src/UI/StellaOps.UI | TODO | UI Guild | UI-POLICY-20-001 | Ship Monaco-based policy editor with inline diagnostics + checklists. |
|
||||
| Sprint 20 | Policy Engine v2 | src/UI/StellaOps.UI | TODO | UI Guild | UI-POLICY-20-002 | Build simulation panel with deterministic diff rendering + virtualization. |
|
||||
| Sprint 20 | Policy Engine v2 | src/UI/StellaOps.UI | TODO | UI Guild, Product Ops | UI-POLICY-20-003 | Implement submit/review/approve workflow with RBAC + audit trail. |
|
||||
| Sprint 20 | Policy Engine v2 | src/UI/StellaOps.UI | TODO | UI Guild, Observability Guild | UI-POLICY-20-004 | Add run dashboards (heatmap/VEX wins/suppressions) with export. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | UI Guild | UI-POLICY-20-001 | Ship Monaco-based policy editor with inline diagnostics + checklists. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | UI Guild | UI-POLICY-20-002 | Build simulation panel with deterministic diff rendering + virtualization. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | UI Guild, Product Ops | UI-POLICY-20-003 | Implement submit/review/approve workflow with RBAC + audit trail. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | UI Guild, Observability Guild | UI-POLICY-20-004 | Add run dashboards (heatmap/VEX wins/suppressions) with export. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-POLICY-20-001 | Implement Policy CRUD/compile/run/simulate/findings/explain endpoints. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-POLICY-20-002 | Add pagination, filters, deterministic ordering to policy listings. |
|
||||
| Sprint 20 | Policy Engine v2 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild, QA Guild | WEB-POLICY-20-003 | Map engine errors to `ERR_POL_*` responses with contract tests. |
|
||||
@@ -570,8 +570,8 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Policy/StellaOps.Policy.Engine | TODO | Policy Guild | POLICY-ENGINE-40-001 | Update severity selection to handle multiple source severities per linkset. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Policy/StellaOps.Policy.Engine | TODO | Policy Guild, Excititor Guild | POLICY-ENGINE-40-002 | Integrate VEX linkset conflicts into effective findings/explain traces. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Scanner/StellaOps.Scanner.WebService | TODO | Scanner WebService Guild | SCANNER-LNM-21-001 | Update report/runtime payloads to consume linksets and surface source evidence. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-LNM-22-001 | Deliver Evidence panel with policy banner and source observations. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-LNM-22-003 | Add VEX evidence tab with conflict indicators and exports. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-LNM-22-001 | Deliver Evidence panel with policy banner and source observations. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-LNM-22-003 | Add VEX evidence tab with conflict indicators and exports. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-LNM-21-001 | Surface advisory observation/linkset APIs through gateway with RBAC. |
|
||||
| Sprint 22 | Link-Not-Merge v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-LNM-21-002 | Expose VEX observation/linkset endpoints with export handling. |
|
||||
| Sprint 23 | StellaOps Console | docs | TODO | Docs Guild | DOCS-CONSOLE-23-015 | Produce `/docs/architecture/console.md` describing packages, data flow, SSE design. |
|
||||
@@ -609,8 +609,8 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/Excititor/__Libraries/StellaOps.Excititor.Core | TODO | Excititor Core Guild | EXCITITOR-GRAPH-24-001 | Surface raw VEX statements/linksets for overlay services (no suppression/precedence logic here). |
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/Policy/StellaOps.Policy.Engine | TODO | Policy Guild | POLICY-ENGINE-60-001 | Maintain Redis effective decision maps for overlays. |
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/Policy/StellaOps.Policy.Engine | TODO | Policy Guild | POLICY-ENGINE-60-002 | Provide simulation bridge for graph what-if APIs. |
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-GRAPH-24-001 | Build Graph Explorer canvas with virtualization. |
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-GRAPH-24-002 | Implement overlays (Policy/Evidence/License/Exposure). |
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-GRAPH-24-001 | Build Graph Explorer canvas with virtualization. |
|
||||
| Sprint 24 | Graph & Vuln Explorer v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-GRAPH-24-002 | Implement overlays (Policy/Evidence/License/Exposure). |
|
||||
| Sprint 25 | Exceptions v1 | docs | TODO | Docs Guild | DOCS-EXC-25-001 | Document exception governance concepts/workflow. |
