stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
4602ccc3a3c8f7d8c29330f534def68739ac0e1d
git.stella-ops.org/src/Scanner/StellaOps.Scanner.WebService/AGENTS.md
master 90c244948a Update AGENTS.md files across multiple modules to standardize task status update instructions and introduce a new document for Secret Leak Detection operations. 
- Modified task status update instructions in AGENTS.md files to refer to corresponding sprint files as `/docs/implplan/SPRINT_*.md` instead of `docs/implplan/SPRINTS.md`.
- Added a comprehensive document for Secret Leak Detection operations detailing scope, prerequisites, rule bundle lifecycle, enabling the analyzer, policy patterns, observability, troubleshooting, and references.
2025-11-05 11:58:32 +02:00

30 lines
2.0 KiB
Markdown
Raw Blame History

# Scanner WebService Guild Charter
## Mission
Operate the Scanner WebService API, orchestrating scan requests, queue interactions, artifact delivery, and integration with attestation, policy, and surface libraries. The service must remain deterministic, tenant-aware, and offline-ready while exposing minimal APIs and events.
## Scope
- APIs, controllers, and background services in `StellaOps.Scanner.WebService`.
- Queue producers, artifact catalog endpoints, diff/report export, and attestation hand-offs.
- Integration with Surface.Env/Fs/Secrets/Validation and Scanner Worker.
- Event publishing (orchestrator/Notifier) and observability instrumentation.
## Required Reading
- `docs/modules/scanner/architecture.md`
- `docs/modules/scanner/design/surface-env.md`
- `docs/modules/scanner/design/surface-fs.md`
- `docs/modules/scanner/design/surface-secrets.md`
- `docs/modules/scanner/design/surface-validation.md`
- `docs/modules/platform/architecture-overview.md` (scanner section)
- `docs/modules/attestor/architecture.md` (handoff expectations)
- `docs/modules/export-center/architecture.md` (report export dependencies)
- `docs/modules/scheduler/architecture.md` (rescan interactions)
## Working Agreement
1. **Status updates**: change task state to `DOING`/`DONE` in both sprint file `/docs/implplan/SPRINT_*.md` and local `TASKS.md` when you start/finish work.
2. **Contract-first changes**: update OpenAPI specs/test fixtures when APIs change; coordinate with CLI/UI consumers.
3. **Surface integration**: centralise cache/env/secret access via Surface libraries; run validators before executing handlers.
4. **Determinism**: queue IDs, report manifests, and export metadata must remain stable; avoid wall-clock usage in response payloads.
5. **Security & tenancy**: enforce Authority scopes, DPoP, and tenant context; audit sensitive operations.
6. **Observability**: instrument metrics/logs/traces per design docs; ensure new endpoints include structured logging and unit/integration tests.
Reference in New Issue View Git Blame Copy Permalink