示例#1
0
    def test_determine_audit_results_secret_not_found(
        self,
        mock_get_raw_secret_value,
        mock_get_git_remotes,
        mock_get_git_sha,
    ):
        mock_get_raw_secret_value.side_effect = audit.SecretNotFoundOnSpecifiedLineError(
            1)
        baseline = self.get_audited_baseline(plugins_used={}, is_secret=True)

        whole_plaintext_line = 'a plaintext line'

        with mock.patch.object(
                audit,
                '_get_file_line',
                return_value=whole_plaintext_line,
                autospec=True,
        ):
            display_results = audit.determine_audit_results(
                baseline, '.secrets.baseline')

        assert display_results['stats']['signal'] == '100.00%'

        hex_high_results = display_results['plugins']['HexHighEntropyString'][
            'results']
        assert len(hex_high_results['true-positives']['mocked_file']) == 1
        assert hex_high_results['true-positives']['mocked_file'][0][
            'line'] == whole_plaintext_line
        assert hex_high_results['true-positives']['mocked_file'][0][
            'plaintext'] is None
示例#2
0
 def mock_get_raw_secret_value(self, secret_value, secret_lineno, should_find_secret):
     with mock.patch.object(audit, 'get_raw_secret_value', autospec=True) as m:
         if should_find_secret:
             m.return_value = secret_value
         else:
             m.side_effect = audit.SecretNotFoundOnSpecifiedLineError(secret_lineno)
         yield m
示例#3
0
    def test_determine_audit_results_secret_not_found(
        self,
        mock_get_raw_secret_value,
        mock_get_git_remotes,
        mock_get_git_sha,
    ):
        mock_get_raw_secret_value.side_effect = audit.SecretNotFoundOnSpecifiedLineError(1)
        baseline = self.get_audited_baseline(plugins_used={}, is_secret=True)

        whole_plaintext_line = 'a plaintext line'

        with mock.patch.object(
            audit,
            '_get_file_line',
            return_value=whole_plaintext_line,
            autospec=True,
        ):
            results = audit.determine_audit_results(baseline, '.secrets.baseline')

        assert whole_plaintext_line in \
            results['results']['HexHighEntropyString']['results']['positive']