Implement ledger metrics for observability and add tests for Ruby packages endpoints

- Added `LedgerMetrics` class to record write latency and total events for ledger operations. - Created comprehensive tests for Ruby packages endpoints, covering scenarios for missing inventory, successful retrieval, and identifier handling. - Introduced `TestSurfaceSecretsScope` for managing environment variables during tests. - Developed `ProvenanceMongoExtensions` for attaching DSSE provenance and trust information to event documents. - Implemented `EventProvenanceWriter` and `EventWriter` classes for managing event provenance in MongoDB. - Established MongoDB indexes for efficient querying of events based on provenance and trust. - Added models and JSON parsing logic for DSSE provenance and trust information.
2025-11-13 09:29:09 +02:00
parent 151f6b35cc
commit 61f963fd52
101 changed files with 5881 additions and 1776 deletions
--- a/src/Scanner/StellaOps.Scanner.WebService/Services/IScanCoordinator.cs
+++ b/src/Scanner/StellaOps.Scanner.WebService/Services/IScanCoordinator.cs
@@ -2,9 +2,11 @@ using StellaOps.Scanner.WebService.Domain;

 namespace StellaOps.Scanner.WebService.Services;

-public interface IScanCoordinator
-{
-    ValueTask<ScanSubmissionResult> SubmitAsync(ScanSubmission submission, CancellationToken cancellationToken);
-
-    ValueTask<ScanSnapshot?> GetAsync(ScanId scanId, CancellationToken cancellationToken);
-}
+public interface IScanCoordinator
+{
+    ValueTask<ScanSubmissionResult> SubmitAsync(ScanSubmission submission, CancellationToken cancellationToken);
+
+    ValueTask<ScanSnapshot?> GetAsync(ScanId scanId, CancellationToken cancellationToken);
+
+    ValueTask<ScanSnapshot?> TryFindByTargetAsync(string? reference, string? digest, CancellationToken cancellationToken);
+}
--- a/src/Scanner/StellaOps.Scanner.WebService/Services/InMemoryScanCoordinator.cs
+++ b/src/Scanner/StellaOps.Scanner.WebService/Services/InMemoryScanCoordinator.cs
@@ -7,11 +7,13 @@ namespace StellaOps.Scanner.WebService.Services;

 public sealed class InMemoryScanCoordinator : IScanCoordinator
 {
-    private sealed record ScanEntry(ScanSnapshot Snapshot);
-
-    private readonly ConcurrentDictionary<string, ScanEntry> scans = new(StringComparer.OrdinalIgnoreCase);
-    private readonly TimeProvider timeProvider;
-    private readonly IScanProgressPublisher progressPublisher;
+    private sealed record ScanEntry(ScanSnapshot Snapshot);
+
+    private readonly ConcurrentDictionary<string, ScanEntry> scans = new(StringComparer.OrdinalIgnoreCase);
+    private readonly ConcurrentDictionary<string, string> scansByDigest = new(StringComparer.OrdinalIgnoreCase);
+    private readonly ConcurrentDictionary<string, string> scansByReference = new(StringComparer.OrdinalIgnoreCase);
+    private readonly TimeProvider timeProvider;
+    private readonly IScanProgressPublisher progressPublisher;

    public InMemoryScanCoordinator(TimeProvider timeProvider, IScanProgressPublisher progressPublisher)
    {
@@ -37,12 +39,12 @@ public sealed class InMemoryScanCoordinator : IScanCoordinator
            eventData[$"meta.{pair.Key}"] = pair.Value;
        }

-        ScanEntry entry = scans.AddOrUpdate(
-            scanId.Value,
-            _ => new ScanEntry(new ScanSnapshot(
-                scanId,
-                normalizedTarget,
-                ScanStatus.Pending,
+        ScanEntry entry = scans.AddOrUpdate(
+            scanId.Value,
+            _ => new ScanEntry(new ScanSnapshot(
+                scanId,
+                normalizedTarget,
+                ScanStatus.Pending,
                now,
                now,
                null)),
@@ -59,22 +61,87 @@ public sealed class InMemoryScanCoordinator : IScanCoordinator
                    return new ScanEntry(snapshot);
                }

-                return existing;
-            });
-
-        var created = entry.Snapshot.CreatedAt == now;
-        var state = entry.Snapshot.Status.ToString();
-        progressPublisher.Publish(scanId, state, created ? "queued" : "requeued", eventData);
-        return ValueTask.FromResult(new ScanSubmissionResult(entry.Snapshot, created));
-    }
+                return existing;
+            });
+
+        IndexTarget(scanId.Value, normalizedTarget);
+
+        var created = entry.Snapshot.CreatedAt == now;
+        var state = entry.Snapshot.Status.ToString();
+        progressPublisher.Publish(scanId, state, created ? "queued" : "requeued", eventData);
+        return ValueTask.FromResult(new ScanSubmissionResult(entry.Snapshot, created));
+    }

    public ValueTask<ScanSnapshot?> GetAsync(ScanId scanId, CancellationToken cancellationToken)
    {
-        if (scans.TryGetValue(scanId.Value, out var entry))
-        {
-            return ValueTask.FromResult<ScanSnapshot?>(entry.Snapshot);
-        }
-
-        return ValueTask.FromResult<ScanSnapshot?>(null);
-    }
-}
+        if (scans.TryGetValue(scanId.Value, out var entry))
+        {
+            return ValueTask.FromResult<ScanSnapshot?>(entry.Snapshot);
+        }
+
+        return ValueTask.FromResult<ScanSnapshot?>(null);
+    }
+
+    public ValueTask<ScanSnapshot?> TryFindByTargetAsync(string? reference, string? digest, CancellationToken cancellationToken)
+    {
+        if (!string.IsNullOrWhiteSpace(digest))
+        {
+            var normalizedDigest = NormalizeDigest(digest);
+            if (normalizedDigest is not null &&
+                scansByDigest.TryGetValue(normalizedDigest, out var digestScanId) &&
+                scans.TryGetValue(digestScanId, out var digestEntry))
+            {
+                return ValueTask.FromResult<ScanSnapshot?>(digestEntry.Snapshot);
+            }
+        }
+
+        if (!string.IsNullOrWhiteSpace(reference))
+        {
+            var normalizedReference = NormalizeReference(reference);
+            if (normalizedReference is not null &&
+                scansByReference.TryGetValue(normalizedReference, out var referenceScanId) &&
+                scans.TryGetValue(referenceScanId, out var referenceEntry))
+            {
+                return ValueTask.FromResult<ScanSnapshot?>(referenceEntry.Snapshot);
+            }
+        }
+
+        return ValueTask.FromResult<ScanSnapshot?>(null);
+    }
+
+    private void IndexTarget(string scanId, ScanTarget target)
+    {
+        if (!string.IsNullOrWhiteSpace(target.Digest))
+        {
+            scansByDigest[target.Digest!] = scanId;
+        }
+
+        if (!string.IsNullOrWhiteSpace(target.Reference))
+        {
+            scansByReference[target.Reference!] = scanId;
+        }
+    }
+
+    private static string? NormalizeDigest(string? value)
+    {
+        if (string.IsNullOrWhiteSpace(value))
+        {
+            return null;
+        }
+
+        var trimmed = value.Trim();
+        return trimmed.Contains(':', StringComparison.Ordinal)
+            ? trimmed.ToLowerInvariant()
+            : null;
+    }
+
+    private static string? NormalizeReference(string? value)
+    {
+        if (string.IsNullOrWhiteSpace(value))
+        {
+            return null;
+        }
+
+        return value.Trim();
+    }
+}