5.3 KiB
5.3 KiB
Sprint 133 - Scanner & Surface
Implementation order remains sequential across Sprint 130–139. Complete each sprint in order before pulling tasks from the next file.
4. Scanner.IV — Scanner & Surface focus on Scanner (phase IV).
Dependency: Sprint 132 - 3. Scanner.III — Scanner & Surface focus on Scanner (phase III).
| Task ID | State | Summary | Owner / Source | Depends On |
|---|---|---|---|---|
SCANNER-ANALYZERS-NODE-22-006 |
DONE | Bundles + source maps detected; module specifiers correlated; dual CJS/ESM traces captured with condition metadata. | Node Analyzer Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-005 |
SCANNER-ANALYZERS-NODE-22-007 |
DONE | Native addons/WASM/core capability signals scanned; hint edges emitted with resolver traces. | Node Analyzer Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-006 |
SCANNER-ANALYZERS-NODE-22-008 |
DONE | AOC-compliant observations emitted (entrypoints/components/edges with reason codes, confidence, resolver traces). | Node Analyzer Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-007 |
SCANNER-ANALYZERS-NODE-22-009 |
DONE | Fixtures refreshed for npm/pnpm/PnP/bundle/electron/worker coverage with golden outputs; latency budget tracked via test harness. | Node Analyzer Guild, QA Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-008 |
SCANNER-ANALYZERS-NODE-22-010 |
DONE | Runtime evidence hooks (CJS require, ESM loader) added with path scrubbing, loader ID hashing; runtime edges/components emitted. | Node Analyzer Guild, Signals Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-009 |
SCANNER-ANALYZERS-NODE-22-011 |
DONE | Packaged analyzer plug-in (manifest + hooks) and drafted CLI/Offline Kit doc for stella node commands. |
Node Analyzer Guild, DevOps Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-010 |
SCANNER-ANALYZERS-NODE-22-012 |
DONE | Container layer adapter active (layer roots as source roots) and NODE_OPTIONS/env warnings emitted. | Node Analyzer Guild (src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Node) | SCANNER-ANALYZERS-NODE-22-011 |
SCANNER-ANALYZERS-PHP-27-001 |
DONE | Build input normalizer & VFS for PHP projects: merge source trees, composer manifests, vendor/, php.ini/conf.d, .htaccess, FPM configs, container layers. Detect framework/CMS fingerprints deterministically. |
PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | — |
SCANNER-ANALYZERS-PHP-27-002 |
DONE | Composer/Autoload analyzer: parse composer.json/lock/installed.json, generate package nodes, autoload edges (psr-4/0/classmap/files), bin entrypoints, composer plugins. | PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | SCANNER-ANALYZERS-PHP-27-001 |
SCANNER-ANALYZERS-PHP-27-003 |
DONE | Include/require graph builder: resolve static includes, capture dynamic include patterns, bootstrap chains, merge with autoload edges. | PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | SCANNER-ANALYZERS-PHP-27-002 |
SCANNER-ANALYZERS-PHP-27-004 |
DONE | Runtime capability scanner: detect exec/fs/net/env/serialization/crypto/database usage, stream wrappers, uploads; record evidence snippets. | PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | SCANNER-ANALYZERS-PHP-27-003 |
SCANNER-ANALYZERS-PHP-27-005 |
DONE | PHAR/Archive inspector: parse phar manifests/stubs, hash files, detect embedded vendor trees and phar:// usage. | PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | SCANNER-ANALYZERS-PHP-27-004 |
SCANNER-ANALYZERS-PHP-27-006 |
DONE | Framework/CMS surface mapper: extract routes, controllers, middleware, CLI/cron entrypoints for Laravel/Symfony/Slim/WordPress/Drupal/Magento. | PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | SCANNER-ANALYZERS-PHP-27-005 |
SCANNER-ANALYZERS-PHP-27-007 |
DONE | Container & extension detector: parse php.ini/conf.d, map extensions to .so/.dll, collect web server/FPM settings, upload limits, disable_functions. | PHP Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php) | SCANNER-ANALYZERS-PHP-27-006 |
Execution Log
| Date (UTC) | Update | Owner |
|---|---|---|
| 2025-12-01 | Normalized sprint file to standard template; preserved existing tasks and statuses. | Planning |
| 2025-12-01 | Completed Node stream 22-006 → 22-009: bundle/source-map correlation, native/WASM capabilities, AOC observation export, refreshed fixtures/benchmarks. | Node Analyzer Guild |
| 2025-12-01 | Completed Node runtime evidence hook + ingestion (22-010); docs added at docs/modules/scanner/runtime-evidence.md. | Node Analyzer Guild |
| 2025-12-01 | Packaged Node analyzer plug-in + CLI/Offline Kit doc (22-011); manifest at plugins/scanner/node/manifest.json. | Node Analyzer Guild |
| 2025-12-01 | Completed container adapter + NODE_OPTIONS warnings (22-012); env scan added, fixtures updated. | Node Analyzer Guild |
Decisions & Risks
- Runtime evidence hooks (22-010) remain pending; ensure path scrubbing/loader hashing design before implementation.
Next Checkpoints
- None scheduled; proceed to 22-010 once ready.