3.1 KiB
3.1 KiB
Triage database schema and API endpoints
Module
Scanner
Status
IMPLEMENTED
Description
PostgreSQL triage schema with migration, DbContext, and tested API endpoints for triage status management.
Implementation Details
- Database Schema:
src/Scanner/__Libraries/StellaOps.Scanner.Triage/TriageDbContext.cs-TriageDbContextEF Core database context defining the triage schema with migrations
- Entity Models:
src/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageFinding.cs-TriageFindingentity representing a vulnerability finding in triagesrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageDecision.cs-TriageDecisionentity for triage decision recordssrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageEvidenceArtifact.cs-TriageEvidenceArtifactentity linking evidence to triage decisionssrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageScan.cs-TriageScanentity for scan metadatasrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageSnapshot.cs-TriageSnapshotentity for point-in-time triage statesrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageRiskResult.cs-TriageRiskResultentity for risk assessment resultssrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageReachabilityResult.cs-TriageReachabilityResultentity for reachability analysis resultssrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriagePolicyDecision.cs-TriagePolicyDecisionentity for policy evaluation resultssrc/Scanner/__Libraries/StellaOps.Scanner.Triage/Entities/TriageEnums.cs- Triage status, decision, and lane enumerations
- API Endpoints:
src/Scanner/StellaOps.Scanner.WebService/Services/TriageStatusService.cs-TriageStatusServicemanaging triage workflow state transitionssrc/Scanner/StellaOps.Scanner.WebService/Controllers/TriageController.cs-TriageControllerREST API for triage operationssrc/Scanner/StellaOps.Scanner.WebService/Contracts/TriageContracts.cs- API contracts for triage endpoints
- Tests:
src/Scanner/__Tests/StellaOps.Scanner.Triage.Tests/TriageSchemaIntegrationTests.cs- Schema migration testssrc/Scanner/__Tests/StellaOps.Scanner.Triage.Tests/TriageQueryPerformanceTests.cs- Query performance testssrc/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/TriageStatusEndpointsTests.cs- API endpoint tests
E2E Test Plan
- Run database migration and verify the triage schema is created with all expected tables and indexes
- Create a triage finding via the API and verify it persists with correct status and metadata
- Transition a finding through triage states (New -> In Review -> Accepted/Rejected) and verify state transitions are validated
- Query triage findings with filters (status, severity, scan ID) and verify correct results with acceptable query performance
- Verify triage snapshots capture point-in-time state for audit purposes
- Verify policy decisions and reachability results are correctly linked to triage findings