def test_pyproject_toml_without_deps(tmpdir):
pyproject_file = tmpdir.join('pyproject.toml')
pyproject_file.write("""[tool.poetry]
name = 'Thing'
version = '1.2.3'
description = 'Dummy'
authors = ['Lucas Cimon']""")
assert safety([str(pyproject_file)]) == 0
def test_pyproject_toml_with_ko_dev_deps(tmpdir):
pyproject_file = tmpdir.join('pyproject.toml')
pyproject_file.write("""[tool.poetry]
name = 'Thing'
version = '1.2.3'
description = 'Dummy'
authors = ['Lucas Cimon']
[tool.poetry.dev-dependencies]
jsonpickle = '1.4.1'""")
assert safety([str(pyproject_file)]) == EXIT_CODE_VULNERABILITIES_FOUND
def test_poetry_requirements(
tmpdir
): # cf. https://github.com/Lucas-C/pre-commit-hooks-safety/issues/5
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('''colored==1.4.2 \
--hash=sha256:056fac09d9e39b34296e7618897ed1b8c274f98423770c2980d829fd670955ed
colored-traceback==0.3.0 \
--hash=sha256:6da7ce2b1da869f6bb54c927b415b95727c4bb6d9a84c4615ea77d9872911b05 \
--hash=sha256:f76c21a4b4c72e9e09763d4d1b234afc469c88693152a763ad6786467ef9e79f
configobj==5.0.6 \
--hash=sha256:a2f5650770e1c87fb335af19a9b7eb73fc05ccf22144eb68db7d00cd2bcb0902
future==0.18.2 \
--hash=sha256:b1bead90b70cf6ec3f0710ae53a525360fa360d306a86583adc6bf83a4db537d
pygments==2.5.2 \
--hash=sha256:2a3fe295e54a20164a9df49c75fa58526d3be48e14aceba6d6b1e8ac0bfd6f1b \
--hash=sha256:98c8aa5a9f778fcd1026a17361ddaf7330d1b7c62ae97c3bb0ae73e0b9b6b0fe
six==1.13.0 \
--hash=sha256:1f1b7d42e254082a9db6279deae68afb421ceba6158efa6131de7b3003ee93fd \
--hash=sha256:30f610279e8b2578cab6db20741130331735c781b56053c59c4076da27f06b66'''
)
assert safety([str(requirements_file)]) == 0
def test_bare_url_to_tarball_dependency(tmpdir):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write(
'https://files.pythonhosted.org/packages/6a/11/114c67b0e3c25c19497fde977538339530d8ffa050d6ec9349793f933faa/lockfile-0.10.2.tar.gz'
)
assert safety([str(requirements_file)]) == 0
def test_varargs_escape(tmpdir, ignore_arg, status):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety([ignore_arg, "--", str(requirements_file)]) == status
def test_ignore_ok(tmpdir, args):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety([str(requirements_file)] + args) == 0
def test_full_report(tmpdir, report, capfd):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety(report +
[str(requirements_file)]) == EXIT_CODE_VULNERABILITIES_FOUND
assert "urllib3 library" in capfd.readouterr().out
def test_disable_telemetry(tmpdir):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety(["--disable-telemetry",
str(requirements_file)]) == EXIT_CODE_VULNERABILITIES_FOUND
def test_short_report(tmpdir):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety(["--short-report",
str(requirements_file)]) == EXIT_CODE_VULNERABILITIES_FOUND
def test_non_ok_dependency(tmpdir):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety([str(requirements_file)]) == EXIT_CODE_VULNERABILITIES_FOUND
def test_dev_requirements():
assert safety(['dev-requirements.txt']) == 0
def test_non_ok_dependency(tmpdir):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.18')
assert safety([str(requirements_file)]) == 1
def test_full_report(tmpdir, report, capfd):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety(report + [str(requirements_file)]) == -1
assert "The urllib3 library" in capfd.readouterr().out
def test_short_report(tmpdir, capfd):
requirements_file = tmpdir.join('requirements.txt')
requirements_file.write('urllib3==1.24.1')
assert safety(["--short-report", str(requirements_file)]) == -1
assert "The urllib3 library" not in capfd.readouterr().out
