stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
4bdc298ec1fc821ee0d9dda6d2d4643dcedf6b35
git.stella-ops.org/docs/features/unchecked/cli/proof-of-exposure-export-verify-cli.md

1.3 KiB
Raw Blame History

Proof of Exposure Export/Verify CLI

Module

Cli

Status

IMPLEMENTED

Description

CLI commands for exporting and verifying Proof of Exposure artifacts for offline verification. Exports include Rekor inclusion proofs, richgraph subgraphs, and SBOM artifacts in tar.gz format. Verification validates bundle integrity independently.

Implementation Details

  • PoE Export: src/Cli/StellaOps.Cli/Commands/PoE/ExportCommand.cs -- PoE export command
  • PoE Verify: src/Cli/StellaOps.Cli/Commands/PoE/VerifyCommand.cs -- PoE verification command
  • Proof Commands: src/Cli/StellaOps.Cli/Commands/Proof/ProofCommandGroup.cs -- proof operations
  • Commands:
    • stella poe export <digest> --output <path> -- export PoE bundle (tar.gz with Rekor proofs, richgraph, SBOM)
    • stella poe verify <bundle> -- verify PoE bundle integrity offline

E2E Test Plan

  • Run stella poe export sha256:abc123 --output ./poe.tar.gz and verify bundle created
  • Verify bundle contains Rekor inclusion proofs
  • Verify bundle contains richgraph subgraph
  • Verify bundle contains SBOM artifacts
  • Run stella poe verify ./poe.tar.gz and verify bundle integrity
  • Verify offline verification without network
  • Verify tampered bundle fails verification