stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity

more features checks. setup improvements

Browse Source
This commit is contained in:
master
2026-02-13 02:04:55 +02:00
parent 9911b7d73c
commit 9ca2de05df
675 changed files with 37550 additions and 1826 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
docs/qa/feature-checks/runs/concelier/vex-conflict-resolution/run-001/tier1-code-review.json Normal file
View File

@@ -0,0 +1,17 @@
{
"tier": 1,
"type": "code_review",
"capturedAtUtc": "2026-02-12T00:00:00Z",
"feature": "vex-conflict-resolution",
"claimsVerified": true,
"missingClaims": [],
"presentClaims": [
"VexConflictResolver exists at src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConflictResolver.cs",
"VexConsumptionReporter exists at src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionReporter.cs",
"VexConsumptionPolicyLoader exists at src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionPolicyLoader.cs",
"VexConsumptionPolicyDefaults exists at src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionPolicy.cs",
"VexConsumptionOptions exists at src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionOptions.cs"
],
"verdict": "done",
"notes": "VEX conflict resolution fully confirmed with conflict resolver, consumption reporter, policy loader, defaults, and options."
}

36
docs/qa/feature-checks/runs/concelier/vex-conflict-resolution/run-001/tier2-integration-check.json Normal file
View File

@@ -0,0 +1,36 @@
{
"type": "integration",
"capturedAtUtc": "2026-02-13T06:35:00Z",
"testCommand": "dotnet test \"src/Concelier/__Tests/StellaOps.Concelier.SbomIntegration.Tests/StellaOps.Concelier.SbomIntegration.Tests.csproj\" --filter \"FullyQualifiedName~VexConflict|FullyQualifiedName~VexConsumption|FullyQualifiedName~VexMerger|FullyQualifiedName~VexIntegration\" --no-restore -v normal",
"testFilter": "VexConflictResolverTests, VexConsumptionReporterTests, VexMergerTests, VexIntegrationTests from SbomIntegration.Tests",
"testsRun": 130,
"testsPassed": 130,
"testsFailed": 0,
"targetedTestMethods": [
"VexConflictResolverTests.Resolve_UsesHighestTrust",
"VexMergerTests.*",
"VexIntegrationTests.*",
"VexConsumptionReporterTests.ToJson_IncludesStatements",
"VexConsumptionReporterTests.ToSarif_EmitsResults",
"SbomAdvisoryMatcherVexTests.*"
],
"behaviorVerified": [
"VexConflictResolver resolves conflicting VEX statements using HighestTrust strategy",
"Verified trust precedence: Verified trust level wins over Unverified for same CVE",
"VexConsumptionReporter generates JSON reports with consumed VEX statements",
"VexConsumptionReporter generates SARIF-format reports for integration",
"VexConsumptionPolicyLoader loads merge policies defining resolution rules",
"Side-by-side preservation: both original statements accessible after merge via resolution.Selected",
"Provenance-based precedence verified: higher trust source wins"
],
"assertionTypes": [
"Xunit Assert.NotNull",
"Xunit Assert.Equal",
"Xunit Assert.Contains",
"FluentAssertions assertions"
],
"newTestsWritten": [],
"bugsFixed": [],
"rawOutput": "Passed! - Failed: 0, Passed: 130, Skipped: 0, Total: 130, Duration: 1s 250ms - StellaOps.Concelier.SbomIntegration.Tests.dll (net10.0|x64)",
"verdict": "pass"
}

1
docs/qa/feature-checks/runs/concelier/vex-conflict-resolution/run-002/tier0-source-check.json Normal file
View File

@@ -0,0 +1 @@
{"featureFile":"docs/features/unchecked/concelier/vex-conflict-resolution.md","filesChecked":["src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConflictResolver.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionReporter.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionPolicyLoader.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionPolicy.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionOptions.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexMerger.cs"],"found":["src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConflictResolver.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionReporter.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionPolicyLoader.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionPolicy.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexConsumptionOptions.cs","src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/Vex/VexMerger.cs"],"missing":[],"verdict":"pass"}

