1.9 KiB
1.9 KiB
Runtime Posture Evaluation
Module
Zastava
Status
IMPLEMENTED
Description
Runtime posture evaluator that assesses the security posture of running containers with caching support.
Implementation Details
- IRuntimePostureEvaluator interface:
src/Zastava/StellaOps.Zastava.Observer/Posture/IRuntimePostureEvaluator.cs-- evaluates runtime security posture of containers - RuntimePostureEvaluator:
src/Zastava/StellaOps.Zastava.Observer/Posture/RuntimePostureEvaluator.cs-- default posture evaluation implementation - RuntimePostureEvaluationResult:
src/Zastava/StellaOps.Zastava.Observer/Posture/RuntimePostureEvaluationResult.cs-- evaluation result model - IRuntimePostureCache:
src/Zastava/StellaOps.Zastava.Observer/Posture/IRuntimePostureCache.cs-- caching interface for posture evaluations - RuntimePostureCache:
src/Zastava/StellaOps.Zastava.Observer/Posture/RuntimePostureCache.cs-- in-memory cache for posture results - RuntimePostureCacheEntry:
src/Zastava/StellaOps.Zastava.Observer/Posture/RuntimePostureCacheEntry.cs-- cache entry model - IRuntimePolicyClient:
src/Zastava/StellaOps.Zastava.Observer/Backend/IRuntimePolicyClient.cs-- client for runtime policy evaluation backend - RuntimePolicyClient:
src/Zastava/StellaOps.Zastava.Observer/Backend/RuntimePolicyClient.cs-- runtime policy client implementation - Tests:
src/Zastava/__Tests/StellaOps.Zastava.Observer.Tests/Posture/RuntimePostureEvaluatorTests.cs - Source: Feature matrix scan
E2E Test Plan
- Verify posture evaluator assesses container security state from runtime facts
- Test posture cache returns cached results for repeated evaluations within TTL
- Verify posture evaluation integrates with runtime policy backend
- Test cache invalidation on container state change
- Verify evaluation results include posture score and risk indicators