stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 12 Releases Wiki Activity
Files
e1f1bef4c127dbe7b4d35023df4f067c39e36ff5
git.stella-ops.org/docs/modules/ui/README.md
StellaOps Bot 17d45a6d30
Some checks failed
Airgap Sealed CI Smoke / sealed-smoke (push) Has been cancelled
Details
Docs CI / lint-and-preview (push) Has been cancelled
Details
Export Center CI / export-ci (push) Has been cancelled
Details
feat: Implement Filesystem and MongoDB provenance writers for PackRun execution context 
- Added `FilesystemPackRunProvenanceWriter` to write provenance manifests to the filesystem.
- Introduced `MongoPackRunArtifactReader` to read artifacts from MongoDB.
- Created `MongoPackRunProvenanceWriter` to store provenance manifests in MongoDB.
- Developed unit tests for filesystem and MongoDB provenance writers.
- Established `ITimelineEventStore` and `ITimelineIngestionService` interfaces for timeline event handling.
- Implemented `TimelineIngestionService` to validate and persist timeline events with hashing.
- Created PostgreSQL schema and migration scripts for timeline indexing.
- Added dependency injection support for timeline indexer services.
- Developed tests for timeline ingestion and schema validation.
2025-11-30 15:38:14 +02:00

2.4 KiB
Raw Blame History

StellaOps Console UI

The Console presents operator dashboards for scans, policies, VEX evidence, runtime posture, and admin workflows.

Latest updates (2025-11-30)

  • Docs refreshed per docs/implplan/SPRINT_0331_0001_0001_docs_modules_ui.md; added observability runbook stub and TASKS mirror.
  • Access-control guidance from 2025-11-03 remains valid; ensure Authority scopes are verified before enabling uploads.

Responsibilities

  • Render real-time status for ingestion, scanning, policy, and exports via SSE.
  • Provide policy editor, SBOM explorer, and advisory views with accessibility compliance.
  • Integrate with Authority for fresh-auth and scope enforcement.
  • Support offline bundles with deterministic build outputs.

Key components

  • Angular 17 workspace under src/UI/StellaOps.UI.
  • Signals-based state management with @ngrx/signals store.
  • API client generator (core/api).

Integrations & dependencies

  • Backend APIs (Scanner, Policy, Notify, Export Center, Attestor).
  • Authority for DPoP-protected calls.
  • Telemetry streams for observability dashboards.

Operational notes

  • Auth smoke tests in operations/auth-smoke.md.
  • Observability runbook + dashboard stub in operations/observability.md and operations/dashboards/console-ui-observability.json (offline import).
  • Console architecture doc for layout and SSE fan-out.
  • Accessibility and security guides in ../../ui/ & ../../security/.

Related resources

  • ./operations/auth-smoke.md
  • ./operations/observability.md
  • ./console-architecture.md

Backlog references

  • DOCS-CONSOLE-23-001 … DOCS-CONSOLE-23-003 baseline (done).
  • CONSOLE-OBS-52-001 tasks for observability updates.

Epic alignment

  • Epic 2 Policy Engine & Editor: deliver deterministic policy authoring, simulation, and explain UX.
  • Epic 4 Policy Studio: implement registry workspace, approvals, and promotion workflows.
  • Epic 5 SBOM Graph Explorer: surface graph navigation, overlays, and diff tools.
  • Epic 6 Vulnerability Explorer: provide triage dashboards, findings ledger views, and audit exports.
  • Epic 8 Advisory AI: embed advisory summaries, explanations, and remediation hints with citations.
  • Epic 9 Orchestrator Dashboard: expose source/job monitoring with throttling and replay controls.
  • Epic 11 Notifications Studio: deliver notifications workspace with rule/channel previews and audits.