stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
c2c6b58b416bc36020cc9d593f44c75e7401fbb7
git.stella-ops.org/docs/implplan/SPRINT_209_ui_i.md
master c2c6b58b41 feat: Add Promotion-Time Attestations for Stella Ops 
- Introduced a new document for promotion-time attestations, detailing the purpose, predicate schema, producer workflow, verification flow, APIs, and security considerations.
- Implemented the `stella.ops/promotion@v1` predicate schema to capture promotion evidence including image digest, SBOM/VEX artifacts, and Rekor proof.
- Defined producer responsibilities and workflows for CLI orchestration, signer responsibilities, and Export Center integration.
- Added verification steps for auditors to validate promotion attestations offline.

feat: Create Symbol Manifest v1 Specification

- Developed a specification for Symbol Manifest v1 to provide a deterministic format for publishing debug symbols and source maps.
- Defined the manifest structure, including schema, entries, source maps, toolchain, and provenance.
- Outlined upload and verification processes, resolve APIs, runtime proxy, caching, and offline bundle generation.
- Included security considerations and related tasks for implementation.

chore: Add Ruby Analyzer with Git Sources

- Created a Gemfile and Gemfile.lock for Ruby analyzer with dependencies on git-gem, httparty, and path-gem.
- Implemented main application logic to utilize the defined gems and output their versions.
- Added expected JSON output for the Ruby analyzer to validate the integration of the new gems and their functionalities.
- Developed internal observation classes for Ruby packages, runtime edges, and capabilities, including serialization logic for observations.

test: Add tests for Ruby Analyzer

- Created test fixtures for Ruby analyzer, including Gemfile, Gemfile.lock, main application, and expected JSON output.
- Ensured that the tests validate the correct integration and functionality of the Ruby analyzer with the specified gems.
2025-11-11 15:30:22 +02:00

4.6 KiB
Raw Blame History

Sprint 209 - Experience & SDKs · 180.E) UI.I

Active items only. Completed/historic work now resides in docs/implplan/archived/tasks.md (updated 2025-11-08).

[Experience & SDKs] 180.E) UI.I Depends on: Sprint 120.A - AirGap, Sprint 130.A - Scanner, Sprint 150.A - Orchestrator, Sprint 170.A - Notifier Summary: Experience & SDKs focus on UI (phase I).

Task ID State Task description Owners (Source)
UI-AOC-19-001 TODO Add Sources dashboard tiles showing AOC pass/fail, recent violation codes, and ingest throughput per tenant. UI Guild (src/UI/StellaOps.UI)
UI-AOC-19-002 TODO Implement violation drill-down view highlighting offending document fields and provenance metadata. Dependencies: UI-AOC-19-001. UI Guild (src/UI/StellaOps.UI)
UI-AOC-19-003 TODO Add "Verify last 24h" action triggering AOC verifier endpoint and surfacing CLI parity guidance. Dependencies: UI-AOC-19-002. UI Guild (src/UI/StellaOps.UI)
UI-EXC-25-001 TODO Build Exception Center (list + kanban) with filters, sorting, workflow transitions, and audit views. UI Guild, Governance Guild (src/UI/StellaOps.UI)
UI-EXC-25-002 TODO Implement exception creation wizard with scope preview, justification templates, timebox guardrails. Dependencies: UI-EXC-25-001. UI Guild (src/UI/StellaOps.UI)
UI-EXC-25-003 TODO Add inline exception drafting/proposing from Vulnerability Explorer and Graph detail panels with live simulation. Dependencies: UI-EXC-25-002. UI Guild (src/UI/StellaOps.UI)
UI-EXC-25-004 TODO Surface exception badges, countdown timers, and explain integration across Graph/Vuln Explorer and policy views. Dependencies: UI-EXC-25-003. UI Guild (src/UI/StellaOps.UI)
UI-EXC-25-005 TODO Add keyboard shortcuts (x,a,r) and ensure screen-reader messaging for approvals/revocations. Dependencies: UI-EXC-25-004. UI Guild, Accessibility Guild (src/UI/StellaOps.UI)
UI-GRAPH-21-001 TODO Align Graph Explorer auth configuration with new graph:* scopes; consume scope identifiers from shared StellaOpsScopes exports (via generated SDK/config) instead of hard-coded strings. UI Guild (src/UI/StellaOps.UI)
UI-GRAPH-24-001 TODO Build Graph Explorer canvas with layered/radial layouts, virtualization, zoom/pan, and scope toggles; initial render <1.5s for sample asset. Dependencies: UI-GRAPH-21-001. UI Guild, SBOM Service Guild (src/UI/StellaOps.UI)
UI-GRAPH-24-002 TODO Implement overlays (Policy, Evidence, License, Exposure), simulation toggle, path view, and SBOM diff/time-travel with accessible tooltips/AOC indicators. Dependencies: UI-GRAPH-24-001. UI Guild, Policy Guild (src/UI/StellaOps.UI)
UI-GRAPH-24-003 TODO Deliver filters/search panel with facets, saved views, permalinks, and share modal. Dependencies: UI-GRAPH-24-002. UI Guild (src/UI/StellaOps.UI)
UI-GRAPH-24-004 TODO Add side panels (Details, What-if, History) with upgrade simulation integration and SBOM diff viewer. Dependencies: UI-GRAPH-24-003. UI Guild (src/UI/StellaOps.UI)
UI-GRAPH-24-006 TODO Ensure accessibility (keyboard nav, screen reader labels, contrast), add hotkeys (f,e,.), and analytics instrumentation. Dependencies: UI-GRAPH-24-004. UI Guild, Accessibility Guild (src/UI/StellaOps.UI)
UI-LNM-22-001 TODO Build Evidence panel showing policy decision with advisory observations/linksets side-by-side, conflict badges, AOC chain, and raw doc download links. Docs DOCS-LNM-22-005 waiting on delivered UI for screenshots + flows. UI Guild, Policy Guild (src/UI/StellaOps.UI)
UI-SBOM-DET-01 TODO Add a “Determinism” badge plus drill-down that surfaces fragment hashes, _composition.json, and Merkle root consistency when viewing scan details (per docs/modules/scanner/deterministic-sbom-compose.md). UI Guild (src/UI/StellaOps.UI)
UI-POLICY-DET-01 TODO Wire policy gate indicators + remediation hints into Release/Policy flows, blocking publishes when determinism checks fail; coordinate with Policy Engine schema updates. Dependencies: UI-SBOM-DET-01. UI Guild, Policy Guild (src/UI/StellaOps.UI)
UI-ENTROPY-40-001 TODO Visualise entropy analysis per image (layer donut, file heatmaps, “Why risky?” chips) in Vulnerability Explorer and scan details, including opaque byte ratios and detector hints (see docs/modules/scanner/entropy.md). UI Guild (src/UI/StellaOps.UI)
UI-ENTROPY-40-002 TODO Add policy banners/tooltips explaining entropy penalties (block/warn thresholds, mitigation steps) and link to raw entropy.report.json evidence downloads (docs/modules/scanner/entropy.md). Dependencies: UI-ENTROPY-40-001. UI Guild, Policy Guild (src/UI/StellaOps.UI)