up

src/Scanner/StellaOps.Scanner.WebService/Contracts/PolicyDiagnosticsContracts.cs

@@ -1,38 +1,38 @@
-using System;
-using System.Collections.Generic;
-using System.Text.Json.Serialization;
-
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record PolicyDiagnosticsRequestDto
-{
-    [JsonPropertyName("policy")]
-    public PolicyPreviewPolicyDto? Policy { get; init; }
-}
-
-public sealed record PolicyDiagnosticsResponseDto
-{
-    [JsonPropertyName("success")]
-    public bool Success { get; init; }
-
-    [JsonPropertyName("version")]
-    public string Version { get; init; } = string.Empty;
-
-    [JsonPropertyName("ruleCount")]
-    public int RuleCount { get; init; }
-
-    [JsonPropertyName("errorCount")]
-    public int ErrorCount { get; init; }
-
-    [JsonPropertyName("warningCount")]
-    public int WarningCount { get; init; }
-
-    [JsonPropertyName("generatedAt")]
-    public DateTimeOffset GeneratedAt { get; init; }
-
-    [JsonPropertyName("issues")]
-    public IReadOnlyList<PolicyPreviewIssueDto> Issues { get; init; } = Array.Empty<PolicyPreviewIssueDto>();
-
-    [JsonPropertyName("recommendations")]
-    public IReadOnlyList<string> Recommendations { get; init; } = Array.Empty<string>();
-}
+using System;
+using System.Collections.Generic;
+using System.Text.Json.Serialization;
+
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record PolicyDiagnosticsRequestDto
+{
+    [JsonPropertyName("policy")]
+    public PolicyPreviewPolicyDto? Policy { get; init; }
+}
+
+public sealed record PolicyDiagnosticsResponseDto
+{
+    [JsonPropertyName("success")]
+    public bool Success { get; init; }
+
+    [JsonPropertyName("version")]
+    public string Version { get; init; } = string.Empty;
+
+    [JsonPropertyName("ruleCount")]
+    public int RuleCount { get; init; }
+
+    [JsonPropertyName("errorCount")]
+    public int ErrorCount { get; init; }
+
+    [JsonPropertyName("warningCount")]
+    public int WarningCount { get; init; }
+
+    [JsonPropertyName("generatedAt")]
+    public DateTimeOffset GeneratedAt { get; init; }
+
+    [JsonPropertyName("issues")]
+    public IReadOnlyList<PolicyPreviewIssueDto> Issues { get; init; } = Array.Empty<PolicyPreviewIssueDto>();
+
+    [JsonPropertyName("recommendations")]
+    public IReadOnlyList<string> Recommendations { get; init; } = Array.Empty<string>();
+}

src/Scanner/StellaOps.Scanner.WebService/Contracts/PolicyPreviewContracts.cs

@@ -1,180 +1,180 @@
-using System;
-using System.Collections.Generic;
-using System.Text.Json.Serialization;
-
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record PolicyPreviewRequestDto
-{
-    [JsonPropertyName("imageDigest")]
-    public string? ImageDigest { get; init; }
-
-    [JsonPropertyName("findings")]
-    public IReadOnlyList<PolicyPreviewFindingDto>? Findings { get; init; }
-
-    [JsonPropertyName("baseline")]
-    public IReadOnlyList<PolicyPreviewVerdictDto>? Baseline { get; init; }
-
-    [JsonPropertyName("policy")]
-    public PolicyPreviewPolicyDto? Policy { get; init; }
-}
-
-public sealed record PolicyPreviewFindingDto
-{
-    [JsonPropertyName("id")]
-    public string? Id { get; init; }
-
-    [JsonPropertyName("severity")]
-    public string? Severity { get; init; }
-
-    [JsonPropertyName("environment")]
-    public string? Environment { get; init; }
-
-    [JsonPropertyName("source")]
-    public string? Source { get; init; }
-
-    [JsonPropertyName("vendor")]
-    public string? Vendor { get; init; }
-
-    [JsonPropertyName("license")]
-    public string? License { get; init; }
-
-    [JsonPropertyName("image")]
-    public string? Image { get; init; }
-
-    [JsonPropertyName("repository")]
-    public string? Repository { get; init; }
-
-    [JsonPropertyName("package")]
-    public string? Package { get; init; }
-
-    [JsonPropertyName("purl")]
-    public string? Purl { get; init; }
-
-    [JsonPropertyName("cve")]
-    public string? Cve { get; init; }
-
-    [JsonPropertyName("path")]
-    public string? Path { get; init; }
-
-    [JsonPropertyName("layerDigest")]
-    public string? LayerDigest { get; init; }
-
-    [JsonPropertyName("tags")]
-    public IReadOnlyList<string>? Tags { get; init; }
-}
-
-public sealed record PolicyPreviewVerdictDto
-{
-    [JsonPropertyName("findingId")]
-    public string? FindingId { get; init; }
