Send tests results to Sheet (#6873)

* Send tests results to Sheet * Save tests from Windows tests + do not fail if junit file not found * Change package name * Remove cleanup old entries (keeping implementation) * Add job number
2025-10-19 03:06:19 +03:00 · 2023-06-16 14:34:47 +02:00
parent 803718a655
commit cd9cc55c26
1105 changed files with 443697 additions and 13 deletions
--- a/.ibm/pipelines/functions.sh
+++ b/.ibm/pipelines/functions.sh
@@ -70,3 +70,23 @@ skip() {
    echo "  - $change not in $SKIP_IF_ONLY"
    return 0
 }
 save_results() {
    (        
        cd .ibm/tools/tests-results
        echo -n $RESULTS_SERVICE_ACCOUNT > sa.json
        JUNIT="$1"
        LOGFILE="$2"
        NAME="$3"
        JOB="$4"
        BASE_URL="https://s3.${IBM_REGION}.cloud-object-storage.appdomain.cloud/${IBM_BUCKET}"
        GOOGLE_APPLICATION_CREDENTIALS=$PWD/sa.json go run main.go \
            --sheetId "${RESULTS_SHEET_ID}" \
            --junit "${JUNIT}" \
            --pr "${GIT_PR_NUMBER}" \
            --job "${JOB}" \
            --test "${NAME}" \
            --logfile "${BASE_URL}/${LOGFILE}.txt"
    )
 }
--- a/.ibm/pipelines/kubernetes-docs-tests.sh
+++ b/.ibm/pipelines/kubernetes-docs-tests.sh
@@ -1,6 +1,7 @@
 #!/bin/bash
 LOGFILE="pr-${GIT_PR_NUMBER}-kubernetes-docs-tests-${BUILD_NUMBER}"
 TEST_NAME="Kubernetes Docs Tests"
 source .ibm/pipelines/functions.sh
@@ -17,6 +18,7 @@ cleanup_namespaces
 RESULT=${PIPESTATUS[0]}
-save_logs "${LOGFILE}" "Kubernetes Docs Tests" ${RESULT}
+save_logs "${LOGFILE}" "${TEST_NAME}" ${RESULT}
 save_results "${PWD}/test-doc-automation.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 exit ${RESULT}
--- a/.ibm/pipelines/kubernetes-tests.sh
+++ b/.ibm/pipelines/kubernetes-tests.sh
@@ -1,6 +1,7 @@
 #!/bin/bash
 LOGFILE="pr-${GIT_PR_NUMBER}-kubernetes-tests-${BUILD_NUMBER}"
 TEST_NAME="Kubernetes Tests"
 source .ibm/pipelines/functions.sh
@@ -22,6 +23,6 @@ export SKIP_USER_LOGIN_TESTS=true
 RESULT=${PIPESTATUS[0]}
-save_logs "${LOGFILE}" "Kubernetes Tests" ${RESULT}
+save_logs "${LOGFILE}" "${TEST_NAME}" ${RESULT}
-
+save_results "${PWD}/test-integration.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 exit ${RESULT}
--- a/.ibm/pipelines/nocluster-tests.sh
+++ b/.ibm/pipelines/nocluster-tests.sh
@@ -1,6 +1,7 @@
 #!/bin/bash
 LOGFILE="pr-${GIT_PR_NUMBER}-nocluster-tests-${BUILD_NUMBER}"
 TEST_NAME="NoCluster Tests"
 source .ibm/pipelines/functions.sh
@@ -18,6 +19,7 @@ ibmcloud target -r "${IBM_REGION}"
 RESULT=${PIPESTATUS[0]}
-save_logs "${LOGFILE}" "NoCluster Tests" ${RESULT}
+save_logs "${LOGFILE}" "${TEST_NAME}" ${RESULT}
 save_results "${PWD}/test-integration-nc.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 exit ${RESULT}
--- a/.ibm/pipelines/openshift-tests.sh
+++ b/.ibm/pipelines/openshift-tests.sh
@@ -1,6 +1,7 @@
 #!/bin/bash
 LOGFILE="pr-${GIT_PR_NUMBER}-openshift-tests-${BUILD_NUMBER}"
 TEST_NAME="OpenShift Tests"
 source .ibm/pipelines/functions.sh
@@ -24,6 +25,8 @@ cleanup_namespaces
 RESULT=${PIPESTATUS[0]}
-save_logs "${LOGFILE}" "OpenShift Tests" ${RESULT}
+save_logs "${LOGFILE}" "${TEST_NAME}" ${RESULT}
 save_results "${PWD}/test-integration.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 save_results "${PWD}/test-e2e.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 exit ${RESULT}
--- a/.ibm/pipelines/openshift-unauth-tests.sh
+++ b/.ibm/pipelines/openshift-unauth-tests.sh
@@ -1,6 +1,7 @@
 #!/bin/bash
 LOGFILE="pr-${GIT_PR_NUMBER}-openshift-unauth-tests-${BUILD_NUMBER}"
 TEST_NAME="OpenShift Unauthenticated Tests"
 source .ibm/pipelines/functions.sh
@@ -18,6 +19,7 @@ ibmcloud oc cluster config -c "${CLUSTER_ID}"
 RESULT=${PIPESTATUS[0]}
-save_logs "${LOGFILE}" "OpenShift Unauthenticated Tests" ${RESULT}
+save_logs "${LOGFILE}" "${TEST_NAME}" ${RESULT}
 save_results "${PWD}/test-integration-unauth.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 exit ${RESULT}
--- a/.ibm/pipelines/windows-test-script.ps1
+++ b/.ibm/pipelines/windows-test-script.ps1
@@ -82,11 +82,19 @@ function Run-Test {
    make install 
    Shout "Running test"
    make test-integration-no-cluster | tee -a  C:\Users\Administrator.ANSIBLE-TEST-VS\AppData\Local\Temp\$LOGFILE
-    Check-ExitCode $LASTEXITCODE
+    $EXITCODE=$LASTEXITCODE
    Copy-Item test-integration-nc.xml -Destination C:/Users/Administrator.ANSIBLE-TEST-VS/AppData/Local/Temp
    Check-ExitCode $EXITCODE
    make test-integration-cluster    | tee -a  C:\Users\Administrator.ANSIBLE-TEST-VS\AppData\Local\Temp\$LOGFILE
-    Check-ExitCode $LASTEXITCODE
+    $EXITCODE=$LASTEXITCODE
    Copy-Item test-integration.xml -Destination C:/Users/Administrator.ANSIBLE-TEST-VS/AppData/Local/Temp
    Check-ExitCode $EXITCODE
    make test-e2e                    | tee -a  C:\Users\Administrator.ANSIBLE-TEST-VS\AppData\Local\Temp\$LOGFILE
-    Check-ExitCode $LASTEXITCODE
+    $EXITCODE=$LASTEXITCODE
    Copy-Item test-e2e.xml -Destination C:/Users/Administrator.ANSIBLE-TEST-VS/AppData/Local/Temp
    Check-ExitCode $EXITCODE
    Pop-Location 
    Shout "Test Finished"
--- a/.ibm/pipelines/windows-test.sh
+++ b/.ibm/pipelines/windows-test.sh
@@ -5,13 +5,13 @@
 # using the IBM DevOps Services.
 #
 set -x
 source .ibm/pipelines/functions.sh
 skip_if_only
 LOGFILE="pr-${GIT_PR_NUMBER}-windows-tests-${BUILD_NUMBER}"
 TEST_NAME="Windows Tests (OCP)"
 export REPO=${REPO:-"https://github.com/redhat-developer/odo"}
 #copy test script inside /tmp/
 sshpass -p $WINDOWS_PASSWORD scp -o StrictHostKeyChecking=no ./.ibm/pipelines/windows-test-script.ps1 Administrator@$WINDOWS_IP:/tmp/windows-test-script.ps1
@@ -25,7 +25,15 @@ echo "RESULT: $RESULT"
 # save log
 ibmcloud login --apikey "${API_KEY}" -r "${IBM_REGION}"
 sshpass -p $WINDOWS_PASSWORD scp -o StrictHostKeyChecking=no Administrator@$WINDOWS_IP:~/AppData/Local/Temp/${LOGFILE} /tmp/${LOGFILE}
-save_logs "${LOGFILE}" "Windows Tests (OCP)" $RESULT
+save_logs "${LOGFILE}" "${TEST_NAME}" $RESULT
 # save results
 sshpass -p $WINDOWS_PASSWORD scp -o StrictHostKeyChecking=no Administrator@$WINDOWS_IP:~/AppData/Local/Temp/test-integration-nc.xml /tmp/
 sshpass -p $WINDOWS_PASSWORD scp -o StrictHostKeyChecking=no Administrator@$WINDOWS_IP:~/AppData/Local/Temp/test-integration.xml /tmp/
 sshpass -p $WINDOWS_PASSWORD scp -o StrictHostKeyChecking=no Administrator@$WINDOWS_IP:~/AppData/Local/Temp/test-e2e.xml /tmp/
 save_results "/tmp/test-integration-nc.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 save_results "/tmp/test-integration.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 save_results "/tmp/test-e2e.xml" "${LOGFILE}" "${TEST_NAME}" "${BUILD_NUMBER}"
 # cleanup
 sshpass -p $WINDOWS_PASSWORD ssh Administrator@$WINDOWS_IP -o StrictHostKeyChecking=no rm -rf /tmp/windows-test-script.ps1
--- a/.ibm/tools/tests-results/go.mod
+++ b/.ibm/tools/tests-results/go.mod
@@ -0,0 +1,29 @@
 module github.com/redhat-developer/odo/junit-collector
 go 1.19
 require (
 	github.com/joshdk/go-junit v1.0.0
 	golang.org/x/oauth2 v0.8.0
 	google.golang.org/api v0.125.0
 )
 require (
 	cloud.google.com/go/compute v1.19.3 // indirect
 	cloud.google.com/go/compute/metadata v0.2.3 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.3 // indirect
 	github.com/google/s2a-go v0.1.4 // indirect
 	github.com/google/uuid v1.3.0 // indirect
 	github.com/googleapis/enterprise-certificate-proxy v0.2.3 // indirect
 	github.com/googleapis/gax-go/v2 v2.10.0 // indirect
 	go.opencensus.io v0.24.0 // indirect
 	golang.org/x/crypto v0.9.0 // indirect
 	golang.org/x/net v0.10.0 // indirect
 	golang.org/x/sys v0.8.0 // indirect
 	golang.org/x/text v0.9.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc // indirect
 	google.golang.org/grpc v1.55.0 // indirect
 	google.golang.org/protobuf v1.30.0 // indirect
 )
--- a/.ibm/tools/tests-results/go.sum
+++ b/.ibm/tools/tests-results/go.sum
@@ -0,0 +1,199 @@
 cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go/compute v1.19.3 h1:DcTwsFgGev/wV5+q8o2fzgcHOaac+DKGC91ZlvpsQds=
 cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
 cloud.google.com/go/compute/metadata v0.2.3 h1:mg4jlk7mCAj6xXp9UJ4fjI9VUI5rubuGBW5aJ7UnBMY=
 cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da h1:oI5xCqsCo564l8iNU+DwB5epxmsaqB+rhGL0m5jtYqE=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
 github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
 github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
 github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
 github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
 github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
 github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8=
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
 github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
 github.com/google/s2a-go v0.1.4 h1:1kZ/sQM3srePvKs3tXAvQzo66XfcReoqFpIpIccE7Oc=
 github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
 github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3 h1:yk9/cqRKtT9wXZSsRH9aurXEpJX+U6FLtpYTdC3R06k=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/gax-go/v2 v2.10.0 h1:ebSgKfMxynOdxw8QQuFOKMgomqeLGPqNLQox2bo42zg=
 github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/joshdk/go-junit v1.0.0 h1:S86cUKIdwBHWwA6xCmFlf3RTLfVXYQfvanM5Uh+K6GE=
 github.com/joshdk/go-junit v1.0.0/go.mod h1:TiiV0PqkaNfFXjEiyjWM3XXrhVyCa1K4Zfga6W52ung=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
 go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.9.0 h1:LF6fAI+IutBocDJ2OT0Q1g8plpYljMZ4+lty+dsqw3g=
 golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
 golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.10.0 h1:X2//UzNDwYmtCLn7To6G58Wr6f5ahEAQgKNzv9Y951M=
 golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.8.0 h1:6dkIjl3j3LtZ/O3sTgZTMsLKSftL/B8Zgq4huOIIUu8=
 golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.2.0 h1:PUR+T4wwASmuSTYdKjYHI5TD22Wy5ogLU5qZCOLxBrI=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0 h1:EBmGv8NaZBZTWvrbjNoL6HVt+IVy3QDQpJs7VRIw3tU=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/text v0.9.0 h1:2sjJmO8cDvYveuX97RDLsxlyUxLl+GHoLxBiRdHllBE=
 golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.125.0 h1:7xGvEY4fyWbhWMHf3R2/4w7L4fXyfpRGE9g6lp8+DCk=
 google.golang.org/api v0.125.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
 google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
 google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc h1:8DyZCyvI8mE1IdLy/60bS+52xfymkE72wv1asokgtao=
 google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc h1:kVKPf/IiYSBWEWtkIn6wZXwWGCnLKcC8oWfZvXjsGnM=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc h1:XSJ8Vk1SWuNr8S18z1NZSziL0CPIXLCCMDOEFtHBOFc=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
 google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
 google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
 google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
 google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
 google.golang.org/grpc v1.55.0 h1:3Oj82/tFSCeUrRTg/5E/7d/W5A1tj6Ky1ABAuZuv5ag=
 google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
 google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
 google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
 google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.30.0 h1:kPPoIgf3TsEvrm0PFe15JQ+570QVxYzEvvHqChK+cng=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
--- a/.ibm/tools/tests-results/main.go
+++ b/.ibm/tools/tests-results/main.go
@@ -0,0 +1,101 @@
 package main
 import (
 	"context"
 	"errors"
 	"flag"
 	"fmt"
 	"log"
 	"os"
 	"time"
 	"github.com/joshdk/go-junit"
 	"github.com/redhat-developer/odo/junit-collector/pkg/db"
 )
 func usage(msg string) {
 	fmt.Printf("%s\n\nUsage: %s --sheetId <spreadsheetId> --junit <junit-file> --pr <pr-number> --test <test title> --logfile <logfile>\n", msg, os.Args[0])
 	os.Exit(1)
 }
 /*
 GOOGLE_APPLICATION_CREDENTIALS must point to an existing GCP JSON Service account file.
 The service account does not need any extra role.
 The service account must have an Editor access to the Sheet (use the Share button on the Sheet UI to add this permission)
 */
 func main() {
 	var (
 		fSheetId   = flag.String("sheetId", "", "spreadsheetId")
 		fJunitFile = flag.String("junit", "", "junit file")
 		fPrNumber  = flag.String("pr", "", "PR number")
 		fJobNumber = flag.String("job", "", "Job number")
 		fTestTile  = flag.String("test", "", "Test title")
 		fLogFile   = flag.String("logfile", "", "Log file including base")
 	)
 	flag.Parse()
 	if *fSheetId == "" {
 		usage("--sheetId is missing")
 	}
 	spreadsheetId := *fSheetId
 	if *fJunitFile == "" {
 		usage("--junit is missing")
 	}
 	junitFile := *fJunitFile
 	if *fPrNumber == "" {
 		usage("--pr is missing")
 	}
 	prNumber := *fPrNumber
 	if *fJobNumber == "" {
 		usage("--job is missing")
 	}
 	jobNumber := *fJobNumber
 	if *fTestTile == "" {
 		usage("--test is missing")
 	}
 	testTitle := *fTestTile
 	if *fLogFile == "" {
 		usage("--logfile is missing")
 	}
 	logFile := *fLogFile
 	ctx := context.Background()
 	suites, err := junit.IngestFile(junitFile)
 	if err != nil {
 		if errors.Is(err, os.ErrNotExist) {
 			fmt.Printf("junit file %s not found. Exiting\n", junitFile)
 			return
 		}
 		panic(err)
 	}
 	for _, suite := range suites {
 		for _, test := range suite.Tests {
 			if test.Error == nil {
 				continue
 			}
 			currentTime := time.Now()
 			data := []interface{}{
 				// Date must be set in this format, to be correctly comparable as strings
 				currentTime.Format("2006-01-02"),
 				test.Name,
 				test.Error.Error(),
 				prNumber,
 				testTitle,
 				logFile,
 				jobNumber,
 			}
 			err = db.SaveToSheet(ctx, spreadsheetId, data)
 			if err != nil {
 				log.Fatalf("Unable to add data to sheet: %v", err)
 			}
 		}
 	}
 }
--- a/.ibm/tools/tests-results/pkg/db/clean.go
+++ b/.ibm/tools/tests-results/pkg/db/clean.go
@@ -0,0 +1,52 @@
 package db
 import (
 	"context"
 	"fmt"
 	"google.golang.org/api/sheets/v4"
 )
 func Clean(ctx context.Context, sheetId string, beforeDate string) error {
 	srv, err := getService(ctx)
 	if err != nil {
 		return err
 	}
 	range_ := "Template!A2:A"
 	result, err := srv.Spreadsheets.Values.Get(sheetId, range_).Do()
 	if err != nil {
 		return err
 	}
 	var rowNumber int64 = 2
 	for _, row := range result.Values {
 		value := row[0].(string)
 		if value >= beforeDate {
 			if rowNumber > 2 {
 				fmt.Printf("Delete rows from 2 to %d\n", rowNumber-1)
 			}
 			break
 		}
 		rowNumber++
 	}
 	if rowNumber < 3 {
 		return nil
 	}
 	var requests []*sheets.Request
 	requests = append(requests, &sheets.Request{
 		DeleteDimension: &sheets.DeleteDimensionRequest{
 			Range: &sheets.DimensionRange{
 				Dimension:  "ROWS",
 				StartIndex: 1,             // 0-index, inclusive
 				EndIndex:   rowNumber - 1, // 0-index, exclusive
 			},
 		},
 	})
 	req := sheets.BatchUpdateSpreadsheetRequest{
 		Requests: requests,
 	}
 	_, err = srv.Spreadsheets.BatchUpdate(sheetId, &req).Do()
 	return err
 }
--- a/.ibm/tools/tests-results/pkg/db/client.go
+++ b/.ibm/tools/tests-results/pkg/db/client.go
@@ -0,0 +1,22 @@
 package db
 import (
 	"context"
 	"golang.org/x/oauth2/google"
 	"google.golang.org/api/option"
 	"google.golang.org/api/sheets/v4"
 )
 func getService(ctx context.Context) (*sheets.Service, error) {
 	client, err := google.DefaultClient(ctx, "https://www.googleapis.com/auth/spreadsheets")
 	if err != nil {
 		return nil, err
 	}
 	srv, err := sheets.NewService(ctx, option.WithHTTPClient(client))
 	if err != nil {
 		return nil, err
 	}
 	return srv, nil
 }
--- a/.ibm/tools/tests-results/pkg/db/save.go
+++ b/.ibm/tools/tests-results/pkg/db/save.go
@@ -0,0 +1,26 @@
 package db
 import (
 	"context"
 	"google.golang.org/api/sheets/v4"
 )
 func SaveToSheet(ctx context.Context, sheetId string, data []interface{}) error {
 	srv, err := getService(ctx)
 	if err != nil {
 		return err
 	}
 	readRange := "Template"
 	valueRange := sheets.ValueRange{
 		MajorDimension: "ROWS",
 		Range:          "Template",
 		Values: [][]interface{}{
 			data,
 		},
 	}
 	_, err = srv.Spreadsheets.Values.
 		Append(sheetId, readRange, &valueRange).
 		ValueInputOption("USER_ENTERED").Do()
 	return err
 }
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/LICENSE
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/LICENSE
@@ -0,0 +1,202 @@
                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/
   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
   1. Definitions.
      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.
      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.
      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.
      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.
      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.
      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.
      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).
      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.
      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."
      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.
   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.
   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.
   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:
      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and
      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and
      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and
      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.
      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.
   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.
   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.
   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.
   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.
   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.
   END OF TERMS AND CONDITIONS
   APPENDIX: How to apply the Apache License to your work.
      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!)  The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/internal/version.go
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/internal/version.go
@@ -0,0 +1,18 @@
 // Copyright 2022 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package internal
 // Version is the current tagged release of the library.
 const Version = "1.19.3"
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/CHANGES.md
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/CHANGES.md
@@ -0,0 +1,19 @@
 # Changes
 ## [0.2.3](https://github.com/googleapis/google-cloud-go/compare/compute/metadata/v0.2.2...compute/metadata/v0.2.3) (2022-12-15)
 ### Bug Fixes
 * **compute/metadata:** Switch DNS lookup to an absolute lookup ([119b410](https://github.com/googleapis/google-cloud-go/commit/119b41060c7895e45e48aee5621ad35607c4d021)), refs [#7165](https://github.com/googleapis/google-cloud-go/issues/7165)
 ## [0.2.2](https://github.com/googleapis/google-cloud-go/compare/compute/metadata/v0.2.1...compute/metadata/v0.2.2) (2022-12-01)
 ### Bug Fixes
 * **compute/metadata:** Set IdleConnTimeout for http.Client ([#7084](https://github.com/googleapis/google-cloud-go/issues/7084)) ([766516a](https://github.com/googleapis/google-cloud-go/commit/766516aaf3816bfb3159efeea65aa3d1d205a3e2)), refs [#5430](https://github.com/googleapis/google-cloud-go/issues/5430)
 ## [0.1.0] (2022-10-26)
 Initial release of metadata being it's own module.
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/LICENSE
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/LICENSE
@@ -0,0 +1,202 @@
                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/
   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
   1. Definitions.
      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.
      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.
      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.
      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.
      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.
      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.
      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).
      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.
      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."
      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.
   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.
   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.
   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:
      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and
      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and
      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and
      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.
      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.
   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.
   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.
   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.
   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.
   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.
   END OF TERMS AND CONDITIONS
   APPENDIX: How to apply the Apache License to your work.
      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!)  The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/README.md
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/README.md
@@ -0,0 +1,27 @@
 # Compute API
 [![Go Reference](https://pkg.go.dev/badge/cloud.google.com/go/compute.svg)](https://pkg.go.dev/cloud.google.com/go/compute/metadata)
 This is a utility library for communicating with Google Cloud metadata service
 on Google Cloud.
 ## Install
 ```bash
 go get cloud.google.com/go/compute/metadata
 ```
 ## Go Version Support
 See the [Go Versions Supported](https://github.com/googleapis/google-cloud-go#go-versions-supported)
 section in the root directory's README.
 ## Contributing
 Contributions are welcome. Please, see the [CONTRIBUTING](https://github.com/GoogleCloudPlatform/google-cloud-go/blob/main/CONTRIBUTING.md)
 document for details.
 Please note that this project is released with a Contributor Code of Conduct.
 By participating in this project you agree to abide by its terms. See
 [Contributor Code of Conduct](https://github.com/GoogleCloudPlatform/google-cloud-go/blob/main/CONTRIBUTING.md#contributor-code-of-conduct)
 for more information.
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/metadata.go
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/metadata.go
@@ -0,0 +1,543 @@
 // Copyright 2014 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Package metadata provides access to Google Compute Engine (GCE)
 // metadata and API service accounts.
 //
 // This package is a wrapper around the GCE metadata service,
 // as documented at https://cloud.google.com/compute/docs/metadata/overview.
 package metadata // import "cloud.google.com/go/compute/metadata"
 import (
 	"context"
 	"encoding/json"
 	"fmt"
 	"io/ioutil"
 	"net"
 	"net/http"
 	"net/url"
 	"os"
 	"runtime"
 	"strings"
 	"sync"
 	"time"
 )
 const (
 	// metadataIP is the documented metadata server IP address.
 	metadataIP = "169.254.169.254"
 	// metadataHostEnv is the environment variable specifying the
 	// GCE metadata hostname.  If empty, the default value of
 	// metadataIP ("169.254.169.254") is used instead.
 	// This is variable name is not defined by any spec, as far as
 	// I know; it was made up for the Go package.
 	metadataHostEnv = "GCE_METADATA_HOST"
 	userAgent = "gcloud-golang/0.1"
 )
 type cachedValue struct {
 	k    string
 	trim bool
 	mu   sync.Mutex
 	v    string
 }
 var (
 	projID  = &cachedValue{k: "project/project-id", trim: true}
 	projNum = &cachedValue{k: "project/numeric-project-id", trim: true}
 	instID  = &cachedValue{k: "instance/id", trim: true}
 )
 var defaultClient = &Client{hc: newDefaultHTTPClient()}
 func newDefaultHTTPClient() *http.Client {
 	return &http.Client{
 		Transport: &http.Transport{
 			Dial: (&net.Dialer{
 				Timeout:   2 * time.Second,
 				KeepAlive: 30 * time.Second,
 			}).Dial,
 			IdleConnTimeout: 60 * time.Second,
 		},
 		Timeout: 5 * time.Second,
 	}
 }
 // NotDefinedError is returned when requested metadata is not defined.
 //
 // The underlying string is the suffix after "/computeMetadata/v1/".
 //
 // This error is not returned if the value is defined to be the empty
 // string.
 type NotDefinedError string
 func (suffix NotDefinedError) Error() string {
 	return fmt.Sprintf("metadata: GCE metadata %q not defined", string(suffix))
 }
 func (c *cachedValue) get(cl *Client) (v string, err error) {
 	defer c.mu.Unlock()
 	c.mu.Lock()
 	if c.v != "" {
 		return c.v, nil
 	}
 	if c.trim {
 		v, err = cl.getTrimmed(c.k)
 	} else {
 		v, err = cl.Get(c.k)
 	}
 	if err == nil {
 		c.v = v
 	}
 	return
 }
 var (
 	onGCEOnce sync.Once
 	onGCE     bool
 )
 // OnGCE reports whether this process is running on Google Compute Engine.
 func OnGCE() bool {
 	onGCEOnce.Do(initOnGCE)
 	return onGCE
 }
 func initOnGCE() {
 	onGCE = testOnGCE()
 }
 func testOnGCE() bool {
 	// The user explicitly said they're on GCE, so trust them.
 	if os.Getenv(metadataHostEnv) != "" {
 		return true
 	}
 	ctx, cancel := context.WithCancel(context.Background())
 	defer cancel()
 	resc := make(chan bool, 2)
 	// Try two strategies in parallel.
 	// See https://github.com/googleapis/google-cloud-go/issues/194
 	go func() {
 		req, _ := http.NewRequest("GET", "http://"+metadataIP, nil)
 		req.Header.Set("User-Agent", userAgent)
 		res, err := newDefaultHTTPClient().Do(req.WithContext(ctx))
 		if err != nil {
 			resc <- false
 			return
 		}
 		defer res.Body.Close()
 		resc <- res.Header.Get("Metadata-Flavor") == "Google"
 	}()
 	go func() {
 		resolver := &net.Resolver{}
 		addrs, err := resolver.LookupHost(ctx, "metadata.google.internal.")
 		if err != nil || len(addrs) == 0 {
 			resc <- false
 			return
 		}
 		resc <- strsContains(addrs, metadataIP)
 	}()
 	tryHarder := systemInfoSuggestsGCE()
 	if tryHarder {
 		res := <-resc
 		if res {
 			// The first strategy succeeded, so let's use it.
 			return true
 		}
 		// Wait for either the DNS or metadata server probe to
 		// contradict the other one and say we are running on
 		// GCE. Give it a lot of time to do so, since the system
 		// info already suggests we're running on a GCE BIOS.
 		timer := time.NewTimer(5 * time.Second)
 		defer timer.Stop()
 		select {
 		case res = <-resc:
 			return res
 		case <-timer.C:
 			// Too slow. Who knows what this system is.
 			return false
 		}
 	}
 	// There's no hint from the system info that we're running on
 	// GCE, so use the first probe's result as truth, whether it's
 	// true or false. The goal here is to optimize for speed for
 	// users who are NOT running on GCE. We can't assume that
 	// either a DNS lookup or an HTTP request to a blackholed IP
 	// address is fast. Worst case this should return when the
 	// metaClient's Transport.ResponseHeaderTimeout or
 	// Transport.Dial.Timeout fires (in two seconds).
 	return <-resc
 }
 // systemInfoSuggestsGCE reports whether the local system (without
 // doing network requests) suggests that we're running on GCE. If this
 // returns true, testOnGCE tries a bit harder to reach its metadata
 // server.
 func systemInfoSuggestsGCE() bool {
 	if runtime.GOOS != "linux" {
 		// We don't have any non-Linux clues available, at least yet.
 		return false
 	}
 	slurp, _ := ioutil.ReadFile("/sys/class/dmi/id/product_name")
 	name := strings.TrimSpace(string(slurp))
 	return name == "Google" || name == "Google Compute Engine"
 }
 // Subscribe calls Client.Subscribe on the default client.
 func Subscribe(suffix string, fn func(v string, ok bool) error) error {
 	return defaultClient.Subscribe(suffix, fn)
 }
 // Get calls Client.Get on the default client.
 func Get(suffix string) (string, error) { return defaultClient.Get(suffix) }
 // ProjectID returns the current instance's project ID string.
 func ProjectID() (string, error) { return defaultClient.ProjectID() }
 // NumericProjectID returns the current instance's numeric project ID.
 func NumericProjectID() (string, error) { return defaultClient.NumericProjectID() }
 // InternalIP returns the instance's primary internal IP address.
 func InternalIP() (string, error) { return defaultClient.InternalIP() }
 // ExternalIP returns the instance's primary external (public) IP address.
 func ExternalIP() (string, error) { return defaultClient.ExternalIP() }
 // Email calls Client.Email on the default client.
 func Email(serviceAccount string) (string, error) { return defaultClient.Email(serviceAccount) }
 // Hostname returns the instance's hostname. This will be of the form
 // "<instanceID>.c.<projID>.internal".
 func Hostname() (string, error) { return defaultClient.Hostname() }
 // InstanceTags returns the list of user-defined instance tags,
 // assigned when initially creating a GCE instance.
 func InstanceTags() ([]string, error) { return defaultClient.InstanceTags() }
 // InstanceID returns the current VM's numeric instance ID.
 func InstanceID() (string, error) { return defaultClient.InstanceID() }
 // InstanceName returns the current VM's instance ID string.
 func InstanceName() (string, error) { return defaultClient.InstanceName() }
 // Zone returns the current VM's zone, such as "us-central1-b".
 func Zone() (string, error) { return defaultClient.Zone() }
 // InstanceAttributes calls Client.InstanceAttributes on the default client.
 func InstanceAttributes() ([]string, error) { return defaultClient.InstanceAttributes() }
 // ProjectAttributes calls Client.ProjectAttributes on the default client.
 func ProjectAttributes() ([]string, error) { return defaultClient.ProjectAttributes() }
 // InstanceAttributeValue calls Client.InstanceAttributeValue on the default client.
 func InstanceAttributeValue(attr string) (string, error) {
 	return defaultClient.InstanceAttributeValue(attr)
 }
 // ProjectAttributeValue calls Client.ProjectAttributeValue on the default client.
 func ProjectAttributeValue(attr string) (string, error) {
 	return defaultClient.ProjectAttributeValue(attr)
 }
 // Scopes calls Client.Scopes on the default client.
 func Scopes(serviceAccount string) ([]string, error) { return defaultClient.Scopes(serviceAccount) }
 func strsContains(ss []string, s string) bool {
 	for _, v := range ss {
 		if v == s {
 			return true
 		}
 	}
 	return false
 }
 // A Client provides metadata.
 type Client struct {
 	hc *http.Client
 }
 // NewClient returns a Client that can be used to fetch metadata.
 // Returns the client that uses the specified http.Client for HTTP requests.
 // If nil is specified, returns the default client.
 func NewClient(c *http.Client) *Client {
 	if c == nil {
 		return defaultClient
 	}
 	return &Client{hc: c}
 }
 // getETag returns a value from the metadata service as well as the associated ETag.
 // This func is otherwise equivalent to Get.
 func (c *Client) getETag(suffix string) (value, etag string, err error) {
 	ctx := context.TODO()
 	// Using a fixed IP makes it very difficult to spoof the metadata service in
 	// a container, which is an important use-case for local testing of cloud
 	// deployments. To enable spoofing of the metadata service, the environment
 	// variable GCE_METADATA_HOST is first inspected to decide where metadata
 	// requests shall go.
 	host := os.Getenv(metadataHostEnv)
 	if host == "" {
 		// Using 169.254.169.254 instead of "metadata" here because Go
 		// binaries built with the "netgo" tag and without cgo won't
 		// know the search suffix for "metadata" is
 		// ".google.internal", and this IP address is documented as
 		// being stable anyway.
 		host = metadataIP
 	}
 	suffix = strings.TrimLeft(suffix, "/")
 	u := "http://" + host + "/computeMetadata/v1/" + suffix
 	req, err := http.NewRequest("GET", u, nil)
 	if err != nil {
 		return "", "", err
 	}
 	req.Header.Set("Metadata-Flavor", "Google")
 	req.Header.Set("User-Agent", userAgent)
 	var res *http.Response
 	var reqErr error
 	retryer := newRetryer()
 	for {
 		res, reqErr = c.hc.Do(req)
 		var code int
 		if res != nil {
 			code = res.StatusCode
 		}
 		if delay, shouldRetry := retryer.Retry(code, reqErr); shouldRetry {
 			if err := sleep(ctx, delay); err != nil {
 				return "", "", err
 			}
 			continue
 		}
 		break
 	}
 	if reqErr != nil {
 		return "", "", reqErr
 	}
 	defer res.Body.Close()
 	if res.StatusCode == http.StatusNotFound {
 		return "", "", NotDefinedError(suffix)
 	}
 	all, err := ioutil.ReadAll(res.Body)
 	if err != nil {
 		return "", "", err
 	}
 	if res.StatusCode != 200 {
 		return "", "", &Error{Code: res.StatusCode, Message: string(all)}
 	}
 	return string(all), res.Header.Get("Etag"), nil
 }
 // Get returns a value from the metadata service.
 // The suffix is appended to "http://${GCE_METADATA_HOST}/computeMetadata/v1/".
 //
 // If the GCE_METADATA_HOST environment variable is not defined, a default of
 // 169.254.169.254 will be used instead.
 //
 // If the requested metadata is not defined, the returned error will
 // be of type NotDefinedError.
 func (c *Client) Get(suffix string) (string, error) {
 	val, _, err := c.getETag(suffix)
 	return val, err
 }
 func (c *Client) getTrimmed(suffix string) (s string, err error) {
 	s, err = c.Get(suffix)
 	s = strings.TrimSpace(s)
 	return
 }
 func (c *Client) lines(suffix string) ([]string, error) {
 	j, err := c.Get(suffix)
 	if err != nil {
 		return nil, err
 	}
 	s := strings.Split(strings.TrimSpace(j), "\n")
 	for i := range s {
 		s[i] = strings.TrimSpace(s[i])
 	}
 	return s, nil
 }
 // ProjectID returns the current instance's project ID string.
 func (c *Client) ProjectID() (string, error) { return projID.get(c) }
 // NumericProjectID returns the current instance's numeric project ID.
 func (c *Client) NumericProjectID() (string, error) { return projNum.get(c) }
 // InstanceID returns the current VM's numeric instance ID.
 func (c *Client) InstanceID() (string, error) { return instID.get(c) }
 // InternalIP returns the instance's primary internal IP address.
 func (c *Client) InternalIP() (string, error) {
 	return c.getTrimmed("instance/network-interfaces/0/ip")
 }
 // Email returns the email address associated with the service account.
 // The account may be empty or the string "default" to use the instance's
 // main account.
 func (c *Client) Email(serviceAccount string) (string, error) {
 	if serviceAccount == "" {
 		serviceAccount = "default"
 	}
 	return c.getTrimmed("instance/service-accounts/" + serviceAccount + "/email")
 }
 // ExternalIP returns the instance's primary external (public) IP address.
 func (c *Client) ExternalIP() (string, error) {
 	return c.getTrimmed("instance/network-interfaces/0/access-configs/0/external-ip")
 }
 // Hostname returns the instance's hostname. This will be of the form
 // "<instanceID>.c.<projID>.internal".
 func (c *Client) Hostname() (string, error) {
 	return c.getTrimmed("instance/hostname")
 }
 // InstanceTags returns the list of user-defined instance tags,
 // assigned when initially creating a GCE instance.
 func (c *Client) InstanceTags() ([]string, error) {
 	var s []string
 	j, err := c.Get("instance/tags")
 	if err != nil {
 		return nil, err
 	}
 	if err := json.NewDecoder(strings.NewReader(j)).Decode(&s); err != nil {
 		return nil, err
 	}
 	return s, nil
 }
 // InstanceName returns the current VM's instance ID string.
 func (c *Client) InstanceName() (string, error) {
 	return c.getTrimmed("instance/name")
 }
 // Zone returns the current VM's zone, such as "us-central1-b".
 func (c *Client) Zone() (string, error) {
 	zone, err := c.getTrimmed("instance/zone")
 	// zone is of the form "projects/<projNum>/zones/<zoneName>".
 	if err != nil {
 		return "", err
 	}
 	return zone[strings.LastIndex(zone, "/")+1:], nil
 }
 // InstanceAttributes returns the list of user-defined attributes,
 // assigned when initially creating a GCE VM instance. The value of an
 // attribute can be obtained with InstanceAttributeValue.
 func (c *Client) InstanceAttributes() ([]string, error) { return c.lines("instance/attributes/") }
 // ProjectAttributes returns the list of user-defined attributes
 // applying to the project as a whole, not just this VM.  The value of
 // an attribute can be obtained with ProjectAttributeValue.
 func (c *Client) ProjectAttributes() ([]string, error) { return c.lines("project/attributes/") }
 // InstanceAttributeValue returns the value of the provided VM
 // instance attribute.
 //
 // If the requested attribute is not defined, the returned error will
 // be of type NotDefinedError.
 //
 // InstanceAttributeValue may return ("", nil) if the attribute was
 // defined to be the empty string.
 func (c *Client) InstanceAttributeValue(attr string) (string, error) {
 	return c.Get("instance/attributes/" + attr)
 }
 // ProjectAttributeValue returns the value of the provided
 // project attribute.
 //
 // If the requested attribute is not defined, the returned error will
 // be of type NotDefinedError.
 //
 // ProjectAttributeValue may return ("", nil) if the attribute was
 // defined to be the empty string.
 func (c *Client) ProjectAttributeValue(attr string) (string, error) {
 	return c.Get("project/attributes/" + attr)
 }
 // Scopes returns the service account scopes for the given account.
 // The account may be empty or the string "default" to use the instance's
 // main account.
 func (c *Client) Scopes(serviceAccount string) ([]string, error) {
 	if serviceAccount == "" {
 		serviceAccount = "default"
 	}
 	return c.lines("instance/service-accounts/" + serviceAccount + "/scopes")
 }
 // Subscribe subscribes to a value from the metadata service.
 // The suffix is appended to "http://${GCE_METADATA_HOST}/computeMetadata/v1/".
 // The suffix may contain query parameters.
 //
 // Subscribe calls fn with the latest metadata value indicated by the provided
 // suffix. If the metadata value is deleted, fn is called with the empty string
 // and ok false. Subscribe blocks until fn returns a non-nil error or the value
 // is deleted. Subscribe returns the error value returned from the last call to
 // fn, which may be nil when ok == false.
 func (c *Client) Subscribe(suffix string, fn func(v string, ok bool) error) error {
 	const failedSubscribeSleep = time.Second * 5
 	// First check to see if the metadata value exists at all.
 	val, lastETag, err := c.getETag(suffix)
 	if err != nil {
 		return err
 	}
 	if err := fn(val, true); err != nil {
 		return err
 	}
 	ok := true
 	if strings.ContainsRune(suffix, '?') {
 		suffix += "&wait_for_change=true&last_etag="
 	} else {
 		suffix += "?wait_for_change=true&last_etag="
 	}
 	for {
 		val, etag, err := c.getETag(suffix + url.QueryEscape(lastETag))
 		if err != nil {
 			if _, deleted := err.(NotDefinedError); !deleted {
 				time.Sleep(failedSubscribeSleep)
 				continue // Retry on other errors.
 			}
 			ok = false
 		}
 		lastETag = etag
 		if err := fn(val, ok); err != nil || !ok {
 			return err
 		}
 	}
 }
 // Error contains an error response from the server.
 type Error struct {
 	// Code is the HTTP response status code.
 	Code int
 	// Message is the server response message.
 	Message string
 }
 func (e *Error) Error() string {
 	return fmt.Sprintf("compute: Received %d `%s`", e.Code, e.Message)
 }
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/retry.go
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/retry.go
@@ -0,0 +1,114 @@
 // Copyright 2021 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package metadata
 import (
 	"context"
 	"io"
 	"math/rand"
 	"net/http"
 	"time"
 )
 const (
 	maxRetryAttempts = 5
 )
 var (
 	syscallRetryable = func(err error) bool { return false }
 )
 // defaultBackoff is basically equivalent to gax.Backoff without the need for
 // the dependency.
 type defaultBackoff struct {
 	max time.Duration
 	mul float64
 	cur time.Duration
 }
 func (b *defaultBackoff) Pause() time.Duration {
 	d := time.Duration(1 + rand.Int63n(int64(b.cur)))
 	b.cur = time.Duration(float64(b.cur) * b.mul)
 	if b.cur > b.max {
 		b.cur = b.max
 	}
 	return d
 }
 // sleep is the equivalent of gax.Sleep without the need for the dependency.
 func sleep(ctx context.Context, d time.Duration) error {
 	t := time.NewTimer(d)
 	select {
 	case <-ctx.Done():
 		t.Stop()
 		return ctx.Err()
 	case <-t.C:
 		return nil
 	}
 }
 func newRetryer() *metadataRetryer {
 	return &metadataRetryer{bo: &defaultBackoff{
 		cur: 100 * time.Millisecond,
 		max: 30 * time.Second,
 		mul: 2,
 	}}
 }
 type backoff interface {
 	Pause() time.Duration
 }
 type metadataRetryer struct {
 	bo       backoff
 	attempts int
 }
 func (r *metadataRetryer) Retry(status int, err error) (time.Duration, bool) {
 	if status == http.StatusOK {
 		return 0, false
 	}
 	retryOk := shouldRetry(status, err)
 	if !retryOk {
 		return 0, false
 	}
 	if r.attempts == maxRetryAttempts {
 		return 0, false
 	}
 	r.attempts++
 	return r.bo.Pause(), true
 }
 func shouldRetry(status int, err error) bool {
 	if 500 <= status && status <= 599 {
 		return true
 	}
 	if err == io.ErrUnexpectedEOF {
 		return true
 	}
 	// Transient network errors should be retried.
 	if syscallRetryable(err) {
 		return true
 	}
 	if err, ok := err.(interface{ Temporary() bool }); ok {
 		if err.Temporary() {
 			return true
 		}
 	}
 	if err, ok := err.(interface{ Unwrap() error }); ok {
 		return shouldRetry(status, err.Unwrap())
 	}
 	return false
 }
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/retry_linux.go
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/retry_linux.go
@@ -0,0 +1,26 @@
 // Copyright 2021 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 //go:build linux
 // +build linux
 package metadata
 import "syscall"
 func init() {
 	// Initialize syscallRetryable to return true on transient socket-level
 	// errors. These errors are specific to Linux.
 	syscallRetryable = func(err error) bool { return err == syscall.ECONNRESET || err == syscall.ECONNREFUSED }
 }
--- a/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/tidyfix.go
+++ b/.ibm/tools/tests-results/vendor/cloud.google.com/go/compute/metadata/tidyfix.go
@@ -0,0 +1,23 @@
 // Copyright 2022 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // This file, and the {{.RootMod}} import, won't actually become part of
 // the resultant binary.
 //go:build modhack
 // +build modhack
 package metadata
 // Necessary for safely adding multi-module repo. See: https://github.com/golang/go/wiki/Modules#is-it-possible-to-add-a-module-to-a-multi-module-repository
 import _ "cloud.google.com/go/compute/internal"
--- a/.ibm/tools/tests-results/vendor/github.com/golang/groupcache/LICENSE
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/groupcache/LICENSE
@@ -0,0 +1,191 @@
 Apache License
 Version 2.0, January 2004
 http://www.apache.org/licenses/
 TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
 1. Definitions.
 "License" shall mean the terms and conditions for use, reproduction, and
 distribution as defined by Sections 1 through 9 of this document.
 "Licensor" shall mean the copyright owner or entity authorized by the copyright
 owner that is granting the License.
 "Legal Entity" shall mean the union of the acting entity and all other entities
 that control, are controlled by, or are under common control with that entity.
 For the purposes of this definition, "control" means (i) the power, direct or
 indirect, to cause the direction or management of such entity, whether by
 contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the
 outstanding shares, or (iii) beneficial ownership of such entity.
 "You" (or "Your") shall mean an individual or Legal Entity exercising
 permissions granted by this License.
 "Source" form shall mean the preferred form for making modifications, including
 but not limited to software source code, documentation source, and configuration
 files.
 "Object" form shall mean any form resulting from mechanical transformation or
 translation of a Source form, including but not limited to compiled object code,
 generated documentation, and conversions to other media types.
 "Work" shall mean the work of authorship, whether in Source or Object form, made
 available under the License, as indicated by a copyright notice that is included
 in or attached to the work (an example is provided in the Appendix below).
 "Derivative Works" shall mean any work, whether in Source or Object form, that
 is based on (or derived from) the Work and for which the editorial revisions,
 annotations, elaborations, or other modifications represent, as a whole, an
 original work of authorship. For the purposes of this License, Derivative Works
 shall not include works that remain separable from, or merely link (or bind by
 name) to the interfaces of, the Work and Derivative Works thereof.
 "Contribution" shall mean any work of authorship, including the original version
 of the Work and any modifications or additions to that Work or Derivative Works
 thereof, that is intentionally submitted to Licensor for inclusion in the Work
 by the copyright owner or by an individual or Legal Entity authorized to submit
 on behalf of the copyright owner. For the purposes of this definition,
 "submitted" means any form of electronic, verbal, or written communication sent
 to the Licensor or its representatives, including but not limited to
 communication on electronic mailing lists, source code control systems, and
 issue tracking systems that are managed by, or on behalf of, the Licensor for
 the purpose of discussing and improving the Work, but excluding communication
 that is conspicuously marked or otherwise designated in writing by the copyright
 owner as "Not a Contribution."
 "Contributor" shall mean Licensor and any individual or Legal Entity on behalf
 of whom a Contribution has been received by Licensor and subsequently
 incorporated within the Work.
 2. Grant of Copyright License.
 Subject to the terms and conditions of this License, each Contributor hereby
 grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free,
 irrevocable copyright license to reproduce, prepare Derivative Works of,
 publicly display, publicly perform, sublicense, and distribute the Work and such
 Derivative Works in Source or Object form.
 3. Grant of Patent License.
 Subject to the terms and conditions of this License, each Contributor hereby
 grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free,
 irrevocable (except as stated in this section) patent license to make, have
 made, use, offer to sell, sell, import, and otherwise transfer the Work, where
 such license applies only to those patent claims licensable by such Contributor
 that are necessarily infringed by their Contribution(s) alone or by combination
 of their Contribution(s) with the Work to which such Contribution(s) was
 submitted. If You institute patent litigation against any entity (including a
 cross-claim or counterclaim in a lawsuit) alleging that the Work or a
 Contribution incorporated within the Work constitutes direct or contributory
 patent infringement, then any patent licenses granted to You under this License
 for that Work shall terminate as of the date such litigation is filed.
 4. Redistribution.
 You may reproduce and distribute copies of the Work or Derivative Works thereof
 in any medium, with or without modifications, and in Source or Object form,
 provided that You meet the following conditions:
 You must give any other recipients of the Work or Derivative Works a copy of
 this License; and
 You must cause any modified files to carry prominent notices stating that You
 changed the files; and
 You must retain, in the Source form of any Derivative Works that You distribute,
 all copyright, patent, trademark, and attribution notices from the Source form
 of the Work, excluding those notices that do not pertain to any part of the
 Derivative Works; and
 If the Work includes a "NOTICE" text file as part of its distribution, then any
 Derivative Works that You distribute must include a readable copy of the
 attribution notices contained within such NOTICE file, excluding those notices
 that do not pertain to any part of the Derivative Works, in at least one of the
 following places: within a NOTICE text file distributed as part of the
 Derivative Works; within the Source form or documentation, if provided along
 with the Derivative Works; or, within a display generated by the Derivative
 Works, if and wherever such third-party notices normally appear. The contents of
 the NOTICE file are for informational purposes only and do not modify the
 License. You may add Your own attribution notices within Derivative Works that
 You distribute, alongside or as an addendum to the NOTICE text from the Work,
 provided that such additional attribution notices cannot be construed as
 modifying the License.
 You may add Your own copyright statement to Your modifications and may provide
 additional or different license terms and conditions for use, reproduction, or
 distribution of Your modifications, or for any such Derivative Works as a whole,
 provided Your use, reproduction, and distribution of the Work otherwise complies
 with the conditions stated in this License.
 5. Submission of Contributions.
 Unless You explicitly state otherwise, any Contribution intentionally submitted
 for inclusion in the Work by You to the Licensor shall be under the terms and
 conditions of this License, without any additional terms or conditions.
 Notwithstanding the above, nothing herein shall supersede or modify the terms of
 any separate license agreement you may have executed with Licensor regarding
 such Contributions.
 6. Trademarks.
 This License does not grant permission to use the trade names, trademarks,
 service marks, or product names of the Licensor, except as required for
 reasonable and customary use in describing the origin of the Work and
 reproducing the content of the NOTICE file.
 7. Disclaimer of Warranty.
 Unless required by applicable law or agreed to in writing, Licensor provides the
 Work (and each Contributor provides its Contributions) on an "AS IS" BASIS,
 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied,
 including, without limitation, any warranties or conditions of TITLE,
 NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE. You are
 solely responsible for determining the appropriateness of using or
 redistributing the Work and assume any risks associated with Your exercise of
 permissions under this License.
 8. Limitation of Liability.
 In no event and under no legal theory, whether in tort (including negligence),
 contract, or otherwise, unless required by applicable law (such as deliberate
 and grossly negligent acts) or agreed to in writing, shall any Contributor be
 liable to You for damages, including any direct, indirect, special, incidental,
 or consequential damages of any character arising as a result of this License or
 out of the use or inability to use the Work (including but not limited to
 damages for loss of goodwill, work stoppage, computer failure or malfunction, or
 any and all other commercial damages or losses), even if such Contributor has
 been advised of the possibility of such damages.
 9. Accepting Warranty or Additional Liability.
 While redistributing the Work or Derivative Works thereof, You may choose to
 offer, and charge a fee for, acceptance of support, warranty, indemnity, or
 other liability obligations and/or rights consistent with this License. However,
 in accepting such obligations, You may act only on Your own behalf and on Your
 sole responsibility, not on behalf of any other Contributor, and only if You
 agree to indemnify, defend, and hold each Contributor harmless for any liability
 incurred by, or claims asserted against, such Contributor by reason of your
 accepting any such warranty or additional liability.
 END OF TERMS AND CONDITIONS
 APPENDIX: How to apply the Apache License to your work
 To apply the Apache License to your work, attach the following boilerplate
 notice, with the fields enclosed by brackets "[]" replaced with your own
 identifying information. (Don't include the brackets!) The text should be
 enclosed in the appropriate comment syntax for the file format. We also
 recommend that a file or class name and description of purpose be included on
 the same "printed page" as the copyright notice for easier identification within
 third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
     http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/.ibm/tools/tests-results/vendor/github.com/golang/groupcache/lru/lru.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/groupcache/lru/lru.go
@@ -0,0 +1,133 @@
 /*
 Copyright 2013 Google Inc.
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.
 You may obtain a copy of the License at
     http://www.apache.org/licenses/LICENSE-2.0
 Unless required by applicable law or agreed to in writing, software
 distributed under the License is distributed on an "AS IS" BASIS,
 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
 */
 // Package lru implements an LRU cache.
 package lru
 import "container/list"
 // Cache is an LRU cache. It is not safe for concurrent access.
 type Cache struct {
 	// MaxEntries is the maximum number of cache entries before
 	// an item is evicted. Zero means no limit.
 	MaxEntries int
 	// OnEvicted optionally specifies a callback function to be
 	// executed when an entry is purged from the cache.
 	OnEvicted func(key Key, value interface{})
 	ll    *list.List
 	cache map[interface{}]*list.Element
 }
 // A Key may be any value that is comparable. See http://golang.org/ref/spec#Comparison_operators
 type Key interface{}
 type entry struct {
 	key   Key
 	value interface{}
 }
 // New creates a new Cache.
 // If maxEntries is zero, the cache has no limit and it's assumed
 // that eviction is done by the caller.
 func New(maxEntries int) *Cache {
 	return &Cache{
 		MaxEntries: maxEntries,
 		ll:         list.New(),
 		cache:      make(map[interface{}]*list.Element),
 	}
 }
 // Add adds a value to the cache.
 func (c *Cache) Add(key Key, value interface{}) {
 	if c.cache == nil {
 		c.cache = make(map[interface{}]*list.Element)
 		c.ll = list.New()
 	}
 	if ee, ok := c.cache[key]; ok {
 		c.ll.MoveToFront(ee)
 		ee.Value.(*entry).value = value
 		return
 	}
 	ele := c.ll.PushFront(&entry{key, value})
 	c.cache[key] = ele
 	if c.MaxEntries != 0 && c.ll.Len() > c.MaxEntries {
 		c.RemoveOldest()
 	}
 }
 // Get looks up a key's value from the cache.
 func (c *Cache) Get(key Key) (value interface{}, ok bool) {
 	if c.cache == nil {
 		return
 	}
 	if ele, hit := c.cache[key]; hit {
 		c.ll.MoveToFront(ele)
 		return ele.Value.(*entry).value, true
 	}
 	return
 }
 // Remove removes the provided key from the cache.
 func (c *Cache) Remove(key Key) {
 	if c.cache == nil {
 		return
 	}
 	if ele, hit := c.cache[key]; hit {
 		c.removeElement(ele)
 	}
 }
 // RemoveOldest removes the oldest item from the cache.
 func (c *Cache) RemoveOldest() {
 	if c.cache == nil {
 		return
 	}
 	ele := c.ll.Back()
 	if ele != nil {
 		c.removeElement(ele)
 	}
 }
 func (c *Cache) removeElement(e *list.Element) {
 	c.ll.Remove(e)
 	kv := e.Value.(*entry)
 	delete(c.cache, kv.key)
 	if c.OnEvicted != nil {
 		c.OnEvicted(kv.key, kv.value)
 	}
 }
 // Len returns the number of items in the cache.
 func (c *Cache) Len() int {
 	if c.cache == nil {
 		return 0
 	}
 	return c.ll.Len()
 }
 // Clear purges all stored items from the cache.
 func (c *Cache) Clear() {
 	if c.OnEvicted != nil {
 		for _, e := range c.cache {
 			kv := e.Value.(*entry)
 			c.OnEvicted(kv.key, kv.value)
 		}
 	}
 	c.ll = nil
 	c.cache = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/AUTHORS
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/AUTHORS
@@ -0,0 +1,3 @@
 # This source code refers to The Go Authors for copyright purposes.
 # The master list of authors is in the main Go distribution,
 # visible at http://tip.golang.org/AUTHORS.
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/CONTRIBUTORS
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/CONTRIBUTORS
@@ -0,0 +1,3 @@
 # This source code was written by the Go contributors.
 # The master list of contributors is in the main Go distribution,
 # visible at http://tip.golang.org/CONTRIBUTORS.
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/LICENSE
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/LICENSE
@@ -0,0 +1,28 @@
 Copyright 2010 The Go Authors.  All rights reserved.
 Redistribution and use in source and binary forms, with or without
 modification, are permitted provided that the following conditions are
 met:
    * Redistributions of source code must retain the above copyright
 notice, this list of conditions and the following disclaimer.
    * Redistributions in binary form must reproduce the above
 copyright notice, this list of conditions and the following disclaimer
 in the documentation and/or other materials provided with the
 distribution.
    * Neither the name of Google Inc. nor the names of its
 contributors may be used to endorse or promote products derived from
 this software without specific prior written permission.
 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
 "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
 LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
 A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
 OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
 LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/jsonpb/decode.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/jsonpb/decode.go
@@ -0,0 +1,530 @@
 // Copyright 2015 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package jsonpb
 import (
 	"encoding/json"
 	"errors"
 	"fmt"
 	"io"
 	"math"
 	"reflect"
 	"strconv"
 	"strings"
 	"time"
 	"github.com/golang/protobuf/proto"
 	"google.golang.org/protobuf/encoding/protojson"
 	protoV2 "google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 )
 const wrapJSONUnmarshalV2 = false
 // UnmarshalNext unmarshals the next JSON object from d into m.
 func UnmarshalNext(d *json.Decoder, m proto.Message) error {
 	return new(Unmarshaler).UnmarshalNext(d, m)
 }
 // Unmarshal unmarshals a JSON object from r into m.
 func Unmarshal(r io.Reader, m proto.Message) error {
 	return new(Unmarshaler).Unmarshal(r, m)
 }
 // UnmarshalString unmarshals a JSON object from s into m.
 func UnmarshalString(s string, m proto.Message) error {
 	return new(Unmarshaler).Unmarshal(strings.NewReader(s), m)
 }
 // Unmarshaler is a configurable object for converting from a JSON
 // representation to a protocol buffer object.
 type Unmarshaler struct {
 	// AllowUnknownFields specifies whether to allow messages to contain
 	// unknown JSON fields, as opposed to failing to unmarshal.
