stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 1 Releases Wiki Activity
Files
d099a90f9b77d52fdaccf5f0bd4585e2156f56d5
git.stella-ops.org/src/StellaOps.Scanner.Analyzers.Lang.Go/TASKS.md
master d099a90f9b feat: Initialize Zastava Webhook service with TLS and Authority authentication 
- Added Program.cs to set up the web application with Serilog for logging, health check endpoints, and a placeholder admission endpoint.
- Configured Kestrel server to use TLS 1.3 and handle client certificates appropriately.
- Created StellaOps.Zastava.Webhook.csproj with necessary dependencies including Serilog and Polly.
- Documented tasks in TASKS.md for the Zastava Webhook project, outlining current work and exit criteria for each task.
2025-10-19 18:36:22 +03:00

1.8 KiB
Raw Blame History

Go Analyzer Task Flow

Seq ID Status Depends on Description Exit Criteria
1 SCANNER-ANALYZERS-LANG-10-304A TODO SCANNER-ANALYZERS-LANG-10-307 Parse Go build info blob (runtime/debug format) and .note.go.buildid; map to module/version and evidence. Build info extracted across Go 1.181.23 fixtures; evidence includes VCS, module path, and build settings.
2 SCANNER-ANALYZERS-LANG-10-304B TODO SCANNER-ANALYZERS-LANG-10-304A Implement DWARF-lite reader for VCS metadata + dirty flag; add cache to avoid re-reading identical binaries. DWARF reader supplies commit hash for ≥95% fixtures; cache reduces duplicated IO by ≥70%.
3 SCANNER-ANALYZERS-LANG-10-304C TODO SCANNER-ANALYZERS-LANG-10-304B Fallback heuristics for stripped binaries with deterministic bin:{sha256} labeling and quiet provenance. Heuristic labels clearly separated; tests ensure no false “observed” provenance; documentation updated.
4 SCANNER-ANALYZERS-LANG-10-307G TODO SCANNER-ANALYZERS-LANG-10-304C Wire shared helpers (license mapping, usage flags) and ensure concurrency-safe buffer reuse. Analyzer reuses shared infrastructure; concurrency tests with parallel scans pass; no data races.
5 SCANNER-ANALYZERS-LANG-10-308G TODO SCANNER-ANALYZERS-LANG-10-307G Determinism fixtures + benchmark harness (Vs competitor). Fixtures under Fixtures/lang/go/; CI determinism check; benchmark runs showing ≥20% speed advantage.
6 SCANNER-ANALYZERS-LANG-10-309G TODO SCANNER-ANALYZERS-LANG-10-308G Package plug-in manifest + Offline Kit notes; ensure Worker DI registration. Manifest copied; Worker loads analyzer; Offline Kit docs updated with Go analyzer presence.