-
-    [JsonPropertyName("status")]
-    public string? Status { get; init; }
-
-    [JsonPropertyName("ruleName")]
-    public string? RuleName { get; init; }
-
-    [JsonPropertyName("ruleAction")]
-    public string? RuleAction { get; init; }
-
-    [JsonPropertyName("notes")]
-    public string? Notes { get; init; }
-
-    [JsonPropertyName("score")]
-    public double? Score { get; init; }
-
-    [JsonPropertyName("configVersion")]
-    public string? ConfigVersion { get; init; }
-
-    [JsonPropertyName("inputs")]
-    public IReadOnlyDictionary<string, double>? Inputs { get; init; }
-
-    [JsonPropertyName("quietedBy")]
-    public string? QuietedBy { get; init; }
-
-    [JsonPropertyName("quiet")]
-    public bool? Quiet { get; init; }
-
-    [JsonPropertyName("unknownConfidence")]
-    public double? UnknownConfidence { get; init; }
-
-    [JsonPropertyName("confidenceBand")]
-    public string? ConfidenceBand { get; init; }
-
-    [JsonPropertyName("unknownAgeDays")]
-    public double? UnknownAgeDays { get; init; }
-
-    [JsonPropertyName("sourceTrust")]
-    public string? SourceTrust { get; init; }
-
-    [JsonPropertyName("reachability")]
-    public string? Reachability { get; init; }
-
-}
-
-public sealed record PolicyPreviewPolicyDto
-{
-    [JsonPropertyName("content")]
-    public string? Content { get; init; }
-
-    [JsonPropertyName("format")]
-    public string? Format { get; init; }
-
-    [JsonPropertyName("actor")]
-    public string? Actor { get; init; }
-
-    [JsonPropertyName("description")]
-    public string? Description { get; init; }
-}
-
-public sealed record PolicyPreviewResponseDto
-{
-    [JsonPropertyName("success")]
-    public bool Success { get; init; }
-
-    [JsonPropertyName("policyDigest")]
-    public string? PolicyDigest { get; init; }
-
-    [JsonPropertyName("revisionId")]
-    public string? RevisionId { get; init; }
-
-    [JsonPropertyName("changed")]
-    public int Changed { get; init; }
-
-    [JsonPropertyName("diffs")]
-    public IReadOnlyList<PolicyPreviewDiffDto> Diffs { get; init; } = Array.Empty<PolicyPreviewDiffDto>();
-
-    [JsonPropertyName("issues")]
-    public IReadOnlyList<PolicyPreviewIssueDto> Issues { get; init; } = Array.Empty<PolicyPreviewIssueDto>();
-}
-
-public sealed record PolicyPreviewDiffDto
-{
-    [JsonPropertyName("findingId")]
-    public string? FindingId { get; init; }
-
-    [JsonPropertyName("baseline")]
-    public PolicyPreviewVerdictDto? Baseline { get; init; }
-
-    [JsonPropertyName("projected")]
-    public PolicyPreviewVerdictDto? Projected { get; init; }
-
-    [JsonPropertyName("changed")]
-    public bool Changed { get; init; }
-}
-
-public sealed record PolicyPreviewIssueDto
-{
-    [JsonPropertyName("code")]
-    public string Code { get; init; } = string.Empty;
-
-    [JsonPropertyName("message")]
-    public string Message { get; init; } = string.Empty;
-
-    [JsonPropertyName("severity")]
-    public string Severity { get; init; } = string.Empty;
-
-    [JsonPropertyName("path")]
-    public string Path { get; init; } = string.Empty;
-}
+using System;
+using System.Collections.Generic;
+using System.Text.Json.Serialization;
+
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record PolicyPreviewRequestDto
+{
+    [JsonPropertyName("imageDigest")]
+    public string? ImageDigest { get; init; }
+
+    [JsonPropertyName("findings")]
+    public IReadOnlyList<PolicyPreviewFindingDto>? Findings { get; init; }
+
+    [JsonPropertyName("baseline")]
+    public IReadOnlyList<PolicyPreviewVerdictDto>? Baseline { get; init; }
+
+    [JsonPropertyName("policy")]
+    public PolicyPreviewPolicyDto? Policy { get; init; }
+}
+
+public sealed record PolicyPreviewFindingDto
+{
+    [JsonPropertyName("id")]
+    public string? Id { get; init; }
+
+    [JsonPropertyName("severity")]
+    public string? Severity { get; init; }
+
+    [JsonPropertyName("environment")]
+    public string? Environment { get; init; }
+
+    [JsonPropertyName("source")]
+    public string? Source { get; init; }
+
+    [JsonPropertyName("vendor")]
+    public string? Vendor { get; init; }
+
+    [JsonPropertyName("license")]
+    public string? License { get; init; }
+
+    [JsonPropertyName("image")]
+    public string? Image { get; init; }
+
+    [JsonPropertyName("repository")]
