More tests.

resources/validations/test/ssp.xspec

@@ -129,6 +129,25 @@
                     <x:expect-assert id="extraneous-response-description" label="it generates a warning." role="warning"/>
                 </x:scenario>
             </x:scenario>
+            <x:scenario label="implemented-requirements have explanatory statements">
+                <x:scenario label="and the remarks are defined directly in the statement">
+                    <x:context>
+                        <system-security-plan xmlns="http://csrc.nist.gov/ns/oscal/1.0">
+                            <system-characteristics>
+                                <security-sensitivity-level>low</security-sensitivity-level>
+                            </system-characteristics>
+                            <control-implementation>
+                                <implemented-requirement control-id="ac-2" uuid="4325e92d-e888-42ff-9d49-f5231129c4d3">                                ">
+                                    <statement statement-id="ac-2_stmt.a" uuid="a8419fd8-2666-4851-8191-94d054c9ef1c">                                    ">
+                                        <remarks><p>This shouldn not be here.</p></remarks>
+                                    </statement>
+                                </implemented-requirement>
+                            </control-implementation>
+                        </system-security-plan>
+                    </x:context>
+                    <x:expect-assert id="extraneous-response-remarks" label="it generates a warning." role="warning"/>
+                </x:scenario>
+            </x:scenario>
         </x:scenario>
         <x:scenario label="when the most important core controls are defined">
             <x:scenario label="and these controls do not have implemented requirements">