30 lines
1.4 KiB
Markdown
30 lines
1.4 KiB
Markdown
# CLI Slice Management Commands
|
|
|
|
## Module
|
|
Cli
|
|
|
|
## Status
|
|
IMPLEMENTED
|
|
|
|
## Description
|
|
CLI commands for reachability slice lifecycle: query by CVE/symbol, verify DSSE signature with replay, export to offline bundle (OCI layout tar.gz), and import from bundle with integrity verification.
|
|
|
|
## Implementation Details
|
|
- **Command Group**: `src/Cli/StellaOps.Cli/Commands/Slice/` -- slice management commands
|
|
- **Commands**:
|
|
- `stella slice query --cve <cve>` -- query slices by CVE
|
|
- `stella slice query --symbol <symbol>` -- query slices by symbol
|
|
- `stella slice verify <slice-id>` -- verify DSSE signature and replay integrity
|
|
- `stella slice export <slice-id> --output <path>` -- export to OCI layout tar.gz offline bundle
|
|
- `stella slice import <bundle-path>` -- import from bundle with integrity verification
|
|
- **OCI Integration**: Exports use OCI layout format for registry compatibility
|
|
|
|
## E2E Test Plan
|
|
- [ ] Run `stella slice query --cve CVE-2024-1234` and verify matching slices returned
|
|
- [ ] Run `stella slice query --symbol "org.example.Class.method"` and verify symbol-based query
|
|
- [ ] Run `stella slice verify <id>` and verify DSSE signature validation
|
|
- [ ] Run `stella slice export <id> --output ./slice-bundle.tar.gz` and verify OCI layout tar.gz
|
|
- [ ] Run `stella slice import ./slice-bundle.tar.gz` and verify import with integrity check
|
|
- [ ] Verify import fails for tampered bundles
|
|
- [ ] Verify deterministic replay after import matches original
|