+    public string? Repository { get; init; }
+
+    [JsonPropertyName("package")]
+    public string? Package { get; init; }
+
+    [JsonPropertyName("purl")]
+    public string? Purl { get; init; }
+
+    [JsonPropertyName("cve")]
+    public string? Cve { get; init; }
+
+    [JsonPropertyName("path")]
+    public string? Path { get; init; }
+
+    [JsonPropertyName("layerDigest")]
+    public string? LayerDigest { get; init; }
+
+    [JsonPropertyName("tags")]
+    public IReadOnlyList<string>? Tags { get; init; }
+}
+
+public sealed record PolicyPreviewVerdictDto
+{
+    [JsonPropertyName("findingId")]
+    public string? FindingId { get; init; }
+
+    [JsonPropertyName("status")]
+    public string? Status { get; init; }
+
+    [JsonPropertyName("ruleName")]
+    public string? RuleName { get; init; }
+
+    [JsonPropertyName("ruleAction")]
+    public string? RuleAction { get; init; }
+
+    [JsonPropertyName("notes")]
+    public string? Notes { get; init; }
+
+    [JsonPropertyName("score")]
+    public double? Score { get; init; }
+
+    [JsonPropertyName("configVersion")]
+    public string? ConfigVersion { get; init; }
+
+    [JsonPropertyName("inputs")]
+    public IReadOnlyDictionary<string, double>? Inputs { get; init; }
+
+    [JsonPropertyName("quietedBy")]
+    public string? QuietedBy { get; init; }
+
+    [JsonPropertyName("quiet")]
+    public bool? Quiet { get; init; }
+
+    [JsonPropertyName("unknownConfidence")]
+    public double? UnknownConfidence { get; init; }
+
+    [JsonPropertyName("confidenceBand")]
+    public string? ConfidenceBand { get; init; }
+
+    [JsonPropertyName("unknownAgeDays")]
+    public double? UnknownAgeDays { get; init; }
+
+    [JsonPropertyName("sourceTrust")]
+    public string? SourceTrust { get; init; }
+
+    [JsonPropertyName("reachability")]
+    public string? Reachability { get; init; }
+
+}
+
+public sealed record PolicyPreviewPolicyDto
+{
+    [JsonPropertyName("content")]
+    public string? Content { get; init; }
+
+    [JsonPropertyName("format")]
+    public string? Format { get; init; }
+
+    [JsonPropertyName("actor")]
+    public string? Actor { get; init; }
+
+    [JsonPropertyName("description")]
+    public string? Description { get; init; }
+}
+
+public sealed record PolicyPreviewResponseDto
+{
+    [JsonPropertyName("success")]
+    public bool Success { get; init; }
+
+    [JsonPropertyName("policyDigest")]
+    public string? PolicyDigest { get; init; }
+
+    [JsonPropertyName("revisionId")]
+    public string? RevisionId { get; init; }
+
+    [JsonPropertyName("changed")]
+    public int Changed { get; init; }
+
+    [JsonPropertyName("diffs")]
+    public IReadOnlyList<PolicyPreviewDiffDto> Diffs { get; init; } = Array.Empty<PolicyPreviewDiffDto>();
+
+    [JsonPropertyName("issues")]
+    public IReadOnlyList<PolicyPreviewIssueDto> Issues { get; init; } = Array.Empty<PolicyPreviewIssueDto>();
+}
+
+public sealed record PolicyPreviewDiffDto
+{
+    [JsonPropertyName("findingId")]
+    public string? FindingId { get; init; }
+
+    [JsonPropertyName("baseline")]
+    public PolicyPreviewVerdictDto? Baseline { get; init; }
+
+    [JsonPropertyName("projected")]
+    public PolicyPreviewVerdictDto? Projected { get; init; }
+
+    [JsonPropertyName("changed")]
+    public bool Changed { get; init; }
+}
+
+public sealed record PolicyPreviewIssueDto
+{
+    [JsonPropertyName("code")]
+    public string Code { get; init; } = string.Empty;
+
+    [JsonPropertyName("message")]
+    public string Message { get; init; } = string.Empty;
+
+    [JsonPropertyName("severity")]
+    public string Severity { get; init; } = string.Empty;
+
+    [JsonPropertyName("path")]
+    public string Path { get; init; } = string.Empty;
+}

src/Scanner/StellaOps.Scanner.WebService/Contracts/ReportContracts.cs

@@ -1,60 +1,60 @@
-using System;
-using System.Collections.Generic;
-using System.Text.Json.Serialization;
-
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record ReportRequestDto
-{
-    [JsonPropertyName("imageDigest")]
-    public string? ImageDigest { get; init; }
-
-    [JsonPropertyName("findings")]
-    public IReadOnlyList<PolicyPreviewFindingDto>? Findings { get; init; }
-
-    [JsonPropertyName("baseline")]
-    public IReadOnlyList<PolicyPreviewVerdictDto>? Baseline { get; init; }
-}
-
-public sealed record ReportResponseDto
