9e5e958d42
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
- Added detailed task completion records for KMS interface implementation and CLI support for file-based keys. - Documented security enhancements including Argon2id password hashing, audit event contracts, and rate limiting configurations. - Included scoped service support and integration updates for the Plugin platform, ensuring proper DI handling and testing coverage.
5.6 KiB
5.6 KiB
TASKS
| Task | Owner(s) | Depends on | Notes |
|---|---|---|---|
| Range primitives backlog | BE-Merge | Connector WGs | DOING – Coordinate remaining connectors (Acsc, Cccs, CertBund, CertCc, Cve, Ghsa, Ics.Cisa, Kisa, Ru.Bdu, Ru.Nkcki, Vndr.Apple, Vndr.Cisco, Vndr.Msrc) to emit canonical RangePrimitives with provenance tags; track progress/fixtures here.2025-10-11: Storage alignment notes + sample normalized rule JSON now captured in RANGE_PRIMITIVES_COORDINATION.md (see “Storage alignment quick reference”).2025-10-11 18:45Z: GHSA normalized rules landed; OSV connector picked up next for rollout. 2025-10-11 21:10Z: docs/dev/merge_semver_playbook.md Section 8 now documents the persisted Mongo projection (SemVer + NEVRA) for connector reviewers.2025-10-11 21:30Z: Added docs/dev/normalized_versions_rollout.md dashboard to centralize connector status and upcoming milestones.2025-10-11 21:55Z: Merge now emits concelier.merge.normalized_rules* counters and unions connector-provided normalized arrays; see new test coverage in AdvisoryPrecedenceMergerTests.Merge_RecordsNormalizedRuleMetrics.2025-10-12 17:05Z: CVE + KEV normalized rule verification complete; OSV parity fixtures revalidated—downstream parity/monitoring tasks may proceed. 2025-10-19 14:35Z: Prerequisites reviewed (none outstanding); FEEDMERGE-COORD-02-900 remains in DOING with connector follow-ups unchanged. 2025-10-19 15:25Z: Refreshed RANGE_PRIMITIVES_COORDINATION.md matrix + added targeted follow-ups (Cccs, CertBund, ICS-CISA, Kisa, Vndr.Cisco) with delivery dates 2025-10-21 → 2025-10-25; monitoring merge counters for regression.2025-10-29: Added merge-time warnings highlighting sources/package types when ranges emit without normalized rules to accelerate backlog triage. |
| Range primitives backlog | BE-Merge | Connector WGs | DOING – Coordinate remaining connectors (Acsc, Cccs, CertBund, CertCc, Cve, Ghsa, Ics.Cisa, Kisa, Ru.Bdu, Ru.Nkcki, Vndr.Apple, Vndr.Cisco, Vndr.Msrc) to emit canonical RangePrimitives with provenance tags; track progress/fixtures here.2025-10-11: Storage alignment notes + sample normalized rule JSON now captured in RANGE_PRIMITIVES_COORDINATION.md (see “Storage alignment quick reference”).2025-10-11 18:45Z: GHSA normalized rules landed; OSV connector picked up next for rollout. 2025-10-11 21:10Z: docs/dev/merge_semver_playbook.md Section 8 now documents the persisted Mongo projection (SemVer + NEVRA) for connector reviewers.2025-10-11 21:30Z: Added docs/dev/normalized_versions_rollout.md dashboard to centralize connector status and upcoming milestones.2025-10-11 21:55Z: Merge now emits concelier.merge.normalized_rules* counters and unions connector-provided normalized arrays; see new test coverage in AdvisoryPrecedenceMergerTests.Merge_RecordsNormalizedRuleMetrics.2025-10-12 17:05Z: CVE + KEV normalized rule verification complete; OSV parity fixtures revalidated—downstream parity/monitoring tasks may proceed. 2025-10-19 14:35Z: Prerequisites reviewed (none outstanding); FEEDMERGE-COORD-02-900 remains in DOING with connector follow-ups unchanged. 2025-10-19 15:25Z: Refreshed RANGE_PRIMITIVES_COORDINATION.md matrix + added targeted follow-ups (Cccs, CertBund, ICS-CISA, Kisa, Vndr.Cisco) with delivery dates 2025-10-21 → 2025-10-25; monitoring merge counters for regression.2025-10-20 19:30Z: Coordination matrix + rollout dashboard updated with current connector statuses and due dates; flagged Slack escalation plan if Cccs/Cisco miss 2025-10-21 and documented Acsc kickoff window for 2025-10-24. |
| FEEDMERGE-COORD-02-901 Connector deadline check-ins | BE-Merge | FEEDMERGE-COORD-02-900 | TODO (due 2025-10-21) – Confirm Cccs/Cisco normalized-rule branches land, capture concelier.merge.normalized_rules* counter screenshots, and update coordination docs with the results.2025-10-29: Merge now emits Normalized version rules missing... warnings (see docs/dev/normalized-rule-recipes.md §4); include zero-warning excerpt plus Grafana counter snapshot when closing this task. |
| FEEDMERGE-COORD-02-902 ICS-CISA normalized-rule decision support | BE-Merge, Models | FEEDMERGE-COORD-02-900 | TODO (due 2025-10-23) – Review ICS-CISA sample advisories, confirm SemVer reuse vs new firmware scheme, pre-stage Models ticket template, and document outcome in coordination docs + tracker files. 2025-10-29: Recipes doc (§2–§3) outlines SemVer promotion + fallback logging—attach decision summary + log sample when handing off to Models. |
| FEEDMERGE-COORD-02-903 KISA firmware scheme review | BE-Merge, Models | FEEDMERGE-COORD-02-900 | TODO (due 2025-10-24) – Pair with KISA team on proposed firmware scheme (kisa.build or variant), ensure builder alignment, open Models ticket if required, and log decision in coordination docs + tracker files. |
Link-Not-Merge v1 Transition
| Task | Owner(s) | Depends on | Notes |
|---|---|---|---|
| MERGE-LNM-21-001 Migration plan authoring | BE-Merge, Architecture Guild | CONCELIER-LNM-21-101 | Draft no-merge migration playbook, documenting backfill strategy, feature flag rollout, and rollback steps for legacy merge pipeline deprecation. |
| MERGE-LNM-21-002 Merge service deprecation | BE-Merge | MERGE-LNM-21-001 | Refactor or retire AdvisoryMergeService and related pipelines, ensuring callers transition to observation/linkset APIs; add compile-time analyzer preventing merge service usage. |
| MERGE-LNM-21-003 Determinism/test updates | QA Guild, BE-Merge | MERGE-LNM-21-002 | Replace merge determinism suites with observation/linkset regression tests verifying no data mutation and conflicts remain visible. |