Add Sentinel v2.4 governance artifacts, validator, tests, and CI gate#110
Conversation
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
|
The files' contents are under analysis for test generation. |
|
Review these changes at https://app.gitnotebooks.com/OneFineStarstuff/OneFineStarstuff.github.io/pull/110 |
![sourcery-ai[bot]](https://avatars.githubusercontent.com/in/48477?s=60&v=4){kind=small}
There was a problem hiding this comment.
Sorry @OneFineStarstuff, you have reached your weekly rate limit of 500000 diff characters.
Please try again later or upgrade to continue using Sourcery
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
|
View changes in DiffLens |
|
Warning Review limit reached
More reviews will be available in 43 minutes and 25 seconds. Learn how PR review limits work. Your organization has run out of usage credits. Purchase more in the billing tab. ⌛ How to resolve this issue?After more reviews become available, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available. Please see our Fair Usage Limits Policy for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (15)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
Failed to generate code suggestions for PR |
Not up to standards ⛔🔴 Issues
|
| Category | Results |
|---|---|
| BestPractice | 1 minor |
| Documentation | 19 minor |
| ErrorProne | 1 medium 21 high |
| Security | 2 medium 1 minor 50 high |
| CodeStyle | 5 minor |
🟢 Metrics 38 complexity · 0 duplication
Metric Results Complexity 38 Duplication 0
NEW Get contextual insights on your PRs based on Codacy's metrics, along with PR and Jira context, without leaving GitHub. Enable AI reviewer
TIP This summary will be updated as you push new changes.
❌ Deploy Preview for onefinestarstuff failed.
|
…roadmap Signed-off-by: 𝐎𝐧𝐞 𝐅𝐢𝐧𝐞 𝐒𝐭𝐚𝐫𝐬𝐭𝐮𝐟𝐟 <onefinestarstuff@gmail.com>
|
View changes in DiffLens |
3 participants
Motivation
Description
governance_artifacts/including OSCAL control catalog, Rego gate (rego/release_gate.rego), TLA+ invariants, JSON schemas, examples, and regulatory profile YAMLs.tools/validate_governance_artifacts.pyand a runner scripttools/run_governance_gates.shthat produce/tmp/sentinel_governance_validation_report.jsonand optionally downloads/verifies OPA for strict runs.tests/governance/test_governance_artifacts.pyand PyTest fixtures ingovernance_artifacts/conftest/to exercise the Rego gate, schemas, catalog mappings, and TLA markers..github/workflows/sentinel-governance-gates.ymlto run the full governance gate on PRs andmainbranch pushes and upload the validation report artifact.Testing
python tools/validate_governance_artifacts.py --report /tmp/sentinel_governance_validation_report.json, which completed and wrote a pass report. (pass)pytest -q tests/governance/test_governance_artifacts.py, which passed and validated catalog mappings, schemas, fixtures, and example artifacts. (pass)./tools/run_governance_gates.sh --strict-opa) in CI which runsopa evalchecks against allow/deny fixtures and recordedopa_statusaspassin the validation report. (pass)Codex Task