|
||||
| Sprint 25 | Exceptions v1 | docs | TODO | Docs Guild | DOCS-EXC-25-002 | Document approvals routing / MFA requirements. |
|
||||
| Sprint 25 | Exceptions v1 | docs | TODO | Docs Guild | DOCS-EXC-25-003 | Publish API documentation for exceptions endpoints. |
|
||||
@@ -627,10 +627,10 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 25 | Exceptions v1 | src/Policy/StellaOps.Policy.Engine | TODO | Policy Guild | POLICY-ENGINE-70-005 | Hook workers/events for activation/expiry. |
|
||||
| Sprint 25 | Exceptions v1 | src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | TODO | Scheduler Worker Guild | SCHED-WORKER-25-101 | Implement exception lifecycle worker for activation/expiry. |
|
||||
| Sprint 25 | Exceptions v1 | src/Scheduler/__Libraries/StellaOps.Scheduler.Worker | TODO | Scheduler Worker Guild | SCHED-WORKER-25-102 | Add expiring notification job & metrics. |
|
||||
| Sprint 25 | Exceptions v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-EXC-25-001 | Deliver Exception Center (list/kanban) with workflows. |
|
||||
| Sprint 25 | Exceptions v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-EXC-25-002 | Build exception creation wizard with scope/timebox guardrails. |
|
||||
| Sprint 25 | Exceptions v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-EXC-25-003 | Add inline exception drafting/proposing from explorers. |
|
||||
| Sprint 25 | Exceptions v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-EXC-25-004 | Surface badges/countdowns/explain integration. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-EXC-25-001 | Deliver Exception Center (list/kanban) with workflows. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-EXC-25-002 | Build exception creation wizard with scope/timebox guardrails. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-EXC-25-003 | Add inline exception drafting/proposing from explorers. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-EXC-25-004 | Surface badges/countdowns/explain integration. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-EXC-25-001 | Ship exception CRUD + workflow API endpoints. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-EXC-25-002 | Extend policy endpoints to include exception metadata. |
|
||||
| Sprint 25 | Exceptions v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-EXC-25-003 | Emit exception events/notifications with rate limits. |
|
||||
@@ -661,10 +661,10 @@ This file describe implementation of Stella Ops (docs/README.md). Implementation
|
||||
| Sprint 26 | Reachability v1 | src/Signals/StellaOps.Signals | BLOCKED (2025-10-27) | Signals Guild | SIGNALS-24-003 | Ingest runtime facts and persist context data with AOC provenance. Depends on SIGNALS-24-001 base host. |
|
||||
| Sprint 26 | Reachability v1 | src/Signals/StellaOps.Signals | BLOCKED (2025-10-27) | Signals Guild | SIGNALS-24-004 | Deliver reachability scoring engine writing reachability facts. Blocked until ingestion pipelines unblock. |
|
||||
| Sprint 26 | Reachability v1 | src/Signals/StellaOps.Signals | BLOCKED (2025-10-27) | Signals Guild | SIGNALS-24-005 | Implement caches + signals events. Downstream of SIGNALS-24-004. |
|
||||
| Sprint 26 | Reachability v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-SIG-26-001 | Add reachability columns/badges to Vulnerability Explorer. |
|
||||
| Sprint 26 | Reachability v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-SIG-26-002 | Enhance Why drawer with call path/timeline. |
|
||||
| Sprint 26 | Reachability v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-SIG-26-003 | Add reachability overlay/time slider to SBOM Graph. |
|
||||
| Sprint 26 | Reachability v1 | src/UI/StellaOps.UI | TODO | UI Guild | UI-SIG-26-004 | Build Reachability Center + missing sensor view. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-SIG-26-001 | Add reachability columns/badges to Vulnerability Explorer. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-SIG-26-002 | Enhance Why drawer with call path/timeline. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-SIG-26-003 | Add reachability overlay/time slider to SBOM Graph. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | UI Guild | UI-SIG-26-004 | Build Reachability Center + missing sensor view. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-SIG-26-001 | Expose signals proxy endpoints with pagination and RBAC. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-SIG-26-002 | Join reachability data into policy/vuln responses. |
|
||||
| Sprint 26 | Reachability v1 | src/Web/StellaOps.Web | TODO | BE-Base Platform Guild | WEB-SIG-26-003 | Support reachability overrides in simulate APIs. |
|
||||
|
||||
Reference in New Issue
Block a user