-{
-    [JsonPropertyName("report")]
-    public ReportDocumentDto Report { get; init; } = new();
-
-    [JsonPropertyName("dsse")]
-    public DsseEnvelopeDto? Dsse { get; init; }
-}
-
-public sealed record ReportDocumentDto
-{
-    [JsonPropertyName("reportId")]
-    [JsonPropertyOrder(0)]
-    public string ReportId { get; init; } = string.Empty;
-
-    [JsonPropertyName("imageDigest")]
-    [JsonPropertyOrder(1)]
-    public string ImageDigest { get; init; } = string.Empty;
-
-    [JsonPropertyName("generatedAt")]
-    [JsonPropertyOrder(2)]
-    public DateTimeOffset GeneratedAt { get; init; }
-
-    [JsonPropertyName("verdict")]
-    [JsonPropertyOrder(3)]
-    public string Verdict { get; init; } = string.Empty;
-
-    [JsonPropertyName("policy")]
-    [JsonPropertyOrder(4)]
-    public ReportPolicyDto Policy { get; init; } = new();
-
-    [JsonPropertyName("summary")]
-    [JsonPropertyOrder(5)]
-    public ReportSummaryDto Summary { get; init; } = new();
-
-    [JsonPropertyName("verdicts")]
-    [JsonPropertyOrder(6)]
-    public IReadOnlyList<PolicyPreviewVerdictDto> Verdicts { get; init; } = Array.Empty<PolicyPreviewVerdictDto>();
-
+using System;
+using System.Collections.Generic;
+using System.Text.Json.Serialization;
+
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record ReportRequestDto
+{
+    [JsonPropertyName("imageDigest")]
+    public string? ImageDigest { get; init; }
+
+    [JsonPropertyName("findings")]
+    public IReadOnlyList<PolicyPreviewFindingDto>? Findings { get; init; }
+
+    [JsonPropertyName("baseline")]
+    public IReadOnlyList<PolicyPreviewVerdictDto>? Baseline { get; init; }
+}
+
+public sealed record ReportResponseDto
+{
+    [JsonPropertyName("report")]
+    public ReportDocumentDto Report { get; init; } = new();
+
+    [JsonPropertyName("dsse")]
+    public DsseEnvelopeDto? Dsse { get; init; }
+}
+
+public sealed record ReportDocumentDto
+{
+    [JsonPropertyName("reportId")]
+    [JsonPropertyOrder(0)]
+    public string ReportId { get; init; } = string.Empty;
+
+    [JsonPropertyName("imageDigest")]
+    [JsonPropertyOrder(1)]
+    public string ImageDigest { get; init; } = string.Empty;
+
+    [JsonPropertyName("generatedAt")]
+    [JsonPropertyOrder(2)]
+    public DateTimeOffset GeneratedAt { get; init; }
+
+    [JsonPropertyName("verdict")]
+    [JsonPropertyOrder(3)]
+    public string Verdict { get; init; } = string.Empty;
+
+    [JsonPropertyName("policy")]
+    [JsonPropertyOrder(4)]
+    public ReportPolicyDto Policy { get; init; } = new();
+
+    [JsonPropertyName("summary")]
+    [JsonPropertyOrder(5)]
+    public ReportSummaryDto Summary { get; init; } = new();
+
+    [JsonPropertyName("verdicts")]
+    [JsonPropertyOrder(6)]
+    public IReadOnlyList<PolicyPreviewVerdictDto> Verdicts { get; init; } = Array.Empty<PolicyPreviewVerdictDto>();
+
     [JsonPropertyName("issues")]
     [JsonPropertyOrder(7)]
     public IReadOnlyList<PolicyPreviewIssueDto> Issues { get; init; } = Array.Empty<PolicyPreviewIssueDto>();
@@ -68,64 +68,64 @@ public sealed record ReportDocumentDto
     [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
     public IReadOnlyList<LinksetSummaryDto>? Linksets { get; init; }
 }
-
-public sealed record ReportPolicyDto
-{
-    [JsonPropertyName("revisionId")]
-    [JsonPropertyOrder(0)]
-    public string? RevisionId { get; init; }
-
-    [JsonPropertyName("digest")]
-    [JsonPropertyOrder(1)]
-    public string? Digest { get; init; }
-}
-
-public sealed record ReportSummaryDto
-{
-    [JsonPropertyName("total")]
-    [JsonPropertyOrder(0)]
-    public int Total { get; init; }
-
-    [JsonPropertyName("blocked")]
-    [JsonPropertyOrder(1)]
-    public int Blocked { get; init; }
-
-    [JsonPropertyName("warned")]
-    [JsonPropertyOrder(2)]
-    public int Warned { get; init; }
-
-    [JsonPropertyName("ignored")]
-    [JsonPropertyOrder(3)]
-    public int Ignored { get; init; }
-
-    [JsonPropertyName("quieted")]
-    [JsonPropertyOrder(4)]
-    public int Quieted { get; init; }
-}
-
-public sealed record DsseEnvelopeDto
-{
-    [JsonPropertyName("payloadType")]
-    [JsonPropertyOrder(0)]
-    public string PayloadType { get; init; } = string.Empty;
-
-    [JsonPropertyName("payload")]
-    [JsonPropertyOrder(1)]
-    public string Payload { get; init; } = string.Empty;
-