 	AllowUnknownFields bool
 	// AnyResolver is used to resolve the google.protobuf.Any well-known type.
 	// If unset, the global registry is used by default.
 	AnyResolver AnyResolver
 }
 // JSONPBUnmarshaler is implemented by protobuf messages that customize the way
 // they are unmarshaled from JSON. Messages that implement this should also
 // implement JSONPBMarshaler so that the custom format can be produced.
 //
 // The JSON unmarshaling must follow the JSON to proto specification:
 //	https://developers.google.com/protocol-buffers/docs/proto3#json
 //
 // Deprecated: Custom types should implement protobuf reflection instead.
 type JSONPBUnmarshaler interface {
 	UnmarshalJSONPB(*Unmarshaler, []byte) error
 }
 // Unmarshal unmarshals a JSON object from r into m.
 func (u *Unmarshaler) Unmarshal(r io.Reader, m proto.Message) error {
 	return u.UnmarshalNext(json.NewDecoder(r), m)
 }
 // UnmarshalNext unmarshals the next JSON object from d into m.
 func (u *Unmarshaler) UnmarshalNext(d *json.Decoder, m proto.Message) error {
 	if m == nil {
 		return errors.New("invalid nil message")
 	}
 	// Parse the next JSON object from the stream.
 	raw := json.RawMessage{}
 	if err := d.Decode(&raw); err != nil {
 		return err
 	}
 	// Check for custom unmarshalers first since they may not properly
 	// implement protobuf reflection that the logic below relies on.
 	if jsu, ok := m.(JSONPBUnmarshaler); ok {
 		return jsu.UnmarshalJSONPB(u, raw)
 	}
 	mr := proto.MessageReflect(m)
 	// NOTE: For historical reasons, a top-level null is treated as a noop.
 	// This is incorrect, but kept for compatibility.
 	if string(raw) == "null" && mr.Descriptor().FullName() != "google.protobuf.Value" {
 		return nil
 	}
 	if wrapJSONUnmarshalV2 {
 		// NOTE: If input message is non-empty, we need to preserve merge semantics
 		// of the old jsonpb implementation. These semantics are not supported by
 		// the protobuf JSON specification.
 		isEmpty := true
 		mr.Range(func(protoreflect.FieldDescriptor, protoreflect.Value) bool {
 			isEmpty = false // at least one iteration implies non-empty
 			return false
 		})
 		if !isEmpty {
 			// Perform unmarshaling into a newly allocated, empty message.
 			mr = mr.New()
 			// Use a defer to copy all unmarshaled fields into the original message.
 			dst := proto.MessageReflect(m)
 			defer mr.Range(func(fd protoreflect.FieldDescriptor, v protoreflect.Value) bool {
 				dst.Set(fd, v)
 				return true
 			})
 		}
 		// Unmarshal using the v2 JSON unmarshaler.
 		opts := protojson.UnmarshalOptions{
 			DiscardUnknown: u.AllowUnknownFields,
 		}
 		if u.AnyResolver != nil {
 			opts.Resolver = anyResolver{u.AnyResolver}
 		}
 		return opts.Unmarshal(raw, mr.Interface())
 	} else {
 		if err := u.unmarshalMessage(mr, raw); err != nil {
 			return err
 		}
 		return protoV2.CheckInitialized(mr.Interface())
 	}
 }
 func (u *Unmarshaler) unmarshalMessage(m protoreflect.Message, in []byte) error {
 	md := m.Descriptor()
 	fds := md.Fields()
 	if jsu, ok := proto.MessageV1(m.Interface()).(JSONPBUnmarshaler); ok {
 		return jsu.UnmarshalJSONPB(u, in)
 	}
 	if string(in) == "null" && md.FullName() != "google.protobuf.Value" {
 		return nil
 	}
 	switch wellKnownType(md.FullName()) {
 	case "Any":
 		var jsonObject map[string]json.RawMessage
 		if err := json.Unmarshal(in, &jsonObject); err != nil {
 			return err
 		}
 		rawTypeURL, ok := jsonObject["@type"]
 		if !ok {
 			return errors.New("Any JSON doesn't have '@type'")
 		}
 		typeURL, err := unquoteString(string(rawTypeURL))
 		if err != nil {
 			return fmt.Errorf("can't unmarshal Any's '@type': %q", rawTypeURL)
 		}
 		m.Set(fds.ByNumber(1), protoreflect.ValueOfString(typeURL))
 		var m2 protoreflect.Message
 		if u.AnyResolver != nil {
 			mi, err := u.AnyResolver.Resolve(typeURL)
 			if err != nil {
 				return err
 			}
 			m2 = proto.MessageReflect(mi)
 		} else {
 			mt, err := protoregistry.GlobalTypes.FindMessageByURL(typeURL)
 			if err != nil {
 				if err == protoregistry.NotFound {
 					return fmt.Errorf("could not resolve Any message type: %v", typeURL)
 				}
 				return err
 			}
 			m2 = mt.New()
 		}
 		if wellKnownType(m2.Descriptor().FullName()) != "" {
 			rawValue, ok := jsonObject["value"]
 			if !ok {
 				return errors.New("Any JSON doesn't have 'value'")
 			}
 			if err := u.unmarshalMessage(m2, rawValue); err != nil {
 				return fmt.Errorf("can't unmarshal Any nested proto %v: %v", typeURL, err)
 			}
 		} else {
 			delete(jsonObject, "@type")
 			rawJSON, err := json.Marshal(jsonObject)
 			if err != nil {
 				return fmt.Errorf("can't generate JSON for Any's nested proto to be unmarshaled: %v", err)
 			}
 			if err = u.unmarshalMessage(m2, rawJSON); err != nil {
 				return fmt.Errorf("can't unmarshal Any nested proto %v: %v", typeURL, err)
 			}
 		}
 		rawWire, err := protoV2.Marshal(m2.Interface())
 		if err != nil {
 			return fmt.Errorf("can't marshal proto %v into Any.Value: %v", typeURL, err)
 		}
 		m.Set(fds.ByNumber(2), protoreflect.ValueOfBytes(rawWire))
 		return nil
 	case "BoolValue", "BytesValue", "StringValue",
 		"Int32Value", "UInt32Value", "FloatValue",
 		"Int64Value", "UInt64Value", "DoubleValue":
 		fd := fds.ByNumber(1)
 		v, err := u.unmarshalValue(m.NewField(fd), in, fd)
 		if err != nil {
 			return err
 		}
 		m.Set(fd, v)
 		return nil
 	case "Duration":
 		v, err := unquoteString(string(in))
 		if err != nil {
 			return err
 		}
 		d, err := time.ParseDuration(v)
 		if err != nil {
 			return fmt.Errorf("bad Duration: %v", err)
 		}
 		sec := d.Nanoseconds() / 1e9
 		nsec := d.Nanoseconds() % 1e9
 		m.Set(fds.ByNumber(1), protoreflect.ValueOfInt64(int64(sec)))
 		m.Set(fds.ByNumber(2), protoreflect.ValueOfInt32(int32(nsec)))
 		return nil
 	case "Timestamp":
 		v, err := unquoteString(string(in))
 		if err != nil {
 			return err
 		}
 		t, err := time.Parse(time.RFC3339Nano, v)
 		if err != nil {
 			return fmt.Errorf("bad Timestamp: %v", err)
 		}
 		sec := t.Unix()
 		nsec := t.Nanosecond()
 		m.Set(fds.ByNumber(1), protoreflect.ValueOfInt64(int64(sec)))
 		m.Set(fds.ByNumber(2), protoreflect.ValueOfInt32(int32(nsec)))
 		return nil
 	case "Value":
 		switch {
 		case string(in) == "null":
 			m.Set(fds.ByNumber(1), protoreflect.ValueOfEnum(0))
 		case string(in) == "true":
 			m.Set(fds.ByNumber(4), protoreflect.ValueOfBool(true))
 		case string(in) == "false":
 			m.Set(fds.ByNumber(4), protoreflect.ValueOfBool(false))
 		case hasPrefixAndSuffix('"', in, '"'):
 			s, err := unquoteString(string(in))
 			if err != nil {
 				return fmt.Errorf("unrecognized type for Value %q", in)
 			}
 			m.Set(fds.ByNumber(3), protoreflect.ValueOfString(s))
 		case hasPrefixAndSuffix('[', in, ']'):
 			v := m.Mutable(fds.ByNumber(6))
 			return u.unmarshalMessage(v.Message(), in)
 		case hasPrefixAndSuffix('{', in, '}'):
 			v := m.Mutable(fds.ByNumber(5))
 			return u.unmarshalMessage(v.Message(), in)
 		default:
 			f, err := strconv.ParseFloat(string(in), 0)
 			if err != nil {
 				return fmt.Errorf("unrecognized type for Value %q", in)
 			}
 			m.Set(fds.ByNumber(2), protoreflect.ValueOfFloat64(f))
 		}
 		return nil
 	case "ListValue":
 		var jsonArray []json.RawMessage
 		if err := json.Unmarshal(in, &jsonArray); err != nil {
 			return fmt.Errorf("bad ListValue: %v", err)
 		}
 		lv := m.Mutable(fds.ByNumber(1)).List()
 		for _, raw := range jsonArray {
 			ve := lv.NewElement()
 			if err := u.unmarshalMessage(ve.Message(), raw); err != nil {
 				return err
 			}
 			lv.Append(ve)
 		}
 		return nil
 	case "Struct":
 		var jsonObject map[string]json.RawMessage
 		if err := json.Unmarshal(in, &jsonObject); err != nil {
 			return fmt.Errorf("bad StructValue: %v", err)
 		}
 		mv := m.Mutable(fds.ByNumber(1)).Map()
 		for key, raw := range jsonObject {
 			kv := protoreflect.ValueOf(key).MapKey()
 			vv := mv.NewValue()
 			if err := u.unmarshalMessage(vv.Message(), raw); err != nil {
 				return fmt.Errorf("bad value in StructValue for key %q: %v", key, err)
 			}
 			mv.Set(kv, vv)
 		}
 		return nil
 	}
 	var jsonObject map[string]json.RawMessage
 	if err := json.Unmarshal(in, &jsonObject); err != nil {
 		return err
 	}
 	// Handle known fields.
 	for i := 0; i < fds.Len(); i++ {
 		fd := fds.Get(i)
 		if fd.IsWeak() && fd.Message().IsPlaceholder() {
 			continue //  weak reference is not linked in
 		}
 		// Search for any raw JSON value associated with this field.
 		var raw json.RawMessage
 		name := string(fd.Name())
 		if fd.Kind() == protoreflect.GroupKind {
 			name = string(fd.Message().Name())
 		}
 		if v, ok := jsonObject[name]; ok {
 			delete(jsonObject, name)
 			raw = v
 		}
 		name = string(fd.JSONName())
 		if v, ok := jsonObject[name]; ok {
 			delete(jsonObject, name)
 			raw = v
 		}
 		field := m.NewField(fd)
 		// Unmarshal the field value.
 		if raw == nil || (string(raw) == "null" && !isSingularWellKnownValue(fd) && !isSingularJSONPBUnmarshaler(field, fd)) {
 			continue
 		}
 		v, err := u.unmarshalValue(field, raw, fd)
 		if err != nil {
 			return err
 		}
 		m.Set(fd, v)
 	}
 	// Handle extension fields.
 	for name, raw := range jsonObject {
 		if !strings.HasPrefix(name, "[") || !strings.HasSuffix(name, "]") {
 			continue
 		}
 		// Resolve the extension field by name.
 		xname := protoreflect.FullName(name[len("[") : len(name)-len("]")])
 		xt, _ := protoregistry.GlobalTypes.FindExtensionByName(xname)
 		if xt == nil && isMessageSet(md) {
 			xt, _ = protoregistry.GlobalTypes.FindExtensionByName(xname.Append("message_set_extension"))
 		}
 		if xt == nil {
 			continue
 		}
 		delete(jsonObject, name)
 		fd := xt.TypeDescriptor()
 		if fd.ContainingMessage().FullName() != m.Descriptor().FullName() {
 			return fmt.Errorf("extension field %q does not extend message %q", xname, m.Descriptor().FullName())
 		}
 		field := m.NewField(fd)
 		// Unmarshal the field value.
 		if raw == nil || (string(raw) == "null" && !isSingularWellKnownValue(fd) && !isSingularJSONPBUnmarshaler(field, fd)) {
 			continue
 		}
 		v, err := u.unmarshalValue(field, raw, fd)
 		if err != nil {
 			return err
 		}
 		m.Set(fd, v)
 	}
 	if !u.AllowUnknownFields && len(jsonObject) > 0 {
 		for name := range jsonObject {
 			return fmt.Errorf("unknown field %q in %v", name, md.FullName())
 		}
 	}
 	return nil
 }
 func isSingularWellKnownValue(fd protoreflect.FieldDescriptor) bool {
 	if fd.Cardinality() == protoreflect.Repeated {
 		return false
 	}
 	if md := fd.Message(); md != nil {
 		return md.FullName() == "google.protobuf.Value"
 	}
 	if ed := fd.Enum(); ed != nil {
 		return ed.FullName() == "google.protobuf.NullValue"
 	}
 	return false
 }
 func isSingularJSONPBUnmarshaler(v protoreflect.Value, fd protoreflect.FieldDescriptor) bool {
 	if fd.Message() != nil && fd.Cardinality() != protoreflect.Repeated {
 		_, ok := proto.MessageV1(v.Interface()).(JSONPBUnmarshaler)
 		return ok
 	}
 	return false
 }
 func (u *Unmarshaler) unmarshalValue(v protoreflect.Value, in []byte, fd protoreflect.FieldDescriptor) (protoreflect.Value, error) {
 	switch {
 	case fd.IsList():
 		var jsonArray []json.RawMessage
 		if err := json.Unmarshal(in, &jsonArray); err != nil {
 			return v, err
 		}
 		lv := v.List()
 		for _, raw := range jsonArray {
 			ve, err := u.unmarshalSingularValue(lv.NewElement(), raw, fd)
 			if err != nil {
 				return v, err
 			}
 			lv.Append(ve)
 		}
 		return v, nil
 	case fd.IsMap():
 		var jsonObject map[string]json.RawMessage
 		if err := json.Unmarshal(in, &jsonObject); err != nil {
 			return v, err
 		}
 		kfd := fd.MapKey()
 		vfd := fd.MapValue()
 		mv := v.Map()
 		for key, raw := range jsonObject {
 			var kv protoreflect.MapKey
 			if kfd.Kind() == protoreflect.StringKind {
 				kv = protoreflect.ValueOf(key).MapKey()
 			} else {
 				v, err := u.unmarshalSingularValue(kfd.Default(), []byte(key), kfd)
 				if err != nil {
 					return v, err
 				}
 				kv = v.MapKey()
 			}
 			vv, err := u.unmarshalSingularValue(mv.NewValue(), raw, vfd)
 			if err != nil {
 				return v, err
 			}
 			mv.Set(kv, vv)
 		}
 		return v, nil
 	default:
 		return u.unmarshalSingularValue(v, in, fd)
 	}
 }
 var nonFinite = map[string]float64{
 	`"NaN"`:       math.NaN(),
 	`"Infinity"`:  math.Inf(+1),
 	`"-Infinity"`: math.Inf(-1),
 }
 func (u *Unmarshaler) unmarshalSingularValue(v protoreflect.Value, in []byte, fd protoreflect.FieldDescriptor) (protoreflect.Value, error) {
 	switch fd.Kind() {
 	case protoreflect.BoolKind:
 		return unmarshalValue(in, new(bool))
 	case protoreflect.Int32Kind, protoreflect.Sint32Kind, protoreflect.Sfixed32Kind:
 		return unmarshalValue(trimQuote(in), new(int32))
 	case protoreflect.Int64Kind, protoreflect.Sint64Kind, protoreflect.Sfixed64Kind:
 		return unmarshalValue(trimQuote(in), new(int64))
 	case protoreflect.Uint32Kind, protoreflect.Fixed32Kind:
 		return unmarshalValue(trimQuote(in), new(uint32))
 	case protoreflect.Uint64Kind, protoreflect.Fixed64Kind:
 		return unmarshalValue(trimQuote(in), new(uint64))
 	case protoreflect.FloatKind:
 		if f, ok := nonFinite[string(in)]; ok {
 			return protoreflect.ValueOfFloat32(float32(f)), nil
 		}
 		return unmarshalValue(trimQuote(in), new(float32))
 	case protoreflect.DoubleKind:
 		if f, ok := nonFinite[string(in)]; ok {
 			return protoreflect.ValueOfFloat64(float64(f)), nil
 		}
 		return unmarshalValue(trimQuote(in), new(float64))
 	case protoreflect.StringKind:
 		return unmarshalValue(in, new(string))
 	case protoreflect.BytesKind:
 		return unmarshalValue(in, new([]byte))
 	case protoreflect.EnumKind:
 		if hasPrefixAndSuffix('"', in, '"') {
 			vd := fd.Enum().Values().ByName(protoreflect.Name(trimQuote(in)))
 			if vd == nil {
 				return v, fmt.Errorf("unknown value %q for enum %s", in, fd.Enum().FullName())
 			}
 			return protoreflect.ValueOfEnum(vd.Number()), nil
 		}
 		return unmarshalValue(in, new(protoreflect.EnumNumber))
 	case protoreflect.MessageKind, protoreflect.GroupKind:
 		err := u.unmarshalMessage(v.Message(), in)
 		return v, err
 	default:
 		panic(fmt.Sprintf("invalid kind %v", fd.Kind()))
 	}
 }
 func unmarshalValue(in []byte, v interface{}) (protoreflect.Value, error) {
 	err := json.Unmarshal(in, v)
 	return protoreflect.ValueOf(reflect.ValueOf(v).Elem().Interface()), err
 }
 func unquoteString(in string) (out string, err error) {
 	err = json.Unmarshal([]byte(in), &out)
 	return out, err
 }
 func hasPrefixAndSuffix(prefix byte, in []byte, suffix byte) bool {
 	if len(in) >= 2 && in[0] == prefix && in[len(in)-1] == suffix {
 		return true
 	}
 	return false
 }
 // trimQuote is like unquoteString but simply strips surrounding quotes.
 // This is incorrect, but is behavior done by the legacy implementation.
 func trimQuote(in []byte) []byte {
 	if len(in) >= 2 && in[0] == '"' && in[len(in)-1] == '"' {
 		in = in[1 : len(in)-1]
 	}
 	return in
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/jsonpb/encode.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/jsonpb/encode.go
@@ -0,0 +1,559 @@
 // Copyright 2015 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package jsonpb
 import (
 	"encoding/json"
 	"errors"
 	"fmt"
 	"io"
 	"math"
 	"reflect"
 	"sort"
 	"strconv"
 	"strings"
 	"time"
 	"github.com/golang/protobuf/proto"
 	"google.golang.org/protobuf/encoding/protojson"
 	protoV2 "google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 )
 const wrapJSONMarshalV2 = false
 // Marshaler is a configurable object for marshaling protocol buffer messages
 // to the specified JSON representation.
 type Marshaler struct {
 	// OrigName specifies whether to use the original protobuf name for fields.
 	OrigName bool
 	// EnumsAsInts specifies whether to render enum values as integers,
 	// as opposed to string values.
 	EnumsAsInts bool
 	// EmitDefaults specifies whether to render fields with zero values.
 	EmitDefaults bool
 	// Indent controls whether the output is compact or not.
 	// If empty, the output is compact JSON. Otherwise, every JSON object
 	// entry and JSON array value will be on its own line.
 	// Each line will be preceded by repeated copies of Indent, where the
 	// number of copies is the current indentation depth.
 	Indent string
 	// AnyResolver is used to resolve the google.protobuf.Any well-known type.
 	// If unset, the global registry is used by default.
 	AnyResolver AnyResolver
 }
 // JSONPBMarshaler is implemented by protobuf messages that customize the
 // way they are marshaled to JSON. Messages that implement this should also
 // implement JSONPBUnmarshaler so that the custom format can be parsed.
 //
 // The JSON marshaling must follow the proto to JSON specification:
 //	https://developers.google.com/protocol-buffers/docs/proto3#json
 //
 // Deprecated: Custom types should implement protobuf reflection instead.
 type JSONPBMarshaler interface {
 	MarshalJSONPB(*Marshaler) ([]byte, error)
 }
 // Marshal serializes a protobuf message as JSON into w.
 func (jm *Marshaler) Marshal(w io.Writer, m proto.Message) error {
 	b, err := jm.marshal(m)
 	if len(b) > 0 {
 		if _, err := w.Write(b); err != nil {
 			return err
 		}
 	}
 	return err
 }
 // MarshalToString serializes a protobuf message as JSON in string form.
 func (jm *Marshaler) MarshalToString(m proto.Message) (string, error) {
 	b, err := jm.marshal(m)
 	if err != nil {
 		return "", err
 	}
 	return string(b), nil
 }
 func (jm *Marshaler) marshal(m proto.Message) ([]byte, error) {
 	v := reflect.ValueOf(m)
 	if m == nil || (v.Kind() == reflect.Ptr && v.IsNil()) {
 		return nil, errors.New("Marshal called with nil")
 	}
 	// Check for custom marshalers first since they may not properly
 	// implement protobuf reflection that the logic below relies on.
 	if jsm, ok := m.(JSONPBMarshaler); ok {
 		return jsm.MarshalJSONPB(jm)
 	}
 	if wrapJSONMarshalV2 {
 		opts := protojson.MarshalOptions{
 			UseProtoNames:   jm.OrigName,
 			UseEnumNumbers:  jm.EnumsAsInts,
 			EmitUnpopulated: jm.EmitDefaults,
 			Indent:          jm.Indent,
 		}
 		if jm.AnyResolver != nil {
 			opts.Resolver = anyResolver{jm.AnyResolver}
 		}
 		return opts.Marshal(proto.MessageReflect(m).Interface())
 	} else {
 		// Check for unpopulated required fields first.
 		m2 := proto.MessageReflect(m)
 		if err := protoV2.CheckInitialized(m2.Interface()); err != nil {
 			return nil, err
 		}
 		w := jsonWriter{Marshaler: jm}
 		err := w.marshalMessage(m2, "", "")
 		return w.buf, err
 	}
 }
 type jsonWriter struct {
 	*Marshaler
 	buf []byte
 }
 func (w *jsonWriter) write(s string) {
 	w.buf = append(w.buf, s...)
 }
 func (w *jsonWriter) marshalMessage(m protoreflect.Message, indent, typeURL string) error {
 	if jsm, ok := proto.MessageV1(m.Interface()).(JSONPBMarshaler); ok {
 		b, err := jsm.MarshalJSONPB(w.Marshaler)
 		if err != nil {
 			return err
 		}
 		if typeURL != "" {
 			// we are marshaling this object to an Any type
 			var js map[string]*json.RawMessage
 			if err = json.Unmarshal(b, &js); err != nil {
 				return fmt.Errorf("type %T produced invalid JSON: %v", m.Interface(), err)
 			}
 			turl, err := json.Marshal(typeURL)
 			if err != nil {
 				return fmt.Errorf("failed to marshal type URL %q to JSON: %v", typeURL, err)
 			}
 			js["@type"] = (*json.RawMessage)(&turl)
 			if b, err = json.Marshal(js); err != nil {
 				return err
 			}
 		}
 		w.write(string(b))
 		return nil
 	}
 	md := m.Descriptor()
 	fds := md.Fields()
 	// Handle well-known types.
 	const secondInNanos = int64(time.Second / time.Nanosecond)
 	switch wellKnownType(md.FullName()) {
 	case "Any":
 		return w.marshalAny(m, indent)
 	case "BoolValue", "BytesValue", "StringValue",
 		"Int32Value", "UInt32Value", "FloatValue",
 		"Int64Value", "UInt64Value", "DoubleValue":
 		fd := fds.ByNumber(1)
 		return w.marshalValue(fd, m.Get(fd), indent)
 	case "Duration":
 		const maxSecondsInDuration = 315576000000
 		// "Generated output always contains 0, 3, 6, or 9 fractional digits,
 		//  depending on required precision."
 		s := m.Get(fds.ByNumber(1)).Int()
 		ns := m.Get(fds.ByNumber(2)).Int()
 		if s < -maxSecondsInDuration || s > maxSecondsInDuration {
 			return fmt.Errorf("seconds out of range %v", s)
 		}
 		if ns <= -secondInNanos || ns >= secondInNanos {
 			return fmt.Errorf("ns out of range (%v, %v)", -secondInNanos, secondInNanos)
 		}
 		if (s > 0 && ns < 0) || (s < 0 && ns > 0) {
 			return errors.New("signs of seconds and nanos do not match")
 		}
 		var sign string
 		if s < 0 || ns < 0 {
 			sign, s, ns = "-", -1*s, -1*ns
 		}
 		x := fmt.Sprintf("%s%d.%09d", sign, s, ns)
 		x = strings.TrimSuffix(x, "000")
 		x = strings.TrimSuffix(x, "000")
 		x = strings.TrimSuffix(x, ".000")
 		w.write(fmt.Sprintf(`"%vs"`, x))
 		return nil
 	case "Timestamp":
 		// "RFC 3339, where generated output will always be Z-normalized
 		//  and uses 0, 3, 6 or 9 fractional digits."
 		s := m.Get(fds.ByNumber(1)).Int()
 		ns := m.Get(fds.ByNumber(2)).Int()
 		if ns < 0 || ns >= secondInNanos {
 			return fmt.Errorf("ns out of range [0, %v)", secondInNanos)
 		}
 		t := time.Unix(s, ns).UTC()
 		// time.RFC3339Nano isn't exactly right (we need to get 3/6/9 fractional digits).
 		x := t.Format("2006-01-02T15:04:05.000000000")
 		x = strings.TrimSuffix(x, "000")
 		x = strings.TrimSuffix(x, "000")
 		x = strings.TrimSuffix(x, ".000")
 		w.write(fmt.Sprintf(`"%vZ"`, x))
 		return nil
 	case "Value":
 		// JSON value; which is a null, number, string, bool, object, or array.
 		od := md.Oneofs().Get(0)
 		fd := m.WhichOneof(od)
 		if fd == nil {
 			return errors.New("nil Value")
 		}
 		return w.marshalValue(fd, m.Get(fd), indent)
 	case "Struct", "ListValue":
 		// JSON object or array.
 		fd := fds.ByNumber(1)
 		return w.marshalValue(fd, m.Get(fd), indent)
 	}
 	w.write("{")
 	if w.Indent != "" {
 		w.write("\n")
 	}
 	firstField := true
 	if typeURL != "" {
 		if err := w.marshalTypeURL(indent, typeURL); err != nil {
 			return err
 		}
 		firstField = false
 	}
 	for i := 0; i < fds.Len(); {
 		fd := fds.Get(i)
 		if od := fd.ContainingOneof(); od != nil {
 			fd = m.WhichOneof(od)
 			i += od.Fields().Len()
 			if fd == nil {
 				continue
 			}
 		} else {
 			i++
 		}
 		v := m.Get(fd)
 		if !m.Has(fd) {
 			if !w.EmitDefaults || fd.ContainingOneof() != nil {
 				continue
 			}
 			if fd.Cardinality() != protoreflect.Repeated && (fd.Message() != nil || fd.Syntax() == protoreflect.Proto2) {
 				v = protoreflect.Value{} // use "null" for singular messages or proto2 scalars
 			}
 		}
 		if !firstField {
 			w.writeComma()
 		}
 		if err := w.marshalField(fd, v, indent); err != nil {
 			return err
 		}
 		firstField = false
 	}
 	// Handle proto2 extensions.
 	if md.ExtensionRanges().Len() > 0 {
 		// Collect a sorted list of all extension descriptor and values.
 		type ext struct {
 			desc protoreflect.FieldDescriptor
 			val  protoreflect.Value
 		}
 		var exts []ext
 		m.Range(func(fd protoreflect.FieldDescriptor, v protoreflect.Value) bool {
 			if fd.IsExtension() {
 				exts = append(exts, ext{fd, v})
 			}
 			return true
 		})
 		sort.Slice(exts, func(i, j int) bool {
 			return exts[i].desc.Number() < exts[j].desc.Number()
 		})
 		for _, ext := range exts {
 			if !firstField {
 				w.writeComma()
 			}
 			if err := w.marshalField(ext.desc, ext.val, indent); err != nil {
 				return err
 			}
 			firstField = false
 		}
 	}
 	if w.Indent != "" {
 		w.write("\n")
 		w.write(indent)
 	}
 	w.write("}")
 	return nil
 }
 func (w *jsonWriter) writeComma() {
 	if w.Indent != "" {
 		w.write(",\n")
 	} else {
 		w.write(",")
 	}
 }
 func (w *jsonWriter) marshalAny(m protoreflect.Message, indent string) error {
 	// "If the Any contains a value that has a special JSON mapping,
 	//  it will be converted as follows: {"@type": xxx, "value": yyy}.
 	//  Otherwise, the value will be converted into a JSON object,
 	//  and the "@type" field will be inserted to indicate the actual data type."
 	md := m.Descriptor()
 	typeURL := m.Get(md.Fields().ByNumber(1)).String()
 	rawVal := m.Get(md.Fields().ByNumber(2)).Bytes()
 	var m2 protoreflect.Message
 	if w.AnyResolver != nil {
 		mi, err := w.AnyResolver.Resolve(typeURL)
 		if err != nil {
 			return err
 		}
 		m2 = proto.MessageReflect(mi)
 	} else {
 		mt, err := protoregistry.GlobalTypes.FindMessageByURL(typeURL)
 		if err != nil {
 			return err
 		}
 		m2 = mt.New()
 	}
 	if err := protoV2.Unmarshal(rawVal, m2.Interface()); err != nil {
 		return err
 	}
 	if wellKnownType(m2.Descriptor().FullName()) == "" {
 		return w.marshalMessage(m2, indent, typeURL)
 	}
 	w.write("{")
 	if w.Indent != "" {
 		w.write("\n")
 	}
 	if err := w.marshalTypeURL(indent, typeURL); err != nil {
 		return err
 	}
 	w.writeComma()
 	if w.Indent != "" {
 		w.write(indent)
 		w.write(w.Indent)
 		w.write(`"value": `)
 	} else {
 		w.write(`"value":`)
 	}
 	if err := w.marshalMessage(m2, indent+w.Indent, ""); err != nil {
 		return err
 	}
 	if w.Indent != "" {
 		w.write("\n")
 		w.write(indent)
 	}
 	w.write("}")
 	return nil
 }
 func (w *jsonWriter) marshalTypeURL(indent, typeURL string) error {
 	if w.Indent != "" {
 		w.write(indent)
 		w.write(w.Indent)
 	}
 	w.write(`"@type":`)
 	if w.Indent != "" {
 		w.write(" ")
 	}
 	b, err := json.Marshal(typeURL)
 	if err != nil {
 		return err
 	}
 	w.write(string(b))
 	return nil
 }
 // marshalField writes field description and value to the Writer.
 func (w *jsonWriter) marshalField(fd protoreflect.FieldDescriptor, v protoreflect.Value, indent string) error {
 	if w.Indent != "" {
 		w.write(indent)
 		w.write(w.Indent)
 	}
 	w.write(`"`)
 	switch {
 	case fd.IsExtension():
 		// For message set, use the fname of the message as the extension name.
 		name := string(fd.FullName())
 		if isMessageSet(fd.ContainingMessage()) {
 			name = strings.TrimSuffix(name, ".message_set_extension")
 		}
 		w.write("[" + name + "]")
 	case w.OrigName:
 		name := string(fd.Name())
 		if fd.Kind() == protoreflect.GroupKind {
 			name = string(fd.Message().Name())
 		}
 		w.write(name)
 	default:
 		w.write(string(fd.JSONName()))
 	}
 	w.write(`":`)
 	if w.Indent != "" {
 		w.write(" ")
 	}
 	return w.marshalValue(fd, v, indent)
 }
 func (w *jsonWriter) marshalValue(fd protoreflect.FieldDescriptor, v protoreflect.Value, indent string) error {
 	switch {
 	case fd.IsList():
 		w.write("[")
 		comma := ""
 		lv := v.List()
 		for i := 0; i < lv.Len(); i++ {
 			w.write(comma)
 			if w.Indent != "" {
 				w.write("\n")
 				w.write(indent)
 				w.write(w.Indent)
 				w.write(w.Indent)
 			}
 			if err := w.marshalSingularValue(fd, lv.Get(i), indent+w.Indent); err != nil {
 				return err
 			}
 			comma = ","
 		}
 		if w.Indent != "" {
 			w.write("\n")
 			w.write(indent)
 			w.write(w.Indent)
 		}
 		w.write("]")
 		return nil
 	case fd.IsMap():
 		kfd := fd.MapKey()
 		vfd := fd.MapValue()
 		mv := v.Map()
 		// Collect a sorted list of all map keys and values.
 		type entry struct{ key, val protoreflect.Value }
 		var entries []entry
 		mv.Range(func(k protoreflect.MapKey, v protoreflect.Value) bool {
 			entries = append(entries, entry{k.Value(), v})
 			return true
 		})
 		sort.Slice(entries, func(i, j int) bool {
 			switch kfd.Kind() {
 			case protoreflect.BoolKind:
 				return !entries[i].key.Bool() && entries[j].key.Bool()
 			case protoreflect.Int32Kind, protoreflect.Sint32Kind, protoreflect.Sfixed32Kind, protoreflect.Int64Kind, protoreflect.Sint64Kind, protoreflect.Sfixed64Kind:
 				return entries[i].key.Int() < entries[j].key.Int()
 			case protoreflect.Uint32Kind, protoreflect.Fixed32Kind, protoreflect.Uint64Kind, protoreflect.Fixed64Kind:
 				return entries[i].key.Uint() < entries[j].key.Uint()
 			case protoreflect.StringKind:
 				return entries[i].key.String() < entries[j].key.String()
 			default:
 				panic("invalid kind")
 			}
 		})
 		w.write(`{`)
 		comma := ""
 		for _, entry := range entries {
 			w.write(comma)
 			if w.Indent != "" {
 				w.write("\n")
 				w.write(indent)
 				w.write(w.Indent)
 				w.write(w.Indent)
 			}
 			s := fmt.Sprint(entry.key.Interface())
 			b, err := json.Marshal(s)
 			if err != nil {
 				return err
 			}
 			w.write(string(b))
 			w.write(`:`)
 			if w.Indent != "" {
 				w.write(` `)
 			}
 			if err := w.marshalSingularValue(vfd, entry.val, indent+w.Indent); err != nil {
 				return err
 			}
 			comma = ","
 		}
 		if w.Indent != "" {
 			w.write("\n")
 			w.write(indent)
 			w.write(w.Indent)
 		}
 		w.write(`}`)
 		return nil
 	default:
 		return w.marshalSingularValue(fd, v, indent)
 	}
 }
 func (w *jsonWriter) marshalSingularValue(fd protoreflect.FieldDescriptor, v protoreflect.Value, indent string) error {
 	switch {
 	case !v.IsValid():
 		w.write("null")
 		return nil
 	case fd.Message() != nil:
 		return w.marshalMessage(v.Message(), indent+w.Indent, "")
 	case fd.Enum() != nil:
 		if fd.Enum().FullName() == "google.protobuf.NullValue" {
 			w.write("null")
 			return nil
 		}
 		vd := fd.Enum().Values().ByNumber(v.Enum())
 		if vd == nil || w.EnumsAsInts {
 			w.write(strconv.Itoa(int(v.Enum())))
 		} else {
 			w.write(`"` + string(vd.Name()) + `"`)
 		}
 		return nil
 	default:
 		switch v.Interface().(type) {
 		case float32, float64:
 			switch {
 			case math.IsInf(v.Float(), +1):
 				w.write(`"Infinity"`)
 				return nil
 			case math.IsInf(v.Float(), -1):
 				w.write(`"-Infinity"`)
 				return nil
 			case math.IsNaN(v.Float()):
 				w.write(`"NaN"`)
 				return nil
 			}
 		case int64, uint64:
 			w.write(fmt.Sprintf(`"%d"`, v.Interface()))
 			return nil
 		}
 		b, err := json.Marshal(v.Interface())
 		if err != nil {
 			return err
 		}
 		w.write(string(b))
 		return nil
 	}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/jsonpb/json.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/jsonpb/json.go
@@ -0,0 +1,69 @@
 // Copyright 2015 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 // Package jsonpb provides functionality to marshal and unmarshal between a
 // protocol buffer message and JSON. It follows the specification at
 // https://developers.google.com/protocol-buffers/docs/proto3#json.
 //
 // Do not rely on the default behavior of the standard encoding/json package
 // when called on generated message types as it does not operate correctly.
 //
 // Deprecated: Use the "google.golang.org/protobuf/encoding/protojson"
 // package instead.
 package jsonpb
 import (
 	"github.com/golang/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 	"google.golang.org/protobuf/runtime/protoimpl"
 )
 // AnyResolver takes a type URL, present in an Any message,
 // and resolves it into an instance of the associated message.
 type AnyResolver interface {
 	Resolve(typeURL string) (proto.Message, error)
 }
 type anyResolver struct{ AnyResolver }
 func (r anyResolver) FindMessageByName(message protoreflect.FullName) (protoreflect.MessageType, error) {
 	return r.FindMessageByURL(string(message))
 }
 func (r anyResolver) FindMessageByURL(url string) (protoreflect.MessageType, error) {
 	m, err := r.Resolve(url)
 	if err != nil {
 		return nil, err
 	}
 	return protoimpl.X.MessageTypeOf(m), nil
 }
 func (r anyResolver) FindExtensionByName(field protoreflect.FullName) (protoreflect.ExtensionType, error) {
 	return protoregistry.GlobalTypes.FindExtensionByName(field)
 }
 func (r anyResolver) FindExtensionByNumber(message protoreflect.FullName, field protoreflect.FieldNumber) (protoreflect.ExtensionType, error) {
 	return protoregistry.GlobalTypes.FindExtensionByNumber(message, field)
 }
 func wellKnownType(s protoreflect.FullName) string {
 	if s.Parent() == "google.protobuf" {
 		switch s.Name() {
 		case "Empty", "Any",
 			"BoolValue", "BytesValue", "StringValue",
 			"Int32Value", "UInt32Value", "FloatValue",
 			"Int64Value", "UInt64Value", "DoubleValue",
 			"Duration", "Timestamp",
 			"NullValue", "Struct", "Value", "ListValue":
 			return string(s.Name())
 		}
 	}
 	return ""
 }
 func isMessageSet(md protoreflect.MessageDescriptor) bool {
 	ms, ok := md.(interface{ IsMessageSet() bool })
 	return ok && ms.IsMessageSet()
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/buffer.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/buffer.go
@@ -0,0 +1,324 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"errors"
 	"fmt"
 	"google.golang.org/protobuf/encoding/prototext"
 	"google.golang.org/protobuf/encoding/protowire"
 	"google.golang.org/protobuf/runtime/protoimpl"
 )
 const (
 	WireVarint     = 0
 	WireFixed32    = 5
 	WireFixed64    = 1
 	WireBytes      = 2
 	WireStartGroup = 3
 	WireEndGroup   = 4
 )
 // EncodeVarint returns the varint encoded bytes of v.
 func EncodeVarint(v uint64) []byte {
 	return protowire.AppendVarint(nil, v)
 }
 // SizeVarint returns the length of the varint encoded bytes of v.
 // This is equal to len(EncodeVarint(v)).
 func SizeVarint(v uint64) int {
 	return protowire.SizeVarint(v)
 }
 // DecodeVarint parses a varint encoded integer from b,
 // returning the integer value and the length of the varint.
 // It returns (0, 0) if there is a parse error.
 func DecodeVarint(b []byte) (uint64, int) {
 	v, n := protowire.ConsumeVarint(b)
 	if n < 0 {
 		return 0, 0
 	}
 	return v, n
 }
 // Buffer is a buffer for encoding and decoding the protobuf wire format.
 // It may be reused between invocations to reduce memory usage.
 type Buffer struct {
 	buf           []byte
 	idx           int
 	deterministic bool
 }
 // NewBuffer allocates a new Buffer initialized with buf,
 // where the contents of buf are considered the unread portion of the buffer.
 func NewBuffer(buf []byte) *Buffer {
 	return &Buffer{buf: buf}
 }
 // SetDeterministic specifies whether to use deterministic serialization.
 //
 // Deterministic serialization guarantees that for a given binary, equal
 // messages will always be serialized to the same bytes. This implies:
 //
 //   - Repeated serialization of a message will return the same bytes.
 //   - Different processes of the same binary (which may be executing on
 //     different machines) will serialize equal messages to the same bytes.
 //
 // Note that the deterministic serialization is NOT canonical across
 // languages. It is not guaranteed to remain stable over time. It is unstable
 // across different builds with schema changes due to unknown fields.
 // Users who need canonical serialization (e.g., persistent storage in a
 // canonical form, fingerprinting, etc.) should define their own
 // canonicalization specification and implement their own serializer rather
 // than relying on this API.
 //
 // If deterministic serialization is requested, map entries will be sorted
 // by keys in lexographical order. This is an implementation detail and
 // subject to change.
 func (b *Buffer) SetDeterministic(deterministic bool) {
 	b.deterministic = deterministic
 }
 // SetBuf sets buf as the internal buffer,
 // where the contents of buf are considered the unread portion of the buffer.
 func (b *Buffer) SetBuf(buf []byte) {
 	b.buf = buf
 	b.idx = 0
 }
 // Reset clears the internal buffer of all written and unread data.
 func (b *Buffer) Reset() {
 	b.buf = b.buf[:0]
 	b.idx = 0
 }
 // Bytes returns the internal buffer.
 func (b *Buffer) Bytes() []byte {
 	return b.buf
 }
 // Unread returns the unread portion of the buffer.
 func (b *Buffer) Unread() []byte {
 	return b.buf[b.idx:]
 }
 // Marshal appends the wire-format encoding of m to the buffer.
 func (b *Buffer) Marshal(m Message) error {
 	var err error
 	b.buf, err = marshalAppend(b.buf, m, b.deterministic)
 	return err
 }
 // Unmarshal parses the wire-format message in the buffer and
 // places the decoded results in m.
 // It does not reset m before unmarshaling.
 func (b *Buffer) Unmarshal(m Message) error {
 	err := UnmarshalMerge(b.Unread(), m)
 	b.idx = len(b.buf)
 	return err
 }
 type unknownFields struct{ XXX_unrecognized protoimpl.UnknownFields }
 func (m *unknownFields) String() string { panic("not implemented") }
 func (m *unknownFields) Reset()         { panic("not implemented") }
 func (m *unknownFields) ProtoMessage()  { panic("not implemented") }
 // DebugPrint dumps the encoded bytes of b with a header and footer including s
 // to stdout. This is only intended for debugging.
 func (*Buffer) DebugPrint(s string, b []byte) {
 	m := MessageReflect(new(unknownFields))
 	m.SetUnknown(b)
 	b, _ = prototext.MarshalOptions{AllowPartial: true, Indent: "\t"}.Marshal(m.Interface())
 	fmt.Printf("==== %s ====\n%s==== %s ====\n", s, b, s)
 }
 // EncodeVarint appends an unsigned varint encoding to the buffer.
 func (b *Buffer) EncodeVarint(v uint64) error {
 	b.buf = protowire.AppendVarint(b.buf, v)
 	return nil
 }
 // EncodeZigzag32 appends a 32-bit zig-zag varint encoding to the buffer.
 func (b *Buffer) EncodeZigzag32(v uint64) error {
 	return b.EncodeVarint(uint64((uint32(v) << 1) ^ uint32((int32(v) >> 31))))
 }
 // EncodeZigzag64 appends a 64-bit zig-zag varint encoding to the buffer.
 func (b *Buffer) EncodeZigzag64(v uint64) error {
 	return b.EncodeVarint(uint64((uint64(v) << 1) ^ uint64((int64(v) >> 63))))
 }
 // EncodeFixed32 appends a 32-bit little-endian integer to the buffer.
 func (b *Buffer) EncodeFixed32(v uint64) error {
 	b.buf = protowire.AppendFixed32(b.buf, uint32(v))
 	return nil
 }
 // EncodeFixed64 appends a 64-bit little-endian integer to the buffer.
 func (b *Buffer) EncodeFixed64(v uint64) error {
 	b.buf = protowire.AppendFixed64(b.buf, uint64(v))
 	return nil
 }
 // EncodeRawBytes appends a length-prefixed raw bytes to the buffer.
 func (b *Buffer) EncodeRawBytes(v []byte) error {
 	b.buf = protowire.AppendBytes(b.buf, v)
 	return nil
 }
 // EncodeStringBytes appends a length-prefixed raw bytes to the buffer.
 // It does not validate whether v contains valid UTF-8.
 func (b *Buffer) EncodeStringBytes(v string) error {
 	b.buf = protowire.AppendString(b.buf, v)
 	return nil
 }
 // EncodeMessage appends a length-prefixed encoded message to the buffer.
 func (b *Buffer) EncodeMessage(m Message) error {
 	var err error
 	b.buf = protowire.AppendVarint(b.buf, uint64(Size(m)))
 	b.buf, err = marshalAppend(b.buf, m, b.deterministic)
 	return err
 }
 // DecodeVarint consumes an encoded unsigned varint from the buffer.
 func (b *Buffer) DecodeVarint() (uint64, error) {
 	v, n := protowire.ConsumeVarint(b.buf[b.idx:])
 	if n < 0 {
 		return 0, protowire.ParseError(n)
 	}
 	b.idx += n
 	return uint64(v), nil
 }
 // DecodeZigzag32 consumes an encoded 32-bit zig-zag varint from the buffer.
 func (b *Buffer) DecodeZigzag32() (uint64, error) {
 	v, err := b.DecodeVarint()
 	if err != nil {
 		return 0, err
 	}
 	return uint64((uint32(v) >> 1) ^ uint32((int32(v&1)<<31)>>31)), nil
 }
 // DecodeZigzag64 consumes an encoded 64-bit zig-zag varint from the buffer.
 func (b *Buffer) DecodeZigzag64() (uint64, error) {
 	v, err := b.DecodeVarint()
 	if err != nil {
 		return 0, err
 	}
 	return uint64((uint64(v) >> 1) ^ uint64((int64(v&1)<<63)>>63)), nil
 }
 // DecodeFixed32 consumes a 32-bit little-endian integer from the buffer.
 func (b *Buffer) DecodeFixed32() (uint64, error) {
 	v, n := protowire.ConsumeFixed32(b.buf[b.idx:])
 	if n < 0 {
 		return 0, protowire.ParseError(n)
 	}
 	b.idx += n
 	return uint64(v), nil
 }
 // DecodeFixed64 consumes a 64-bit little-endian integer from the buffer.
 func (b *Buffer) DecodeFixed64() (uint64, error) {
 	v, n := protowire.ConsumeFixed64(b.buf[b.idx:])
 	if n < 0 {
 		return 0, protowire.ParseError(n)
 	}
 	b.idx += n
 	return uint64(v), nil
 }
 // DecodeRawBytes consumes a length-prefixed raw bytes from the buffer.
 // If alloc is specified, it returns a copy the raw bytes
 // rather than a sub-slice of the buffer.
 func (b *Buffer) DecodeRawBytes(alloc bool) ([]byte, error) {
 	v, n := protowire.ConsumeBytes(b.buf[b.idx:])
 	if n < 0 {
 		return nil, protowire.ParseError(n)
 	}
 	b.idx += n
 	if alloc {
 		v = append([]byte(nil), v...)
 	}
 	return v, nil
 }
 // DecodeStringBytes consumes a length-prefixed raw bytes from the buffer.
 // It does not validate whether the raw bytes contain valid UTF-8.
 func (b *Buffer) DecodeStringBytes() (string, error) {
 	v, n := protowire.ConsumeString(b.buf[b.idx:])
 	if n < 0 {
 		return "", protowire.ParseError(n)
 	}
 	b.idx += n
 	return v, nil
 }
 // DecodeMessage consumes a length-prefixed message from the buffer.
 // It does not reset m before unmarshaling.
 func (b *Buffer) DecodeMessage(m Message) error {
 	v, err := b.DecodeRawBytes(false)
 	if err != nil {
 		return err
 	}
 	return UnmarshalMerge(v, m)
 }
 // DecodeGroup consumes a message group from the buffer.
 // It assumes that the start group marker has already been consumed and
 // consumes all bytes until (and including the end group marker).
 // It does not reset m before unmarshaling.
 func (b *Buffer) DecodeGroup(m Message) error {
 	v, n, err := consumeGroup(b.buf[b.idx:])
 	if err != nil {
 		return err
 	}
 	b.idx += n
 	return UnmarshalMerge(v, m)
 }
 // consumeGroup parses b until it finds an end group marker, returning
 // the raw bytes of the message (excluding the end group marker) and the
 // the total length of the message (including the end group marker).
 func consumeGroup(b []byte) ([]byte, int, error) {
 	b0 := b
 	depth := 1 // assume this follows a start group marker
 	for {
 		_, wtyp, tagLen := protowire.ConsumeTag(b)
 		if tagLen < 0 {
 			return nil, 0, protowire.ParseError(tagLen)
 		}
 		b = b[tagLen:]
 		var valLen int
 		switch wtyp {
 		case protowire.VarintType:
 			_, valLen = protowire.ConsumeVarint(b)
 		case protowire.Fixed32Type:
 			_, valLen = protowire.ConsumeFixed32(b)
 		case protowire.Fixed64Type:
 			_, valLen = protowire.ConsumeFixed64(b)
 		case protowire.BytesType:
 			_, valLen = protowire.ConsumeBytes(b)
 		case protowire.StartGroupType:
 			depth++
 		case protowire.EndGroupType:
 			depth--
 		default:
 			return nil, 0, errors.New("proto: cannot parse reserved wire type")
 		}
 		if valLen < 0 {
 			return nil, 0, protowire.ParseError(valLen)
 		}
 		b = b[valLen:]
 		if depth == 0 {
 			return b0[:len(b0)-len(b)-tagLen], len(b0) - len(b), nil
 		}
 	}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/defaults.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/defaults.go
@@ -0,0 +1,63 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"google.golang.org/protobuf/reflect/protoreflect"
 )
 // SetDefaults sets unpopulated scalar fields to their default values.
 // Fields within a oneof are not set even if they have a default value.
 // SetDefaults is recursively called upon any populated message fields.
 func SetDefaults(m Message) {
 	if m != nil {
 		setDefaults(MessageReflect(m))
 	}
 }
 func setDefaults(m protoreflect.Message) {
 	fds := m.Descriptor().Fields()
 	for i := 0; i < fds.Len(); i++ {
 		fd := fds.Get(i)
 		if !m.Has(fd) {
 			if fd.HasDefault() && fd.ContainingOneof() == nil {
 				v := fd.Default()
 				if fd.Kind() == protoreflect.BytesKind {
 					v = protoreflect.ValueOf(append([]byte(nil), v.Bytes()...)) // copy the default bytes
 				}
 				m.Set(fd, v)
 			}
 			continue
 		}
 	}
 	m.Range(func(fd protoreflect.FieldDescriptor, v protoreflect.Value) bool {
 		switch {
 		// Handle singular message.
 		case fd.Cardinality() != protoreflect.Repeated:
 			if fd.Message() != nil {
 				setDefaults(m.Get(fd).Message())
 			}
 		// Handle list of messages.
 		case fd.IsList():
 			if fd.Message() != nil {
 				ls := m.Get(fd).List()
 				for i := 0; i < ls.Len(); i++ {
 					setDefaults(ls.Get(i).Message())
 				}
 			}
 		// Handle map of messages.
 		case fd.IsMap():
 			if fd.MapValue().Message() != nil {
 				ms := m.Get(fd).Map()
 				ms.Range(func(_ protoreflect.MapKey, v protoreflect.Value) bool {
 					setDefaults(v.Message())
 					return true
 				})
 			}
 		}
 		return true
 	})
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/deprecated.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/deprecated.go
@@ -0,0 +1,113 @@
 // Copyright 2018 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"encoding/json"
 	"errors"
 	"fmt"
 	"strconv"
 	protoV2 "google.golang.org/protobuf/proto"
 )
 var (
 	// Deprecated: No longer returned.
 	ErrNil = errors.New("proto: Marshal called with nil")
 	// Deprecated: No longer returned.
 	ErrTooLarge = errors.New("proto: message encodes to over 2 GB")
 	// Deprecated: No longer returned.
 	ErrInternalBadWireType = errors.New("proto: internal error: bad wiretype for oneof")
 )
 // Deprecated: Do not use.
 type Stats struct{ Emalloc, Dmalloc, Encode, Decode, Chit, Cmiss, Size uint64 }
 // Deprecated: Do not use.
 func GetStats() Stats { return Stats{} }
 // Deprecated: Do not use.
 func MarshalMessageSet(interface{}) ([]byte, error) {
 	return nil, errors.New("proto: not implemented")
 }
 // Deprecated: Do not use.
 func UnmarshalMessageSet([]byte, interface{}) error {
 	return errors.New("proto: not implemented")
 }
 // Deprecated: Do not use.
 func MarshalMessageSetJSON(interface{}) ([]byte, error) {
 	return nil, errors.New("proto: not implemented")
 }
 // Deprecated: Do not use.
 func UnmarshalMessageSetJSON([]byte, interface{}) error {
 	return errors.New("proto: not implemented")
 }
 // Deprecated: Do not use.
 func RegisterMessageSetType(Message, int32, string) {}
 // Deprecated: Do not use.
 func EnumName(m map[int32]string, v int32) string {
 	s, ok := m[v]
 	if ok {
 		return s
 	}
 	return strconv.Itoa(int(v))
 }
 // Deprecated: Do not use.
 func UnmarshalJSONEnum(m map[string]int32, data []byte, enumName string) (int32, error) {
 	if data[0] == '"' {
 		// New style: enums are strings.
 		var repr string
 		if err := json.Unmarshal(data, &repr); err != nil {
 			return -1, err
 		}
 		val, ok := m[repr]
 		if !ok {
 			return 0, fmt.Errorf("unrecognized enum %s value %q", enumName, repr)
 		}
 		return val, nil
 	}
 	// Old style: enums are ints.
 	var val int32
 	if err := json.Unmarshal(data, &val); err != nil {
 		return 0, fmt.Errorf("cannot unmarshal %#q into enum %s", data, enumName)
 	}
 	return val, nil
 }
 // Deprecated: Do not use; this type existed for intenal-use only.
 type InternalMessageInfo struct{}
 // Deprecated: Do not use; this method existed for intenal-use only.
 func (*InternalMessageInfo) DiscardUnknown(m Message) {
 	DiscardUnknown(m)
 }
 // Deprecated: Do not use; this method existed for intenal-use only.
 func (*InternalMessageInfo) Marshal(b []byte, m Message, deterministic bool) ([]byte, error) {
 	return protoV2.MarshalOptions{Deterministic: deterministic}.MarshalAppend(b, MessageV2(m))
 }
 // Deprecated: Do not use; this method existed for intenal-use only.
 func (*InternalMessageInfo) Merge(dst, src Message) {
 	protoV2.Merge(MessageV2(dst), MessageV2(src))
 }
 // Deprecated: Do not use; this method existed for intenal-use only.
 func (*InternalMessageInfo) Size(m Message) int {
 	return protoV2.Size(MessageV2(m))
 }
 // Deprecated: Do not use; this method existed for intenal-use only.
 func (*InternalMessageInfo) Unmarshal(m Message, b []byte) error {
 	return protoV2.UnmarshalOptions{Merge: true}.Unmarshal(b, MessageV2(m))
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/discard.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/discard.go
@@ -0,0 +1,58 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"google.golang.org/protobuf/reflect/protoreflect"
 )
 // DiscardUnknown recursively discards all unknown fields from this message
 // and all embedded messages.
 //
 // When unmarshaling a message with unrecognized fields, the tags and values
 // of such fields are preserved in the Message. This allows a later call to
 // marshal to be able to produce a message that continues to have those
 // unrecognized fields. To avoid this, DiscardUnknown is used to
 // explicitly clear the unknown fields after unmarshaling.
 func DiscardUnknown(m Message) {
 	if m != nil {
 		discardUnknown(MessageReflect(m))
 	}
 }
 func discardUnknown(m protoreflect.Message) {
 	m.Range(func(fd protoreflect.FieldDescriptor, val protoreflect.Value) bool {
 		switch {
 		// Handle singular message.
 		case fd.Cardinality() != protoreflect.Repeated:
 			if fd.Message() != nil {
 				discardUnknown(m.Get(fd).Message())
 			}
 		// Handle list of messages.
 		case fd.IsList():
 			if fd.Message() != nil {
 				ls := m.Get(fd).List()
 				for i := 0; i < ls.Len(); i++ {
 					discardUnknown(ls.Get(i).Message())
 				}
 			}
 		// Handle map of messages.
 		case fd.IsMap():
 			if fd.MapValue().Message() != nil {
 				ms := m.Get(fd).Map()
 				ms.Range(func(_ protoreflect.MapKey, v protoreflect.Value) bool {
 					discardUnknown(v.Message())
 					return true
 				})
 			}
 		}
 		return true
 	})
 	// Discard unknown fields.
 	if len(m.GetUnknown()) > 0 {
 		m.SetUnknown(nil)
 	}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/extensions.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/extensions.go
@@ -0,0 +1,356 @@
 // Copyright 2010 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"errors"
 	"fmt"
 	"reflect"
 	"google.golang.org/protobuf/encoding/protowire"
 	"google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 	"google.golang.org/protobuf/runtime/protoiface"
 	"google.golang.org/protobuf/runtime/protoimpl"
 )
 type (
 	// ExtensionDesc represents an extension descriptor and
 	// is used to interact with an extension field in a message.
