fix: copilot issues

gusfcarvalho · gusfcarvalho · commit 9a6aaa726114 · 2026-03-06T13:33:47.000-03:00
Signed-off-by: Gustavo Carvalho &lt;gustavo.carvalho@container-solutions.com&gt;
diff --git a/policies/cloud_custodian_resources_detected.rego b/policies/cloud_custodian_resources_detected.rego
@@ -12,7 +12,14 @@ result := object.get(input, "result", {})
 check_status := object.get(execution, "status", "unknown")
 
 resources := object.get(result, "resources", [])
-resource_count := count(resources)
+
+resource_count := count(resources) if {
+  is_array(resources)
+}
+
+resource_count := 0 if {
+  not is_array(resources)
+}
 
 has_resources if {
   is_array(resources)
diff --git a/policies/cloud_custodian_resources_detected_test.rego b/policies/cloud_custodian_resources_detected_test.rego
@@ -101,3 +101,17 @@ test_violation_when_check_missing_uses_unknown_check if {
     "remarks": "Cloud Custodian check \"unknown-check\" matched 1 resource(s)."
   }] with input as fixture
 }
+
+test_no_violation_when_resources_is_not_array if {
+  fixture := {
+    "check": {"name": "ec2-public-ip-check"},
+    "execution": {"status": "success", "error": "", "errors": []},
+    "result": {
+      "resources": null
+    }
+  }
+
+  count(cloud_custodian_resources_detected.violation) == 0 with input as fixture
+  cloud_custodian_resources_detected.title == "Cloud Custodian check \"ec2-public-ip-check\" status=\"success\"" with input as fixture
+  cloud_custodian_resources_detected.description == "Cloud Custodian check \"ec2-public-ip-check\" evaluated with status \"success\" and matched 0 resource(s). Execution errors (if any) are treated as violations." with input as fixture
+}