-    [JsonPropertyName("signatures")]
-    [JsonPropertyOrder(2)]
-    public IReadOnlyList<DsseSignatureDto> Signatures { get; init; } = Array.Empty<DsseSignatureDto>();
-}
-
-public sealed record DsseSignatureDto
-{
-    [JsonPropertyName("keyId")]
-    public string KeyId { get; init; } = string.Empty;
-
-    [JsonPropertyName("algorithm")]
-    public string Algorithm { get; init; } = string.Empty;
-
-    [JsonPropertyName("signature")]
-    public string Signature { get; init; } = string.Empty;
-}
+
+public sealed record ReportPolicyDto
+{
+    [JsonPropertyName("revisionId")]
+    [JsonPropertyOrder(0)]
+    public string? RevisionId { get; init; }
+
+    [JsonPropertyName("digest")]
+    [JsonPropertyOrder(1)]
+    public string? Digest { get; init; }
+}
+
+public sealed record ReportSummaryDto
+{
+    [JsonPropertyName("total")]
+    [JsonPropertyOrder(0)]
+    public int Total { get; init; }
+
+    [JsonPropertyName("blocked")]
+    [JsonPropertyOrder(1)]
+    public int Blocked { get; init; }
+
+    [JsonPropertyName("warned")]
+    [JsonPropertyOrder(2)]
+    public int Warned { get; init; }
+
+    [JsonPropertyName("ignored")]
+    [JsonPropertyOrder(3)]
+    public int Ignored { get; init; }
+
+    [JsonPropertyName("quieted")]
+    [JsonPropertyOrder(4)]
+    public int Quieted { get; init; }
+}
+
+public sealed record DsseEnvelopeDto
+{
+    [JsonPropertyName("payloadType")]
+    [JsonPropertyOrder(0)]
+    public string PayloadType { get; init; } = string.Empty;
+
+    [JsonPropertyName("payload")]
+    [JsonPropertyOrder(1)]
+    public string Payload { get; init; } = string.Empty;
+
+    [JsonPropertyName("signatures")]
+    [JsonPropertyOrder(2)]
+    public IReadOnlyList<DsseSignatureDto> Signatures { get; init; } = Array.Empty<DsseSignatureDto>();
+}
+
+public sealed record DsseSignatureDto
+{
+    [JsonPropertyName("keyId")]
+    public string KeyId { get; init; } = string.Empty;
+
+    [JsonPropertyName("algorithm")]
+    public string Algorithm { get; init; } = string.Empty;
+
+    [JsonPropertyName("signature")]
+    public string Signature { get; init; } = string.Empty;
+}

src/Scanner/StellaOps.Scanner.WebService/Contracts/RuntimeEventsContracts.cs

@@ -1,22 +1,22 @@
-using System.Text.Json.Serialization;
-using StellaOps.Zastava.Core.Contracts;
-
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record RuntimeEventsIngestRequestDto
-{
-    [JsonPropertyName("batchId")]
-    public string? BatchId { get; init; }
-
-    [JsonPropertyName("events")]
-    public IReadOnlyList<RuntimeEventEnvelope> Events { get; init; } = Array.Empty<RuntimeEventEnvelope>();
-}
-
-public sealed record RuntimeEventsIngestResponseDto
-{
-    [JsonPropertyName("accepted")]
-    public int Accepted { get; init; }
-
-    [JsonPropertyName("duplicates")]
-    public int Duplicates { get; init; }
-}
+using System.Text.Json.Serialization;
+using StellaOps.Zastava.Core.Contracts;
+
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record RuntimeEventsIngestRequestDto
+{
+    [JsonPropertyName("batchId")]
+    public string? BatchId { get; init; }
+
+    [JsonPropertyName("events")]
+    public IReadOnlyList<RuntimeEventEnvelope> Events { get; init; } = Array.Empty<RuntimeEventEnvelope>();
+}
+
+public sealed record RuntimeEventsIngestResponseDto
+{
+    [JsonPropertyName("accepted")]
+    public int Accepted { get; init; }
+
+    [JsonPropertyName("duplicates")]
+    public int Duplicates { get; init; }
+}

src/Scanner/StellaOps.Scanner.WebService/Contracts/RuntimePolicyContracts.cs

@@ -1,71 +1,71 @@
-using System.Collections.Generic;
-using System.Text.Json.Serialization;
-
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record RuntimePolicyRequestDto
-{
-    [JsonPropertyName("namespace")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? Namespace { get; init; }
-
-    [JsonPropertyName("labels")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public IDictionary<string, string>? Labels { get; init; }
-
-    [JsonPropertyName("images")]
-    public IReadOnlyList<string> Images { get; init; } = Array.Empty<string>();
-}
-
-public sealed record RuntimePolicyResponseDto
-{
-    [JsonPropertyName("ttlSeconds")]
-    public int TtlSeconds { get; init; }
-
-    [JsonPropertyName("expiresAtUtc")]
-    public DateTimeOffset ExpiresAtUtc { get; init; }
-
