Sha256: 3b52fd891f918821ac2842f6db70258dfcb32ff1e4919e6b2921d93a3faa0120
Contents?: true
Size: 1.95 KB
Versions: 1
Compression:
Stored size: 1.95 KB
Contents
require 'spec_helper'
describe "The security check for gem unsafe dependency, when versionEndIncluding is set, should" do
before(:all) do
f = "./spec/lib/kb/dependency_check_with_version_end_including.yml"
@check = YAML.load_file(f, permitted_classes: [Dawn::Kb::UnsafeDependencyCheck,
Dawn::Kb::BasicCheck,
Dawn::Kb::ComboCheck,
Dawn::Kb::DependencyCheck,
Dawn::Kb::DeprecationCheck,
Dawn::Kb::OperatingSystemCheck,
Dawn::Kb::PatternMatchCheck,
Dawn::Kb::RubygemCheck,
Dawn::Kb::RubyVersionCheck,
Dawn::Kb::VersionCheck,
Date,
Symbol])
@check.debug=true
end
it "fires if vulnerable 0.5.0 version is detected" do
@check.dependencies = [{:name=>"acme-gem", :version=>'0.5.0'}]
expect(@check.vuln?).to eq(true)
end
it "fires if vulnerable 1.3.2 version is found" do
@check.dependencies = [{:name=>"acme-gem", :version=>'1.3.2'}]
expect(@check.vuln?).to eq(true)
end
it "fires if vulnerable 2.7.2.1 version is found" do
@check.dependencies = [{:name=>"acme-gem", :version=>'2.7.2.1'}]
expect(@check.vuln?).to eq(true)
end
it "fires if vulnerable 2.7.2.2 version is found" do
@check.dependencies = [{:name=>"acme-gem", :version=>'2.7.2.2'}]
expect(@check.vuln?).to eq(true)
end
it "doesn't fire if not vulnerable 3.0 version is found" do
@check.dependencies = [{:name=>"acme-gem", :version=>'3.0'}]
expect(@check.vuln?).to eq(false)
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| dawnscanner-2.2.0 | spec/lib/kb/codesake_unsafe_dependency_check_version_end_including_spec.rb |