Files

StellaOps Bot 907783f625 Add property-based tests for SBOM/VEX document ordering and Unicode normalization determinism

- Implement `SbomVexOrderingDeterminismProperties` for testing component list and vulnerability metadata hash consistency.
- Create `UnicodeNormalizationDeterminismProperties` to validate NFC normalization and Unicode string handling.
- Add project file for `StellaOps.Testing.Determinism.Properties` with necessary dependencies.
- Introduce CI/CD template validation tests including YAML syntax checks and documentation content verification.
- Create validation script for CI/CD templates ensuring all required files and structures are present.

2025-12-26 15:17:58 +02:00

2.6 KiB

Raw Blame History

Web

Status: Implemented Source: src/Web/ Owner: UI Guild

Purpose

Web provides the Angular 17 single-page application (SPA) frontend for StellaOps. Delivers the user interface for vulnerability exploration, policy management, scan results, SBOM visualization, and administrative functions.

Components

Application:

StellaOps.Web - Angular 17 application with TypeScript, routing, and component library

Key Features:

Dashboard and vulnerability overview
Container scan results and SBOM explorer
Policy editor and rule visualization
VEX statement review and approval workflows
Task pack execution monitoring
Admin console for configuration and user management
Unified Triage Experience - Smart-Diff Compare View, Triage Canvas, Risk Dashboard
Risk Budget Visualization - Burn-up charts, heatmaps, exception ledger

Configuration

Angular configuration in angular.json and environment files.

Key settings:

Backend API URL (STELLAOPS_BACKEND_URL)
Authority OAuth/OIDC endpoints
Feature flags for module visibility
Telemetry and error reporting

Build and Development

# Install dependencies
cd src/Web/StellaOps.Web
npm install

# Development server
npm start

# Production build
npm run build

# Run tests
npm test

# Run E2E tests (Playwright)
npx playwright test

Dependencies

Gateway (API access)
Authority (authentication and authorization)
All backend services (via Gateway routing)

Triage Experience

Unified Triage Specification - Consolidated triage requirements
Smart-Diff UI Architecture - Compare view design
Triage Component Catalog - Angular component documentation
Competitive Triage Patterns - Industry comparison

Module Dependencies

UI Module: ../ui/ (shared UI components)
Gateway: ../gateway/ (API access)
Authority: ../authority/ (authentication)
VulnExplorer: ../vulnexplorer/ (vulnerability data)

Implementation Sprints

Current Status

Angular 17 application implemented with routing, authentication, and integration with backend services. Supports vulnerability exploration, scan results, SBOM visualization, and policy management. Playwright E2E tests configured.

2.6 KiB Raw Blame History

Web