-    [JsonPropertyName("policyRevision")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? PolicyRevision { get; init; }
-
-    [JsonPropertyName("results")]
-    public IReadOnlyDictionary<string, RuntimePolicyImageResponseDto> Results { get; init; } = new Dictionary<string, RuntimePolicyImageResponseDto>(StringComparer.Ordinal);
-}
-
-public sealed record RuntimePolicyImageResponseDto
-{
-    [JsonPropertyName("policyVerdict")]
-    public string PolicyVerdict { get; init; } = "unknown";
-
-    [JsonPropertyName("signed")]
-    public bool Signed { get; init; }
-
-    [JsonPropertyName("hasSbomReferrers")]
-    public bool HasSbomReferrers { get; init; }
-
-    [JsonPropertyName("hasSbom")]
-    public bool HasSbomLegacy { get; init; }
-
-    [JsonPropertyName("reasons")]
-    public IReadOnlyList<string> Reasons { get; init; } = Array.Empty<string>();
-
-    [JsonPropertyName("rekor")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public RuntimePolicyRekorDto? Rekor { get; init; }
-
-    [JsonPropertyName("confidence")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public double? Confidence { get; init; }
-
-    [JsonPropertyName("quieted")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public bool? Quieted { get; init; }
-
-    [JsonPropertyName("quietedBy")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? QuietedBy { get; init; }
-
+using System.Collections.Generic;
+using System.Text.Json.Serialization;
+
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record RuntimePolicyRequestDto
+{
+    [JsonPropertyName("namespace")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? Namespace { get; init; }
+
+    [JsonPropertyName("labels")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public IDictionary<string, string>? Labels { get; init; }
+
+    [JsonPropertyName("images")]
+    public IReadOnlyList<string> Images { get; init; } = Array.Empty<string>();
+}
+
+public sealed record RuntimePolicyResponseDto
+{
+    [JsonPropertyName("ttlSeconds")]
+    public int TtlSeconds { get; init; }
+
+    [JsonPropertyName("expiresAtUtc")]
+    public DateTimeOffset ExpiresAtUtc { get; init; }
+
+    [JsonPropertyName("policyRevision")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? PolicyRevision { get; init; }
+
+    [JsonPropertyName("results")]
+    public IReadOnlyDictionary<string, RuntimePolicyImageResponseDto> Results { get; init; } = new Dictionary<string, RuntimePolicyImageResponseDto>(StringComparer.Ordinal);
+}
+
+public sealed record RuntimePolicyImageResponseDto
+{
+    [JsonPropertyName("policyVerdict")]
+    public string PolicyVerdict { get; init; } = "unknown";
+
+    [JsonPropertyName("signed")]
+    public bool Signed { get; init; }
+
+    [JsonPropertyName("hasSbomReferrers")]
+    public bool HasSbomReferrers { get; init; }
+
+    [JsonPropertyName("hasSbom")]
+    public bool HasSbomLegacy { get; init; }
+
+    [JsonPropertyName("reasons")]
+    public IReadOnlyList<string> Reasons { get; init; } = Array.Empty<string>();
+
+    [JsonPropertyName("rekor")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public RuntimePolicyRekorDto? Rekor { get; init; }
+
+    [JsonPropertyName("confidence")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public double? Confidence { get; init; }
+
+    [JsonPropertyName("quieted")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public bool? Quieted { get; init; }
+
+    [JsonPropertyName("quietedBy")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? QuietedBy { get; init; }
+
     [JsonPropertyName("metadata")]
     [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
     public string? Metadata { get; init; }
@@ -78,139 +78,139 @@ public sealed record RuntimePolicyImageResponseDto
     [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
     public IReadOnlyList<LinksetSummaryDto>? Linksets { get; init; }
 }
-
-public sealed record RuntimePolicyRekorDto
-{
-    [JsonPropertyName("uuid")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? Uuid { get; init; }
-
-    [JsonPropertyName("url")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? Url { get; init; }
-
-    [JsonPropertyName("verified")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public bool? Verified { get; init; }
-}
-
-/// <summary>
-/// Request for policy overlays on graph nodes (for Cartographer integration).
