stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 12 Releases Wiki Activity
Files
108d1c64b323808d6085fca05818fc581c6b003a
git.stella-ops.org/docs/modules/scanner/readiness-checkpoints.md
StellaOps Bot 108d1c64b3
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
Findings Ledger CI / build-test (push) Has been cancelled
Details
Findings Ledger CI / migration-validation (push) Has been cancelled
Details
Scanner Analyzers / Discover Analyzers (push) Has been cancelled
Details
Signals Reachability Scoring & Events / reachability-smoke (push) Has been cancelled
Details
AOC Guard CI / aoc-guard (push) Has been cancelled
Details
Concelier Attestation Tests / attestation-tests (push) Has been cancelled
Details
cryptopro-linux-csp / build-and-test (push) Has been cancelled
Details
Scanner Analyzers / Validate Test Fixtures (push) Has been cancelled
Details
Signals CI & Image / signals-ci (push) Has been cancelled
Details
sm-remote-ci / build-and-test (push) Has been cancelled
Details
Findings Ledger CI / generate-manifest (push) Has been cancelled
Details
AOC Guard CI / aoc-verify (push) Has been cancelled
Details
Scanner Analyzers / Build Analyzers (push) Has been cancelled
Details
Scanner Analyzers / Test Language Analyzers (push) Has been cancelled
Details
Scanner Analyzers / Verify Deterministic Output (push) Has been cancelled
Details
Signals Reachability Scoring & Events / sign-and-upload (push) Has been cancelled
Details
up
2025-12-09 09:38:09 +02:00

4.1 KiB
Raw Blame History

Scanner Readiness Checkpoints (as of 2025-12-01)

Snapshot

  • Scope: scanner/surface sprints 01310138.
  • Status legend: Green = shipped and validated; Amber = shipped but validation blocked or partial; Red = not shipped/blocked upstream.

Phase Readiness

Phase / Sprint Status Evidence Gaps / Actions
Phase II · Sprint 0131 (Deno/Java/.NET bootstrap) Amber/Red Deno runtime capture shipped and tested; Java chain 21-005..011 still blocked on runner; .NET Lang 11-001 design/tests completed locally (TRX TestResults/dotnet/dotnet-tests.trx, design at docs/modules/scanner/design/dotnet-analyzer-11-001.md); PHP VFS 27-001 blocked pending bootstrap spec. Need CI slice (DEVOPS-SCANNER-CI-11-001) for Java rerun; finalize PHP bootstrap spec and fixtures to unblock 27-001; publish Deno fixtures.
Phase III · Sprint 0132 (Native + Node foundations) Amber Native analyzers 20-001..010 shipped with tests; Node 22-001..005 shipped; Node isolated/CI tests pending due to build graph bloat; .NET Lang 11-002..005 blocked on upstream design 11-001 outputs. Trim Node test graph or run on clean runner to record pass; unblock .NET analyzer design to proceed with runtime/export/fixtures.
Phase IV · Sprint 0133 (Node bundle/source-map) Amber Phase22 bundle/native/WASM observation implemented and fixtures hashed; validation tests pending (SDK resolver cancels build on current runner). Execute scripts/run-node-phase22-smoke.sh on clean runner; capture TRX/binlog to close.
Phase V · Sprint 0134 (PHP fixtures/runtime/package) Green PHP analyzer fixtures, runtime evidence, and packaging shipped; docs updated. Keep fixture hashes stable; rerun benchmarks when dependencies change.
Phase VI · Sprint 0135 (Python container + Ruby VFS/edges) Green Python container/zipapp adapters shipped; Ruby VFS/dependency edges/observations/runtime capture packaged; EntryTrace 18-502/503 delivered. Maintain determinism; re-run EntryTrace suite in CI.
Phase VII · Sprint 0136 (EntryTrace surface/CLI) Green EntryTrace phase VII tasks 18-504/505/506 completed; CLI/WebService surfaces show best-terminal metadata and confidence. Keep NDJSON schema stable; rerun worker payload tests in CI.
Sprint 0138 (Ruby parity & future analyzers) Amber/Red Ruby parity shipped; Mongo package inventory live. PHP pipeline SCANNER-ENG-0010 blocked on composer/autoload design + restore stability (design at docs/modules/scanner/design/php-autoload-design.md); Deno scope drafted (docs/modules/scanner/design/deno-analyzer-scope.md); Dart/Swift scope drafted (docs/modules/scanner/design/dart-swift-analyzer-scope.md); Kubernetes/VM roadmap pending. Implement PHP autoload parser/fixtures per design; add Deno fixtures and validation evidence; align with Zastava/Runtime and update readiness once fixtures land.

Overall

  • Green areas: native analyzers, PHP fixtures/runtime packaging, Ruby analyzer, Python container adapters, EntryTrace phases VIVII.
  • Amber/Red drivers: Java/.NET analyzer chains (CI/design dependencies), PHP pipeline (0138), Node validation on clean runner, design gaps for Deno/Dart/Swift, PHP VFS bootstrap (0131).

Recommended Next Actions

  1. Secure clean CI slice for Java/.NET and Node Phase22 smoke tests; store binlogs/TRX.
  2. Finalise PHP analyzer design (composer/autoload graph) and stabilise restore pipeline to unblock SCANNER-ENG-0010/27-001.
  3. Publish Deno/Dart/Swift analyzer scopes with fixtures to unblock 0138 tasks and roadmap alignment with Zastava/Runtime (scope note added at docs/modules/scanner/design/dart-swift-analyzer-scope.md; fixtures pending).
  4. Lock bun.lockb posture as remediation-only (doc updated at docs/modules/scanner/bun-analyzer-gotchas.md); no parser work planned unless format stabilises.
  5. Draft runtime parity plan for Java/.NET/PHP and align with Signals proc snapshot schema (plan at docs/modules/scanner/design/runtime-parity-plan.md); add reconciliation fixtures once schema confirmed.
  6. Re-run EntryTrace and Native suites in CI to lock deterministic hashes before downstream release.