# This workflow uses actions that are not certified by GitHub. They are provided
# by a third-party and are governed by separate terms of service, privacy
# policy, and support documentation.

name: Scorecard supply-chain security
on:
  # For Branch-Protection check. Only the default branch is supported. See
  # https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
  branch_protection_rule:

      client
        .newBuilder()
        .addNetworkInterceptor(
          Interceptor { chain: Interceptor.Chain? ->
            val request =
              chain!!
                .request()
                .newBuilder()
                .header("Host", "privateobject.com")
                .build()
            chain.proceed(request)
          },
        ).build()
    server.enqueue(MockResponse())

                HttpServletRequest req = (HttpServletRequest) request;
                HttpServletResponse resp = (HttpServletResponse) response;
                NtlmPasswordAuthentication ntlm = negotiate(req, resp, true);
                if (ntlm == null) {
                    chain.doFilter(request, response);
                }
            }

  @Nullable ValueReference<K, V> getValueReference();

  /** Sets the value reference for this entry. */
  void setValueReference(ValueReference<K, V> valueReference);

  /** Returns the next entry in the chain. */
  @Nullable ReferenceEntry<K, V> getNext();

  /** Returns the entry's hash. */
  int getHash();

  /** Returns the key for this entry. */
  @Nullable K getKey();

  /*

    private byte[] blob = null;

    /**
     * Constructs a session setup AndX response.
     *
     * @param config the configuration to use
     * @param andx the next command in the AndX chain, or null
     */
    public SmbComSessionSetupAndXResponse(final Configuration config, final ServerMessageBlock andx) {
        super(config, andx);
    }

    /**

        RequestTrace level2 = new RequestTrace("level2", level1, "level2-data");
        RequestTrace level3 = new RequestTrace(level2, "level3-data");

        // Verify the chain
        assertNull(root.parent());
        assertEquals(root, level1.parent());
        assertEquals(level1, level2.parent());
        assertEquals(level2, level3.parent());

        // Verify context inheritance

# limitations under the License.
# ==============================================================================
# This script uploads all staged artifacts from all previous builds in the same
# job chain to GCS and PyPI.
source "${BASH_SOURCE%/*}/utilities/setup.sh"

# Calculate the version number for choosing the final directory name. This adds
# "-devYYYYMMDD" to the end of the version string for nightly builds.

        verify(mockRequest, times(1)).isCancel();
    }

    @Test
    void testGetNext() {
        // Test case for getNext method
        Request nextRequest = mock(Request.class); // Mock a chained request
        when(mockRequest.getNext()).thenReturn(nextRequest);

        Request actualNextRequest = mockRequest.getNext();

        corsHandlerFactory.setHandler(handler);

        corsFilter.doFilter(mockRequest, mockResponse, mockFilterChain);

        assertFalse(mockFilterChain.wasDoFilterCalled()); // Chain should not continue for OPTIONS
        assertTrue(corsHandlerFactory.wasGetCalled());
        assertTrue(handler.wasProcessCalled());
        assertEquals(origin, handler.getLastOrigin());

 *                of the request. May be null if no specific context is needed.
 * @param parent The parent request trace that led to this request, establishing the chain of nested
 *               operations. May be null for top-level requests.
 * @param data Additional data associated with this request trace, typically containing the actual request