stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
05da719048687f0d9e2f7e0677e98463dd7985d3
git.stella-ops.org/src/Concelier/__Libraries/StellaOps.Concelier.Connector.Kev/TASKS.completed.md
master 15b4a1de6a feat: Document completed tasks for KMS, Cryptography, and Plugin Libraries 
- Added detailed task completion records for KMS interface implementation and CLI support for file-based keys.
- Documented security enhancements including Argon2id password hashing, audit event contracts, and rate limiting configurations.
- Included scoped service support and integration updates for the Plugin platform, ensuring proper DI handling and testing coverage.
2025-10-31 14:37:45 +02:00

2.1 KiB
Raw Blame History

Completed Tasks

|Review KEV JSON schema & cadence|BE-Conn-KEV|Research|DONE Feed defaults lock to the public JSON catalog; AGENTS notes call out daily cadence and allowlist requirements.|

|Fetch & cursor implementation|BE-Conn-KEV|Source.Common, Storage.Mongo|DONE SourceFetchService drives ETag/Last-Modified aware fetches with SourceState cursor tracking documents + catalog metadata.|

|DTO/parser implementation|BE-Conn-KEV|Source.Common|DONE KevCatalogDto/KevVulnerabilityDto deserialize payloads with logging for catalog version/releases before DTO persistence.|

|Canonical mapping & range primitives|BE-Conn-KEV|Models|DONE Mapper produces vendor RangePrimitives (due dates, CWE list, ransomware flag, catalog metadata) and deduplicated references.|

|Deterministic fixtures/tests|QA|Testing|DONE End-to-end fetch→parse→map test with canned catalog + snapshot (UPDATE_KEV_FIXTURES=1) guards determinism.|

|Telemetry & docs|DevEx|Docs|DONE Connector emits structured logs + meters for catalog entries/advisories and AGENTS docs cover cadence/allowlist guidance.|

|Schema validation & anomaly surfacing|BE-Conn-KEV, QA|Source.Common|DONE (2025-10-12) Wired IJsonSchemaValidator + embedded schema, added failure reasons (schema, download, invalidJson, etc.), anomaly counters (missingCveId, countMismatch, nullEntry), and kept dotnet test src/Concelier/StellaOps.Concelier.PluginBinaries/StellaOps.Concelier.Connector.Kev.Tests passing.|

|Metrics export wiring|DevOps, DevEx|Observability|DONE (2025-10-12) Added kev.fetch.* counters, parse failure/anomaly tags, refreshed ops runbook + Grafana dashboard (docs/modules/concelier/operations/connectors/cve-kev-grafana-dashboard.json) with PromQL guidance.|

|FEEDCONN-KEV-02-003 Normalized versions propagation|BE-Conn-KEV|Models FEEDMODELS-SCHEMA-01-003, Normalization playbook|DONE (2025-10-12) Validated catalog/date/due normalized rules emission + ordering; fixtures assert rule set and dotnet test src/Concelier/StellaOps.Concelier.PluginBinaries/StellaOps.Concelier.Connector.Kev.Tests remains green.|