stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 1 Releases Wiki Activity
Files
651b8e0fa3a1276d9f51430bbe1d19644ed5478f
git.stella-ops.org/src/StellaOps.EvidenceLocker/TASKS.md
master 651b8e0fa3 feat: Add new projects to solution and implement contract testing documentation 
- Added "StellaOps.Policy.Engine", "StellaOps.Cartographer", and "StellaOps.SbomService" projects to the StellaOps solution.
- Created AGENTS.md to outline the Contract Testing Guild Charter, detailing mission, scope, and definition of done.
- Established TASKS.md for the Contract Testing Task Board, outlining tasks for Sprint 62 and Sprint 63 related to mock servers and replay testing.
2025-10-27 07:57:55 +02:00

3.0 KiB
Raw Blame History

Evidence Locker Task Board — Epic 15: Observability & Forensics

Sprint 53 Evidence Bundle Foundations

ID Status Owner(s) Depends on Description Exit Criteria
EVID-OBS-53-001 TODO Evidence Locker Guild TELEMETRY-OBS-50-001, DEVOPS-OBS-50-003 Bootstrap StellaOps.Evidence.Locker service with Postgres schema for evidence_bundles, evidence_artifacts, evidence_holds, tenant RLS, and object-store abstraction (WORM optional). Service builds/tests; migrations deterministic; storage abstraction has local filesystem + S3 drivers; compliance checklist recorded.
EVID-OBS-53-002 TODO Evidence Locker Guild, Orchestrator Guild EVID-OBS-53-001, ORCH-OBS-53-001 Implement bundle builders for evaluation/job/export snapshots collecting inputs, outputs, env digests, run metadata. Generate Merkle tree + manifest skeletons and persist root hash. Builders cover three bundle types; integration tests verify deterministic manifests; root hash stored; docs stubbed.
EVID-OBS-53-003 TODO Evidence Locker Guild, Security Guild EVID-OBS-53-002 Expose REST APIs (POST /evidence/snapshot, GET /evidence/:id, POST /evidence/verify, POST /evidence/hold/:case_id) with audit logging, tenant enforcement, and size quotas. APIs documented via OpenAPI; tests cover RBAC/legal hold; size quota rejection returns structured error; audit logs validated.

Sprint 54 Provenance Integration

ID Status Owner(s) Depends on Description Exit Criteria
EVID-OBS-54-001 TODO Evidence Locker Guild, Provenance Guild EVID-OBS-53-003, PROV-OBS-53-002 Attach DSSE signing and RFC3161 timestamping to bundle manifests; validate against Provenance verification library. Wire legal hold retention extension and chain-of-custody events for Timeline Indexer. Bundles signed; verification tests pass; timeline events emitted; timestamp optional but documented; retention updates recorded.
EVID-OBS-54-002 TODO Evidence Locker Guild, DevEx/CLI Guild EVID-OBS-54-001, CLI-FORENSICS-54-001 Provide bundle download/export packaging (tgz) with checksum manifest, offline verification instructions, and sample fixture for CLI tests. Packaging script deterministic; CLI verifies sample; offline instructions documented; checksum cross-check done.

Sprint 55 Incident Mode & Retention

ID Status Owner(s) Depends on Description Exit Criteria
EVID-OBS-55-001 TODO Evidence Locker Guild, DevOps Guild EVID-OBS-54-001, DEVOPS-OBS-55-001 Implement incident mode hooks increasing retention window, capturing additional debug artefacts, and emitting activation/deactivation events to Timeline Indexer + Notifier. Incident mode extends retention per config; activation events emitted; tests cover revert to baseline; runbook updated.