sap-jenkins-library/test/groovy/SnykExecuteTest.groovy

import static org.hamcrest.Matchers.hasEntry
import static org.hamcrest.Matchers.hasItem
import static org.hamcrest.Matchers.is

import org.junit.Before
import org.junit.Rule
import org.junit.Test
import org.junit.rules.RuleChain
import org.junit.rules.ExpectedException
import static org.junit.Assert.assertThat

import util.BasePiperTest
import util.JenkinsDockerExecuteRule
import util.JenkinsReadYamlRule
import util.JenkinsShellCallRule
import util.JenkinsStepRule
import util.JenkinsLoggingRule
import util.Rules

class SnykExecuteTest extends BasePiperTest {
    private ExpectedException thrown = ExpectedException.none()
    private JenkinsDockerExecuteRule dockerExecuteRule = new JenkinsDockerExecuteRule(this)
    private JenkinsShellCallRule shellRule = new JenkinsShellCallRule(this)
    private JenkinsLoggingRule loggingRule = new JenkinsLoggingRule(this)
    private JenkinsStepRule stepRule = new JenkinsStepRule(this)

    @Rule
    public RuleChain ruleChain = Rules
        .getCommonRules(this)
        .around(new JenkinsReadYamlRule(this))
        .around(thrown)
        .around(dockerExecuteRule)
        .around(shellRule)
        .around(loggingRule)
        .around(stepRule)

    def withCredentialsParameters
    List archiveStepPatterns

    @Before
    void init() {
        archiveStepPatterns = []
        nullScript.commonPipelineEnvironment.configuration = [
            steps: [
                snykExecute: [
                    snykCredentialsId: 'myPassword'
                ]
            ]
        ]
        helper.registerAllowedMethod('string', [Map], { m -> withCredentialsParameters = m
            return m })
        helper.registerAllowedMethod('withCredentials', [List, Closure], { l, c ->
            binding.setProperty('token', 'test_snyk')
            try {
                c()
            } finally {
                binding.setProperty('token', null)
            }
        })
        helper.registerAllowedMethod("findFiles", [Map.class], { map ->
            if (map.glob == "**${File.separator}pom.xml")
                return [new File("some-service${File.separator}pom.xml"), new File("some-other-service${File.separator}pom.xml")].toArray()
            if (map.glob == "**${File.separator}package.json")
                return [new File("some-ui${File.separator}package.json"), new File("some-service-broker${File.separator}package.json")].toArray()
            return [].toArray()
        })
        helper.registerAllowedMethod('archiveArtifacts', [String], {
            s -> archiveStepPatterns.push(s.toString())
        })
    }

    @Test
    void testUnsupportedScanType() throws Exception {
        thrown.expect(hudson.AbortException)
        thrown.expectMessage('[ERROR][snykExecute] ScanType \'seagul\' not supported!')

        stepRule.step.snykExecute(
            script: nullScript,
            juStabUtils: utils,
            scanType: 'seagul'
        )
    }

    @Test
    void testDefaultsSettings() throws Exception {
        stepRule.step.snykExecute(
            script: nullScript,
            juStabUtils: utils
        )

        assertThat(withCredentialsParameters.credentialsId, is('myPassword'))
        assertThat(dockerExecuteRule.dockerParams, hasEntry('dockerImage', 'node:8-stretch'))
        assertThat(dockerExecuteRule.dockerParams.stashContent, hasItem('buildDescriptor'))
        assertThat(dockerExecuteRule.dockerParams.stashContent, hasItem('opensourceConfiguration'))
    }

    @Test
    void testScanTypeNpm() throws Exception {
        stepRule.step.snykExecute(
            script: nullScript,
            juStabUtils: utils
        )
        // asserts
        assertThat(shellRule.shell, hasItem('npm install snyk --global --quiet'))
        assertThat(shellRule.shell, hasItem('cd \'./\' && npm install --quiet'))
        assertThat(shellRule.shell, hasItem('cd \'./\' && snyk monitor && snyk test'))
    }

