stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
18f28168f022c73736bfd29033c71daef5e11044
git.stella-ops.org/src/Scanner/StellaOps.Scanner.Worker/TASKS.md
master 18f28168f0
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
feat: Implement ScannerSurfaceSecretConfigurator for web service options 
- Added ScannerSurfaceSecretConfigurator to configure ScannerWebServiceOptions using surface secrets.
- Integrated ISurfaceSecretProvider to fetch and apply secrets for artifact store configuration.
- Enhanced logging for secret retrieval and application processes.

feat: Implement ScannerStorageSurfaceSecretConfigurator for worker options

- Introduced ScannerStorageSurfaceSecretConfigurator to configure ScannerStorageOptions with surface secrets.
- Utilized ISurfaceSecretProvider to retrieve and apply secrets for object store settings.
- Improved logging for secret handling and configuration.

feat: Create SurfaceManifestPublisher for publishing surface manifests

- Developed SurfaceManifestPublisher to handle the creation and storage of surface manifests.
- Implemented methods for serializing manifest documents and storing payloads in the object store.
- Added dual write functionality for mirror storage of manifests.

feat: Add SurfaceManifestStageExecutor for processing scan stages

- Created SurfaceManifestStageExecutor to execute the manifest publishing stage in scan jobs.
- Integrated with SurfaceManifestPublisher to publish manifests based on collected payloads.
- Enhanced logging for job processing and manifest storage.

feat: Define SurfaceManifest models for manifest structure

- Established SurfaceManifestDocument, SurfaceManifestSource, SurfaceManifestArtifact, and SurfaceManifestStorage records.
- Implemented serialization attributes for JSON handling of manifest models.

feat: Implement CasAccessSecret and SurfaceSecretParser for secret handling

- Created CasAccessSecret record to represent surface access secrets.
- Developed SurfaceSecretParser to parse and validate surface secrets from JSON payloads.

test: Add unit tests for CasAccessSecretParser

- Implemented tests for parsing CasAccessSecret from JSON payloads and metadata fallbacks.
- Verified expected values and behavior for secret parsing logic.

test: Add unit tests for ScannerSurfaceSecretConfigurator

- Created tests for ScannerSurfaceSecretConfigurator to ensure correct application of surface secrets to web service options.
- Validated artifact store settings after configuration.

test: Add unit tests for ScannerStorageSurfaceSecretConfigurator

- Implemented tests for ScannerStorageSurfaceSecretConfigurator to verify correct application of surface secrets to storage options.
- Ensured accurate configuration of object store settings.
2025-11-06 18:49:23 +02:00

2.8 KiB
Raw Blame History

Scanner Worker Task Board

ID Status Owner(s) Depends on Description Exit Criteria
SCAN-REPLAY-186-002 TODO Scanner Worker Guild REPLAY-CORE-185-001 Enforce deterministic analyzer execution when consuming replay input bundles, emit layer Merkle metadata, and author docs/modules/scanner/deterministic-execution.md summarising invariants from docs/replay/DETERMINISTIC_REPLAY.md Section 4. Replay mode analyzers pass determinism tests; new doc merged; integration fixtures updated.
SCANNER-SURFACE-01 DOING (2025-11-06) Scanner Worker Guild SURFACE-FS-02 Persist Surface.FS manifests after analyzer stages, including layer CAS metadata and EntryTrace fragments.
2025-11-02: Draft Surface.FS manifests emitted for sample scans; telemetry counters under review.
2025-11-06: Resuming with manifest writer abstraction, rotation metadata, and telemetry counters for Surface.FS persistence.		 Integration tests prove cache entries exist; telemetry counters exported.
SCANNER-ENV-01 TODO (2025-11-06) Scanner Worker Guild SURFACE-ENV-02 Replace ad-hoc environment reads with StellaOps.Scanner.Surface.Env helpers for cache roots and CAS endpoints.
2025-11-02: Worker bootstrap now resolves cache roots via helper; warning path documented; smoke tests running.
2025-11-05 14:55Z: Extending helper usage into cache/secrets configuration, updating worker validator wiring, and drafting docs/tests for new Surface.Env outputs.
2025-11-06 17:05Z: README/design docs updated with warning catalogue; startup logging guidance captured for ops runbooks.
2025-11-06 07:45Z: Helm/Compose env profiles (dev/stage/prod/airgap/mirror) now seed SCANNER_SURFACE_* defaults to keep worker cache roots aligned with Surface.Env helpers.
2025-11-06 07:55Z: Paused; pending automation tracked via DEVOPS-OPENSSL-11-001/002 and Surface.Env test fixtures.		 Worker boots with helper; misconfiguration warnings documented; smoke tests updated.

2025-11-05 19:18Z: Bound SurfaceCacheOptions root directory to resolved Surface.Env settings and added unit coverage around the configurator. | SCANNER-SECRETS-01 | DOING (2025-11-06) | Scanner Worker Guild, Security Guild | SURFACE-SECRETS-02 | Adopt StellaOps.Scanner.Surface.Secrets for registry/CAS credentials during scan execution.
2025-11-02: Surface.Secrets provider wired for CAS token retrieval; integration tests added.
2025-11-06: Continuing to replace legacy registry credential plumbing and extend rotation metrics/fixtures.
2025-11-06 21:35Z: Introduced ScannerStorageSurfaceSecretConfigurator mapping cas-access secrets into storage options plus unit coverage. | Secrets fetched via shared provider; legacy secret code removed; integration tests cover rotation. |