def test_AC02(self):
db = Datastore("DB")
db.isShared = True
ThreatObj = Threat(
next(item for item in threats_json if item["SID"] == "AC02"))
self.assertTrue(ThreatObj.apply(db))
def test_AC02(self):
db = Datastore("DB")
db.isShared = True
threat = threats["AC02"]
self.assertTrue(threat.apply(db))
server = Server("Apps Server")
server.inBoundary = apps_vpc
server.isHardened = True
server.hasAccessControl = True
server.encodesOutput = True
db = Datastore("MySQL DB")
db.isHardened = True
db.hasAccessControl = True
db.inBoundary = apps_vpc
db.inBoundary = rds_boundary
db.isSQL = True
db.inScope = True
db.onAWS = True
db.isShared = True
db.storesSensitiveData = False
redis = Datastore("Redis")
redis.isHardened = True
redis.inBoundary = apps_vpc
redis.inBoundary = cache_boundary
redis.isSQL = False
redis.inScope = True
db.onAWS = True
db.isShared = False
db.storesSensitiveData = False
third_party = Element("3rd party services")
third_party.inBoundary = internet
