75f6942769
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Policy Lint & Smoke / policy-lint (push) Has been cancelled
Concelier Attestation Tests / attestation-tests (push) Has been cancelled
AOC Guard CI / aoc-guard (push) Has been cancelled
AOC Guard CI / aoc-verify (push) Has been cancelled
- Implemented MigrationCategoryTests to validate migration categorization for startup, release, seed, and data migrations. - Added tests for edge cases, including null, empty, and whitespace migration names. - Created StartupMigrationHostTests to verify the behavior of the migration host with real PostgreSQL instances using Testcontainers. - Included tests for migration execution, schema creation, and handling of pending release migrations. - Added SQL migration files for testing: creating a test table, adding a column, a release migration, and seeding data.
4.1 KiB
4.1 KiB
Sprint 128 - Policy & Reasoning
BLOCKED Tasks: Before working on BLOCKED tasks, review BLOCKED_DEPENDENCY_TREE.md for root blockers and dependencies.
Last updated: November 8, 2025. Implementation order is DOING → TODO → BLOCKED.
Focus areas below were split out of the previous combined sprint; execute sections in order unless noted.
Policy.VI
Dependency: Sprint 120.C - Policy.V (must land before this track). Focus: Policy & Reasoning focus on Policy (phase VI).
| # | Task ID & handle | State | Key dependency / next step | Owners |
|---|---|---|---|---|
| 1 | POLICY-RISK-67-002 | DONE | Implement profile lifecycle APIs (/risk/profiles create/publish/deprecate) and scope attachment logic (Deps: POLICY-RISK-67-001) |
Policy Guild / src/Policy/StellaOps.Policy.Engine |
| 2 | POLICY-RISK-67-002 | DONE | Publish .well-known/risk-profile-schema endpoint and CLI validation tooling (Deps: POLICY-RISK-67-002) |
Risk Profile Schema Guild / src/Policy/StellaOps.Policy.RiskProfile |
| 3 | POLICY-RISK-67-003 | DONE | Provide policy-layer APIs to trigger risk simulations and return distributions/contribution breakdowns (Deps: POLICY-RISK-67-002) | Policy Guild, Risk Engine Guild / src/Policy/__Libraries/StellaOps.Policy |
| 4 | POLICY-RISK-68-001 | DONE | Provide simulation API bridging Policy Studio with risk engine; returns distributions and top movers (Deps: POLICY-RISK-67-003) | Policy Guild, Policy Studio Guild / src/Policy/StellaOps.Policy.Engine |
| 5 | POLICY-RISK-68-001 | DONE | Implement scope selectors, precedence rules, and Authority attachment APIs (Deps: POLICY-RISK-68-001) | Risk Profile Schema Guild, Authority Guild / src/Policy/StellaOps.Policy.RiskProfile |
| 6 | POLICY-RISK-68-002 | DONE | Add override/adjustment support with audit metadata and validation for conflicting rules (Deps: POLICY-RISK-68-001) | Risk Profile Schema Guild / src/Policy/StellaOps.Policy.RiskProfile |
| 7 | POLICY-RISK-68-002 | DONE | Enable exporting/importing RiskProfiles with signatures via policy tooling (CLI + API) (Deps: POLICY-RISK-68-002) | Policy Guild, Export Guild / src/Policy/__Libraries/StellaOps.Policy |
| 8 | POLICY-RISK-69-001 | DONE | Emit events/notifications on profile publish, deprecate, and severity threshold changes (Deps: POLICY-RISK-68-002) | Policy Guild, Notifications Guild / src/Policy/StellaOps.Policy.Engine |
| 9 | POLICY-RISK-70-001 | DONE | Support exporting/importing profiles with signatures for air-gapped bundles (Deps: POLICY-RISK-69-001) | Policy Guild, Export Guild / src/Policy/StellaOps.Policy.Engine |
| 10 | POLICY-SPL-23-001 | DONE | Define SPL v1 YAML + JSON Schema, including advisory rules, VEX precedence, severity mapping, exceptions, and layering metadata. Publish schema resources and validation fixtures | Policy Guild, Language Infrastructure Guild / src/Policy/__Libraries/StellaOps.Policy |
| 11 | POLICY-SPL-23-002 | DONE | Implement canonicalizer that normalizes policy packs (ordering, defaults), computes content hash, and prepares bundle metadata for AOC/signing (Deps: POLICY-SPL-23-001) | Policy Guild / src/Policy/__Libraries/StellaOps.Policy |
| 12 | POLICY-SPL-23-003 | DONE | Build policy layering/override engine (global/org/project/env/exception) with field-level precedence matrices; add unit/property tests (Deps: POLICY-SPL-23-002) | Policy Guild / src/Policy/__Libraries/StellaOps.Policy |
| 13 | POLICY-SPL-23-004 | DONE | Design explanation tree model (rule hits, inputs, decisions) and persistence structures reused by runtime, UI, and CLI (Deps: POLICY-SPL-23-003) | Policy Guild, Audit Guild / src/Policy/__Libraries/StellaOps.Policy |
| 14 | POLICY-SPL-23-005 | DONE | Create migration tool to snapshot existing behavior into baseline SPL packs (org.core.baseline), including policy docs and sample bundles (Deps: POLICY-SPL-23-004) |
Policy Guild, DevEx Guild / src/Policy/__Libraries/StellaOps.Policy |
| 15 | POLICY-SPL-24-001 | DONE | Extend SPL schema to expose reachability/exploitability predicates and weighting functions; update documentation and fixtures (Deps: POLICY-SPL-23-005) | Policy Guild, Signals Guild / src/Policy/__Libraries/StellaOps.Policy |