-/// </summary>
-public sealed record PolicyOverlayRequestDto
-{
-    [JsonPropertyName("tenant")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? Tenant { get; init; }
-
-    [JsonPropertyName("nodes")]
-    public IReadOnlyList<PolicyOverlayNodeDto> Nodes { get; init; } = Array.Empty<PolicyOverlayNodeDto>();
-
-    [JsonPropertyName("overlayKind")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? OverlayKind { get; init; }
-
-    [JsonPropertyName("includeEvidence")]
-    public bool IncludeEvidence { get; init; }
-}
-
-/// <summary>
-/// A graph node for policy overlay evaluation.
-/// </summary>
-public sealed record PolicyOverlayNodeDto
-{
-    [JsonPropertyName("nodeId")]
-    public string NodeId { get; init; } = string.Empty;
-
-    [JsonPropertyName("nodeType")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? NodeType { get; init; }
-
-    [JsonPropertyName("purl")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? Purl { get; init; }
-
-    [JsonPropertyName("imageDigest")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? ImageDigest { get; init; }
-
-    [JsonPropertyName("advisoryKey")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? AdvisoryKey { get; init; }
-}
-
-/// <summary>
-/// Response containing policy overlays for graph nodes.
-/// </summary>
-public sealed record PolicyOverlayResponseDto
-{
-    [JsonPropertyName("tenant")]
-    public string Tenant { get; init; } = string.Empty;
-
-    [JsonPropertyName("generatedAt")]
-    public DateTimeOffset GeneratedAt { get; init; }
-
-    [JsonPropertyName("policyRevision")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public string? PolicyRevision { get; init; }
-
-    [JsonPropertyName("overlays")]
-    public IReadOnlyList<PolicyOverlayDto> Overlays { get; init; } = Array.Empty<PolicyOverlayDto>();
-}
-
-/// <summary>
-/// A single policy overlay for a graph node with deterministic ID.
-/// </summary>
-public sealed record PolicyOverlayDto
-{
-    [JsonPropertyName("overlayId")]
-    public string OverlayId { get; init; } = string.Empty;
-
-    [JsonPropertyName("nodeId")]
-    public string NodeId { get; init; } = string.Empty;
-
-    [JsonPropertyName("overlayKind")]
-    public string OverlayKind { get; init; } = "policy.overlay.v1";
-
-    [JsonPropertyName("verdict")]
-    public string Verdict { get; init; } = "unknown";
-
-    [JsonPropertyName("reasons")]
-    public IReadOnlyList<string> Reasons { get; init; } = Array.Empty<string>();
-
-    [JsonPropertyName("confidence")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public double? Confidence { get; init; }
-
-    [JsonPropertyName("quieted")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public bool? Quieted { get; init; }
-
-    [JsonPropertyName("evidence")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public PolicyOverlayEvidenceDto? Evidence { get; init; }
-}
-
-/// <summary>
-/// Runtime evidence attached to a policy overlay.
-/// </summary>
-public sealed record PolicyOverlayEvidenceDto
-{
-    [JsonPropertyName("signed")]
-    public bool Signed { get; init; }
-
-    [JsonPropertyName("hasSbomReferrers")]
-    public bool HasSbomReferrers { get; init; }
-
-    [JsonPropertyName("rekor")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public RuntimePolicyRekorDto? Rekor { get; init; }
-
-    [JsonPropertyName("buildIds")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public IReadOnlyList<string>? BuildIds { get; init; }
-
-    [JsonPropertyName("metadata")]
-    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
-    public IReadOnlyDictionary<string, string>? Metadata { get; init; }
-}
+
+public sealed record RuntimePolicyRekorDto
+{
+    [JsonPropertyName("uuid")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? Uuid { get; init; }
+
+    [JsonPropertyName("url")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? Url { get; init; }
+
+    [JsonPropertyName("verified")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public bool? Verified { get; init; }
+}
+
+/// <summary>
+/// Request for policy overlays on graph nodes (for Cartographer integration).
+/// </summary>
+public sealed record PolicyOverlayRequestDto
+{
+    [JsonPropertyName("tenant")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? Tenant { get; init; }
+
+    [JsonPropertyName("nodes")]
+    public IReadOnlyList<PolicyOverlayNodeDto> Nodes { get; init; } = Array.Empty<PolicyOverlayNodeDto>();
+
+    [JsonPropertyName("overlayKind")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? OverlayKind { get; init; }
+
+    [JsonPropertyName("includeEvidence")]
+    public bool IncludeEvidence { get; init; }
+}
+
+/// <summary>
+/// A graph node for policy overlay evaluation.
