docs consolidation, big sln build fixes, new advisories and sprints/tasks

2026-01-05 18:37:04 +02:00
parent d0a7b88398
commit d7bdca6d97
175 changed files with 10322 additions and 307 deletions
--- a/src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/GatingReasonServiceTests.cs
+++ b/src/Scanner/__Tests/StellaOps.Scanner.WebService.Tests/GatingReasonServiceTests.cs
@@ -448,6 +448,7 @@ public sealed class GatingReasonServiceTests
    public void VexEvidenceTrust_SignedWithLedger_HasHighTrust()
    {
        // Arrange - DSSE envelope + signature ref + source ref
+        var now = DateTimeOffset.UtcNow;
        var vex = new TriageEffectiveVex
        {
            Id = Guid.NewGuid(),
@@ -455,7 +456,9 @@ public sealed class GatingReasonServiceTests
            DsseEnvelopeHash = "sha256:signed",
            SignatureRef = "ledger-entry",
            SourceDomain = "nvd",
-            SourceRef = "NVD-CVE-2024-1234"
+            SourceRef = "NVD-CVE-2024-1234",
+            ValidFrom = now,
+            CollectedAt = now
        };

        // Assert - all evidence factors present
@@ -469,6 +472,7 @@ public sealed class GatingReasonServiceTests
    public void VexEvidenceTrust_NoEvidence_HasBaseTrust()
    {
        // Arrange - no signature, no ledger, no source
+        var now = DateTimeOffset.UtcNow;
        var vex = new TriageEffectiveVex
        {
            Id = Guid.NewGuid(),
@@ -476,7 +480,9 @@ public sealed class GatingReasonServiceTests
            DsseEnvelopeHash = null,
            SignatureRef = null,
            SourceDomain = "unknown",
-            SourceRef = "unknown"
+            SourceRef = "unknown",
+            ValidFrom = now,
+            CollectedAt = now
        };

        // Assert - base trust only
@@ -493,12 +499,16 @@ public sealed class GatingReasonServiceTests
    public void TriageFinding_RequiredFields_AreSet()
    {
        // Arrange
+        var now = DateTimeOffset.UtcNow;
        var finding = new TriageFinding
        {
            Id = Guid.NewGuid(),
            AssetLabel = "test-asset",
            Purl = "pkg:npm/test@1.0.0",
-            CveId = "CVE-2024-1234"
+            CveId = "CVE-2024-1234",
+            FirstSeenAt = now,
+            LastSeenAt = now,
+            UpdatedAt = now
        };

        // Assert
@@ -519,7 +529,8 @@ public sealed class GatingReasonServiceTests
            {
                Id = Guid.NewGuid(),
                PolicyId = "test-policy",
-                Action = action
+                Action = action,
+                AppliedAt = DateTimeOffset.UtcNow
            };

            decision.Action.Should().Be(action);
@@ -562,7 +573,8 @@ public sealed class GatingReasonServiceTests
            Id = Guid.NewGuid(),
            Reachable = TriageReachability.No,
            InputsHash = "sha256:inputs-hash",
-            SubgraphId = "sha256:subgraph"
+            SubgraphId = "sha256:subgraph",
+            ComputedAt = DateTimeOffset.UtcNow
        };

        // Assert