fix(scripts): standardize timestamp in SecurityHelpers.psm1 to use Get-StandardTimestamp#1284
fix(scripts): standardize timestamp in SecurityHelpers.psm1 to use Get-StandardTimestamp#1284chaosdinosaur wants to merge 3 commits intomainfrom
Conversation
…t-StandardTimestamp Replace all three Get-Date -Format "yyyy-MM-dd HH:mm:ss" instances with Get-StandardTimestamp from CIHelpers.psm1 for consistent ISO 8601 UTC timestamps. Update Pester test assertions for the new format. Fixes #1000
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #1284 +/- ##
==========================================
- Coverage 87.72% 87.71% -0.02%
==========================================
Files 61 61
Lines 9320 9320
==========================================
- Hits 8176 8175 -1
- Misses 1144 1145 +1
Flags with carried forward coverage won't be shown. Click here to find out more.
🚀 New features to boost your workflow:
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Review Overview
This PR correctly addresses issue #1000 by replacing all three timezone-ambiguous Get-Date -Format 'yyyy-MM-dd HH:mm:ss' calls in SecurityHelpers.psm1 with Get-StandardTimestamp, and updating the corresponding Pester assertions to expect ISO 8601 UTC format. The implementation is clean, minimal, and well-scoped.
One inline suggestion is noted; no blocking issues were found.
Issue Alignment ✅
The changes precisely address all requirements from issue #1000:
- All three
Get-Dateusages replaced withGet-StandardTimestamp(lines 76, 179, 231 ofSecurityHelpers.psm1) CIHelpers.psm1import was already present — no new import needed, correctly noted in the PR description- All three corresponding Pester assertions updated to the new ISO 8601 UTC format
- No scope creep detected
PR Template Compliance ✅
- Description is clear and detailed, enumerating each of the three replaced call sites
Fixes #1000issue reference is present and valid- Checked type-of-change boxes (
Bug fix,Security configuration,Script/automation) accurately reflect the changed files - Testing section documents all verification steps including lint and test pass results
- All required checklist items are checked
Coding Standards ⚠️
Pre-existing (not introduced by this PR): SecurityHelpers.Tests.ps1 has the copyright header at lines 1–3 with #Requires -Modules Pester at line 5. Per pester-testing.instructions.md, the #Requires -Modules Pester directive must come before the copyright header. This convention violation pre-dates this PR and is out of scope here, but should be corrected in a follow-up.
Code Quality 💡
One inline suggestion filed on SecurityHelpers.Tests.ps1 line 241:
The Write-SecurityReport JSON timestamp assertion uses .*Z$ (any characters before Z), while the other two updated assertions — for Write-SecurityLog output and New-SecurityIssue.Timestamp — both use \.\d+Z$ to explicitly match the fractional-seconds component. Aligning all three assertions improves test precision and prevents false positives on malformed but Z-terminated strings.
No other quality concerns found. The three replacements in SecurityHelpers.psm1 are consistent and idiomatic. The ConvertTo-Json / ConvertFrom-Json round-trip in the JSON report test, and the use of .ToString('o') to recover a comparable string from the deserialized DateTime, are both correct for PowerShell 7.
Action Items
- Optional (suggested): Tighten the
Write-SecurityReportJSON timestamp regex from.*Z$to\.\d+Z$— see inline comment on line 241 ofSecurityHelpers.Tests.ps1 - Follow-up (out of scope for this PR): Correct the
#Requires -Modules Pesterheader ordering inSecurityHelpers.Tests.ps1perpester-testing.instructions.md
WilliamBerryiii
left a comment
WilliamBerryiii
left a comment
There was a problem hiding this comment.
Approved, but please address the regex issue from GH-actions bot.
Remove .ToString('o') call on ConvertFrom-Json output (no-op on string
values) and tighten regex from .*Z to \.\d+Z to match the pattern used
by other timestamp assertions in the same file (lines 20 and 146).
3 participants
Pull Request
Description
Replaced all three instances of
Get-Date -Format 'yyyy-MM-dd HH:mm:ss'(timezone-ambiguous timestamps) inSecurityHelpers.psm1withGet-StandardTimestampfromCIHelpers.psm1:Write-SecurityLog(line 76): Log entry timestamp in console output.New-SecurityIssue(line 179):Timestampfield on security issue objects.Write-SecurityReport(line 231):Timestampfield in JSON report output.CIHelpers.psm1was already imported at line 13, so no additional import was needed. Updated three Pester test assertions to match the new ISO 8601 UTC format.Related Issue(s)
Fixes #1000
Type of Change
Select all that apply:
Code & Documentation:
Infrastructure & Configuration:
AI Artifacts:
prompt-builderagent and addressed all feedback.github/instructions/*.instructions.md).github/prompts/*.prompt.md).github/agents/*.agent.md).github/skills/*/SKILL.md)Other:
.ps1,.sh,.py)Testing
Get-Date -Format 'yyyy-MM-dd HH:mm:ss'replaced withGet-StandardTimestamp.npm run lint:pspassed.npm run test:pspassed (81 tests for this file).Checklist
Required Checks
Required Automated Checks
The following validation commands must pass before merging:
npm run lint:mdnpm run spell-checknpm run lint:frontmatternpm run validate:skillsnpm run lint:md-linksnpm run lint:psnpm run plugin:generateSecurity Considerations
Additional Notes
This is part of the timestamp standardization series (issues #994-#1002). The prerequisite
Get-StandardTimestampfunction was merged in #993.CIHelpers.psm1was already imported by this module, so the changes are direct expression swaps with no import changes required.Note: the old
yyyy-MM-dd HH:mm:ssformat had no timezone indicator, making it impossible to determine UTC time. The new format includes explicitZsuffix for UTC.