6 Commits

Author	SHA1	Message	Date
StellaOps Bot	600f3a7a3c	feat(graph): introduce graph.inspect.v1 contract and schema for SBOM relationships ... - Added graph.inspect.v1 documentation outlining payload structure and determinism rules. - Created JSON schema for graph.inspect.v1 to enforce payload validation. - Defined mapping rules for graph relationships, advisories, and VEX statements. feat(notifications): establish remediation blueprint for gaps NR1-NR10 - Documented requirements, evidence, and tests for Notifier runtime. - Specified deliverables and next steps for addressing identified gaps. docs(notifications): organize operations and schemas documentation - Created README files for operations, schemas, and security notes to clarify deliverables and policies. feat(advisory): implement PostgreSQL caching for Link-Not-Merge linksets - Created database schema for advisory linkset cache. - Developed repository for managing advisory linkset cache operations. - Added tests to ensure correct functionality of the AdvisoryLinksetCacheRepository.	2025-12-04 09:36:59 +02:00
StellaOps Bot	4dc7cf834a	Add sample proof bundle configurations and verification script ... - Introduced sample proof bundle configuration files for testing, including `sample-proof-bundle-config.dsse.json`, `sample-proof-bundle.dsse.json`, and `sample-proof-bundle.json`. - Implemented a verification script `test_verify_sample.sh` to validate proof bundles against specified schemas and catalogs. - Updated existing proof bundle configurations with new metadata, including versioning, created timestamps, and justification details. - Enhanced evidence entries with expiration dates and hashes for better integrity checks. - Ensured all new configurations adhere to the defined schema for consistency and reliability in testing.	2025-12-04 08:54:32 +02:00
StellaOps Bot	7df0677e34	up	2025-11-30 22:36:03 +02:00
master	75c2bcafce	Add LDAP Distinguished Name Helper and Credential Audit Context ... - Implemented LdapDistinguishedNameHelper for escaping RDN and filter values. - Created AuthorityCredentialAuditContext and IAuthorityCredentialAuditContextAccessor for managing credential audit context. - Developed StandardCredentialAuditLogger with tests for success, failure, and lockout events. - Introduced AuthorityAuditSink for persisting audit records with structured logging. - Added CryptoPro related classes for certificate resolution and signing operations.	2025-11-09 12:21:38 +02:00
master	15b4a1de6a	feat: Document completed tasks for KMS, Cryptography, and Plugin Libraries ... - Added detailed task completion records for KMS interface implementation and CLI support for file-based keys. - Documented security enhancements including Argon2id password hashing, audit event contracts, and rate limiting configurations. - Included scoped service support and integration updates for the Plugin platform, ensuring proper DI handling and testing coverage.	2025-10-31 14:37:45 +02:00
master	d870da18ce	Restructure solution layout by module	2025-10-28 15:10:40 +02:00