stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
558 Commits 2 Branches 0 Tags
9873f808308d9e5590296c1f12d95c7cdf3457db
Commit Graph

558 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
master
9873f80830 release orchestrator v1 draft and build fixes 2026-01-12 12:24:17 +02:00
master
f3de858c59 Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-11 11:19:42 +02:00
master
582a41d7a9 sprints work 2026-01-11 11:19:40 +02:00
master
f6ef1ef337 Implement TimeProvider injection for deterministic timestamps across various services and modules 2026-01-11 10:12:12 +02:00
master
7f7eb8b228 Complete batch 012 (golden set diff) and 013 (advisory chat), fix build errors 
Sprints completed:
- SPRINT_20260110_012_* (golden set diff layer - 10 sprints)
- SPRINT_20260110_013_* (advisory chat - 4 sprints)

Build fixes applied:
- Fix namespace conflicts with Microsoft.Extensions.Options.Options.Create
- Fix VexDecisionReachabilityIntegrationTests API drift (major rewrite)
- Fix VexSchemaValidationTests FluentAssertions method name
- Fix FixChainGateIntegrationTests ambiguous type references
- Fix AdvisoryAI test files required properties and namespace aliases
- Add stub types for CveMappingController (ICveSymbolMappingService)
- Fix VerdictBuilderService static context issue

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-11 10:09:07 +02:00
master
a62974a8c2 add release orchestrator docs and sprints gaps fills 2026-01-11 01:05:17 +02:00
master
d58c093887 Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-10 22:37:25 +02:00
master
d509c44411 release orchestrator pivot, architecture and planning 2026-01-10 22:37:22 +02:00
master
a3b2f30a11 finish 9th jan sprints 2026-01-10 21:08:39 +02:00
master
17d0631b8e sprints work 2026-01-10 20:38:13 +02:00
master
0d5eda86fc Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-10 11:15:31 +02:00
master
701eb6b21c sprints work 2026-01-10 11:15:28 +02:00
master
c84f421e2f add release orchestrator arch 2026-01-09 23:28:05 +02:00
master
a21d3dbc1f save progress 2026-01-09 18:27:46 +02:00
master
e608752924 Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-08 20:48:20 +02:00
master
51cf4bc16c more audit work 2026-01-08 20:46:43 +02:00
master
8e69cdc416 more audit work 2026-01-08 10:21:59 +02:00
Codex Assistant
43c02081ef fix conflicts 2026-01-08 09:08:49 +02:00
Codex Assistant
8f0320edd5 product advisories add change contiang folder 2026-01-08 09:06:03 +02:00
Codex Assistant
ae6968d23f Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-08 09:02:11 +02:00
Codex Assistant
a2ce91060e Merge remote changes (theirs) 2026-01-08 09:01:53 +02:00
StellaOps Bot
56d77a9f84 Merge remaining changes 2026-01-08 08:55:04 +02:00
StellaOps Bot
7bd3ecff45 Merge remaining change 2026-01-08 08:54:45 +02:00
StellaOps Bot
110591d6bf Merge all changes 2026-01-08 08:54:27 +02:00
StellaOps Bot
589de352c2 Resolve merge conflicts in archived sprint docs 2026-01-08 08:50:03 +02:00
Codex Assistant
0b5d786ddb warnings fixes, tests fixes, sprints completions 2026-01-08 08:38:27 +02:00
StellaOps Bot
2096cf49a6 Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-07 21:30:44 +02:00
StellaOps Bot
a2070225ce Add Layer SBOM endpoints and CLI command tests for integration 2026-01-07 21:24:51 +02:00
master
608a7f85c0 audit work, fixed StellaOps.sln warnings/errors, fixed tests, sprints work, new advisories 2026-01-07 18:50:11 +02:00
master
04ec098046 Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-07 10:25:34 +02:00
master
044cf0923c docs consolidation 2026-01-07 10:23:21 +02:00
StellaOps Bot
ab364c6032 sprints and audit work 2026-01-07 09:43:12 +02:00
StellaOps Bot
05833e0af2 Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org 2026-01-06 21:03:06 +02:00
StellaOps Bot
8cb2bc677a commit 2026-01-06 20:52:41 +02:00
master
4789027317 docs consolidation and others 2026-01-06 19:07:48 +02:00
StellaOps Bot
37e11918e0 save progress 2026-01-06 09:42:20 +02:00
StellaOps Bot
94d68bee8b move permament spritns 2026-01-05 19:17:32 +02:00
master
d7bdca6d97 docs consolidation, big sln build fixes, new advisories and sprints/tasks 2026-01-05 18:37:08 +02:00
master
d0a7b88398 move docs/**/archived/* to docs-archived/**/* 2026-01-05 16:02:11 +02:00
StellaOps Bot
dfab8a29c3 docs re-org, audit fixes, build fixes 2026-01-05 09:35:33 +02:00
StellaOps Bot
eca4e964d3 save audit remarks applications progress 2026-01-04 22:49:53 +02:00
StellaOps Bot
8862e112c4 finish secrets finding work and audit remarks work save 2026-01-04 21:48:13 +02:00
StellaOps Bot
75611a505f save progress 2026-01-04 19:08:47 +02:00
StellaOps Bot
f7d27c6fda feat(secrets): Implement secret leak policies and signal binding 
- Added `spl-secret-block@1.json` to block deployments with critical or high severity secret findings.
- Introduced `spl-secret-warn@1.json` to warn on secret findings without blocking deployments.
- Created `SecretSignalBinder.cs` to bind secret evidence to policy evaluation signals.
- Developed unit tests for `SecretEvidenceContext` and `SecretSignalBinder` to ensure correct functionality.
- Enhanced `SecretSignalContextExtensions` to integrate secret evidence into signal contexts.
 2026-01-04 15:44:49 +02:00
StellaOps Bot
1f33143bd1 feat(secrets): implement ISecretEvidenceProvider and SecretEvidenceContext for secret leak evaluation 2026-01-04 15:12:28 +02:00
StellaOps Bot
61098b0509 docs: update sprint file - DET-016 complete 2026-01-04 15:11:54 +02:00
StellaOps Bot
6c4823d941 refactor(vulnexplorer): inject TimeProvider and IGuidProvider for determinism - DET-016 
VexDecisionStore: Added TimeProvider and IGuidProvider injection for deterministic
ID generation and timestamps in Create/Update methods.

