stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
18d87c64c5dafb8fa75276ad1ae3c092fbae2de3
git.stella-ops.org/docs/security/vuln-rbac.md
StellaOps Bot 18d87c64c5 feat: add PolicyPackSelectorComponent with tests and integration 
- Implemented PolicyPackSelectorComponent for selecting policy packs.
- Added unit tests for component behavior, including API success and error handling.
- Introduced monaco-workers type declarations for editor workers.
- Created acceptance tests for guardrails with stubs for AT1–AT10.
- Established SCA Failure Catalogue Fixtures for regression testing.
- Developed plugin determinism harness with stubs for PL1–PL10.
- Added scripts for evidence upload and verification processes.
2025-12-05 21:24:34 +02:00

621 B
Raw Blame History

Vuln Explorer RBAC & ABAC (Md.XI draft)

Status: DRAFT — pending security review and GRAP0101. Do not publish until roles/claims verified.

Scope

  • Roles/scopes, ABAC policies, attachment encryption/CSRF considerations for Vuln Explorer.

Dependencies

  • Security review; GRAP0101 identifiers; attachment token wording from Authority.

Outline

  • Scopes: vuln:view/investigate/operate/audit (+ legacy read).
  • ABAC filters: vuln_env, vuln_owner, vuln_business_tier; enforcement in tokens/permalinks.
  • Attachment tokens: issuance/verify; encryption notes; CSRF protections.

Last updated: 2025-12-05 (UTC)