8768c27f30
- Introduced `ReachabilityState`, `RuntimeHit`, `ExploitabilitySignal`, `ReachabilitySignal`, `SignalEnvelope`, `SignalType`, `TrustSignal`, and `UnknownSymbolSignal` records to define various signal types and their properties. - Implemented JSON serialization attributes for proper data interchange. - Created project files for the new signal contracts library and corresponding test projects. - Added deterministic test fixtures for micro-interaction testing. - Included cryptographic keys for secure operations with cosign.
StellaOps Console UI
The Console presents operator dashboards for scans, policies, VEX evidence, runtime posture, and admin workflows.
Latest updates (2025-11-30)
- Docs refreshed per
docs/implplan/SPRINT_0331_0001_0001_docs_modules_ui.md; added observability runbook stub and TASKS mirror. - Access-control guidance from 2025-11-03 remains valid; ensure Authority scopes are verified before enabling uploads.
Responsibilities
- Render real-time status for ingestion, scanning, policy, and exports via SSE.
- Provide policy editor, SBOM explorer, and advisory views with accessibility compliance.
- Integrate with Authority for fresh-auth and scope enforcement.
- Support offline bundles with deterministic build outputs.
Key components
- Angular 17 workspace under
src/UI/StellaOps.UI. - Signals-based state management with
@ngrx/signalsstore. - API client generator (
core/api).
Integrations & dependencies
- Backend APIs (Scanner, Policy, Notify, Export Center, Attestor).
- Authority for DPoP-protected calls.
- Telemetry streams for observability dashboards.
Operational notes
- Auth smoke tests in
operations/auth-smoke.md. - Observability runbook + dashboard stub in
operations/observability.mdandoperations/dashboards/console-ui-observability.json(offline import). - Console architecture doc for layout and SSE fan-out.
- Accessibility and security guides in ../../ui/ & ../../security/.
Related resources
- ./operations/auth-smoke.md
- ./operations/observability.md
- ./console-architecture.md
Backlog references
- DOCS-CONSOLE-23-001 … DOCS-CONSOLE-23-003 baseline (done).
- CONSOLE-OBS-52-001 tasks for observability updates.
Epic alignment
- Epic 2 – Policy Engine & Editor: deliver deterministic policy authoring, simulation, and explain UX.
- Epic 4 – Policy Studio: implement registry workspace, approvals, and promotion workflows.
- Epic 5 – SBOM Graph Explorer: surface graph navigation, overlays, and diff tools.
- Epic 6 – Vulnerability Explorer: provide triage dashboards, findings ledger views, and audit exports.
- Epic 8 – Advisory AI: embed advisory summaries, explanations, and remediation hints with citations.
- Epic 9 – Orchestrator Dashboard: expose source/job monitoring with throttling and replay controls.
- Epic 11 – Notifications Studio: deliver notifications workspace with rule/channel previews and audits.