7.4 KiB
7.4 KiB
Canonical Webservice Catalog
This page is the source-of-truth inventory for Stella Ops *.WebService runtime services.
Scope and contract
- Inventory source:
rg --files src -g "*WebService.csproj". - Includes active runtime webservices only (31 services).
- Excludes non-
WebServiceAPI binaries (for exampleStellaOps.Policy.Engine,StellaOps.Policy.Gateway,StellaOps.Graph.Api,StellaOps.VulnExplorer.Api,StellaOps.Symbols.Server,StellaOps.Registry.TokenService,StellaOps.SmRemote.Service) even though they may bind*.stella-ops.localaliases. - Canonical runtime hostname form:
<service>.stella-ops.local.
Runtime hostname convention and exceptions
- Runtime service-discovery URLs in docs should use
https://<service>.stella-ops.local(or the HTTP equivalent when TLS is intentionally not shown). - Permitted exceptions:
- Infrastructure aliases (
db.stella-ops.local,cache.stella-ops.local,s3.stella-ops.local,rekor.stella-ops.local,registry.stella-ops.local). - Loopback/dev diagnostics (
localhost,127.x.y.z) where transport wiring is the point of the example. - Non-runtime identifiers/file names (for example
hosts.stellaops.localfile path).
Active webservices
| Domain | Webservice | Local hostname | Purpose | Persistence | Source path | Owner module |
|---|---|---|---|---|---|---|
| AdvisoryAI | AdvisoryAI | advisoryai.stella-ops.local |
Advisory assistant APIs (chat, evidence-pack, knowledge search). | postgres | src/AdvisoryAI/StellaOps.AdvisoryAI.WebService |
src/AdvisoryAI |
| AdvisoryAI | OpsMemory | opsmemory.stella-ops.local |
Operational memory/query APIs for advisory workflows. | postgres | src/AdvisoryAI/StellaOps.OpsMemory.WebService |
src/AdvisoryAI |
| Attestor | Attestor | attestor.stella-ops.local |
Attestation, witness, and proof-chain APIs. | postgres | src/Attestor/StellaOps.Attestor/StellaOps.Attestor.WebService |
src/Attestor |
| Attestor | Signer | signer.stella-ops.local |
Signing and key-ceremony APIs. | postgres | src/Attestor/StellaOps.Signer/StellaOps.Signer.WebService |
src/Attestor |
| Authority | IssuerDirectory | issuerdirectory.stella-ops.local |
Issuer metadata and trust directory APIs. | postgres | src/Authority/StellaOps.IssuerDirectory/StellaOps.IssuerDirectory.WebService |
src/Authority |
| BinaryIndex | BinaryIndex | binaryindex.stella-ops.local |
Binary index, patch coverage, and resolution APIs. | postgres | src/BinaryIndex/StellaOps.BinaryIndex.WebService |
src/BinaryIndex |
| Concelier | Concelier | concelier.stella-ops.local |
Advisory ingestion and source-management APIs. | postgres | src/Concelier/StellaOps.Concelier.WebService |
src/Concelier |
| Concelier | Excititor | excititor.stella-ops.local |
VEX ingest, linkset, and evidence APIs. | postgres | src/Concelier/StellaOps.Excititor.WebService |
src/Concelier |
| Doctor | Doctor | doctor.stella-ops.local |
Health diagnostics and setup-check APIs. | in-memory (no service DB) | src/Doctor/StellaOps.Doctor.WebService |
src/Doctor |
| EvidenceLocker | EvidenceLocker | evidencelocker.stella-ops.local |
Evidence ingest, bundle, legal hold, and verification APIs. | postgres | src/EvidenceLocker/StellaOps.EvidenceLocker/StellaOps.EvidenceLocker.WebService |
src/EvidenceLocker |
| ExportCenter | ExportCenter | exportcenter.stella-ops.local |
Export/audit bundle/report APIs. | postgres | src/ExportCenter/StellaOps.ExportCenter/StellaOps.ExportCenter.WebService |
src/ExportCenter |
| Findings | Findings.Ledger | findings.stella-ops.local |
Findings ledger, summary, and evidence graph APIs. | postgres | src/Findings/StellaOps.Findings.Ledger.WebService |
src/Findings |
| Findings | RiskEngine | riskengine.stella-ops.local |
