)]}'
{
  "commit": "b2cce440a2547a77061fcc5d659999b5f20a055b",
  "tree": "6bdb5bab24313ef767e28485ca5452cd794c03db",
  "parents": [
    "07701083cf6984de90d83a3a6c826ad71c7b2f70"
  ],
  "author": {
    "name": "Robert Lazarski",
    "email": "robertlazarski@gmail.com",
    "time": "Wed Jun 10 08:06:10 2026 -1000"
  },
  "committer": {
    "name": "Robert Lazarski",
    "email": "robertlazarski@gmail.com",
    "time": "Wed Jun 10 08:06:10 2026 -1000"
  },
  "message": "RAMPART-44 / RAMPART-252: add a dedicated algorithm-downgrade test\n\nFollow-up to the Gemini review: add a focused, deterministic test for the new\ninbound algorithm-suite enforcement, rather than relying only on the incidental\ncoverage from RampartTest case 34.\n\nPolicyAssertionsTest.testAlgorithmSuiteDowngradeRejected builds a signed request\nwith a Basic128 (SHA-1) policy, then validates it as the server against a\nBasic128Sha256 (SHA-256) policy and asserts the message is rejected - a peer must\nnot be able to downgrade the digest algorithm below what the policy requires.\n\nConfirmed the test guards the fix: with applyAlgorithmSuite disabled the SHA-1\nsignature verifies and the message is accepted, failing the test. Adds the\nrampart-asymm-binding-1-sha256.xml policy (a Basic128Sha256 copy of\nrampart-asymm-binding-1.xml). Verified with a full clean -Papache-release verify\nacross all modules including the nine policy samples on JDK 25.\n\nCo-Authored-By: Claude Opus 4.8 (1M context) \u003cnoreply@anthropic.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "9ea4c748424656da726ce5b401c28b5c0f6d7bfc",
      "old_mode": 33188,
      "old_path": "modules/rampart-tests/src/test/java/org/apache/rampart/PolicyAssertionsTest.java",
      "new_id": "ae7fcfd33124ecc34a322b3a9c38a88694afdcdd",
      "new_mode": 33188,
      "new_path": "modules/rampart-tests/src/test/java/org/apache/rampart/PolicyAssertionsTest.java"
    },
    {
      "type": "add",
      "old_id": "0000000000000000000000000000000000000000",
      "old_mode": 0,
      "old_path": "/dev/null",
      "new_id": "d0fc48ecbb821bcb9d5c26b4876bb1ab14fa35d8",
      "new_mode": 33188,
      "new_path": "modules/rampart-tests/test-resources/policy/rampart-asymm-binding-1-sha256.xml"
    }
  ]
}