 	//
 	// Variables of this type are generated in code by protoc-gen-go.
 	ExtensionDesc = protoimpl.ExtensionInfo
 	// ExtensionRange represents a range of message extensions.
 	// Used in code generated by protoc-gen-go.
 	ExtensionRange = protoiface.ExtensionRangeV1
 	// Deprecated: Do not use; this is an internal type.
 	Extension = protoimpl.ExtensionFieldV1
 	// Deprecated: Do not use; this is an internal type.
 	XXX_InternalExtensions = protoimpl.ExtensionFields
 )
 // ErrMissingExtension reports whether the extension was not present.
 var ErrMissingExtension = errors.New("proto: missing extension")
 var errNotExtendable = errors.New("proto: not an extendable proto.Message")
 // HasExtension reports whether the extension field is present in m
 // either as an explicitly populated field or as an unknown field.
 func HasExtension(m Message, xt *ExtensionDesc) (has bool) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() {
 		return false
 	}
 	// Check whether any populated known field matches the field number.
 	xtd := xt.TypeDescriptor()
 	if isValidExtension(mr.Descriptor(), xtd) {
 		has = mr.Has(xtd)
 	} else {
 		mr.Range(func(fd protoreflect.FieldDescriptor, _ protoreflect.Value) bool {
 			has = int32(fd.Number()) == xt.Field
 			return !has
 		})
 	}
 	// Check whether any unknown field matches the field number.
 	for b := mr.GetUnknown(); !has && len(b) > 0; {
 		num, _, n := protowire.ConsumeField(b)
 		has = int32(num) == xt.Field
 		b = b[n:]
 	}
 	return has
 }
 // ClearExtension removes the extension field from m
 // either as an explicitly populated field or as an unknown field.
 func ClearExtension(m Message, xt *ExtensionDesc) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() {
 		return
 	}
 	xtd := xt.TypeDescriptor()
 	if isValidExtension(mr.Descriptor(), xtd) {
 		mr.Clear(xtd)
 	} else {
 		mr.Range(func(fd protoreflect.FieldDescriptor, _ protoreflect.Value) bool {
 			if int32(fd.Number()) == xt.Field {
 				mr.Clear(fd)
 				return false
 			}
 			return true
 		})
 	}
 	clearUnknown(mr, fieldNum(xt.Field))
 }
 // ClearAllExtensions clears all extensions from m.
 // This includes populated fields and unknown fields in the extension range.
 func ClearAllExtensions(m Message) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() {
 		return
 	}
 	mr.Range(func(fd protoreflect.FieldDescriptor, _ protoreflect.Value) bool {
 		if fd.IsExtension() {
 			mr.Clear(fd)
 		}
 		return true
 	})
 	clearUnknown(mr, mr.Descriptor().ExtensionRanges())
 }
 // GetExtension retrieves a proto2 extended field from m.
 //
 // If the descriptor is type complete (i.e., ExtensionDesc.ExtensionType is non-nil),
 // then GetExtension parses the encoded field and returns a Go value of the specified type.
 // If the field is not present, then the default value is returned (if one is specified),
 // otherwise ErrMissingExtension is reported.
 //
 // If the descriptor is type incomplete (i.e., ExtensionDesc.ExtensionType is nil),
 // then GetExtension returns the raw encoded bytes for the extension field.
 func GetExtension(m Message, xt *ExtensionDesc) (interface{}, error) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() || mr.Descriptor().ExtensionRanges().Len() == 0 {
 		return nil, errNotExtendable
 	}
 	// Retrieve the unknown fields for this extension field.
 	var bo protoreflect.RawFields
 	for bi := mr.GetUnknown(); len(bi) > 0; {
 		num, _, n := protowire.ConsumeField(bi)
 		if int32(num) == xt.Field {
 			bo = append(bo, bi[:n]...)
 		}
 		bi = bi[n:]
 	}
 	// For type incomplete descriptors, only retrieve the unknown fields.
 	if xt.ExtensionType == nil {
 		return []byte(bo), nil
 	}
 	// If the extension field only exists as unknown fields, unmarshal it.
 	// This is rarely done since proto.Unmarshal eagerly unmarshals extensions.
 	xtd := xt.TypeDescriptor()
 	if !isValidExtension(mr.Descriptor(), xtd) {
 		return nil, fmt.Errorf("proto: bad extended type; %T does not extend %T", xt.ExtendedType, m)
 	}
 	if !mr.Has(xtd) && len(bo) > 0 {
 		m2 := mr.New()
 		if err := (proto.UnmarshalOptions{
 			Resolver: extensionResolver{xt},
 		}.Unmarshal(bo, m2.Interface())); err != nil {
 			return nil, err
 		}
 		if m2.Has(xtd) {
 			mr.Set(xtd, m2.Get(xtd))
 			clearUnknown(mr, fieldNum(xt.Field))
 		}
 	}
 	// Check whether the message has the extension field set or a default.
 	var pv protoreflect.Value
 	switch {
 	case mr.Has(xtd):
 		pv = mr.Get(xtd)
 	case xtd.HasDefault():
 		pv = xtd.Default()
 	default:
 		return nil, ErrMissingExtension
 	}
 	v := xt.InterfaceOf(pv)
 	rv := reflect.ValueOf(v)
 	if isScalarKind(rv.Kind()) {
 		rv2 := reflect.New(rv.Type())
 		rv2.Elem().Set(rv)
 		v = rv2.Interface()
 	}
 	return v, nil
 }
 // extensionResolver is a custom extension resolver that stores a single
 // extension type that takes precedence over the global registry.
 type extensionResolver struct{ xt protoreflect.ExtensionType }
 func (r extensionResolver) FindExtensionByName(field protoreflect.FullName) (protoreflect.ExtensionType, error) {
 	if xtd := r.xt.TypeDescriptor(); xtd.FullName() == field {
 		return r.xt, nil
 	}
 	return protoregistry.GlobalTypes.FindExtensionByName(field)
 }
 func (r extensionResolver) FindExtensionByNumber(message protoreflect.FullName, field protoreflect.FieldNumber) (protoreflect.ExtensionType, error) {
 	if xtd := r.xt.TypeDescriptor(); xtd.ContainingMessage().FullName() == message && xtd.Number() == field {
 		return r.xt, nil
 	}
 	return protoregistry.GlobalTypes.FindExtensionByNumber(message, field)
 }
 // GetExtensions returns a list of the extensions values present in m,
 // corresponding with the provided list of extension descriptors, xts.
 // If an extension is missing in m, the corresponding value is nil.
 func GetExtensions(m Message, xts []*ExtensionDesc) ([]interface{}, error) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() {
 		return nil, errNotExtendable
 	}
 	vs := make([]interface{}, len(xts))
 	for i, xt := range xts {
 		v, err := GetExtension(m, xt)
 		if err != nil {
 			if err == ErrMissingExtension {
 				continue
 			}
 			return vs, err
 		}
 		vs[i] = v
 	}
 	return vs, nil
 }
 // SetExtension sets an extension field in m to the provided value.
 func SetExtension(m Message, xt *ExtensionDesc, v interface{}) error {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() || mr.Descriptor().ExtensionRanges().Len() == 0 {
 		return errNotExtendable
 	}
 	rv := reflect.ValueOf(v)
 	if reflect.TypeOf(v) != reflect.TypeOf(xt.ExtensionType) {
 		return fmt.Errorf("proto: bad extension value type. got: %T, want: %T", v, xt.ExtensionType)
 	}
 	if rv.Kind() == reflect.Ptr {
 		if rv.IsNil() {
 			return fmt.Errorf("proto: SetExtension called with nil value of type %T", v)
 		}
 		if isScalarKind(rv.Elem().Kind()) {
 			v = rv.Elem().Interface()
 		}
 	}
 	xtd := xt.TypeDescriptor()
 	if !isValidExtension(mr.Descriptor(), xtd) {
 		return fmt.Errorf("proto: bad extended type; %T does not extend %T", xt.ExtendedType, m)
 	}
 	mr.Set(xtd, xt.ValueOf(v))
 	clearUnknown(mr, fieldNum(xt.Field))
 	return nil
 }
 // SetRawExtension inserts b into the unknown fields of m.
 //
 // Deprecated: Use Message.ProtoReflect.SetUnknown instead.
 func SetRawExtension(m Message, fnum int32, b []byte) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() {
 		return
 	}
 	// Verify that the raw field is valid.
 	for b0 := b; len(b0) > 0; {
 		num, _, n := protowire.ConsumeField(b0)
 		if int32(num) != fnum {
 			panic(fmt.Sprintf("mismatching field number: got %d, want %d", num, fnum))
 		}
 		b0 = b0[n:]
 	}
 	ClearExtension(m, &ExtensionDesc{Field: fnum})
 	mr.SetUnknown(append(mr.GetUnknown(), b...))
 }
 // ExtensionDescs returns a list of extension descriptors found in m,
 // containing descriptors for both populated extension fields in m and
 // also unknown fields of m that are in the extension range.
 // For the later case, an type incomplete descriptor is provided where only
 // the ExtensionDesc.Field field is populated.
 // The order of the extension descriptors is undefined.
 func ExtensionDescs(m Message) ([]*ExtensionDesc, error) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() || mr.Descriptor().ExtensionRanges().Len() == 0 {
 		return nil, errNotExtendable
 	}
 	// Collect a set of known extension descriptors.
 	extDescs := make(map[protoreflect.FieldNumber]*ExtensionDesc)
 	mr.Range(func(fd protoreflect.FieldDescriptor, v protoreflect.Value) bool {
 		if fd.IsExtension() {
 			xt := fd.(protoreflect.ExtensionTypeDescriptor)
 			if xd, ok := xt.Type().(*ExtensionDesc); ok {
 				extDescs[fd.Number()] = xd
 			}
 		}
 		return true
 	})
 	// Collect a set of unknown extension descriptors.
 	extRanges := mr.Descriptor().ExtensionRanges()
 	for b := mr.GetUnknown(); len(b) > 0; {
 		num, _, n := protowire.ConsumeField(b)
 		if extRanges.Has(num) && extDescs[num] == nil {
 			extDescs[num] = nil
 		}
 		b = b[n:]
 	}
 	// Transpose the set of descriptors into a list.
 	var xts []*ExtensionDesc
 	for num, xt := range extDescs {
 		if xt == nil {
 			xt = &ExtensionDesc{Field: int32(num)}
 		}
 		xts = append(xts, xt)
 	}
 	return xts, nil
 }
 // isValidExtension reports whether xtd is a valid extension descriptor for md.
 func isValidExtension(md protoreflect.MessageDescriptor, xtd protoreflect.ExtensionTypeDescriptor) bool {
 	return xtd.ContainingMessage() == md && md.ExtensionRanges().Has(xtd.Number())
 }
 // isScalarKind reports whether k is a protobuf scalar kind (except bytes).
 // This function exists for historical reasons since the representation of
 // scalars differs between v1 and v2, where v1 uses *T and v2 uses T.
 func isScalarKind(k reflect.Kind) bool {
 	switch k {
 	case reflect.Bool, reflect.Int32, reflect.Int64, reflect.Uint32, reflect.Uint64, reflect.Float32, reflect.Float64, reflect.String:
 		return true
 	default:
 		return false
 	}
 }
 // clearUnknown removes unknown fields from m where remover.Has reports true.
 func clearUnknown(m protoreflect.Message, remover interface {
 	Has(protoreflect.FieldNumber) bool
 }) {
 	var bo protoreflect.RawFields
 	for bi := m.GetUnknown(); len(bi) > 0; {
 		num, _, n := protowire.ConsumeField(bi)
 		if !remover.Has(num) {
 			bo = append(bo, bi[:n]...)
 		}
 		bi = bi[n:]
 	}
 	if bi := m.GetUnknown(); len(bi) != len(bo) {
 		m.SetUnknown(bo)
 	}
 }
 type fieldNum protoreflect.FieldNumber
 func (n1 fieldNum) Has(n2 protoreflect.FieldNumber) bool {
 	return protoreflect.FieldNumber(n1) == n2
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/properties.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/properties.go
@@ -0,0 +1,306 @@
 // Copyright 2010 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"fmt"
 	"reflect"
 	"strconv"
 	"strings"
 	"sync"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/runtime/protoimpl"
 )
 // StructProperties represents protocol buffer type information for a
 // generated protobuf message in the open-struct API.
 //
 // Deprecated: Do not use.
 type StructProperties struct {
 	// Prop are the properties for each field.
 	//
 	// Fields belonging to a oneof are stored in OneofTypes instead, with a
 	// single Properties representing the parent oneof held here.
 	//
 	// The order of Prop matches the order of fields in the Go struct.
 	// Struct fields that are not related to protobufs have a "XXX_" prefix
 	// in the Properties.Name and must be ignored by the user.
 	Prop []*Properties
 	// OneofTypes contains information about the oneof fields in this message.
 	// It is keyed by the protobuf field name.
 	OneofTypes map[string]*OneofProperties
 }
 // Properties represents the type information for a protobuf message field.
 //
 // Deprecated: Do not use.
 type Properties struct {
 	// Name is a placeholder name with little meaningful semantic value.
 	// If the name has an "XXX_" prefix, the entire Properties must be ignored.
 	Name string
 	// OrigName is the protobuf field name or oneof name.
 	OrigName string
 	// JSONName is the JSON name for the protobuf field.
 	JSONName string
 	// Enum is a placeholder name for enums.
 	// For historical reasons, this is neither the Go name for the enum,
 	// nor the protobuf name for the enum.
 	Enum string // Deprecated: Do not use.
 	// Weak contains the full name of the weakly referenced message.
 	Weak string
 	// Wire is a string representation of the wire type.
 	Wire string
 	// WireType is the protobuf wire type for the field.
 	WireType int
 	// Tag is the protobuf field number.
 	Tag int
 	// Required reports whether this is a required field.
 	Required bool
 	// Optional reports whether this is a optional field.
 	Optional bool
 	// Repeated reports whether this is a repeated field.
 	Repeated bool
 	// Packed reports whether this is a packed repeated field of scalars.
 	Packed bool
 	// Proto3 reports whether this field operates under the proto3 syntax.
 	Proto3 bool
 	// Oneof reports whether this field belongs within a oneof.
 	Oneof bool
 	// Default is the default value in string form.
 	Default string
 	// HasDefault reports whether the field has a default value.
 	HasDefault bool
 	// MapKeyProp is the properties for the key field for a map field.
 	MapKeyProp *Properties
 	// MapValProp is the properties for the value field for a map field.
 	MapValProp *Properties
 }
 // OneofProperties represents the type information for a protobuf oneof.
 //
 // Deprecated: Do not use.
 type OneofProperties struct {
 	// Type is a pointer to the generated wrapper type for the field value.
 	// This is nil for messages that are not in the open-struct API.
 	Type reflect.Type
 	// Field is the index into StructProperties.Prop for the containing oneof.
 	Field int
 	// Prop is the properties for the field.
 	Prop *Properties
 }
 // String formats the properties in the protobuf struct field tag style.
 func (p *Properties) String() string {
 	s := p.Wire
 	s += "," + strconv.Itoa(p.Tag)
 	if p.Required {
 		s += ",req"
 	}
 	if p.Optional {
 		s += ",opt"
 	}
 	if p.Repeated {
 		s += ",rep"
 	}
 	if p.Packed {
 		s += ",packed"
 	}
 	s += ",name=" + p.OrigName
 	if p.JSONName != "" {
 		s += ",json=" + p.JSONName
 	}
 	if len(p.Enum) > 0 {
 		s += ",enum=" + p.Enum
 	}
 	if len(p.Weak) > 0 {
 		s += ",weak=" + p.Weak
 	}
 	if p.Proto3 {
 		s += ",proto3"
 	}
 	if p.Oneof {
 		s += ",oneof"
 	}
 	if p.HasDefault {
 		s += ",def=" + p.Default
 	}
 	return s
 }
 // Parse populates p by parsing a string in the protobuf struct field tag style.
 func (p *Properties) Parse(tag string) {
 	// For example: "bytes,49,opt,name=foo,def=hello!"
 	for len(tag) > 0 {
 		i := strings.IndexByte(tag, ',')
 		if i < 0 {
 			i = len(tag)
 		}
 		switch s := tag[:i]; {
 		case strings.HasPrefix(s, "name="):
 			p.OrigName = s[len("name="):]
 		case strings.HasPrefix(s, "json="):
 			p.JSONName = s[len("json="):]
 		case strings.HasPrefix(s, "enum="):
 			p.Enum = s[len("enum="):]
 		case strings.HasPrefix(s, "weak="):
 			p.Weak = s[len("weak="):]
 		case strings.Trim(s, "0123456789") == "":
 			n, _ := strconv.ParseUint(s, 10, 32)
 			p.Tag = int(n)
 		case s == "opt":
 			p.Optional = true
 		case s == "req":
 			p.Required = true
 		case s == "rep":
 			p.Repeated = true
 		case s == "varint" || s == "zigzag32" || s == "zigzag64":
 			p.Wire = s
 			p.WireType = WireVarint
 		case s == "fixed32":
 			p.Wire = s
 			p.WireType = WireFixed32
 		case s == "fixed64":
 			p.Wire = s
 			p.WireType = WireFixed64
 		case s == "bytes":
 			p.Wire = s
 			p.WireType = WireBytes
 		case s == "group":
 			p.Wire = s
 			p.WireType = WireStartGroup
 		case s == "packed":
 			p.Packed = true
 		case s == "proto3":
 			p.Proto3 = true
 		case s == "oneof":
 			p.Oneof = true
 		case strings.HasPrefix(s, "def="):
 			// The default tag is special in that everything afterwards is the
 			// default regardless of the presence of commas.
 			p.HasDefault = true
 			p.Default, i = tag[len("def="):], len(tag)
 		}
 		tag = strings.TrimPrefix(tag[i:], ",")
 	}
 }
 // Init populates the properties from a protocol buffer struct tag.
 //
 // Deprecated: Do not use.
 func (p *Properties) Init(typ reflect.Type, name, tag string, f *reflect.StructField) {
 	p.Name = name
 	p.OrigName = name
 	if tag == "" {
 		return
 	}
 	p.Parse(tag)
 	if typ != nil && typ.Kind() == reflect.Map {
 		p.MapKeyProp = new(Properties)
 		p.MapKeyProp.Init(nil, "Key", f.Tag.Get("protobuf_key"), nil)
 		p.MapValProp = new(Properties)
 		p.MapValProp.Init(nil, "Value", f.Tag.Get("protobuf_val"), nil)
 	}
 }
 var propertiesCache sync.Map // map[reflect.Type]*StructProperties
 // GetProperties returns the list of properties for the type represented by t,
 // which must be a generated protocol buffer message in the open-struct API,
 // where protobuf message fields are represented by exported Go struct fields.
 //
 // Deprecated: Use protobuf reflection instead.
 func GetProperties(t reflect.Type) *StructProperties {
 	if p, ok := propertiesCache.Load(t); ok {
 		return p.(*StructProperties)
 	}
 	p, _ := propertiesCache.LoadOrStore(t, newProperties(t))
 	return p.(*StructProperties)
 }
 func newProperties(t reflect.Type) *StructProperties {
 	if t.Kind() != reflect.Struct {
 		panic(fmt.Sprintf("%v is not a generated message in the open-struct API", t))
 	}
 	var hasOneof bool
 	prop := new(StructProperties)
 	// Construct a list of properties for each field in the struct.
 	for i := 0; i < t.NumField(); i++ {
 		p := new(Properties)
 		f := t.Field(i)
 		tagField := f.Tag.Get("protobuf")
 		p.Init(f.Type, f.Name, tagField, &f)
 		tagOneof := f.Tag.Get("protobuf_oneof")
 		if tagOneof != "" {
 			hasOneof = true
 			p.OrigName = tagOneof
 		}
 		// Rename unrelated struct fields with the "XXX_" prefix since so much
 		// user code simply checks for this to exclude special fields.
 		if tagField == "" && tagOneof == "" && !strings.HasPrefix(p.Name, "XXX_") {
 			p.Name = "XXX_" + p.Name
 			p.OrigName = "XXX_" + p.OrigName
 		} else if p.Weak != "" {
 			p.Name = p.OrigName // avoid possible "XXX_" prefix on weak field
 		}
 		prop.Prop = append(prop.Prop, p)
 	}
 	// Construct a mapping of oneof field names to properties.
 	if hasOneof {
 		var oneofWrappers []interface{}
 		if fn, ok := reflect.PtrTo(t).MethodByName("XXX_OneofFuncs"); ok {
 			oneofWrappers = fn.Func.Call([]reflect.Value{reflect.Zero(fn.Type.In(0))})[3].Interface().([]interface{})
 		}
 		if fn, ok := reflect.PtrTo(t).MethodByName("XXX_OneofWrappers"); ok {
 			oneofWrappers = fn.Func.Call([]reflect.Value{reflect.Zero(fn.Type.In(0))})[0].Interface().([]interface{})
 		}
 		if m, ok := reflect.Zero(reflect.PtrTo(t)).Interface().(protoreflect.ProtoMessage); ok {
 			if m, ok := m.ProtoReflect().(interface{ ProtoMessageInfo() *protoimpl.MessageInfo }); ok {
 				oneofWrappers = m.ProtoMessageInfo().OneofWrappers
 			}
 		}
 		prop.OneofTypes = make(map[string]*OneofProperties)
 		for _, wrapper := range oneofWrappers {
 			p := &OneofProperties{
 				Type: reflect.ValueOf(wrapper).Type(), // *T
 				Prop: new(Properties),
 			}
 			f := p.Type.Elem().Field(0)
 			p.Prop.Name = f.Name
 			p.Prop.Parse(f.Tag.Get("protobuf"))
 			// Determine the struct field that contains this oneof.
 			// Each wrapper is assignable to exactly one parent field.
 			var foundOneof bool
 			for i := 0; i < t.NumField() && !foundOneof; i++ {
 				if p.Type.AssignableTo(t.Field(i).Type) {
 					p.Field = i
 					foundOneof = true
 				}
 			}
 			if !foundOneof {
 				panic(fmt.Sprintf("%v is not a generated message in the open-struct API", t))
 			}
 			prop.OneofTypes[p.Prop.OrigName] = p
 		}
 	}
 	return prop
 }
 func (sp *StructProperties) Len() int           { return len(sp.Prop) }
 func (sp *StructProperties) Less(i, j int) bool { return false }
 func (sp *StructProperties) Swap(i, j int)      { return }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/proto.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/proto.go
@@ -0,0 +1,167 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 // Package proto provides functionality for handling protocol buffer messages.
 // In particular, it provides marshaling and unmarshaling between a protobuf
 // message and the binary wire format.
 //
 // See https://developers.google.com/protocol-buffers/docs/gotutorial for
 // more information.
 //
 // Deprecated: Use the "google.golang.org/protobuf/proto" package instead.
 package proto
 import (
 	protoV2 "google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/runtime/protoiface"
 	"google.golang.org/protobuf/runtime/protoimpl"
 )
 const (
 	ProtoPackageIsVersion1 = true
 	ProtoPackageIsVersion2 = true
 	ProtoPackageIsVersion3 = true
 	ProtoPackageIsVersion4 = true
 )
 // GeneratedEnum is any enum type generated by protoc-gen-go
 // which is a named int32 kind.
 // This type exists for documentation purposes.
 type GeneratedEnum interface{}
 // GeneratedMessage is any message type generated by protoc-gen-go
 // which is a pointer to a named struct kind.
 // This type exists for documentation purposes.
 type GeneratedMessage interface{}
 // Message is a protocol buffer message.
 //
 // This is the v1 version of the message interface and is marginally better
 // than an empty interface as it lacks any method to programatically interact
 // with the contents of the message.
 //
 // A v2 message is declared in "google.golang.org/protobuf/proto".Message and
 // exposes protobuf reflection as a first-class feature of the interface.
 //
 // To convert a v1 message to a v2 message, use the MessageV2 function.
 // To convert a v2 message to a v1 message, use the MessageV1 function.
 type Message = protoiface.MessageV1
 // MessageV1 converts either a v1 or v2 message to a v1 message.
 // It returns nil if m is nil.
 func MessageV1(m GeneratedMessage) protoiface.MessageV1 {
 	return protoimpl.X.ProtoMessageV1Of(m)
 }
 // MessageV2 converts either a v1 or v2 message to a v2 message.
 // It returns nil if m is nil.
 func MessageV2(m GeneratedMessage) protoV2.Message {
 	return protoimpl.X.ProtoMessageV2Of(m)
 }
 // MessageReflect returns a reflective view for a message.
 // It returns nil if m is nil.
 func MessageReflect(m Message) protoreflect.Message {
 	return protoimpl.X.MessageOf(m)
 }
 // Marshaler is implemented by messages that can marshal themselves.
 // This interface is used by the following functions: Size, Marshal,
 // Buffer.Marshal, and Buffer.EncodeMessage.
 //
 // Deprecated: Do not implement.
 type Marshaler interface {
 	// Marshal formats the encoded bytes of the message.
 	// It should be deterministic and emit valid protobuf wire data.
 	// The caller takes ownership of the returned buffer.
 	Marshal() ([]byte, error)
 }
 // Unmarshaler is implemented by messages that can unmarshal themselves.
 // This interface is used by the following functions: Unmarshal, UnmarshalMerge,
 // Buffer.Unmarshal, Buffer.DecodeMessage, and Buffer.DecodeGroup.
 //
 // Deprecated: Do not implement.
 type Unmarshaler interface {
 	// Unmarshal parses the encoded bytes of the protobuf wire input.
 	// The provided buffer is only valid for during method call.
 	// It should not reset the receiver message.
 	Unmarshal([]byte) error
 }
 // Merger is implemented by messages that can merge themselves.
 // This interface is used by the following functions: Clone and Merge.
 //
 // Deprecated: Do not implement.
 type Merger interface {
 	// Merge merges the contents of src into the receiver message.
 	// It clones all data structures in src such that it aliases no mutable
 	// memory referenced by src.
 	Merge(src Message)
 }
 // RequiredNotSetError is an error type returned when
 // marshaling or unmarshaling a message with missing required fields.
 type RequiredNotSetError struct {
 	err error
 }
 func (e *RequiredNotSetError) Error() string {
 	if e.err != nil {
 		return e.err.Error()
 	}
 	return "proto: required field not set"
 }
 func (e *RequiredNotSetError) RequiredNotSet() bool {
 	return true
 }
 func checkRequiredNotSet(m protoV2.Message) error {
 	if err := protoV2.CheckInitialized(m); err != nil {
 		return &RequiredNotSetError{err: err}
 	}
 	return nil
 }
 // Clone returns a deep copy of src.
 func Clone(src Message) Message {
 	return MessageV1(protoV2.Clone(MessageV2(src)))
 }
 // Merge merges src into dst, which must be messages of the same type.
 //
 // Populated scalar fields in src are copied to dst, while populated
 // singular messages in src are merged into dst by recursively calling Merge.
 // The elements of every list field in src is appended to the corresponded
 // list fields in dst. The entries of every map field in src is copied into
 // the corresponding map field in dst, possibly replacing existing entries.
 // The unknown fields of src are appended to the unknown fields of dst.
 func Merge(dst, src Message) {
 	protoV2.Merge(MessageV2(dst), MessageV2(src))
 }
 // Equal reports whether two messages are equal.
 // If two messages marshal to the same bytes under deterministic serialization,
 // then Equal is guaranteed to report true.
 //
 // Two messages are equal if they are the same protobuf message type,
 // have the same set of populated known and extension field values,
 // and the same set of unknown fields values.
 //
 // Scalar values are compared with the equivalent of the == operator in Go,
 // except bytes values which are compared using bytes.Equal and
 // floating point values which specially treat NaNs as equal.
 // Message values are compared by recursively calling Equal.
 // Lists are equal if each element value is also equal.
 // Maps are equal if they have the same set of keys, where the pair of values
 // for each key is also equal.
 func Equal(x, y Message) bool {
 	return protoV2.Equal(MessageV2(x), MessageV2(y))
 }
 func isMessageSet(md protoreflect.MessageDescriptor) bool {
 	ms, ok := md.(interface{ IsMessageSet() bool })
 	return ok && ms.IsMessageSet()
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/registry.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/registry.go
@@ -0,0 +1,317 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"bytes"
 	"compress/gzip"
 	"fmt"
 	"io/ioutil"
 	"reflect"
 	"strings"
 	"sync"
 	"google.golang.org/protobuf/reflect/protodesc"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 	"google.golang.org/protobuf/runtime/protoimpl"
 )
 // filePath is the path to the proto source file.
 type filePath = string // e.g., "google/protobuf/descriptor.proto"
 // fileDescGZIP is the compressed contents of the encoded FileDescriptorProto.
 type fileDescGZIP = []byte
 var fileCache sync.Map // map[filePath]fileDescGZIP
 // RegisterFile is called from generated code to register the compressed
 // FileDescriptorProto with the file path for a proto source file.
 //
 // Deprecated: Use protoregistry.GlobalFiles.RegisterFile instead.
 func RegisterFile(s filePath, d fileDescGZIP) {
 	// Decompress the descriptor.
 	zr, err := gzip.NewReader(bytes.NewReader(d))
 	if err != nil {
 		panic(fmt.Sprintf("proto: invalid compressed file descriptor: %v", err))
 	}
 	b, err := ioutil.ReadAll(zr)
 	if err != nil {
 		panic(fmt.Sprintf("proto: invalid compressed file descriptor: %v", err))
 	}
 	// Construct a protoreflect.FileDescriptor from the raw descriptor.
 	// Note that DescBuilder.Build automatically registers the constructed
 	// file descriptor with the v2 registry.
 	protoimpl.DescBuilder{RawDescriptor: b}.Build()
 	// Locally cache the raw descriptor form for the file.
 	fileCache.Store(s, d)
 }
 // FileDescriptor returns the compressed FileDescriptorProto given the file path
 // for a proto source file. It returns nil if not found.
 //
 // Deprecated: Use protoregistry.GlobalFiles.FindFileByPath instead.
 func FileDescriptor(s filePath) fileDescGZIP {
 	if v, ok := fileCache.Load(s); ok {
 		return v.(fileDescGZIP)
 	}
 	// Find the descriptor in the v2 registry.
 	var b []byte
 	if fd, _ := protoregistry.GlobalFiles.FindFileByPath(s); fd != nil {
 		b, _ = Marshal(protodesc.ToFileDescriptorProto(fd))
 	}
 	// Locally cache the raw descriptor form for the file.
 	if len(b) > 0 {
 		v, _ := fileCache.LoadOrStore(s, protoimpl.X.CompressGZIP(b))
 		return v.(fileDescGZIP)
 	}
 	return nil
 }
 // enumName is the name of an enum. For historical reasons, the enum name is
 // neither the full Go name nor the full protobuf name of the enum.
 // The name is the dot-separated combination of just the proto package that the
 // enum is declared within followed by the Go type name of the generated enum.
 type enumName = string // e.g., "my.proto.package.GoMessage_GoEnum"
 // enumsByName maps enum values by name to their numeric counterpart.
 type enumsByName = map[string]int32
 // enumsByNumber maps enum values by number to their name counterpart.
 type enumsByNumber = map[int32]string
 var enumCache sync.Map     // map[enumName]enumsByName
 var numFilesCache sync.Map // map[protoreflect.FullName]int
 // RegisterEnum is called from the generated code to register the mapping of
 // enum value names to enum numbers for the enum identified by s.
 //
 // Deprecated: Use protoregistry.GlobalTypes.RegisterEnum instead.
 func RegisterEnum(s enumName, _ enumsByNumber, m enumsByName) {
 	if _, ok := enumCache.Load(s); ok {
 		panic("proto: duplicate enum registered: " + s)
 	}
 	enumCache.Store(s, m)
 	// This does not forward registration to the v2 registry since this API
 	// lacks sufficient information to construct a complete v2 enum descriptor.
 }
 // EnumValueMap returns the mapping from enum value names to enum numbers for
 // the enum of the given name. It returns nil if not found.
 //
 // Deprecated: Use protoregistry.GlobalTypes.FindEnumByName instead.
 func EnumValueMap(s enumName) enumsByName {
 	if v, ok := enumCache.Load(s); ok {
 		return v.(enumsByName)
 	}
 	// Check whether the cache is stale. If the number of files in the current
 	// package differs, then it means that some enums may have been recently
 	// registered upstream that we do not know about.
 	var protoPkg protoreflect.FullName
 	if i := strings.LastIndexByte(s, '.'); i >= 0 {
 		protoPkg = protoreflect.FullName(s[:i])
 	}
 	v, _ := numFilesCache.Load(protoPkg)
 	numFiles, _ := v.(int)
 	if protoregistry.GlobalFiles.NumFilesByPackage(protoPkg) == numFiles {
 		return nil // cache is up-to-date; was not found earlier
 	}
 	// Update the enum cache for all enums declared in the given proto package.
 	numFiles = 0
 	protoregistry.GlobalFiles.RangeFilesByPackage(protoPkg, func(fd protoreflect.FileDescriptor) bool {
 		walkEnums(fd, func(ed protoreflect.EnumDescriptor) {
 			name := protoimpl.X.LegacyEnumName(ed)
 			if _, ok := enumCache.Load(name); !ok {
 				m := make(enumsByName)
 				evs := ed.Values()
 				for i := evs.Len() - 1; i >= 0; i-- {
 					ev := evs.Get(i)
 					m[string(ev.Name())] = int32(ev.Number())
 				}
 				enumCache.LoadOrStore(name, m)
 			}
 		})
 		numFiles++
 		return true
 	})
 	numFilesCache.Store(protoPkg, numFiles)
 	// Check cache again for enum map.
 	if v, ok := enumCache.Load(s); ok {
 		return v.(enumsByName)
 	}
 	return nil
 }
 // walkEnums recursively walks all enums declared in d.
 func walkEnums(d interface {
 	Enums() protoreflect.EnumDescriptors
 	Messages() protoreflect.MessageDescriptors
 }, f func(protoreflect.EnumDescriptor)) {
 	eds := d.Enums()
 	for i := eds.Len() - 1; i >= 0; i-- {
 		f(eds.Get(i))
 	}
 	mds := d.Messages()
 	for i := mds.Len() - 1; i >= 0; i-- {
 		walkEnums(mds.Get(i), f)
 	}
 }
 // messageName is the full name of protobuf message.
 type messageName = string
 var messageTypeCache sync.Map // map[messageName]reflect.Type
 // RegisterType is called from generated code to register the message Go type
 // for a message of the given name.
 //
 // Deprecated: Use protoregistry.GlobalTypes.RegisterMessage instead.
 func RegisterType(m Message, s messageName) {
 	mt := protoimpl.X.LegacyMessageTypeOf(m, protoreflect.FullName(s))
 	if err := protoregistry.GlobalTypes.RegisterMessage(mt); err != nil {
 		panic(err)
 	}
 	messageTypeCache.Store(s, reflect.TypeOf(m))
 }
 // RegisterMapType is called from generated code to register the Go map type
 // for a protobuf message representing a map entry.
 //
 // Deprecated: Do not use.
 func RegisterMapType(m interface{}, s messageName) {
 	t := reflect.TypeOf(m)
 	if t.Kind() != reflect.Map {
 		panic(fmt.Sprintf("invalid map kind: %v", t))
 	}
 	if _, ok := messageTypeCache.Load(s); ok {
 		panic(fmt.Errorf("proto: duplicate proto message registered: %s", s))
 	}
 	messageTypeCache.Store(s, t)
 }
 // MessageType returns the message type for a named message.
 // It returns nil if not found.
 //
 // Deprecated: Use protoregistry.GlobalTypes.FindMessageByName instead.
 func MessageType(s messageName) reflect.Type {
 	if v, ok := messageTypeCache.Load(s); ok {
 		return v.(reflect.Type)
 	}
 	// Derive the message type from the v2 registry.
 	var t reflect.Type
 	if mt, _ := protoregistry.GlobalTypes.FindMessageByName(protoreflect.FullName(s)); mt != nil {
 		t = messageGoType(mt)
 	}
 	// If we could not get a concrete type, it is possible that it is a
 	// pseudo-message for a map entry.
 	if t == nil {
 		d, _ := protoregistry.GlobalFiles.FindDescriptorByName(protoreflect.FullName(s))
 		if md, _ := d.(protoreflect.MessageDescriptor); md != nil && md.IsMapEntry() {
 			kt := goTypeForField(md.Fields().ByNumber(1))
 			vt := goTypeForField(md.Fields().ByNumber(2))
 			t = reflect.MapOf(kt, vt)
 		}
 	}
 	// Locally cache the message type for the given name.
 	if t != nil {
 		v, _ := messageTypeCache.LoadOrStore(s, t)
 		return v.(reflect.Type)
 	}
 	return nil
 }
 func goTypeForField(fd protoreflect.FieldDescriptor) reflect.Type {
 	switch k := fd.Kind(); k {
 	case protoreflect.EnumKind:
 		if et, _ := protoregistry.GlobalTypes.FindEnumByName(fd.Enum().FullName()); et != nil {
 			return enumGoType(et)
 		}
 		return reflect.TypeOf(protoreflect.EnumNumber(0))
 	case protoreflect.MessageKind, protoreflect.GroupKind:
 		if mt, _ := protoregistry.GlobalTypes.FindMessageByName(fd.Message().FullName()); mt != nil {
 			return messageGoType(mt)
 		}
 		return reflect.TypeOf((*protoreflect.Message)(nil)).Elem()
 	default:
 		return reflect.TypeOf(fd.Default().Interface())
 	}
 }
 func enumGoType(et protoreflect.EnumType) reflect.Type {
 	return reflect.TypeOf(et.New(0))
 }
 func messageGoType(mt protoreflect.MessageType) reflect.Type {
 	return reflect.TypeOf(MessageV1(mt.Zero().Interface()))
 }
 // MessageName returns the full protobuf name for the given message type.
 //
 // Deprecated: Use protoreflect.MessageDescriptor.FullName instead.
 func MessageName(m Message) messageName {
 	if m == nil {
 		return ""
 	}
 	if m, ok := m.(interface{ XXX_MessageName() messageName }); ok {
 		return m.XXX_MessageName()
 	}
 	return messageName(protoimpl.X.MessageDescriptorOf(m).FullName())
 }
 // RegisterExtension is called from the generated code to register
 // the extension descriptor.
 //
 // Deprecated: Use protoregistry.GlobalTypes.RegisterExtension instead.
 func RegisterExtension(d *ExtensionDesc) {
 	if err := protoregistry.GlobalTypes.RegisterExtension(d); err != nil {
 		panic(err)
 	}
 }
 type extensionsByNumber = map[int32]*ExtensionDesc
 var extensionCache sync.Map // map[messageName]extensionsByNumber
 // RegisteredExtensions returns a map of the registered extensions for the
 // provided protobuf message, indexed by the extension field number.
 //
 // Deprecated: Use protoregistry.GlobalTypes.RangeExtensionsByMessage instead.
 func RegisteredExtensions(m Message) extensionsByNumber {
 	// Check whether the cache is stale. If the number of extensions for
 	// the given message differs, then it means that some extensions were
 	// recently registered upstream that we do not know about.
 	s := MessageName(m)
 	v, _ := extensionCache.Load(s)
 	xs, _ := v.(extensionsByNumber)
 	if protoregistry.GlobalTypes.NumExtensionsByMessage(protoreflect.FullName(s)) == len(xs) {
 		return xs // cache is up-to-date
 	}
 	// Cache is stale, re-compute the extensions map.
 	xs = make(extensionsByNumber)
 	protoregistry.GlobalTypes.RangeExtensionsByMessage(protoreflect.FullName(s), func(xt protoreflect.ExtensionType) bool {
 		if xd, ok := xt.(*ExtensionDesc); ok {
 			xs[int32(xt.TypeDescriptor().Number())] = xd
 		} else {
 			// TODO: This implies that the protoreflect.ExtensionType is a
 			// custom type not generated by protoc-gen-go. We could try and
 			// convert the type to an ExtensionDesc.
 		}
 		return true
 	})
 	extensionCache.Store(s, xs)
 	return xs
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/text_decode.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/text_decode.go
@@ -0,0 +1,801 @@
 // Copyright 2010 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"encoding"
 	"errors"
 	"fmt"
 	"reflect"
 	"strconv"
 	"strings"
 	"unicode/utf8"
 	"google.golang.org/protobuf/encoding/prototext"
 	protoV2 "google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 )
 const wrapTextUnmarshalV2 = false
 // ParseError is returned by UnmarshalText.
 type ParseError struct {
 	Message string
 	// Deprecated: Do not use.
 	Line, Offset int
 }
 func (e *ParseError) Error() string {
 	if wrapTextUnmarshalV2 {
 		return e.Message
 	}
 	if e.Line == 1 {
 		return fmt.Sprintf("line 1.%d: %v", e.Offset, e.Message)
 	}
 	return fmt.Sprintf("line %d: %v", e.Line, e.Message)
 }
 // UnmarshalText parses a proto text formatted string into m.
 func UnmarshalText(s string, m Message) error {
 	if u, ok := m.(encoding.TextUnmarshaler); ok {
 		return u.UnmarshalText([]byte(s))
 	}
 	m.Reset()
 	mi := MessageV2(m)
 	if wrapTextUnmarshalV2 {
 		err := prototext.UnmarshalOptions{
 			AllowPartial: true,
 		}.Unmarshal([]byte(s), mi)
 		if err != nil {
 			return &ParseError{Message: err.Error()}
 		}
 		return checkRequiredNotSet(mi)
 	} else {
 		if err := newTextParser(s).unmarshalMessage(mi.ProtoReflect(), ""); err != nil {
 			return err
 		}
 		return checkRequiredNotSet(mi)
 	}
 }
 type textParser struct {
 	s            string // remaining input
 	done         bool   // whether the parsing is finished (success or error)
 	backed       bool   // whether back() was called
 	offset, line int
 	cur          token
 }
 type token struct {
 	value    string
 	err      *ParseError
 	line     int    // line number
 	offset   int    // byte number from start of input, not start of line
 	unquoted string // the unquoted version of value, if it was a quoted string
 }
 func newTextParser(s string) *textParser {
 	p := new(textParser)
 	p.s = s
 	p.line = 1
 	p.cur.line = 1
 	return p
 }
 func (p *textParser) unmarshalMessage(m protoreflect.Message, terminator string) (err error) {
 	md := m.Descriptor()
 	fds := md.Fields()
 	// A struct is a sequence of "name: value", terminated by one of
 	// '>' or '}', or the end of the input.  A name may also be
 	// "[extension]" or "[type/url]".
 	//
 	// The whole struct can also be an expanded Any message, like:
 	// [type/url] < ... struct contents ... >
 	seen := make(map[protoreflect.FieldNumber]bool)
 	for {
 		tok := p.next()
 		if tok.err != nil {
 			return tok.err
 		}
 		if tok.value == terminator {
 			break
 		}
 		if tok.value == "[" {
 			if err := p.unmarshalExtensionOrAny(m, seen); err != nil {
 				return err
 			}
 			continue
 		}
 		// This is a normal, non-extension field.
 		name := protoreflect.Name(tok.value)
 		fd := fds.ByName(name)
 		switch {
 		case fd == nil:
 			gd := fds.ByName(protoreflect.Name(strings.ToLower(string(name))))
 			if gd != nil && gd.Kind() == protoreflect.GroupKind && gd.Message().Name() == name {
 				fd = gd
 			}
 		case fd.Kind() == protoreflect.GroupKind && fd.Message().Name() != name:
 			fd = nil
 		case fd.IsWeak() && fd.Message().IsPlaceholder():
 			fd = nil
 		}
 		if fd == nil {
 			typeName := string(md.FullName())
 			if m, ok := m.Interface().(Message); ok {
 				t := reflect.TypeOf(m)
 				if t.Kind() == reflect.Ptr {
 					typeName = t.Elem().String()
 				}
 			}
 			return p.errorf("unknown field name %q in %v", name, typeName)
 		}
 		if od := fd.ContainingOneof(); od != nil && m.WhichOneof(od) != nil {
 			return p.errorf("field '%s' would overwrite already parsed oneof '%s'", name, od.Name())
 		}
 		if fd.Cardinality() != protoreflect.Repeated && seen[fd.Number()] {
 			return p.errorf("non-repeated field %q was repeated", fd.Name())
 		}
 		seen[fd.Number()] = true
 		// Consume any colon.
 		if err := p.checkForColon(fd); err != nil {
 			return err
 		}
 		// Parse into the field.
 		v := m.Get(fd)
 		if !m.Has(fd) && (fd.IsList() || fd.IsMap() || fd.Message() != nil) {
 			v = m.Mutable(fd)
 		}
 		if v, err = p.unmarshalValue(v, fd); err != nil {
 			return err
 		}
 		m.Set(fd, v)
 		if err := p.consumeOptionalSeparator(); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 func (p *textParser) unmarshalExtensionOrAny(m protoreflect.Message, seen map[protoreflect.FieldNumber]bool) error {
 	name, err := p.consumeExtensionOrAnyName()
 	if err != nil {
 		return err
 	}
 	// If it contains a slash, it's an Any type URL.
 	if slashIdx := strings.LastIndex(name, "/"); slashIdx >= 0 {
 		tok := p.next()
 		if tok.err != nil {
 			return tok.err
 		}
 		// consume an optional colon
 		if tok.value == ":" {
 			tok = p.next()
 			if tok.err != nil {
 				return tok.err
 			}
 		}
 		var terminator string
 		switch tok.value {
 		case "<":
 			terminator = ">"
 		case "{":
 			terminator = "}"
 		default:
 			return p.errorf("expected '{' or '<', found %q", tok.value)
 		}
 		mt, err := protoregistry.GlobalTypes.FindMessageByURL(name)
 		if err != nil {
 			return p.errorf("unrecognized message %q in google.protobuf.Any", name[slashIdx+len("/"):])
 		}
 		m2 := mt.New()
 		if err := p.unmarshalMessage(m2, terminator); err != nil {
 			return err
 		}
 		b, err := protoV2.Marshal(m2.Interface())
 		if err != nil {
 			return p.errorf("failed to marshal message of type %q: %v", name[slashIdx+len("/"):], err)
 		}
 		urlFD := m.Descriptor().Fields().ByName("type_url")
 		valFD := m.Descriptor().Fields().ByName("value")
 		if seen[urlFD.Number()] {
 			return p.errorf("Any message unpacked multiple times, or %q already set", urlFD.Name())
 		}
 		if seen[valFD.Number()] {
 			return p.errorf("Any message unpacked multiple times, or %q already set", valFD.Name())
 		}
 		m.Set(urlFD, protoreflect.ValueOfString(name))
 		m.Set(valFD, protoreflect.ValueOfBytes(b))
 		seen[urlFD.Number()] = true
 		seen[valFD.Number()] = true
 		return nil
 	}
 	xname := protoreflect.FullName(name)
 	xt, _ := protoregistry.GlobalTypes.FindExtensionByName(xname)
 	if xt == nil && isMessageSet(m.Descriptor()) {
 		xt, _ = protoregistry.GlobalTypes.FindExtensionByName(xname.Append("message_set_extension"))
 	}
 	if xt == nil {
 		return p.errorf("unrecognized extension %q", name)
 	}
 	fd := xt.TypeDescriptor()
 	if fd.ContainingMessage().FullName() != m.Descriptor().FullName() {
 		return p.errorf("extension field %q does not extend message %q", name, m.Descriptor().FullName())
 	}
 	if err := p.checkForColon(fd); err != nil {
 		return err
 	}
 	v := m.Get(fd)
 	if !m.Has(fd) && (fd.IsList() || fd.IsMap() || fd.Message() != nil) {
 		v = m.Mutable(fd)
 	}
 	v, err = p.unmarshalValue(v, fd)
 	if err != nil {
 		return err
 	}
 	m.Set(fd, v)
 	return p.consumeOptionalSeparator()
 }
 func (p *textParser) unmarshalValue(v protoreflect.Value, fd protoreflect.FieldDescriptor) (protoreflect.Value, error) {
 	tok := p.next()
 	if tok.err != nil {
 		return v, tok.err
 	}
 	if tok.value == "" {
 		return v, p.errorf("unexpected EOF")
 	}
 	switch {
 	case fd.IsList():
 		lv := v.List()
 		var err error
 		if tok.value == "[" {
 			// Repeated field with list notation, like [1,2,3].
 			for {
 				vv := lv.NewElement()
 				vv, err = p.unmarshalSingularValue(vv, fd)
 				if err != nil {
 					return v, err
 				}
 				lv.Append(vv)
 				tok := p.next()
 				if tok.err != nil {
 					return v, tok.err
 				}
 				if tok.value == "]" {
 					break
 				}
 				if tok.value != "," {
 					return v, p.errorf("Expected ']' or ',' found %q", tok.value)
 				}
 			}
 			return v, nil
 		}
 		// One value of the repeated field.
 		p.back()
 		vv := lv.NewElement()
 		vv, err = p.unmarshalSingularValue(vv, fd)
 		if err != nil {
 			return v, err
 		}
 		lv.Append(vv)
 		return v, nil
 	case fd.IsMap():
 		// The map entry should be this sequence of tokens:
 		//	< key : KEY value : VALUE >
 		// However, implementations may omit key or value, and technically
 		// we should support them in any order.
 		var terminator string
 		switch tok.value {
 		case "<":
 			terminator = ">"
 		case "{":
 			terminator = "}"
 		default:
 			return v, p.errorf("expected '{' or '<', found %q", tok.value)
 		}
 		keyFD := fd.MapKey()
 		valFD := fd.MapValue()
 		mv := v.Map()
 		kv := keyFD.Default()
 		vv := mv.NewValue()
 		for {
 			tok := p.next()
 			if tok.err != nil {
 				return v, tok.err
 			}
 			if tok.value == terminator {
 				break
 			}
 			var err error
 			switch tok.value {
 			case "key":
 				if err := p.consumeToken(":"); err != nil {
 					return v, err
 				}
 				if kv, err = p.unmarshalSingularValue(kv, keyFD); err != nil {
 					return v, err
 				}
 				if err := p.consumeOptionalSeparator(); err != nil {
 					return v, err
 				}
 			case "value":
 				if err := p.checkForColon(valFD); err != nil {
 					return v, err
 				}
 				if vv, err = p.unmarshalSingularValue(vv, valFD); err != nil {
 					return v, err
 				}
 				if err := p.consumeOptionalSeparator(); err != nil {
 					return v, err
 				}
 			default:
 				p.back()
 				return v, p.errorf(`expected "key", "value", or %q, found %q`, terminator, tok.value)
 			}
 		}
 		mv.Set(kv.MapKey(), vv)
 		return v, nil
 	default:
 		p.back()
 		return p.unmarshalSingularValue(v, fd)
 	}
 }
 func (p *textParser) unmarshalSingularValue(v protoreflect.Value, fd protoreflect.FieldDescriptor) (protoreflect.Value, error) {
 	tok := p.next()
 	if tok.err != nil {
 		return v, tok.err
 	}
 	if tok.value == "" {
 		return v, p.errorf("unexpected EOF")
 	}
 	switch fd.Kind() {
 	case protoreflect.BoolKind:
 		switch tok.value {
 		case "true", "1", "t", "True":
 			return protoreflect.ValueOfBool(true), nil
 		case "false", "0", "f", "False":
 			return protoreflect.ValueOfBool(false), nil
 		}
 	case protoreflect.Int32Kind, protoreflect.Sint32Kind, protoreflect.Sfixed32Kind:
 		if x, err := strconv.ParseInt(tok.value, 0, 32); err == nil {
 			return protoreflect.ValueOfInt32(int32(x)), nil
 		}
 		// The C++ parser accepts large positive hex numbers that uses
 		// two's complement arithmetic to represent negative numbers.
 		// This feature is here for backwards compatibility with C++.
 		if strings.HasPrefix(tok.value, "0x") {
 			if x, err := strconv.ParseUint(tok.value, 0, 32); err == nil {
 				return protoreflect.ValueOfInt32(int32(-(int64(^x) + 1))), nil
 			}
 		}
 	case protoreflect.Int64Kind, protoreflect.Sint64Kind, protoreflect.Sfixed64Kind:
 		if x, err := strconv.ParseInt(tok.value, 0, 64); err == nil {
 			return protoreflect.ValueOfInt64(int64(x)), nil
 		}
 		// The C++ parser accepts large positive hex numbers that uses
 		// two's complement arithmetic to represent negative numbers.
 		// This feature is here for backwards compatibility with C++.
 		if strings.HasPrefix(tok.value, "0x") {
 			if x, err := strconv.ParseUint(tok.value, 0, 64); err == nil {
 				return protoreflect.ValueOfInt64(int64(-(int64(^x) + 1))), nil
 			}
 		}
 	case protoreflect.Uint32Kind, protoreflect.Fixed32Kind:
 		if x, err := strconv.ParseUint(tok.value, 0, 32); err == nil {
 			return protoreflect.ValueOfUint32(uint32(x)), nil
 		}
 	case protoreflect.Uint64Kind, protoreflect.Fixed64Kind:
 		if x, err := strconv.ParseUint(tok.value, 0, 64); err == nil {
 			return protoreflect.ValueOfUint64(uint64(x)), nil
 		}
 	case protoreflect.FloatKind:
 		// Ignore 'f' for compatibility with output generated by C++,
 		// but don't remove 'f' when the value is "-inf" or "inf".
 		v := tok.value
 		if strings.HasSuffix(v, "f") && v != "-inf" && v != "inf" {
 			v = v[:len(v)-len("f")]
 		}
 		if x, err := strconv.ParseFloat(v, 32); err == nil {
 			return protoreflect.ValueOfFloat32(float32(x)), nil
 		}
 	case protoreflect.DoubleKind:
 		// Ignore 'f' for compatibility with output generated by C++,
 		// but don't remove 'f' when the value is "-inf" or "inf".
 		v := tok.value
 		if strings.HasSuffix(v, "f") && v != "-inf" && v != "inf" {
 			v = v[:len(v)-len("f")]
 		}
 		if x, err := strconv.ParseFloat(v, 64); err == nil {
 			return protoreflect.ValueOfFloat64(float64(x)), nil
 		}
 	case protoreflect.StringKind:
 		if isQuote(tok.value[0]) {
 			return protoreflect.ValueOfString(tok.unquoted), nil
 		}
 	case protoreflect.BytesKind:
 		if isQuote(tok.value[0]) {
 			return protoreflect.ValueOfBytes([]byte(tok.unquoted)), nil
 		}
 	case protoreflect.EnumKind:
 		if x, err := strconv.ParseInt(tok.value, 0, 32); err == nil {
 			return protoreflect.ValueOfEnum(protoreflect.EnumNumber(x)), nil
 		}
 		vd := fd.Enum().Values().ByName(protoreflect.Name(tok.value))
 		if vd != nil {
 			return protoreflect.ValueOfEnum(vd.Number()), nil
 		}
 	case protoreflect.MessageKind, protoreflect.GroupKind:
 		var terminator string
 		switch tok.value {
 		case "{":
 			terminator = "}"
 		case "<":
 			terminator = ">"
 		default:
 			return v, p.errorf("expected '{' or '<', found %q", tok.value)
 		}
 		err := p.unmarshalMessage(v.Message(), terminator)
 		return v, err
 	default:
 		panic(fmt.Sprintf("invalid kind %v", fd.Kind()))
 	}
 	return v, p.errorf("invalid %v: %v", fd.Kind(), tok.value)
 }
 // Consume a ':' from the input stream (if the next token is a colon),
 // returning an error if a colon is needed but not present.
 func (p *textParser) checkForColon(fd protoreflect.FieldDescriptor) *ParseError {
 	tok := p.next()
 	if tok.err != nil {
 		return tok.err
 	}
 	if tok.value != ":" {
 		if fd.Message() == nil {
 			return p.errorf("expected ':', found %q", tok.value)
 		}
 		p.back()
 	}
 	return nil
 }
 // consumeExtensionOrAnyName consumes an extension name or an Any type URL and
 // the following ']'. It returns the name or URL consumed.
 func (p *textParser) consumeExtensionOrAnyName() (string, error) {
 	tok := p.next()
 	if tok.err != nil {
 		return "", tok.err
 	}
 	// If extension name or type url is quoted, it's a single token.
 	if len(tok.value) > 2 && isQuote(tok.value[0]) && tok.value[len(tok.value)-1] == tok.value[0] {
 		name, err := unquoteC(tok.value[1:len(tok.value)-1], rune(tok.value[0]))
 		if err != nil {
 			return "", err
 		}
 		return name, p.consumeToken("]")
 	}
 	// Consume everything up to "]"
 	var parts []string
 	for tok.value != "]" {
 		parts = append(parts, tok.value)
 		tok = p.next()
 		if tok.err != nil {
 			return "", p.errorf("unrecognized type_url or extension name: %s", tok.err)
 		}
 		if p.done && tok.value != "]" {
 			return "", p.errorf("unclosed type_url or extension name")
 		}
 	}
 	return strings.Join(parts, ""), nil
 }
 // consumeOptionalSeparator consumes an optional semicolon or comma.
