update license references from AGPL-3.0-or-later to BUSL-1.1 across multiple documents

docs-archived/implplan/2025-12-26-completed/cicd/SPRINT_20251226_004_CICD_module_publishing.md

@@ -79,7 +79,7 @@ Enable automated NuGet and container publishing to Gitea's built-in package regi
   <PackageId>StellaOps.$(MSBuildProjectName)</PackageId>
   <Authors>StellaOps</Authors>
   <Company>StellaOps</Company>
-  <PackageLicenseExpression>AGPL-3.0-or-later</PackageLicenseExpression>
+  <PackageLicenseExpression>BUSL-1.1</PackageLicenseExpression>
   <RepositoryUrl>https://git.stella-ops.org/stella-ops.org/git.stella-ops.org</RepositoryUrl>
   <RepositoryType>git</RepositoryType>
   <PublishRepositoryUrl>true</PublishRepositoryUrl>

docs-archived/implplan/2026-01-10-plugin-unification/SPRINT_20260110_100_005_PLUGIN_crypto_rework.md

@@ -76,7 +76,7 @@ public sealed class GostPlugin : IPlugin, ICryptoCapability
         Version: "1.0.0",
         Vendor: "Stella Ops",
         Description: "Russian GOST R 34.10-2012 and R 34.11-2012 cryptographic algorithms",
-        LicenseId: "AGPL-3.0-or-later");
+        LicenseId: "BUSL-1.1");
 
     public PluginTrustLevel TrustLevel => PluginTrustLevel.BuiltIn;
 
@@ -248,7 +248,7 @@ plugin:
   version: 1.0.0
   vendor: Stella Ops
   description: Russian GOST R 34.10-2012 and R 34.11-2012 cryptographic algorithms
-  license: AGPL-3.0-or-later
+  license: BUSL-1.1
 
 entryPoint: StellaOps.Cryptography.Plugin.Gost.GostPlugin
 

docs-archived/implplan/SPRINT_20260110_101_004_PLUGIN_sdk.md

@@ -1024,7 +1024,7 @@ public sealed class HttpRequestStep : StepPluginBase
     <Company>Stella Ops</Company>
     <Description>SDK for building Stella Ops Release Orchestrator plugins (steps, gates, connectors)</Description>
     <PackageTags>stellaops;plugin;step;gate;connector;release;orchestrator;workflow</PackageTags>
-    <PackageLicenseExpression>AGPL-3.0-or-later</PackageLicenseExpression>
+    <PackageLicenseExpression>BUSL-1.1</PackageLicenseExpression>
     <PackageProjectUrl>https://stellaops.io</PackageProjectUrl>
     <RepositoryUrl>https://git.stella-ops.org/stella-ops.org/git.stella-ops.org</RepositoryUrl>
     <RepositoryType>git</RepositoryType>

docs-archived/product/advisories/14-Dec-2025/01-Dec-2025 - Common Developers guides.md

@@ -248,16 +248,16 @@ For new test layers or jobs, also update the test‑suite overview and metrics d
 
 ## 9. Licensing & reciprocity
 
-Stella Ops ships under **AGPL‑3.0‑or‑later** with a strong reciprocity clause: ([Stella Ops][8])
+Stella Ops is source-available under **BUSL-1.1** with an Additional Use Grant: ([Stella Ops][8])
 
-* You may run, study, modify, and redistribute it, including as a hosted service.
-* If you run a **modified** version for others over a network, you must make that exact source code available to those users.
-* Official containers are signed and include SBOMs and attestations; verify them with Cosign as described on the license/security pages. ([Stella Ops][8])
+* You may run, study, modify, and self-build for evaluation and development within the Free tier limits.
+* Production use requires a paid plan; offering Stella Ops as a competing hosted service is restricted.
+* Official containers are signed and include SBOMs and attestations; verify them with Cosign as described on the license/security pages. ([Stella Ops][8])
 
 When you build extensions:
 
-* Keep plug‑ins compatible with AGPL expectations around combined works.
-* Don’t embed proprietary logic into the core without checking license implications.
+* Keep plug-ins aligned with BUSL-1.1 terms and the Additional Use Grant.
+* Don't embed proprietary logic into the core without checking license implications.
 
 ---
 
@@ -284,4 +284,4 @@ If you tell me what you’re planning to work on (plug‑in, policy pack, core f
 [5]: https://git.stella-ops.org/stella-ops.org/git.stella-ops.org/src/commit/08b27b8a266c82960c7653797460e1e1d17ecd45/docs/19_TEST_SUITE_OVERVIEW.md "git.stella-ops.org/19_TEST_SUITE_OVERVIEW.md at 08b27b8a266c82960c7653797460e1e1d17ecd45 - git.stella-ops.org - Gitea: Git with a cup of tea"
 [6]: https://git.stella-ops.org/stella-ops.org/git.stella-ops.org/src/commit/08b27b8a266c82960c7653797460e1e1d17ecd45/docs/10_PLUGIN_SDK_GUIDE.md "git.stella-ops.org/10_PLUGIN_SDK_GUIDE.md at 08b27b8a266c82960c7653797460e1e1d17ecd45 - git.stella-ops.org - Gitea: Git with a cup of tea"
 [7]: https://stella-ops.org/docs/policy/dsl/index.html "Stella Ops – Signed Reachability · Deterministic Replay · Sovereign Crypto"
-[8]: https://stella-ops.org/license/?utm_source=chatgpt.com "AGPL‑3.0‑or‑later - Stella Ops"
+[8]: https://stella-ops.org/license/?utm_source=chatgpt.com "BUSL-1.1 - Stella Ops"

docs-archived/product/advisories/2025-12-21-moat-gap-closure/14-Dec-2025 - CVSS and Competitive Analysis Technical Reference.md

