CMP-3867: Add RapidDast test for Compliance Operator by xiaojiey · Pull Request #1010 · ComplianceAsCode/compliance-operator

xiaojiey · 2025-11-28T06:00:09Z

Add RapidDast test for Compliance Operator
Local test PASS:

% mkdir /tmp/compliance-test-artifacts
% export ARTIFACT_DIR=/tmp/compliance-test-artifacts
% make e2e-parallel  E2E_GO_TEST_FLAGS="-v -timeout 60m -run TestComplianceOperatorPassesDAST"
2025/11/28 13:42:24 Successfully deleted ClusterRoleBinding rapidast-admin-osdk-e2e-731934cd-32b8-410d-a113-4a6af4b0687d
    main_test.go:5228: Compliance operator passed DAST scan
--- PASS: TestComplianceOperatorPassesDAST (32.05s)
PASS

If you want to see the full report, you can see it with command below. Only Low risk alert showed:
cat $ARTIFACT_DIR/rapiddastresultsISC/compliance_v1alpha1_rapidast.result
Include the required selectors to machineconfig to pass the ValidatingAdmissionPolicy which address in CMP-3930: Include the required selectors to machineconfig to pass the ValidatingAdmissionPolicy #960

openshift-ci · 2025-11-28T06:00:15Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: xiaojiey

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [xiaojiey]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

openshift-ci-robot · 2025-11-28T06:06:46Z

@xiaojiey: This pull request references CMP-3867 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.21.0" version, but no target version was set.

Details

In response to this:

Add RapidDast test for Compliance Operator

Local test PASS:
% mkdir /tmp/compliance-test-artifacts
% export ARTIFACT_DIR=/tmp/compliance-test-artifacts
% make e2e-parallel  E2E_GO_TEST_FLAGS="-v -timeout 60m -run TestComplianceOperatorPassesDAST"
2025/11/28 13:42:24 Successfully deleted ClusterRoleBinding rapidast-admin-osdk-e2e-731934cd-32b8-410d-a113-4a6af4b0687d
   main_test.go:5228: Compliance operator passed DAST scan
--- PASS: TestComplianceOperatorPassesDAST (32.05s)
PASS
If you want to see the full report, you can see it with command below. Only Low risk alert showed:
cat $ARTIFACT_DIR/rapiddastresultsISC/compliance_v1alpha1_rapidast.result

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

github-actions · 2025-11-28T06:07:28Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-27bb62d32bc92fa4dde502f1dff2aad42cd21143

github-actions · 2025-11-28T06:19:39Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-40327bc324356a1041ebbcc56070688915fe07e0

github-actions · 2025-11-28T08:07:28Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-0f2a7f41b6578278bcb7f816ad8c4e24f866150c

github-actions · 2025-11-28T13:08:03Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-9f57772af0bd01c07e9d14f39784616051172d6d

github-actions · 2025-12-01T01:29:17Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-68b3b2669721eb6be36c0b1c0f36b0995d82c2af

github-actions · 2025-12-01T01:49:46Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-7e5d6c077f348a09c595919a357b0aefa8f5cab9

github-actions · 2025-12-03T02:59:52Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-68c536c153aca64f48747b856a1542f84de110dc

xiaojiey · 2025-12-03T06:04:59Z

/retest

xiaojiey · 2025-12-03T08:08:36Z

/retest

xiaojiey · 2025-12-03T12:56:35Z

/retest

xiaojiey · 2025-12-05T02:02:14Z

/retest

github-actions · 2025-12-09T08:57:55Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-14560f69d7cd0338b3fbede5d807cbbf21af29ef

github-actions · 2026-03-04T02:40:13Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-5ed563919dcce248cc347b835b9e942828f4f30c

github-actions · 2026-03-17T12:14:29Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-2feb9029942a0e1e60aa2ef6924258c5c7e3daa6

