Refactor and update test projects, remove obsolete tests, and upgrade dependencies

- Deleted obsolete test files for SchedulerAuditService and SchedulerMongoSessionFactory. - Removed unused TestDataFactory class. - Updated project files for Mongo.Tests to remove references to deleted files. - Upgraded BouncyCastle.Cryptography package to version 2.6.2 across multiple projects. - Replaced Microsoft.Extensions.Http.Polly with Microsoft.Extensions.Http.Resilience in Zastava.Webhook project. - Updated NetEscapades.Configuration.Yaml package to version 3.1.0 in Configuration library. - Upgraded Pkcs11Interop package to version 5.1.2 in Cryptography libraries. - Refactored Argon2idPasswordHasher to use BouncyCastle for hashing instead of Konscious. - Updated JsonSchema.Net package to version 7.3.2 in Microservice project. - Updated global.json to use .NET SDK version 10.0.101.
2025-12-10 19:13:29 +02:00
parent a3c7fe5e88
commit b7059d523e
369 changed files with 11125 additions and 14245 deletions
--- a/docs/modules/excititor/schemas/vex_overlay.schema.json
+++ b/docs/modules/excititor/schemas/vex_overlay.schema.json
@@ -0,0 +1,149 @@
+{
+  "$schema": "https://json-schema.org/draft/2020-12/schema",
+  "$id": "https://stellaops.dev/schemas/excititor/vex_overlay.schema.json",
+  "title": "Excititor VEX Overlay",
+  "description": "Graph-ready overlay built from Link-Not-Merge observations and linksets. Immutable and append-only; ordered for deterministic pagination and caching.",
+  "type": "object",
+  "additionalProperties": false,
+  "required": [
+    "schemaVersion",
+    "generatedAt",
+    "tenant",
+    "purl",
+    "advisoryId",
+    "source",
+    "status",
+    "observations",
+    "provenance"
+  ],
+  "properties": {
+    "schemaVersion": {
+      "type": "string",
+      "enum": ["1.0.0"]
+    },
+    "generatedAt": {
+      "type": "string",
+      "format": "date-time"
+    },
+    "tenant": {
+      "type": "string",
+      "description": "Tenant identifier used for storage partitioning."
+    },
+    "purl": {
+      "type": "string",
+      "description": "Normalized package URL for the component."
+    },
+    "advisoryId": {
+      "type": "string",
+      "description": "Upstream advisory identifier (e.g., GHSA, RHSA, CVE)."
+    },
+    "source": {
+      "type": "string",
+      "description": "Linkset source identifier (matches Concelier linkset source)."
+    },
+    "status": {
+      "type": "string",
+      "enum": [
+        "affected",
+        "not_affected",
+        "under_investigation",
+        "fixed",
+        "unknown"
+      ]
+    },
+    "justifications": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "additionalProperties": false,
+        "required": ["kind", "reason"],
+        "properties": {
+          "kind": {
+            "type": "string",
+            "description": "Reason code aligned to VEX statement taxonomy."
+          },
+          "reason": {
+            "type": "string",
+            "description": "Human-readable justification text."
+          },
+          "evidence": {
+            "type": "array",
+            "items": {
+              "type": "string",
+              "description": "Observation or linkset id contributing to this justification."
+            }
+          },
+          "weight": {
+            "type": "number",
+            "minimum": 0,
+            "maximum": 1,
+            "description": "Optional confidence weight."
+          }
+        }
+      }
+    },
+    "conflicts": {
+      "type": "array",
+      "description": "Conflicts detected in linkset normalization.",
+      "items": {
+        "type": "object",
+        "additionalProperties": false,
+        "required": ["field", "reason"],
+        "properties": {
+          "field": { "type": "string" },
+          "reason": { "type": "string" },
+          "values": {
+            "type": "array",
+            "items": { "type": "string" }
+          },
+          "sourceIds": {
+            "type": "array",
+            "items": { "type": "string" }
+          }
+        }
+      }
+    },
+    "observations": {
+      "type": "array",
+      "description": "Ordered list of Link-Not-Merge observation references feeding this overlay.",
+      "items": {
+        "type": "object",
+        "additionalProperties": false,
+        "required": ["id", "contentHash", "fetchedAt"],
+        "properties": {
+          "id": { "type": "string" },
+          "contentHash": { "type": "string", "pattern": "^sha256:[A-Fa-f0-9]{64}$" },
+          "fetchedAt": { "type": "string", "format": "date-time" }
+        }
+      },
+      "minItems": 1
+    },
+    "provenance": {
+      "type": "object",
+      "additionalProperties": false,
+      "required": ["linksetId", "linksetHash", "observationHashes"],
+      "properties": {
+        "linksetId": { "type": "string" },
+        "linksetHash": { "type": "string", "pattern": "^sha256:[A-Fa-f0-9]{64}$" },
+        "observationHashes": {
+          "type": "array",
+          "items": { "type": "string", "pattern": "^sha256:[A-Fa-f0-9]{64}$" },
+          "minItems": 1
+        },
+        "policyHash": { "type": "string" },
+        "sbomContextHash": { "type": "string" },
+        "planCacheKey": { "type": "string" },
+        "generatedBy": { "type": "string" }
+      }
+    },
+    "cache": {
+      "type": "object",
+      "additionalProperties": false,
+      "properties": {
+        "cached": { "type": "boolean" },
+        "cachedAt": { "type": "string", "format": "date-time" },
+        "ttlSeconds": { "type": "integer", "minimum": 0 }
+      }
+    }
+  }
+}