Skip to content

Improve scanner credentialed coverage gates#1420

Open
MAUROCERON wants to merge 1 commit into
UnitOneAI:mainfrom
MAUROCERON:improve/scanner-credential-coverage-1419
Open

Improve scanner credentialed coverage gates#1420
MAUROCERON wants to merge 1 commit into
UnitOneAI:mainfrom
MAUROCERON:improve/scanner-credential-coverage-1419

Conversation

@MAUROCERON
Copy link
Copy Markdown

@MAUROCERON MAUROCERON commented Jun 6, 2026

Implements #1419.

Summary

  • Adds a credentialed scan coverage evidence gate before trusting completed scan or empty result sets.
  • Adds a coverage matrix for asset class, scanner/engine, credential source, auth result, local inventory proof, failed/not-attempted assets, coverage decision, and retest owner.
  • Adds edge-case fixtures for credential failures, auth success without package inventory, mixed asset-class coverage, stale/offline agents, false-positive suppression before credentialed retest, and full credentialed coverage.

Validation

  • Checked Markdown fence balance for the updated skill and new fixture.
  • Verified required markers: Credentialed Scan Coverage Evidence Gate, Credentialed Scan Coverage Matrix, Authentication result, Scanner-specific proof, Local inventory proof, Coverage decision, Not Evaluable.
  • Verified Tenable, Qualys, and Rapid7 reference URLs return HTTP 200.

Payment details can be provided privately after maintainer acceptance.

@MAUROCERON MAUROCERON mentioned this pull request Jun 6, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@MAUROCERON