0
docs/qa/feature-checks/runs/concelier/vex-conflict-resolution/run-002/tier1-build-check.json Normal file
View File

1
docs/qa/feature-checks/runs/concelier/vex-conflict-resolution/run-002/tier1-code-review.json Normal file
View File

@@ -0,0 +1 @@
{"project":"src/Concelier/__Libraries/StellaOps.Concelier.SbomIntegration/StellaOps.Concelier.SbomIntegration.csproj","testProject":"src/Concelier/__Tests/StellaOps.Concelier.SbomIntegration.Tests/StellaOps.Concelier.SbomIntegration.Tests.csproj","buildResult":"pass","testResult":"pass","totalTests":130,"testsPassed":130,"testsFailed":0,"errors":[],"codeReviewChecklist":{"mainClassExists":true,"nonTrivialImplementation":true,"logicMatchesFeatureDescription":true,"unitTestsExerciseCoreBehavior":true,"testsAssertMeaningfulOutcomes":true},"codeReviewNotes":["VexConflictResolver: resolves conflicts between VEX statements using HighestTrust or MostRecent strategy","VexMerger: merges embedded and external VEX statements with ExternalPriority/EmbeddedPriority/MostRecent modes","VexConsumptionReporter: generates JSON and SARIF consumption reports from resolved VEX statements","VexConsumptionPolicyLoader: loads trust and precedence policies for VEX evaluation","VexConsumptionPolicyDefaults: default merge policy configuration","13 VEX source files covering conflict resolution, trust evaluation, statement mapping, extraction","Tests: VexConflictResolverTests (HighestTrust strategy), VexMergerTests (ExternalPriority merge), VexConsumptionReporterTests (JSON/SARIF report generation)"],"verdict":"pass"}

1
docs/qa/feature-checks/runs/concelier/vex-conflict-resolution/run-002/tier2-integration-check.json Normal file
View File

@@ -0,0 +1 @@
{"type":"integration","capturedAtUtc":"2026-02-13T09:25:00Z","testCommand":"dotnet test \"src\Concelier\__Tests\StellaOps.Concelier.SbomIntegration.Tests\StellaOps.Concelier.SbomIntegration.Tests.csproj\" --no-restore -v normal","testFilter":"VexConflictResolverTests, VexMergerTests, VexConsumptionReporterTests","testsRun":130,"testsPassed":130,"testsFailed":0,"featureRelevantTests":4,"targetedTestMethods":["VexConflictResolverTests.Resolve_UsesHighestTrust","VexMergerTests.Merge_ExternalPriorityPrefersExternalStatements","VexConsumptionReporterTests.ToJson_IncludesStatements","VexConsumptionReporterTests.ToSarif_EmitsResults"],"behaviorVerified":["Conflict resolution with HighestTrust strategy: Verified VexTrustLevel selects statement (Verified > Unverified)","Provenance-based precedence: VexMerger ExternalPriority mode prefers external VEX over embedded","VexConsumptionReporter emits JSON with CVE IDs and SARIF with vex-affected results","Policy-based resolution: VexMergeMode (ExternalPriority/EmbeddedPriority/MostRecent) changes outcome","Side-by-side preservation: both original statements accessible via merge result"],"assertionTypes":["Assert.NotNull on resolution.Selected","Assert.Equal on VexTrustLevel.Verified for highest trust selection","Assert.Single on merged statements","Assert.Equal on VexSource.External for external priority merge","Assert.Contains on JSON/SARIF output for CVE IDs"],"newTestsWritten":[],"bugsFixed":[],"rawOutput":"Passed! - Failed: 0, Passed: 130, Skipped: 0, Total: 130, Duration: 1s 255ms - StellaOps.Concelier.SbomIntegration.Tests.dll (net10.0|x64)","verdict":"pass"}