test: detail audit surface summary

2026-05-18 20:04:45 +00:00 · 2026-05-12 18:54:48 +01:00
parent 3d70d037aa
commit eecbc596b3
1 changed files with 10 additions and 1 deletions
--- a/src/security/audit-summary.test.ts
+++ b/src/security/audit-summary.test.ts
@@ -26,6 +26,15 @@ describe("security audit attack surface summary", () => {
    const findings = collectAttackSurfaceSummaryFindings(cfg);
    const summary = requireAttackSurfaceSummary(findings);

-    expect(summary.detail).toContain("trust model: personal assistant");
+    expect(summary.detail).toBe(
+      [
+        "groups: open=1, allowlist=1",
+        "tools.elevated: enabled",
+        "hooks.webhooks: enabled",
+        "hooks.internal: disabled",
+        "browser control: enabled",
+        "trust model: personal assistant (one trusted operator boundary), not hostile multi-tenant on one shared gateway",
+      ].join("\n"),
+    );
  });
 });