stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
480 Commits 2 Branches 0 Tags
1647892b096a1d9390f59ade2fc0ff5e4131c440
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
master 1647892b09 Add Astra Linux connector and E2E CLI verify bundle command 
Implementation of two completed sprints:

Sprint 1: Astra Linux Connector (SPRINT_20251229_005_CONCEL_astra_connector)
- Research complete: OVAL XML format identified
- Connector foundation implemented (IFeedConnector interface)
- Configuration options with validation (AstraOptions.cs)
- Trust vectors for FSTEC-certified source (AstraTrustDefaults.cs)
- Comprehensive documentation (README.md, IMPLEMENTATION_NOTES.md)
- Unit tests: 8 passing, 6 pending OVAL parser implementation
- Build: 0 warnings, 0 errors
- Files: 9 files (~800 lines)

Sprint 2: E2E CLI Verify Bundle (SPRINT_20251229_004_E2E_replayable_verdict)
- CLI verify bundle command implemented (CommandHandlers.VerifyBundle.cs)
- Hash validation for SBOM, feeds, VEX, policy inputs
- Bundle manifest loading (ReplayManifest v2 format)
- JSON and table output formats with Spectre.Console
- Exit codes: 0 (pass), 7 (file not found), 8 (validation failed), 9 (not implemented)
- Tests: 6 passing
- Files: 4 files (~750 lines)

Total: ~1950 lines across 12 files, all tests passing, clean builds.
Sprints archived to docs/implplan/archived/2025-12-29-completed-sprints/

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2025-12-29 16:57:16 +02:00
.claude
feat: Add in-memory implementations for issuer audit, key, repository, and trust management
2025-12-11 19:47:43 +02:00
.config
Add comprehensive security tests for OWASP A03 (Injection) and A10 (SSRF)
2025-12-16 13:11:57 +02:00
.gitea
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
.github
Add property-based tests for SBOM/VEX document ordering and Unicode normalization determinism
2025-12-26 15:17:58 +02:00
.venv
Add signal contracts for reachability, exploitability, trust, and unknown symbols
2025-12-05 00:27:00 +02:00
devops
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
docs
Add Astra Linux connector and E2E CLI verify bundle command
2025-12-29 16:57:16 +02:00
etc
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
evidence-locker
Merge branch 'main' of https://git.stella-ops.org/stella-ops.org/git.stella-ops.org
2025-12-09 13:08:17 +02:00
opt/cryptopro/downloads
Refactor code structure and optimize performance across multiple modules
2025-12-26 21:38:12 +02:00
policies
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
samples
stop syncing with TASKS.md
2025-12-26 11:44:40 +02:00
scripts
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
src
Add Astra Linux connector and E2E CLI verify bundle command
2025-12-29 16:57:16 +02:00
third-party-licenses
Refactor code structure and optimize performance across multiple modules
2025-12-26 21:38:12 +02:00
tools/slntools
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
.actrc
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
.dockerignore
Refactor compare-view component to use observables for data loading, enhancing performance and responsiveness. Update compare service interfaces and methods for improved delta computation. Modify audit log component to handle optional event properties gracefully. Optimize Monaco editor worker loading to reduce bundle size. Introduce shared SCSS mixins for consistent styling across components. Add Gitea test instance setup and NuGet package publishing test scripts for CI/CD validation. Update documentation paths and ensure all references are accurate.
2025-12-26 21:39:36 +02:00
.editorconfig
feat: Add new provenance and crypto registry documentation
2025-11-18 23:47:13 +02:00
.gitattributes
up
2025-12-13 02:22:15 +02:00
.gitignore
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
.spectral.yaml
feat: Add in-memory implementations for issuer audit, key, repository, and trust management
2025-12-11 19:47:43 +02:00
AGENTS.md
Refactor compare-view component to use observables for data loading, enhancing performance and responsiveness. Update compare service interfaces and methods for improved delta computation. Modify audit log component to handle optional event properties gracefully. Optimize Monaco editor worker loading to reduce bundle size. Introduce shared SCSS mixins for consistent styling across components. Add Gitea test instance setup and NuGet package publishing test scripts for CI/CD validation. Update documentation paths and ensure all references are accurate.
2025-12-26 21:39:36 +02:00
build_output_latest.txt
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
CLAUDE.md
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
Directory.Build.rsp
feat: Implement CVSS receipt management client and models
2025-12-07 01:14:28 +02:00
fix-asynclifetime.ps1
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
fix-fluentassertions.ps1
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
fix-npgsql.ps1
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
fix-xunit-refs.ps1
Fix build and code structure improvements. New but essential UI functionality. CI improvements. Documentation improvements. AI module improvements.
2025-12-29 07:45:03 +02:00
global.json
up the blokcing tasks
2025-12-11 02:32:18 +02:00
LICENSE
Initial commit (history squashed)
2025-10-11 23:28:35 +03:00
NOTICE.md
Refactor code structure and optimize performance across multiple modules
2025-12-26 21:38:12 +02:00
NuGet.config
CD/CD consolidation
2025-12-26 18:11:06 +02:00
package-lock.json
Refactor code structure for improved readability and maintainability; removed redundant code blocks and optimized function calls.
2025-11-20 07:50:52 +02:00
package.json
up
2025-11-27 07:46:56 +02:00
stryker-config.json
Add comprehensive security tests for OWASP A03 (Injection) and A10 (SSRF)
2025-12-16 13:11:57 +02:00

