gosec/output/formatter_test.go

package output

import (
	. "github.com/onsi/ginkgo"
	. "github.com/onsi/gomega"

	"github.com/securego/gosec"
)

var _ = Describe("Formatter", func() {
	BeforeEach(func() {
	})
	Context("when converting to Sonarqube issues", func() {
		It("it should parse the report info", func() {
			data := &reportInfo{
				Errors: map[string][]gosec.Error{},
				Issues: []*gosec.Issue{
					&gosec.Issue{
						Severity:   2,
						Confidence: 0,
						RuleID:     "test",
						What:       "test",
						File:       "/home/src/project/test.go",
						Code:       "",
						Line:       "1-2",
					},
				},
				Stats: &gosec.Metrics{
					NumFiles: 0,
					NumLines: 0,
					NumNosec: 0,
					NumFound: 0,
				},
			}
			want := sonarIssues{
				SonarIssues: []sonarIssue{
					{
						EngineID: "gosec",
						RuleID:   "test",
						PrimaryLocation: location{
							Message:  "test",
							FilePath: "test.go",
							TextRange: textRange{
								StartLine: 1,
								EndLine:   2,
							},
						},
						Type:          "VULNERABILITY",
						Severity:      "BLOCKER",
						EffortMinutes: SonarqubeEffortMinutes,
					},
				},
			}

			rootPath := "/home/src/project"

			issues, err := convertToSonarIssues(rootPath, data)
			Expect(err).ShouldNot(HaveOccurred())
			Expect(issues).To(Equal(want))
		})

		It("it should parse the report info with files in subfolders", func() {
			data := &reportInfo{
				Errors: map[string][]gosec.Error{},
				Issues: []*gosec.Issue{
					&gosec.Issue{
						Severity:   2,
						Confidence: 0,
						RuleID:     "test",
						What:       "test",
						File:       "/home/src/project/subfolder/test.go",
						Code:       "",
						Line:       "1-2",
					},
				},
				Stats: &gosec.Metrics{
					NumFiles: 0,
					NumLines: 0,
					NumNosec: 0,
					NumFound: 0,
				},
			}
			want := sonarIssues{
				SonarIssues: []sonarIssue{
					{
						EngineID: "gosec",
						RuleID:   "test",
						PrimaryLocation: location{
							Message:  "test",
							FilePath: "subfolder/test.go",
							TextRange: textRange{
								StartLine: 1,
								EndLine:   2,
							},
						},
						Type:          "VULNERABILITY",
						Severity:      "BLOCKER",
						EffortMinutes: SonarqubeEffortMinutes,
					},
				},
			}

			rootPath := "/home/src/project"

			issues, err := convertToSonarIssues(rootPath, data)
			Expect(err).ShouldNot(HaveOccurred())
			Expect(issues).To(Equal(want))
		})
	})
})
Fix the file path in the Sonarqube report Add some test to validate the Sonarqube formatter. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2019-06-24 14:10:51 +02:00			`package output`

			`import (`
			`. "github.com/onsi/ginkgo"`
			`. "github.com/onsi/gomega"`

			`"github.com/securego/gosec"`
			`)`

			`var _ = Describe("Formatter", func() {`
			`BeforeEach(func() {`
			`})`
			`Context("when converting to Sonarqube issues", func() {`
			`It("it should parse the report info", func() {`
			`data := &reportInfo{`
			`Errors: map[string][]gosec.Error{},`
			`Issues: []*gosec.Issue{`
			`&gosec.Issue{`
			`Severity: 2,`
			`Confidence: 0,`
			`RuleID: "test",`
			`What: "test",`
			`File: "/home/src/project/test.go",`
			`Code: "",`
			`Line: "1-2",`
			`},`
			`},`
			`Stats: &gosec.Metrics{`
			`NumFiles: 0,`
			`NumLines: 0,`
			`NumNosec: 0,`
			`NumFound: 0,`
			`},`
			`}`
			`want := sonarIssues{`
			`SonarIssues: []sonarIssue{`
			`{`
			`EngineID: "gosec",`
			`RuleID: "test",`
			`PrimaryLocation: location{`
			`Message: "test",`
			`FilePath: "test.go",`
			`TextRange: textRange{`
			`StartLine: 1,`
			`EndLine: 2,`
			`},`
			`},`
			`Type: "VULNERABILITY",`
			`Severity: "BLOCKER",`
			`EffortMinutes: SonarqubeEffortMinutes,`
			`},`
			`},`
			`}`

			`rootPath := "/home/src/project"`

			`issues, err := convertToSonarIssues(rootPath, data)`
			`Expect(err).ShouldNot(HaveOccurred())`
			`Expect(issues).To(Equal(want))`
			`})`

			`It("it should parse the report info with files in subfolders", func() {`
			`data := &reportInfo{`
			`Errors: map[string][]gosec.Error{},`
			`Issues: []*gosec.Issue{`
			`&gosec.Issue{`
			`Severity: 2,`
			`Confidence: 0,`
			`RuleID: "test",`
			`What: "test",`
			`File: "/home/src/project/subfolder/test.go",`
			`Code: "",`
			`Line: "1-2",`
			`},`
			`},`
			`Stats: &gosec.Metrics{`
			`NumFiles: 0,`
			`NumLines: 0,`
			`NumNosec: 0,`
			`NumFound: 0,`
			`},`
			`}`
			`want := sonarIssues{`
			`SonarIssues: []sonarIssue{`
			`{`
			`EngineID: "gosec",`
			`RuleID: "test",`
			`PrimaryLocation: location{`
			`Message: "test",`
			`FilePath: "subfolder/test.go",`
			`TextRange: textRange{`
			`StartLine: 1,`
			`EndLine: 2,`
			`},`
			`},`
			`Type: "VULNERABILITY",`
			`Severity: "BLOCKER",`
			`EffortMinutes: SonarqubeEffortMinutes,`
			`},`
			`},`
			`}`

			`rootPath := "/home/src/project"`

			`issues, err := convertToSonarIssues(rootPath, data)`
			`Expect(err).ShouldNot(HaveOccurred())`
			`Expect(issues).To(Equal(want))`
			`})`
			`})`
			`})`