    @Test
    void testScanTypeNpmWithOrgAndJsonReport() throws Exception {
        stepRule.step.snykExecute(
            script: nullScript,
            juStabUtils: utils,
            snykOrg: 'myOrg',
            toJson: true
        )
        // asserts
        assertThat(shellRule.shell, hasItem("cd './' && snyk monitor --org=myOrg && snyk test --json > snyk.json".toString()))
        assertThat(archiveStepPatterns, hasItem('snyk.json'))
    }

    @Test
    void testScanTypeMta() throws Exception {
        stepRule.step.snykExecute(
            script: nullScript,
            juStabUtils: utils,
            scanType: 'mta'
        )
        // asserts
        assertThat(shellRule.shell, hasItem("cd 'some-ui${File.separator}' && snyk monitor && snyk test".toString()))
        assertThat(shellRule.shell, hasItem("cd 'some-service-broker${File.separator}' && snyk monitor && snyk test".toString()))
    }
}
add step tests 2018-06-26 15:08:46 +02:00			`import static org.hamcrest.Matchers.hasEntry`
			`import static org.hamcrest.Matchers.hasItem`
			`import static org.hamcrest.Matchers.is`

			`import org.junit.Before`
			`import org.junit.Rule`
			`import org.junit.Test`
			`import org.junit.rules.RuleChain`
			`import org.junit.rules.ExpectedException`
			`import static org.junit.Assert.assertThat`

			`import util.BasePiperTest`
			`import util.JenkinsDockerExecuteRule`
Remove read yaml rule from common rules read yaml rule is a very frequently used rule. But having the rule in the common rules means we cannot register text or files to that rule, which makes it less handy to work with yaml files in the tests. 2018-08-31 10:22:43 +02:00			`import util.JenkinsReadYamlRule`
add step tests 2018-06-26 15:08:46 +02:00			`import util.JenkinsShellCallRule`
			`import util.JenkinsStepRule`
			`import util.JenkinsLoggingRule`
			`import util.Rules`

			`class SnykExecuteTest extends BasePiperTest {`
			`private ExpectedException thrown = ExpectedException.none()`
Better readable rule names: dockerExecuteRule 2019-01-22 10:26:08 +02:00			`private JenkinsDockerExecuteRule dockerExecuteRule = new JenkinsDockerExecuteRule(this)`
Better readable rule names: shellRule 2019-01-22 10:19:28 +02:00			`private JenkinsShellCallRule shellRule = new JenkinsShellCallRule(this)`
Better readable rule names: loggingRule 2019-01-22 10:22:15 +02:00			`private JenkinsLoggingRule loggingRule = new JenkinsLoggingRule(this)`
Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`private JenkinsStepRule stepRule = new JenkinsStepRule(this)`
add step tests 2018-06-26 15:08:46 +02:00
			`@Rule`
			`public RuleChain ruleChain = Rules`
			`.getCommonRules(this)`
Remove read yaml rule from common rules read yaml rule is a very frequently used rule. But having the rule in the common rules means we cannot register text or files to that rule, which makes it less handy to work with yaml files in the tests. 2018-08-31 10:22:43 +02:00			`.around(new JenkinsReadYamlRule(this))`
add step tests 2018-06-26 15:08:46 +02:00			`.around(thrown)`
Better readable rule names: dockerExecuteRule 2019-01-22 10:26:08 +02:00			`.around(dockerExecuteRule)`
Better readable rule names: shellRule 2019-01-22 10:19:28 +02:00			`.around(shellRule)`
Better readable rule names: loggingRule 2019-01-22 10:22:15 +02:00			`.around(loggingRule)`
Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`.around(stepRule)`
add step tests 2018-06-26 15:08:46 +02:00
			`def withCredentialsParameters`
			`List archiveStepPatterns`

