Add integration tests, security/QAT workflows, and SDK framework README#3
Open
bnreplah wants to merge 2 commits into
Open
Add integration tests, security/QAT workflows, and SDK framework README#3bnreplah wants to merge 2 commits into
bnreplah wants to merge 2 commits into
Conversation
- tests/unit/: 55 unit tests for email validation, schedule helpers, CSV parsing - tests/integration/: 71 integration tests covering DAST request script, blacklist script, bash syntax validation, shellcheck, XML API scripts, and live API connectivity (credential-gated) - tests/fixtures/: allowlist, blacklist, glblacklist CSV fixtures for test runs - pytest.ini, requirements-test.txt: test runner configuration - .github/workflows/integration-tests.yml: unit + integration + shell + API tests, split into jobs with artifact uploads and optional live API job on main - .github/workflows/security-scan.yml: Bandit, ShellCheck, Gitleaks, pip-audit, Semgrep, and credentials-file checker; scheduled weekly - .github/workflows/qat.yml: flake8, ShellCheck lint, JSON/YAML validation, PSScriptAnalyzer on Windows, full test suite with result publishing - README.md: rewritten with badge table, SDK framework overview, API reference, quick-start, test docs, and secrets guide - .gitignore: excludes __pycache__, credentials, test artifacts, coverage files https://claude.ai/code/session_015pBhzcxzBhLcAujgXrwsaz
QAT Test Results0 tests 0 ✅ 0s ⏱️ Results for commit e1296a8. ♻️ This comment has been updated with latest results. |
templates/workflows/ — copy any file to .github/workflows/ in a target repo: - pipeline-scan.yml fast SAST inline scan, every PR - policy-scan-sast.yml full policy scan, main/release branches - sandbox-scan-promote.yml feature branch sandbox + promote on merge - sca-agent-scan.yml SCA dependency scan via srcclr agent - dast-web-scan.yml DAST dynamic scan via DASTWebAppRequest-std.py - container-scan.yml Docker image scan via Veracode CLI or action - all-scans-devops.yml full DevSecOps pipeline (build → all scans → summary) - by-language/java-maven.yml - by-language/java-gradle.yml - by-language/nodejs.yml - by-language/python.yml - by-language/dotnet.yml - by-language/go.yml .github/workflows/ — reusable/callable workflows (any repo can call these): - reusable-pipeline-scan.yml workflow_call with inputs, secrets, outputs - reusable-policy-scan.yml workflow_call supporting sandbox or policy mode All templates include CUSTOMIZE/TODO markers, secrets documentation, packaging notes per language, and inline option comments (e.g. Action vs Java wrapper, binary vs source zip for Go). https://claude.ai/code/session_015pBhzcxzBhLcAujgXrwsaz
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
script, bash syntax validation, shellcheck, XML API scripts, and live API
connectivity (credential-gated)
split into jobs with artifact uploads and optional live API job on main
Semgrep, and credentials-file checker; scheduled weekly
PSScriptAnalyzer on Windows, full test suite with result publishing
quick-start, test docs, and secrets guide
https://claude.ai/code/session_015pBhzcxzBhLcAujgXrwsaz