 // It is used in unmarshalMessage to provide backward compatibility.
 func (p *textParser) consumeOptionalSeparator() error {
 	tok := p.next()
 	if tok.err != nil {
 		return tok.err
 	}
 	if tok.value != ";" && tok.value != "," {
 		p.back()
 	}
 	return nil
 }
 func (p *textParser) errorf(format string, a ...interface{}) *ParseError {
 	pe := &ParseError{fmt.Sprintf(format, a...), p.cur.line, p.cur.offset}
 	p.cur.err = pe
 	p.done = true
 	return pe
 }
 func (p *textParser) skipWhitespace() {
 	i := 0
 	for i < len(p.s) && (isWhitespace(p.s[i]) || p.s[i] == '#') {
 		if p.s[i] == '#' {
 			// comment; skip to end of line or input
 			for i < len(p.s) && p.s[i] != '\n' {
 				i++
 			}
 			if i == len(p.s) {
 				break
 			}
 		}
 		if p.s[i] == '\n' {
 			p.line++
 		}
 		i++
 	}
 	p.offset += i
 	p.s = p.s[i:len(p.s)]
 	if len(p.s) == 0 {
 		p.done = true
 	}
 }
 func (p *textParser) advance() {
 	// Skip whitespace
 	p.skipWhitespace()
 	if p.done {
 		return
 	}
 	// Start of non-whitespace
 	p.cur.err = nil
 	p.cur.offset, p.cur.line = p.offset, p.line
 	p.cur.unquoted = ""
 	switch p.s[0] {
 	case '<', '>', '{', '}', ':', '[', ']', ';', ',', '/':
 		// Single symbol
 		p.cur.value, p.s = p.s[0:1], p.s[1:len(p.s)]
 	case '"', '\'':
 		// Quoted string
 		i := 1
 		for i < len(p.s) && p.s[i] != p.s[0] && p.s[i] != '\n' {
 			if p.s[i] == '\\' && i+1 < len(p.s) {
 				// skip escaped char
 				i++
 			}
 			i++
 		}
 		if i >= len(p.s) || p.s[i] != p.s[0] {
 			p.errorf("unmatched quote")
 			return
 		}
 		unq, err := unquoteC(p.s[1:i], rune(p.s[0]))
 		if err != nil {
 			p.errorf("invalid quoted string %s: %v", p.s[0:i+1], err)
 			return
 		}
 		p.cur.value, p.s = p.s[0:i+1], p.s[i+1:len(p.s)]
 		p.cur.unquoted = unq
 	default:
 		i := 0
 		for i < len(p.s) && isIdentOrNumberChar(p.s[i]) {
 			i++
 		}
 		if i == 0 {
 			p.errorf("unexpected byte %#x", p.s[0])
 			return
 		}
 		p.cur.value, p.s = p.s[0:i], p.s[i:len(p.s)]
 	}
 	p.offset += len(p.cur.value)
 }
 // Back off the parser by one token. Can only be done between calls to next().
 // It makes the next advance() a no-op.
 func (p *textParser) back() { p.backed = true }
 // Advances the parser and returns the new current token.
 func (p *textParser) next() *token {
 	if p.backed || p.done {
 		p.backed = false
 		return &p.cur
 	}
 	p.advance()
 	if p.done {
 		p.cur.value = ""
 	} else if len(p.cur.value) > 0 && isQuote(p.cur.value[0]) {
 		// Look for multiple quoted strings separated by whitespace,
 		// and concatenate them.
 		cat := p.cur
 		for {
 			p.skipWhitespace()
 			if p.done || !isQuote(p.s[0]) {
 				break
 			}
 			p.advance()
 			if p.cur.err != nil {
 				return &p.cur
 			}
 			cat.value += " " + p.cur.value
 			cat.unquoted += p.cur.unquoted
 		}
 		p.done = false // parser may have seen EOF, but we want to return cat
 		p.cur = cat
 	}
 	return &p.cur
 }
 func (p *textParser) consumeToken(s string) error {
 	tok := p.next()
 	if tok.err != nil {
 		return tok.err
 	}
 	if tok.value != s {
 		p.back()
 		return p.errorf("expected %q, found %q", s, tok.value)
 	}
 	return nil
 }
 var errBadUTF8 = errors.New("proto: bad UTF-8")
 func unquoteC(s string, quote rune) (string, error) {
 	// This is based on C++'s tokenizer.cc.
 	// Despite its name, this is *not* parsing C syntax.
 	// For instance, "\0" is an invalid quoted string.
 	// Avoid allocation in trivial cases.
 	simple := true
 	for _, r := range s {
 		if r == '\\' || r == quote {
 			simple = false
 			break
 		}
 	}
 	if simple {
 		return s, nil
 	}
 	buf := make([]byte, 0, 3*len(s)/2)
 	for len(s) > 0 {
 		r, n := utf8.DecodeRuneInString(s)
 		if r == utf8.RuneError && n == 1 {
 			return "", errBadUTF8
 		}
 		s = s[n:]
 		if r != '\\' {
 			if r < utf8.RuneSelf {
 				buf = append(buf, byte(r))
 			} else {
 				buf = append(buf, string(r)...)
 			}
 			continue
 		}
 		ch, tail, err := unescape(s)
 		if err != nil {
 			return "", err
 		}
 		buf = append(buf, ch...)
 		s = tail
 	}
 	return string(buf), nil
 }
 func unescape(s string) (ch string, tail string, err error) {
 	r, n := utf8.DecodeRuneInString(s)
 	if r == utf8.RuneError && n == 1 {
 		return "", "", errBadUTF8
 	}
 	s = s[n:]
 	switch r {
 	case 'a':
 		return "\a", s, nil
 	case 'b':
 		return "\b", s, nil
 	case 'f':
 		return "\f", s, nil
 	case 'n':
 		return "\n", s, nil
 	case 'r':
 		return "\r", s, nil
 	case 't':
 		return "\t", s, nil
 	case 'v':
 		return "\v", s, nil
 	case '?':
 		return "?", s, nil // trigraph workaround
 	case '\'', '"', '\\':
 		return string(r), s, nil
 	case '0', '1', '2', '3', '4', '5', '6', '7':
 		if len(s) < 2 {
 			return "", "", fmt.Errorf(`\%c requires 2 following digits`, r)
 		}
 		ss := string(r) + s[:2]
 		s = s[2:]
 		i, err := strconv.ParseUint(ss, 8, 8)
 		if err != nil {
 			return "", "", fmt.Errorf(`\%s contains non-octal digits`, ss)
 		}
 		return string([]byte{byte(i)}), s, nil
 	case 'x', 'X', 'u', 'U':
 		var n int
 		switch r {
 		case 'x', 'X':
 			n = 2
 		case 'u':
 			n = 4
 		case 'U':
 			n = 8
 		}
 		if len(s) < n {
 			return "", "", fmt.Errorf(`\%c requires %d following digits`, r, n)
 		}
 		ss := s[:n]
 		s = s[n:]
 		i, err := strconv.ParseUint(ss, 16, 64)
 		if err != nil {
 			return "", "", fmt.Errorf(`\%c%s contains non-hexadecimal digits`, r, ss)
 		}
 		if r == 'x' || r == 'X' {
 			return string([]byte{byte(i)}), s, nil
 		}
 		if i > utf8.MaxRune {
 			return "", "", fmt.Errorf(`\%c%s is not a valid Unicode code point`, r, ss)
 		}
 		return string(rune(i)), s, nil
 	}
 	return "", "", fmt.Errorf(`unknown escape \%c`, r)
 }
 func isIdentOrNumberChar(c byte) bool {
 	switch {
 	case 'A' <= c && c <= 'Z', 'a' <= c && c <= 'z':
 		return true
 	case '0' <= c && c <= '9':
 		return true
 	}
 	switch c {
 	case '-', '+', '.', '_':
 		return true
 	}
 	return false
 }
 func isWhitespace(c byte) bool {
 	switch c {
 	case ' ', '\t', '\n', '\r':
 		return true
 	}
 	return false
 }
 func isQuote(c byte) bool {
 	switch c {
 	case '"', '\'':
 		return true
 	}
 	return false
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/text_encode.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/text_encode.go
@@ -0,0 +1,560 @@
 // Copyright 2010 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	"bytes"
 	"encoding"
 	"fmt"
 	"io"
 	"math"
 	"sort"
 	"strings"
 	"google.golang.org/protobuf/encoding/prototext"
 	"google.golang.org/protobuf/encoding/protowire"
 	"google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 )
 const wrapTextMarshalV2 = false
 // TextMarshaler is a configurable text format marshaler.
 type TextMarshaler struct {
 	Compact   bool // use compact text format (one line)
 	ExpandAny bool // expand google.protobuf.Any messages of known types
 }
 // Marshal writes the proto text format of m to w.
 func (tm *TextMarshaler) Marshal(w io.Writer, m Message) error {
 	b, err := tm.marshal(m)
 	if len(b) > 0 {
 		if _, err := w.Write(b); err != nil {
 			return err
 		}
 	}
 	return err
 }
 // Text returns a proto text formatted string of m.
 func (tm *TextMarshaler) Text(m Message) string {
 	b, _ := tm.marshal(m)
 	return string(b)
 }
 func (tm *TextMarshaler) marshal(m Message) ([]byte, error) {
 	mr := MessageReflect(m)
 	if mr == nil || !mr.IsValid() {
 		return []byte("<nil>"), nil
 	}
 	if wrapTextMarshalV2 {
 		if m, ok := m.(encoding.TextMarshaler); ok {
 			return m.MarshalText()
 		}
 		opts := prototext.MarshalOptions{
 			AllowPartial: true,
 			EmitUnknown:  true,
 		}
 		if !tm.Compact {
 			opts.Indent = "  "
 		}
 		if !tm.ExpandAny {
 			opts.Resolver = (*protoregistry.Types)(nil)
 		}
 		return opts.Marshal(mr.Interface())
 	} else {
 		w := &textWriter{
 			compact:   tm.Compact,
 			expandAny: tm.ExpandAny,
 			complete:  true,
 		}
 		if m, ok := m.(encoding.TextMarshaler); ok {
 			b, err := m.MarshalText()
 			if err != nil {
 				return nil, err
 			}
 			w.Write(b)
 			return w.buf, nil
 		}
 		err := w.writeMessage(mr)
 		return w.buf, err
 	}
 }
 var (
 	defaultTextMarshaler = TextMarshaler{}
 	compactTextMarshaler = TextMarshaler{Compact: true}
 )
 // MarshalText writes the proto text format of m to w.
 func MarshalText(w io.Writer, m Message) error { return defaultTextMarshaler.Marshal(w, m) }
 // MarshalTextString returns a proto text formatted string of m.
 func MarshalTextString(m Message) string { return defaultTextMarshaler.Text(m) }
 // CompactText writes the compact proto text format of m to w.
 func CompactText(w io.Writer, m Message) error { return compactTextMarshaler.Marshal(w, m) }
 // CompactTextString returns a compact proto text formatted string of m.
 func CompactTextString(m Message) string { return compactTextMarshaler.Text(m) }
 var (
 	newline         = []byte("\n")
 	endBraceNewline = []byte("}\n")
 	posInf          = []byte("inf")
 	negInf          = []byte("-inf")
 	nan             = []byte("nan")
 )
 // textWriter is an io.Writer that tracks its indentation level.
 type textWriter struct {
 	compact   bool // same as TextMarshaler.Compact
 	expandAny bool // same as TextMarshaler.ExpandAny
 	complete  bool // whether the current position is a complete line
 	indent    int  // indentation level; never negative
 	buf       []byte
 }
 func (w *textWriter) Write(p []byte) (n int, _ error) {
 	newlines := bytes.Count(p, newline)
 	if newlines == 0 {
 		if !w.compact && w.complete {
 			w.writeIndent()
 		}
 		w.buf = append(w.buf, p...)
 		w.complete = false
 		return len(p), nil
 	}
 	frags := bytes.SplitN(p, newline, newlines+1)
 	if w.compact {
 		for i, frag := range frags {
 			if i > 0 {
 				w.buf = append(w.buf, ' ')
 				n++
 			}
 			w.buf = append(w.buf, frag...)
 			n += len(frag)
 		}
 		return n, nil
 	}
 	for i, frag := range frags {
 		if w.complete {
 			w.writeIndent()
 		}
 		w.buf = append(w.buf, frag...)
 		n += len(frag)
 		if i+1 < len(frags) {
 			w.buf = append(w.buf, '\n')
 			n++
 		}
 	}
 	w.complete = len(frags[len(frags)-1]) == 0
 	return n, nil
 }
 func (w *textWriter) WriteByte(c byte) error {
 	if w.compact && c == '\n' {
 		c = ' '
 	}
 	if !w.compact && w.complete {
 		w.writeIndent()
 	}
 	w.buf = append(w.buf, c)
 	w.complete = c == '\n'
 	return nil
 }
 func (w *textWriter) writeName(fd protoreflect.FieldDescriptor) {
 	if !w.compact && w.complete {
 		w.writeIndent()
 	}
 	w.complete = false
 	if fd.Kind() != protoreflect.GroupKind {
 		w.buf = append(w.buf, fd.Name()...)
 		w.WriteByte(':')
 	} else {
 		// Use message type name for group field name.
 		w.buf = append(w.buf, fd.Message().Name()...)
 	}
 	if !w.compact {
 		w.WriteByte(' ')
 	}
 }
 func requiresQuotes(u string) bool {
 	// When type URL contains any characters except [0-9A-Za-z./\-]*, it must be quoted.
 	for _, ch := range u {
 		switch {
 		case ch == '.' || ch == '/' || ch == '_':
 			continue
 		case '0' <= ch && ch <= '9':
 			continue
 		case 'A' <= ch && ch <= 'Z':
 			continue
 		case 'a' <= ch && ch <= 'z':
 			continue
 		default:
 			return true
 		}
 	}
 	return false
 }
 // writeProto3Any writes an expanded google.protobuf.Any message.
 //
 // It returns (false, nil) if sv value can't be unmarshaled (e.g. because
 // required messages are not linked in).
 //
 // It returns (true, error) when sv was written in expanded format or an error
 // was encountered.
 func (w *textWriter) writeProto3Any(m protoreflect.Message) (bool, error) {
 	md := m.Descriptor()
 	fdURL := md.Fields().ByName("type_url")
 	fdVal := md.Fields().ByName("value")
 	url := m.Get(fdURL).String()
 	mt, err := protoregistry.GlobalTypes.FindMessageByURL(url)
 	if err != nil {
 		return false, nil
 	}
 	b := m.Get(fdVal).Bytes()
 	m2 := mt.New()
 	if err := proto.Unmarshal(b, m2.Interface()); err != nil {
 		return false, nil
 	}
 	w.Write([]byte("["))
 	if requiresQuotes(url) {
 		w.writeQuotedString(url)
 	} else {
 		w.Write([]byte(url))
 	}
 	if w.compact {
 		w.Write([]byte("]:<"))
 	} else {
 		w.Write([]byte("]: <\n"))
 		w.indent++
 	}
 	if err := w.writeMessage(m2); err != nil {
 		return true, err
 	}
 	if w.compact {
 		w.Write([]byte("> "))
 	} else {
 		w.indent--
 		w.Write([]byte(">\n"))
 	}
 	return true, nil
 }
 func (w *textWriter) writeMessage(m protoreflect.Message) error {
 	md := m.Descriptor()
 	if w.expandAny && md.FullName() == "google.protobuf.Any" {
 		if canExpand, err := w.writeProto3Any(m); canExpand {
 			return err
 		}
 	}
 	fds := md.Fields()
 	for i := 0; i < fds.Len(); {
 		fd := fds.Get(i)
 		if od := fd.ContainingOneof(); od != nil {
 			fd = m.WhichOneof(od)
 			i += od.Fields().Len()
 		} else {
 			i++
 		}
 		if fd == nil || !m.Has(fd) {
 			continue
 		}
 		switch {
 		case fd.IsList():
 			lv := m.Get(fd).List()
 			for j := 0; j < lv.Len(); j++ {
 				w.writeName(fd)
 				v := lv.Get(j)
 				if err := w.writeSingularValue(v, fd); err != nil {
 					return err
 				}
 				w.WriteByte('\n')
 			}
 		case fd.IsMap():
 			kfd := fd.MapKey()
 			vfd := fd.MapValue()
 			mv := m.Get(fd).Map()
 			type entry struct{ key, val protoreflect.Value }
 			var entries []entry
 			mv.Range(func(k protoreflect.MapKey, v protoreflect.Value) bool {
 				entries = append(entries, entry{k.Value(), v})
 				return true
 			})
 			sort.Slice(entries, func(i, j int) bool {
 				switch kfd.Kind() {
 				case protoreflect.BoolKind:
 					return !entries[i].key.Bool() && entries[j].key.Bool()
 				case protoreflect.Int32Kind, protoreflect.Sint32Kind, protoreflect.Sfixed32Kind, protoreflect.Int64Kind, protoreflect.Sint64Kind, protoreflect.Sfixed64Kind:
 					return entries[i].key.Int() < entries[j].key.Int()
 				case protoreflect.Uint32Kind, protoreflect.Fixed32Kind, protoreflect.Uint64Kind, protoreflect.Fixed64Kind:
 					return entries[i].key.Uint() < entries[j].key.Uint()
 				case protoreflect.StringKind:
 					return entries[i].key.String() < entries[j].key.String()
 				default:
 					panic("invalid kind")
 				}
 			})
 			for _, entry := range entries {
 				w.writeName(fd)
 				w.WriteByte('<')
 				if !w.compact {
 					w.WriteByte('\n')
 				}
 				w.indent++
 				w.writeName(kfd)
 				if err := w.writeSingularValue(entry.key, kfd); err != nil {
 					return err
 				}
 				w.WriteByte('\n')
 				w.writeName(vfd)
 				if err := w.writeSingularValue(entry.val, vfd); err != nil {
 					return err
 				}
 				w.WriteByte('\n')
 				w.indent--
 				w.WriteByte('>')
 				w.WriteByte('\n')
 			}
 		default:
 			w.writeName(fd)
 			if err := w.writeSingularValue(m.Get(fd), fd); err != nil {
 				return err
 			}
 			w.WriteByte('\n')
 		}
 	}
 	if b := m.GetUnknown(); len(b) > 0 {
 		w.writeUnknownFields(b)
 	}
 	return w.writeExtensions(m)
 }
 func (w *textWriter) writeSingularValue(v protoreflect.Value, fd protoreflect.FieldDescriptor) error {
 	switch fd.Kind() {
 	case protoreflect.FloatKind, protoreflect.DoubleKind:
 		switch vf := v.Float(); {
 		case math.IsInf(vf, +1):
 			w.Write(posInf)
 		case math.IsInf(vf, -1):
 			w.Write(negInf)
 		case math.IsNaN(vf):
 			w.Write(nan)
 		default:
 			fmt.Fprint(w, v.Interface())
 		}
 	case protoreflect.StringKind:
 		// NOTE: This does not validate UTF-8 for historical reasons.
 		w.writeQuotedString(string(v.String()))
 	case protoreflect.BytesKind:
 		w.writeQuotedString(string(v.Bytes()))
 	case protoreflect.MessageKind, protoreflect.GroupKind:
 		var bra, ket byte = '<', '>'
 		if fd.Kind() == protoreflect.GroupKind {
 			bra, ket = '{', '}'
 		}
 		w.WriteByte(bra)
 		if !w.compact {
 			w.WriteByte('\n')
 		}
 		w.indent++
 		m := v.Message()
 		if m2, ok := m.Interface().(encoding.TextMarshaler); ok {
 			b, err := m2.MarshalText()
 			if err != nil {
 				return err
 			}
 			w.Write(b)
 		} else {
 			w.writeMessage(m)
 		}
 		w.indent--
 		w.WriteByte(ket)
 	case protoreflect.EnumKind:
 		if ev := fd.Enum().Values().ByNumber(v.Enum()); ev != nil {
 			fmt.Fprint(w, ev.Name())
 		} else {
 			fmt.Fprint(w, v.Enum())
 		}
 	default:
 		fmt.Fprint(w, v.Interface())
 	}
 	return nil
 }
 // writeQuotedString writes a quoted string in the protocol buffer text format.
 func (w *textWriter) writeQuotedString(s string) {
 	w.WriteByte('"')
 	for i := 0; i < len(s); i++ {
 		switch c := s[i]; c {
 		case '\n':
 			w.buf = append(w.buf, `\n`...)
 		case '\r':
 			w.buf = append(w.buf, `\r`...)
 		case '\t':
 			w.buf = append(w.buf, `\t`...)
 		case '"':
 			w.buf = append(w.buf, `\"`...)
 		case '\\':
 			w.buf = append(w.buf, `\\`...)
 		default:
 			if isPrint := c >= 0x20 && c < 0x7f; isPrint {
 				w.buf = append(w.buf, c)
 			} else {
 				w.buf = append(w.buf, fmt.Sprintf(`\%03o`, c)...)
 			}
 		}
 	}
 	w.WriteByte('"')
 }
 func (w *textWriter) writeUnknownFields(b []byte) {
 	if !w.compact {
 		fmt.Fprintf(w, "/* %d unknown bytes */\n", len(b))
 	}
 	for len(b) > 0 {
 		num, wtyp, n := protowire.ConsumeTag(b)
 		if n < 0 {
 			return
 		}
 		b = b[n:]
 		if wtyp == protowire.EndGroupType {
 			w.indent--
 			w.Write(endBraceNewline)
 			continue
 		}
 		fmt.Fprint(w, num)
 		if wtyp != protowire.StartGroupType {
 			w.WriteByte(':')
 		}
 		if !w.compact || wtyp == protowire.StartGroupType {
 			w.WriteByte(' ')
 		}
 		switch wtyp {
 		case protowire.VarintType:
 			v, n := protowire.ConsumeVarint(b)
 			if n < 0 {
 				return
 			}
 			b = b[n:]
 			fmt.Fprint(w, v)
 		case protowire.Fixed32Type:
 			v, n := protowire.ConsumeFixed32(b)
 			if n < 0 {
 				return
 			}
 			b = b[n:]
 			fmt.Fprint(w, v)
 		case protowire.Fixed64Type:
 			v, n := protowire.ConsumeFixed64(b)
 			if n < 0 {
 				return
 			}
 			b = b[n:]
 			fmt.Fprint(w, v)
 		case protowire.BytesType:
 			v, n := protowire.ConsumeBytes(b)
 			if n < 0 {
 				return
 			}
 			b = b[n:]
 			fmt.Fprintf(w, "%q", v)
 		case protowire.StartGroupType:
 			w.WriteByte('{')
 			w.indent++
 		default:
 			fmt.Fprintf(w, "/* unknown wire type %d */", wtyp)
 		}
 		w.WriteByte('\n')
 	}
 }
 // writeExtensions writes all the extensions in m.
 func (w *textWriter) writeExtensions(m protoreflect.Message) error {
 	md := m.Descriptor()
 	if md.ExtensionRanges().Len() == 0 {
 		return nil
 	}
 	type ext struct {
 		desc protoreflect.FieldDescriptor
 		val  protoreflect.Value
 	}
 	var exts []ext
 	m.Range(func(fd protoreflect.FieldDescriptor, v protoreflect.Value) bool {
 		if fd.IsExtension() {
 			exts = append(exts, ext{fd, v})
 		}
 		return true
 	})
 	sort.Slice(exts, func(i, j int) bool {
 		return exts[i].desc.Number() < exts[j].desc.Number()
 	})
 	for _, ext := range exts {
 		// For message set, use the name of the message as the extension name.
 		name := string(ext.desc.FullName())
 		if isMessageSet(ext.desc.ContainingMessage()) {
 			name = strings.TrimSuffix(name, ".message_set_extension")
 		}
 		if !ext.desc.IsList() {
 			if err := w.writeSingularExtension(name, ext.val, ext.desc); err != nil {
 				return err
 			}
 		} else {
 			lv := ext.val.List()
 			for i := 0; i < lv.Len(); i++ {
 				if err := w.writeSingularExtension(name, lv.Get(i), ext.desc); err != nil {
 					return err
 				}
 			}
 		}
 	}
 	return nil
 }
 func (w *textWriter) writeSingularExtension(name string, v protoreflect.Value, fd protoreflect.FieldDescriptor) error {
 	fmt.Fprintf(w, "[%s]:", name)
 	if !w.compact {
 		w.WriteByte(' ')
 	}
 	if err := w.writeSingularValue(v, fd); err != nil {
 		return err
 	}
 	w.WriteByte('\n')
 	return nil
 }
 func (w *textWriter) writeIndent() {
 	if !w.complete {
 		return
 	}
 	for i := 0; i < w.indent*2; i++ {
 		w.buf = append(w.buf, ' ')
 	}
 	w.complete = false
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/wire.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/wire.go
@@ -0,0 +1,78 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 import (
 	protoV2 "google.golang.org/protobuf/proto"
 	"google.golang.org/protobuf/runtime/protoiface"
 )
 // Size returns the size in bytes of the wire-format encoding of m.
 func Size(m Message) int {
 	if m == nil {
 		return 0
 	}
 	mi := MessageV2(m)
 	return protoV2.Size(mi)
 }
 // Marshal returns the wire-format encoding of m.
 func Marshal(m Message) ([]byte, error) {
 	b, err := marshalAppend(nil, m, false)
 	if b == nil {
 		b = zeroBytes
 	}
 	return b, err
 }
 var zeroBytes = make([]byte, 0, 0)
 func marshalAppend(buf []byte, m Message, deterministic bool) ([]byte, error) {
 	if m == nil {
 		return nil, ErrNil
 	}
 	mi := MessageV2(m)
 	nbuf, err := protoV2.MarshalOptions{
 		Deterministic: deterministic,
 		AllowPartial:  true,
 	}.MarshalAppend(buf, mi)
 	if err != nil {
 		return buf, err
 	}
 	if len(buf) == len(nbuf) {
 		if !mi.ProtoReflect().IsValid() {
 			return buf, ErrNil
 		}
 	}
 	return nbuf, checkRequiredNotSet(mi)
 }
 // Unmarshal parses a wire-format message in b and places the decoded results in m.
 //
 // Unmarshal resets m before starting to unmarshal, so any existing data in m is always
 // removed. Use UnmarshalMerge to preserve and append to existing data.
 func Unmarshal(b []byte, m Message) error {
 	m.Reset()
 	return UnmarshalMerge(b, m)
 }
 // UnmarshalMerge parses a wire-format message in b and places the decoded results in m.
 func UnmarshalMerge(b []byte, m Message) error {
 	mi := MessageV2(m)
 	out, err := protoV2.UnmarshalOptions{
 		AllowPartial: true,
 		Merge:        true,
 	}.UnmarshalState(protoiface.UnmarshalInput{
 		Buf:     b,
 		Message: mi.ProtoReflect(),
 	})
 	if err != nil {
 		return err
 	}
 	if out.Flags&protoiface.UnmarshalInitialized > 0 {
 		return nil
 	}
 	return checkRequiredNotSet(mi)
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/wrappers.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/proto/wrappers.go
@@ -0,0 +1,34 @@
 // Copyright 2019 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package proto
 // Bool stores v in a new bool value and returns a pointer to it.
 func Bool(v bool) *bool { return &v }
 // Int stores v in a new int32 value and returns a pointer to it.
 //
 // Deprecated: Use Int32 instead.
 func Int(v int) *int32 { return Int32(int32(v)) }
 // Int32 stores v in a new int32 value and returns a pointer to it.
 func Int32(v int32) *int32 { return &v }
 // Int64 stores v in a new int64 value and returns a pointer to it.
 func Int64(v int64) *int64 { return &v }
 // Uint32 stores v in a new uint32 value and returns a pointer to it.
 func Uint32(v uint32) *uint32 { return &v }
 // Uint64 stores v in a new uint64 value and returns a pointer to it.
 func Uint64(v uint64) *uint64 { return &v }
 // Float32 stores v in a new float32 value and returns a pointer to it.
 func Float32(v float32) *float32 { return &v }
 // Float64 stores v in a new float64 value and returns a pointer to it.
 func Float64(v float64) *float64 { return &v }
 // String stores v in a new string value and returns a pointer to it.
 func String(v string) *string { return &v }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/any.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/any.go
@@ -0,0 +1,179 @@
 // Copyright 2016 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package ptypes
 import (
 	"fmt"
 	"strings"
 	"github.com/golang/protobuf/proto"
 	"google.golang.org/protobuf/reflect/protoreflect"
 	"google.golang.org/protobuf/reflect/protoregistry"
 	anypb "github.com/golang/protobuf/ptypes/any"
 )
 const urlPrefix = "type.googleapis.com/"
 // AnyMessageName returns the message name contained in an anypb.Any message.
 // Most type assertions should use the Is function instead.
 //
 // Deprecated: Call the any.MessageName method instead.
 func AnyMessageName(any *anypb.Any) (string, error) {
 	name, err := anyMessageName(any)
 	return string(name), err
 }
 func anyMessageName(any *anypb.Any) (protoreflect.FullName, error) {
 	if any == nil {
 		return "", fmt.Errorf("message is nil")
 	}
 	name := protoreflect.FullName(any.TypeUrl)
 	if i := strings.LastIndex(any.TypeUrl, "/"); i >= 0 {
 		name = name[i+len("/"):]
 	}
 	if !name.IsValid() {
 		return "", fmt.Errorf("message type url %q is invalid", any.TypeUrl)
 	}
 	return name, nil
 }
 // MarshalAny marshals the given message m into an anypb.Any message.
 //
 // Deprecated: Call the anypb.New function instead.
 func MarshalAny(m proto.Message) (*anypb.Any, error) {
 	switch dm := m.(type) {
 	case DynamicAny:
 		m = dm.Message
 	case *DynamicAny:
 		if dm == nil {
 			return nil, proto.ErrNil
 		}
 		m = dm.Message
 	}
 	b, err := proto.Marshal(m)
 	if err != nil {
 		return nil, err
 	}
 	return &anypb.Any{TypeUrl: urlPrefix + proto.MessageName(m), Value: b}, nil
 }
 // Empty returns a new message of the type specified in an anypb.Any message.
 // It returns protoregistry.NotFound if the corresponding message type could not
 // be resolved in the global registry.
 //
 // Deprecated: Use protoregistry.GlobalTypes.FindMessageByName instead
 // to resolve the message name and create a new instance of it.
 func Empty(any *anypb.Any) (proto.Message, error) {
 	name, err := anyMessageName(any)
 	if err != nil {
 		return nil, err
 	}
 	mt, err := protoregistry.GlobalTypes.FindMessageByName(name)
 	if err != nil {
 		return nil, err
 	}
 	return proto.MessageV1(mt.New().Interface()), nil
 }
 // UnmarshalAny unmarshals the encoded value contained in the anypb.Any message
 // into the provided message m. It returns an error if the target message
 // does not match the type in the Any message or if an unmarshal error occurs.
 //
 // The target message m may be a *DynamicAny message. If the underlying message
 // type could not be resolved, then this returns protoregistry.NotFound.
 //
 // Deprecated: Call the any.UnmarshalTo method instead.
 func UnmarshalAny(any *anypb.Any, m proto.Message) error {
 	if dm, ok := m.(*DynamicAny); ok {
 		if dm.Message == nil {
 			var err error
 			dm.Message, err = Empty(any)
 			if err != nil {
 				return err
 			}
 		}
 		m = dm.Message
 	}
 	anyName, err := AnyMessageName(any)
 	if err != nil {
 		return err
 	}
 	msgName := proto.MessageName(m)
 	if anyName != msgName {
 		return fmt.Errorf("mismatched message type: got %q want %q", anyName, msgName)
 	}
 	return proto.Unmarshal(any.Value, m)
 }
 // Is reports whether the Any message contains a message of the specified type.
 //
 // Deprecated: Call the any.MessageIs method instead.
 func Is(any *anypb.Any, m proto.Message) bool {
 	if any == nil || m == nil {
 		return false
 	}
 	name := proto.MessageName(m)
 	if !strings.HasSuffix(any.TypeUrl, name) {
 		return false
 	}
 	return len(any.TypeUrl) == len(name) || any.TypeUrl[len(any.TypeUrl)-len(name)-1] == '/'
 }
 // DynamicAny is a value that can be passed to UnmarshalAny to automatically
 // allocate a proto.Message for the type specified in an anypb.Any message.
 // The allocated message is stored in the embedded proto.Message.
 //
 // Example:
 //   var x ptypes.DynamicAny
 //   if err := ptypes.UnmarshalAny(a, &x); err != nil { ... }
 //   fmt.Printf("unmarshaled message: %v", x.Message)
 //
 // Deprecated: Use the any.UnmarshalNew method instead to unmarshal
 // the any message contents into a new instance of the underlying message.
 type DynamicAny struct{ proto.Message }
 func (m DynamicAny) String() string {
 	if m.Message == nil {
 		return "<nil>"
 	}
 	return m.Message.String()
 }
 func (m DynamicAny) Reset() {
 	if m.Message == nil {
 		return
 	}
 	m.Message.Reset()
 }
 func (m DynamicAny) ProtoMessage() {
 	return
 }
 func (m DynamicAny) ProtoReflect() protoreflect.Message {
 	if m.Message == nil {
 		return nil
 	}
 	return dynamicAny{proto.MessageReflect(m.Message)}
 }
 type dynamicAny struct{ protoreflect.Message }
 func (m dynamicAny) Type() protoreflect.MessageType {
 	return dynamicAnyType{m.Message.Type()}
 }
 func (m dynamicAny) New() protoreflect.Message {
 	return dynamicAnyType{m.Message.Type()}.New()
 }
 func (m dynamicAny) Interface() protoreflect.ProtoMessage {
 	return DynamicAny{proto.MessageV1(m.Message.Interface())}
 }
 type dynamicAnyType struct{ protoreflect.MessageType }
 func (t dynamicAnyType) New() protoreflect.Message {
 	return dynamicAny{t.MessageType.New()}
 }
 func (t dynamicAnyType) Zero() protoreflect.Message {
 	return dynamicAny{t.MessageType.Zero()}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/any/any.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/any/any.pb.go
@@ -0,0 +1,62 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: github.com/golang/protobuf/ptypes/any/any.proto
 package any
 import (
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	anypb "google.golang.org/protobuf/types/known/anypb"
 	reflect "reflect"
 )
 // Symbols defined in public import of google/protobuf/any.proto.
 type Any = anypb.Any
 var File_github_com_golang_protobuf_ptypes_any_any_proto protoreflect.FileDescriptor
 var file_github_com_golang_protobuf_ptypes_any_any_proto_rawDesc = []byte{
 	0x0a, 0x2f, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6c,
 	0x61, 0x6e, 0x67, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x70, 0x74, 0x79,
 	0x70, 0x65, 0x73, 0x2f, 0x61, 0x6e, 0x79, 0x2f, 0x61, 0x6e, 0x79, 0x2e, 0x70, 0x72, 0x6f, 0x74,
 	0x6f, 0x1a, 0x19, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62,
 	0x75, 0x66, 0x2f, 0x61, 0x6e, 0x79, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x42, 0x2b, 0x5a, 0x29,
 	0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6c, 0x61, 0x6e,
 	0x67, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x70, 0x74, 0x79, 0x70, 0x65,
 	0x73, 0x2f, 0x61, 0x6e, 0x79, 0x3b, 0x61, 0x6e, 0x79, 0x50, 0x00, 0x62, 0x06, 0x70, 0x72, 0x6f,
 	0x74, 0x6f, 0x33,
 }
 var file_github_com_golang_protobuf_ptypes_any_any_proto_goTypes = []interface{}{}
 var file_github_com_golang_protobuf_ptypes_any_any_proto_depIdxs = []int32{
 	0, // [0:0] is the sub-list for method output_type
 	0, // [0:0] is the sub-list for method input_type
 	0, // [0:0] is the sub-list for extension type_name
 	0, // [0:0] is the sub-list for extension extendee
 	0, // [0:0] is the sub-list for field type_name
 }
 func init() { file_github_com_golang_protobuf_ptypes_any_any_proto_init() }
 func file_github_com_golang_protobuf_ptypes_any_any_proto_init() {
 	if File_github_com_golang_protobuf_ptypes_any_any_proto != nil {
 		return
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_github_com_golang_protobuf_ptypes_any_any_proto_rawDesc,
 			NumEnums:      0,
 			NumMessages:   0,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_github_com_golang_protobuf_ptypes_any_any_proto_goTypes,
 		DependencyIndexes: file_github_com_golang_protobuf_ptypes_any_any_proto_depIdxs,
 	}.Build()
 	File_github_com_golang_protobuf_ptypes_any_any_proto = out.File
 	file_github_com_golang_protobuf_ptypes_any_any_proto_rawDesc = nil
 	file_github_com_golang_protobuf_ptypes_any_any_proto_goTypes = nil
 	file_github_com_golang_protobuf_ptypes_any_any_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/doc.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/doc.go
@@ -0,0 +1,10 @@
 // Copyright 2016 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 // Package ptypes provides functionality for interacting with well-known types.
 //
 // Deprecated: Well-known types have specialized functionality directly
 // injected into the generated packages for each message type.
 // See the deprecation notice for each function for the suggested alternative.
 package ptypes
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/duration.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/duration.go
@@ -0,0 +1,76 @@
 // Copyright 2016 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package ptypes
 import (
 	"errors"
 	"fmt"
 	"time"
 	durationpb "github.com/golang/protobuf/ptypes/duration"
 )
 // Range of google.protobuf.Duration as specified in duration.proto.
 // This is about 10,000 years in seconds.
 const (
 	maxSeconds = int64(10000 * 365.25 * 24 * 60 * 60)
 	minSeconds = -maxSeconds
 )
 // Duration converts a durationpb.Duration to a time.Duration.
 // Duration returns an error if dur is invalid or overflows a time.Duration.
 //
 // Deprecated: Call the dur.AsDuration and dur.CheckValid methods instead.
 func Duration(dur *durationpb.Duration) (time.Duration, error) {
 	if err := validateDuration(dur); err != nil {
 		return 0, err
 	}
 	d := time.Duration(dur.Seconds) * time.Second
 	if int64(d/time.Second) != dur.Seconds {
 		return 0, fmt.Errorf("duration: %v is out of range for time.Duration", dur)
 	}
 	if dur.Nanos != 0 {
 		d += time.Duration(dur.Nanos) * time.Nanosecond
 		if (d < 0) != (dur.Nanos < 0) {
 			return 0, fmt.Errorf("duration: %v is out of range for time.Duration", dur)
 		}
 	}
 	return d, nil
 }
 // DurationProto converts a time.Duration to a durationpb.Duration.
 //
 // Deprecated: Call the durationpb.New function instead.
 func DurationProto(d time.Duration) *durationpb.Duration {
 	nanos := d.Nanoseconds()
 	secs := nanos / 1e9
 	nanos -= secs * 1e9
 	return &durationpb.Duration{
 		Seconds: int64(secs),
 		Nanos:   int32(nanos),
 	}
 }
 // validateDuration determines whether the durationpb.Duration is valid
 // according to the definition in google/protobuf/duration.proto.
 // A valid durpb.Duration may still be too large to fit into a time.Duration
 // Note that the range of durationpb.Duration is about 10,000 years,
 // while the range of time.Duration is about 290 years.
 func validateDuration(dur *durationpb.Duration) error {
 	if dur == nil {
 		return errors.New("duration: nil Duration")
 	}
 	if dur.Seconds < minSeconds || dur.Seconds > maxSeconds {
 		return fmt.Errorf("duration: %v: seconds out of range", dur)
 	}
 	if dur.Nanos <= -1e9 || dur.Nanos >= 1e9 {
 		return fmt.Errorf("duration: %v: nanos out of range", dur)
 	}
 	// Seconds and Nanos must have the same sign, unless d.Nanos is zero.
 	if (dur.Seconds < 0 && dur.Nanos > 0) || (dur.Seconds > 0 && dur.Nanos < 0) {
 		return fmt.Errorf("duration: %v: seconds and nanos have different signs", dur)
 	}
 	return nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/duration/duration.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/duration/duration.pb.go
@@ -0,0 +1,63 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: github.com/golang/protobuf/ptypes/duration/duration.proto
 package duration
 import (
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	durationpb "google.golang.org/protobuf/types/known/durationpb"
 	reflect "reflect"
 )
 // Symbols defined in public import of google/protobuf/duration.proto.
 type Duration = durationpb.Duration
 var File_github_com_golang_protobuf_ptypes_duration_duration_proto protoreflect.FileDescriptor
 var file_github_com_golang_protobuf_ptypes_duration_duration_proto_rawDesc = []byte{
 	0x0a, 0x39, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6c,
 	0x61, 0x6e, 0x67, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x70, 0x74, 0x79,
 	0x70, 0x65, 0x73, 0x2f, 0x64, 0x75, 0x72, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x2f, 0x64, 0x75, 0x72,
 	0x61, 0x74, 0x69, 0x6f, 0x6e, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x1a, 0x1e, 0x67, 0x6f, 0x6f,
 	0x67, 0x6c, 0x65, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x64, 0x75, 0x72,
 	0x61, 0x74, 0x69, 0x6f, 0x6e, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x42, 0x35, 0x5a, 0x33, 0x67,
 	0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6c, 0x61, 0x6e, 0x67,
 	0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x70, 0x74, 0x79, 0x70, 0x65, 0x73,
 	0x2f, 0x64, 0x75, 0x72, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x3b, 0x64, 0x75, 0x72, 0x61, 0x74, 0x69,
 	0x6f, 0x6e, 0x50, 0x00, 0x62, 0x06, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x33,
 }
 var file_github_com_golang_protobuf_ptypes_duration_duration_proto_goTypes = []interface{}{}
 var file_github_com_golang_protobuf_ptypes_duration_duration_proto_depIdxs = []int32{
 	0, // [0:0] is the sub-list for method output_type
 	0, // [0:0] is the sub-list for method input_type
 	0, // [0:0] is the sub-list for extension type_name
 	0, // [0:0] is the sub-list for extension extendee
 	0, // [0:0] is the sub-list for field type_name
 }
 func init() { file_github_com_golang_protobuf_ptypes_duration_duration_proto_init() }
 func file_github_com_golang_protobuf_ptypes_duration_duration_proto_init() {
 	if File_github_com_golang_protobuf_ptypes_duration_duration_proto != nil {
 		return
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_github_com_golang_protobuf_ptypes_duration_duration_proto_rawDesc,
 			NumEnums:      0,
 			NumMessages:   0,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_github_com_golang_protobuf_ptypes_duration_duration_proto_goTypes,
 		DependencyIndexes: file_github_com_golang_protobuf_ptypes_duration_duration_proto_depIdxs,
 	}.Build()
 	File_github_com_golang_protobuf_ptypes_duration_duration_proto = out.File
 	file_github_com_golang_protobuf_ptypes_duration_duration_proto_rawDesc = nil
 	file_github_com_golang_protobuf_ptypes_duration_duration_proto_goTypes = nil
 	file_github_com_golang_protobuf_ptypes_duration_duration_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/timestamp.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/timestamp.go
@@ -0,0 +1,112 @@
 // Copyright 2016 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 package ptypes
 import (
 	"errors"
 	"fmt"
 	"time"
 	timestamppb "github.com/golang/protobuf/ptypes/timestamp"
 )
 // Range of google.protobuf.Duration as specified in timestamp.proto.
 const (
 	// Seconds field of the earliest valid Timestamp.
 	// This is time.Date(1, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
 	minValidSeconds = -62135596800
 	// Seconds field just after the latest valid Timestamp.
 	// This is time.Date(10000, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
 	maxValidSeconds = 253402300800
 )
 // Timestamp converts a timestamppb.Timestamp to a time.Time.
 // It returns an error if the argument is invalid.
 //
 // Unlike most Go functions, if Timestamp returns an error, the first return
 // value is not the zero time.Time. Instead, it is the value obtained from the
 // time.Unix function when passed the contents of the Timestamp, in the UTC
 // locale. This may or may not be a meaningful time; many invalid Timestamps
 // do map to valid time.Times.
 //
 // A nil Timestamp returns an error. The first return value in that case is
 // undefined.
 //
 // Deprecated: Call the ts.AsTime and ts.CheckValid methods instead.
 func Timestamp(ts *timestamppb.Timestamp) (time.Time, error) {
 	// Don't return the zero value on error, because corresponds to a valid
 	// timestamp. Instead return whatever time.Unix gives us.
 	var t time.Time
 	if ts == nil {
 		t = time.Unix(0, 0).UTC() // treat nil like the empty Timestamp
 	} else {
 		t = time.Unix(ts.Seconds, int64(ts.Nanos)).UTC()
 	}
 	return t, validateTimestamp(ts)
 }
 // TimestampNow returns a google.protobuf.Timestamp for the current time.
 //
 // Deprecated: Call the timestamppb.Now function instead.
 func TimestampNow() *timestamppb.Timestamp {
 	ts, err := TimestampProto(time.Now())
 	if err != nil {
 		panic("ptypes: time.Now() out of Timestamp range")
 	}
 	return ts
 }
 // TimestampProto converts the time.Time to a google.protobuf.Timestamp proto.
 // It returns an error if the resulting Timestamp is invalid.
 //
 // Deprecated: Call the timestamppb.New function instead.
 func TimestampProto(t time.Time) (*timestamppb.Timestamp, error) {
 	ts := &timestamppb.Timestamp{
 		Seconds: t.Unix(),
 		Nanos:   int32(t.Nanosecond()),
 	}
 	if err := validateTimestamp(ts); err != nil {
 		return nil, err
 	}
 	return ts, nil
 }
 // TimestampString returns the RFC 3339 string for valid Timestamps.
 // For invalid Timestamps, it returns an error message in parentheses.
 //
 // Deprecated: Call the ts.AsTime method instead,
 // followed by a call to the Format method on the time.Time value.
 func TimestampString(ts *timestamppb.Timestamp) string {
 	t, err := Timestamp(ts)
 	if err != nil {
 		return fmt.Sprintf("(%v)", err)
 	}
 	return t.Format(time.RFC3339Nano)
 }
 // validateTimestamp determines whether a Timestamp is valid.
 // A valid timestamp represents a time in the range [0001-01-01, 10000-01-01)
 // and has a Nanos field in the range [0, 1e9).
 //
 // If the Timestamp is valid, validateTimestamp returns nil.
 // Otherwise, it returns an error that describes the problem.
 //
 // Every valid Timestamp can be represented by a time.Time,
 // but the converse is not true.
 func validateTimestamp(ts *timestamppb.Timestamp) error {
 	if ts == nil {
 		return errors.New("timestamp: nil Timestamp")
 	}
 	if ts.Seconds < minValidSeconds {
 		return fmt.Errorf("timestamp: %v before 0001-01-01", ts)
 	}
 	if ts.Seconds >= maxValidSeconds {
 		return fmt.Errorf("timestamp: %v after 10000-01-01", ts)
 	}
 	if ts.Nanos < 0 || ts.Nanos >= 1e9 {
 		return fmt.Errorf("timestamp: %v: nanos not in range [0, 1e9)", ts)
 	}
 	return nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/timestamp/timestamp.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/golang/protobuf/ptypes/timestamp/timestamp.pb.go
@@ -0,0 +1,64 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: github.com/golang/protobuf/ptypes/timestamp/timestamp.proto
 package timestamp
 import (
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	timestamppb "google.golang.org/protobuf/types/known/timestamppb"
 	reflect "reflect"
 )
 // Symbols defined in public import of google/protobuf/timestamp.proto.
 type Timestamp = timestamppb.Timestamp
 var File_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto protoreflect.FileDescriptor
 var file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_rawDesc = []byte{
 	0x0a, 0x3b, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6c,
 	0x61, 0x6e, 0x67, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x70, 0x74, 0x79,
 	0x70, 0x65, 0x73, 0x2f, 0x74, 0x69, 0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x2f, 0x74, 0x69,
 	0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x1a, 0x1f, 0x67,
 	0x6f, 0x6f, 0x67, 0x6c, 0x65, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x74,
 	0x69, 0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x42, 0x37,
 	0x5a, 0x35, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6c,
 	0x61, 0x6e, 0x67, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x70, 0x74, 0x79,
 	0x70, 0x65, 0x73, 0x2f, 0x74, 0x69, 0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x3b, 0x74, 0x69,
 	0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x50, 0x00, 0x62, 0x06, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x33,
 }
 var file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_goTypes = []interface{}{}
 var file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_depIdxs = []int32{
 	0, // [0:0] is the sub-list for method output_type
 	0, // [0:0] is the sub-list for method input_type
 	0, // [0:0] is the sub-list for extension type_name
 	0, // [0:0] is the sub-list for extension extendee
 	0, // [0:0] is the sub-list for field type_name
 }
 func init() { file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_init() }
 func file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_init() {
 	if File_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto != nil {
 		return
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_rawDesc,
 			NumEnums:      0,
 			NumMessages:   0,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_goTypes,
 		DependencyIndexes: file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_depIdxs,
 	}.Build()
 	File_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto = out.File
 	file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_rawDesc = nil
 	file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_goTypes = nil
 	file_github_com_golang_protobuf_ptypes_timestamp_timestamp_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/.gitignore
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/.gitignore
@@ -0,0 +1,6 @@
 # Ignore binaries without extension
 //example/client/client
 //example/server/server
 //internal/v2/fakes2av2_server/fakes2av2_server
 .idea/
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/CODE_OF_CONDUCT.md
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/CODE_OF_CONDUCT.md
@@ -0,0 +1,93 @@
 # Code of Conduct
 ## Our Pledge
 In the interest of fostering an open and welcoming environment, we as
 contributors and maintainers pledge to making participation in our project and
 our community a harassment-free experience for everyone, regardless of age, body
 size, disability, ethnicity, gender identity and expression, level of
 experience, education, socio-economic status, nationality, personal appearance,
 race, religion, or sexual identity and orientation.
 ## Our Standards
 Examples of behavior that contributes to creating a positive environment
 include:
 *   Using welcoming and inclusive language
 *   Being respectful of differing viewpoints and experiences
 *   Gracefully accepting constructive criticism
 *   Focusing on what is best for the community
 *   Showing empathy towards other community members
 Examples of unacceptable behavior by participants include:
 *   The use of sexualized language or imagery and unwelcome sexual attention or
    advances
 *   Trolling, insulting/derogatory comments, and personal or political attacks
 *   Public or private harassment
 *   Publishing others' private information, such as a physical or electronic
    address, without explicit permission
 *   Other conduct which could reasonably be considered inappropriate in a
    professional setting
 ## Our Responsibilities
 Project maintainers are responsible for clarifying the standards of acceptable
 behavior and are expected to take appropriate and fair corrective action in
 response to any instances of unacceptable behavior.
 Project maintainers have the right and responsibility to remove, edit, or reject
 comments, commits, code, wiki edits, issues, and other contributions that are
 not aligned to this Code of Conduct, or to ban temporarily or permanently any
 contributor for other behaviors that they deem inappropriate, threatening,
 offensive, or harmful.
 ## Scope
 This Code of Conduct applies both within project spaces and in public spaces
 when an individual is representing the project or its community. Examples of
 representing a project or community include using an official project e-mail
 address, posting via an official social media account, or acting as an appointed
 representative at an online or offline event. Representation of a project may be
 further defined and clarified by project maintainers.
 This Code of Conduct also applies outside the project spaces when the Project
 Steward has a reasonable belief that an individual's behavior may have a
 negative impact on the project or its community.
 ## Conflict Resolution
 We do not believe that all conflict is bad; healthy debate and disagreement
 often yield positive results. However, it is never okay to be disrespectful or
 to engage in behavior that violates the project’s code of conduct.
 If you see someone violating the code of conduct, you are encouraged to address
 the behavior directly with those involved. Many issues can be resolved quickly
 and easily, and this gives people more control over the outcome of their
 dispute. If you are unable to resolve the matter for any reason, or if the
 behavior is threatening or harassing, report it. We are dedicated to providing
 an environment where participants feel welcome and safe.
 Reports should be directed to *[PROJECT STEWARD NAME(s) AND EMAIL(s)]*, the
 Project Steward(s) for *[PROJECT NAME]*. It is the Project Steward’s duty to
 receive and address reported violations of the code of conduct. They will then
 work with a committee consisting of representatives from the Open Source
 Programs Office and the Google Open Source Strategy team. If for any reason you
 are uncomfortable reaching out to the Project Steward, please email
 opensource@google.com.
 We will investigate every complaint, but you may not receive a direct response.
 We will use our discretion in determining when and how to follow up on reported
 incidents, which may range from not taking action to permanent expulsion from
 the project and project-sponsored spaces. We will notify the accused of the
 report and provide them an opportunity to discuss it before any action is taken.
 The identity of the reporter will be omitted from the details of the report
 supplied to the accused. In potentially harmful situations, such as ongoing
 harassment or threats to anyone's safety, we may take action without notice.
 ## Attribution
 This Code of Conduct is adapted from the Contributor Covenant, version 1.4,
 available at
 https://www.contributor-covenant.org/version/1/4/code-of-conduct.html
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/CONTRIBUTING.md
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/CONTRIBUTING.md
@@ -0,0 +1,29 @@
 # How to Contribute
 We'd love to accept your patches and contributions to this project. There are
 just a few small guidelines you need to follow.
 ## Contributor License Agreement
 Contributions to this project must be accompanied by a Contributor License
 Agreement (CLA). You (or your employer) retain the copyright to your
 contribution; this simply gives us permission to use and redistribute your
 contributions as part of the project. Head over to
 <https://cla.developers.google.com/> to see your current agreements on file or
 to sign a new one.
 You generally only need to submit a CLA once, so if you've already submitted one
 (even if it was for a different project), you probably don't need to do it
 again.
 ## Code reviews
 All submissions, including submissions by project members, require review. We
 use GitHub pull requests for this purpose. Consult
 [GitHub Help](https://help.github.com/articles/about-pull-requests/) for more
 information on using pull requests.
 ## Community Guidelines
 This project follows
 [Google's Open Source Community Guidelines](https://opensource.google/conduct/).
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/LICENSE.md
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/LICENSE.md
@@ -0,0 +1,202 @@
                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/
   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
   1. Definitions.
      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.
      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.
      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.
      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.
      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.
      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.
      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).
      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.
      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."
      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.
   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.
   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.
   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:
      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and
      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and
      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and
      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.
      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.
   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.
   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.
   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.
   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.
   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.
   END OF TERMS AND CONDITIONS
   APPENDIX: How to apply the Apache License to your work.
      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!)  The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/README.md
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/README.md
@@ -0,0 +1,17 @@
 # Secure Session Agent Client Libraries
 The Secure Session Agent is a service that enables a workload to offload select
 operations from the mTLS handshake and protects a workload's private key
 material from exfiltration. Specifically, the workload asks the Secure Session
 Agent for the TLS configuration to use during the handshake, to perform private
 key operations, and to validate the peer certificate chain. The Secure Session
 Agent's client libraries enable applications to communicate with the Secure
 Session Agent during the TLS handshake, and to encrypt traffic to the peer
 after the TLS handshake is complete.
 This repository contains the source code for the Secure Session Agent's Go
 client libraries, which allow gRPC-Go applications to use the Secure Session
 Agent. This repository supports the Bazel and Golang build systems.
 All code in this repository is experimental and subject to change. We do not
 guarantee API stability at this time.
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/fallback/s2a_fallback.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/fallback/s2a_fallback.go
@@ -0,0 +1,167 @@
 /*
 *
 * Copyright 2023 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package fallback provides default implementations of fallback options when S2A fails.
 package fallback
 import (
 	"context"
 	"crypto/tls"
 	"fmt"
 	"net"
 	"google.golang.org/grpc/credentials"
 	"google.golang.org/grpc/grpclog"
 )
 const (
 	alpnProtoStrH2   = "h2"
 	alpnProtoStrHTTP = "http/1.1"
 	defaultHTTPSPort = "443"
 )
 // FallbackTLSConfigGRPC is a tls.Config used by the DefaultFallbackClientHandshakeFunc function.
 // It supports GRPC use case, thus the alpn is set to 'h2'.
 var FallbackTLSConfigGRPC = tls.Config{
 	MinVersion:         tls.VersionTLS13,
 	ClientSessionCache: nil,
 	NextProtos:         []string{alpnProtoStrH2},
 }
 // FallbackTLSConfigHTTP is a tls.Config used by the DefaultFallbackDialerAndAddress func.
 // It supports the HTTP use case and the alpn is set to both 'http/1.1' and 'h2'.
 var FallbackTLSConfigHTTP = tls.Config{
 	MinVersion:         tls.VersionTLS13,
 	ClientSessionCache: nil,
 	NextProtos:         []string{alpnProtoStrH2, alpnProtoStrHTTP},
 }
 // ClientHandshake establishes a TLS connection and returns it, plus its auth info.
 // Inputs:
 //
 //	targetServer: the server attempted with S2A.
 //	conn: the tcp connection to the server at address targetServer that was passed into S2A's ClientHandshake func.
 //	            If fallback is successful, the `conn` should be closed.
 //	err: the error encountered when performing the client-side TLS handshake with S2A.
 type ClientHandshake func(ctx context.Context, targetServer string, conn net.Conn, err error) (net.Conn, credentials.AuthInfo, error)
 // DefaultFallbackClientHandshakeFunc returns a ClientHandshake function,
 // which establishes a TLS connection to the provided fallbackAddr, returns the new connection and its auth info.
