stella-ops.org/git.stella-ops.org

Files

master 95d5898650 audit notes work completed, test fixes work (95% done), new sprints, new data sources setup and configuration

2026-01-14 10:48:00 +02:00

1.3 KiB

Raw Blame History

Signer Implementation Plan

Purpose

Define a concise, living plan for Signer DSSE signing, predicate registry, and attestor alignment.

Active work

docs/implplan/SPRINT_20260112_015_SIGNER_path_witness_predicate.md

Near-term deliverables

Register canonical path-witness predicate https://stella.ops/predicates/path-witness/v1 with alias support.
Update predicate classification helpers and allowlists for reachability types.
Expand predicate allowlist tests and integration coverage for DSSE signing.
Maintain cosign-compatible DSSE outputs with deterministic canonical JSON.

Dependencies

Authority for OpTok and Proof-of-Entitlement checks.
Crypto provider registry and keyless or KMS backends.
Attestor and Policy verification rules for accepted predicate types.
Path witness contract updates in docs/contracts/witness-v1.md.

Evidence of completion

Predicate catalog updates in src/Signer/StellaOps.Signer/StellaOps.Signer.Core/PredicateTypes.cs.
Tests updated under src/Signer/__Tests.
DSSE bundles for path witness validate under Signer allowlist rules.

Reference docs

docs/modules/signer/README.md
docs/modules/signer/architecture.md
docs/modules/platform/architecture-overview.md
docs/contracts/witness-v1.md