stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 1 Releases Wiki Activity
Files
b1e78fe41273a80c09ca56e37f273fc64d2a0a32
git.stella-ops.org/src/Scanner/StellaOps.Scanner.Worker/TASKS.md
master b1e78fe412
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
feat: Implement vulnerability token signing and verification utilities 
- Added VulnTokenSigner for signing JWT tokens with specified algorithms and keys.
- Introduced VulnTokenUtilities for resolving tenant and subject claims, and sanitizing context dictionaries.
- Created VulnTokenVerificationUtilities for parsing tokens, verifying signatures, and deserializing payloads.
- Developed VulnWorkflowAntiForgeryTokenIssuer for issuing anti-forgery tokens with configurable options.
- Implemented VulnWorkflowAntiForgeryTokenVerifier for verifying anti-forgery tokens and validating payloads.
- Added AuthorityVulnerabilityExplorerOptions to manage configuration for vulnerability explorer features.
- Included tests for FilesystemPackRunDispatcher to ensure proper job handling under egress policy restrictions.
2025-11-03 10:04:10 +02:00

1.3 KiB
Raw Blame History

Scanner Worker Task Board

ID Status Owner(s) Depends on Description Exit Criteria
SCANNER-SURFACE-01 DOING (2025-11-02) Scanner Worker Guild SURFACE-FS-02 Persist Surface.FS manifests after analyzer stages, including layer CAS metadata and EntryTrace fragments.
2025-11-02: Draft Surface.FS manifests emitted for sample scans; telemetry counters under review.		 Integration tests prove cache entries exist; telemetry counters exported.
SCANNER-ENV-01 DOING (2025-11-02) Scanner Worker Guild SURFACE-ENV-02 Replace ad-hoc environment reads with StellaOps.Scanner.Surface.Env helpers for cache roots and CAS endpoints.
2025-11-02: Worker bootstrap now resolves cache roots via helper; warning path documented; smoke tests running.		 Worker boots with helper; misconfiguration warnings documented; smoke tests updated.
SCANNER-SECRETS-01 DOING (2025-11-02) Scanner Worker Guild, Security Guild SURFACE-SECRETS-02 Adopt StellaOps.Scanner.Surface.Secrets for registry/CAS credentials during scan execution.
2025-11-02: Surface.Secrets provider wired for CAS token retrieval; integration tests added.		 Secrets fetched via shared provider; legacy secret code removed; integration tests cover rotation.