Exploit maturity and risk score APIs. | postgres (in-memory fallback for explicit test profile) | src/Findings/StellaOps.RiskEngine.WebService |
src/Findings |
| Integrations | Integrations | integrations.stella-ops.local |
Integration adapters and endpoint management APIs. | postgres | src/Integrations/StellaOps.Integrations.WebService |
src/Integrations |
| JobEngine | JobEngine | jobengine.stella-ops.local |
Release orchestration, approvals, DAG/workflow APIs. | postgres | src/JobEngine/StellaOps.JobEngine/StellaOps.JobEngine.WebService |
src/JobEngine |
| JobEngine | PacksRegistry | packsregistry.stella-ops.local |
Pack/provenance/attestation registry APIs. | postgres + seed-fs object payloads | src/JobEngine/StellaOps.PacksRegistry/StellaOps.PacksRegistry.WebService |
src/JobEngine |
| JobEngine | Scheduler | scheduler.stella-ops.local |
Schedule/run planning and event APIs. | postgres | src/JobEngine/StellaOps.Scheduler.WebService |
src/JobEngine |
| JobEngine | TaskRunner | taskrunner.stella-ops.local |
Task execution, run state/log, approval, and artifact APIs. | postgres + seed-fs object payloads | src/JobEngine/StellaOps.TaskRunner/StellaOps.TaskRunner.WebService |
src/JobEngine |
| Notifier | Notifier | notifier.stella-ops.local |
Escalation and incident notification APIs. | postgres | src/Notifier/StellaOps.Notifier/StellaOps.Notifier.WebService |
src/Notifier |
| Notify | Notify | notify.stella-ops.local |
Notification rule/channel/template and delivery APIs. | postgres | src/Notify/StellaOps.Notify.WebService |
src/Notify |
| Platform | Platform | platform.stella-ops.local |
Console aggregation, setup, admin, and read-model APIs. | postgres | src/Platform/StellaOps.Platform.WebService |
src/Platform |
| ReachGraph | ReachGraph | reachgraph.stella-ops.local |
Reachability graph and CVE mapping APIs. | postgres | src/ReachGraph/StellaOps.ReachGraph.WebService |
src/ReachGraph |
| Remediation | Remediation | remediation.stella-ops.local |
Remediation source, registry, and match APIs. | postgres | src/Remediation/StellaOps.Remediation.WebService |
src/Remediation |
| Replay | Replay | replay.stella-ops.local |
Point-in-time query and verdict replay APIs. | postgres + seed-fs snapshot blobs | src/Replay/StellaOps.Replay.WebService |
src/Replay |
| Router | Gateway | router.stella-ops.local |
Gateway dispatch, auth, and reverse-proxy APIs. | no-persistence | src/Router/StellaOps.Gateway.WebService |
src/Router |
| Scanner | Scanner | scanner.stella-ops.local |
Scan submission, triage, drift, and scan data APIs. | postgres | src/Scanner/StellaOps.Scanner.WebService |
src/Scanner |
| Timeline | Timeline | timeline.stella-ops.local |
Timeline query/export/replay APIs. | postgres | src/Timeline/StellaOps.Timeline.WebService |
src/Timeline |
| Timeline | TimelineIndexer | timelineindexer.stella-ops.local |
Timeline indexer control/status APIs. | postgres | src/Timeline/StellaOps.TimelineIndexer.WebService |
src/Timeline |
| Unknowns | Unknowns | unknowns.stella-ops.local |
Unknowns queue and triage APIs. | postgres | src/Unknowns/StellaOps.Unknowns.WebService |
src/Unknowns |
| VexHub | VexHub | vexhub.stella-ops.local |
VEX ingest and distribution APIs. | postgres | src/VexHub/StellaOps.VexHub.WebService |
src/VexHub |
| VexLens | VexLens | vexlens.stella-ops.local |
VEX lens, delta, and gate-view APIs. | postgres | src/VexLens/StellaOps.VexLens.WebService |
src/VexLens |
Related references
docs/technical/architecture/port-registry.mddocs/modules/router/webservices-valkey-rollout-matrix.mddocs/implplan/CONSOLIDATION_WEBSERVICE_FUNCTION_DB_MATRIX_20260305.md