def test_number_of_new_false_positives(self):
# Add a couple of false positives to database as new issues,
# and check that the they're counted properly
issue = {'scenario_id': '1',
'timestamp': datetime.datetime.utcnow(),
'test_runner_host': 'localhost',
'url': 'url',
'severity': 'severity',
'issuetype': 'issuetype',
'issuename': 'issuename',
'issuedetail': 'issuedetail',
'confidence': 'confidence',
'host': 'host',
'port': 'port',
'protocol': 'protocol',
'messages': 'messagejson'}
# Add one, expect count to be 1
dbtools.add_false_positive(self.context, issue)
self.assertEqual(dbtools.number_of_new_in_database(self.context),
1, "After adding one, expect one finding in database")
# Add a second one, expect count to be 2
dbtools.add_false_positive(self.context, issue)
self.assertEqual(dbtools.number_of_new_in_database(self.context),
2, "After adding two, expect two findings in db")
def test_number_of_new_false_positives(self):
# Add a couple of false positives to database as new issues,
# and check that the they're counted properly
issue = {
'scenario_id': '1',
'timestamp': datetime.datetime.utcnow(),
'test_runner_host': 'localhost',
'url': 'url',
'severity': 'severity',
'issuetype': 'issuetype',
'issuename': 'issuename',
'issuedetail': 'issuedetail',
'confidence': 'confidence',
'host': 'host',
'port': 'port',
'protocol': 'protocol',
'messages': 'messagejson'
}
# Add one, expect count to be 1
dbtools.add_false_positive(self.context, issue)
self.assertEqual(dbtools.number_of_new_in_database(self.context), 1,
"After adding one, expect one finding in database")
# Add a second one, expect count to be 2
dbtools.add_false_positive(self.context, issue)
self.assertEqual(dbtools.number_of_new_in_database(self.context), 2,
"After adding two, expect two findings in db")
def step_impl(context):
"""Check whether the findings reported by Burp have already been found earlier"""
scanissues = context.results
# Go through each issue, and add issues that aren't in the database
# into the database. If we've found new issues, assert False.
new_items = 0
for issue in scanissues:
issue['scenario_id'] = context.scenario_id
if scandb.known_false_positive(context, issue) is False:
new_items += 1
scandb.add_false_positive(context, issue)
unprocessed_items = scandb.number_of_new_in_database(context)
if unprocessed_items > 0:
assert False, "Unprocessed findings in database. %s new issue(s), total %s issue(s)." % (new_items, unprocessed_items)
assert True
def step_impl(context):
"""Check whether the findings reported by Burp have already been found earlier"""
scanissues = context.results
# Go through each issue, and add issues that aren't in the database
# into the database. If we've found new issues, assert False.
new_items = 0
for issue in scanissues:
issue['scenario_id'] = context.scenario_id
if scandb.known_false_positive(context, issue) is False:
new_items += 1
scandb.add_false_positive(context, issue)
unprocessed_items = scandb.number_of_new_in_database(context)
if unprocessed_items > 0:
assert False, "Unprocessed findings in database. %s new issue(s), total %s issue(s)." % (
new_items, unprocessed_items)
assert True