save audit remarks applications progress

src/Scanner/StellaOps.Scanner.WebService/Services/UnifiedEvidenceService.cs

@@ -22,6 +22,7 @@ public sealed class UnifiedEvidenceService : IUnifiedEvidenceService
     private readonly TriageDbContext _dbContext;
     private readonly IGatingReasonService _gatingService;
     private readonly IReplayCommandService _replayService;
+    private readonly TimeProvider _timeProvider;
     private readonly ILogger<UnifiedEvidenceService> _logger;
 
     private const double DefaultPolicyTrustThreshold = 0.7;
@@ -30,11 +31,13 @@ public sealed class UnifiedEvidenceService : IUnifiedEvidenceService
         TriageDbContext dbContext,
         IGatingReasonService gatingService,
         IReplayCommandService replayService,
+        TimeProvider timeProvider,
         ILogger<UnifiedEvidenceService> logger)
     {
         _dbContext = dbContext ?? throw new ArgumentNullException(nameof(dbContext));
         _gatingService = gatingService ?? throw new ArgumentNullException(nameof(gatingService));
         _replayService = replayService ?? throw new ArgumentNullException(nameof(replayService));
+        _timeProvider = timeProvider ?? throw new ArgumentNullException(nameof(timeProvider));
         _logger = logger ?? throw new ArgumentNullException(nameof(logger));
     }
 
@@ -106,7 +109,7 @@ public sealed class UnifiedEvidenceService : IUnifiedEvidenceService
             ReplayCommand = replayResponse?.FullCommand?.Command,
             ShortReplayCommand = replayResponse?.ShortCommand?.Command,
             EvidenceBundleUrl = replayResponse?.Bundle?.DownloadUri,
-            GeneratedAt = DateTimeOffset.UtcNow,
+            GeneratedAt = _timeProvider.GetUtcNow(),
             CacheKey = cacheKey
         };
     }
@@ -277,11 +280,11 @@ public sealed class UnifiedEvidenceService : IUnifiedEvidenceService
             AttestationsVerified = hasAttestations,
             EvidenceComplete = hasVex && hasReachability,
             Issues = issues.Count > 0 ? issues : null,
-            VerifiedAt = DateTimeOffset.UtcNow
+            VerifiedAt = _timeProvider.GetUtcNow()
         };
     }
 
-    private static double ComputeVexTrustScore(TriageEffectiveVex vex)
+    private double ComputeVexTrustScore(TriageEffectiveVex vex)
     {
         const double IssuerWeight = 0.4;
         const double RecencyWeight = 0.2;
@@ -289,7 +292,7 @@ public sealed class UnifiedEvidenceService : IUnifiedEvidenceService
         const double EvidenceWeight = 0.2;
 
         var issuerTrust = GetIssuerTrust(vex.Issuer);
-        var recencyTrust = GetRecencyTrust((DateTimeOffset?)vex.ValidFrom);
+        var recencyTrust = GetRecencyTrust((DateTimeOffset?)vex.ValidFrom, _timeProvider.GetUtcNow());
         var justificationTrust = GetJustificationTrust(vex.PrunedSourcesJson);
         var evidenceTrust = !string.IsNullOrEmpty(vex.DsseEnvelopeHash) ? 0.8 : 0.3;
 
@@ -309,10 +312,10 @@ public sealed class UnifiedEvidenceService : IUnifiedEvidenceService
             _ => 0.5
         };
 
-    private static double GetRecencyTrust(DateTimeOffset? timestamp)
+    private static double GetRecencyTrust(DateTimeOffset? timestamp, DateTimeOffset now)
     {
         if (timestamp is null) return 0.3;
-        var age = DateTimeOffset.UtcNow - timestamp.Value;
+        var age = now - timestamp.Value;
         return age.TotalDays switch { <= 7 => 1.0, <= 30 => 0.9, <= 90 => 0.7, <= 365 => 0.5, _ => 0.3 };
     }