stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
5c5c0881b1824db3d38b162c5af069d0e5c46481
git.stella-ops.org/docs/modules/replay
History
master fdf95e0f46 docs: module dossier + install/quickstart sync for truthful cutover sprints 
- API_CLI_REFERENCE.md, INSTALL_GUIDE.md, quickstart.md, architecture/integrations.md, dev/DEV_ENVIRONMENT_SETUP.md, integrations/LOCAL_SERVICES.md: reflect real-service wiring.
- docs/modules/**: module dossier updates across the modules touched by SPRINT_20260415_001..007 + SPRINT_20260416_003..017 + SPRINT_20260417_018..024 + SPRINT_20260418_025 + SPRINT_20260419_026.
- docs/features/checked/web/**: update feature notes where UI changed.
- docs/qa/feature-checks/runs/web/evidence-presentation-ux/: QA evidence artifacts.
- docs/setup/**, docs/technical/**: align with setup wizard contracts.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-19 14:45:09 +03:00
..
guides
part #2
2026-02-04 19:59:20 +02:00
schemas
docs consolidation and others
2026-01-06 19:07:48 +02:00
architecture.md
docs: module dossier + install/quickstart sync for truthful cutover sprints
2026-04-19 14:45:09 +03:00
README.md
audit work, fixed StellaOps.sln warnings/errors, fixed tests, sprints work, new advisories
2026-01-07 18:50:11 +02:00
replay-proof-schema.md
sprints and audit work
2026-01-07 09:43:12 +02:00

README.md

Replay

Deterministic replay engine for vulnerability verdict reproducibility.

Purpose

Replay enables deterministic reproducibility of vulnerability verdicts. Given identical inputs (SBOM, policy, feeds, toolchain), the system MUST produce identical outputs. Replay provides the infrastructure to capture, store, and verify these deterministic execution chains.

Quick Links

Status

Attribute Value
Maturity Production
Last Reviewed 2025-12-29
Maintainer Platform Guild

Key Features

  • Replay Tokens: Cryptographically bound to input digests for verification
  • Replay Manifests: Capture all inputs required to reproduce a verdict
  • Feed Snapshots: Point-in-time snapshots of vulnerability feeds
  • Verification Workflows: Validate that replay produces identical results

Dependencies

Upstream (this module depends on)

  • Concelier - Feed snapshot coordination
  • Attestor - Replay proof signing
  • Policy - Policy evaluation replay

Downstream (modules that depend on this)

  • Attestor - Stores replay proofs
  • ExportCenter - Includes replay tokens in exports

Notes

  • Replay does not make vulnerability decisions; it captures inputs and outputs
  • Replay does not store SBOMs or vulnerability data; it stores references (digests)
  • All timestamps are UTC ISO-8601 with microsecond precision

Related Documentation