 // Example use:
 //
 //	transportCreds, _ = s2a.NewClientCreds(&s2a.ClientOptions{
 //		S2AAddress: s2aAddress,
 //		FallbackOpts: &s2a.FallbackOptions{ // optional
 //			FallbackClientHandshakeFunc: fallback.DefaultFallbackClientHandshakeFunc(fallbackAddr),
 //		},
 //	})
 //
 // The fallback server's certificate must be verifiable using OS root store.
 // The fallbackAddr is expected to be a network address, e.g. example.com:port. If port is not specified,
 // it uses default port 443.
 // In the returned function's TLS config, ClientSessionCache is explicitly set to nil to disable TLS resumption,
 // and min TLS version is set to 1.3.
 func DefaultFallbackClientHandshakeFunc(fallbackAddr string) (ClientHandshake, error) {
 	var fallbackDialer = tls.Dialer{Config: &FallbackTLSConfigGRPC}
 	return defaultFallbackClientHandshakeFuncInternal(fallbackAddr, fallbackDialer.DialContext)
 }
 func defaultFallbackClientHandshakeFuncInternal(fallbackAddr string, dialContextFunc func(context.Context, string, string) (net.Conn, error)) (ClientHandshake, error) {
 	fallbackServerAddr, err := processFallbackAddr(fallbackAddr)
 	if err != nil {
 		if grpclog.V(1) {
 			grpclog.Infof("error processing fallback address [%s]: %v", fallbackAddr, err)
 		}
 		return nil, err
 	}
 	return func(ctx context.Context, targetServer string, conn net.Conn, s2aErr error) (net.Conn, credentials.AuthInfo, error) {
 		fbConn, fbErr := dialContextFunc(ctx, "tcp", fallbackServerAddr)
 		if fbErr != nil {
 			grpclog.Infof("dialing to fallback server %s failed: %v", fallbackServerAddr, fbErr)
 			return nil, nil, fmt.Errorf("dialing to fallback server %s failed: %v; S2A client handshake with %s error: %w", fallbackServerAddr, fbErr, targetServer, s2aErr)
 		}
 		tc, success := fbConn.(*tls.Conn)
 		if !success {
 			grpclog.Infof("the connection with fallback server is expected to be tls but isn't")
 			return nil, nil, fmt.Errorf("the connection with fallback server is expected to be tls but isn't; S2A client handshake with %s error: %w", targetServer, s2aErr)
 		}
 		tlsInfo := credentials.TLSInfo{
 			State: tc.ConnectionState(),
 			CommonAuthInfo: credentials.CommonAuthInfo{
 				SecurityLevel: credentials.PrivacyAndIntegrity,
 			},
 		}
 		if grpclog.V(1) {
 			grpclog.Infof("ConnectionState.NegotiatedProtocol: %v", tc.ConnectionState().NegotiatedProtocol)
 			grpclog.Infof("ConnectionState.HandshakeComplete: %v", tc.ConnectionState().HandshakeComplete)
 			grpclog.Infof("ConnectionState.ServerName: %v", tc.ConnectionState().ServerName)
 		}
 		conn.Close()
 		return fbConn, tlsInfo, nil
 	}, nil
 }
 // DefaultFallbackDialerAndAddress returns a TLS dialer and the network address to dial.
 // Example use:
 //
 //	    fallbackDialer, fallbackServerAddr := fallback.DefaultFallbackDialerAndAddress(fallbackAddr)
 //		dialTLSContext := s2a.NewS2aDialTLSContextFunc(&s2a.ClientOptions{
 //			S2AAddress:         s2aAddress, // required
 //			FallbackOpts: &s2a.FallbackOptions{
 //				FallbackDialer: &s2a.FallbackDialer{
 //					Dialer:     fallbackDialer,
 //					ServerAddr: fallbackServerAddr,
 //				},
 //			},
 //	})
 //
 // The fallback server's certificate should be verifiable using OS root store.
 // The fallbackAddr is expected to be a network address, e.g. example.com:port. If port is not specified,
 // it uses default port 443.
 // In the returned function's TLS config, ClientSessionCache is explicitly set to nil to disable TLS resumption,
 // and min TLS version is set to 1.3.
 func DefaultFallbackDialerAndAddress(fallbackAddr string) (*tls.Dialer, string, error) {
 	fallbackServerAddr, err := processFallbackAddr(fallbackAddr)
 	if err != nil {
 		if grpclog.V(1) {
 			grpclog.Infof("error processing fallback address [%s]: %v", fallbackAddr, err)
 		}
 		return nil, "", err
 	}
 	return &tls.Dialer{Config: &FallbackTLSConfigHTTP}, fallbackServerAddr, nil
 }
 func processFallbackAddr(fallbackAddr string) (string, error) {
 	var fallbackServerAddr string
 	var err error
 	if fallbackAddr == "" {
 		return "", fmt.Errorf("empty fallback address")
 	}
 	_, _, err = net.SplitHostPort(fallbackAddr)
 	if err != nil {
 		// fallbackAddr does not have port suffix
 		fallbackServerAddr = net.JoinHostPort(fallbackAddr, defaultHTTPSPort)
 	} else {
 		// FallbackServerAddr already has port suffix
 		fallbackServerAddr = fallbackAddr
 	}
 	return fallbackServerAddr, nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/authinfo/authinfo.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/authinfo/authinfo.go
@@ -0,0 +1,119 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package authinfo provides authentication and authorization information that
 // results from the TLS handshake.
 package authinfo
 import (
 	"errors"
 	commonpb "github.com/google/s2a-go/internal/proto/common_go_proto"
 	contextpb "github.com/google/s2a-go/internal/proto/s2a_context_go_proto"
 	grpcpb "github.com/google/s2a-go/internal/proto/s2a_go_proto"
 	"google.golang.org/grpc/credentials"
 )
 var _ credentials.AuthInfo = (*S2AAuthInfo)(nil)
 const s2aAuthType = "s2a"
 // S2AAuthInfo exposes authentication and authorization information from the
 // S2A session result to the gRPC stack.
 type S2AAuthInfo struct {
 	s2aContext     *contextpb.S2AContext
 	commonAuthInfo credentials.CommonAuthInfo
 }
 // NewS2AAuthInfo returns a new S2AAuthInfo object from the S2A session result.
 func NewS2AAuthInfo(result *grpcpb.SessionResult) (credentials.AuthInfo, error) {
 	return newS2AAuthInfo(result)
 }
 func newS2AAuthInfo(result *grpcpb.SessionResult) (*S2AAuthInfo, error) {
 	if result == nil {
 		return nil, errors.New("NewS2aAuthInfo given nil session result")
 	}
 	return &S2AAuthInfo{
 		s2aContext: &contextpb.S2AContext{
 			ApplicationProtocol:  result.GetApplicationProtocol(),
 			TlsVersion:           result.GetState().GetTlsVersion(),
 			Ciphersuite:          result.GetState().GetTlsCiphersuite(),
 			PeerIdentity:         result.GetPeerIdentity(),
 			LocalIdentity:        result.GetLocalIdentity(),
 			PeerCertFingerprint:  result.GetPeerCertFingerprint(),
 			LocalCertFingerprint: result.GetLocalCertFingerprint(),
 			IsHandshakeResumed:   result.GetState().GetIsHandshakeResumed(),
 		},
 		commonAuthInfo: credentials.CommonAuthInfo{SecurityLevel: credentials.PrivacyAndIntegrity},
 	}, nil
 }
 // AuthType returns the authentication type.
 func (s *S2AAuthInfo) AuthType() string {
 	return s2aAuthType
 }
 // ApplicationProtocol returns the application protocol, e.g. "grpc".
 func (s *S2AAuthInfo) ApplicationProtocol() string {
 	return s.s2aContext.GetApplicationProtocol()
 }
 // TLSVersion returns the TLS version negotiated during the handshake.
 func (s *S2AAuthInfo) TLSVersion() commonpb.TLSVersion {
 	return s.s2aContext.GetTlsVersion()
 }
 // Ciphersuite returns the ciphersuite negotiated during the handshake.
 func (s *S2AAuthInfo) Ciphersuite() commonpb.Ciphersuite {
 	return s.s2aContext.GetCiphersuite()
 }
 // PeerIdentity returns the authenticated identity of the peer.
 func (s *S2AAuthInfo) PeerIdentity() *commonpb.Identity {
 	return s.s2aContext.GetPeerIdentity()
 }
 // LocalIdentity returns the local identity of the application used during
 // session setup.
 func (s *S2AAuthInfo) LocalIdentity() *commonpb.Identity {
 	return s.s2aContext.GetLocalIdentity()
 }
 // PeerCertFingerprint returns the SHA256 hash of the peer certificate used in
 // the S2A handshake.
 func (s *S2AAuthInfo) PeerCertFingerprint() []byte {
 	return s.s2aContext.GetPeerCertFingerprint()
 }
 // LocalCertFingerprint returns the SHA256 hash of the local certificate used
 // in the S2A handshake.
 func (s *S2AAuthInfo) LocalCertFingerprint() []byte {
 	return s.s2aContext.GetLocalCertFingerprint()
 }
 // IsHandshakeResumed returns true if a cached session was used to resume
 // the handshake.
 func (s *S2AAuthInfo) IsHandshakeResumed() bool {
 	return s.s2aContext.GetIsHandshakeResumed()
 }
 // SecurityLevel returns the security level of the connection.
 func (s *S2AAuthInfo) SecurityLevel() credentials.SecurityLevel {
 	return s.commonAuthInfo.SecurityLevel
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/handshaker/handshaker.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/handshaker/handshaker.go
@@ -0,0 +1,438 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package handshaker communicates with the S2A handshaker service.
 package handshaker
 import (
 	"context"
 	"errors"
 	"fmt"
 	"io"
 	"net"
 	"sync"
 	"github.com/google/s2a-go/internal/authinfo"
 	commonpb "github.com/google/s2a-go/internal/proto/common_go_proto"
 	s2apb "github.com/google/s2a-go/internal/proto/s2a_go_proto"
 	"github.com/google/s2a-go/internal/record"
 	"github.com/google/s2a-go/internal/tokenmanager"
 	grpc "google.golang.org/grpc"
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/credentials"
 	"google.golang.org/grpc/grpclog"
 )
 var (
 	// appProtocol contains the application protocol accepted by the handshaker.
 	appProtocol = "grpc"
 	// frameLimit is the maximum size of a frame in bytes.
 	frameLimit = 1024 * 64
 	// peerNotRespondingError is the error thrown when the peer doesn't respond.
 	errPeerNotResponding = errors.New("peer is not responding and re-connection should be attempted")
 )
 // Handshaker defines a handshaker interface.
 type Handshaker interface {
 	// ClientHandshake starts and completes a TLS handshake from the client side,
 	// and returns a secure connection along with additional auth information.
 	ClientHandshake(ctx context.Context) (net.Conn, credentials.AuthInfo, error)
 	// ServerHandshake starts and completes a TLS handshake from the server side,
 	// and returns a secure connection along with additional auth information.
 	ServerHandshake(ctx context.Context) (net.Conn, credentials.AuthInfo, error)
 	// Close terminates the Handshaker. It should be called when the handshake
 	// is complete.
 	Close() error
 }
 // ClientHandshakerOptions contains the options needed to configure the S2A
 // handshaker service on the client-side.
 type ClientHandshakerOptions struct {
 	// MinTLSVersion specifies the min TLS version supported by the client.
 	MinTLSVersion commonpb.TLSVersion
 	// MaxTLSVersion specifies the max TLS version supported by the client.
 	MaxTLSVersion commonpb.TLSVersion
 	// TLSCiphersuites is the ordered list of ciphersuites supported by the
 	// client.
 	TLSCiphersuites []commonpb.Ciphersuite
 	// TargetIdentities contains a list of allowed server identities. One of the
 	// target identities should match the peer identity in the handshake
 	// result; otherwise, the handshake fails.
 	TargetIdentities []*commonpb.Identity
 	// LocalIdentity is the local identity of the client application. If none is
 	// provided, then the S2A will choose the default identity.
 	LocalIdentity *commonpb.Identity
 	// TargetName is the allowed server name, which may be used for server
 	// authorization check by the S2A if it is provided.
 	TargetName string
 	// EnsureProcessSessionTickets allows users to wait and ensure that all
 	// available session tickets are sent to S2A before a process completes.
 	EnsureProcessSessionTickets *sync.WaitGroup
 }
 // ServerHandshakerOptions contains the options needed to configure the S2A
 // handshaker service on the server-side.
 type ServerHandshakerOptions struct {
 	// MinTLSVersion specifies the min TLS version supported by the server.
 	MinTLSVersion commonpb.TLSVersion
 	// MaxTLSVersion specifies the max TLS version supported by the server.
 	MaxTLSVersion commonpb.TLSVersion
 	// TLSCiphersuites is the ordered list of ciphersuites supported by the
 	// server.
 	TLSCiphersuites []commonpb.Ciphersuite
 	// LocalIdentities is the list of local identities that may be assumed by
 	// the server. If no local identity is specified, then the S2A chooses a
 	// default local identity.
 	LocalIdentities []*commonpb.Identity
 }
 // s2aHandshaker performs a TLS handshake using the S2A handshaker service.
 type s2aHandshaker struct {
 	// stream is used to communicate with the S2A handshaker service.
 	stream s2apb.S2AService_SetUpSessionClient
 	// conn is the connection to the peer.
 	conn net.Conn
 	// clientOpts should be non-nil iff the handshaker is client-side.
 	clientOpts *ClientHandshakerOptions
 	// serverOpts should be non-nil iff the handshaker is server-side.
 	serverOpts *ServerHandshakerOptions
 	// isClient determines if the handshaker is client or server side.
 	isClient bool
 	// hsAddr stores the address of the S2A handshaker service.
 	hsAddr string
 	// tokenManager manages access tokens for authenticating to S2A.
 	tokenManager tokenmanager.AccessTokenManager
 	// localIdentities is the set of local identities for whom the
 	// tokenManager should fetch a token when preparing a request to be
 	// sent to S2A.
 	localIdentities []*commonpb.Identity
 }
 // NewClientHandshaker creates an s2aHandshaker instance that performs a
 // client-side TLS handshake using the S2A handshaker service.
 func NewClientHandshaker(ctx context.Context, conn *grpc.ClientConn, c net.Conn, hsAddr string, opts *ClientHandshakerOptions) (Handshaker, error) {
 	stream, err := s2apb.NewS2AServiceClient(conn).SetUpSession(ctx, grpc.WaitForReady(true))
 	if err != nil {
 		return nil, err
 	}
 	tokenManager, err := tokenmanager.NewSingleTokenAccessTokenManager()
 	if err != nil {
 		grpclog.Infof("failed to create single token access token manager: %v", err)
 	}
 	return newClientHandshaker(stream, c, hsAddr, opts, tokenManager), nil
 }
 func newClientHandshaker(stream s2apb.S2AService_SetUpSessionClient, c net.Conn, hsAddr string, opts *ClientHandshakerOptions, tokenManager tokenmanager.AccessTokenManager) *s2aHandshaker {
 	var localIdentities []*commonpb.Identity
 	if opts != nil {
 		localIdentities = []*commonpb.Identity{opts.LocalIdentity}
 	}
 	return &s2aHandshaker{
 		stream:          stream,
 		conn:            c,
 		clientOpts:      opts,
 		isClient:        true,
 		hsAddr:          hsAddr,
 		tokenManager:    tokenManager,
 		localIdentities: localIdentities,
 	}
 }
 // NewServerHandshaker creates an s2aHandshaker instance that performs a
 // server-side TLS handshake using the S2A handshaker service.
 func NewServerHandshaker(ctx context.Context, conn *grpc.ClientConn, c net.Conn, hsAddr string, opts *ServerHandshakerOptions) (Handshaker, error) {
 	stream, err := s2apb.NewS2AServiceClient(conn).SetUpSession(ctx, grpc.WaitForReady(true))
 	if err != nil {
 		return nil, err
 	}
 	tokenManager, err := tokenmanager.NewSingleTokenAccessTokenManager()
 	if err != nil {
 		grpclog.Infof("failed to create single token access token manager: %v", err)
 	}
 	return newServerHandshaker(stream, c, hsAddr, opts, tokenManager), nil
 }
 func newServerHandshaker(stream s2apb.S2AService_SetUpSessionClient, c net.Conn, hsAddr string, opts *ServerHandshakerOptions, tokenManager tokenmanager.AccessTokenManager) *s2aHandshaker {
 	var localIdentities []*commonpb.Identity
 	if opts != nil {
 		localIdentities = opts.LocalIdentities
 	}
 	return &s2aHandshaker{
 		stream:          stream,
 		conn:            c,
 		serverOpts:      opts,
 		isClient:        false,
 		hsAddr:          hsAddr,
 		tokenManager:    tokenManager,
 		localIdentities: localIdentities,
 	}
 }
 // ClientHandshake performs a client-side TLS handshake using the S2A handshaker
 // service. When complete, returns a TLS connection.
 func (h *s2aHandshaker) ClientHandshake(_ context.Context) (net.Conn, credentials.AuthInfo, error) {
 	if !h.isClient {
 		return nil, nil, errors.New("only handshakers created using NewClientHandshaker can perform a client-side handshake")
 	}
 	// Extract the hostname from the target name. The target name is assumed to be an authority.
 	hostname, _, err := net.SplitHostPort(h.clientOpts.TargetName)
 	if err != nil {
 		// If the target name had no host port or could not be parsed, use it as is.
 		hostname = h.clientOpts.TargetName
 	}
 	// Prepare a client start message to send to the S2A handshaker service.
 	req := &s2apb.SessionReq{
 		ReqOneof: &s2apb.SessionReq_ClientStart{
 			ClientStart: &s2apb.ClientSessionStartReq{
 				ApplicationProtocols: []string{appProtocol},
 				MinTlsVersion:        h.clientOpts.MinTLSVersion,
 				MaxTlsVersion:        h.clientOpts.MaxTLSVersion,
 				TlsCiphersuites:      h.clientOpts.TLSCiphersuites,
 				TargetIdentities:     h.clientOpts.TargetIdentities,
 				LocalIdentity:        h.clientOpts.LocalIdentity,
 				TargetName:           hostname,
 			},
 		},
 		AuthMechanisms: h.getAuthMechanisms(),
 	}
 	conn, result, err := h.setUpSession(req)
 	if err != nil {
 		return nil, nil, err
 	}
 	authInfo, err := authinfo.NewS2AAuthInfo(result)
 	if err != nil {
 		return nil, nil, err
 	}
 	return conn, authInfo, nil
 }
 // ServerHandshake performs a server-side TLS handshake using the S2A handshaker
 // service. When complete, returns a TLS connection.
 func (h *s2aHandshaker) ServerHandshake(_ context.Context) (net.Conn, credentials.AuthInfo, error) {
 	if h.isClient {
 		return nil, nil, errors.New("only handshakers created using NewServerHandshaker can perform a server-side handshake")
 	}
 	p := make([]byte, frameLimit)
 	n, err := h.conn.Read(p)
 	if err != nil {
 		return nil, nil, err
 	}
 	// Prepare a server start message to send to the S2A handshaker service.
 	req := &s2apb.SessionReq{
 		ReqOneof: &s2apb.SessionReq_ServerStart{
 			ServerStart: &s2apb.ServerSessionStartReq{
 				ApplicationProtocols: []string{appProtocol},
 				MinTlsVersion:        h.serverOpts.MinTLSVersion,
 				MaxTlsVersion:        h.serverOpts.MaxTLSVersion,
 				TlsCiphersuites:      h.serverOpts.TLSCiphersuites,
 				LocalIdentities:      h.serverOpts.LocalIdentities,
 				InBytes:              p[:n],
 			},
 		},
 		AuthMechanisms: h.getAuthMechanisms(),
 	}
 	conn, result, err := h.setUpSession(req)
 	if err != nil {
 		return nil, nil, err
 	}
 	authInfo, err := authinfo.NewS2AAuthInfo(result)
 	if err != nil {
 		return nil, nil, err
 	}
 	return conn, authInfo, nil
 }
 // setUpSession proxies messages between the peer and the S2A handshaker
 // service.
 func (h *s2aHandshaker) setUpSession(req *s2apb.SessionReq) (net.Conn, *s2apb.SessionResult, error) {
 	resp, err := h.accessHandshakerService(req)
 	if err != nil {
 		return nil, nil, err
 	}
 	// Check if the returned status is an error.
 	if resp.GetStatus() != nil {
 		if got, want := resp.GetStatus().Code, uint32(codes.OK); got != want {
 			return nil, nil, fmt.Errorf("%v", resp.GetStatus().Details)
 		}
 	}
 	// Calculate the extra unread bytes from the Session. Attempting to consume
 	// more than the bytes sent will throw an error.
 	var extra []byte
 	if req.GetServerStart() != nil {
 		if resp.GetBytesConsumed() > uint32(len(req.GetServerStart().GetInBytes())) {
 			return nil, nil, errors.New("handshaker service consumed bytes value is out-of-bounds")
 		}
 		extra = req.GetServerStart().GetInBytes()[resp.GetBytesConsumed():]
 	}
 	result, extra, err := h.processUntilDone(resp, extra)
 	if err != nil {
 		return nil, nil, err
 	}
 	if result.GetLocalIdentity() == nil {
 		return nil, nil, errors.New("local identity must be populated in session result")
 	}
 	// Create a new TLS record protocol using the Session Result.
 	newConn, err := record.NewConn(&record.ConnParameters{
 		NetConn:                     h.conn,
 		Ciphersuite:                 result.GetState().GetTlsCiphersuite(),
 		TLSVersion:                  result.GetState().GetTlsVersion(),
 		InTrafficSecret:             result.GetState().GetInKey(),
 		OutTrafficSecret:            result.GetState().GetOutKey(),
 		UnusedBuf:                   extra,
 		InSequence:                  result.GetState().GetInSequence(),
 		OutSequence:                 result.GetState().GetOutSequence(),
 		HSAddr:                      h.hsAddr,
 		ConnectionID:                result.GetState().GetConnectionId(),
 		LocalIdentity:               result.GetLocalIdentity(),
 		EnsureProcessSessionTickets: h.ensureProcessSessionTickets(),
 	})
 	if err != nil {
 		return nil, nil, err
 	}
 	return newConn, result, nil
 }
 func (h *s2aHandshaker) ensureProcessSessionTickets() *sync.WaitGroup {
 	if h.clientOpts == nil {
 		return nil
 	}
 	return h.clientOpts.EnsureProcessSessionTickets
 }
 // accessHandshakerService sends the session request to the S2A handshaker
 // service and returns the session response.
 func (h *s2aHandshaker) accessHandshakerService(req *s2apb.SessionReq) (*s2apb.SessionResp, error) {
 	if err := h.stream.Send(req); err != nil {
 		return nil, err
 	}
 	resp, err := h.stream.Recv()
 	if err != nil {
 		return nil, err
 	}
 	return resp, nil
 }
 // processUntilDone continues proxying messages between the peer and the S2A
 // handshaker service until the handshaker service returns the SessionResult at
 // the end of the handshake or an error occurs.
 func (h *s2aHandshaker) processUntilDone(resp *s2apb.SessionResp, unusedBytes []byte) (*s2apb.SessionResult, []byte, error) {
 	for {
 		if len(resp.OutFrames) > 0 {
 			if _, err := h.conn.Write(resp.OutFrames); err != nil {
 				return nil, nil, err
 			}
 		}
 		if resp.Result != nil {
 			return resp.Result, unusedBytes, nil
 		}
 		buf := make([]byte, frameLimit)
 		n, err := h.conn.Read(buf)
 		if err != nil && err != io.EOF {
 			return nil, nil, err
 		}
 		// If there is nothing to send to the handshaker service and nothing is
 		// received from the peer, then we are stuck. This covers the case when
 		// the peer is not responding. Note that handshaker service connection
 		// issues are caught in accessHandshakerService before we even get
 		// here.
 		if len(resp.OutFrames) == 0 && n == 0 {
 			return nil, nil, errPeerNotResponding
 		}
 		// Append extra bytes from the previous interaction with the handshaker
 		// service with the current buffer read from conn.
 		p := append(unusedBytes, buf[:n]...)
 		// From here on, p and unusedBytes point to the same slice.
 		resp, err = h.accessHandshakerService(&s2apb.SessionReq{
 			ReqOneof: &s2apb.SessionReq_Next{
 				Next: &s2apb.SessionNextReq{
 					InBytes: p,
 				},
 			},
 			AuthMechanisms: h.getAuthMechanisms(),
 		})
 		if err != nil {
 			return nil, nil, err
 		}
 		// Cache the local identity returned by S2A, if it is populated. This
 		// overwrites any existing local identities. This is done because, once the
 		// S2A has selected a local identity, then only that local identity should
 		// be asserted in future requests until the end of the current handshake.
 		if resp.GetLocalIdentity() != nil {
 			h.localIdentities = []*commonpb.Identity{resp.GetLocalIdentity()}
 		}
 		// Set unusedBytes based on the handshaker service response.
 		if resp.GetBytesConsumed() > uint32(len(p)) {
 			return nil, nil, errors.New("handshaker service consumed bytes value is out-of-bounds")
 		}
 		unusedBytes = p[resp.GetBytesConsumed():]
 	}
 }
 // Close shuts down the handshaker and the stream to the S2A handshaker service
 // when the handshake is complete. It should be called when the caller obtains
 // the secure connection at the end of the handshake.
 func (h *s2aHandshaker) Close() error {
 	return h.stream.CloseSend()
 }
 func (h *s2aHandshaker) getAuthMechanisms() []*s2apb.AuthenticationMechanism {
 	if h.tokenManager == nil {
 		return nil
 	}
 	// First handle the special case when no local identities have been provided
 	// by the application. In this case, an AuthenticationMechanism with no local
 	// identity will be sent.
 	if len(h.localIdentities) == 0 {
 		token, err := h.tokenManager.DefaultToken()
 		if err != nil {
 			grpclog.Infof("unable to get token for empty local identity: %v", err)
 			return nil
 		}
 		return []*s2apb.AuthenticationMechanism{
 			{
 				MechanismOneof: &s2apb.AuthenticationMechanism_Token{
 					Token: token,
 				},
 			},
 		}
 	}
 	// Next, handle the case where the application (or the S2A) has provided
 	// one or more local identities.
 	var authMechanisms []*s2apb.AuthenticationMechanism
 	for _, localIdentity := range h.localIdentities {
 		token, err := h.tokenManager.Token(localIdentity)
 		if err != nil {
 			grpclog.Infof("unable to get token for local identity %v: %v", localIdentity, err)
 			continue
 		}
 		authMechanism := &s2apb.AuthenticationMechanism{
 			Identity: localIdentity,
 			MechanismOneof: &s2apb.AuthenticationMechanism_Token{
 				Token: token,
 			},
 		}
 		authMechanisms = append(authMechanisms, authMechanism)
 	}
 	return authMechanisms
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/handshaker/service/service.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/handshaker/service/service.go
@@ -0,0 +1,99 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package service is a utility for calling the S2A handshaker service.
 package service
 import (
 	"context"
 	"net"
 	"os"
 	"strings"
 	"sync"
 	"time"
 	"google.golang.org/appengine"
 	"google.golang.org/appengine/socket"
 	grpc "google.golang.org/grpc"
 	"google.golang.org/grpc/grpclog"
 )
 // An environment variable, if true, opportunistically use AppEngine-specific dialer to call S2A.
 const enableAppEngineDialerEnv = "S2A_ENABLE_APP_ENGINE_DIALER"
 var (
 	// appEngineDialerHook is an AppEngine-specific dial option that is set
 	// during init time. If nil, then the application is not running on Google
 	// AppEngine.
 	appEngineDialerHook func(context.Context) grpc.DialOption
 	// mu guards hsConnMap and hsDialer.
 	mu sync.Mutex
 	// hsConnMap represents a mapping from an S2A handshaker service address
 	// to a corresponding connection to an S2A handshaker service instance.
 	hsConnMap = make(map[string]*grpc.ClientConn)
 	// hsDialer will be reassigned in tests.
 	hsDialer = grpc.Dial
 )
 func init() {
 	if !appengine.IsAppEngine() && !appengine.IsDevAppServer() {
 		return
 	}
 	appEngineDialerHook = func(ctx context.Context) grpc.DialOption {
 		return grpc.WithDialer(func(addr string, timeout time.Duration) (net.Conn, error) {
 			return socket.DialTimeout(ctx, "tcp", addr, timeout)
 		})
 	}
 }
 // Dial dials the S2A handshaker service. If a connection has already been
 // established, this function returns it. Otherwise, a new connection is
 // created.
 func Dial(handshakerServiceAddress string) (*grpc.ClientConn, error) {
 	mu.Lock()
 	defer mu.Unlock()
 	hsConn, ok := hsConnMap[handshakerServiceAddress]
 	if !ok {
 		// Create a new connection to the S2A handshaker service. Note that
 		// this connection stays open until the application is closed.
 		grpcOpts := []grpc.DialOption{
 			grpc.WithInsecure(),
 		}
 		if enableAppEngineDialer() && appEngineDialerHook != nil {
 			if grpclog.V(1) {
 				grpclog.Info("Using AppEngine-specific dialer to talk to S2A.")
 			}
 			grpcOpts = append(grpcOpts, appEngineDialerHook(context.Background()))
 		}
 		var err error
 		hsConn, err = hsDialer(handshakerServiceAddress, grpcOpts...)
 		if err != nil {
 			return nil, err
 		}
 		hsConnMap[handshakerServiceAddress] = hsConn
 	}
 	return hsConn, nil
 }
 func enableAppEngineDialer() bool {
 	if strings.ToLower(os.Getenv(enableAppEngineDialerEnv)) == "true" {
 		return true
 	}
 	return false
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/common_go_proto/common.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/common_go_proto/common.pb.go
@@ -0,0 +1,389 @@
 // Copyright 2021 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //    https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // versions:
 // 	protoc-gen-go v1.30.0
 // 	protoc        v3.21.12
 // source: internal/proto/common/common.proto
 package common_go_proto
 import (
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	reflect "reflect"
 	sync "sync"
 )
 const (
 	// Verify that this generated code is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion)
 	// Verify that runtime/protoimpl is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20)
 )
 // The ciphersuites supported by S2A. The name determines the confidentiality,
 // and authentication ciphers as well as the hash algorithm used for PRF in
 // TLS 1.2 or HKDF in TLS 1.3. Thus, the components of the name are:
 //   - AEAD -- for encryption and authentication, e.g., AES_128_GCM.
 //   - Hash algorithm -- used in PRF or HKDF, e.g., SHA256.
 type Ciphersuite int32
 const (
 	Ciphersuite_AES_128_GCM_SHA256       Ciphersuite = 0
 	Ciphersuite_AES_256_GCM_SHA384       Ciphersuite = 1
 	Ciphersuite_CHACHA20_POLY1305_SHA256 Ciphersuite = 2
 )
 // Enum value maps for Ciphersuite.
 var (
 	Ciphersuite_name = map[int32]string{
 		0: "AES_128_GCM_SHA256",
 		1: "AES_256_GCM_SHA384",
 		2: "CHACHA20_POLY1305_SHA256",
 	}
 	Ciphersuite_value = map[string]int32{
 		"AES_128_GCM_SHA256":       0,
 		"AES_256_GCM_SHA384":       1,
 		"CHACHA20_POLY1305_SHA256": 2,
 	}
 )
 func (x Ciphersuite) Enum() *Ciphersuite {
 	p := new(Ciphersuite)
 	*p = x
 	return p
 }
 func (x Ciphersuite) String() string {
 	return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x))
 }
 func (Ciphersuite) Descriptor() protoreflect.EnumDescriptor {
 	return file_internal_proto_common_common_proto_enumTypes[0].Descriptor()
 }
 func (Ciphersuite) Type() protoreflect.EnumType {
 	return &file_internal_proto_common_common_proto_enumTypes[0]
 }
 func (x Ciphersuite) Number() protoreflect.EnumNumber {
 	return protoreflect.EnumNumber(x)
 }
 // Deprecated: Use Ciphersuite.Descriptor instead.
 func (Ciphersuite) EnumDescriptor() ([]byte, []int) {
 	return file_internal_proto_common_common_proto_rawDescGZIP(), []int{0}
 }
 // The TLS versions supported by S2A's handshaker module.
 type TLSVersion int32
 const (
 	TLSVersion_TLS1_2 TLSVersion = 0
 	TLSVersion_TLS1_3 TLSVersion = 1
 )
 // Enum value maps for TLSVersion.
 var (
 	TLSVersion_name = map[int32]string{
 		0: "TLS1_2",
 		1: "TLS1_3",
 	}
 	TLSVersion_value = map[string]int32{
 		"TLS1_2": 0,
 		"TLS1_3": 1,
 	}
 )
 func (x TLSVersion) Enum() *TLSVersion {
 	p := new(TLSVersion)
 	*p = x
 	return p
 }
 func (x TLSVersion) String() string {
 	return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x))
 }
 func (TLSVersion) Descriptor() protoreflect.EnumDescriptor {
 	return file_internal_proto_common_common_proto_enumTypes[1].Descriptor()
 }
 func (TLSVersion) Type() protoreflect.EnumType {
 	return &file_internal_proto_common_common_proto_enumTypes[1]
 }
 func (x TLSVersion) Number() protoreflect.EnumNumber {
 	return protoreflect.EnumNumber(x)
 }
 // Deprecated: Use TLSVersion.Descriptor instead.
 func (TLSVersion) EnumDescriptor() ([]byte, []int) {
 	return file_internal_proto_common_common_proto_rawDescGZIP(), []int{1}
 }
 type Identity struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
 	// Types that are assignable to IdentityOneof:
 	//
 	//	*Identity_SpiffeId
 	//	*Identity_Hostname
 	//	*Identity_Uid
 	//	*Identity_MdbUsername
 	//	*Identity_GaiaId
 	IdentityOneof isIdentity_IdentityOneof `protobuf_oneof:"identity_oneof"`
 	// Additional identity-specific attributes.
 	Attributes map[string]string `protobuf:"bytes,3,rep,name=attributes,proto3" json:"attributes,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
 }
 func (x *Identity) Reset() {
 	*x = Identity{}
 	if protoimpl.UnsafeEnabled {
 		mi := &file_internal_proto_common_common_proto_msgTypes[0]
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		ms.StoreMessageInfo(mi)
 	}
 }
 func (x *Identity) String() string {
 	return protoimpl.X.MessageStringOf(x)
 }
 func (*Identity) ProtoMessage() {}
 func (x *Identity) ProtoReflect() protoreflect.Message {
 	mi := &file_internal_proto_common_common_proto_msgTypes[0]
 	if protoimpl.UnsafeEnabled && x != nil {
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		if ms.LoadMessageInfo() == nil {
 			ms.StoreMessageInfo(mi)
 		}
 		return ms
 	}
 	return mi.MessageOf(x)
 }
 // Deprecated: Use Identity.ProtoReflect.Descriptor instead.
 func (*Identity) Descriptor() ([]byte, []int) {
 	return file_internal_proto_common_common_proto_rawDescGZIP(), []int{0}
 }
 func (m *Identity) GetIdentityOneof() isIdentity_IdentityOneof {
 	if m != nil {
 		return m.IdentityOneof
 	}
 	return nil
 }
 func (x *Identity) GetSpiffeId() string {
 	if x, ok := x.GetIdentityOneof().(*Identity_SpiffeId); ok {
 		return x.SpiffeId
 	}
 	return ""
 }
 func (x *Identity) GetHostname() string {
 	if x, ok := x.GetIdentityOneof().(*Identity_Hostname); ok {
 		return x.Hostname
 	}
 	return ""
 }
 func (x *Identity) GetUid() string {
 	if x, ok := x.GetIdentityOneof().(*Identity_Uid); ok {
 		return x.Uid
 	}
 	return ""
 }
 func (x *Identity) GetMdbUsername() string {
 	if x, ok := x.GetIdentityOneof().(*Identity_MdbUsername); ok {
 		return x.MdbUsername
 	}
 	return ""
 }
 func (x *Identity) GetGaiaId() string {
 	if x, ok := x.GetIdentityOneof().(*Identity_GaiaId); ok {
 		return x.GaiaId
 	}
 	return ""
 }
 func (x *Identity) GetAttributes() map[string]string {
 	if x != nil {
 		return x.Attributes
 	}
 	return nil
 }
 type isIdentity_IdentityOneof interface {
 	isIdentity_IdentityOneof()
 }
 type Identity_SpiffeId struct {
 	// The SPIFFE ID of a connection endpoint.
 	SpiffeId string `protobuf:"bytes,1,opt,name=spiffe_id,json=spiffeId,proto3,oneof"`
 }
 type Identity_Hostname struct {
 	// The hostname of a connection endpoint.
 	Hostname string `protobuf:"bytes,2,opt,name=hostname,proto3,oneof"`
 }
 type Identity_Uid struct {
 	// The UID of a connection endpoint.
 	Uid string `protobuf:"bytes,4,opt,name=uid,proto3,oneof"`
 }
 type Identity_MdbUsername struct {
 	// The MDB username of a connection endpoint.
 	MdbUsername string `protobuf:"bytes,5,opt,name=mdb_username,json=mdbUsername,proto3,oneof"`
 }
 type Identity_GaiaId struct {
 	// The Gaia ID of a connection endpoint.
 	GaiaId string `protobuf:"bytes,6,opt,name=gaia_id,json=gaiaId,proto3,oneof"`
 }
 func (*Identity_SpiffeId) isIdentity_IdentityOneof() {}
 func (*Identity_Hostname) isIdentity_IdentityOneof() {}
 func (*Identity_Uid) isIdentity_IdentityOneof() {}
 func (*Identity_MdbUsername) isIdentity_IdentityOneof() {}
 func (*Identity_GaiaId) isIdentity_IdentityOneof() {}
 var File_internal_proto_common_common_proto protoreflect.FileDescriptor
 var file_internal_proto_common_common_proto_rawDesc = []byte{
 	0x0a, 0x22, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x2e, 0x70,
 	0x72, 0x6f, 0x74, 0x6f, 0x12, 0x09, 0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x22,
 	0xb1, 0x02, 0x0a, 0x08, 0x49, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x12, 0x1d, 0x0a, 0x09,
 	0x73, 0x70, 0x69, 0x66, 0x66, 0x65, 0x5f, 0x69, 0x64, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x48,
 	0x00, 0x52, 0x08, 0x73, 0x70, 0x69, 0x66, 0x66, 0x65, 0x49, 0x64, 0x12, 0x1c, 0x0a, 0x08, 0x68,
 	0x6f, 0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x48, 0x00, 0x52,
 	0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65, 0x12, 0x12, 0x0a, 0x03, 0x75, 0x69, 0x64,
 	0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x48, 0x00, 0x52, 0x03, 0x75, 0x69, 0x64, 0x12, 0x23, 0x0a,
 	0x0c, 0x6d, 0x64, 0x62, 0x5f, 0x75, 0x73, 0x65, 0x72, 0x6e, 0x61, 0x6d, 0x65, 0x18, 0x05, 0x20,
 	0x01, 0x28, 0x09, 0x48, 0x00, 0x52, 0x0b, 0x6d, 0x64, 0x62, 0x55, 0x73, 0x65, 0x72, 0x6e, 0x61,
 	0x6d, 0x65, 0x12, 0x19, 0x0a, 0x07, 0x67, 0x61, 0x69, 0x61, 0x5f, 0x69, 0x64, 0x18, 0x06, 0x20,
 	0x01, 0x28, 0x09, 0x48, 0x00, 0x52, 0x06, 0x67, 0x61, 0x69, 0x61, 0x49, 0x64, 0x12, 0x43, 0x0a,
 	0x0a, 0x61, 0x74, 0x74, 0x72, 0x69, 0x62, 0x75, 0x74, 0x65, 0x73, 0x18, 0x03, 0x20, 0x03, 0x28,
 	0x0b, 0x32, 0x23, 0x2e, 0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2e, 0x49, 0x64,
 	0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x2e, 0x41, 0x74, 0x74, 0x72, 0x69, 0x62, 0x75, 0x74, 0x65,
 	0x73, 0x45, 0x6e, 0x74, 0x72, 0x79, 0x52, 0x0a, 0x61, 0x74, 0x74, 0x72, 0x69, 0x62, 0x75, 0x74,
 	0x65, 0x73, 0x1a, 0x3d, 0x0a, 0x0f, 0x41, 0x74, 0x74, 0x72, 0x69, 0x62, 0x75, 0x74, 0x65, 0x73,
 	0x45, 0x6e, 0x74, 0x72, 0x79, 0x12, 0x10, 0x0a, 0x03, 0x6b, 0x65, 0x79, 0x18, 0x01, 0x20, 0x01,
 	0x28, 0x09, 0x52, 0x03, 0x6b, 0x65, 0x79, 0x12, 0x14, 0x0a, 0x05, 0x76, 0x61, 0x6c, 0x75, 0x65,
 	0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x05, 0x76, 0x61, 0x6c, 0x75, 0x65, 0x3a, 0x02, 0x38,
 	0x01, 0x42, 0x10, 0x0a, 0x0e, 0x69, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x5f, 0x6f, 0x6e,
 	0x65, 0x6f, 0x66, 0x2a, 0x5b, 0x0a, 0x0b, 0x43, 0x69, 0x70, 0x68, 0x65, 0x72, 0x73, 0x75, 0x69,
 	0x74, 0x65, 0x12, 0x16, 0x0a, 0x12, 0x41, 0x45, 0x53, 0x5f, 0x31, 0x32, 0x38, 0x5f, 0x47, 0x43,
 	0x4d, 0x5f, 0x53, 0x48, 0x41, 0x32, 0x35, 0x36, 0x10, 0x00, 0x12, 0x16, 0x0a, 0x12, 0x41, 0x45,
 	0x53, 0x5f, 0x32, 0x35, 0x36, 0x5f, 0x47, 0x43, 0x4d, 0x5f, 0x53, 0x48, 0x41, 0x33, 0x38, 0x34,
 	0x10, 0x01, 0x12, 0x1c, 0x0a, 0x18, 0x43, 0x48, 0x41, 0x43, 0x48, 0x41, 0x32, 0x30, 0x5f, 0x50,
 	0x4f, 0x4c, 0x59, 0x31, 0x33, 0x30, 0x35, 0x5f, 0x53, 0x48, 0x41, 0x32, 0x35, 0x36, 0x10, 0x02,
 	0x2a, 0x24, 0x0a, 0x0a, 0x54, 0x4c, 0x53, 0x56, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e, 0x12, 0x0a,
 	0x0a, 0x06, 0x54, 0x4c, 0x53, 0x31, 0x5f, 0x32, 0x10, 0x00, 0x12, 0x0a, 0x0a, 0x06, 0x54, 0x4c,
 	0x53, 0x31, 0x5f, 0x33, 0x10, 0x01, 0x42, 0x36, 0x5a, 0x34, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62,
 	0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65, 0x2f, 0x73, 0x32, 0x61, 0x2f,
 	0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2f, 0x63,
 	0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x5f, 0x67, 0x6f, 0x5f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x06,
 	0x70, 0x72, 0x6f, 0x74, 0x6f, 0x33,
 }
 var (
 	file_internal_proto_common_common_proto_rawDescOnce sync.Once
 	file_internal_proto_common_common_proto_rawDescData = file_internal_proto_common_common_proto_rawDesc
 )
 func file_internal_proto_common_common_proto_rawDescGZIP() []byte {
 	file_internal_proto_common_common_proto_rawDescOnce.Do(func() {
 		file_internal_proto_common_common_proto_rawDescData = protoimpl.X.CompressGZIP(file_internal_proto_common_common_proto_rawDescData)
 	})
 	return file_internal_proto_common_common_proto_rawDescData
 }
 var file_internal_proto_common_common_proto_enumTypes = make([]protoimpl.EnumInfo, 2)
 var file_internal_proto_common_common_proto_msgTypes = make([]protoimpl.MessageInfo, 2)
 var file_internal_proto_common_common_proto_goTypes = []interface{}{
 	(Ciphersuite)(0), // 0: s2a.proto.Ciphersuite
 	(TLSVersion)(0),  // 1: s2a.proto.TLSVersion
 	(*Identity)(nil), // 2: s2a.proto.Identity
 	nil,              // 3: s2a.proto.Identity.AttributesEntry
 }
 var file_internal_proto_common_common_proto_depIdxs = []int32{
 	3, // 0: s2a.proto.Identity.attributes:type_name -> s2a.proto.Identity.AttributesEntry
 	1, // [1:1] is the sub-list for method output_type
 	1, // [1:1] is the sub-list for method input_type
 	1, // [1:1] is the sub-list for extension type_name
 	1, // [1:1] is the sub-list for extension extendee
 	0, // [0:1] is the sub-list for field type_name
 }
 func init() { file_internal_proto_common_common_proto_init() }
 func file_internal_proto_common_common_proto_init() {
 	if File_internal_proto_common_common_proto != nil {
 		return
 	}
 	if !protoimpl.UnsafeEnabled {
 		file_internal_proto_common_common_proto_msgTypes[0].Exporter = func(v interface{}, i int) interface{} {
 			switch v := v.(*Identity); i {
 			case 0:
 				return &v.state
 			case 1:
 				return &v.sizeCache
 			case 2:
 				return &v.unknownFields
 			default:
 				return nil
 			}
 		}
 	}
 	file_internal_proto_common_common_proto_msgTypes[0].OneofWrappers = []interface{}{
 		(*Identity_SpiffeId)(nil),
 		(*Identity_Hostname)(nil),
 		(*Identity_Uid)(nil),
 		(*Identity_MdbUsername)(nil),
 		(*Identity_GaiaId)(nil),
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_internal_proto_common_common_proto_rawDesc,
 			NumEnums:      2,
 			NumMessages:   2,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_internal_proto_common_common_proto_goTypes,
 		DependencyIndexes: file_internal_proto_common_common_proto_depIdxs,
 		EnumInfos:         file_internal_proto_common_common_proto_enumTypes,
 		MessageInfos:      file_internal_proto_common_common_proto_msgTypes,
 	}.Build()
 	File_internal_proto_common_common_proto = out.File
 	file_internal_proto_common_common_proto_rawDesc = nil
 	file_internal_proto_common_common_proto_goTypes = nil
 	file_internal_proto_common_common_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/s2a_context_go_proto/s2a_context.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/s2a_context_go_proto/s2a_context.pb.go
@@ -0,0 +1,267 @@
 // Copyright 2021 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //    https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // versions:
 // 	protoc-gen-go v1.30.0
 // 	protoc        v3.21.12
 // source: internal/proto/s2a_context/s2a_context.proto
 package s2a_context_go_proto
 import (
 	common_go_proto "github.com/google/s2a-go/internal/proto/common_go_proto"
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	reflect "reflect"
 	sync "sync"
 )
 const (
 	// Verify that this generated code is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion)
 	// Verify that runtime/protoimpl is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20)
 )
 type S2AContext struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
 	// The application protocol negotiated for this connection, e.g., 'grpc'.
 	ApplicationProtocol string `protobuf:"bytes,1,opt,name=application_protocol,json=applicationProtocol,proto3" json:"application_protocol,omitempty"`
 	// The TLS version number that the S2A's handshaker module used to set up the
 	// session.
 	TlsVersion common_go_proto.TLSVersion `protobuf:"varint,2,opt,name=tls_version,json=tlsVersion,proto3,enum=s2a.proto.TLSVersion" json:"tls_version,omitempty"`
 	// The TLS ciphersuite negotiated by the S2A's handshaker module.
 	Ciphersuite common_go_proto.Ciphersuite `protobuf:"varint,3,opt,name=ciphersuite,proto3,enum=s2a.proto.Ciphersuite" json:"ciphersuite,omitempty"`
 	// The authenticated identity of the peer.
 	PeerIdentity *common_go_proto.Identity `protobuf:"bytes,4,opt,name=peer_identity,json=peerIdentity,proto3" json:"peer_identity,omitempty"`
 	// The local identity used during session setup. This could be:
 	//   - The local identity that the client specifies in ClientSessionStartReq.
 	//   - One of the local identities that the server specifies in
 	//     ServerSessionStartReq.
 	//   - If neither client or server specifies local identities, the S2A picks the
 	//     default one. In this case, this field will contain that identity.
 	LocalIdentity *common_go_proto.Identity `protobuf:"bytes,5,opt,name=local_identity,json=localIdentity,proto3" json:"local_identity,omitempty"`
 	// The SHA256 hash of the peer certificate used in the handshake.
 	PeerCertFingerprint []byte `protobuf:"bytes,6,opt,name=peer_cert_fingerprint,json=peerCertFingerprint,proto3" json:"peer_cert_fingerprint,omitempty"`
 	// The SHA256 hash of the local certificate used in the handshake.
 	LocalCertFingerprint []byte `protobuf:"bytes,7,opt,name=local_cert_fingerprint,json=localCertFingerprint,proto3" json:"local_cert_fingerprint,omitempty"`
 	// Set to true if a cached session was reused to resume the handshake.
 	IsHandshakeResumed bool `protobuf:"varint,8,opt,name=is_handshake_resumed,json=isHandshakeResumed,proto3" json:"is_handshake_resumed,omitempty"`
 }
 func (x *S2AContext) Reset() {
 	*x = S2AContext{}
 	if protoimpl.UnsafeEnabled {
 		mi := &file_internal_proto_s2a_context_s2a_context_proto_msgTypes[0]
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		ms.StoreMessageInfo(mi)
 	}
 }
 func (x *S2AContext) String() string {
 	return protoimpl.X.MessageStringOf(x)
 }
 func (*S2AContext) ProtoMessage() {}
 func (x *S2AContext) ProtoReflect() protoreflect.Message {
 	mi := &file_internal_proto_s2a_context_s2a_context_proto_msgTypes[0]
 	if protoimpl.UnsafeEnabled && x != nil {
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		if ms.LoadMessageInfo() == nil {
 			ms.StoreMessageInfo(mi)
 		}
 		return ms
 	}
 	return mi.MessageOf(x)
 }
 // Deprecated: Use S2AContext.ProtoReflect.Descriptor instead.
 func (*S2AContext) Descriptor() ([]byte, []int) {
 	return file_internal_proto_s2a_context_s2a_context_proto_rawDescGZIP(), []int{0}
 }
 func (x *S2AContext) GetApplicationProtocol() string {
 	if x != nil {
 		return x.ApplicationProtocol
 	}
 	return ""
 }
 func (x *S2AContext) GetTlsVersion() common_go_proto.TLSVersion {
 	if x != nil {
 		return x.TlsVersion
 	}
 	return common_go_proto.TLSVersion(0)
 }
 func (x *S2AContext) GetCiphersuite() common_go_proto.Ciphersuite {
 	if x != nil {
 		return x.Ciphersuite
 	}
 	return common_go_proto.Ciphersuite(0)
 }
 func (x *S2AContext) GetPeerIdentity() *common_go_proto.Identity {
 	if x != nil {
 		return x.PeerIdentity
 	}
 	return nil
 }
 func (x *S2AContext) GetLocalIdentity() *common_go_proto.Identity {
 	if x != nil {
 		return x.LocalIdentity
 	}
 	return nil
 }
 func (x *S2AContext) GetPeerCertFingerprint() []byte {
 	if x != nil {
 		return x.PeerCertFingerprint
 	}
 	return nil
 }
 func (x *S2AContext) GetLocalCertFingerprint() []byte {
 	if x != nil {
 		return x.LocalCertFingerprint
 	}
 	return nil
 }
 func (x *S2AContext) GetIsHandshakeResumed() bool {
 	if x != nil {
 		return x.IsHandshakeResumed
 	}
 	return false
 }
 var File_internal_proto_s2a_context_s2a_context_proto protoreflect.FileDescriptor
 var file_internal_proto_s2a_context_s2a_context_proto_rawDesc = []byte{
 	0x0a, 0x2c, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x2f, 0x73, 0x32, 0x61, 0x5f, 0x63, 0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x2f, 0x73, 0x32, 0x61,
 	0x5f, 0x63, 0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x12, 0x09,
 	0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x1a, 0x22, 0x69, 0x6e, 0x74, 0x65, 0x72,
 	0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e,
 	0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x22, 0xc3, 0x03,
 	0x0a, 0x0a, 0x53, 0x32, 0x41, 0x43, 0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x12, 0x31, 0x0a, 0x14,
 	0x61, 0x70, 0x70, 0x6c, 0x69, 0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x5f, 0x70, 0x72, 0x6f, 0x74,
 	0x6f, 0x63, 0x6f, 0x6c, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x13, 0x61, 0x70, 0x70, 0x6c,
 	0x69, 0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x50, 0x72, 0x6f, 0x74, 0x6f, 0x63, 0x6f, 0x6c, 0x12,
 	0x36, 0x0a, 0x0b, 0x74, 0x6c, 0x73, 0x5f, 0x76, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e, 0x18, 0x02,
 	0x20, 0x01, 0x28, 0x0e, 0x32, 0x15, 0x2e, 0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x2e, 0x54, 0x4c, 0x53, 0x56, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e, 0x52, 0x0a, 0x74, 0x6c, 0x73,
 	0x56, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e, 0x12, 0x38, 0x0a, 0x0b, 0x63, 0x69, 0x70, 0x68, 0x65,
 	0x72, 0x73, 0x75, 0x69, 0x74, 0x65, 0x18, 0x03, 0x20, 0x01, 0x28, 0x0e, 0x32, 0x16, 0x2e, 0x73,
 	0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2e, 0x43, 0x69, 0x70, 0x68, 0x65, 0x72, 0x73,
 	0x75, 0x69, 0x74, 0x65, 0x52, 0x0b, 0x63, 0x69, 0x70, 0x68, 0x65, 0x72, 0x73, 0x75, 0x69, 0x74,
 	0x65, 0x12, 0x38, 0x0a, 0x0d, 0x70, 0x65, 0x65, 0x72, 0x5f, 0x69, 0x64, 0x65, 0x6e, 0x74, 0x69,
 	0x74, 0x79, 0x18, 0x04, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x13, 0x2e, 0x73, 0x32, 0x61, 0x2e, 0x70,
 	0x72, 0x6f, 0x74, 0x6f, 0x2e, 0x49, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x52, 0x0c, 0x70,
 	0x65, 0x65, 0x72, 0x49, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x12, 0x3a, 0x0a, 0x0e, 0x6c,
 	0x6f, 0x63, 0x61, 0x6c, 0x5f, 0x69, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x18, 0x05, 0x20,
 	0x01, 0x28, 0x0b, 0x32, 0x13, 0x2e, 0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2e,
 	0x49, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x52, 0x0d, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49,
 	0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x12, 0x32, 0x0a, 0x15, 0x70, 0x65, 0x65, 0x72, 0x5f,
 	0x63, 0x65, 0x72, 0x74, 0x5f, 0x66, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72, 0x69, 0x6e, 0x74,
 	0x18, 0x06, 0x20, 0x01, 0x28, 0x0c, 0x52, 0x13, 0x70, 0x65, 0x65, 0x72, 0x43, 0x65, 0x72, 0x74,
 	0x46, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72, 0x69, 0x6e, 0x74, 0x12, 0x34, 0x0a, 0x16, 0x6c,
 	0x6f, 0x63, 0x61, 0x6c, 0x5f, 0x63, 0x65, 0x72, 0x74, 0x5f, 0x66, 0x69, 0x6e, 0x67, 0x65, 0x72,
 	0x70, 0x72, 0x69, 0x6e, 0x74, 0x18, 0x07, 0x20, 0x01, 0x28, 0x0c, 0x52, 0x14, 0x6c, 0x6f, 0x63,
 	0x61, 0x6c, 0x43, 0x65, 0x72, 0x74, 0x46, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72, 0x69, 0x6e,
 	0x74, 0x12, 0x30, 0x0a, 0x14, 0x69, 0x73, 0x5f, 0x68, 0x61, 0x6e, 0x64, 0x73, 0x68, 0x61, 0x6b,
 	0x65, 0x5f, 0x72, 0x65, 0x73, 0x75, 0x6d, 0x65, 0x64, 0x18, 0x08, 0x20, 0x01, 0x28, 0x08, 0x52,
 	0x12, 0x69, 0x73, 0x48, 0x61, 0x6e, 0x64, 0x73, 0x68, 0x61, 0x6b, 0x65, 0x52, 0x65, 0x73, 0x75,
 	0x6d, 0x65, 0x64, 0x42, 0x3b, 0x5a, 0x39, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f,
 	0x6d, 0x2f, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65, 0x2f, 0x73, 0x32, 0x61, 0x2f, 0x69, 0x6e, 0x74,
 	0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2f, 0x73, 0x32, 0x61, 0x5f,
 	0x63, 0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x5f, 0x67, 0x6f, 0x5f, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x62, 0x06, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x33,
 }
 var (
 	file_internal_proto_s2a_context_s2a_context_proto_rawDescOnce sync.Once
 	file_internal_proto_s2a_context_s2a_context_proto_rawDescData = file_internal_proto_s2a_context_s2a_context_proto_rawDesc
 )
 func file_internal_proto_s2a_context_s2a_context_proto_rawDescGZIP() []byte {
 	file_internal_proto_s2a_context_s2a_context_proto_rawDescOnce.Do(func() {
 		file_internal_proto_s2a_context_s2a_context_proto_rawDescData = protoimpl.X.CompressGZIP(file_internal_proto_s2a_context_s2a_context_proto_rawDescData)
 	})
 	return file_internal_proto_s2a_context_s2a_context_proto_rawDescData
 }
 var file_internal_proto_s2a_context_s2a_context_proto_msgTypes = make([]protoimpl.MessageInfo, 1)
 var file_internal_proto_s2a_context_s2a_context_proto_goTypes = []interface{}{
 	(*S2AContext)(nil),               // 0: s2a.proto.S2AContext
 	(common_go_proto.TLSVersion)(0),  // 1: s2a.proto.TLSVersion
 	(common_go_proto.Ciphersuite)(0), // 2: s2a.proto.Ciphersuite
 	(*common_go_proto.Identity)(nil), // 3: s2a.proto.Identity
 }
 var file_internal_proto_s2a_context_s2a_context_proto_depIdxs = []int32{
 	1, // 0: s2a.proto.S2AContext.tls_version:type_name -> s2a.proto.TLSVersion
 	2, // 1: s2a.proto.S2AContext.ciphersuite:type_name -> s2a.proto.Ciphersuite
 	3, // 2: s2a.proto.S2AContext.peer_identity:type_name -> s2a.proto.Identity
 	3, // 3: s2a.proto.S2AContext.local_identity:type_name -> s2a.proto.Identity
 	4, // [4:4] is the sub-list for method output_type
 	4, // [4:4] is the sub-list for method input_type
 	4, // [4:4] is the sub-list for extension type_name
 	4, // [4:4] is the sub-list for extension extendee
 	0, // [0:4] is the sub-list for field type_name
 }
 func init() { file_internal_proto_s2a_context_s2a_context_proto_init() }
 func file_internal_proto_s2a_context_s2a_context_proto_init() {
 	if File_internal_proto_s2a_context_s2a_context_proto != nil {
 		return
 	}
 	if !protoimpl.UnsafeEnabled {
 		file_internal_proto_s2a_context_s2a_context_proto_msgTypes[0].Exporter = func(v interface{}, i int) interface{} {
 			switch v := v.(*S2AContext); i {
 			case 0:
 				return &v.state
 			case 1:
 				return &v.sizeCache
 			case 2:
 				return &v.unknownFields
 			default:
 				return nil
 			}
 		}
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_internal_proto_s2a_context_s2a_context_proto_rawDesc,
 			NumEnums:      0,
 			NumMessages:   1,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_internal_proto_s2a_context_s2a_context_proto_goTypes,
 		DependencyIndexes: file_internal_proto_s2a_context_s2a_context_proto_depIdxs,
 		MessageInfos:      file_internal_proto_s2a_context_s2a_context_proto_msgTypes,
 	}.Build()
 	File_internal_proto_s2a_context_s2a_context_proto = out.File
 	file_internal_proto_s2a_context_s2a_context_proto_rawDesc = nil
 	file_internal_proto_s2a_context_s2a_context_proto_goTypes = nil
 	file_internal_proto_s2a_context_s2a_context_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/s2a_go_proto/s2a.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/s2a_go_proto/s2a.pb.go
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/s2a_go_proto/s2a_grpc.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/s2a_go_proto/s2a_grpc.pb.go
@@ -0,0 +1,173 @@
 // Copyright 2021 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //    https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Code generated by protoc-gen-go-grpc. DO NOT EDIT.
