feat: Initialize Zastava Webhook service with TLS and Authority authentication

- Added Program.cs to set up the web application with Serilog for logging, health check endpoints, and a placeholder admission endpoint. - Configured Kestrel server to use TLS 1.3 and handle client certificates appropriately. - Created StellaOps.Zastava.Webhook.csproj with necessary dependencies including Serilog and Polly. - Documented tasks in TASKS.md for the Zastava Webhook project, outlining current work and exit criteria for each task.
2025-10-19 18:36:22 +03:00
parent 2062da7a8b
commit d099a90f9b
966 changed files with 91038 additions and 1850 deletions
--- a/samples/scanner/images/npm-monorepo/README.md
+++ b/samples/scanner/images/npm-monorepo/README.md
@@ -0,0 +1,3 @@
+# NPM Monorepo Sample
+
+Mirrors the fixture under `samples/runtime/npm-monorepo`. The SBOMs highlight the workspace packages plus transitive dependencies, and the BOM Index pins evidence to individual `package.json` files.
--- a/samples/scanner/images/npm-monorepo/bom-index.json
+++ b/samples/scanner/images/npm-monorepo/bom-index.json
@@ -0,0 +1,52 @@
+{
+  "schema": "stellaops/bom-index@1",
+  "image": {
+    "repository": "registry.stella-ops.org/samples/npm-monorepo",
+    "digest": "sha256:1cf2ab9d373086ed5bd1a8f4aa6f491f8844bbb0d6be8df449c16ad6c8fa7c55",
+    "tag": "2025.10.0"
+  },
+  "generatedAt": "2025-10-19T00:00:00Z",
+  "generator": "stellaops/scanner@10.0.0-preview1",
+  "components": [
+    {
+      "purl": "pkg:npm/%40stella/web@1.5.3",
+      "layerDigest": "sha256:1212121212121212121212121212121212121212121212121212121212121212",
+      "usage": ["inventory", "runtime"],
+      "licenses": ["MIT"],
+      "evidence": {
+        "kind": "package-json",
+        "path": "node_modules/@stella/web/package.json"
+      }
+    },
+    {
+      "purl": "pkg:npm/%40stella/core@2.0.0",
+      "layerDigest": "sha256:1313131313131313131313131313131313131313131313131313131313131313",
+      "usage": ["inventory", "runtime"],
+      "licenses": ["Apache-2.0"],
+      "evidence": {
+        "kind": "package-json",
+        "path": "node_modules/@stella/core/package.json"
+      }
+    },
+    {
+      "purl": "pkg:npm/lodash@4.17.21",
+      "layerDigest": "sha256:1414141414141414141414141414141414141414141414141414141414141414",
+      "usage": ["inventory"],
+      "licenses": ["MIT"],
+      "evidence": {
+        "kind": "package-json",
+        "path": "node_modules/lodash/package.json"
+      }
+    },
+    {
+      "purl": "pkg:npm/rxjs@7.8.1",
+      "layerDigest": "sha256:1515151515151515151515151515151515151515151515151515151515151515",
+      "usage": ["inventory", "runtime"],
+      "licenses": ["Apache-2.0"],
+      "evidence": {
+        "kind": "package-json",
+        "path": "node_modules/rxjs/package.json"
+      }
+    }
+  ]
+}
--- a/samples/scanner/images/npm-monorepo/inventory.cdx.json
+++ b/samples/scanner/images/npm-monorepo/inventory.cdx.json
@@ -0,0 +1,40 @@
+{
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.5",
+  "version": 1,
+  "metadata": {
+    "timestamp": "2025-10-19T00:00:00Z",
+    "component": {
+      "type": "container",
+      "name": "npm-monorepo",
+      "version": "2025.10.0",
+      "bomRef": "pkg:docker/registry.stella-ops.org/samples/npm-monorepo@sha256:1cf2ab9d373086ed5bd1a8f4aa6f491f8844bbb0d6be8df449c16ad6c8fa7c55"
+    }
+  },
+  "components": [
+    {
+      "type": "application",
+      "bomRef": "pkg:npm/%40stella/core@2.0.0",
+      "name": "@stella/core",
+      "version": "2.0.0"
+    },
+    {
+      "type": "application",
+      "bomRef": "pkg:npm/%40stella/web@1.5.3",
+      "name": "@stella/web",
+      "version": "1.5.3"
+    },
+    {
+      "type": "library",
+      "bomRef": "pkg:npm/lodash@4.17.21",
+      "name": "lodash",
+      "version": "4.17.21"
+    },
+    {
+      "type": "library",
+      "bomRef": "pkg:npm/rxjs@7.8.1",
+      "name": "rxjs",
+      "version": "7.8.1"
+    }
+  ]
+}
--- a/samples/scanner/images/npm-monorepo/usage.cdx.json
+++ b/samples/scanner/images/npm-monorepo/usage.cdx.json
@@ -0,0 +1,34 @@
+{
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.5",
+  "version": 1,
+  "metadata": {
+    "timestamp": "2025-10-19T00:00:00Z",
+    "component": {
+      "type": "container",
+      "name": "npm-monorepo",
+      "version": "2025.10.0",
+      "bomRef": "pkg:docker/registry.stella-ops.org/samples/npm-monorepo@sha256:1cf2ab9d373086ed5bd1a8f4aa6f491f8844bbb0d6be8df449c16ad6c8fa7c55"
+    }
+  },
+  "components": [
+    {
+      "type": "application",
+      "bomRef": "pkg:npm/%40stella/web@1.5.3",
+      "name": "@stella/web",
+      "version": "1.5.3"
+    },
+    {
+      "type": "application",
+      "bomRef": "pkg:npm/%40stella/core@2.0.0",
+      "name": "@stella/core",
+      "version": "2.0.0"
+    },
+    {
+      "type": "library",
+      "bomRef": "pkg:npm/rxjs@7.8.1",
+      "name": "rxjs",
+      "version": "7.8.1"
+    }
+  ]
+}