git/prek
1
0
Fork 0
mirror of https://github.com/j178/prek.git synced 2026-04-25 02:11:36 +02:00
Code Activity
Files
2cedd6e15daa4e651f00a846a41c39ed8d801ae2
prek/tests/languages/docker_image.rs
T
Aravindan M 62438bc9dc Fix Docker image and Go version test issues for portability (#692) 
* Update docker_image.rs

* Update golang.rs

* Update tests/languages/golang.rs

* Fix clippy

---------

Co-authored-by: Jo <10510431+j178@users.noreply.github.com>
2025-09-09 22:36:05 +08:00

82 lines
2.3 KiB
Rust
Raw Blame History

use anyhow::Result;
use assert_cmd::Command;
use assert_fs::fixture::{FileWriteStr, PathChild};
use crate::common::{TestContext, cmd_snapshot};
#[test]
fn docker_image() -> Result<()> {
let context = TestContext::new();
context.init_project();
let cwd = context.work_dir();
// Test suite from https://github.com/super-linter/super-linter/tree/main/test/linters/gitleaks/bad
cwd.child("gitleaks_bad_01.txt")
.write_str(indoc::indoc! {r"
aws_access_key_id = AROA47DSWDEZA3RQASWB
aws_secret_access_key = wQwdsZDiWg4UA5ngO0OSI2TkM4kkYxF6d2S1aYWM
"})?;
// Use fully qualified image name for Podman/Docker compatibility
Command::new("docker")
.args(["pull", "docker.io/zricethezav/gitleaks:v8.21.2"])
.assert()
.success();
context.write_pre_commit_config(indoc::indoc! {r"
repos:
- repo: local
hooks:
- id: gitleaks-docker
name: Detect hardcoded secrets
language: docker_image
entry: docker.io/zricethezav/gitleaks:v8.21.2 git --pre-commit --redact --staged --verbose
pass_filenames: false
"});
context.git_add(".");
let filters = context
.filters()
.into_iter()
.chain([(r"\d\d?:\d\d(AM|PM)", "[TIME]")])
.collect::<Vec<_>>();
cmd_snapshot!(filters, context.run(), @r#"
success: false
exit_code: 1
----- stdout -----
Detect hardcoded secrets.................................................Failed
- hook id: gitleaks-docker
- exit code: 1
Finding: aws_access_key_id = REDACTED
Secret: REDACTED
RuleID: generic-api-key
Entropy: 3.521928
File: gitleaks_bad_01.txt
Line: 1
Fingerprint: gitleaks_bad_01.txt:generic-api-key:1
Finding: aws_secret_access_key = REDACTED
Secret: REDACTED
RuleID: generic-api-key
Entropy: 4.703056
File: gitleaks_bad_01.txt
Line: 2
Fingerprint: gitleaks_bad_01.txt:generic-api-key:2
│╲
│ ○
○ ░
░ gitleaks
[TIME] INF 1 commits scanned.
[TIME] INF scan completed in [TIME]
[TIME] WRN leaks found: 2
----- stderr -----
"#);
Ok(())
}
View Git Blame Copy Permalink