 // versions:
 // - protoc-gen-go-grpc v1.3.0
 // - protoc             v3.21.12
 // source: internal/proto/s2a/s2a.proto
 package s2a_go_proto
 import (
 	context "context"
 	grpc "google.golang.org/grpc"
 	codes "google.golang.org/grpc/codes"
 	status "google.golang.org/grpc/status"
 )
 // This is a compile-time assertion to ensure that this generated file
 // is compatible with the grpc package it is being compiled against.
 // Requires gRPC-Go v1.32.0 or later.
 const _ = grpc.SupportPackageIsVersion7
 const (
 	S2AService_SetUpSession_FullMethodName = "/s2a.proto.S2AService/SetUpSession"
 )
 // S2AServiceClient is the client API for S2AService service.
 //
 // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
 type S2AServiceClient interface {
 	// S2A service accepts a stream of session setup requests and returns a stream
 	// of session setup responses. The client of this service is expected to send
 	// exactly one client_start or server_start message followed by at least one
 	// next message. Applications running TLS clients can send requests with
 	// resumption_ticket messages only after the session is successfully set up.
 	//
 	// Every time S2A client sends a request, this service sends a response.
 	// However, clients do not have to wait for service response before sending
 	// the next request.
 	SetUpSession(ctx context.Context, opts ...grpc.CallOption) (S2AService_SetUpSessionClient, error)
 }
 type s2AServiceClient struct {
 	cc grpc.ClientConnInterface
 }
 func NewS2AServiceClient(cc grpc.ClientConnInterface) S2AServiceClient {
 	return &s2AServiceClient{cc}
 }
 func (c *s2AServiceClient) SetUpSession(ctx context.Context, opts ...grpc.CallOption) (S2AService_SetUpSessionClient, error) {
 	stream, err := c.cc.NewStream(ctx, &S2AService_ServiceDesc.Streams[0], S2AService_SetUpSession_FullMethodName, opts...)
 	if err != nil {
 		return nil, err
 	}
 	x := &s2AServiceSetUpSessionClient{stream}
 	return x, nil
 }
 type S2AService_SetUpSessionClient interface {
 	Send(*SessionReq) error
 	Recv() (*SessionResp, error)
 	grpc.ClientStream
 }
 type s2AServiceSetUpSessionClient struct {
 	grpc.ClientStream
 }
 func (x *s2AServiceSetUpSessionClient) Send(m *SessionReq) error {
 	return x.ClientStream.SendMsg(m)
 }
 func (x *s2AServiceSetUpSessionClient) Recv() (*SessionResp, error) {
 	m := new(SessionResp)
 	if err := x.ClientStream.RecvMsg(m); err != nil {
 		return nil, err
 	}
 	return m, nil
 }
 // S2AServiceServer is the server API for S2AService service.
 // All implementations must embed UnimplementedS2AServiceServer
 // for forward compatibility
 type S2AServiceServer interface {
 	// S2A service accepts a stream of session setup requests and returns a stream
 	// of session setup responses. The client of this service is expected to send
 	// exactly one client_start or server_start message followed by at least one
 	// next message. Applications running TLS clients can send requests with
 	// resumption_ticket messages only after the session is successfully set up.
 	//
 	// Every time S2A client sends a request, this service sends a response.
 	// However, clients do not have to wait for service response before sending
 	// the next request.
 	SetUpSession(S2AService_SetUpSessionServer) error
 	mustEmbedUnimplementedS2AServiceServer()
 }
 // UnimplementedS2AServiceServer must be embedded to have forward compatible implementations.
 type UnimplementedS2AServiceServer struct {
 }
 func (UnimplementedS2AServiceServer) SetUpSession(S2AService_SetUpSessionServer) error {
 	return status.Errorf(codes.Unimplemented, "method SetUpSession not implemented")
 }
 func (UnimplementedS2AServiceServer) mustEmbedUnimplementedS2AServiceServer() {}
 // UnsafeS2AServiceServer may be embedded to opt out of forward compatibility for this service.
 // Use of this interface is not recommended, as added methods to S2AServiceServer will
 // result in compilation errors.
 type UnsafeS2AServiceServer interface {
 	mustEmbedUnimplementedS2AServiceServer()
 }
 func RegisterS2AServiceServer(s grpc.ServiceRegistrar, srv S2AServiceServer) {
 	s.RegisterService(&S2AService_ServiceDesc, srv)
 }
 func _S2AService_SetUpSession_Handler(srv interface{}, stream grpc.ServerStream) error {
 	return srv.(S2AServiceServer).SetUpSession(&s2AServiceSetUpSessionServer{stream})
 }
 type S2AService_SetUpSessionServer interface {
 	Send(*SessionResp) error
 	Recv() (*SessionReq, error)
 	grpc.ServerStream
 }
 type s2AServiceSetUpSessionServer struct {
 	grpc.ServerStream
 }
 func (x *s2AServiceSetUpSessionServer) Send(m *SessionResp) error {
 	return x.ServerStream.SendMsg(m)
 }
 func (x *s2AServiceSetUpSessionServer) Recv() (*SessionReq, error) {
 	m := new(SessionReq)
 	if err := x.ServerStream.RecvMsg(m); err != nil {
 		return nil, err
 	}
 	return m, nil
 }
 // S2AService_ServiceDesc is the grpc.ServiceDesc for S2AService service.
 // It's only intended for direct use with grpc.RegisterService,
 // and not to be introspected or modified (even as a copy)
 var S2AService_ServiceDesc = grpc.ServiceDesc{
 	ServiceName: "s2a.proto.S2AService",
 	HandlerType: (*S2AServiceServer)(nil),
 	Methods:     []grpc.MethodDesc{},
 	Streams: []grpc.StreamDesc{
 		{
 			StreamName:    "SetUpSession",
 			Handler:       _S2AService_SetUpSession_Handler,
 			ServerStreams: true,
 			ClientStreams: true,
 		},
 	},
 	Metadata: "internal/proto/s2a/s2a.proto",
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/common_go_proto/common.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/common_go_proto/common.pb.go
@@ -0,0 +1,367 @@
 // Copyright 2022 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //    https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // versions:
 // 	protoc-gen-go v1.30.0
 // 	protoc        v3.21.12
 // source: internal/proto/v2/common/common.proto
 package common_go_proto
 import (
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	reflect "reflect"
 	sync "sync"
 )
 const (
 	// Verify that this generated code is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion)
 	// Verify that runtime/protoimpl is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20)
 )
 // The TLS 1.0-1.2 ciphersuites that the application can negotiate when using
 // S2A.
 type Ciphersuite int32
 const (
 	Ciphersuite_CIPHERSUITE_UNSPECIFIED                               Ciphersuite = 0
 	Ciphersuite_CIPHERSUITE_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256       Ciphersuite = 1
 	Ciphersuite_CIPHERSUITE_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384       Ciphersuite = 2
 	Ciphersuite_CIPHERSUITE_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 Ciphersuite = 3
 	Ciphersuite_CIPHERSUITE_ECDHE_RSA_WITH_AES_128_GCM_SHA256         Ciphersuite = 4
 	Ciphersuite_CIPHERSUITE_ECDHE_RSA_WITH_AES_256_GCM_SHA384         Ciphersuite = 5
 	Ciphersuite_CIPHERSUITE_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256   Ciphersuite = 6
 )
 // Enum value maps for Ciphersuite.
 var (
 	Ciphersuite_name = map[int32]string{
 		0: "CIPHERSUITE_UNSPECIFIED",
 		1: "CIPHERSUITE_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
 		2: "CIPHERSUITE_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384",
 		3: "CIPHERSUITE_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256",
 		4: "CIPHERSUITE_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
 		5: "CIPHERSUITE_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
 		6: "CIPHERSUITE_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
 	}
 	Ciphersuite_value = map[string]int32{
 		"CIPHERSUITE_UNSPECIFIED":                               0,
 		"CIPHERSUITE_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256":       1,
 		"CIPHERSUITE_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384":       2,
 		"CIPHERSUITE_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256": 3,
 		"CIPHERSUITE_ECDHE_RSA_WITH_AES_128_GCM_SHA256":         4,
 		"CIPHERSUITE_ECDHE_RSA_WITH_AES_256_GCM_SHA384":         5,
 		"CIPHERSUITE_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256":   6,
 	}
 )
 func (x Ciphersuite) Enum() *Ciphersuite {
 	p := new(Ciphersuite)
 	*p = x
 	return p
 }
 func (x Ciphersuite) String() string {
 	return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x))
 }
 func (Ciphersuite) Descriptor() protoreflect.EnumDescriptor {
 	return file_internal_proto_v2_common_common_proto_enumTypes[0].Descriptor()
 }
 func (Ciphersuite) Type() protoreflect.EnumType {
 	return &file_internal_proto_v2_common_common_proto_enumTypes[0]
 }
 func (x Ciphersuite) Number() protoreflect.EnumNumber {
 	return protoreflect.EnumNumber(x)
 }
 // Deprecated: Use Ciphersuite.Descriptor instead.
 func (Ciphersuite) EnumDescriptor() ([]byte, []int) {
 	return file_internal_proto_v2_common_common_proto_rawDescGZIP(), []int{0}
 }
 // The TLS versions supported by S2A's handshaker module.
 type TLSVersion int32
 const (
 	TLSVersion_TLS_VERSION_UNSPECIFIED TLSVersion = 0
 	TLSVersion_TLS_VERSION_1_0         TLSVersion = 1
 	TLSVersion_TLS_VERSION_1_1         TLSVersion = 2
 	TLSVersion_TLS_VERSION_1_2         TLSVersion = 3
 	TLSVersion_TLS_VERSION_1_3         TLSVersion = 4
 )
 // Enum value maps for TLSVersion.
 var (
 	TLSVersion_name = map[int32]string{
 		0: "TLS_VERSION_UNSPECIFIED",
 		1: "TLS_VERSION_1_0",
 		2: "TLS_VERSION_1_1",
 		3: "TLS_VERSION_1_2",
 		4: "TLS_VERSION_1_3",
 	}
 	TLSVersion_value = map[string]int32{
 		"TLS_VERSION_UNSPECIFIED": 0,
 		"TLS_VERSION_1_0":         1,
 		"TLS_VERSION_1_1":         2,
 		"TLS_VERSION_1_2":         3,
 		"TLS_VERSION_1_3":         4,
 	}
 )
 func (x TLSVersion) Enum() *TLSVersion {
 	p := new(TLSVersion)
 	*p = x
 	return p
 }
 func (x TLSVersion) String() string {
 	return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x))
 }
 func (TLSVersion) Descriptor() protoreflect.EnumDescriptor {
 	return file_internal_proto_v2_common_common_proto_enumTypes[1].Descriptor()
 }
 func (TLSVersion) Type() protoreflect.EnumType {
 	return &file_internal_proto_v2_common_common_proto_enumTypes[1]
 }
 func (x TLSVersion) Number() protoreflect.EnumNumber {
 	return protoreflect.EnumNumber(x)
 }
 // Deprecated: Use TLSVersion.Descriptor instead.
 func (TLSVersion) EnumDescriptor() ([]byte, []int) {
 	return file_internal_proto_v2_common_common_proto_rawDescGZIP(), []int{1}
 }
 // The side in the TLS connection.
 type ConnectionSide int32
 const (
 	ConnectionSide_CONNECTION_SIDE_UNSPECIFIED ConnectionSide = 0
 	ConnectionSide_CONNECTION_SIDE_CLIENT      ConnectionSide = 1
 	ConnectionSide_CONNECTION_SIDE_SERVER      ConnectionSide = 2
 )
 // Enum value maps for ConnectionSide.
 var (
 	ConnectionSide_name = map[int32]string{
 		0: "CONNECTION_SIDE_UNSPECIFIED",
 		1: "CONNECTION_SIDE_CLIENT",
 		2: "CONNECTION_SIDE_SERVER",
 	}
 	ConnectionSide_value = map[string]int32{
 		"CONNECTION_SIDE_UNSPECIFIED": 0,
 		"CONNECTION_SIDE_CLIENT":      1,
 		"CONNECTION_SIDE_SERVER":      2,
 	}
 )
 func (x ConnectionSide) Enum() *ConnectionSide {
 	p := new(ConnectionSide)
 	*p = x
 	return p
 }
 func (x ConnectionSide) String() string {
 	return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x))
 }
 func (ConnectionSide) Descriptor() protoreflect.EnumDescriptor {
 	return file_internal_proto_v2_common_common_proto_enumTypes[2].Descriptor()
 }
 func (ConnectionSide) Type() protoreflect.EnumType {
 	return &file_internal_proto_v2_common_common_proto_enumTypes[2]
 }
 func (x ConnectionSide) Number() protoreflect.EnumNumber {
 	return protoreflect.EnumNumber(x)
 }
 // Deprecated: Use ConnectionSide.Descriptor instead.
 func (ConnectionSide) EnumDescriptor() ([]byte, []int) {
 	return file_internal_proto_v2_common_common_proto_rawDescGZIP(), []int{2}
 }
 // The ALPN protocols that the application can negotiate during a TLS handshake.
 type AlpnProtocol int32
 const (
 	AlpnProtocol_ALPN_PROTOCOL_UNSPECIFIED AlpnProtocol = 0
 	AlpnProtocol_ALPN_PROTOCOL_GRPC        AlpnProtocol = 1
 	AlpnProtocol_ALPN_PROTOCOL_HTTP2       AlpnProtocol = 2
 	AlpnProtocol_ALPN_PROTOCOL_HTTP1_1     AlpnProtocol = 3
 )
 // Enum value maps for AlpnProtocol.
 var (
 	AlpnProtocol_name = map[int32]string{
 		0: "ALPN_PROTOCOL_UNSPECIFIED",
 		1: "ALPN_PROTOCOL_GRPC",
 		2: "ALPN_PROTOCOL_HTTP2",
 		3: "ALPN_PROTOCOL_HTTP1_1",
 	}
 	AlpnProtocol_value = map[string]int32{
 		"ALPN_PROTOCOL_UNSPECIFIED": 0,
 		"ALPN_PROTOCOL_GRPC":        1,
 		"ALPN_PROTOCOL_HTTP2":       2,
 		"ALPN_PROTOCOL_HTTP1_1":     3,
 	}
 )
 func (x AlpnProtocol) Enum() *AlpnProtocol {
 	p := new(AlpnProtocol)
 	*p = x
 	return p
 }
 func (x AlpnProtocol) String() string {
 	return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x))
 }
 func (AlpnProtocol) Descriptor() protoreflect.EnumDescriptor {
 	return file_internal_proto_v2_common_common_proto_enumTypes[3].Descriptor()
 }
 func (AlpnProtocol) Type() protoreflect.EnumType {
 	return &file_internal_proto_v2_common_common_proto_enumTypes[3]
 }
 func (x AlpnProtocol) Number() protoreflect.EnumNumber {
 	return protoreflect.EnumNumber(x)
 }
 // Deprecated: Use AlpnProtocol.Descriptor instead.
 func (AlpnProtocol) EnumDescriptor() ([]byte, []int) {
 	return file_internal_proto_v2_common_common_proto_rawDescGZIP(), []int{3}
 }
 var File_internal_proto_v2_common_common_proto protoreflect.FileDescriptor
 var file_internal_proto_v2_common_common_proto_rawDesc = []byte{
 	0x0a, 0x25, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x2f, 0x76, 0x32, 0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f,
 	0x6e, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x12, 0x0c, 0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f,
 	0x74, 0x6f, 0x2e, 0x76, 0x32, 0x2a, 0xee, 0x02, 0x0a, 0x0b, 0x43, 0x69, 0x70, 0x68, 0x65, 0x72,
 	0x73, 0x75, 0x69, 0x74, 0x65, 0x12, 0x1b, 0x0a, 0x17, 0x43, 0x49, 0x50, 0x48, 0x45, 0x52, 0x53,
 	0x55, 0x49, 0x54, 0x45, 0x5f, 0x55, 0x4e, 0x53, 0x50, 0x45, 0x43, 0x49, 0x46, 0x49, 0x45, 0x44,
 	0x10, 0x00, 0x12, 0x33, 0x0a, 0x2f, 0x43, 0x49, 0x50, 0x48, 0x45, 0x52, 0x53, 0x55, 0x49, 0x54,
 	0x45, 0x5f, 0x45, 0x43, 0x44, 0x48, 0x45, 0x5f, 0x45, 0x43, 0x44, 0x53, 0x41, 0x5f, 0x57, 0x49,
 	0x54, 0x48, 0x5f, 0x41, 0x45, 0x53, 0x5f, 0x31, 0x32, 0x38, 0x5f, 0x47, 0x43, 0x4d, 0x5f, 0x53,
 	0x48, 0x41, 0x32, 0x35, 0x36, 0x10, 0x01, 0x12, 0x33, 0x0a, 0x2f, 0x43, 0x49, 0x50, 0x48, 0x45,
 	0x52, 0x53, 0x55, 0x49, 0x54, 0x45, 0x5f, 0x45, 0x43, 0x44, 0x48, 0x45, 0x5f, 0x45, 0x43, 0x44,
 	0x53, 0x41, 0x5f, 0x57, 0x49, 0x54, 0x48, 0x5f, 0x41, 0x45, 0x53, 0x5f, 0x32, 0x35, 0x36, 0x5f,
 	0x47, 0x43, 0x4d, 0x5f, 0x53, 0x48, 0x41, 0x33, 0x38, 0x34, 0x10, 0x02, 0x12, 0x39, 0x0a, 0x35,
 	0x43, 0x49, 0x50, 0x48, 0x45, 0x52, 0x53, 0x55, 0x49, 0x54, 0x45, 0x5f, 0x45, 0x43, 0x44, 0x48,
 	0x45, 0x5f, 0x45, 0x43, 0x44, 0x53, 0x41, 0x5f, 0x57, 0x49, 0x54, 0x48, 0x5f, 0x43, 0x48, 0x41,
 	0x43, 0x48, 0x41, 0x32, 0x30, 0x5f, 0x50, 0x4f, 0x4c, 0x59, 0x31, 0x33, 0x30, 0x35, 0x5f, 0x53,
 	0x48, 0x41, 0x32, 0x35, 0x36, 0x10, 0x03, 0x12, 0x31, 0x0a, 0x2d, 0x43, 0x49, 0x50, 0x48, 0x45,
 	0x52, 0x53, 0x55, 0x49, 0x54, 0x45, 0x5f, 0x45, 0x43, 0x44, 0x48, 0x45, 0x5f, 0x52, 0x53, 0x41,
 	0x5f, 0x57, 0x49, 0x54, 0x48, 0x5f, 0x41, 0x45, 0x53, 0x5f, 0x31, 0x32, 0x38, 0x5f, 0x47, 0x43,
 	0x4d, 0x5f, 0x53, 0x48, 0x41, 0x32, 0x35, 0x36, 0x10, 0x04, 0x12, 0x31, 0x0a, 0x2d, 0x43, 0x49,
 	0x50, 0x48, 0x45, 0x52, 0x53, 0x55, 0x49, 0x54, 0x45, 0x5f, 0x45, 0x43, 0x44, 0x48, 0x45, 0x5f,
 	0x52, 0x53, 0x41, 0x5f, 0x57, 0x49, 0x54, 0x48, 0x5f, 0x41, 0x45, 0x53, 0x5f, 0x32, 0x35, 0x36,
 	0x5f, 0x47, 0x43, 0x4d, 0x5f, 0x53, 0x48, 0x41, 0x33, 0x38, 0x34, 0x10, 0x05, 0x12, 0x37, 0x0a,
 	0x33, 0x43, 0x49, 0x50, 0x48, 0x45, 0x52, 0x53, 0x55, 0x49, 0x54, 0x45, 0x5f, 0x45, 0x43, 0x44,
 	0x48, 0x45, 0x5f, 0x52, 0x53, 0x41, 0x5f, 0x57, 0x49, 0x54, 0x48, 0x5f, 0x43, 0x48, 0x41, 0x43,
 	0x48, 0x41, 0x32, 0x30, 0x5f, 0x50, 0x4f, 0x4c, 0x59, 0x31, 0x33, 0x30, 0x35, 0x5f, 0x53, 0x48,
 	0x41, 0x32, 0x35, 0x36, 0x10, 0x06, 0x2a, 0x7d, 0x0a, 0x0a, 0x54, 0x4c, 0x53, 0x56, 0x65, 0x72,
 	0x73, 0x69, 0x6f, 0x6e, 0x12, 0x1b, 0x0a, 0x17, 0x54, 0x4c, 0x53, 0x5f, 0x56, 0x45, 0x52, 0x53,
 	0x49, 0x4f, 0x4e, 0x5f, 0x55, 0x4e, 0x53, 0x50, 0x45, 0x43, 0x49, 0x46, 0x49, 0x45, 0x44, 0x10,
 	0x00, 0x12, 0x13, 0x0a, 0x0f, 0x54, 0x4c, 0x53, 0x5f, 0x56, 0x45, 0x52, 0x53, 0x49, 0x4f, 0x4e,
 	0x5f, 0x31, 0x5f, 0x30, 0x10, 0x01, 0x12, 0x13, 0x0a, 0x0f, 0x54, 0x4c, 0x53, 0x5f, 0x56, 0x45,
 	0x52, 0x53, 0x49, 0x4f, 0x4e, 0x5f, 0x31, 0x5f, 0x31, 0x10, 0x02, 0x12, 0x13, 0x0a, 0x0f, 0x54,
 	0x4c, 0x53, 0x5f, 0x56, 0x45, 0x52, 0x53, 0x49, 0x4f, 0x4e, 0x5f, 0x31, 0x5f, 0x32, 0x10, 0x03,
 	0x12, 0x13, 0x0a, 0x0f, 0x54, 0x4c, 0x53, 0x5f, 0x56, 0x45, 0x52, 0x53, 0x49, 0x4f, 0x4e, 0x5f,
 	0x31, 0x5f, 0x33, 0x10, 0x04, 0x2a, 0x69, 0x0a, 0x0e, 0x43, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74,
 	0x69, 0x6f, 0x6e, 0x53, 0x69, 0x64, 0x65, 0x12, 0x1f, 0x0a, 0x1b, 0x43, 0x4f, 0x4e, 0x4e, 0x45,
 	0x43, 0x54, 0x49, 0x4f, 0x4e, 0x5f, 0x53, 0x49, 0x44, 0x45, 0x5f, 0x55, 0x4e, 0x53, 0x50, 0x45,
 	0x43, 0x49, 0x46, 0x49, 0x45, 0x44, 0x10, 0x00, 0x12, 0x1a, 0x0a, 0x16, 0x43, 0x4f, 0x4e, 0x4e,
 	0x45, 0x43, 0x54, 0x49, 0x4f, 0x4e, 0x5f, 0x53, 0x49, 0x44, 0x45, 0x5f, 0x43, 0x4c, 0x49, 0x45,
 	0x4e, 0x54, 0x10, 0x01, 0x12, 0x1a, 0x0a, 0x16, 0x43, 0x4f, 0x4e, 0x4e, 0x45, 0x43, 0x54, 0x49,
 	0x4f, 0x4e, 0x5f, 0x53, 0x49, 0x44, 0x45, 0x5f, 0x53, 0x45, 0x52, 0x56, 0x45, 0x52, 0x10, 0x02,
 	0x2a, 0x79, 0x0a, 0x0c, 0x41, 0x6c, 0x70, 0x6e, 0x50, 0x72, 0x6f, 0x74, 0x6f, 0x63, 0x6f, 0x6c,
 	0x12, 0x1d, 0x0a, 0x19, 0x41, 0x4c, 0x50, 0x4e, 0x5f, 0x50, 0x52, 0x4f, 0x54, 0x4f, 0x43, 0x4f,
 	0x4c, 0x5f, 0x55, 0x4e, 0x53, 0x50, 0x45, 0x43, 0x49, 0x46, 0x49, 0x45, 0x44, 0x10, 0x00, 0x12,
 	0x16, 0x0a, 0x12, 0x41, 0x4c, 0x50, 0x4e, 0x5f, 0x50, 0x52, 0x4f, 0x54, 0x4f, 0x43, 0x4f, 0x4c,
 	0x5f, 0x47, 0x52, 0x50, 0x43, 0x10, 0x01, 0x12, 0x17, 0x0a, 0x13, 0x41, 0x4c, 0x50, 0x4e, 0x5f,
 	0x50, 0x52, 0x4f, 0x54, 0x4f, 0x43, 0x4f, 0x4c, 0x5f, 0x48, 0x54, 0x54, 0x50, 0x32, 0x10, 0x02,
 	0x12, 0x19, 0x0a, 0x15, 0x41, 0x4c, 0x50, 0x4e, 0x5f, 0x50, 0x52, 0x4f, 0x54, 0x4f, 0x43, 0x4f,
 	0x4c, 0x5f, 0x48, 0x54, 0x54, 0x50, 0x31, 0x5f, 0x31, 0x10, 0x03, 0x42, 0x39, 0x5a, 0x37, 0x67,
 	0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65,
 	0x2f, 0x73, 0x32, 0x61, 0x2f, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72,
 	0x6f, 0x74, 0x6f, 0x2f, 0x76, 0x32, 0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x5f, 0x67, 0x6f,
 	0x5f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x06, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x33,
 }
 var (
 	file_internal_proto_v2_common_common_proto_rawDescOnce sync.Once
 	file_internal_proto_v2_common_common_proto_rawDescData = file_internal_proto_v2_common_common_proto_rawDesc
 )
 func file_internal_proto_v2_common_common_proto_rawDescGZIP() []byte {
 	file_internal_proto_v2_common_common_proto_rawDescOnce.Do(func() {
 		file_internal_proto_v2_common_common_proto_rawDescData = protoimpl.X.CompressGZIP(file_internal_proto_v2_common_common_proto_rawDescData)
 	})
 	return file_internal_proto_v2_common_common_proto_rawDescData
 }
 var file_internal_proto_v2_common_common_proto_enumTypes = make([]protoimpl.EnumInfo, 4)
 var file_internal_proto_v2_common_common_proto_goTypes = []interface{}{
 	(Ciphersuite)(0),    // 0: s2a.proto.v2.Ciphersuite
 	(TLSVersion)(0),     // 1: s2a.proto.v2.TLSVersion
 	(ConnectionSide)(0), // 2: s2a.proto.v2.ConnectionSide
 	(AlpnProtocol)(0),   // 3: s2a.proto.v2.AlpnProtocol
 }
 var file_internal_proto_v2_common_common_proto_depIdxs = []int32{
 	0, // [0:0] is the sub-list for method output_type
 	0, // [0:0] is the sub-list for method input_type
 	0, // [0:0] is the sub-list for extension type_name
 	0, // [0:0] is the sub-list for extension extendee
 	0, // [0:0] is the sub-list for field type_name
 }
 func init() { file_internal_proto_v2_common_common_proto_init() }
 func file_internal_proto_v2_common_common_proto_init() {
 	if File_internal_proto_v2_common_common_proto != nil {
 		return
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_internal_proto_v2_common_common_proto_rawDesc,
 			NumEnums:      4,
 			NumMessages:   0,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_internal_proto_v2_common_common_proto_goTypes,
 		DependencyIndexes: file_internal_proto_v2_common_common_proto_depIdxs,
 		EnumInfos:         file_internal_proto_v2_common_common_proto_enumTypes,
 	}.Build()
 	File_internal_proto_v2_common_common_proto = out.File
 	file_internal_proto_v2_common_common_proto_rawDesc = nil
 	file_internal_proto_v2_common_common_proto_goTypes = nil
 	file_internal_proto_v2_common_common_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/s2a_context_go_proto/s2a_context.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/s2a_context_go_proto/s2a_context.pb.go
@@ -0,0 +1,248 @@
 // Copyright 2022 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //    https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // versions:
 // 	protoc-gen-go v1.30.0
 // 	protoc        v3.21.12
 // source: internal/proto/v2/s2a_context/s2a_context.proto
 package s2a_context_go_proto
 import (
 	common_go_proto "github.com/google/s2a-go/internal/proto/common_go_proto"
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	reflect "reflect"
 	sync "sync"
 )
 const (
 	// Verify that this generated code is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion)
 	// Verify that runtime/protoimpl is sufficiently up-to-date.
 	_ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20)
 )
 type S2AContext struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
 	// The SPIFFE ID from the peer leaf certificate, if present.
 	//
 	// This field is only populated if the leaf certificate is a valid SPIFFE
 	// SVID; in particular, there is a unique URI SAN and this URI SAN is a valid
 	// SPIFFE ID.
 	LeafCertSpiffeId string `protobuf:"bytes,1,opt,name=leaf_cert_spiffe_id,json=leafCertSpiffeId,proto3" json:"leaf_cert_spiffe_id,omitempty"`
 	// The URIs that are present in the SubjectAltName extension of the peer leaf
 	// certificate.
 	//
 	// Note that the extracted URIs are not validated and may not be properly
 	// formatted.
 	LeafCertUris []string `protobuf:"bytes,2,rep,name=leaf_cert_uris,json=leafCertUris,proto3" json:"leaf_cert_uris,omitempty"`
 	// The DNSNames that are present in the SubjectAltName extension of the peer
 	// leaf certificate.
 	LeafCertDnsnames []string `protobuf:"bytes,3,rep,name=leaf_cert_dnsnames,json=leafCertDnsnames,proto3" json:"leaf_cert_dnsnames,omitempty"`
 	// The (ordered) list of fingerprints in the certificate chain used to verify
 	// the given leaf certificate. The order MUST be from leaf certificate
 	// fingerprint to root certificate fingerprint.
 	//
 	// A fingerprint is the base-64 encoding of the SHA256 hash of the
 	// DER-encoding of a certificate. The list MAY be populated even if the peer
 	// certificate chain was NOT validated successfully.
 	PeerCertificateChainFingerprints []string `protobuf:"bytes,4,rep,name=peer_certificate_chain_fingerprints,json=peerCertificateChainFingerprints,proto3" json:"peer_certificate_chain_fingerprints,omitempty"`
 	// The local identity used during session setup.
 	LocalIdentity *common_go_proto.Identity `protobuf:"bytes,5,opt,name=local_identity,json=localIdentity,proto3" json:"local_identity,omitempty"`
 	// The SHA256 hash of the DER-encoding of the local leaf certificate used in
 	// the handshake.
 	LocalLeafCertFingerprint []byte `protobuf:"bytes,6,opt,name=local_leaf_cert_fingerprint,json=localLeafCertFingerprint,proto3" json:"local_leaf_cert_fingerprint,omitempty"`
 }
 func (x *S2AContext) Reset() {
 	*x = S2AContext{}
 	if protoimpl.UnsafeEnabled {
 		mi := &file_internal_proto_v2_s2a_context_s2a_context_proto_msgTypes[0]
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		ms.StoreMessageInfo(mi)
 	}
 }
 func (x *S2AContext) String() string {
 	return protoimpl.X.MessageStringOf(x)
 }
 func (*S2AContext) ProtoMessage() {}
 func (x *S2AContext) ProtoReflect() protoreflect.Message {
 	mi := &file_internal_proto_v2_s2a_context_s2a_context_proto_msgTypes[0]
 	if protoimpl.UnsafeEnabled && x != nil {
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		if ms.LoadMessageInfo() == nil {
 			ms.StoreMessageInfo(mi)
 		}
 		return ms
 	}
 	return mi.MessageOf(x)
 }
 // Deprecated: Use S2AContext.ProtoReflect.Descriptor instead.
 func (*S2AContext) Descriptor() ([]byte, []int) {
 	return file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescGZIP(), []int{0}
 }
 func (x *S2AContext) GetLeafCertSpiffeId() string {
 	if x != nil {
 		return x.LeafCertSpiffeId
 	}
 	return ""
 }
 func (x *S2AContext) GetLeafCertUris() []string {
 	if x != nil {
 		return x.LeafCertUris
 	}
 	return nil
 }
 func (x *S2AContext) GetLeafCertDnsnames() []string {
 	if x != nil {
 		return x.LeafCertDnsnames
 	}
 	return nil
 }
 func (x *S2AContext) GetPeerCertificateChainFingerprints() []string {
 	if x != nil {
 		return x.PeerCertificateChainFingerprints
 	}
 	return nil
 }
 func (x *S2AContext) GetLocalIdentity() *common_go_proto.Identity {
 	if x != nil {
 		return x.LocalIdentity
 	}
 	return nil
 }
 func (x *S2AContext) GetLocalLeafCertFingerprint() []byte {
 	if x != nil {
 		return x.LocalLeafCertFingerprint
 	}
 	return nil
 }
 var File_internal_proto_v2_s2a_context_s2a_context_proto protoreflect.FileDescriptor
 var file_internal_proto_v2_s2a_context_s2a_context_proto_rawDesc = []byte{
 	0x0a, 0x2f, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f,
 	0x2f, 0x76, 0x32, 0x2f, 0x73, 0x32, 0x61, 0x5f, 0x63, 0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x2f,
 	0x73, 0x32, 0x61, 0x5f, 0x63, 0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x2e, 0x70, 0x72, 0x6f, 0x74,
 	0x6f, 0x12, 0x0c, 0x73, 0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2e, 0x76, 0x32, 0x1a,
 	0x22, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2f,
 	0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x2f, 0x63, 0x6f, 0x6d, 0x6d, 0x6f, 0x6e, 0x2e, 0x70, 0x72,
 	0x6f, 0x74, 0x6f, 0x22, 0xd9, 0x02, 0x0a, 0x0a, 0x53, 0x32, 0x41, 0x43, 0x6f, 0x6e, 0x74, 0x65,
 	0x78, 0x74, 0x12, 0x2d, 0x0a, 0x13, 0x6c, 0x65, 0x61, 0x66, 0x5f, 0x63, 0x65, 0x72, 0x74, 0x5f,
 	0x73, 0x70, 0x69, 0x66, 0x66, 0x65, 0x5f, 0x69, 0x64, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52,
 	0x10, 0x6c, 0x65, 0x61, 0x66, 0x43, 0x65, 0x72, 0x74, 0x53, 0x70, 0x69, 0x66, 0x66, 0x65, 0x49,
 	0x64, 0x12, 0x24, 0x0a, 0x0e, 0x6c, 0x65, 0x61, 0x66, 0x5f, 0x63, 0x65, 0x72, 0x74, 0x5f, 0x75,
 	0x72, 0x69, 0x73, 0x18, 0x02, 0x20, 0x03, 0x28, 0x09, 0x52, 0x0c, 0x6c, 0x65, 0x61, 0x66, 0x43,
 	0x65, 0x72, 0x74, 0x55, 0x72, 0x69, 0x73, 0x12, 0x2c, 0x0a, 0x12, 0x6c, 0x65, 0x61, 0x66, 0x5f,
 	0x63, 0x65, 0x72, 0x74, 0x5f, 0x64, 0x6e, 0x73, 0x6e, 0x61, 0x6d, 0x65, 0x73, 0x18, 0x03, 0x20,
 	0x03, 0x28, 0x09, 0x52, 0x10, 0x6c, 0x65, 0x61, 0x66, 0x43, 0x65, 0x72, 0x74, 0x44, 0x6e, 0x73,
 	0x6e, 0x61, 0x6d, 0x65, 0x73, 0x12, 0x4d, 0x0a, 0x23, 0x70, 0x65, 0x65, 0x72, 0x5f, 0x63, 0x65,
 	0x72, 0x74, 0x69, 0x66, 0x69, 0x63, 0x61, 0x74, 0x65, 0x5f, 0x63, 0x68, 0x61, 0x69, 0x6e, 0x5f,
 	0x66, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72, 0x69, 0x6e, 0x74, 0x73, 0x18, 0x04, 0x20, 0x03,
 	0x28, 0x09, 0x52, 0x20, 0x70, 0x65, 0x65, 0x72, 0x43, 0x65, 0x72, 0x74, 0x69, 0x66, 0x69, 0x63,
 	0x61, 0x74, 0x65, 0x43, 0x68, 0x61, 0x69, 0x6e, 0x46, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72,
 	0x69, 0x6e, 0x74, 0x73, 0x12, 0x3a, 0x0a, 0x0e, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x5f, 0x69, 0x64,
 	0x65, 0x6e, 0x74, 0x69, 0x74, 0x79, 0x18, 0x05, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x13, 0x2e, 0x73,
 	0x32, 0x61, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2e, 0x49, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74,
 	0x79, 0x52, 0x0d, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49, 0x64, 0x65, 0x6e, 0x74, 0x69, 0x74, 0x79,
 	0x12, 0x3d, 0x0a, 0x1b, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x5f, 0x6c, 0x65, 0x61, 0x66, 0x5f, 0x63,
 	0x65, 0x72, 0x74, 0x5f, 0x66, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72, 0x69, 0x6e, 0x74, 0x18,
 	0x06, 0x20, 0x01, 0x28, 0x0c, 0x52, 0x18, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x4c, 0x65, 0x61, 0x66,
 	0x43, 0x65, 0x72, 0x74, 0x46, 0x69, 0x6e, 0x67, 0x65, 0x72, 0x70, 0x72, 0x69, 0x6e, 0x74, 0x42,
 	0x3e, 0x5a, 0x3c, 0x67, 0x69, 0x74, 0x68, 0x75, 0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x67, 0x6f,
 	0x6f, 0x67, 0x6c, 0x65, 0x2f, 0x73, 0x32, 0x61, 0x2f, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x6e, 0x61,
 	0x6c, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x2f, 0x76, 0x32, 0x2f, 0x73, 0x32, 0x61, 0x5f, 0x63,
 	0x6f, 0x6e, 0x74, 0x65, 0x78, 0x74, 0x5f, 0x67, 0x6f, 0x5f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62,
 	0x06, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x33,
 }
 var (
 	file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescOnce sync.Once
 	file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescData = file_internal_proto_v2_s2a_context_s2a_context_proto_rawDesc
 )
 func file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescGZIP() []byte {
 	file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescOnce.Do(func() {
 		file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescData = protoimpl.X.CompressGZIP(file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescData)
 	})
 	return file_internal_proto_v2_s2a_context_s2a_context_proto_rawDescData
 }
 var file_internal_proto_v2_s2a_context_s2a_context_proto_msgTypes = make([]protoimpl.MessageInfo, 1)
 var file_internal_proto_v2_s2a_context_s2a_context_proto_goTypes = []interface{}{
 	(*S2AContext)(nil),               // 0: s2a.proto.v2.S2AContext
 	(*common_go_proto.Identity)(nil), // 1: s2a.proto.Identity
 }
 var file_internal_proto_v2_s2a_context_s2a_context_proto_depIdxs = []int32{
 	1, // 0: s2a.proto.v2.S2AContext.local_identity:type_name -> s2a.proto.Identity
 	1, // [1:1] is the sub-list for method output_type
 	1, // [1:1] is the sub-list for method input_type
 	1, // [1:1] is the sub-list for extension type_name
 	1, // [1:1] is the sub-list for extension extendee
 	0, // [0:1] is the sub-list for field type_name
 }
 func init() { file_internal_proto_v2_s2a_context_s2a_context_proto_init() }
 func file_internal_proto_v2_s2a_context_s2a_context_proto_init() {
 	if File_internal_proto_v2_s2a_context_s2a_context_proto != nil {
 		return
 	}
 	if !protoimpl.UnsafeEnabled {
 		file_internal_proto_v2_s2a_context_s2a_context_proto_msgTypes[0].Exporter = func(v interface{}, i int) interface{} {
 			switch v := v.(*S2AContext); i {
 			case 0:
 				return &v.state
 			case 1:
 				return &v.sizeCache
 			case 2:
 				return &v.unknownFields
 			default:
 				return nil
 			}
 		}
 	}
 	type x struct{}
 	out := protoimpl.TypeBuilder{
 		File: protoimpl.DescBuilder{
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_internal_proto_v2_s2a_context_s2a_context_proto_rawDesc,
 			NumEnums:      0,
 			NumMessages:   1,
 			NumExtensions: 0,
 			NumServices:   0,
 		},
 		GoTypes:           file_internal_proto_v2_s2a_context_s2a_context_proto_goTypes,
 		DependencyIndexes: file_internal_proto_v2_s2a_context_s2a_context_proto_depIdxs,
 		MessageInfos:      file_internal_proto_v2_s2a_context_s2a_context_proto_msgTypes,
 	}.Build()
 	File_internal_proto_v2_s2a_context_s2a_context_proto = out.File
 	file_internal_proto_v2_s2a_context_s2a_context_proto_rawDesc = nil
 	file_internal_proto_v2_s2a_context_s2a_context_proto_goTypes = nil
 	file_internal_proto_v2_s2a_context_s2a_context_proto_depIdxs = nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/s2a_go_proto/s2a.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/s2a_go_proto/s2a.pb.go
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/s2a_go_proto/s2a_grpc.pb.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/proto/v2/s2a_go_proto/s2a_grpc.pb.go
@@ -0,0 +1,159 @@
 // Copyright 2022 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //    https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Code generated by protoc-gen-go-grpc. DO NOT EDIT.
 // versions:
 // - protoc-gen-go-grpc v1.3.0
 // - protoc             v3.21.12
 // source: internal/proto/v2/s2a/s2a.proto
 package s2a_go_proto
 import (
 	context "context"
 	grpc "google.golang.org/grpc"
 	codes "google.golang.org/grpc/codes"
 	status "google.golang.org/grpc/status"
 )
 // This is a compile-time assertion to ensure that this generated file
 // is compatible with the grpc package it is being compiled against.
 // Requires gRPC-Go v1.32.0 or later.
 const _ = grpc.SupportPackageIsVersion7
 const (
 	S2AService_SetUpSession_FullMethodName = "/s2a.proto.v2.S2AService/SetUpSession"
 )
 // S2AServiceClient is the client API for S2AService service.
 //
 // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
 type S2AServiceClient interface {
 	// SetUpSession is a bidirectional stream used by applications to offload
 	// operations from the TLS handshake.
 	SetUpSession(ctx context.Context, opts ...grpc.CallOption) (S2AService_SetUpSessionClient, error)
 }
 type s2AServiceClient struct {
 	cc grpc.ClientConnInterface
 }
 func NewS2AServiceClient(cc grpc.ClientConnInterface) S2AServiceClient {
 	return &s2AServiceClient{cc}
 }
 func (c *s2AServiceClient) SetUpSession(ctx context.Context, opts ...grpc.CallOption) (S2AService_SetUpSessionClient, error) {
 	stream, err := c.cc.NewStream(ctx, &S2AService_ServiceDesc.Streams[0], S2AService_SetUpSession_FullMethodName, opts...)
 	if err != nil {
 		return nil, err
 	}
 	x := &s2AServiceSetUpSessionClient{stream}
 	return x, nil
 }
 type S2AService_SetUpSessionClient interface {
 	Send(*SessionReq) error
 	Recv() (*SessionResp, error)
 	grpc.ClientStream
 }
 type s2AServiceSetUpSessionClient struct {
 	grpc.ClientStream
 }
 func (x *s2AServiceSetUpSessionClient) Send(m *SessionReq) error {
 	return x.ClientStream.SendMsg(m)
 }
 func (x *s2AServiceSetUpSessionClient) Recv() (*SessionResp, error) {
 	m := new(SessionResp)
 	if err := x.ClientStream.RecvMsg(m); err != nil {
 		return nil, err
 	}
 	return m, nil
 }
 // S2AServiceServer is the server API for S2AService service.
 // All implementations must embed UnimplementedS2AServiceServer
 // for forward compatibility
 type S2AServiceServer interface {
 	// SetUpSession is a bidirectional stream used by applications to offload
 	// operations from the TLS handshake.
 	SetUpSession(S2AService_SetUpSessionServer) error
 	mustEmbedUnimplementedS2AServiceServer()
 }
 // UnimplementedS2AServiceServer must be embedded to have forward compatible implementations.
 type UnimplementedS2AServiceServer struct {
 }
 func (UnimplementedS2AServiceServer) SetUpSession(S2AService_SetUpSessionServer) error {
 	return status.Errorf(codes.Unimplemented, "method SetUpSession not implemented")
 }
 func (UnimplementedS2AServiceServer) mustEmbedUnimplementedS2AServiceServer() {}
 // UnsafeS2AServiceServer may be embedded to opt out of forward compatibility for this service.
 // Use of this interface is not recommended, as added methods to S2AServiceServer will
 // result in compilation errors.
 type UnsafeS2AServiceServer interface {
 	mustEmbedUnimplementedS2AServiceServer()
 }
 func RegisterS2AServiceServer(s grpc.ServiceRegistrar, srv S2AServiceServer) {
 	s.RegisterService(&S2AService_ServiceDesc, srv)
 }
 func _S2AService_SetUpSession_Handler(srv interface{}, stream grpc.ServerStream) error {
 	return srv.(S2AServiceServer).SetUpSession(&s2AServiceSetUpSessionServer{stream})
 }
 type S2AService_SetUpSessionServer interface {
 	Send(*SessionResp) error
 	Recv() (*SessionReq, error)
 	grpc.ServerStream
 }
 type s2AServiceSetUpSessionServer struct {
 	grpc.ServerStream
 }
 func (x *s2AServiceSetUpSessionServer) Send(m *SessionResp) error {
 	return x.ServerStream.SendMsg(m)
 }
 func (x *s2AServiceSetUpSessionServer) Recv() (*SessionReq, error) {
 	m := new(SessionReq)
 	if err := x.ServerStream.RecvMsg(m); err != nil {
 		return nil, err
 	}
 	return m, nil
 }
 // S2AService_ServiceDesc is the grpc.ServiceDesc for S2AService service.
 // It's only intended for direct use with grpc.RegisterService,
 // and not to be introspected or modified (even as a copy)
 var S2AService_ServiceDesc = grpc.ServiceDesc{
 	ServiceName: "s2a.proto.v2.S2AService",
 	HandlerType: (*S2AServiceServer)(nil),
 	Methods:     []grpc.MethodDesc{},
 	Streams: []grpc.StreamDesc{
 		{
 			StreamName:    "SetUpSession",
 			Handler:       _S2AService_SetUpSession_Handler,
 			ServerStreams: true,
 			ClientStreams: true,
 		},
 	},
 	Metadata: "internal/proto/v2/s2a/s2a.proto",
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/aeadcrypter.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/aeadcrypter.go
@@ -0,0 +1,34 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package aeadcrypter provides the interface for AEAD cipher implementations
 // used by S2A's record protocol.
 package aeadcrypter
 // S2AAEADCrypter is the interface for an AEAD cipher used by the S2A record
 // protocol.
 type S2AAEADCrypter interface {
 	// Encrypt encrypts the plaintext and computes the tag of dst and plaintext.
 	// dst and plaintext may fully overlap or not at all.
 	Encrypt(dst, plaintext, nonce, aad []byte) ([]byte, error)
 	// Decrypt decrypts ciphertext and verifies the tag. dst and ciphertext may
 	// fully overlap or not at all.
 	Decrypt(dst, ciphertext, nonce, aad []byte) ([]byte, error)
 	// TagSize returns the tag size in bytes.
 	TagSize() int
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/aesgcm.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/aesgcm.go
@@ -0,0 +1,70 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package aeadcrypter
 import (
 	"crypto/aes"
 	"crypto/cipher"
 	"fmt"
 )
 // Supported key sizes in bytes.
 const (
 	AES128GCMKeySize = 16
 	AES256GCMKeySize = 32
 )
 // aesgcm is the struct that holds an AES-GCM cipher for the S2A AEAD crypter.
 type aesgcm struct {
 	aead cipher.AEAD
 }
 // NewAESGCM creates an AES-GCM crypter instance. Note that the key must be
 // either 128 bits or 256 bits.
 func NewAESGCM(key []byte) (S2AAEADCrypter, error) {
 	if len(key) != AES128GCMKeySize && len(key) != AES256GCMKeySize {
 		return nil, fmt.Errorf("%d or %d bytes, given: %d", AES128GCMKeySize, AES256GCMKeySize, len(key))
 	}
 	c, err := aes.NewCipher(key)
 	if err != nil {
 		return nil, err
 	}
 	a, err := cipher.NewGCM(c)
 	if err != nil {
 		return nil, err
 	}
 	return &aesgcm{aead: a}, nil
 }
 // Encrypt is the encryption function. dst can contain bytes at the beginning of
 // the ciphertext that will not be encrypted but will be authenticated. If dst
 // has enough capacity to hold these bytes, the ciphertext and the tag, no
 // allocation and copy operations will be performed. dst and plaintext may
 // fully overlap or not at all.
 func (s *aesgcm) Encrypt(dst, plaintext, nonce, aad []byte) ([]byte, error) {
 	return encrypt(s.aead, dst, plaintext, nonce, aad)
 }
 func (s *aesgcm) Decrypt(dst, ciphertext, nonce, aad []byte) ([]byte, error) {
 	return decrypt(s.aead, dst, ciphertext, nonce, aad)
 }
 func (s *aesgcm) TagSize() int {
 	return TagSize
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/chachapoly.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/chachapoly.go
@@ -0,0 +1,67 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package aeadcrypter
 import (
 	"crypto/cipher"
 	"fmt"
 	"golang.org/x/crypto/chacha20poly1305"
 )
 // Supported key size in bytes.
 const (
 	Chacha20Poly1305KeySize = 32
 )
 // chachapoly is the struct that holds a CHACHA-POLY cipher for the S2A AEAD
 // crypter.
 type chachapoly struct {
 	aead cipher.AEAD
 }
 // NewChachaPoly creates a Chacha-Poly crypter instance. Note that the key must
 // be Chacha20Poly1305KeySize bytes in length.
 func NewChachaPoly(key []byte) (S2AAEADCrypter, error) {
 	if len(key) != Chacha20Poly1305KeySize {
 		return nil, fmt.Errorf("%d bytes, given: %d", Chacha20Poly1305KeySize, len(key))
 	}
 	c, err := chacha20poly1305.New(key)
 	if err != nil {
 		return nil, err
 	}
 	return &chachapoly{aead: c}, nil
 }
 // Encrypt is the encryption function. dst can contain bytes at the beginning of
 // the ciphertext that will not be encrypted but will be authenticated. If dst
 // has enough capacity to hold these bytes, the ciphertext and the tag, no
 // allocation and copy operations will be performed. dst and plaintext may
 // fully overlap or not at all.
 func (s *chachapoly) Encrypt(dst, plaintext, nonce, aad []byte) ([]byte, error) {
 	return encrypt(s.aead, dst, plaintext, nonce, aad)
 }
 func (s *chachapoly) Decrypt(dst, ciphertext, nonce, aad []byte) ([]byte, error) {
 	return decrypt(s.aead, dst, ciphertext, nonce, aad)
 }
 func (s *chachapoly) TagSize() int {
 	return TagSize
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/common.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/aeadcrypter/common.go
@@ -0,0 +1,92 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package aeadcrypter
 import (
 	"crypto/cipher"
 	"fmt"
 )
 const (
 	// TagSize is the tag size in bytes for AES-128-GCM-SHA256,
 	// AES-256-GCM-SHA384, and CHACHA20-POLY1305-SHA256.
 	TagSize = 16
 	// NonceSize is the size of the nonce in number of bytes for
 	// AES-128-GCM-SHA256, AES-256-GCM-SHA384, and CHACHA20-POLY1305-SHA256.
 	NonceSize = 12
 	// SHA256DigestSize is the digest size of sha256 in bytes.
 	SHA256DigestSize = 32
 	// SHA384DigestSize is the digest size of sha384 in bytes.
