Skip to content

CMP-3867: Add RapidDast test for Compliance Operator#1186

Open
taimurhafeez wants to merge 2 commits into
ComplianceAsCode:masterfrom
taimurhafeez:CMP-3867-add-dast
Open

CMP-3867: Add RapidDast test for Compliance Operator#1186
taimurhafeez wants to merge 2 commits into
ComplianceAsCode:masterfrom
taimurhafeez:CMP-3867-add-dast

Conversation

@taimurhafeez
Copy link
Copy Markdown
Collaborator

@taimurhafeez taimurhafeez commented Apr 22, 2026

Supersedes PR-1010

  1. Add RapidDast test for Compliance Operator
  2. Local test PASS:

Run on OCP 4.22:

mkdir /tmp/compliance-test-artifacts
export ARTIFACT_DIR=/tmp/compliance-test-artifacts
make e2e-parallel  E2E_GO_TEST_FLAGS="-v -timeout 60m -run TestComplianceOperatorPassesDAST"

2026/04/22 12:18:26 Successfully deleted ClusterRoleBinding rapidast-admin-osdk-e2e-c784d765-df18-444a-856a-9b39cf5ba39c
    main_test.go:6079: Compliance operator passed DAST scan
--- PASS: TestComplianceOperatorPassesDAST (121.96s)
PASS
  1. If you want to see the full report, you can see it with command below. Only Low risk alert showed:
    cat $ARTIFACT_DIR/rapiddastresultsISC/compliance_v1alpha1_rapidast.result

xiaojiey and others added 2 commits March 17, 2026 20:18
@xiaojiey
Add RapidDast test for Compliance Operator
dd4013b 
This adds support for running DAST scans using RapidAST, including:
- Google Cloud Storage upload support for DAST results when credentials are available
- Configuration files for both standard and upload-enabled scans
- The implementation checks for GCS secret file existence and conditionally:
  - Switches to upload-enabled config file (rapidast-config-upload.yaml)
  - Includes dast-gcs-secret.json in the ConfigMap
  - Uploads results to GCS bucket under isc/compliance-operator directory
- Test automatically skips when cluster nodes are not amd64 architecture
@taimurhafeez
synced PR 1010 with base
6797f94
@openshift-ci-robot
Copy link
Copy Markdown
Collaborator

openshift-ci-robot commented Apr 22, 2026

@taimurhafeez: This pull request references CMP-3867 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "5.0.0" version, but no target version was set.

Details

In response to this:

Supersedes PR-1010

  1. Add RapidDast test for Compliance Operator
  2. Local test PASS:

Run on OCP 4.22:

mkdir /tmp/compliance-test-artifacts
export ARTIFACT_DIR=/tmp/compliance-test-artifacts
make e2e-parallel  E2E_GO_TEST_FLAGS="-v -timeout 60m -run TestComplianceOperatorPassesDAST"

2026/04/22 12:18:26 Successfully deleted ClusterRoleBinding rapidast-admin-osdk-e2e-c784d765-df18-444a-856a-9b39cf5ba39c
   main_test.go:6079: Compliance operator passed DAST scan
--- PASS: TestComplianceOperatorPassesDAST (121.96s)
PASS
  1. If you want to see the full report, you can see it with command below. Only Low risk alert showed:
    cat $ARTIFACT_DIR/rapiddastresultsISC/compliance_v1alpha1_rapidast.result

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-ci openshift-ci Bot requested review from Vincent056 and yuumasato April 22, 2026 11:27
@openshift-ci
Copy link
Copy Markdown

openshift-ci Bot commented Apr 22, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: taimurhafeez

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@taimurhafeez taimurhafeez mentioned this pull request Apr 22, 2026
Open
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 22, 2026

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1186-6797f947d591f332df6b0d6fc0d47b2d6d6307d4

@taimurhafeez
Copy link
Copy Markdown
Collaborator Author

taimurhafeez commented Apr 27, 2026

/test e2e-aws-parallel

@taimurhafeez
Copy link
Copy Markdown
Collaborator Author

taimurhafeez commented Apr 27, 2026

/test e2e-aws-serial-arm

@taimurhafeez
Copy link
Copy Markdown
Collaborator Author

taimurhafeez commented Apr 28, 2026

/test e2e-aws-parallel

@openshift-ci
Copy link
Copy Markdown

openshift-ci Bot commented Apr 28, 2026

@taimurhafeez: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/e2e-rosa 6797f94 link true /test e2e-rosa
ci/prow/e2e-aws-parallel 6797f94 link true /test e2e-aws-parallel

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Vincent056 Vincent056 Awaiting requested review from Vincent056

@yuumasato yuumasato Awaiting requested review from yuumasato

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

approved jira/valid-reference

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@taimurhafeez @openshift-ci-robot @xiaojiey