stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
509b97a1a74487b361c1c03ce22af8657c29e925
git.stella-ops.org/docs/features/checked/cli/ai-code-guard-cli.md
master e9aeadc040 save checkpoint
2026-02-14 09:11:48 +02:00

2.3 KiB
Raw Blame History

AI Code Guard CLI (stella guard run/status)

Module

Cli

Status

VERIFIED

Description

CLI commands for analyzing AI-generated code for security issues including secrets scanning, attribution checking, and license hygiene. Provides stella guard run to analyze directories/files and stella guard status to check guard configuration.

Implementation Details

  • Command Group: src/Cli/StellaOps.Cli/Commands/GuardCommandGroup.cs -- GuardCommandGroup (public static class)
  • Sprint: SPRINT_20260112_010_CLI_ai_code_guard_command (tasks CLI-AIGUARD-001/002)
  • Policy DSL extensions: src/Policy/StellaOps.PolicyDsl/AiCodeGuardSignalContextExtensions.cs -- signal context for AI code guard in policy DSL
  • Commands:
    • stella guard run <path> -- analyze a directory or file for AI-generated code issues (secrets, attribution, license). Options: --format text|json, --verbose
    • stella guard status -- check guard configuration and enabled analyzers
  • Output: Uses Spectre.Console for rich terminal rendering
  • Tests: src/Cli/__Tests/StellaOps.Cli.Tests/GuardCommandTests.cs

E2E Test Plan

  • Run stella guard run ./src and verify analysis output showing detected issues (secrets, attribution, license)
  • Run stella guard run ./src --format json and verify valid JSON output with findings array
  • Run stella guard run ./src --verbose and verify detailed analyzer output
  • Run stella guard status and verify guard configuration including enabled analyzers
  • Run stella guard run on a clean directory and verify no findings reported with exit code 0
  • Run stella guard run on a directory with known secrets and verify detection with exit code 1
  • Verify error handling for non-existent paths
  • Verify AI-generated code attribution checks identify code without proper attribution

Verification

  • Verified: 2026-02-13T15:30:00Z
  • Tier 0 (Source): pass -- all referenced source files exist on disk
  • Tier 1 (Build): pass -- module builds cleanly, 193 tests pass in StellaOps.Cli.Core.Tests
  • Tier 2d (Integration): pass -- targeted integration tests confirm behavioral correctness
  • Test Project: src/Cli/__Tests/StellaOps.Cli.Core.Tests/StellaOps.Cli.Core.Tests.csproj
  • Evidence: docs/qa/feature-checks/runs/cli/ai-code-guard-cli/run-001/tier2-integration-check.json