stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 1 Releases Wiki Activity
Files
f72c5c513ab83428d371d6d0704761fcb8342c47
git.stella-ops.org/docs/modules/vuln-explorer
History
master b1e78fe412
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
feat: Implement vulnerability token signing and verification utilities 
- Added VulnTokenSigner for signing JWT tokens with specified algorithms and keys.
- Introduced VulnTokenUtilities for resolving tenant and subject claims, and sanitizing context dictionaries.
- Created VulnTokenVerificationUtilities for parsing tokens, verifying signatures, and deserializing payloads.
- Developed VulnWorkflowAntiForgeryTokenIssuer for issuing anti-forgery tokens with configurable options.
- Implemented VulnWorkflowAntiForgeryTokenVerifier for verifying anti-forgery tokens and validating payloads.
- Added AuthorityVulnerabilityExplorerOptions to manage configuration for vulnerability explorer features.
- Included tests for FilesystemPackRunDispatcher to ensure proper job handling under egress policy restrictions.
2025-11-03 10:04:10 +02:00
..
AGENTS.md
feat: Add guild charters and task boards for various components
2025-11-01 02:21:46 +02:00
architecture.md
feat: Implement vulnerability token signing and verification utilities
2025-11-03 10:04:10 +02:00
implementation_plan.md
feat: Implement vulnerability token signing and verification utilities
2025-11-03 10:04:10 +02:00
README.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00
TASKS.md
Align AOC tasks for Excititor and Concelier
2025-10-31 18:50:15 +02:00

README.md

StellaOps Vulnerability Explorer

Vulnerability Explorer delivers policy-aware triage, investigation, and reporting surfaces for effective findings.

Responsibilities

  • Present policy-evaluated findings with advisory, VEX, SBOM, and runtime context.
  • Capture triage workflow in an immutable findings ledger with role-based access.
  • Provide pivots, exports, and reports for auditors and operations teams.
  • Integrate explain traces, remediation notes, and offline bundles.

Key components

  • Findings Ledger service + API.
  • Console module and CLI verbs for triage workflows.
  • Export integrations for reports and evidence packages.

Integrations & dependencies

  • Policy Engine for effective findings streams.
  • Concelier/Excititor for evidence provenance.
  • Scheduler for remediation/verification jobs.
  • Notify for triage notifications.

Operational notes

  • Audit logging per Epic 6 requirements.
  • Offline-ready CSV/PDF exports with deterministic hashes.
  • Dashboards for MTTR and triage throughput.

Epic alignment

  • Epic 6: Vulnerability Explorer.
  • VULN stories tracked in ../../TASKS.md and src/VulnExplorer/**/TASKS.md.