Added StellaOps.Determinism.Abstractions project reference.
 2026-01-04 15:11:38 +02:00
StellaOps Bot
ff3e32e0b0 docs: update sprint file with DET-005 to DET-014 progress 
Completed tasks:
- DET-005: Provcache module (8 files)
- DET-006: Provenance (already clean)
- DET-007: ReachGraph (1 file)
- DET-008: Registry (1 file)
- DET-009: Replay (6 files)
- DET-010: RiskEngine (already clean)
- DET-014: Unknowns (already clean)

Remaining work assessed:
- Scanner: ~45+ matches
- Scheduler: ~20+ matches
- Signer: ~89 matches
- VexLens: ~76 matches
- VulnExplorer: 3 matches
- Zastava: ~48 matches
 2026-01-04 15:10:50 +02:00
StellaOps Bot
a872da765d refactor: inject TimeProvider/IGuidProvider across multiple modules - DET-006 to DET-010 
DET-006 Provenance module: Skipped - already uses TimeProvider in production code

DET-007 ReachGraph module:
- PostgresReachGraphRepository: Added TimeProvider for fallback timestamp in StoreAsync

DET-008 Registry module:
- RegistryTokenIssuer: Added IGuidProvider for JWT ID (jti) generation
- Added StellaOps.Determinism.Abstractions project reference

DET-009 Replay module:
- ReplayEngine: Added TimeProvider for ExecutedAt timestamp
- ReplayResult.Failed: Added optional executedAt parameter for determinism
- ReplayManifestExporter: Added TimeProvider constructor, replaced DateTimeOffset.UtcNow
- FeedSnapshotCoordinatorService: Updated GenerateSnapshotId to use injected TimeProvider
- ExportMetadataInfo: Made ExportedAt required (callers must provide explicitly)
- PolicySimulationInputLock: Made GeneratedAt required (callers must provide explicitly)

DET-010 RiskEngine module: Skipped - no determinism issues found

All changes maintain backward compatibility through optional parameters with system defaults.
 2026-01-04 15:08:48 +02:00
StellaOps Bot
99cb2bcb0f refactor(provcache): inject TimeProvider and IGuidProvider for determinism - DET-005 
Refactored 8 files across StellaOps.Provcache, StellaOps.Provcache.Postgres, and StellaOps.Provcache.Valkey:

Core Provcache library:
- EvidenceChunker: Added IGuidProvider for ChunkId generation in ChunkAsync/ChunkStreamAsync
- LazyFetchOrchestrator: Added IGuidProvider for ChunkId generation when storing fetched chunks
- MinimalProofExporter: Added IGuidProvider for ChunkId generation in ImportAsync
- FeedEpochAdvancedEvent: Added optional eventId/timestamp parameters to static Create()
- SignerRevokedEvent: Added optional eventId/timestamp parameters to static Create()

Postgres implementation:
- PostgresProvcacheRepository: Added TimeProvider and IGuidProvider for IncrementHitCountAsync,
  GetStatisticsAsync, LogRevocationAsync, and MapToEntity
- PostgresEvidenceChunkRepository: Added TimeProvider and IGuidProvider for GetManifestAsync and MapToEntity

Valkey implementation:
- ValkeyProvcacheStore: Added TimeProvider for TTL calculations in GetAsync, SetAsync, SetManyAsync

All constructors use optional parameters with defaults to system implementations for backward compatibility.
Added StellaOps.Determinism.Abstractions project references where needed.
 2026-01-04 15:02:09 +02:00