+/// </summary>
+public sealed record PolicyOverlayNodeDto
+{
+    [JsonPropertyName("nodeId")]
+    public string NodeId { get; init; } = string.Empty;
+
+    [JsonPropertyName("nodeType")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? NodeType { get; init; }
+
+    [JsonPropertyName("purl")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? Purl { get; init; }
+
+    [JsonPropertyName("imageDigest")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? ImageDigest { get; init; }
+
+    [JsonPropertyName("advisoryKey")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? AdvisoryKey { get; init; }
+}
+
+/// <summary>
+/// Response containing policy overlays for graph nodes.
+/// </summary>
+public sealed record PolicyOverlayResponseDto
+{
+    [JsonPropertyName("tenant")]
+    public string Tenant { get; init; } = string.Empty;
+
+    [JsonPropertyName("generatedAt")]
+    public DateTimeOffset GeneratedAt { get; init; }
+
+    [JsonPropertyName("policyRevision")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public string? PolicyRevision { get; init; }
+
+    [JsonPropertyName("overlays")]
+    public IReadOnlyList<PolicyOverlayDto> Overlays { get; init; } = Array.Empty<PolicyOverlayDto>();
+}
+
+/// <summary>
+/// A single policy overlay for a graph node with deterministic ID.
+/// </summary>
+public sealed record PolicyOverlayDto
+{
+    [JsonPropertyName("overlayId")]
+    public string OverlayId { get; init; } = string.Empty;
+
+    [JsonPropertyName("nodeId")]
+    public string NodeId { get; init; } = string.Empty;
+
+    [JsonPropertyName("overlayKind")]
+    public string OverlayKind { get; init; } = "policy.overlay.v1";
+
+    [JsonPropertyName("verdict")]
+    public string Verdict { get; init; } = "unknown";
+
+    [JsonPropertyName("reasons")]
+    public IReadOnlyList<string> Reasons { get; init; } = Array.Empty<string>();
+
+    [JsonPropertyName("confidence")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public double? Confidence { get; init; }
+
+    [JsonPropertyName("quieted")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public bool? Quieted { get; init; }
+
+    [JsonPropertyName("evidence")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public PolicyOverlayEvidenceDto? Evidence { get; init; }
+}
+
+/// <summary>
+/// Runtime evidence attached to a policy overlay.
+/// </summary>
+public sealed record PolicyOverlayEvidenceDto
+{
+    [JsonPropertyName("signed")]
+    public bool Signed { get; init; }
+
+    [JsonPropertyName("hasSbomReferrers")]
+    public bool HasSbomReferrers { get; init; }
+
+    [JsonPropertyName("rekor")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public RuntimePolicyRekorDto? Rekor { get; init; }
+
+    [JsonPropertyName("buildIds")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public IReadOnlyList<string>? BuildIds { get; init; }
+
+    [JsonPropertyName("metadata")]
+    [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]
+    public IReadOnlyDictionary<string, string>? Metadata { get; init; }
+}

src/Scanner/StellaOps.Scanner.WebService/Contracts/ScanSubmitRequest.cs

@@ -1,21 +1,21 @@
-using System.Collections.Generic;
-
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record ScanSubmitRequest
-{
-    public required ScanImageDescriptor Image { get; init; } = new();
-
-    public bool Force { get; init; }
-
-    public string? ClientRequestId { get; init; }
-
-    public IDictionary<string, string> Metadata { get; init; } = new Dictionary<string, string>(StringComparer.OrdinalIgnoreCase);
-}
-
-public sealed record ScanImageDescriptor
-{
-    public string? Reference { get; init; }
-
-    public string? Digest { get; init; }
-}
+using System.Collections.Generic;
+
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record ScanSubmitRequest
+{
+    public required ScanImageDescriptor Image { get; init; } = new();
+
+    public bool Force { get; init; }
+
+    public string? ClientRequestId { get; init; }
+
+    public IDictionary<string, string> Metadata { get; init; } = new Dictionary<string, string>(StringComparer.OrdinalIgnoreCase);
+}
+
+public sealed record ScanImageDescriptor
+{
+    public string? Reference { get; init; }
+
+    public string? Digest { get; init; }
+}

src/Scanner/StellaOps.Scanner.WebService/Contracts/ScanSubmitResponse.cs

@@ -1,7 +1,7 @@
-namespace StellaOps.Scanner.WebService.Contracts;
-
-public sealed record ScanSubmitResponse(
-    string ScanId,
-    string Status,
-    string? Location,
-    bool Created);
+namespace StellaOps.Scanner.WebService.Contracts;
+
+public sealed record ScanSubmitResponse(
+    string ScanId,
+    string Status,
+    string? Location,
+    bool Created);