@@ -474,7 +474,7 @@ where:
 2. **Reachability + Runtime**: Hybrid static/dynamic analysis
 3. **Offline/Sovereign**: Air-gap operation with regional crypto (FIPS/GOST/eIDAS/SM)
 4. **VEX-First**: Evidence-backed decisioning, not just alerting
-5. **AGPL-3.0**: Self-hostable, no vendor lock-in
+5. **BUSL-1.1**: Source-available, self-hostable, no vendor lock-in
 
 ## 8. MOAT METRICS
 
@@ -548,7 +548,7 @@ Target: ≥90%
 2. **Provable**: Cryptographic proof chains for every decision
 3. **Reachable**: Static + runtime analysis, not just presence
 4. **Sovereign**: Offline operation, regional crypto compliance
-5. **Open**: AGPL-3.0, self-hostable, no lock-in
+5. **Source-available**: BUSL-1.1, self-hostable, no lock-in
 
 ### 10.3 Target Personas
 

docs-archived/product/advisories/2025-12-21-moat-gap-closure/14-Dec-2025 - Developer Onboarding Technical Reference.md

@@ -19,7 +19,7 @@
 - `docs/19_TEST_SUITE_OVERVIEW.md` (test layers, CI expectations)
 - `docs/technical/development/README.md` (developer tooling and workflows)
 - `docs/10_PLUGIN_SDK_GUIDE.md` (plugin SDK + packaging)
-- `LICENSE` (AGPL-3.0-or-later obligations)
+- `LICENSE` (BUSL-1.1 + Additional Use Grant)
 
 ## 1. CORE ENGINEERING PRINCIPLES
 

docs-archived/product/advisories/2025-12-23-sprint-4200/README.md

@@ -62,7 +62,7 @@ All implementations meet StellaOps standards:
 - ✅ Accessible (WCAG 2.1)
 - ✅ Performant (OnPush, signals)
 - ✅ Air-gap compatible
-- ✅ AGPL-3.0-or-later compliant
+- ✅ BUSL-1.1 compliant
 
 ## Next Steps
 

docs-archived/product/advisories/2025-12-23-sprint-4200/SPRINT_4200_SIGN_OFF.md

@@ -195,7 +195,7 @@ All implementations adhere to StellaOps architecture standards:
 - Deterministic packaging
 
 ### ✅ License Compliance
-- AGPL-3.0-or-later throughout
+- BUSL-1.1 throughout
 - No proprietary dependencies
 - All third-party licenses compatible
 

docs-archived/product/advisories/27-Nov-2025-superseded/28-Nov-2025 - Sovereign Crypto for Regional Compliance.md

@@ -251,7 +251,7 @@ Sovereign deployments often require air-gapped operation:
 - CryptoPro CSP requires customer license
 - OpenSSL GOST engine under Apache 2.0
 - Tongsuo under Apache 2.0
-- Forked GostCryptography under MIT (with AGPL obligations from Stella Ops wrapper)
+- Forked GostCryptography under MIT (with BUSL-1.1 obligations from Stella Ops wrapper)
 
 ---
 

docs-archived/product/advisories/27-Nov-2025-superseded/30-Nov-2025 - Implementor Guidelines for Stella Ops.md

@@ -290,9 +290,9 @@ As an implementor:
 
 ## 7. Licensing, attribution, and governance
 
-Stella Ops is AGPL-3.0-or-later and the governance docs + release playbook set clear expectations. ([Stella Ops][10])
+Stella Ops is source-available under BUSL-1.1 and the governance docs + release playbook set clear expectations. ([Stella Ops][10])
 
-* **AGPL network clause:** If you run a modified Stella Ops for others over a network, you must provide the source of that exact version. Don’t introduce proprietary modules that violate this. ([Stella Ops][10])
+* **Source-available terms:** Evaluation and development are free within the Free tier limits; production use requires a paid plan. ([Stella Ops][10])
 * **No hidden SaaS reselling:** Re-hosting as a service is disallowed without prior consent; design and documentation should not encourage “stealth SaaS” business models on top of Stella Ops. ([Gitea: Git with a cup of tea][5])
 * **Attribution:** Keep the original Stella Ops attribution in the UI and CLI, even in forks; don’t strip branding. ([Gitea: Git with a cup of tea][5])
 * **Contribution hygiene:** Ensure all MRs:

docs-archived/product/advisories/30-Dec-2025 - Binary Diff Signatures for Patch Detection.md

@@ -82,7 +82,7 @@ public sealed class ElfDeltaHasher
 # Where it lives in Stella Ops
 
 * **StellaOps.Feedser**: ingest vendor advisories; map CVE → touched symbols/functions.
-* **StellaOps.PatchSigRepo** (new): git‑backed registry of delta signatures (AGPL data pack).
+* **StellaOps.PatchSigRepo** (new): git‑backed registry of delta signatures (BUSL-1.1 data pack).
 * **StellaOps.Scanner.Webservice**: runs the normalizer/hasher against container layers and host files.
 * **StellaOps.Vexer**: emits **machine‑verifiable VEX** statements (“Status=Fixed; Evidence=DeltaSig#abcd…”).
 * **UI**: in the **Finding details** drawer → “Patched by backport (verified by code delta)”; badge links to the exact signature entry.

docs-archived/router/README.md

@@ -295,4 +295,4 @@ For architectural decisions, invariants, and module context, see the [Router Mod
 
 ## License
 
-AGPL-3.0-or-later
+BUSL-1.1