			`@Before`
			`void init() {`
			`archiveStepPatterns = []`
			`nullScript.commonPipelineEnvironment.configuration = [`
			`steps: [`
			`snykExecute: [`
			`snykCredentialsId: 'myPassword'`
			`]`
			`]`
			`]`
			`helper.registerAllowedMethod('string', [Map], { m -> withCredentialsParameters = m`
			`return m })`
			`helper.registerAllowedMethod('withCredentials', [List, Closure], { l, c ->`
			`binding.setProperty('token', 'test_snyk')`
			`try {`
			`c()`
			`} finally {`
			`binding.setProperty('token', null)`
			`}`
			`})`
			`helper.registerAllowedMethod("findFiles", [Map.class], { map ->`
fix test issue on Windows 2018-06-27 14:56:50 +02:00			`if (map.glob == "**${File.separator}pom.xml")`
			`return [new File("some-service${File.separator}pom.xml"), new File("some-other-service${File.separator}pom.xml")].toArray()`
			`if (map.glob == "**${File.separator}package.json")`
			`return [new File("some-ui${File.separator}package.json"), new File("some-service-broker${File.separator}package.json")].toArray()`
add step tests 2018-06-26 15:08:46 +02:00			`return [].toArray()`
			`})`
			`helper.registerAllowedMethod('archiveArtifacts', [String], {`
			`s -> archiveStepPatterns.push(s.toString())`
			`})`
			`}`

			`@Test`
			`void testUnsupportedScanType() throws Exception {`
			`thrown.expect(hudson.AbortException)`
			`thrown.expectMessage('[ERROR][snykExecute] ScanType \'seagul\' not supported!')`

Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`stepRule.step.snykExecute(`
add step tests 2018-06-26 15:08:46 +02:00			`script: nullScript,`
			`juStabUtils: utils,`
			`scanType: 'seagul'`
			`)`
			`}`

			`@Test`
			`void testDefaultsSettings() throws Exception {`
Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`stepRule.step.snykExecute(`
add step tests 2018-06-26 15:08:46 +02:00			`script: nullScript,`
			`juStabUtils: utils`
			`)`

			`assertThat(withCredentialsParameters.credentialsId, is('myPassword'))`
Better readable rule names: dockerExecuteRule 2019-01-22 10:26:08 +02:00			`assertThat(dockerExecuteRule.dockerParams, hasEntry('dockerImage', 'node:8-stretch'))`
			`assertThat(dockerExecuteRule.dockerParams.stashContent, hasItem('buildDescriptor'))`
			`assertThat(dockerExecuteRule.dockerParams.stashContent, hasItem('opensourceConfiguration'))`
add step tests 2018-06-26 15:08:46 +02:00			`}`

			`@Test`
			`void testScanTypeNpm() throws Exception {`
Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`stepRule.step.snykExecute(`
add step tests 2018-06-26 15:08:46 +02:00			`script: nullScript,`
			`juStabUtils: utils`
			`)`
			`// asserts`
Better readable rule names: shellRule 2019-01-22 10:19:28 +02:00			`assertThat(shellRule.shell, hasItem('npm install snyk --global --quiet'))`
			`assertThat(shellRule.shell, hasItem('cd \'./\' && npm install --quiet'))`
			`assertThat(shellRule.shell, hasItem('cd \'./\' && snyk monitor && snyk test'))`
add step tests 2018-06-26 15:08:46 +02:00			`}`

			`@Test`
			`void testScanTypeNpmWithOrgAndJsonReport() throws Exception {`
Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`stepRule.step.snykExecute(`
add step tests 2018-06-26 15:08:46 +02:00			`script: nullScript,`
			`juStabUtils: utils,`
			`snykOrg: 'myOrg',`
			`toJson: true`
			`)`
			`// asserts`
Better readable rule names: shellRule 2019-01-22 10:19:28 +02:00			`assertThat(shellRule.shell, hasItem("cd './' && snyk monitor --org=myOrg && snyk test --json > snyk.json".toString()))`
add step tests 2018-06-26 15:08:46 +02:00			`assertThat(archiveStepPatterns, hasItem('snyk.json'))`
			`}`

			`@Test`
			`void testScanTypeMta() throws Exception {`
Better readable rule names: stepRule 2019-01-22 10:25:42 +02:00			`stepRule.step.snykExecute(`
add step tests 2018-06-26 15:08:46 +02:00			`script: nullScript,`
			`juStabUtils: utils,`
			`scanType: 'mta'`
			`)`
			`// asserts`
Better readable rule names: shellRule 2019-01-22 10:19:28 +02:00			`assertThat(shellRule.shell, hasItem("cd 'some-ui${File.separator}' && snyk monitor && snyk test".toString()))`
			`assertThat(shellRule.shell, hasItem("cd 'some-service-broker${File.separator}' && snyk monitor && snyk test".toString()))`
add step tests 2018-06-26 15:08:46 +02:00			`}`
			`}`