stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
d92973d6fdeb259a3a8c5a67b0b6e95aaca8633f
git.stella-ops.org/docs/implplan/SPRINT_507_ops_devops_v.md
master cef4cb2c5a Add support for ГОСТ Р 34.10 digital signatures 
- Implemented the GostKeyValue class for handling public key parameters in ГОСТ Р 34.10 digital signatures.
- Created the GostSignedXml class to manage XML signatures using ГОСТ 34.10, including methods for computing and checking signatures.
- Developed the GostSignedXmlImpl class to encapsulate the signature computation logic and public key retrieval.
- Added specific key value classes for ГОСТ Р 34.10-2001, ГОСТ Р 34.10-2012/256, and ГОСТ Р 34.10-2012/512 to support different signature algorithms.
- Ensured compatibility with existing XML signature standards while integrating ГОСТ cryptography.
2025-11-09 21:59:57 +02:00

2.7 KiB
Raw Blame History

Sprint 507 - Ops & Offline · 190.B) Ops Devops.V

Active items only. Completed/historic work now resides in docs/implplan/archived/tasks.md (updated 2025-11-08).

[Ops & Offline] 190.B) Ops Devops.V Depends on: Sprint 190.B - Ops Devops.IV Summary: Ops & Offline focus on Ops Devops (phase V).

Task ID State Task description Owners (Source)
DEVOPS-TEN-49-001 TODO Deploy audit pipeline, scope usage metrics, JWKS outage chaos tests, and tenant load/perf benchmarks. Dependencies: DEVOPS-TEN-48-001. DevOps Guild (ops/devops)
DEVOPS-VEX-30-001 TODO Provision CI, load tests, dashboards, alerts for VEX Lens and Issuer Directory (compute latency, disputed totals, signature verification rates). DevOps Guild, VEX Lens Guild (ops/devops)
DEVOPS-VULN-29-001 TODO Provision CI jobs for ledger projector (replay, determinism), set up backups, monitor Merkle anchoring, and automate verification. DevOps Guild, Findings Ledger Guild (ops/devops)
DEVOPS-VULN-29-002 TODO Configure load/perf tests (5M findings/tenant), query budget enforcement, API SLO dashboards, and alerts for vuln_list_latency and projection_lag. Dependencies: DEVOPS-VULN-29-001. DevOps Guild, Vuln Explorer API Guild (ops/devops)
DEVOPS-VULN-29-003 TODO Instrument analytics pipeline for Vuln Explorer (telemetry ingestion, query hashes), ensure compliance with privacy/PII guardrails, and update observability docs. Dependencies: DEVOPS-VULN-29-002. DevOps Guild, Console Guild (ops/devops)
DOCKER-44-001 TODO Author multi-stage Dockerfiles for all core services (API, Console, Orchestrator, Task Runner, Conseiller, Excitor, Policy, Notify, Export, AI) with non-root users, read-only file systems, and health scripts. DevOps Guild, Service Owners (ops/devops)
DOCKER-44-002 TODO Generate SBOMs and cosign attestations for each image and integrate verification into CI. Dependencies: DOCKER-44-001. DevOps Guild (ops/devops)
DOCKER-44-003 TODO Implement /health/liveness, /health/readiness, /version, /metrics, and ensure capability endpoint returns merge=false for Conseiller/Excitor. Dependencies: DOCKER-44-002. DevOps Guild (ops/devops)
OPS-ENV-01 TODO Update deployment manifests (Helm/Compose) and configuration docs to include Surface.Env variables for Scanner and Zastava services. DevOps Guild, Scanner Guild (ops/devops)
OPS-SECRETS-01 TODO Define secret provisioning workflow (Kubernetes, Compose, Offline Kit) for Surface.Secrets references and update runbooks. DevOps Guild, Security Guild (ops/devops)
OPS-SECRETS-02 TODO Embed Surface.Secrets material (encrypted bundles, manifests) into offline kit packaging scripts. Dependencies: OPS-SECRETS-01. DevOps Guild, Offline Kit Guild (ops/devops)