docs(security): record mirror dry run local validation

This commit is contained in:
Your Name
2026-05-18 08:52:21 +08:00
parent 661fcc36c6
commit 53190e640f
8 changed files with 124 additions and 4 deletions

View File

@@ -114,6 +114,16 @@ def validate(root: Path) -> None:
assert_false("dry_run.payloads_ingested", dry_run_summary["payloads_ingested"])
assert_contains("dry_run_steps", dry_run_step_ids, "CHECK_PROGRESS_GUARD")
local_validation = dry_run["latest_local_validation"]
assert_equal("dry_run.latest_local_validation.status", local_validation["status"], "repo_snapshot_guard_pass")
assert_equal("dry_run.latest_local_validation.scope", local_validation["scope"], "repo_snapshot_only")
assert_equal("dry_run.latest_local_validation.result", local_validation["result"], "SECURITY_MIRROR_PROGRESS_GUARD_OK")
assert_contains("dry_run.latest_local_validation.validated_steps", local_validation["validated_steps"], "CHECK_PROGRESS_GUARD")
assert_false("dry_run.latest_local_validation.runtime_actions_executed", local_validation["runtime_actions_executed"])
assert_false("dry_run.latest_local_validation.payloads_ingested", local_validation["payloads_ingested"])
assert_false("dry_run.latest_local_validation.production_ingestion_enabled", local_validation["production_ingestion_enabled"])
assert_true("dry_run.latest_local_validation.not_authorization", local_validation["not_authorization"])
forbidden_actions = set(rollup["forbidden_actions"]) | set(acceptance["forbidden_actions"])
for action in [
"start_kali_scan",