 	SHA384DigestSize = 48
 )
 // sliceForAppend takes a slice and a requested number of bytes. It returns a
 // slice with the contents of the given slice followed by that many bytes and a
 // second slice that aliases into it and contains only the extra bytes. If the
 // original slice has sufficient capacity then no allocation is performed.
 func sliceForAppend(in []byte, n int) (head, tail []byte) {
 	if total := len(in) + n; cap(in) >= total {
 		head = in[:total]
 	} else {
 		head = make([]byte, total)
 		copy(head, in)
 	}
 	tail = head[len(in):]
 	return head, tail
 }
 // encrypt is the encryption function for an AEAD crypter. aead determines
 // the type of AEAD crypter. dst can contain bytes at the beginning of the
 // ciphertext that will not be encrypted but will be authenticated. If dst has
 // enough capacity to hold these bytes, the ciphertext and the tag, no
 // allocation and copy operations will be performed. dst and plaintext may
 // fully overlap or not at all.
 func encrypt(aead cipher.AEAD, dst, plaintext, nonce, aad []byte) ([]byte, error) {
 	if len(nonce) != NonceSize {
 		return nil, fmt.Errorf("nonce size must be %d bytes. received: %d", NonceSize, len(nonce))
 	}
 	// If we need to allocate an output buffer, we want to include space for
 	// the tag to avoid forcing the caller to reallocate as well.
 	dlen := len(dst)
 	dst, out := sliceForAppend(dst, len(plaintext)+TagSize)
 	data := out[:len(plaintext)]
 	copy(data, plaintext) // data may fully overlap plaintext
 	// Seal appends the ciphertext and the tag to its first argument and
 	// returns the updated slice. However, sliceForAppend above ensures that
 	// dst has enough capacity to avoid a reallocation and copy due to the
 	// append.
 	dst = aead.Seal(dst[:dlen], nonce, data, aad)
 	return dst, nil
 }
 // decrypt is the decryption function for an AEAD crypter, where aead determines
 // the type of AEAD crypter, and dst the destination bytes for the decrypted
 // ciphertext. The dst buffer may fully overlap with plaintext or not at all.
 func decrypt(aead cipher.AEAD, dst, ciphertext, nonce, aad []byte) ([]byte, error) {
 	if len(nonce) != NonceSize {
 		return nil, fmt.Errorf("nonce size must be %d bytes. received: %d", NonceSize, len(nonce))
 	}
 	// If dst is equal to ciphertext[:0], ciphertext storage is reused.
 	plaintext, err := aead.Open(dst, nonce, ciphertext, aad)
 	if err != nil {
 		return nil, fmt.Errorf("message auth failed: %v", err)
 	}
 	return plaintext, nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/ciphersuite.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/ciphersuite.go
@@ -0,0 +1,98 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package halfconn
 import (
 	"crypto/sha256"
 	"crypto/sha512"
 	"fmt"
 	"hash"
 	s2apb "github.com/google/s2a-go/internal/proto/common_go_proto"
 	"github.com/google/s2a-go/internal/record/internal/aeadcrypter"
 )
 // ciphersuite is the interface for retrieving ciphersuite-specific information
 // and utilities.
 type ciphersuite interface {
 	// keySize returns the key size in bytes. This refers to the key used by
 	// the AEAD crypter. This is derived by calling HKDF expand on the traffic
 	// secret.
 	keySize() int
 	// nonceSize returns the nonce size in bytes.
 	nonceSize() int
 	// trafficSecretSize returns the traffic secret size in bytes. This refers
 	// to the secret used to derive the traffic key and nonce, as specified in
 	// https://tools.ietf.org/html/rfc8446#section-7.
 	trafficSecretSize() int
 	// hashFunction returns the hash function for the ciphersuite.
 	hashFunction() func() hash.Hash
 	// aeadCrypter takes a key and creates an AEAD crypter for the ciphersuite
 	// using that key.
 	aeadCrypter(key []byte) (aeadcrypter.S2AAEADCrypter, error)
 }
 func newCiphersuite(ciphersuite s2apb.Ciphersuite) (ciphersuite, error) {
 	switch ciphersuite {
 	case s2apb.Ciphersuite_AES_128_GCM_SHA256:
 		return &aesgcm128sha256{}, nil
 	case s2apb.Ciphersuite_AES_256_GCM_SHA384:
 		return &aesgcm256sha384{}, nil
 	case s2apb.Ciphersuite_CHACHA20_POLY1305_SHA256:
 		return &chachapolysha256{}, nil
 	default:
 		return nil, fmt.Errorf("unrecognized ciphersuite: %v", ciphersuite)
 	}
 }
 // aesgcm128sha256 is the AES-128-GCM-SHA256 implementation of the ciphersuite
 // interface.
 type aesgcm128sha256 struct{}
 func (aesgcm128sha256) keySize() int                   { return aeadcrypter.AES128GCMKeySize }
 func (aesgcm128sha256) nonceSize() int                 { return aeadcrypter.NonceSize }
 func (aesgcm128sha256) trafficSecretSize() int         { return aeadcrypter.SHA256DigestSize }
 func (aesgcm128sha256) hashFunction() func() hash.Hash { return sha256.New }
 func (aesgcm128sha256) aeadCrypter(key []byte) (aeadcrypter.S2AAEADCrypter, error) {
 	return aeadcrypter.NewAESGCM(key)
 }
 // aesgcm256sha384 is the AES-256-GCM-SHA384 implementation of the ciphersuite
 // interface.
 type aesgcm256sha384 struct{}
 func (aesgcm256sha384) keySize() int                   { return aeadcrypter.AES256GCMKeySize }
 func (aesgcm256sha384) nonceSize() int                 { return aeadcrypter.NonceSize }
 func (aesgcm256sha384) trafficSecretSize() int         { return aeadcrypter.SHA384DigestSize }
 func (aesgcm256sha384) hashFunction() func() hash.Hash { return sha512.New384 }
 func (aesgcm256sha384) aeadCrypter(key []byte) (aeadcrypter.S2AAEADCrypter, error) {
 	return aeadcrypter.NewAESGCM(key)
 }
 // chachapolysha256 is the ChaChaPoly-SHA256 implementation of the ciphersuite
 // interface.
 type chachapolysha256 struct{}
 func (chachapolysha256) keySize() int                   { return aeadcrypter.Chacha20Poly1305KeySize }
 func (chachapolysha256) nonceSize() int                 { return aeadcrypter.NonceSize }
 func (chachapolysha256) trafficSecretSize() int         { return aeadcrypter.SHA256DigestSize }
 func (chachapolysha256) hashFunction() func() hash.Hash { return sha256.New }
 func (chachapolysha256) aeadCrypter(key []byte) (aeadcrypter.S2AAEADCrypter, error) {
 	return aeadcrypter.NewChachaPoly(key)
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/counter.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/counter.go
@@ -0,0 +1,60 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package halfconn
 import "errors"
 // counter is a 64-bit counter.
 type counter struct {
 	val           uint64
 	hasOverflowed bool
 }
 // newCounter creates a new counter with the initial value set to val.
 func newCounter(val uint64) counter {
 	return counter{val: val}
 }
 // value returns the current value of the counter.
 func (c *counter) value() (uint64, error) {
 	if c.hasOverflowed {
 		return 0, errors.New("counter has overflowed")
 	}
 	return c.val, nil
 }
 // increment increments the counter and checks for overflow.
 func (c *counter) increment() {
 	// If the counter is already invalid due to overflow, there is no need to
 	// increase it. We check for the hasOverflowed flag in the call to value().
 	if c.hasOverflowed {
 		return
 	}
 	c.val++
 	if c.val == 0 {
 		c.hasOverflowed = true
 	}
 }
 // reset sets the counter value to zero and sets the hasOverflowed flag to
 // false.
 func (c *counter) reset() {
 	c.val = 0
 	c.hasOverflowed = false
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/expander.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/expander.go
@@ -0,0 +1,59 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package halfconn
 import (
 	"fmt"
 	"hash"
 	"golang.org/x/crypto/hkdf"
 )
 // hkdfExpander is the interface for the HKDF expansion function; see
 // https://tools.ietf.org/html/rfc5869 for details. its use in TLS 1.3 is
 // specified in https://tools.ietf.org/html/rfc8446#section-7.2
 type hkdfExpander interface {
 	// expand takes a secret, a label, and the output length in bytes, and
 	// returns the resulting expanded key.
 	expand(secret, label []byte, length int) ([]byte, error)
 }
 // defaultHKDFExpander is the default HKDF expander which uses Go's crypto/hkdf
 // for HKDF expansion.
 type defaultHKDFExpander struct {
 	h func() hash.Hash
 }
 // newDefaultHKDFExpander creates an instance of the default HKDF expander
 // using the given hash function.
 func newDefaultHKDFExpander(h func() hash.Hash) hkdfExpander {
 	return &defaultHKDFExpander{h: h}
 }
 func (d *defaultHKDFExpander) expand(secret, label []byte, length int) ([]byte, error) {
 	outBuf := make([]byte, length)
 	n, err := hkdf.Expand(d.h, secret, label).Read(outBuf)
 	if err != nil {
 		return nil, fmt.Errorf("hkdf.Expand.Read failed with error: %v", err)
 	}
 	if n < length {
 		return nil, fmt.Errorf("hkdf.Expand.Read returned unexpected length, got %d, want %d", n, length)
 	}
 	return outBuf, nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/halfconn.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/internal/halfconn/halfconn.go
@@ -0,0 +1,193 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package halfconn manages the inbound or outbound traffic of a TLS 1.3
 // connection.
 package halfconn
 import (
 	"fmt"
 	"sync"
 	s2apb "github.com/google/s2a-go/internal/proto/common_go_proto"
 	"github.com/google/s2a-go/internal/record/internal/aeadcrypter"
 	"golang.org/x/crypto/cryptobyte"
 )
 // The constants below were taken from Section 7.2 and 7.3 in
 // https://tools.ietf.org/html/rfc8446#section-7. They are used as the label
 // in HKDF-Expand-Label.
 const (
 	tls13Key    = "tls13 key"
 	tls13Nonce  = "tls13 iv"
 	tls13Update = "tls13 traffic upd"
 )
 // S2AHalfConnection stores the state of the TLS 1.3 connection in the
 // inbound or outbound direction.
 type S2AHalfConnection struct {
 	cs       ciphersuite
 	expander hkdfExpander
 	// mutex guards sequence, aeadCrypter, trafficSecret, and nonce.
 	mutex         sync.Mutex
 	aeadCrypter   aeadcrypter.S2AAEADCrypter
 	sequence      counter
 	trafficSecret []byte
 	nonce         []byte
 }
 // New creates a new instance of S2AHalfConnection given a ciphersuite and a
 // traffic secret.
 func New(ciphersuite s2apb.Ciphersuite, trafficSecret []byte, sequence uint64) (*S2AHalfConnection, error) {
 	cs, err := newCiphersuite(ciphersuite)
 	if err != nil {
 		return nil, fmt.Errorf("failed to create new ciphersuite: %v", ciphersuite)
 	}
 	if cs.trafficSecretSize() != len(trafficSecret) {
 		return nil, fmt.Errorf("supplied traffic secret must be %v bytes, given: %v bytes", cs.trafficSecretSize(), len(trafficSecret))
 	}
 	hc := &S2AHalfConnection{cs: cs, expander: newDefaultHKDFExpander(cs.hashFunction()), sequence: newCounter(sequence), trafficSecret: trafficSecret}
 	if err = hc.updateCrypterAndNonce(hc.trafficSecret); err != nil {
 		return nil, fmt.Errorf("failed to create half connection using traffic secret: %v", err)
 	}
 	return hc, nil
 }
 // Encrypt encrypts the plaintext and computes the tag of dst and plaintext.
 // dst and plaintext may fully overlap or not at all. Note that the sequence
 // number will still be incremented on failure, unless the sequence has
 // overflowed.
 func (hc *S2AHalfConnection) Encrypt(dst, plaintext, aad []byte) ([]byte, error) {
 	hc.mutex.Lock()
 	sequence, err := hc.getAndIncrementSequence()
 	if err != nil {
 		hc.mutex.Unlock()
 		return nil, err
 	}
 	nonce := hc.maskedNonce(sequence)
 	crypter := hc.aeadCrypter
 	hc.mutex.Unlock()
 	return crypter.Encrypt(dst, plaintext, nonce, aad)
 }
 // Decrypt decrypts ciphertext and verifies the tag. dst and ciphertext may
 // fully overlap or not at all. Note that the sequence number will still be
 // incremented on failure, unless the sequence has overflowed.
 func (hc *S2AHalfConnection) Decrypt(dst, ciphertext, aad []byte) ([]byte, error) {
 	hc.mutex.Lock()
 	sequence, err := hc.getAndIncrementSequence()
 	if err != nil {
 		hc.mutex.Unlock()
 		return nil, err
 	}
 	nonce := hc.maskedNonce(sequence)
 	crypter := hc.aeadCrypter
 	hc.mutex.Unlock()
 	return crypter.Decrypt(dst, ciphertext, nonce, aad)
 }
 // UpdateKey advances the traffic secret key, as specified in
 // https://tools.ietf.org/html/rfc8446#section-7.2. In addition, it derives
 // a new key and nonce, and resets the sequence number.
 func (hc *S2AHalfConnection) UpdateKey() error {
 	hc.mutex.Lock()
 	defer hc.mutex.Unlock()
 	var err error
 	hc.trafficSecret, err = hc.deriveSecret(hc.trafficSecret, []byte(tls13Update), hc.cs.trafficSecretSize())
 	if err != nil {
 		return fmt.Errorf("failed to derive traffic secret: %v", err)
 	}
 	if err = hc.updateCrypterAndNonce(hc.trafficSecret); err != nil {
 		return fmt.Errorf("failed to update half connection: %v", err)
 	}
 	hc.sequence.reset()
 	return nil
 }
 // TagSize returns the tag size in bytes of the underlying AEAD crypter.
 func (hc *S2AHalfConnection) TagSize() int {
 	return hc.aeadCrypter.TagSize()
 }
 // updateCrypterAndNonce takes a new traffic secret and updates the crypter
 // and nonce. Note that the mutex must be held while calling this function.
 func (hc *S2AHalfConnection) updateCrypterAndNonce(newTrafficSecret []byte) error {
 	key, err := hc.deriveSecret(newTrafficSecret, []byte(tls13Key), hc.cs.keySize())
 	if err != nil {
 		return fmt.Errorf("failed to update key: %v", err)
 	}
 	hc.nonce, err = hc.deriveSecret(newTrafficSecret, []byte(tls13Nonce), hc.cs.nonceSize())
 	if err != nil {
 		return fmt.Errorf("failed to update nonce: %v", err)
 	}
 	hc.aeadCrypter, err = hc.cs.aeadCrypter(key)
 	if err != nil {
 		return fmt.Errorf("failed to update AEAD crypter: %v", err)
 	}
 	return nil
 }
 // getAndIncrement returns the current sequence number and increments it. Note
 // that the mutex must be held while calling this function.
 func (hc *S2AHalfConnection) getAndIncrementSequence() (uint64, error) {
 	sequence, err := hc.sequence.value()
 	if err != nil {
 		return 0, err
 	}
 	hc.sequence.increment()
 	return sequence, nil
 }
 // maskedNonce creates a copy of the nonce that is masked with the sequence
 // number. Note that the mutex must be held while calling this function.
 func (hc *S2AHalfConnection) maskedNonce(sequence uint64) []byte {
 	const uint64Size = 8
 	nonce := make([]byte, len(hc.nonce))
 	copy(nonce, hc.nonce)
 	for i := 0; i < uint64Size; i++ {
 		nonce[aeadcrypter.NonceSize-uint64Size+i] ^= byte(sequence >> uint64(56-uint64Size*i))
 	}
 	return nonce
 }
 // deriveSecret implements the Derive-Secret function, as specified in
 // https://tools.ietf.org/html/rfc8446#section-7.1.
 func (hc *S2AHalfConnection) deriveSecret(secret, label []byte, length int) ([]byte, error) {
 	var hkdfLabel cryptobyte.Builder
 	hkdfLabel.AddUint16(uint16(length))
 	hkdfLabel.AddUint8LengthPrefixed(func(b *cryptobyte.Builder) {
 		b.AddBytes(label)
 	})
 	// Append an empty `Context` field to the label, as specified in the RFC.
 	// The half connection does not use the `Context` field.
 	hkdfLabel.AddUint8LengthPrefixed(func(b *cryptobyte.Builder) {
 		b.AddBytes([]byte(""))
 	})
 	hkdfLabelBytes, err := hkdfLabel.Bytes()
 	if err != nil {
 		return nil, fmt.Errorf("deriveSecret failed: %v", err)
 	}
 	return hc.expander.expand(secret, hkdfLabelBytes, length)
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/record.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/record.go
@@ -0,0 +1,757 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package record implements the TLS 1.3 record protocol used by the S2A
 // transport credentials.
 package record
 import (
 	"encoding/binary"
 	"errors"
 	"fmt"
 	"math"
 	"net"
 	"sync"
 	commonpb "github.com/google/s2a-go/internal/proto/common_go_proto"
 	"github.com/google/s2a-go/internal/record/internal/halfconn"
 	"github.com/google/s2a-go/internal/tokenmanager"
 	"google.golang.org/grpc/grpclog"
 )
 // recordType is the `ContentType` as described in
 // https://tools.ietf.org/html/rfc8446#section-5.1.
 type recordType byte
 const (
 	alert           recordType = 21
 	handshake       recordType = 22
 	applicationData recordType = 23
 )
 // keyUpdateRequest is the `KeyUpdateRequest` as described in
 // https://tools.ietf.org/html/rfc8446#section-4.6.3.
 type keyUpdateRequest byte
 const (
 	updateNotRequested keyUpdateRequest = 0
 	updateRequested    keyUpdateRequest = 1
 )
 // alertDescription is the `AlertDescription` as described in
 // https://tools.ietf.org/html/rfc8446#section-6.
 type alertDescription byte
 const (
 	closeNotify alertDescription = 0
 )
 // sessionTicketState is used to determine whether session tickets have not yet
 // been received, are in the process of being received, or have finished
 // receiving.
 type sessionTicketState byte
 const (
 	ticketsNotYetReceived sessionTicketState = 0
 	receivingTickets      sessionTicketState = 1
 	notReceivingTickets   sessionTicketState = 2
 )
 const (
 	// The TLS 1.3-specific constants below (tlsRecordMaxPlaintextSize,
 	// tlsRecordHeaderSize, tlsRecordTypeSize) were taken from
 	// https://tools.ietf.org/html/rfc8446#section-5.1.
 	// tlsRecordMaxPlaintextSize is the maximum size in bytes of the plaintext
 	// in a single TLS 1.3 record.
 	tlsRecordMaxPlaintextSize = 16384 // 2^14
 	// tlsRecordTypeSize is the size in bytes of the TLS 1.3 record type.
 	tlsRecordTypeSize = 1
 	// tlsTagSize is the size in bytes of the tag of the following three
 	// ciphersuites: AES-128-GCM-SHA256, AES-256-GCM-SHA384,
 	// CHACHA20-POLY1305-SHA256.
 	tlsTagSize = 16
 	// tlsRecordMaxPayloadSize is the maximum size in bytes of the payload in a
 	// single TLS 1.3 record. This is the maximum size of the plaintext plus the
 	// record type byte and 16 bytes of the tag.
 	tlsRecordMaxPayloadSize = tlsRecordMaxPlaintextSize + tlsRecordTypeSize + tlsTagSize
 	// tlsRecordHeaderTypeSize is the size in bytes of the TLS 1.3 record
 	// header type.
 	tlsRecordHeaderTypeSize = 1
 	// tlsRecordHeaderLegacyRecordVersionSize is the size in bytes of the TLS
 	// 1.3 record header legacy record version.
 	tlsRecordHeaderLegacyRecordVersionSize = 2
 	// tlsRecordHeaderPayloadLengthSize is the size in bytes of the TLS 1.3
 	// record header payload length.
 	tlsRecordHeaderPayloadLengthSize = 2
 	// tlsRecordHeaderSize is the size in bytes of the TLS 1.3 record header.
 	tlsRecordHeaderSize = tlsRecordHeaderTypeSize + tlsRecordHeaderLegacyRecordVersionSize + tlsRecordHeaderPayloadLengthSize
 	// tlsRecordMaxSize
 	tlsRecordMaxSize = tlsRecordMaxPayloadSize + tlsRecordHeaderSize
 	// tlsApplicationData is the application data type of the TLS 1.3 record
 	// header.
 	tlsApplicationData = 23
 	// tlsLegacyRecordVersion is the legacy record version of the TLS record.
 	tlsLegacyRecordVersion = 3
 	// tlsAlertSize is the size in bytes of an alert of TLS 1.3.
 	tlsAlertSize = 2
 )
 const (
 	// These are TLS 1.3 handshake-specific constants.
 	// tlsHandshakeNewSessionTicketType is the prefix of a handshake new session
 	// ticket message of TLS 1.3.
 	tlsHandshakeNewSessionTicketType = 4
 	// tlsHandshakeKeyUpdateType is the prefix of a handshake key update message
 	// of TLS 1.3.
 	tlsHandshakeKeyUpdateType = 24
 	// tlsHandshakeMsgTypeSize is the size in bytes of the TLS 1.3 handshake
 	// message type field.
 	tlsHandshakeMsgTypeSize = 1
 	// tlsHandshakeLengthSize is the size in bytes of the TLS 1.3 handshake
 	// message length field.
 	tlsHandshakeLengthSize = 3
 	// tlsHandshakeKeyUpdateMsgSize is the size in bytes of the TLS 1.3
 	// handshake key update message.
 	tlsHandshakeKeyUpdateMsgSize = 1
 	// tlsHandshakePrefixSize is the size in bytes of the prefix of the TLS 1.3
 	// handshake message.
 	tlsHandshakePrefixSize = 4
 	// tlsMaxSessionTicketSize is the maximum size of a NewSessionTicket message
 	// in TLS 1.3. This is the sum of the max sizes of all the fields in the
 	// NewSessionTicket struct specified in
 	// https://tools.ietf.org/html/rfc8446#section-4.6.1.
 	tlsMaxSessionTicketSize = 131338
 )
 const (
 	// outBufMaxRecords is the maximum number of records that can fit in the
 	// ourRecordsBuf buffer.
 	outBufMaxRecords = 16
 	// outBufMaxSize is the maximum size (in bytes) of the outRecordsBuf buffer.
 	outBufMaxSize = outBufMaxRecords * tlsRecordMaxSize
 	// maxAllowedTickets is the maximum number of session tickets that are
 	// allowed. The number of tickets are limited to ensure that the size of the
 	// ticket queue does not grow indefinitely. S2A also keeps a limit on the
 	// number of tickets that it caches.
 	maxAllowedTickets = 5
 )
 // preConstructedKeyUpdateMsg holds the key update message. This is needed as an
 // optimization so that the same message does not need to be constructed every
 // time a key update message is sent.
 var preConstructedKeyUpdateMsg = buildKeyUpdateRequest()
 // conn represents a secured TLS connection. It implements the net.Conn
 // interface.
 type conn struct {
 	net.Conn
 	// inConn is the half connection responsible for decrypting incoming bytes.
 	inConn *halfconn.S2AHalfConnection
 	// outConn is the half connection responsible for encrypting outgoing bytes.
 	outConn *halfconn.S2AHalfConnection
 	// pendingApplicationData holds data that has been read from the connection
 	// and decrypted, but has not yet been returned by Read.
 	pendingApplicationData []byte
 	// unusedBuf holds data read from the network that has not yet been
 	// decrypted. This data might not consist of a complete record. It may
 	// consist of several records, the last of which could be incomplete.
 	unusedBuf []byte
 	// outRecordsBuf is a buffer used to store outgoing TLS records before
 	// they are written to the network.
 	outRecordsBuf []byte
 	// nextRecord stores the next record info in the unusedBuf buffer.
 	nextRecord []byte
 	// overheadSize is the overhead size in bytes of each TLS 1.3 record, which
 	// is computed as overheadSize = header size + record type byte + tag size.
 	// Note that there is no padding by zeros in the overhead calculation.
 	overheadSize int
 	// readMutex guards against concurrent calls to Read. This is required since
 	// Close may be called during a Read.
 	readMutex sync.Mutex
 	// writeMutex guards against concurrent calls to Write. This is required
 	// since Close may be called during a Write, and also because a key update
 	// message may be written during a Read.
 	writeMutex sync.Mutex
 	// handshakeBuf holds handshake messages while they are being processed.
 	handshakeBuf []byte
 	// ticketState is the current processing state of the session tickets.
 	ticketState sessionTicketState
 	// sessionTickets holds the completed session tickets until they are sent to
 	// the handshaker service for processing.
 	sessionTickets [][]byte
 	// ticketSender sends session tickets to the S2A handshaker service.
 	ticketSender s2aTicketSender
 	// callComplete is a channel that blocks closing the record protocol until a
 	// pending call to the S2A completes.
 	callComplete chan bool
 }
 // ConnParameters holds the parameters used for creating a new conn object.
 type ConnParameters struct {
 	// NetConn is the TCP connection to the peer. This parameter is required.
 	NetConn net.Conn
 	// Ciphersuite is the TLS ciphersuite negotiated by the S2A handshaker
 	// service. This parameter is required.
 	Ciphersuite commonpb.Ciphersuite
 	// TLSVersion is the TLS version number negotiated by the S2A handshaker
 	// service. This parameter is required.
 	TLSVersion commonpb.TLSVersion
 	// InTrafficSecret is the traffic secret used to derive the session key for
 	// the inbound direction. This parameter is required.
 	InTrafficSecret []byte
 	// OutTrafficSecret is the traffic secret used to derive the session key
 	// for the outbound direction. This parameter is required.
 	OutTrafficSecret []byte
 	// UnusedBuf is the data read from the network that has not yet been
 	// decrypted. This parameter is optional. If not provided, then no
 	// application data was sent in the same flight of messages as the final
 	// handshake message.
 	UnusedBuf []byte
 	// InSequence is the sequence number of the next, incoming, TLS record.
 	// This parameter is required.
 	InSequence uint64
 	// OutSequence is the sequence number of the next, outgoing, TLS record.
 	// This parameter is required.
 	OutSequence uint64
 	// HSAddr stores the address of the S2A handshaker service. This parameter
 	// is optional. If not provided, then TLS resumption is disabled.
 	HSAddr string
 	// ConnectionId is the connection identifier that was created and sent by
 	// S2A at the end of a handshake.
 	ConnectionID uint64
 	// LocalIdentity is the local identity that was used by S2A during session
 	// setup and included in the session result.
 	LocalIdentity *commonpb.Identity
 	// EnsureProcessSessionTickets allows users to wait and ensure that all
 	// available session tickets are sent to S2A before a process completes.
 	EnsureProcessSessionTickets *sync.WaitGroup
 }
 // NewConn creates a TLS record protocol that wraps the TCP connection.
 func NewConn(o *ConnParameters) (net.Conn, error) {
 	if o == nil {
 		return nil, errors.New("conn options must not be nil")
 	}
 	if o.TLSVersion != commonpb.TLSVersion_TLS1_3 {
 		return nil, errors.New("TLS version must be TLS 1.3")
 	}
 	inConn, err := halfconn.New(o.Ciphersuite, o.InTrafficSecret, o.InSequence)
 	if err != nil {
 		return nil, fmt.Errorf("failed to create inbound half connection: %v", err)
 	}
 	outConn, err := halfconn.New(o.Ciphersuite, o.OutTrafficSecret, o.OutSequence)
 	if err != nil {
 		return nil, fmt.Errorf("failed to create outbound half connection: %v", err)
 	}
 	// The tag size for the in/out connections should be the same.
 	overheadSize := tlsRecordHeaderSize + tlsRecordTypeSize + inConn.TagSize()
 	var unusedBuf []byte
 	if o.UnusedBuf == nil {
 		// We pre-allocate unusedBuf to be of size
 		// 2*tlsRecordMaxSize-1 during initialization. We only read from the
 		// network into unusedBuf when unusedBuf does not contain a complete
 		// record and the incomplete record is at most tlsRecordMaxSize-1
 		// (bytes). And we read at most tlsRecordMaxSize bytes of data from the
 		// network into unusedBuf at one time. Therefore, 2*tlsRecordMaxSize-1
 		// is large enough to buffer data read from the network.
 		unusedBuf = make([]byte, 0, 2*tlsRecordMaxSize-1)
 	} else {
 		unusedBuf = make([]byte, len(o.UnusedBuf))
 		copy(unusedBuf, o.UnusedBuf)
 	}
 	tokenManager, err := tokenmanager.NewSingleTokenAccessTokenManager()
 	if err != nil {
 		grpclog.Infof("failed to create single token access token manager: %v", err)
 	}
 	s2aConn := &conn{
 		Conn:          o.NetConn,
 		inConn:        inConn,
 		outConn:       outConn,
 		unusedBuf:     unusedBuf,
 		outRecordsBuf: make([]byte, tlsRecordMaxSize),
 		nextRecord:    unusedBuf,
 		overheadSize:  overheadSize,
 		ticketState:   ticketsNotYetReceived,
 		// Pre-allocate the buffer for one session ticket message and the max
 		// plaintext size. This is the largest size that handshakeBuf will need
 		// to hold. The largest incomplete handshake message is the
 		// [handshake header size] + [max session ticket size] - 1.
 		// Then, tlsRecordMaxPlaintextSize is the maximum size that will be
 		// appended to the handshakeBuf before the handshake message is
 		// completed. Therefore, the buffer size below should be large enough to
 		// buffer any handshake messages.
 		handshakeBuf: make([]byte, 0, tlsHandshakePrefixSize+tlsMaxSessionTicketSize+tlsRecordMaxPlaintextSize-1),
 		ticketSender: &ticketSender{
 			hsAddr:                      o.HSAddr,
 			connectionID:                o.ConnectionID,
 			localIdentity:               o.LocalIdentity,
 			tokenManager:                tokenManager,
 			ensureProcessSessionTickets: o.EnsureProcessSessionTickets,
 		},
 		callComplete: make(chan bool),
 	}
 	return s2aConn, nil
 }
 // Read reads and decrypts a TLS 1.3 record from the underlying connection, and
 // copies any application data received from the peer into b. If the size of the
 // payload is greater than len(b), Read retains the remaining bytes in an
 // internal buffer, and subsequent calls to Read will read from this buffer
 // until it is exhausted. At most 1 TLS record worth of application data is
 // written to b for each call to Read.
 //
 // Note that for the user to efficiently call this method, the user should
 // ensure that the buffer b is allocated such that the buffer does not have any
 // unused segments. This can be done by calling Read via io.ReadFull, which
 // continually calls Read until the specified buffer has been filled. Also note
 // that the user should close the connection via Close() if an error is thrown
 // by a call to Read.
 func (p *conn) Read(b []byte) (n int, err error) {
 	p.readMutex.Lock()
 	defer p.readMutex.Unlock()
 	// Check if p.pendingApplication data has leftover application data from
 	// the previous call to Read.
 	if len(p.pendingApplicationData) == 0 {
 		// Read a full record from the wire.
 		record, err := p.readFullRecord()
 		if err != nil {
 			return 0, err
 		}
 		// Now we have a complete record, so split the header and validate it
 		// The TLS record is split into 2 pieces: the record header and the
 		// payload. The payload has the following form:
 		// [payload] = [ciphertext of application data]
 		//           + [ciphertext of record type byte]
 		//           + [(optionally) ciphertext of padding by zeros]
 		//           + [tag]
 		header, payload, err := splitAndValidateHeader(record)
 		if err != nil {
 			return 0, err
 		}
 		// Decrypt the ciphertext.
 		p.pendingApplicationData, err = p.inConn.Decrypt(payload[:0], payload, header)
 		if err != nil {
 			return 0, err
 		}
 		// Remove the padding by zeros and the record type byte from the
 		// p.pendingApplicationData buffer.
 		msgType, err := p.stripPaddingAndType()
 		if err != nil {
 			return 0, err
 		}
 		// Check that the length of the plaintext after stripping the padding
 		// and record type byte is under the maximum plaintext size.
 		if len(p.pendingApplicationData) > tlsRecordMaxPlaintextSize {
 			return 0, errors.New("plaintext size larger than maximum")
 		}
 		// The expected message types are application data, alert, and
 		// handshake. For application data, the bytes are directly copied into
 		// b. For an alert, the type of the alert is checked and the connection
 		// is closed on a close notify alert. For a handshake message, the
 		// handshake message type is checked. The handshake message type can be
 		// a key update type, for which we advance the traffic secret, and a
 		// new session ticket type, for which we send the received ticket to S2A
 		// for processing.
 		switch msgType {
 		case applicationData:
 			if len(p.handshakeBuf) > 0 {
 				return 0, errors.New("application data received while processing fragmented handshake messages")
 			}
 			if p.ticketState == receivingTickets {
 				p.ticketState = notReceivingTickets
 				grpclog.Infof("Sending session tickets to S2A.")
 				p.ticketSender.sendTicketsToS2A(p.sessionTickets, p.callComplete)
 			}
 		case alert:
 			return 0, p.handleAlertMessage()
 		case handshake:
 			if err = p.handleHandshakeMessage(); err != nil {
 				return 0, err
 			}
 			return 0, nil
 		default:
 			return 0, errors.New("unknown record type")
 		}
 	}
 	// Write as much application data as possible to b, the output buffer.
 	n = copy(b, p.pendingApplicationData)
 	p.pendingApplicationData = p.pendingApplicationData[n:]
 	return n, nil
 }
 // Write divides b into segments of size tlsRecordMaxPlaintextSize, builds a
 // TLS 1.3 record (of type "application data") from each segment, and sends
 // the record to the peer. It returns the number of plaintext bytes that were
 // successfully sent to the peer.
 func (p *conn) Write(b []byte) (n int, err error) {
 	p.writeMutex.Lock()
 	defer p.writeMutex.Unlock()
 	return p.writeTLSRecord(b, tlsApplicationData)
 }
 // writeTLSRecord divides b into segments of size maxPlaintextBytesPerRecord,
 // builds a TLS 1.3 record (of type recordType) from each segment, and sends
 // the record to the peer. It returns the number of plaintext bytes that were
 // successfully sent to the peer.
 func (p *conn) writeTLSRecord(b []byte, recordType byte) (n int, err error) {
 	// Create a record of only header, record type, and tag if given empty
 	// byte array.
 	if len(b) == 0 {
 		recordEndIndex, _, err := p.buildRecord(b, recordType, 0)
 		if err != nil {
 			return 0, err
 		}
 		// Write the bytes stored in outRecordsBuf to p.Conn. Since we return
 		// the number of plaintext bytes written without overhead, we will
 		// always return 0 while p.Conn.Write returns the entire record length.
 		_, err = p.Conn.Write(p.outRecordsBuf[:recordEndIndex])
 		return 0, err
 	}
 	numRecords := int(math.Ceil(float64(len(b)) / float64(tlsRecordMaxPlaintextSize)))
 	totalRecordsSize := len(b) + numRecords*p.overheadSize
 	partialBSize := len(b)
 	if totalRecordsSize > outBufMaxSize {
 		totalRecordsSize = outBufMaxSize
 		partialBSize = outBufMaxRecords * tlsRecordMaxPlaintextSize
 	}
 	if len(p.outRecordsBuf) < totalRecordsSize {
 		p.outRecordsBuf = make([]byte, totalRecordsSize)
 	}
 	for bStart := 0; bStart < len(b); bStart += partialBSize {
 		bEnd := bStart + partialBSize
 		if bEnd > len(b) {
 			bEnd = len(b)
 		}
 		partialB := b[bStart:bEnd]
 		recordEndIndex := 0
 		for len(partialB) > 0 {
 			recordEndIndex, partialB, err = p.buildRecord(partialB, recordType, recordEndIndex)
 			if err != nil {
 				// Return the amount of bytes written prior to the error.
 				return bStart, err
 			}
 		}
 		// Write the bytes stored in outRecordsBuf to p.Conn. If there is an
 		// error, calculate the total number of plaintext bytes of complete
 		// records successfully written to the peer and return it.
 		nn, err := p.Conn.Write(p.outRecordsBuf[:recordEndIndex])
 		if err != nil {
 			numberOfCompletedRecords := int(math.Floor(float64(nn) / float64(tlsRecordMaxSize)))
 			return bStart + numberOfCompletedRecords*tlsRecordMaxPlaintextSize, err
 		}
 	}
 	return len(b), nil
 }
 // buildRecord builds a TLS 1.3 record of type recordType from plaintext,
 // and writes the record to outRecordsBuf at recordStartIndex. The record will
 // have at most tlsRecordMaxPlaintextSize bytes of payload. It returns the
 // index of outRecordsBuf where the current record ends, as well as any
 // remaining plaintext bytes.
 func (p *conn) buildRecord(plaintext []byte, recordType byte, recordStartIndex int) (n int, remainingPlaintext []byte, err error) {
 	// Construct the payload, which consists of application data and record type.
 	dataLen := len(plaintext)
 	if dataLen > tlsRecordMaxPlaintextSize {
 		dataLen = tlsRecordMaxPlaintextSize
 	}
 	remainingPlaintext = plaintext[dataLen:]
 	newRecordBuf := p.outRecordsBuf[recordStartIndex:]
 	copy(newRecordBuf[tlsRecordHeaderSize:], plaintext[:dataLen])
 	newRecordBuf[tlsRecordHeaderSize+dataLen] = recordType
 	payload := newRecordBuf[tlsRecordHeaderSize : tlsRecordHeaderSize+dataLen+1] // 1 is for the recordType.
 	// Construct the header.
 	newRecordBuf[0] = tlsApplicationData
 	newRecordBuf[1] = tlsLegacyRecordVersion
 	newRecordBuf[2] = tlsLegacyRecordVersion
 	binary.BigEndian.PutUint16(newRecordBuf[3:], uint16(len(payload)+tlsTagSize))
 	header := newRecordBuf[:tlsRecordHeaderSize]
 	// Encrypt the payload using header as aad.
 	encryptedPayload, err := p.outConn.Encrypt(newRecordBuf[tlsRecordHeaderSize:][:0], payload, header)
 	if err != nil {
 		return 0, plaintext, err
 	}
 	recordStartIndex += len(header) + len(encryptedPayload)
 	return recordStartIndex, remainingPlaintext, nil
 }
 func (p *conn) Close() error {
 	p.readMutex.Lock()
 	defer p.readMutex.Unlock()
 	p.writeMutex.Lock()
 	defer p.writeMutex.Unlock()
 	// If p.ticketState is equal to notReceivingTickets, then S2A has
 	// been sent a flight of session tickets, and we must wait for the
 	// call to S2A to complete before closing the record protocol.
 	if p.ticketState == notReceivingTickets {
 		<-p.callComplete
 		grpclog.Infof("Safe to close the connection because sending tickets to S2A is (already) complete.")
 	}
 	return p.Conn.Close()
 }
 // stripPaddingAndType strips the padding by zeros and record type from
 // p.pendingApplicationData and returns the record type. Note that
 // p.pendingApplicationData should be of the form:
 // [application data] + [record type byte] + [trailing zeros]
 func (p *conn) stripPaddingAndType() (recordType, error) {
 	if len(p.pendingApplicationData) == 0 {
 		return 0, errors.New("application data had length 0")
 	}
 	i := len(p.pendingApplicationData) - 1
 	// Search for the index of the record type byte.
 	for i > 0 {
 		if p.pendingApplicationData[i] != 0 {
 			break
 		}
 		i--
 	}
 	rt := recordType(p.pendingApplicationData[i])
 	p.pendingApplicationData = p.pendingApplicationData[:i]
 	return rt, nil
 }
 // readFullRecord reads from the wire until a record is completed and returns
 // the full record.
 func (p *conn) readFullRecord() (fullRecord []byte, err error) {
 	fullRecord, p.nextRecord, err = parseReadBuffer(p.nextRecord, tlsRecordMaxPayloadSize)
 	if err != nil {
 		return nil, err
 	}
 	// Check whether the next record to be decrypted has been completely
 	// received.
 	if len(fullRecord) == 0 {
 		copy(p.unusedBuf, p.nextRecord)
 		p.unusedBuf = p.unusedBuf[:len(p.nextRecord)]
 		// Always copy next incomplete record to the beginning of the
 		// unusedBuf buffer and reset nextRecord to it.
 		p.nextRecord = p.unusedBuf
 	}
 	// Keep reading from the wire until we have a complete record.
 	for len(fullRecord) == 0 {
 		if len(p.unusedBuf) == cap(p.unusedBuf) {
 			tmp := make([]byte, len(p.unusedBuf), cap(p.unusedBuf)+tlsRecordMaxSize)
 			copy(tmp, p.unusedBuf)
 			p.unusedBuf = tmp
 		}
 		n, err := p.Conn.Read(p.unusedBuf[len(p.unusedBuf):min(cap(p.unusedBuf), len(p.unusedBuf)+tlsRecordMaxSize)])
 		if err != nil {
 			return nil, err
 		}
 		p.unusedBuf = p.unusedBuf[:len(p.unusedBuf)+n]
 		fullRecord, p.nextRecord, err = parseReadBuffer(p.unusedBuf, tlsRecordMaxPayloadSize)
 		if err != nil {
 			return nil, err
 		}
 	}
 	return fullRecord, nil
 }
 // parseReadBuffer parses the provided buffer and returns a full record and any
 // remaining bytes in that buffer. If the record is incomplete, nil is returned
 // for the first return value and the given byte buffer is returned for the
 // second return value. The length of the payload specified by the header should
 // not be greater than maxLen, otherwise an error is returned. Note that this
 // function does not allocate or copy any buffers.
 func parseReadBuffer(b []byte, maxLen uint16) (fullRecord, remaining []byte, err error) {
 	// If the header is not complete, return the provided buffer as remaining
 	// buffer.
 	if len(b) < tlsRecordHeaderSize {
 		return nil, b, nil
 	}
 	msgLenField := b[tlsRecordHeaderTypeSize+tlsRecordHeaderLegacyRecordVersionSize : tlsRecordHeaderSize]
 	length := binary.BigEndian.Uint16(msgLenField)
 	if length > maxLen {
 		return nil, nil, fmt.Errorf("record length larger than the limit %d", maxLen)
 	}
 	if len(b) < int(length)+tlsRecordHeaderSize {
 		// Record is not complete yet.
 		return nil, b, nil
 	}
 	return b[:tlsRecordHeaderSize+length], b[tlsRecordHeaderSize+length:], nil
 }
 // splitAndValidateHeader splits the header from the payload in the TLS 1.3
 // record and returns them. Note that the header is checked for validity, and an
 // error is returned when an invalid header is parsed. Also note that this
 // function does not allocate or copy any buffers.
 func splitAndValidateHeader(record []byte) (header, payload []byte, err error) {
 	if len(record) < tlsRecordHeaderSize {
 		return nil, nil, fmt.Errorf("record was smaller than the header size")
 	}
 	header = record[:tlsRecordHeaderSize]
 	payload = record[tlsRecordHeaderSize:]
 	if header[0] != tlsApplicationData {
 		return nil, nil, fmt.Errorf("incorrect type in the header")
 	}
 	// Check the legacy record version, which should be 0x03, 0x03.
 	if header[1] != 0x03 || header[2] != 0x03 {
 		return nil, nil, fmt.Errorf("incorrect legacy record version in the header")
 	}
 	return header, payload, nil
 }
 // handleAlertMessage handles an alert message.
 func (p *conn) handleAlertMessage() error {
 	if len(p.pendingApplicationData) != tlsAlertSize {
 		return errors.New("invalid alert message size")
 	}
 	alertType := p.pendingApplicationData[1]
 	// Clear the body of the alert message.
 	p.pendingApplicationData = p.pendingApplicationData[:0]
 	if alertType == byte(closeNotify) {
 		return errors.New("received a close notify alert")
 	}
 	// TODO(matthewstevenson88): Add support for more alert types.
 	return fmt.Errorf("received an unrecognized alert type: %v", alertType)
 }
 // parseHandshakeHeader parses a handshake message from the handshake buffer.
 // It returns the message type, the message length, the message, the raw message
 // that includes the type and length bytes and a flag indicating whether the
 // handshake message has been fully parsed. i.e. whether the entire handshake
 // message was in the handshake buffer.
 func (p *conn) parseHandshakeMsg() (msgType byte, msgLen uint32, msg []byte, rawMsg []byte, ok bool) {
 	// Handle the case where the 4 byte handshake header is fragmented.
 	if len(p.handshakeBuf) < tlsHandshakePrefixSize {
 		return 0, 0, nil, nil, false
 	}
 	msgType = p.handshakeBuf[0]
 	msgLen = bigEndianInt24(p.handshakeBuf[tlsHandshakeMsgTypeSize : tlsHandshakeMsgTypeSize+tlsHandshakeLengthSize])
 	if msgLen > uint32(len(p.handshakeBuf)-tlsHandshakePrefixSize) {
 		return 0, 0, nil, nil, false
 	}
 	msg = p.handshakeBuf[tlsHandshakePrefixSize : tlsHandshakePrefixSize+msgLen]
 	rawMsg = p.handshakeBuf[:tlsHandshakeMsgTypeSize+tlsHandshakeLengthSize+msgLen]
 	p.handshakeBuf = p.handshakeBuf[tlsHandshakePrefixSize+msgLen:]
 	return msgType, msgLen, msg, rawMsg, true
 }
 // handleHandshakeMessage handles a handshake message. Note that the first
 // complete handshake message from the handshake buffer is removed, if it
 // exists.
 func (p *conn) handleHandshakeMessage() error {
 	// Copy the pending application data to the handshake buffer. At this point,
 	// we are guaranteed that the pending application data contains only parts
 	// of a handshake message.
 	p.handshakeBuf = append(p.handshakeBuf, p.pendingApplicationData...)
 	p.pendingApplicationData = p.pendingApplicationData[:0]
 	// Several handshake messages may be coalesced into a single record.
 	// Continue reading them until the handshake buffer is empty.
 	for len(p.handshakeBuf) > 0 {
 		handshakeMsgType, msgLen, msg, rawMsg, ok := p.parseHandshakeMsg()
 		if !ok {
 			// The handshake could not be fully parsed, so read in another
 			// record and try again later.
 			break
 		}
 		switch handshakeMsgType {
 		case tlsHandshakeKeyUpdateType:
 			if msgLen != tlsHandshakeKeyUpdateMsgSize {
 				return errors.New("invalid handshake key update message length")
 			}
 			if len(p.handshakeBuf) != 0 {
 				return errors.New("key update message must be the last message of a handshake record")
 			}
 			if err := p.handleKeyUpdateMsg(msg); err != nil {
 				return err
 			}
 		case tlsHandshakeNewSessionTicketType:
 			// Ignore tickets that are received after a batch of tickets has
 			// been sent to S2A.
 			if p.ticketState == notReceivingTickets {
 				continue
 			}
 			if p.ticketState == ticketsNotYetReceived {
 				p.ticketState = receivingTickets
 			}
 			p.sessionTickets = append(p.sessionTickets, rawMsg)
 			if len(p.sessionTickets) == maxAllowedTickets {
 				p.ticketState = notReceivingTickets
 				grpclog.Infof("Sending session tickets to S2A.")
 				p.ticketSender.sendTicketsToS2A(p.sessionTickets, p.callComplete)
 			}
 		default:
 			return errors.New("unknown handshake message type")
 		}
 	}
 	return nil
 }
 func buildKeyUpdateRequest() []byte {
 	b := make([]byte, tlsHandshakePrefixSize+tlsHandshakeKeyUpdateMsgSize)
 	b[0] = tlsHandshakeKeyUpdateType
 	b[1] = 0
 	b[2] = 0
 	b[3] = tlsHandshakeKeyUpdateMsgSize
 	b[4] = byte(updateNotRequested)
 	return b
 }
 // handleKeyUpdateMsg handles a key update message.
 func (p *conn) handleKeyUpdateMsg(msg []byte) error {
 	keyUpdateRequest := msg[0]
 	if keyUpdateRequest != byte(updateNotRequested) &&
 		keyUpdateRequest != byte(updateRequested) {
 		return errors.New("invalid handshake key update message")
 	}
 	if err := p.inConn.UpdateKey(); err != nil {
 		return err
 	}
 	// Send a key update message back to the peer if requested.
 	if keyUpdateRequest == byte(updateRequested) {
 		p.writeMutex.Lock()
 		defer p.writeMutex.Unlock()
 		n, err := p.writeTLSRecord(preConstructedKeyUpdateMsg, byte(handshake))
 		if err != nil {
 			return err
 		}
 		if n != tlsHandshakePrefixSize+tlsHandshakeKeyUpdateMsgSize {
 			return errors.New("key update request message wrote less bytes than expected")
 		}
 		if err = p.outConn.UpdateKey(); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 // bidEndianInt24 converts the given byte buffer of at least size 3 and
 // outputs the resulting 24 bit integer as a uint32. This is needed because
 // TLS 1.3 requires 3 byte integers, and the binary.BigEndian package does
 // not provide a way to transform a byte buffer into a 3 byte integer.
 func bigEndianInt24(b []byte) uint32 {
 	_ = b[2] // bounds check hint to compiler; see golang.org/issue/14808
 	return uint32(b[2]) | uint32(b[1])<<8 | uint32(b[0])<<16
 }
 func min(a, b int) int {
 	if a < b {
 		return a
 	}
 	return b
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/ticketsender.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/record/ticketsender.go
@@ -0,0 +1,176 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 package record
 import (
 	"context"
 	"fmt"
 	"sync"
 	"time"
 	"github.com/google/s2a-go/internal/handshaker/service"
 	commonpb "github.com/google/s2a-go/internal/proto/common_go_proto"
 	s2apb "github.com/google/s2a-go/internal/proto/s2a_go_proto"
 	"github.com/google/s2a-go/internal/tokenmanager"
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/grpclog"
 )
 // sessionTimeout is the timeout for creating a session with the S2A handshaker
 // service.
 const sessionTimeout = time.Second * 5
 // s2aTicketSender sends session tickets to the S2A handshaker service.
 type s2aTicketSender interface {
 	// sendTicketsToS2A sends the given session tickets to the S2A handshaker
 	// service.
 	sendTicketsToS2A(sessionTickets [][]byte, callComplete chan bool)
 }
 // ticketStream is the stream used to send and receive session information.
 type ticketStream interface {
 	Send(*s2apb.SessionReq) error
 	Recv() (*s2apb.SessionResp, error)
 }
 type ticketSender struct {
 	// hsAddr stores the address of the S2A handshaker service.
 	hsAddr string
 	// connectionID is the connection identifier that was created and sent by
 	// S2A at the end of a handshake.
 	connectionID uint64
 	// localIdentity is the local identity that was used by S2A during session
 	// setup and included in the session result.
 	localIdentity *commonpb.Identity
 	// tokenManager manages access tokens for authenticating to S2A.
 	tokenManager tokenmanager.AccessTokenManager
 	// ensureProcessSessionTickets allows users to wait and ensure that all
 	// available session tickets are sent to S2A before a process completes.
 	ensureProcessSessionTickets *sync.WaitGroup
 }
 // sendTicketsToS2A sends the given sessionTickets to the S2A handshaker
 // service. This is done asynchronously and writes to the error logs if an error
 // occurs.
 func (t *ticketSender) sendTicketsToS2A(sessionTickets [][]byte, callComplete chan bool) {
 	// Note that the goroutine is in the function rather than at the caller
 	// because the fake ticket sender used for testing must run synchronously
 	// so that the session tickets can be accessed from it after the tests have
 	// been run.
 	if t.ensureProcessSessionTickets != nil {
 		t.ensureProcessSessionTickets.Add(1)
 	}
 	go func() {
 		if err := func() error {
 			defer func() {
 				if t.ensureProcessSessionTickets != nil {
 					t.ensureProcessSessionTickets.Done()
 				}
 			}()
 			hsConn, err := service.Dial(t.hsAddr)
 			if err != nil {
 				return err
 			}
 			client := s2apb.NewS2AServiceClient(hsConn)
 			ctx, cancel := context.WithTimeout(context.Background(), sessionTimeout)
 			defer cancel()
 			session, err := client.SetUpSession(ctx)
 			if err != nil {
 				return err
 			}
 			defer func() {
 				if err := session.CloseSend(); err != nil {
 					grpclog.Error(err)
 				}
 			}()
 			return t.writeTicketsToStream(session, sessionTickets)
 		}(); err != nil {
 			grpclog.Errorf("failed to send resumption tickets to S2A with identity: %v, %v",
 				t.localIdentity, err)
 		}
 		callComplete <- true
 		close(callComplete)
 	}()
 }
 // writeTicketsToStream writes the given session tickets to the given stream.
 func (t *ticketSender) writeTicketsToStream(stream ticketStream, sessionTickets [][]byte) error {
 	if err := stream.Send(
 		&s2apb.SessionReq{
 			ReqOneof: &s2apb.SessionReq_ResumptionTicket{
 				ResumptionTicket: &s2apb.ResumptionTicketReq{
 					InBytes:       sessionTickets,
 					ConnectionId:  t.connectionID,
 					LocalIdentity: t.localIdentity,
 				},
 			},
 			AuthMechanisms: t.getAuthMechanisms(),
 		},
 	); err != nil {
 		return err
 	}
 	sessionResp, err := stream.Recv()
 	if err != nil {
 		return err
 	}
 	if sessionResp.GetStatus().GetCode() != uint32(codes.OK) {
 		return fmt.Errorf("s2a session ticket response had error status: %v, %v",
 			sessionResp.GetStatus().GetCode(), sessionResp.GetStatus().GetDetails())
 	}
 	return nil
 }
 func (t *ticketSender) getAuthMechanisms() []*s2apb.AuthenticationMechanism {
 	if t.tokenManager == nil {
 		return nil
 	}
 	// First handle the special case when no local identity has been provided
 	// by the application. In this case, an AuthenticationMechanism with no local
 	// identity will be sent.
 	if t.localIdentity == nil {
 		token, err := t.tokenManager.DefaultToken()
 		if err != nil {
 			grpclog.Infof("unable to get token for empty local identity: %v", err)
 			return nil
 		}
 		return []*s2apb.AuthenticationMechanism{
 			{
 				MechanismOneof: &s2apb.AuthenticationMechanism_Token{
 					Token: token,
 				},
 			},
 		}
 	}
 	// Next, handle the case where the application (or the S2A) has specified
 	// a local identity.
 	token, err := t.tokenManager.Token(t.localIdentity)
 	if err != nil {
 		grpclog.Infof("unable to get token for local identity %v: %v", t.localIdentity, err)
 		return nil
 	}
 	return []*s2apb.AuthenticationMechanism{
 		{
 			Identity: t.localIdentity,
 			MechanismOneof: &s2apb.AuthenticationMechanism_Token{
 				Token: token,
 			},
 		},
 	}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/tokenmanager/tokenmanager.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/tokenmanager/tokenmanager.go
@@ -0,0 +1,70 @@
 /*
 *
 * Copyright 2021 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package tokenmanager provides tokens for authenticating to S2A.
 package tokenmanager
 import (
 	"fmt"
 	"os"
 	commonpb "github.com/google/s2a-go/internal/proto/common_go_proto"
 )
 const (
 	s2aAccessTokenEnvironmentVariable = "S2A_ACCESS_TOKEN"
 )
 // AccessTokenManager manages tokens for authenticating to S2A.
 type AccessTokenManager interface {
 	// DefaultToken returns a token that an application with no specified local
 	// identity must use to authenticate to S2A.
 	DefaultToken() (token string, err error)
 	// Token returns a token that an application with local identity equal to
 	// identity must use to authenticate to S2A.
 	Token(identity *commonpb.Identity) (token string, err error)
 }
 type singleTokenAccessTokenManager struct {
 	token string
 }
 // NewSingleTokenAccessTokenManager returns a new AccessTokenManager instance
 // that will always manage the same token.
 //
 // The token to be managed is read from the s2aAccessTokenEnvironmentVariable
 // environment variable. If this environment variable is not set, then this
 // function returns an error.
 func NewSingleTokenAccessTokenManager() (AccessTokenManager, error) {
 	token, variableExists := os.LookupEnv(s2aAccessTokenEnvironmentVariable)
 	if !variableExists {
 		return nil, fmt.Errorf("%s environment variable is not set", s2aAccessTokenEnvironmentVariable)
 	}
 	return &singleTokenAccessTokenManager{token: token}, nil
 }
 // DefaultToken always returns the token managed by the
 // singleTokenAccessTokenManager.
 func (m *singleTokenAccessTokenManager) DefaultToken() (string, error) {
 	return m.token, nil
 }
 // Token always returns the token managed by the singleTokenAccessTokenManager.
 func (m *singleTokenAccessTokenManager) Token(*commonpb.Identity) (string, error) {
 	return m.token, nil
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/README.md
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/README.md
@@ -0,0 +1 @@
 **This directory has the implementation of the S2Av2's gRPC-Go client libraries**
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/certverifier.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/certverifier.go
@@ -0,0 +1,122 @@
 /*
 *
 * Copyright 2022 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package certverifier offloads verifications to S2Av2.
 package certverifier
 import (
 	"crypto/x509"
 	"fmt"
 	"github.com/google/s2a-go/stream"
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/grpclog"
 	s2av2pb "github.com/google/s2a-go/internal/proto/v2/s2a_go_proto"
 )
 // VerifyClientCertificateChain builds a SessionReq, sends it to S2Av2 and
 // receives a SessionResp.
 func VerifyClientCertificateChain(verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, s2AStream stream.S2AStream) func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error {
 	return func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error {
 		// Offload verification to S2Av2.
 		if grpclog.V(1) {
 			grpclog.Infof("Sending request to S2Av2 for client peer cert chain validation.")
 		}
 		if err := s2AStream.Send(&s2av2pb.SessionReq{
 			ReqOneof: &s2av2pb.SessionReq_ValidatePeerCertificateChainReq{
 				ValidatePeerCertificateChainReq: &s2av2pb.ValidatePeerCertificateChainReq{
 					Mode: verificationMode,
 					PeerOneof: &s2av2pb.ValidatePeerCertificateChainReq_ClientPeer_{
 						ClientPeer: &s2av2pb.ValidatePeerCertificateChainReq_ClientPeer{
 							CertificateChain: rawCerts,
 						},
 					},
 				},
 			},
 		}); err != nil {
 			grpclog.Infof("Failed to send request to S2Av2 for client peer cert chain validation.")
 			return err
 		}
 		// Get the response from S2Av2.
 		resp, err := s2AStream.Recv()
 		if err != nil {
 			grpclog.Infof("Failed to receive client peer cert chain validation response from S2Av2.")
 			return err
 		}
 		// Parse the response.
 		if (resp.GetStatus() != nil) && (resp.GetStatus().Code != uint32(codes.OK)) {
 			return fmt.Errorf("failed to offload client cert verification to S2A: %d, %v", resp.GetStatus().Code, resp.GetStatus().Details)
 		}
 		if resp.GetValidatePeerCertificateChainResp().ValidationResult != s2av2pb.ValidatePeerCertificateChainResp_SUCCESS {
 			return fmt.Errorf("client cert verification failed: %v", resp.GetValidatePeerCertificateChainResp().ValidationDetails)
 		}
 		return nil
 	}
 }
 // VerifyServerCertificateChain builds a SessionReq, sends it to S2Av2 and
 // receives a SessionResp.
 func VerifyServerCertificateChain(hostname string, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, s2AStream stream.S2AStream, serverAuthorizationPolicy []byte) func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error {
 	return func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error {
 		// Offload verification to S2Av2.
 		if grpclog.V(1) {
 			grpclog.Infof("Sending request to S2Av2 for server peer cert chain validation.")
