chore: update policy to include more checks and update expected vsa payload

Trong Nhan Mai · Trong Nhan Mai · commit b1bc20c41fea · 2024-04-19T11:15:10.000+10:00
diff --git a/tests/policy_engine/resources/policies/example-maven-project/policy.dl b/tests/policy_engine/resources/policies/example-maven-project/policy.dl
@@ -4,6 +4,9 @@
 #include "prelude.dl"
 
 Policy("gh_witness_provenance_policy", component_id, "Policy for github Maven project with witness provenances") :-
+    check_passed(component_id, "mcn_build_service_1"),
+    check_passed(component_id, "mcn_build_script_1"),
+    check_passed(component_id, "mcn_provenance_available_1"),
     check_passed(component_id, "mcn_provenance_expectation_1").
 
 apply_policy_to("gh_witness_provenance_policy", component_id) :-
diff --git a/tests/vsa/integration/local_witness_example-maven-project/vsa_payload.json b/tests/vsa/integration/local_witness_example-maven-project/vsa_payload.json
@@ -16,10 +16,10 @@
                 "macaron": "0.9.0"
             }
         },
-        "timeVerified": "2024-04-16T01:01:54.925488+00:00",
+        "timeVerified": "2024-04-19T00:42:58.916316+00:00",
         "resourceUri": "pkg:maven/io.github.behnazh-w.demo/example-maven-app@1.0-SNAPSHOT",
         "policy": {
-            "content": "/* Copyright (c) 2024 - 2024, Oracle and/or its affiliates. All rights reserved. */\n/* Licensed under the Universal Permissive License v 1.0 as shown at https://oss.oracle.com/licenses/upl/. */\n\n#include \"prelude.dl\"\n\nPolicy(\"gh_witness_provenance_policy\", component_id, \"Policy for github Maven project with witness provenances\") :-\n    check_passed(component_id, \"mcn_provenance_expectation_1\").\n\napply_policy_to(\"gh_witness_provenance_policy\", component_id) :-\n    is_repo(\n      _,  // repo_id\n      \"github.com/behnazh-w/example-maven-app\",  // http URL to the repo but without the \"http://\"\n      component_id\n    ).\n"
+            "content": "/* Copyright (c) 2024 - 2024, Oracle and/or its affiliates. All rights reserved. */\n/* Licensed under the Universal Permissive License v 1.0 as shown at https://oss.oracle.com/licenses/upl/. */\n\n#include \"prelude.dl\"\n\nPolicy(\"gh_witness_provenance_policy\", component_id, \"Policy for github Maven project with witness provenances\") :-\n    check_passed(component_id, \"mcn_build_service_1\"),\n    check_passed(component_id, \"mcn_build_script_1\"),\n    check_passed(component_id, \"mcn_provenance_available_1\"),\n    check_passed(component_id, \"mcn_provenance_expectation_1\").\n\napply_policy_to(\"gh_witness_provenance_policy\", component_id) :-\n    is_repo(\n      _,  // repo_id\n      \"github.com/behnazh-w/example-maven-app\",  // http URL to the repo but without the \"http://\"\n      component_id\n    ).\n"
         },
         "verificationResult": "PASSED",
         "verifiedLevels": []
