3.2 KiB
3.2 KiB
TASKS
| Task | Owner(s) | Depends on | Notes |
|---|---|---|---|
| FEEDCONN-CERTBUND-02-001 Research CERT-Bund advisory endpoints | BE-Conn-CERTBUND | Research | DONE (2025-10-11) – Confirmed public RSS at https://wid.cert-bund.de/content/public/securityAdvisory/rss (HTTP 200 w/out cookies), 250-item window, German titles/categories, and detail links pointing to Angular SPA. Captured header profile (no cache hints) and logged open item to discover the JSON API used by portal frontend. |
| FEEDCONN-CERTBUND-02-002 Fetch job & state persistence | BE-Conn-CERTBUND | Source.Common, Storage.Mongo | DONE (2025-10-14) – CertBundConnector.FetchAsync consumes RSS via session-bootstrapped client, stores per-advisory JSON documents with metadata + SHA, throttles detail requests, and maintains cursor state (pending docs/mappings, known advisory IDs, last published). |
| FEEDCONN-CERTBUND-02-003 Parser/DTO implementation | BE-Conn-CERTBUND | Source.Common | DONE (2025-10-14) – Detail JSON piped through CertBundDetailParser (raw DOM sanitised to HTML), capturing severity, CVEs, product list, and references into DTO records (cert-bund.detail.v1). |
| FEEDCONN-CERTBUND-02-004 Canonical mapping & range primitives | BE-Conn-CERTBUND | Models | DONE (2025-10-14) – CertBundMapper emits canonical advisories (aliases, references, vendor package ranges, provenance) with severity normalisation and deterministic ordering. |
| FEEDCONN-CERTBUND-02-005 Regression fixtures & tests | QA | Testing | DONE (2025-10-14) – Added StellaOps.Feedser.Source.CertBund.Tests covering fetch→parse→map against canned RSS/JSON fixtures; integration harness uses Mongo2Go + canned HTTP handler; fixtures regenerate via UPDATE_CERTBUND_FIXTURES=1. |
| FEEDCONN-CERTBUND-02-006 Telemetry & documentation | DevEx | Docs | DONE (2025-10-15) – Added CertBundDiagnostics (meter StellaOps.Feedser.Source.CertBund) with fetch/parse/map counters + histograms, recorded coverage days, wired stage summary logs, and published the ops runbook (docs/ops/feedser-certbund-operations.md). |
| FEEDCONN-CERTBUND-02-007 Feed history & locale assessment | BE-Conn-CERTBUND | Research | DONE (2025-10-15) – Measured RSS retention (~6 days/≈250 items), captured connector-driven backfill guidance in the runbook, and aligned locale guidance (preserve language=de, Docs glossary follow-up). Next: coordinate with Tools to land the state-seeding helper so scripted backfills replace manual Mongo tweaks. |
| FEEDCONN-CERTBUND-02-008 Session bootstrap & cookie strategy | BE-Conn-CERTBUND | Source.Common | DONE (2025-10-14) – Feed client primes the portal session (cookie container via SocketsHttpHandler), shares cookies across detail requests, and documents bootstrap behaviour in options (PortalBootstrapUri). |
| FEEDCONN-CERTBUND-02-009 Offline Kit export packaging | BE-Conn-CERTBUND, Docs | Offline Kit | DONE (2025-10-17) – Added tools/certbund_offline_snapshot.py to capture search/export JSON, emit deterministic manifests + SHA files, and refreshed docs (docs/ops/feedser-certbund-operations.md, docs/24_OFFLINE_KIT.md) with offline-kit instructions and manifest layout guidance. Seed data README/ignore rules cover local snapshot hygiene. |