stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
e901d31acf2233551af00f900df62409740ee721
git.stella-ops.org/src/Scanner/__Libraries/StellaOps.Scanner.Analyzers.Lang.Ruby/TASKS.md
StellaOps Bot e901d31acf
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
up
2025-11-27 08:52:59 +02:00

3.2 KiB
Raw Blame History

Ruby Analyzer Guild — Active Tasks

Task ID State Notes
SCANNER-ENG-0009 DONE (2025-11-13) Ruby analyzer parity landed end-to-end: Mongo-backed ruby.packages inventories, WebService /api/scans/{scanId}/ruby-packages, CLI ruby resolve + observations, plugin manifest packaging, and targeted tests (StellaOps.Scanner.Analyzers.Lang.Ruby.Tests, StellaOps.Scanner.Worker.Tests, StellaOps.Scanner.WebService.Tests --filter FullyQualifiedName~RubyPackages).
SCANNER-ENG-0016 DONE (2025-11-10) RubyLockCollector merged with vendor cache ingestion; workspace overrides, bundler groups, git/path fixture, and offline-kit mirror updated.
SCANNER-ENG-0017 DONE (2025-11-09) Build runtime require/autoload graph builder with tree-sitter Ruby per design §4.4, feed EntryTrace hints.
SCANNER-ENG-0018 DONE (2025-11-09) Emit Ruby capability + framework surface signals, align with design §4.5 / Sprint 138.
SCANNER-ANALYZERS-RUBY-28-001 DONE (2025-11-27) Added OCI container layer support (layers/, .layers/, layer/) to RubyLockCollector and RubyVendorArtifactCollector for VFS/container workspace discovery. Existing implementation already covered Gemfile/lock, vendor/bundle, .gem archives, .bundle/config, Rack configs, and framework fingerprints.
SCANNER-ANALYZERS-RUBY-28-002 DONE (2025-11-27) Enhanced RubyLockParser to capture gem dependency edges with version constraints from Gemfile.lock; added RubyDependencyEdge type; updated RubyLockEntry, RubyObservationDocument, observation builder and serializer to produce dependencyEdges with from/to/constraint fields. PURLs and resolver traces now included.
SCANNER-ANALYZERS-RUBY-28-003 DONE (2025-11-27) AOC-compliant observations integration: added schema field, RubyObservationEntrypoint and RubyObservationEnvironment types; builder generates entrypoints (path/type/requiredGems) and environment profiles (bundlePaths/gemfiles/lockfiles/frameworks); RubyRuntimeGraph provides GetEntrypointFiles/GetRequiredGems; bundlerConfig wired through analyzer for complete observation coverage.
SCANNER-ANALYZERS-RUBY-28-004 DONE (2025-11-27) Fixtures/benchmarks for Ruby analyzer: created cli-app fixture with Thor/TTY-Prompt CLI gems, updated expected.json golden files for simple-app and complex-app with dependency edges format, added CliWorkspaceProducesDeterministicOutputAsync test; all 4 determinism tests pass.
SCANNER-ANALYZERS-RUBY-28-005 DONE (2025-11-27) Runtime capture (tracepoint) hooks: created Internal/Runtime/ with RubyRuntimeShim.cs (trace-shim.rb using TracePoint for require/load events, capability detection, sensitive data redaction), RubyRuntimeTraceRunner.cs (opt-in harness via STELLA_RUBY_ENTRYPOINT env var, sandbox guidance), and RubyRuntimeTraceReader.cs (NDJSON parser for trace events).
SCANNER-ANALYZERS-RUBY-28-006 DONE (2025-11-27) Package Ruby analyzer plug-in: created manifest.json with schema version, entrypoint, and capabilities (ruby/rubygems/bundler/runtime-capture:optional). Updated docs/24_OFFLINE_KIT.md to include Ruby analyzer in language analyzers section, manifest examples, tar verification commands, and release guardrail smoke test references.