 		}
 		if err := s2AStream.Send(&s2av2pb.SessionReq{
 			ReqOneof: &s2av2pb.SessionReq_ValidatePeerCertificateChainReq{
 				ValidatePeerCertificateChainReq: &s2av2pb.ValidatePeerCertificateChainReq{
 					Mode: verificationMode,
 					PeerOneof: &s2av2pb.ValidatePeerCertificateChainReq_ServerPeer_{
 						ServerPeer: &s2av2pb.ValidatePeerCertificateChainReq_ServerPeer{
 							CertificateChain:                   rawCerts,
 							ServerHostname:                     hostname,
 							SerializedUnrestrictedClientPolicy: serverAuthorizationPolicy,
 						},
 					},
 				},
 			},
 		}); err != nil {
 			grpclog.Infof("Failed to send request to S2Av2 for server peer cert chain validation.")
 			return err
 		}
 		// Get the response from S2Av2.
 		resp, err := s2AStream.Recv()
 		if err != nil {
 			grpclog.Infof("Failed to receive server peer cert chain validation response from S2Av2.")
 			return err
 		}
 		// Parse the response.
 		if (resp.GetStatus() != nil) && (resp.GetStatus().Code != uint32(codes.OK)) {
 			return fmt.Errorf("failed to offload server cert verification to S2A: %d, %v", resp.GetStatus().Code, resp.GetStatus().Details)
 		}
 		if resp.GetValidatePeerCertificateChainResp().ValidationResult != s2av2pb.ValidatePeerCertificateChainResp_SUCCESS {
 			return fmt.Errorf("server cert verification failed: %v", resp.GetValidatePeerCertificateChainResp().ValidationDetails)
 		}
 		return nil
 	}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/client_intermediate_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/client_intermediate_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/client_leaf_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/client_leaf_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/client_root_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/client_root_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/server_intermediate_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/server_intermediate_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/server_leaf_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/server_leaf_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/server_root_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/certverifier/testdata/server_root_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/remotesigner.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/remotesigner.go
@@ -0,0 +1,186 @@
 /*
 *
 * Copyright 2022 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package remotesigner offloads private key operations to S2Av2.
 package remotesigner
 import (
 	"crypto"
 	"crypto/rsa"
 	"crypto/x509"
 	"fmt"
 	"io"
 	"github.com/google/s2a-go/stream"
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/grpclog"
 	s2av2pb "github.com/google/s2a-go/internal/proto/v2/s2a_go_proto"
 )
 // remoteSigner implementes the crypto.Signer interface.
 type remoteSigner struct {
 	leafCert  *x509.Certificate
 	s2AStream stream.S2AStream
 }
 // New returns an instance of RemoteSigner, an implementation of the
 // crypto.Signer interface.
 func New(leafCert *x509.Certificate, s2AStream stream.S2AStream) crypto.Signer {
 	return &remoteSigner{leafCert, s2AStream}
 }
 func (s *remoteSigner) Public() crypto.PublicKey {
 	return s.leafCert.PublicKey
 }
 func (s *remoteSigner) Sign(rand io.Reader, digest []byte, opts crypto.SignerOpts) (signature []byte, err error) {
 	signatureAlgorithm, err := getSignatureAlgorithm(opts, s.leafCert)
 	if err != nil {
 		return nil, err
 	}
 	req, err := getSignReq(signatureAlgorithm, digest)
 	if err != nil {
 		return nil, err
 	}
 	if grpclog.V(1) {
 		grpclog.Infof("Sending request to S2Av2 for signing operation.")
 	}
 	if err := s.s2AStream.Send(&s2av2pb.SessionReq{
 		ReqOneof: &s2av2pb.SessionReq_OffloadPrivateKeyOperationReq{
 			OffloadPrivateKeyOperationReq: req,
 		},
 	}); err != nil {
 		grpclog.Infof("Failed to send request to S2Av2 for signing operation.")
 		return nil, err
 	}
 	resp, err := s.s2AStream.Recv()
 	if err != nil {
 		grpclog.Infof("Failed to receive signing operation response from S2Av2.")
 		return nil, err
 	}
 	if (resp.GetStatus() != nil) && (resp.GetStatus().Code != uint32(codes.OK)) {
 		return nil, fmt.Errorf("failed to offload signing with private key to S2A: %d, %v", resp.GetStatus().Code, resp.GetStatus().Details)
 	}
 	return resp.GetOffloadPrivateKeyOperationResp().GetOutBytes(), nil
 }
 // getCert returns the leafCert field in s.
 func (s *remoteSigner) getCert() *x509.Certificate {
 	return s.leafCert
 }
 // getStream returns the s2AStream field in s.
 func (s *remoteSigner) getStream() stream.S2AStream {
 	return s.s2AStream
 }
 func getSignReq(signatureAlgorithm s2av2pb.SignatureAlgorithm, digest []byte) (*s2av2pb.OffloadPrivateKeyOperationReq, error) {
 	if (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PKCS1_SHA256) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ECDSA_SECP256R1_SHA256) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PSS_RSAE_SHA256) {
 		return &s2av2pb.OffloadPrivateKeyOperationReq{
 			Operation:          s2av2pb.OffloadPrivateKeyOperationReq_SIGN,
 			SignatureAlgorithm: signatureAlgorithm,
 			InBytes: &s2av2pb.OffloadPrivateKeyOperationReq_Sha256Digest{
 				Sha256Digest: digest,
 			},
 		}, nil
 	} else if (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PKCS1_SHA384) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ECDSA_SECP384R1_SHA384) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PSS_RSAE_SHA384) {
 		return &s2av2pb.OffloadPrivateKeyOperationReq{
 			Operation:          s2av2pb.OffloadPrivateKeyOperationReq_SIGN,
 			SignatureAlgorithm: signatureAlgorithm,
 			InBytes: &s2av2pb.OffloadPrivateKeyOperationReq_Sha384Digest{
 				Sha384Digest: digest,
 			},
 		}, nil
 	} else if (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PKCS1_SHA512) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ECDSA_SECP521R1_SHA512) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PSS_RSAE_SHA512) || (signatureAlgorithm == s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ED25519) {
 		return &s2av2pb.OffloadPrivateKeyOperationReq{
 			Operation:          s2av2pb.OffloadPrivateKeyOperationReq_SIGN,
 			SignatureAlgorithm: signatureAlgorithm,
 			InBytes: &s2av2pb.OffloadPrivateKeyOperationReq_Sha512Digest{
 				Sha512Digest: digest,
 			},
 		}, nil
 	} else {
 		return nil, fmt.Errorf("unknown signature algorithm: %v", signatureAlgorithm)
 	}
 }
 // getSignatureAlgorithm returns the signature algorithm that S2A must use when
 // performing a signing operation that has been offloaded by an application
 // using the crypto/tls libraries.
 func getSignatureAlgorithm(opts crypto.SignerOpts, leafCert *x509.Certificate) (s2av2pb.SignatureAlgorithm, error) {
 	if opts == nil || leafCert == nil {
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_UNSPECIFIED, fmt.Errorf("unknown signature algorithm")
 	}
 	switch leafCert.PublicKeyAlgorithm {
 	case x509.RSA:
 		if rsaPSSOpts, ok := opts.(*rsa.PSSOptions); ok {
 			return rsaPSSAlgorithm(rsaPSSOpts)
 		}
 		return rsaPPKCS1Algorithm(opts)
 	case x509.ECDSA:
 		return ecdsaAlgorithm(opts)
 	case x509.Ed25519:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ED25519, nil
 	default:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_UNSPECIFIED, fmt.Errorf("unknown signature algorithm: %q", leafCert.PublicKeyAlgorithm)
 	}
 }
 func rsaPSSAlgorithm(opts *rsa.PSSOptions) (s2av2pb.SignatureAlgorithm, error) {
 	switch opts.HashFunc() {
 	case crypto.SHA256:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PSS_RSAE_SHA256, nil
 	case crypto.SHA384:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PSS_RSAE_SHA384, nil
 	case crypto.SHA512:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PSS_RSAE_SHA512, nil
 	default:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_UNSPECIFIED, fmt.Errorf("unknown signature algorithm")
 	}
 }
 func rsaPPKCS1Algorithm(opts crypto.SignerOpts) (s2av2pb.SignatureAlgorithm, error) {
 	switch opts.HashFunc() {
 	case crypto.SHA256:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PKCS1_SHA256, nil
 	case crypto.SHA384:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PKCS1_SHA384, nil
 	case crypto.SHA512:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_RSA_PKCS1_SHA512, nil
 	default:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_UNSPECIFIED, fmt.Errorf("unknown signature algorithm")
 	}
 }
 func ecdsaAlgorithm(opts crypto.SignerOpts) (s2av2pb.SignatureAlgorithm, error) {
 	switch opts.HashFunc() {
 	case crypto.SHA256:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ECDSA_SECP256R1_SHA256, nil
 	case crypto.SHA384:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ECDSA_SECP384R1_SHA384, nil
 	case crypto.SHA512:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_ECDSA_SECP521R1_SHA512, nil
 	default:
 		return s2av2pb.SignatureAlgorithm_S2A_SSL_SIGN_UNSPECIFIED, fmt.Errorf("unknown signature algorithm")
 	}
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/client_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/client_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/client_cert.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/client_cert.pem
@@ -0,0 +1,24 @@
 -----BEGIN CERTIFICATE-----
 MIID8TCCAtmgAwIBAgIUKXNlBRVe6UepjQUijIFPZBd/4qYwDQYJKoZIhvcNAQEL
 BQAwgYcxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTESMBAGA1UEBwwJU3Vubnl2
 YWxlMRAwDgYDVQQKDAdDb21wYW55MREwDwYDVQQLDAhEaXZpc2lvbjEWMBQGA1UE
 AwwNczJhX3Rlc3RfY2VydDEaMBgGCSqGSIb3DQEJARYLeHl6QHh5ei5jb20wHhcN
 MjIwNTMxMjAwMzE1WhcNNDIwNTI2MjAwMzE1WjCBhzELMAkGA1UEBhMCVVMxCzAJ
 BgNVBAgMAkNBMRIwEAYDVQQHDAlTdW5ueXZhbGUxEDAOBgNVBAoMB0NvbXBhbnkx
 ETAPBgNVBAsMCERpdmlzaW9uMRYwFAYDVQQDDA1zMmFfdGVzdF9jZXJ0MRowGAYJ
 KoZIhvcNAQkBFgt4eXpAeHl6LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
 AQoCggEBAOOFuIucH7XXfohGxKd3uR/ihUA/LdduR9I8kfpUEbq5BOt8xZe5/Yn9
 a1ozEHVW6cOAbHbnwAR8tkSgZ/t42QIA2k77HWU1Jh2xiEIsJivo3imm4/kZWuR0
 OqPh7MhzxpR/hvNwpI5mJsAVBWFMa5KtecFZLnyZtwHylrRN1QXzuLrOxuKFufK3
 RKbTABScn5RbZL976H/jgfSeXrbt242NrIoBnVe6fRbekbq2DQ6zFArbQMUgHjHK
 P0UqBgdr1QmHfi9KytFyx9BTP3gXWnWIu+bY7/v7qKJMHFwGETo+dCLWYevJL316
 HnLfhApDMfP8U+Yv/y1N/YvgaSOSlEcCAwEAAaNTMFEwHQYDVR0OBBYEFKhAU4nu
 0h/lrnggbIGvx4ej0WklMB8GA1UdIwQYMBaAFKhAU4nu0h/lrnggbIGvx4ej0Wkl
 MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAE/6NghzQ5fu6yR6
 EHKbj/YMrFdT7aGn5n2sAf7wJ33LIhiFHkpWBsVlm7rDtZtwhe891ZK/P60anlg9
 /P0Ua53tSRVRmCvTnEbXWOVMN4is6MsR7BlmzUxl4AtIn7jbeifEwRL7B4xDYmdA
 QrQnsqoz45dLgS5xK4WDqXATP09Q91xQDuhud/b+A4jrvgwFASmL7rMIZbp4f1JQ
 nlnl/9VoTBQBvJiWkDUtQDMpRLtauddEkv4AGz75p5IspXWD6cOemuh2iQec11xD
 X20rs2WZbAcAiUa3nmy8OKYw435vmpj8gp39WYbX/Yx9TymrFFbVY92wYn+quTco
 pKklVz0=
 -----END CERTIFICATE-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/client_key.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/client_key.pem
@@ -0,0 +1,27 @@
 -----BEGIN RSA PRIVATE KEY-----
 MIIEogIBAAKCAQEA44W4i5wftdd+iEbEp3e5H+KFQD8t125H0jyR+lQRurkE63zF
 l7n9if1rWjMQdVbpw4BsdufABHy2RKBn+3jZAgDaTvsdZTUmHbGIQiwmK+jeKabj
 +Rla5HQ6o+HsyHPGlH+G83CkjmYmwBUFYUxrkq15wVkufJm3AfKWtE3VBfO4us7G
 4oW58rdEptMAFJyflFtkv3vof+OB9J5etu3bjY2sigGdV7p9Ft6RurYNDrMUCttA
 xSAeMco/RSoGB2vVCYd+L0rK0XLH0FM/eBdadYi75tjv+/uookwcXAYROj50ItZh
 68kvfXoect+ECkMx8/xT5i//LU39i+BpI5KURwIDAQABAoIBABgyjo/6iLzUMFbZ
 /+w3pW6orrdIgN2akvTfED9pVYFgUA+jc3hRhY95bkNnjuaL2cy7Cc4Tk65mfRQL
 Y0OxdJLr+EvSFSxAXM9npDA1ddHRsF8JqtFBSxNk8R+g1Yf0GDiO35Fgd3/ViWWA
 VtQkRoSRApP3oiQKTRZd8H04keFR+PvmDk/Lq11l3Kc24A1PevKIPX1oI990ggw9
 9i4uSV+cnuMxmcI9xxJtgwdDFdjr39l2arLOHr4s6LGoV2IOdXHNlv5xRqWUZ0FH
 MDHowkLgwDrdSTnNeaVNkce14Gqx+bd4hNaLCdKXMpedBTEmrut3f3hdV1kKjaKt
 aqRYr8ECgYEA/YDGZY2jvFoHHBywlqmEMFrrCvQGH51m5R1Ntpkzr+Rh3YCmrpvq
 xgwJXING0PUw3dz+xrH5lJICrfNE5Kt3fPu1rAEy+13mYsNowghtUq2Rtu0Hsjjx
 2E3Bf8vEB6RNBMmGkUpTTIAroGF5tpJoRvfnWax+k4pFdrKYFtyZdNcCgYEA5cNv
 EPltvOobjTXlUmtVP3n27KZN2aXexTcagLzRxE9CV4cYySENl3KuOMmccaZpIl6z
 aHk6BT4X+M0LqElNUczrInfVqI+SGAFLGy7W6CJaqSr6cpyFUP/fosKpm6wKGgLq
 udHfpvz5rckhKd8kJxFLvhGOK9yN5qpzih0gfhECgYAJfwRvk3G5wYmYpP58dlcs
 VIuPenqsPoI3PPTHTU/hW+XKnWIhElgmGRdUrto9Q6IT/Y5RtSMLTLjq+Tzwb/fm
 56rziYv2XJsfwgAvnI8z1Kqrto9ePsHYf3krJ1/thVsZPc9bq/QY3ohD1sLvcuaT
 GgBBnLOVJU3a12/ZE2RwOwKBgF0csWMAoj8/5IB6if+3ral2xOGsl7oPZVMo/J2V
 Z7EVqb4M6rd/pKFugTpUQgkwtkSOekhpcGD1hAN5HTNK2YG/+L5UMAsKe9sskwJm
 HgOfAHy0BSDzW3ey6i9skg2bT9Cww+0gJ3Hl7U1HSCBO5LjMYpSZSrNtwzfqdb5Q
 BX3xAoGARZdR28Ej3+/+0+fz47Yu2h4z0EI/EbrudLOWY936jIeAVwHckI3+BuqH
 qR4poj1gfbnMxNuI9UzIXzjEmGewx9kDZ7IYnvloZKqoVQODO5GlKF2ja6IcMNlh
 GCNdD6PSAS6HcmalmWo9sj+1YMkrl+GJikKZqVBHrHNwMGAG67w=
 -----END RSA PRIVATE KEY-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/server_cert.der
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/server_cert.der
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/server_cert.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/server_cert.pem
@@ -0,0 +1,24 @@
 -----BEGIN CERTIFICATE-----
 MIID8TCCAtmgAwIBAgIUKCoDuLtiZXvhsBY2RoDm0ugizJ8wDQYJKoZIhvcNAQEL
 BQAwgYcxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTESMBAGA1UEBwwJU3Vubnl2
 YWxlMRAwDgYDVQQKDAdDb21wYW55MREwDwYDVQQLDAhEaXZpc2lvbjEWMBQGA1UE
 AwwNczJhX3Rlc3RfY2VydDEaMBgGCSqGSIb3DQEJARYLeHl6QHh5ei5jb20wHhcN
 MjIwNTMxMjAwODI1WhcNNDIwNTI2MjAwODI1WjCBhzELMAkGA1UEBhMCVVMxCzAJ
 BgNVBAgMAkNBMRIwEAYDVQQHDAlTdW5ueXZhbGUxEDAOBgNVBAoMB0NvbXBhbnkx
 ETAPBgNVBAsMCERpdmlzaW9uMRYwFAYDVQQDDA1zMmFfdGVzdF9jZXJ0MRowGAYJ
 KoZIhvcNAQkBFgt4eXpAeHl6LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
 AQoCggEBAKK1++PXQ+M3hjYH/v0K4UEYl5ljzpNM1i52eQM+gFooojT87PDSaphT
 fs0PXy/PTAjHBEvPhWpOpmQXfJNYzjwcCvg66hbqkv++/VTZiFLAsHagzkEz+FRJ
 qT5Eq7G5FLyw1izX1uxyPN7tAEWEEg7eqsiaXD3Cq8+TYN9cjirPeF7RZF8yFCYE
 xqvbo+Yc6RL6xw19iXVTfctRgQe581KQuIY5/LXo3dWDEilFdsADAe8XAEcO64es
 Ow0g1UvXLnpXSE151kXBFb3sKH/ZjCecDYMCIMEb4sWLSblkSxJ5sNSmXIG4wtr2
 Qnii7CXZgnVYraQE/Jyh+NMQANuoSdMCAwEAAaNTMFEwHQYDVR0OBBYEFAyQQQuM
 ab+YUQqjK8dVVOoHVFmXMB8GA1UdIwQYMBaAFAyQQQuMab+YUQqjK8dVVOoHVFmX
 MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBADj0vQ6ykWhicoqR
 e6VZMwlEJV7/DSvWWKBd9MUjfKye0A4565ya5lmnzP3DiD3nqGe3miqmLsXKDs+X
 POqlPXTWIamP7D4MJ32XtSLwZB4ru+I+Ao/P/VngPepoRPQoBnzHe7jww0rokqxl
 AZERjlbTUwUAy/BPWPSzSJZ2j0tcs6ZLDNyYzpK4ao8R9/1VmQ92Tcp3feJs1QTg
 odRQc3om/AkWOwsll+oyX0UbJeHkFHiLanUPXbdh+/BkSvZJ8ynL+feSDdaurPe+
 PSfnqLtQft9/neecGRdEaQzzzSFVQUVQzTdK1Q7hA7b55b2HvIa3ktDiks+sJsYN
 Dhm6uZM=
 -----END CERTIFICATE-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/server_key.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/remotesigner/testdata/server_key.pem
@@ -0,0 +1,27 @@
 -----BEGIN RSA PRIVATE KEY-----
 MIIEpAIBAAKCAQEAorX749dD4zeGNgf+/QrhQRiXmWPOk0zWLnZ5Az6AWiiiNPzs
 8NJqmFN+zQ9fL89MCMcES8+Fak6mZBd8k1jOPBwK+DrqFuqS/779VNmIUsCwdqDO
 QTP4VEmpPkSrsbkUvLDWLNfW7HI83u0ARYQSDt6qyJpcPcKrz5Ng31yOKs94XtFk
 XzIUJgTGq9uj5hzpEvrHDX2JdVN9y1GBB7nzUpC4hjn8tejd1YMSKUV2wAMB7xcA
 Rw7rh6w7DSDVS9cueldITXnWRcEVvewof9mMJ5wNgwIgwRvixYtJuWRLEnmw1KZc
 gbjC2vZCeKLsJdmCdVitpAT8nKH40xAA26hJ0wIDAQABAoIBACaNR+lsD8G+XiZf
 LqN1+HkcAo9tfnyYMAdCOtnx7SdviT9Uzi8hK/B7mAeuJLeHPlS2EuaDfPD7QaFl
 jza6S+MiIdc+3kgfvESsVAnOoOY6kZUJ9NSuI6CU82y1iJjLaYZrv9NQMLRFPPb0
 4KOX709mosB1EnXvshW0rbc+jtDFhrm1SxMt+k9TuzmMxjbOeW4LOLXPgU8X1T3Q
 Xy0hMZZtcgBs9wFIo8yCtmOixax9pnFE8rRltgDxTodn9LLdz1FieyntNgDksZ0P
 nt4kV7Mqly7ELaea+Foaj244mKsesic2e3GhAlMRLun/VSunSf7mOCxfpITB8dp1
 drDhOYECgYEA19151dVxRcviuovN6Dar+QszMTnU8pDJ8BjLFjXjP/hNBBwMTHDE
 duMuWk2qnwZqMooI/shxrF/ufmTgS0CFrh2+ANBZu27vWConJNXcyNtdigI4wt50
 L0Y2qcZn2mg67qFXHwoR3QNwrwnPwEjRXA09at9CSRZzcwDQ0ETXhYsCgYEAwPaG
 06QdK8Zyly7TTzZJwxzv9uGiqzodmGtX6NEKjgij2JaCxHpukqZBJoqa0jKeK1cm
 eNVkOvT5ff9TMzarSHQLr3pZen2/oVLb5gaFkbcJt/klv9Fd+ZRilHY3i6QwS6pD
 uMiPOWS4DrLHDRVoVlAZTDjT1RVwwTs+P2NhJdkCgYEAsriXysbxBYyMp05gqEW7
 lHIFbFgpSrs9th+Q5U6wW6JEgYaHWDJ1NslY80MiZI93FWjbkbZ7BvBWESeL3EIL
 a+EMErht0pVCbIhZ6FF4foPAqia0wAJVx14mm+G80kNBp5jE/NnleEsE3KcO7nBb
 hg8gLn+x7bk81JZ0TDrzBYkCgYEAuQKluv47SeF3tSScTfKLPpvcKCWmxe1uutkQ
 7JShPhVioyOMNb39jnYBOWbjkm4d4QgqRuiytSR0oi3QI+Ziy5EYMyNn713qAk9j
 r2TJZDDPDKnBW+zt4YI4EohWMXk3JRUW4XDKggjjwJQA7bZ812TtHHvP/xoThfG7
 eSNb3eECgYBw6ssgCtMrdvQiEmjKVX/9yI38mvC2kSGyzbrQnGUfgqRGomRpeZuD
 B5E3kysA4td5pT5lvcLgSW0TbOz+YbiriXjwOihPIelCvc9gE2eOUI71/byUWPFz
 7u5F/xQ4NaGr5suLF+lBC6h7pSbM4El9lIHQAQadpuEdzHqrw+hs3g==
 -----END RSA PRIVATE KEY-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/s2av2.go
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/s2av2.go
@@ -0,0 +1,354 @@
 /*
 *
 * Copyright 2022 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     https://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 */
 // Package v2 provides the S2Av2 transport credentials used by a gRPC
 // application.
 package v2
 import (
 	"context"
 	"crypto/tls"
 	"errors"
 	"net"
 	"os"
 	"time"
 	"github.com/golang/protobuf/proto"
 	"github.com/google/s2a-go/fallback"
 	"github.com/google/s2a-go/internal/handshaker/service"
 	"github.com/google/s2a-go/internal/tokenmanager"
 	"github.com/google/s2a-go/internal/v2/tlsconfigstore"
 	"github.com/google/s2a-go/stream"
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/credentials"
 	"google.golang.org/grpc/grpclog"
 	commonpbv1 "github.com/google/s2a-go/internal/proto/common_go_proto"
 	s2av2pb "github.com/google/s2a-go/internal/proto/v2/s2a_go_proto"
 )
 const (
 	s2aSecurityProtocol = "tls"
 	defaultS2ATimeout   = 3 * time.Second
 )
 // An environment variable, which sets the timeout enforced on the connection to the S2A service for handshake.
 const s2aTimeoutEnv = "S2A_TIMEOUT"
 type s2av2TransportCreds struct {
 	info         *credentials.ProtocolInfo
 	isClient     bool
 	serverName   string
 	s2av2Address string
 	tokenManager *tokenmanager.AccessTokenManager
 	// localIdentity should only be used by the client.
 	localIdentity *commonpbv1.Identity
 	// localIdentities should only be used by the server.
 	localIdentities           []*commonpbv1.Identity
 	verificationMode          s2av2pb.ValidatePeerCertificateChainReq_VerificationMode
 	fallbackClientHandshake   fallback.ClientHandshake
 	getS2AStream              func(ctx context.Context, s2av2Address string) (stream.S2AStream, error)
 	serverAuthorizationPolicy []byte
 }
 // NewClientCreds returns a client-side transport credentials object that uses
 // the S2Av2 to establish a secure connection with a server.
 func NewClientCreds(s2av2Address string, localIdentity *commonpbv1.Identity, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, fallbackClientHandshakeFunc fallback.ClientHandshake, getS2AStream func(ctx context.Context, s2av2Address string) (stream.S2AStream, error), serverAuthorizationPolicy []byte) (credentials.TransportCredentials, error) {
 	// Create an AccessTokenManager instance to use to authenticate to S2Av2.
 	accessTokenManager, err := tokenmanager.NewSingleTokenAccessTokenManager()
 	creds := &s2av2TransportCreds{
 		info: &credentials.ProtocolInfo{
 			SecurityProtocol: s2aSecurityProtocol,
 		},
 		isClient:                  true,
 		serverName:                "",
 		s2av2Address:              s2av2Address,
 		localIdentity:             localIdentity,
 		verificationMode:          verificationMode,
 		fallbackClientHandshake:   fallbackClientHandshakeFunc,
 		getS2AStream:              getS2AStream,
 		serverAuthorizationPolicy: serverAuthorizationPolicy,
 	}
 	if err != nil {
 		creds.tokenManager = nil
 	} else {
 		creds.tokenManager = &accessTokenManager
 	}
 	if grpclog.V(1) {
 		grpclog.Info("Created client S2Av2 transport credentials.")
 	}
 	return creds, nil
 }
 // NewServerCreds returns a server-side transport credentials object that uses
 // the S2Av2 to establish a secure connection with a client.
 func NewServerCreds(s2av2Address string, localIdentities []*commonpbv1.Identity, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, getS2AStream func(ctx context.Context, s2av2Address string) (stream.S2AStream, error)) (credentials.TransportCredentials, error) {
 	// Create an AccessTokenManager instance to use to authenticate to S2Av2.
 	accessTokenManager, err := tokenmanager.NewSingleTokenAccessTokenManager()
 	creds := &s2av2TransportCreds{
 		info: &credentials.ProtocolInfo{
 			SecurityProtocol: s2aSecurityProtocol,
 		},
 		isClient:         false,
 		s2av2Address:     s2av2Address,
 		localIdentities:  localIdentities,
 		verificationMode: verificationMode,
 		getS2AStream:     getS2AStream,
 	}
 	if err != nil {
 		creds.tokenManager = nil
 	} else {
 		creds.tokenManager = &accessTokenManager
 	}
 	if grpclog.V(1) {
 		grpclog.Info("Created server S2Av2 transport credentials.")
 	}
 	return creds, nil
 }
 // ClientHandshake performs a client-side mTLS handshake using the S2Av2.
 func (c *s2av2TransportCreds) ClientHandshake(ctx context.Context, serverAuthority string, rawConn net.Conn) (net.Conn, credentials.AuthInfo, error) {
 	if !c.isClient {
 		return nil, nil, errors.New("client handshake called using server transport credentials")
 	}
 	// Remove the port from serverAuthority.
 	serverName := removeServerNamePort(serverAuthority)
 	timeoutCtx, cancel := context.WithTimeout(ctx, GetS2ATimeout())
 	defer cancel()
 	s2AStream, err := createStream(timeoutCtx, c.s2av2Address, c.getS2AStream)
 	if err != nil {
 		grpclog.Infof("Failed to connect to S2Av2: %v", err)
 		if c.fallbackClientHandshake != nil {
 			return c.fallbackClientHandshake(ctx, serverAuthority, rawConn, err)
 		}
 		return nil, nil, err
 	}
 	defer s2AStream.CloseSend()
 	if grpclog.V(1) {
 		grpclog.Infof("Connected to S2Av2.")
 	}
 	var config *tls.Config
 	var tokenManager tokenmanager.AccessTokenManager
 	if c.tokenManager == nil {
 		tokenManager = nil
 	} else {
 		tokenManager = *c.tokenManager
 	}
 	if c.serverName == "" {
 		config, err = tlsconfigstore.GetTLSConfigurationForClient(serverName, s2AStream, tokenManager, c.localIdentity, c.verificationMode, c.serverAuthorizationPolicy)
 		if err != nil {
 			grpclog.Info("Failed to get client TLS config from S2Av2: %v", err)
 			if c.fallbackClientHandshake != nil {
 				return c.fallbackClientHandshake(ctx, serverAuthority, rawConn, err)
 			}
 			return nil, nil, err
 		}
 	} else {
 		config, err = tlsconfigstore.GetTLSConfigurationForClient(c.serverName, s2AStream, tokenManager, c.localIdentity, c.verificationMode, c.serverAuthorizationPolicy)
 		if err != nil {
 			grpclog.Info("Failed to get client TLS config from S2Av2: %v", err)
 			if c.fallbackClientHandshake != nil {
 				return c.fallbackClientHandshake(ctx, serverAuthority, rawConn, err)
 			}
 			return nil, nil, err
 		}
 	}
 	if grpclog.V(1) {
 		grpclog.Infof("Got client TLS config from S2Av2.")
 	}
 	creds := credentials.NewTLS(config)
 	conn, authInfo, err := creds.ClientHandshake(ctx, serverName, rawConn)
 	if err != nil {
 		grpclog.Infof("Failed to do client handshake using S2Av2: %v", err)
 		if c.fallbackClientHandshake != nil {
 			return c.fallbackClientHandshake(ctx, serverAuthority, rawConn, err)
 		}
 		return nil, nil, err
 	}
 	grpclog.Infof("Successfully done client handshake using S2Av2 to: %s", serverName)
 	return conn, authInfo, err
 }
 // ServerHandshake performs a server-side mTLS handshake using the S2Av2.
 func (c *s2av2TransportCreds) ServerHandshake(rawConn net.Conn) (net.Conn, credentials.AuthInfo, error) {
 	if c.isClient {
 		return nil, nil, errors.New("server handshake called using client transport credentials")
 	}
 	ctx, cancel := context.WithTimeout(context.Background(), GetS2ATimeout())
 	defer cancel()
 	s2AStream, err := createStream(ctx, c.s2av2Address, c.getS2AStream)
 	if err != nil {
 		grpclog.Infof("Failed to connect to S2Av2: %v", err)
 		return nil, nil, err
 	}
 	defer s2AStream.CloseSend()
 	if grpclog.V(1) {
 		grpclog.Infof("Connected to S2Av2.")
 	}
 	var tokenManager tokenmanager.AccessTokenManager
 	if c.tokenManager == nil {
 		tokenManager = nil
 	} else {
 		tokenManager = *c.tokenManager
 	}
 	config, err := tlsconfigstore.GetTLSConfigurationForServer(s2AStream, tokenManager, c.localIdentities, c.verificationMode)
 	if err != nil {
 		grpclog.Infof("Failed to get server TLS config from S2Av2: %v", err)
 		return nil, nil, err
 	}
 	if grpclog.V(1) {
 		grpclog.Infof("Got server TLS config from S2Av2.")
 	}
 	creds := credentials.NewTLS(config)
 	return creds.ServerHandshake(rawConn)
 }
 // Info returns protocol info of s2av2TransportCreds.
 func (c *s2av2TransportCreds) Info() credentials.ProtocolInfo {
 	return *c.info
 }
 // Clone makes a deep copy of s2av2TransportCreds.
 func (c *s2av2TransportCreds) Clone() credentials.TransportCredentials {
 	info := *c.info
 	serverName := c.serverName
 	fallbackClientHandshake := c.fallbackClientHandshake
 	s2av2Address := c.s2av2Address
 	var tokenManager tokenmanager.AccessTokenManager
 	if c.tokenManager == nil {
 		tokenManager = nil
 	} else {
 		tokenManager = *c.tokenManager
 	}
 	verificationMode := c.verificationMode
 	var localIdentity *commonpbv1.Identity
 	if c.localIdentity != nil {
 		localIdentity = proto.Clone(c.localIdentity).(*commonpbv1.Identity)
 	}
 	var localIdentities []*commonpbv1.Identity
 	if c.localIdentities != nil {
 		localIdentities = make([]*commonpbv1.Identity, len(c.localIdentities))
 		for i, localIdentity := range c.localIdentities {
 			localIdentities[i] = proto.Clone(localIdentity).(*commonpbv1.Identity)
 		}
 	}
 	creds := &s2av2TransportCreds{
 		info:                    &info,
 		isClient:                c.isClient,
 		serverName:              serverName,
 		fallbackClientHandshake: fallbackClientHandshake,
 		s2av2Address:            s2av2Address,
 		localIdentity:           localIdentity,
 		localIdentities:         localIdentities,
 		verificationMode:        verificationMode,
 	}
 	if c.tokenManager == nil {
 		creds.tokenManager = nil
 	} else {
 		creds.tokenManager = &tokenManager
 	}
 	return creds
 }
 // NewClientTLSConfig returns a tls.Config instance that uses S2Av2 to establish a TLS connection as
 // a client. The tls.Config MUST only be used to establish a single TLS connection.
 func NewClientTLSConfig(
 	ctx context.Context,
 	s2av2Address string,
 	tokenManager tokenmanager.AccessTokenManager,
 	verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode,
 	serverName string,
 	serverAuthorizationPolicy []byte) (*tls.Config, error) {
 	s2AStream, err := createStream(ctx, s2av2Address, nil)
 	if err != nil {
 		grpclog.Infof("Failed to connect to S2Av2: %v", err)
 		return nil, err
 	}
 	return tlsconfigstore.GetTLSConfigurationForClient(removeServerNamePort(serverName), s2AStream, tokenManager, nil, verificationMode, serverAuthorizationPolicy)
 }
 // OverrideServerName sets the ServerName in the s2av2TransportCreds protocol
 // info. The ServerName MUST be a hostname.
 func (c *s2av2TransportCreds) OverrideServerName(serverNameOverride string) error {
 	serverName := removeServerNamePort(serverNameOverride)
 	c.info.ServerName = serverName
 	c.serverName = serverName
 	return nil
 }
 // Remove the trailing port from server name.
 func removeServerNamePort(serverName string) string {
 	name, _, err := net.SplitHostPort(serverName)
 	if err != nil {
 		name = serverName
 	}
 	return name
 }
 type s2AGrpcStream struct {
 	stream s2av2pb.S2AService_SetUpSessionClient
 }
 func (x s2AGrpcStream) Send(m *s2av2pb.SessionReq) error {
 	return x.stream.Send(m)
 }
 func (x s2AGrpcStream) Recv() (*s2av2pb.SessionResp, error) {
 	return x.stream.Recv()
 }
 func (x s2AGrpcStream) CloseSend() error {
 	return x.stream.CloseSend()
 }
 func createStream(ctx context.Context, s2av2Address string, getS2AStream func(ctx context.Context, s2av2Address string) (stream.S2AStream, error)) (stream.S2AStream, error) {
 	if getS2AStream != nil {
 		return getS2AStream(ctx, s2av2Address)
 	}
 	// TODO(rmehta19): Consider whether to close the connection to S2Av2.
 	conn, err := service.Dial(s2av2Address)
 	if err != nil {
 		return nil, err
 	}
 	client := s2av2pb.NewS2AServiceClient(conn)
 	gRPCStream, err := client.SetUpSession(ctx, []grpc.CallOption{}...)
 	if err != nil {
 		return nil, err
 	}
 	return &s2AGrpcStream{
 		stream: gRPCStream,
 	}, nil
 }
 // GetS2ATimeout returns the timeout enforced on the connection to the S2A service for handshake.
 func GetS2ATimeout() time.Duration {
 	timeout, err := time.ParseDuration(os.Getenv(s2aTimeoutEnv))
 	if err != nil {
 		return defaultS2ATimeout
 	}
 	return timeout
 }
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/client_cert.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/client_cert.pem
@@ -0,0 +1,24 @@
 -----BEGIN CERTIFICATE-----
 MIID8TCCAtmgAwIBAgIUKXNlBRVe6UepjQUijIFPZBd/4qYwDQYJKoZIhvcNAQEL
 BQAwgYcxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTESMBAGA1UEBwwJU3Vubnl2
 YWxlMRAwDgYDVQQKDAdDb21wYW55MREwDwYDVQQLDAhEaXZpc2lvbjEWMBQGA1UE
 AwwNczJhX3Rlc3RfY2VydDEaMBgGCSqGSIb3DQEJARYLeHl6QHh5ei5jb20wHhcN
 MjIwNTMxMjAwMzE1WhcNNDIwNTI2MjAwMzE1WjCBhzELMAkGA1UEBhMCVVMxCzAJ
 BgNVBAgMAkNBMRIwEAYDVQQHDAlTdW5ueXZhbGUxEDAOBgNVBAoMB0NvbXBhbnkx
 ETAPBgNVBAsMCERpdmlzaW9uMRYwFAYDVQQDDA1zMmFfdGVzdF9jZXJ0MRowGAYJ
 KoZIhvcNAQkBFgt4eXpAeHl6LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
 AQoCggEBAOOFuIucH7XXfohGxKd3uR/ihUA/LdduR9I8kfpUEbq5BOt8xZe5/Yn9
 a1ozEHVW6cOAbHbnwAR8tkSgZ/t42QIA2k77HWU1Jh2xiEIsJivo3imm4/kZWuR0
 OqPh7MhzxpR/hvNwpI5mJsAVBWFMa5KtecFZLnyZtwHylrRN1QXzuLrOxuKFufK3
 RKbTABScn5RbZL976H/jgfSeXrbt242NrIoBnVe6fRbekbq2DQ6zFArbQMUgHjHK
 P0UqBgdr1QmHfi9KytFyx9BTP3gXWnWIu+bY7/v7qKJMHFwGETo+dCLWYevJL316
 HnLfhApDMfP8U+Yv/y1N/YvgaSOSlEcCAwEAAaNTMFEwHQYDVR0OBBYEFKhAU4nu
 0h/lrnggbIGvx4ej0WklMB8GA1UdIwQYMBaAFKhAU4nu0h/lrnggbIGvx4ej0Wkl
 MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAE/6NghzQ5fu6yR6
 EHKbj/YMrFdT7aGn5n2sAf7wJ33LIhiFHkpWBsVlm7rDtZtwhe891ZK/P60anlg9
 /P0Ua53tSRVRmCvTnEbXWOVMN4is6MsR7BlmzUxl4AtIn7jbeifEwRL7B4xDYmdA
 QrQnsqoz45dLgS5xK4WDqXATP09Q91xQDuhud/b+A4jrvgwFASmL7rMIZbp4f1JQ
 nlnl/9VoTBQBvJiWkDUtQDMpRLtauddEkv4AGz75p5IspXWD6cOemuh2iQec11xD
 X20rs2WZbAcAiUa3nmy8OKYw435vmpj8gp39WYbX/Yx9TymrFFbVY92wYn+quTco
 pKklVz0=
 -----END CERTIFICATE-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/client_key.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/client_key.pem
@@ -0,0 +1,27 @@
 -----BEGIN RSA PRIVATE KEY-----
 MIIEogIBAAKCAQEA44W4i5wftdd+iEbEp3e5H+KFQD8t125H0jyR+lQRurkE63zF
 l7n9if1rWjMQdVbpw4BsdufABHy2RKBn+3jZAgDaTvsdZTUmHbGIQiwmK+jeKabj
 +Rla5HQ6o+HsyHPGlH+G83CkjmYmwBUFYUxrkq15wVkufJm3AfKWtE3VBfO4us7G
 4oW58rdEptMAFJyflFtkv3vof+OB9J5etu3bjY2sigGdV7p9Ft6RurYNDrMUCttA
 xSAeMco/RSoGB2vVCYd+L0rK0XLH0FM/eBdadYi75tjv+/uookwcXAYROj50ItZh
 68kvfXoect+ECkMx8/xT5i//LU39i+BpI5KURwIDAQABAoIBABgyjo/6iLzUMFbZ
 /+w3pW6orrdIgN2akvTfED9pVYFgUA+jc3hRhY95bkNnjuaL2cy7Cc4Tk65mfRQL
 Y0OxdJLr+EvSFSxAXM9npDA1ddHRsF8JqtFBSxNk8R+g1Yf0GDiO35Fgd3/ViWWA
 VtQkRoSRApP3oiQKTRZd8H04keFR+PvmDk/Lq11l3Kc24A1PevKIPX1oI990ggw9
 9i4uSV+cnuMxmcI9xxJtgwdDFdjr39l2arLOHr4s6LGoV2IOdXHNlv5xRqWUZ0FH
 MDHowkLgwDrdSTnNeaVNkce14Gqx+bd4hNaLCdKXMpedBTEmrut3f3hdV1kKjaKt
 aqRYr8ECgYEA/YDGZY2jvFoHHBywlqmEMFrrCvQGH51m5R1Ntpkzr+Rh3YCmrpvq
 xgwJXING0PUw3dz+xrH5lJICrfNE5Kt3fPu1rAEy+13mYsNowghtUq2Rtu0Hsjjx
 2E3Bf8vEB6RNBMmGkUpTTIAroGF5tpJoRvfnWax+k4pFdrKYFtyZdNcCgYEA5cNv
 EPltvOobjTXlUmtVP3n27KZN2aXexTcagLzRxE9CV4cYySENl3KuOMmccaZpIl6z
 aHk6BT4X+M0LqElNUczrInfVqI+SGAFLGy7W6CJaqSr6cpyFUP/fosKpm6wKGgLq
 udHfpvz5rckhKd8kJxFLvhGOK9yN5qpzih0gfhECgYAJfwRvk3G5wYmYpP58dlcs
 VIuPenqsPoI3PPTHTU/hW+XKnWIhElgmGRdUrto9Q6IT/Y5RtSMLTLjq+Tzwb/fm
 56rziYv2XJsfwgAvnI8z1Kqrto9ePsHYf3krJ1/thVsZPc9bq/QY3ohD1sLvcuaT
 GgBBnLOVJU3a12/ZE2RwOwKBgF0csWMAoj8/5IB6if+3ral2xOGsl7oPZVMo/J2V
 Z7EVqb4M6rd/pKFugTpUQgkwtkSOekhpcGD1hAN5HTNK2YG/+L5UMAsKe9sskwJm
 HgOfAHy0BSDzW3ey6i9skg2bT9Cww+0gJ3Hl7U1HSCBO5LjMYpSZSrNtwzfqdb5Q
 BX3xAoGARZdR28Ej3+/+0+fz47Yu2h4z0EI/EbrudLOWY936jIeAVwHckI3+BuqH
 qR4poj1gfbnMxNuI9UzIXzjEmGewx9kDZ7IYnvloZKqoVQODO5GlKF2ja6IcMNlh
 GCNdD6PSAS6HcmalmWo9sj+1YMkrl+GJikKZqVBHrHNwMGAG67w=
 -----END RSA PRIVATE KEY-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/server_cert.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/server_cert.pem
@@ -0,0 +1,24 @@
 -----BEGIN CERTIFICATE-----
 MIID8TCCAtmgAwIBAgIUKCoDuLtiZXvhsBY2RoDm0ugizJ8wDQYJKoZIhvcNAQEL
 BQAwgYcxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTESMBAGA1UEBwwJU3Vubnl2
 YWxlMRAwDgYDVQQKDAdDb21wYW55MREwDwYDVQQLDAhEaXZpc2lvbjEWMBQGA1UE
 AwwNczJhX3Rlc3RfY2VydDEaMBgGCSqGSIb3DQEJARYLeHl6QHh5ei5jb20wHhcN
 MjIwNTMxMjAwODI1WhcNNDIwNTI2MjAwODI1WjCBhzELMAkGA1UEBhMCVVMxCzAJ
 BgNVBAgMAkNBMRIwEAYDVQQHDAlTdW5ueXZhbGUxEDAOBgNVBAoMB0NvbXBhbnkx
 ETAPBgNVBAsMCERpdmlzaW9uMRYwFAYDVQQDDA1zMmFfdGVzdF9jZXJ0MRowGAYJ
 KoZIhvcNAQkBFgt4eXpAeHl6LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
 AQoCggEBAKK1++PXQ+M3hjYH/v0K4UEYl5ljzpNM1i52eQM+gFooojT87PDSaphT
 fs0PXy/PTAjHBEvPhWpOpmQXfJNYzjwcCvg66hbqkv++/VTZiFLAsHagzkEz+FRJ
 qT5Eq7G5FLyw1izX1uxyPN7tAEWEEg7eqsiaXD3Cq8+TYN9cjirPeF7RZF8yFCYE
 xqvbo+Yc6RL6xw19iXVTfctRgQe581KQuIY5/LXo3dWDEilFdsADAe8XAEcO64es
 Ow0g1UvXLnpXSE151kXBFb3sKH/ZjCecDYMCIMEb4sWLSblkSxJ5sNSmXIG4wtr2
 Qnii7CXZgnVYraQE/Jyh+NMQANuoSdMCAwEAAaNTMFEwHQYDVR0OBBYEFAyQQQuM
 ab+YUQqjK8dVVOoHVFmXMB8GA1UdIwQYMBaAFAyQQQuMab+YUQqjK8dVVOoHVFmX
 MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBADj0vQ6ykWhicoqR
 e6VZMwlEJV7/DSvWWKBd9MUjfKye0A4565ya5lmnzP3DiD3nqGe3miqmLsXKDs+X
 POqlPXTWIamP7D4MJ32XtSLwZB4ru+I+Ao/P/VngPepoRPQoBnzHe7jww0rokqxl
 AZERjlbTUwUAy/BPWPSzSJZ2j0tcs6ZLDNyYzpK4ao8R9/1VmQ92Tcp3feJs1QTg
 odRQc3om/AkWOwsll+oyX0UbJeHkFHiLanUPXbdh+/BkSvZJ8ynL+feSDdaurPe+
 PSfnqLtQft9/neecGRdEaQzzzSFVQUVQzTdK1Q7hA7b55b2HvIa3ktDiks+sJsYN
 Dhm6uZM=
 -----END CERTIFICATE-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/server_key.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/testdata/server_key.pem
@@ -0,0 +1,27 @@
 -----BEGIN RSA PRIVATE KEY-----
 MIIEpAIBAAKCAQEAorX749dD4zeGNgf+/QrhQRiXmWPOk0zWLnZ5Az6AWiiiNPzs
 8NJqmFN+zQ9fL89MCMcES8+Fak6mZBd8k1jOPBwK+DrqFuqS/779VNmIUsCwdqDO
 QTP4VEmpPkSrsbkUvLDWLNfW7HI83u0ARYQSDt6qyJpcPcKrz5Ng31yOKs94XtFk
 XzIUJgTGq9uj5hzpEvrHDX2JdVN9y1GBB7nzUpC4hjn8tejd1YMSKUV2wAMB7xcA
 Rw7rh6w7DSDVS9cueldITXnWRcEVvewof9mMJ5wNgwIgwRvixYtJuWRLEnmw1KZc
 gbjC2vZCeKLsJdmCdVitpAT8nKH40xAA26hJ0wIDAQABAoIBACaNR+lsD8G+XiZf
 LqN1+HkcAo9tfnyYMAdCOtnx7SdviT9Uzi8hK/B7mAeuJLeHPlS2EuaDfPD7QaFl
 jza6S+MiIdc+3kgfvESsVAnOoOY6kZUJ9NSuI6CU82y1iJjLaYZrv9NQMLRFPPb0
 4KOX709mosB1EnXvshW0rbc+jtDFhrm1SxMt+k9TuzmMxjbOeW4LOLXPgU8X1T3Q
 Xy0hMZZtcgBs9wFIo8yCtmOixax9pnFE8rRltgDxTodn9LLdz1FieyntNgDksZ0P
 nt4kV7Mqly7ELaea+Foaj244mKsesic2e3GhAlMRLun/VSunSf7mOCxfpITB8dp1
 drDhOYECgYEA19151dVxRcviuovN6Dar+QszMTnU8pDJ8BjLFjXjP/hNBBwMTHDE
 duMuWk2qnwZqMooI/shxrF/ufmTgS0CFrh2+ANBZu27vWConJNXcyNtdigI4wt50
 L0Y2qcZn2mg67qFXHwoR3QNwrwnPwEjRXA09at9CSRZzcwDQ0ETXhYsCgYEAwPaG
 06QdK8Zyly7TTzZJwxzv9uGiqzodmGtX6NEKjgij2JaCxHpukqZBJoqa0jKeK1cm
 eNVkOvT5ff9TMzarSHQLr3pZen2/oVLb5gaFkbcJt/klv9Fd+ZRilHY3i6QwS6pD
 uMiPOWS4DrLHDRVoVlAZTDjT1RVwwTs+P2NhJdkCgYEAsriXysbxBYyMp05gqEW7
 lHIFbFgpSrs9th+Q5U6wW6JEgYaHWDJ1NslY80MiZI93FWjbkbZ7BvBWESeL3EIL
 a+EMErht0pVCbIhZ6FF4foPAqia0wAJVx14mm+G80kNBp5jE/NnleEsE3KcO7nBb
 hg8gLn+x7bk81JZ0TDrzBYkCgYEAuQKluv47SeF3tSScTfKLPpvcKCWmxe1uutkQ
 7JShPhVioyOMNb39jnYBOWbjkm4d4QgqRuiytSR0oi3QI+Ziy5EYMyNn713qAk9j
 r2TJZDDPDKnBW+zt4YI4EohWMXk3JRUW4XDKggjjwJQA7bZ812TtHHvP/xoThfG7
 eSNb3eECgYBw6ssgCtMrdvQiEmjKVX/9yI38mvC2kSGyzbrQnGUfgqRGomRpeZuD
 B5E3kysA4td5pT5lvcLgSW0TbOz+YbiriXjwOihPIelCvc9gE2eOUI71/byUWPFz
 7u5F/xQ4NaGr5suLF+lBC6h7pSbM4El9lIHQAQadpuEdzHqrw+hs3g==
 -----END RSA PRIVATE KEY-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/tlsconfigstore/testdata/client_cert.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/tlsconfigstore/testdata/client_cert.pem
@@ -0,0 +1,24 @@
 -----BEGIN CERTIFICATE-----
 MIID8TCCAtmgAwIBAgIUKXNlBRVe6UepjQUijIFPZBd/4qYwDQYJKoZIhvcNAQEL
 BQAwgYcxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTESMBAGA1UEBwwJU3Vubnl2
 YWxlMRAwDgYDVQQKDAdDb21wYW55MREwDwYDVQQLDAhEaXZpc2lvbjEWMBQGA1UE
 AwwNczJhX3Rlc3RfY2VydDEaMBgGCSqGSIb3DQEJARYLeHl6QHh5ei5jb20wHhcN
 MjIwNTMxMjAwMzE1WhcNNDIwNTI2MjAwMzE1WjCBhzELMAkGA1UEBhMCVVMxCzAJ
 BgNVBAgMAkNBMRIwEAYDVQQHDAlTdW5ueXZhbGUxEDAOBgNVBAoMB0NvbXBhbnkx
 ETAPBgNVBAsMCERpdmlzaW9uMRYwFAYDVQQDDA1zMmFfdGVzdF9jZXJ0MRowGAYJ
 KoZIhvcNAQkBFgt4eXpAeHl6LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
 AQoCggEBAOOFuIucH7XXfohGxKd3uR/ihUA/LdduR9I8kfpUEbq5BOt8xZe5/Yn9
 a1ozEHVW6cOAbHbnwAR8tkSgZ/t42QIA2k77HWU1Jh2xiEIsJivo3imm4/kZWuR0
 OqPh7MhzxpR/hvNwpI5mJsAVBWFMa5KtecFZLnyZtwHylrRN1QXzuLrOxuKFufK3
 RKbTABScn5RbZL976H/jgfSeXrbt242NrIoBnVe6fRbekbq2DQ6zFArbQMUgHjHK
 P0UqBgdr1QmHfi9KytFyx9BTP3gXWnWIu+bY7/v7qKJMHFwGETo+dCLWYevJL316
 HnLfhApDMfP8U+Yv/y1N/YvgaSOSlEcCAwEAAaNTMFEwHQYDVR0OBBYEFKhAU4nu
 0h/lrnggbIGvx4ej0WklMB8GA1UdIwQYMBaAFKhAU4nu0h/lrnggbIGvx4ej0Wkl
 MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAE/6NghzQ5fu6yR6
 EHKbj/YMrFdT7aGn5n2sAf7wJ33LIhiFHkpWBsVlm7rDtZtwhe891ZK/P60anlg9
 /P0Ua53tSRVRmCvTnEbXWOVMN4is6MsR7BlmzUxl4AtIn7jbeifEwRL7B4xDYmdA
 QrQnsqoz45dLgS5xK4WDqXATP09Q91xQDuhud/b+A4jrvgwFASmL7rMIZbp4f1JQ
 nlnl/9VoTBQBvJiWkDUtQDMpRLtauddEkv4AGz75p5IspXWD6cOemuh2iQec11xD
 X20rs2WZbAcAiUa3nmy8OKYw435vmpj8gp39WYbX/Yx9TymrFFbVY92wYn+quTco
 pKklVz0=
 -----END CERTIFICATE-----
--- a/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/tlsconfigstore/testdata/client_key.pem
+++ b/.ibm/tools/tests-results/vendor/github.com/google/s2a-go/internal/v2/tlsconfigstore/testdata/client_key.pem
@@ -0,0 +1,27 @@
 -----BEGIN RSA PRIVATE KEY-----
 MIIEogIBAAKCAQEA44W4i5wftdd+iEbEp3e5H+KFQD8t125H0jyR+lQRurkE63zF
 l7n9if1rWjMQdVbpw4BsdufABHy2RKBn+3jZAgDaTvsdZTUmHbGIQiwmK+jeKabj
 +Rla5HQ6o+HsyHPGlH+G83CkjmYmwBUFYUxrkq15wVkufJm3AfKWtE3VBfO4us7G
 4oW58rdEptMAFJyflFtkv3vof+OB9J5etu3bjY2sigGdV7p9Ft6RurYNDrMUCttA
 xSAeMco/RSoGB2vVCYd+L0rK0XLH0FM/eBdadYi75tjv+/uookwcXAYROj50ItZh
 68kvfXoect+ECkMx8/xT5i//LU39i+BpI5KURwIDAQABAoIBABgyjo/6iLzUMFbZ
 /+w3pW6orrdIgN2akvTfED9pVYFgUA+jc3hRhY95bkNnjuaL2cy7Cc4Tk65mfRQL
 Y0OxdJLr+EvSFSxAXM9npDA1ddHRsF8JqtFBSxNk8R+g1Yf0GDiO35Fgd3/ViWWA
 VtQkRoSRApP3oiQKTRZd8H04keFR+PvmDk/Lq11l3Kc24A1PevKIPX1oI990ggw9
 9i4uSV+cnuMxmcI9xxJtgwdDFdjr39l2arLOHr4s6LGoV2IOdXHNlv5xRqWUZ0FH
 MDHowkLgwDrdSTnNeaVNkce14Gqx+bd4hNaLCdKXMpedBTEmrut3f3hdV1kKjaKt
 aqRYr8ECgYEA/YDGZY2jvFoHHBywlqmEMFrrCvQGH51m5R1Ntpkzr+Rh3YCmrpvq
 xgwJXING0PUw3dz+xrH5lJICrfNE5Kt3fPu1rAEy+13mYsNowghtUq2Rtu0Hsjjx
 2E3Bf8vEB6RNBMmGkUpTTIAroGF5tpJoRvfnWax+k4pFdrKYFtyZdNcCgYEA5cNv
 EPltvOobjTXlUmtVP3n27KZN2aXexTcagLzRxE9CV4cYySENl3KuOMmccaZpIl6z
 aHk6BT4X+M0LqElNUczrInfVqI+SGAFLGy7W6CJaqSr6cpyFUP/fosKpm6wKGgLq
 udHfpvz5rckhKd8kJxFLvhGOK9yN5qpzih0gfhECgYAJfwRvk3G5wYmYpP58dlcs
 VIuPenqsPoI3PPTHTU/hW+XKnWIhElgmGRdUrto9Q6IT/Y5RtSMLTLjq+Tzwb/fm
 56rziYv2XJsfwgAvnI8z1Kqrto9ePsHYf3krJ1/thVsZPc9bq/QY3ohD1sLvcuaT
 GgBBnLOVJU3a12/ZE2RwOwKBgF0csWMAoj8/5IB6if+3ral2xOGsl7oPZVMo/J2V
 Z7EVqb4M6rd/pKFugTpUQgkwtkSOekhpcGD1hAN5HTNK2YG/+L5UMAsKe9sskwJm
 HgOfAHy0BSDzW3ey6i9skg2bT9Cww+0gJ3Hl7U1HSCBO5LjMYpSZSrNtwzfqdb5Q
 BX3xAoGARZdR28Ej3+/+0+fz47Yu2h4z0EI/EbrudLOWY936jIeAVwHckI3+BuqH
 qR4poj1gfbnMxNuI9UzIXzjEmGewx9kDZ7IYnvloZKqoVQODO5GlKF2ja6IcMNlh
 GCNdD6PSAS6HcmalmWo9sj+1YMkrl+GJikKZqVBHrHNwMGAG67w=
 -----END RSA PRIVATE KEY-----
--- a/Show More
+++ b/Show More
		`@@ -0,0 +1 @@`
							`This directory has the implementation of the S2Av2's gRPC-Go client libraries`