stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
347c88342c00aa12416c7711c3d7c7c52b344d87
git.stella-ops.org/docs/modules/scanner/scanner-engine.md
StellaOps Bot 347c88342c Add draft skeletons for various documentation topics 
- Created draft documentation for enabling reachability, CLI authentication, EntryTrace heuristics, Go stripped binaries, Java and Python lockfiles, Rust fingerprint enrichment, SAST integration, Windows/macOS analyzer coverage, scanner engine surface, multi-tenancy operations, RLS and data isolation, ABAC overlays, VEX trust model, VEX ops runbook, VEX mapping, scopes and roles, tenancy overview, VEX signatures, contract testing, VEX consensus algorithm, VEX consensus API, VEX consensus console, VEX consensus overview, and VEX issuer directory.
- Each document includes a status placeholder, purpose, and open TODOs for future updates.
2025-12-05 21:23:21 +02:00

913 B
Raw Blame History

Scanner Engine Surface FS/Env/Secrets — Draft Skeleton (2025-12-05 UTC)

Status: draft placeholder. Inputs pending: SCANNER-SURFACE-04 emit notes, Zastava/Scheduler bindings, Ops runbook hooks.

Workflow Overview

  • Surface.FS, Surface.Env, Surface.Secrets capture points.
  • How Scanner orchestrates surface capture across jobs.

Data Flow

  • Scanner -> Zastava (signals/alerts pipeline).
  • Scanner -> Scheduler (job orchestration, retries, back-pressure).
  • Storage/retention expectations.

Policies & Safety Rails

  • Redaction rules, scope boundaries, tenant isolation.
  • Determinism/offline posture considerations.

Operations

  • How to enable/disable surface capture per tenant/workspace.
  • Observability: metrics, logs, traces to watch.

Open TODOs

  • Insert concrete emit schemas and example payloads when SCANNER-SURFACE-04 lands.
  • Add sequencing diagrams per module dossier once available.