Evidence-grade releases — from build to proof
Stella Ops binds SBOM, reachability proof, VEX, and approvals to every promotion gate for non-Kubernetes deployments. Each promotion produces a signed, replayable Decision Capsule that auditors can verify offline — months later.
Built for security-conscious teams
Who it's for
Security, platform, compliance, and air-gapped teams align on one release evidence trail.
Security
Reachable CVEs only
Platform
Non-K8s release control
Compliance
Exportable audit bundles
Air-Gap
Fully offline operation
Trusted by security-conscious teams
Design partner case studies and measured outcomes — coming soon.
What you get
Ship safely
Block risky promotions before they reach production — with policy gates backed by evidence, not just scanner output.
Know why
Every verdict traces back to concrete inputs: SBOM, reachability proofs, policy snapshot, and approvals.
Prove it
Export a signed Decision Capsule. Replay the decision deterministically, without network access.
Core Capabilities
Four Pillars of Evidence-Grade Releases
First-Class SBOM & VEX
Generate SPDX/CycloneDX SBOMs, ingest OpenVEX from multiple issuers, resolve conflicts with K4 lattice logic — deterministic and offline-capable.
Learn moreReachability as Evidence
Three-layer analysis — static call graphs, binary symbols, runtime eBPF probes — produces signed DSSE proofs that meaningfully reduce false positives.
Learn moreDigest-First Versioning
Releases are immutable OCI digest sets resolved at creation — tags are aliases, digests are truth, every pull is tamper-detectable.
Learn moreAgentless Deployment
Deploy to Linux (SSH) and Windows (WinRM) servers with canary, rolling, or blue-green strategies — rollback returns to known-good digests.
Learn moreCore Capabilities
Every Decision is Auditable
- Decision Capsules — every promotion is a signed, exportable evidence bundle
- Deterministic Replay — re-run any decision with frozen inputs, get bit-for-bit identical output
- Offline Verification — auditors validate signatures and replay without network access
$ stella promote api:v2.1.0 --env stagingEvery promotion generates a signed Decision Capsule
Explore a real Decision Capsule
Download an example capsule, verify signatures, and replay the decision locally.
Includes: SBOM (CycloneDX), reachability proof, policy evaluation, mock approvals, signature + public key.
From evaluation to production
A clear path from first scan to enterprise rollout.
Evaluate
Self-build from source. Scan your first digest. Export your first Decision Capsule. Free tier: 3 environments, 999 scans/month.
Pilot
Request an access token for signed images and managed updates. Define your promotion graph. Run your first policy-gated release.
Production
Upgrade to Plus or Pro for production use. Scale environments and scan volume. Enable enterprise procurement support as needed.
How it works
Try It: Example Decision Capsule
Download a sanitized example capsule to explore the structure and run verification commands locally.
Five steps — from connect to proof
- 1
Connect
Link registries, CI, and targets. Track releases by immutable digests.
- 2
Bundle
Generate SBOM and capture promotion-ready inputs as a single release unit.
- 3
Gate
Evaluate policy against evidence (including reachability) at each environment boundary.
- 4
Deploy
Execute agentless deployments — canary, rolling, blue-green — with safe rollback.
- 5
Prove
Export a signed Decision Capsule — replayable, verifiable, audit-ready.
Contains: SBOM, reachability proof, policy snapshot, mock approvals. Signature + public key included for local verification.
Ready for evidence-grade releases?
Free tier: 3 environments, 999 scans/month
Need volume licensing, procurement paperwork, or custom commercial terms?
Talk to sales