stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
5d5e80b2e443d61f74451920405b4e894ef28b4e
git.stella-ops.org/src/Concelier/__Libraries/StellaOps.Concelier.Connector.Distro.Suse/AGENTS.md
master 5d5e80b2e4 stabilize tests
2026-02-01 21:37:40 +02:00

1.4 KiB
Raw Blame History

Concelier SUSE Connector Charter

Mission

Ingest SUSE CSAF advisories and changes.csv feeds into Concelier under the Aggregation-Only Contract (AOC), preserving RPM NEVRA semantics with deterministic, offline-ready mapping.

Scope

  • Connector fetch/parse/map logic in StellaOps.Concelier.Connector.Distro.Suse.
  • changes.csv parsing, CSAF JSON parsing, cursor and fetch cache handling.
  • Mapping to canonical advisories with RPM affected packages and provenance.
  • Unit/integration tests and fixtures for changes and advisory parsing.

Required Reading

  • docs/modules/concelier/architecture.md
  • docs/modules/platform/architecture-overview.md
  • docs/modules/concelier/guides/aggregation-only-contract.md
  • docs/modules/concelier/operations/mirror.md

Working Agreement

  1. Status sync: update task state to DOING/DONE in the sprint file and local TASKS.md before/after work.
  2. AOC adherence: do not derive severity or merge fields; persist upstream data with provenance.
  3. Determinism: sort advisory IDs, CVE lists, packages, and version keys; normalize timestamps to UTC ISO-8601.
  4. Offline readiness: only fetch from allowlisted SUSE endpoints; document bundle usage for air-gapped runs.
  5. Testing: add fixtures for changes/CSAF parsing and mapping; keep integration tests deterministic and opt-in.
  6. Documentation: update connector ops docs when configuration or mapping changes.