stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
d71c81e45d5a129e572dd3e481e7ce43827f0f3d
git.stella-ops.org/docs/implplan/SPRINT_130_scanner_surface.md
master ae69b1a8a1 feat: Add documentation and task tracking for Sprints 508 to 514 in Ops & Offline 
- Created detailed markdown files for Sprints 508 (Ops Offline Kit), 509 (Samples), 510 (AirGap), 511 (Api), 512 (Bench), 513 (Provenance), and 514 (Sovereign Crypto Enablement) outlining tasks, dependencies, and owners.
- Introduced a comprehensive Reachability Evidence Delivery Guide to streamline the reachability signal process.
- Implemented unit tests for Advisory AI to block known injection patterns and redact secrets.
- Added AuthoritySenderConstraintHelper to manage sender constraints in OpenIddict transactions.
2025-11-08 23:18:28 +02:00

2.9 KiB
Raw Blame History

Sprint 130 - Scanner & Surface

Implementation order remains sequential across Sprint 130139. Complete each sprint in order before pulling tasks from the next file.

1. Scanner.I — Scanner & Surface focus on Scanner (phase I).

Dependency: Sprint 110.A - AdvisoryAI

Task ID State Summary Owner / Source Depends On
SCANNER-ANALYZERS-DENO-26-001 TODO Build input normalizer & VFS for Deno projects: merge deno.json(c), import maps, lockfiles, vendor dirs, $DENO_DIR caches, and container layers. Detect runtime/toolchain hints deterministically. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md)
SCANNER-ANALYZERS-DENO-26-002 TODO Module graph builder: resolve static/dynamic imports using import map, deno.lock, vendor/, cache, npm bridge, node: builtins, WASM/JSON assertions. Annotate edges with resolution source and form. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-001
SCANNER-ANALYZERS-DENO-26-003 TODO NPM/Node compat adapter: map npm: specifiers to cached packages or compat node_modules, evaluate package exports/conditions, record node: builtin usage. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-002
SCANNER-ANALYZERS-DENO-26-004 TODO Static analyzer for permission/capability signals (FS, net, env, process, crypto, FFI, workers). Detect dynamic-import patterns, literal fetch URLs, tasks vs declared permissions. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-003
SCANNER-ANALYZERS-DENO-26-005 TODO Bundle/binary inspector: parse eszip bundles and deno compile executables (embedded eszip + snapshot) to recover module graph, config, embedded resources. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-004
SCANNER-ANALYZERS-DENO-26-006 TODO Container adapter: traverse OCI layers for deno, caches, vendor directories, compiled binaries; merge module provenance with layer info. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-005
SCANNER-ANALYZERS-DENO-26-007 TODO Produce AOC-compliant observations: entrypoints, modules, edges, permissions, workers, warnings, binaries with reason codes and contexts. Deno Analyzer Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-006
SCANNER-ANALYZERS-DENO-26-008 TODO Fixture suite + performance benchmarks (vendor, npm, FFI, workers, dynamic import, bundle/binary, cache-only, container). Deno Analyzer Guild, QA Guild (src/Scanner/StellaOps.Scanner.Analyzers.Lang.Deno/TASKS.md) SCANNER-ANALYZERS-DENO-26-007