This adds support for running DAST scans using RapidAST, including: - Google Cloud Storage upload support for DAST results when credentials are available - Configuration files for both standard and upload-enabled scans - The implementation checks for GCS secret file existence and conditionally: - Switches to upload-enabled config file (rapidast-config-upload.yaml) - Includes dast-gcs-secret.json in the ConfigMap - Uploads results to GCS bucket under isc/compliance-operator directory - Test automatically skips when cluster nodes are not amd64 architecture

github-actions · 2026-03-17T12:23:48Z

🤖 To deploy this PR, run the following command:

make catalog-deploy CATALOG_IMG=ghcr.io/complianceascode/compliance-operator-catalog:1010-dd4013bf6b5ba118a1778ce65cd641696d9a3010

openshift-ci · 2026-03-17T12:57:02Z

@xiaojiey: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-rosa	`dd4013b`	link	true	`/test e2e-rosa`

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

openshift-ci · 2026-04-02T09:46:12Z

PR needs rebase.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

taimurhafeez · 2026-04-22T11:28:27Z

Superseded and rebased in PR-1186.

openshift-ci Bot requested review from Vincent056 and mrogers950 November 28, 2025 06:00

openshift-ci Bot added the approved label Nov 28, 2025

xiaojiey changed the title ~~Add RapidDast test for Compliance Operator~~ CMP-3867: Add RapidDast test for Compliance Operator Nov 28, 2025

openshift-ci-robot added the jira/valid-reference label Nov 28, 2025

xiaojiey force-pushed the add-dast branch from 27bb62d to 40327bc Compare November 28, 2025 06:12

xiaojiey force-pushed the add-dast branch from 0f2a7f4 to 9f57772 Compare November 28, 2025 13:00

xiaojiey force-pushed the add-dast branch from 68b3b26 to 7e5d6c0 Compare December 1, 2025 01:42

xiaojiey force-pushed the add-dast branch from 7e5d6c0 to 68c536c Compare December 3, 2025 02:52

xiaojiey force-pushed the add-dast branch from 68c536c to 14560f6 Compare December 9, 2025 08:50

xiaojiey force-pushed the add-dast branch from 14560f6 to 5ed5639 Compare March 4, 2026 02:33

xiaojiey force-pushed the add-dast branch from 5ed5639 to 2feb902 Compare March 17, 2026 12:06

xiaojiey force-pushed the add-dast branch from 2feb902 to dd4013b Compare March 17, 2026 12:15

xiaojiey requested review from rhmdnd and yuumasato March 23, 2026 03:54

openshift-ci Bot added the needs-rebase label Apr 2, 2026

taimurhafeez mentioned this pull request Apr 22, 2026

CMP-3867: Add RapidDast test for Compliance Operator #1186

Open

rhmdnd removed their request for review April 28, 2026 19:06

Conversation

xiaojiey commented Nov 28, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

openshift-ci Bot commented Nov 28, 2025

Uh oh!

openshift-ci-robot commented Nov 28, 2025

Uh oh!

github-actions Bot commented Nov 28, 2025

Uh oh!

github-actions Bot commented Nov 28, 2025

Uh oh!

github-actions Bot commented Nov 28, 2025

Uh oh!

github-actions Bot commented Nov 28, 2025

Uh oh!

github-actions Bot commented Dec 1, 2025

Uh oh!

github-actions Bot commented Dec 1, 2025

Uh oh!

github-actions Bot commented Dec 3, 2025

Uh oh!

xiaojiey commented Dec 3, 2025

Uh oh!

xiaojiey commented Dec 3, 2025

Uh oh!

xiaojiey commented Dec 3, 2025

Uh oh!

xiaojiey commented Dec 5, 2025

Uh oh!

github-actions Bot commented Dec 9, 2025

Uh oh!

github-actions Bot commented Mar 4, 2026

Uh oh!

github-actions Bot commented Mar 17, 2026

Uh oh!

github-actions Bot commented Mar 17, 2026

Uh oh!

openshift-ci Bot commented Mar 17, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

openshift-ci Bot commented Apr 2, 2026

Uh oh!

taimurhafeez commented Apr 22, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

xiaojiey commented Nov 28, 2025 •

edited

Loading

openshift-ci Bot commented Mar 17, 2026 •

edited

Loading