docs/README.md

StellaOps Documentation

StellaOps is a deterministic, offline-first container security platform: every verdict links back to concrete evidence (SBOM slices, advisory/VEX observations, reachability proofs, policy explain traces) and can be replayed for audits.

Two Levels of Documentation

  • High-level (canonical): the curated guides in docs/*.md (usually numbered).
  • Detailed (reference): deep dives under docs/** (module dossiers, architecture notes, API contracts/samples, runbooks, schemas). The entry point is docs/technical/README.md.

This documentation set is internal and does not keep compatibility stubs for old paths. Content is consolidated to reduce duplication and outdated pages.

Start Here

Goal Open this
Understand the product in 2 minutes overview.md
Run a first scan (CLI) quickstart.md
Browse capabilities key-features.md
Roadmap (priorities + definition of "done") 05_ROADMAP.md
Architecture: high-level overview 40_ARCHITECTURE_OVERVIEW.md
Architecture: full reference map 07_HIGH_LEVEL_ARCHITECTURE.md
Offline / air-gap operations 24_OFFLINE_KIT.md
Security deployment hardening 17_SECURITY_HARDENING_GUIDE.md
Ingest advisories (Concelier + CLI) 10_CONCELIER_CLI_QUICKSTART.md
Develop plugins/connectors 10_PLUGIN_SDK_GUIDE.md
Console (Web UI) operator guide 15_UI_GUIDE.md
VEX consensus and issuer trust 16_VEX_CONSENSUS_GUIDE.md
Vulnerability Explorer guide 20_VULNERABILITY_EXPLORER_GUIDE.md

Detailed Indexes

  • Technical index (everything): docs/technical/README.md
  • Module dossiers: docs/modules/
  • API contracts and samples: docs/api/
  • Architecture notes / ADRs: docs/architecture/, docs/adr/
  • Operations and deployment: docs/operations/, docs/deploy/, docs/deployment/
  • Air-gap workflows: docs/airgap/
  • Security deep dives: docs/security/
  • Benchmarks and fixtures: docs/benchmarks/, docs/assets/

Notes

  • The product is offline-first: docs and examples should avoid network dependencies and prefer deterministic fixtures.
  • Feature exposure is configuration-driven; module dossiers define authoritative schemas and contracts per component.
Description
No description provided
Readme AGPL-3.0 2.8 GiB
Languages
C# 91.7%
TypeScript 4.3%
Python 1%
Shell 0.8%
HTML 0.7%
Other 1.3%