stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 1 Releases Wiki Activity
Files
f72c5c513ab83428d371d6d0704761fcb8342c47
git.stella-ops.org/docs/modules/export-center
History
master b1e78fe412
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
feat: Implement vulnerability token signing and verification utilities 
- Added VulnTokenSigner for signing JWT tokens with specified algorithms and keys.
- Introduced VulnTokenUtilities for resolving tenant and subject claims, and sanitizing context dictionaries.
- Created VulnTokenVerificationUtilities for parsing tokens, verifying signatures, and deserializing payloads.
- Developed VulnWorkflowAntiForgeryTokenIssuer for issuing anti-forgery tokens with configurable options.
- Implemented VulnWorkflowAntiForgeryTokenVerifier for verifying anti-forgery tokens and validating payloads.
- Added AuthorityVulnerabilityExplorerOptions to manage configuration for vulnerability explorer features.
- Included tests for FilesystemPackRunDispatcher to ensure proper job handling under egress policy restrictions.
2025-11-03 10:04:10 +02:00
..
operations
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
AGENTS.md
feat: Add guild charters and task boards for various components
2025-11-01 02:21:46 +02:00
api.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
architecture.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
cli.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
implementation_plan.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
mirror-bundles.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
overview.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
profiles.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
provenance-and-signing.md
feat: Implement vulnerability token signing and verification utilities
2025-11-03 10:04:10 +02:00
README.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
TASKS.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
trivy-adapter.md
feat(docs): Add comprehensive documentation for Vexer, Vulnerability Explorer, and Zastava modules
2025-10-30 00:09:39 +02:00

README.md

StellaOps Export Center

Export Center packages reproducible evidence bundles (JSON, Trivy DB, mirror) with provenance metadata and optional signing for offline or mirrored deployments.

Responsibilities

  • Coordinate export jobs based on profiles and scope selectors.
  • Assemble manifests, provenance documents, and cosign signatures.
  • Stream bundles via HTTP/OCI and stage them for Offline Kit uses.
  • Expose CLI/API surfaces for automation.

Key components

  • StellaOps.ExportCenter.WebService planner.
  • StellaOps.ExportCenter.Worker bundle builder.
  • Adapters in StellaOps.ExportCenter.* for JSON/Trivy/mirror variants.

Integrations & dependencies

  • Concelier/Excititor/Policy data stores for evidence.
  • Signer/Attestor for provenance signing.
  • CLI for operator-managed exports.

Operational notes

  • Runbooks in ./operations/ for deployment and monitoring.
  • Mirror bundle instructions and validation notes.
  • Telemetry dashboards for export latency and retry rates.

Related resources

  • ./operations/runbook.md

Backlog references

  • DOCS-EXPORT-35-001 … DOCS-EXPORT-37-002 in ../../TASKS.md.
  • EXPORT-ATTEST-75-002 cross-team deliverable.

Epic alignment

  • Epic 10 Export Center: deliver canonical JSON, Trivy DB, and mirror bundle workflows with provenance, signatures, and offline parity.