stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 14 Releases Wiki Activity
Files
f43e828b4e21957636ce35cdaf50bb29da5d4e1d
git.stella-ops.org/docs/implplan/SPRINT_171_notifier_i.md
StellaOps Bot f43e828b4e
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
feat: Implement MongoDB orchestrator storage with registry, commands, and heartbeats 
- Added NullAdvisoryObservationEventTransport for handling advisory observation events.
- Created IOrchestratorRegistryStore interface for orchestrator registry operations.
- Implemented MongoOrchestratorRegistryStore for MongoDB interactions with orchestrator data.
- Defined OrchestratorCommandDocument and OrchestratorCommandRecord for command handling.
- Added OrchestratorHeartbeatDocument and OrchestratorHeartbeatRecord for heartbeat tracking.
- Created OrchestratorRegistryDocument and OrchestratorRegistryRecord for registry management.
- Developed tests for orchestrator collections migration and MongoOrchestratorRegistryStore functionality.
- Introduced AirgapImportRequest and AirgapImportValidator for air-gapped VEX bundle imports.
- Added incident mode rules sample JSON for notifier configuration.
2025-11-22 12:35:38 +02:00

6.7 KiB
Raw Blame History

Sprint 171 - Notifications & Telemetry · 170.A) Notifier.I

Active items only. Completed/historic work now resides in docs/implplan/archived/tasks.md (updated 2025-11-08).

[Notifications & Telemetry] 170.A) Notifier.I Depends on: Sprint 150.A - Orchestrator Summary: Notifications & Telemetry focus on Notifier (phase I).

Task ID State Task description Owners (Source)
NOTIFY-ATTEST-74-001 DONE (2025-11-16) Create notification templates for verification failures, expiring attestations, key revocations, and transparency anomalies. Notifications Service Guild, Attestor Service Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-ATTEST-74-002 TODO Wire notifications to key rotation/revocation events and transparency witness failures. Dependencies: NOTIFY-ATTEST-74-001. Notifications Service Guild, KMS Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-OAS-61-001 DONE (2025-11-17) Update notifier OAS with rules, templates, incidents, quiet hours endpoints using standard error envelope and examples. Notifications Service Guild, API Contracts Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-OAS-61-002 DONE (2025-11-17) Implement /.well-known/openapi discovery endpoint with scope metadata. Dependencies: NOTIFY-OAS-61-001. Notifications Service Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-OAS-62-001 DONE (2025-11-17) Provide SDK usage examples for rule CRUD, incident ack, and quiet hours; ensure SDK smoke tests. Dependencies: NOTIFY-OAS-61-002. Notifications Service Guild, SDK Generator Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-OAS-63-001 DONE (2025-11-17) Emit deprecation headers and Notifications templates for retiring notifier APIs. Dependencies: NOTIFY-OAS-62-001. Notifications Service Guild, API Governance Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-OBS-51-001 DONE (2025-11-22) Integrate SLO evaluator webhooks into Notifier rules (burn-rate breaches, health degradations) with templates, routing, and suppression logic. Provide sample policies and ensure imposed rule propagation. Notifications Service Guild, Observability Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-OBS-55-001 DONE (2025-11-22) Publish incident mode start/stop notifications with trace/evidence quick links, retention notes, and automatic escalation paths. Include quiet-hour overrides + legal compliance logging. Dependencies: NOTIFY-OBS-51-001. Notifications Service Guild, Ops Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-RISK-66-001 TODO Add notification triggers for risk severity escalation/downgrade events with profile metadata in payload. Notifications Service Guild, Risk Engine Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-RISK-67-001 TODO Notify stakeholders when risk profiles are published, deprecated, or thresholds change. Dependencies: NOTIFY-RISK-66-001. Notifications Service Guild, Policy Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-RISK-68-001 TODO Support per-profile routing rules, quiet hours, and dedupe for risk alerts; integrate with CLI/Console preferences. Dependencies: NOTIFY-RISK-67-001. Notifications Service Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-DOC-70-001 DONE (2025-11-02) Document the split between legacy src/Notify libraries and the new src/Notifier runtime, updating architecture docs with rationale/cross-links. Notifications Service Guild (src/Notifier/StellaOps.Notifier)
NOTIFY-AIRGAP-56-002 DONE Provide Bootstrap Pack notifier configurations with deterministic secrets handling and offline validation steps. Dependencies: NOTIFY-AIRGAP-56-001. Notifications Service Guild, DevOps Guild (src/Notifier/StellaOps.Notifier)

Status notes (2025-11-22 UTC)

  • NOTIFY-ATTEST-74-001 Template suite shipped; localized keys locked; see docs/notifications/templates.md §7 and offline exports under offline/notifier/templates/attestation/.
  • NOTIFY-OAS-61/62/63 OAS refresh, discovery endpoint, SDK examples, and deprecation headers are live.
  • NOTIFY-OBS-51-001 SLO webhook sink validated via filtered tests; TRX at src/Notifier/StellaOps.Notifier/StellaOps.Notifier.Tests/TestResults/notifier-slo-tests.trx.
  • NOTIFY-OBS-55-001 Incident-mode templates + importable rules shipped (src/Notifier/StellaOps.Notifier/docs/incident-mode-rules.sample.json); documented in docs/notifications/templates.md §8.
  • NOTIFY-RISK-66-001 → NOTIFY-RISK-68-001 Still waiting on POLICY-RISK-40-002 export; remain TODO.

Milestones & dependencies

Target date Milestone Owner(s) Notes / dependencies
2025-11-13 Finalize attestation payload schema + localization tokens Notifications Service Guild · Attestor Service Guild Required to close NOTIFY-ATTEST-74-001 and unblock NOTIFY-ATTEST-74-002 wiring work.
2025-11-15 Draft Notifier OAS published for review Notifications Service Guild · API Contracts Guild Enables follow-on .well-known endpoint and SDK tasks (NOTIFY-OAS-61-002/62-001).
2025-11-18 Incident payload contract agreed with Telemetry & Ops Notifications Service Guild · Observability Guild Needed before NOTIFY-OBS-51-001/55-001 can move to DOING.
2025-11-20 Risk profile metadata export available (POLICY-RISK-40-002) Notifications Service Guild · Policy Guild Gate for NOTIFY-RISK-66-001 → NOTIFY-RISK-68-001 implementation.

Coordination log

Date (UTC) Update Owner
2025-11-12 18:05 Marked NOTIFY-ATTEST-74-001 and NOTIFY-OAS-61-001 as DOING; documented current blockers in status notes. Notifications Service Guild
2025-11-12 19:20 Added attestation template suite (Section7 of docs/notifications/templates.md) covering template keys/helpers/samples to support NOTIFY-ATTEST-74-001 deliverables. Notifications Service Guild
2025-11-12 19:32 Updated docs/notifications/architecture.md rendering section to reference the new tmpl-attest-* suite so architecture + template docs stay in sync. Notifications Service Guild
2025-11-12 19:45 Synced docs/notifications/overview.md and docs/notifications/rules.md with the attestation template requirements so operators and rule authors see the mandated keys. Notifications Service Guild
2025-11-12 20:05 Added baseline template exports under offline/notifier/templates/attestation/ (Slack/Email/Webhook variants) to seed Offline Kit bundles. Notifications Service Guild
2025-11-22 18:30 Updated tracker: OAS 6163, OBS 51/55, ATTEST 74-001 marked DONE; incident-mode rules/templates published; SLO tests captured at StellaOps.Notifier.Tests/TestResults/notifier-slo-tests.trx. Risk tasks remain TODO pending POLICY-RISK-40-002 export. Notifications Service Guild