mirror of
https://github.com/anchore/syft.git
synced 2025-11-17 16:33:21 +01:00
ef627d82ef
* migrate pkg.ID and pkg.Relationship to artifact package Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * return relationships from tasks Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * fix more tests Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * add artifact.Identifiable by Identity() method Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * fix linting Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * remove catalog ID assignment Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * adjust spdx helpers to use copy of packages Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * stabilize package ID relative to encode-decode format cycles Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * rename Identity() to ID() Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * use zero value for nils in ID generation Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * enable source.Location to be identifiable Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * hoist up package relationship discovery to analysis stage Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * update ownership-by-file-overlap relationship description Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * add test reminders to put new relationships under test Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * adjust PHP composer.lock parser function to return relationships Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
150 lines
2.6 KiB
Go
150 lines
2.6 KiB
Go
package spdxhelpers
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/anchore/syft/syft/pkg"
|
|
"github.com/anchore/syft/syft/source"
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
func Test_SourceInfo(t *testing.T) {
|
|
tests := []struct {
|
|
name string
|
|
input pkg.Package
|
|
expected []string
|
|
}{
|
|
{
|
|
name: "locations are captured",
|
|
input: pkg.Package{
|
|
// note: no type given
|
|
Locations: []source.Location{
|
|
{
|
|
RealPath: "/a-place",
|
|
VirtualPath: "/b-place",
|
|
},
|
|
{
|
|
RealPath: "/c-place",
|
|
VirtualPath: "/d-place",
|
|
},
|
|
},
|
|
},
|
|
expected: []string{
|
|
"from the following paths",
|
|
"/a-place",
|
|
"/c-place",
|
|
},
|
|
},
|
|
{
|
|
// note: no specific support for this
|
|
input: pkg.Package{
|
|
Type: pkg.KbPkg,
|
|
},
|
|
expected: []string{
|
|
"from the following paths",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.RpmPkg,
|
|
},
|
|
expected: []string{
|
|
"from RPM DB",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.ApkPkg,
|
|
},
|
|
expected: []string{
|
|
"from APK DB",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.DebPkg,
|
|
},
|
|
expected: []string{
|
|
"from DPKG DB",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.NpmPkg,
|
|
},
|
|
expected: []string{
|
|
"from installed node module manifest file",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.PythonPkg,
|
|
},
|
|
expected: []string{
|
|
"from installed python package manifest file",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.JavaPkg,
|
|
},
|
|
expected: []string{
|
|
"from installed java archive",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.JenkinsPluginPkg,
|
|
},
|
|
expected: []string{
|
|
"from installed java archive",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.GemPkg,
|
|
},
|
|
expected: []string{
|
|
"from installed gem metadata file",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.GoModulePkg,
|
|
},
|
|
expected: []string{
|
|
"from go module information",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.RustPkg,
|
|
},
|
|
expected: []string{
|
|
"from rust cargo manifest",
|
|
},
|
|
},
|
|
{
|
|
input: pkg.Package{
|
|
Type: pkg.PhpComposerPkg,
|
|
},
|
|
expected: []string{
|
|
"from PHP composer manifest",
|
|
},
|
|
},
|
|
}
|
|
var pkgTypes []pkg.Type
|
|
for _, test := range tests {
|
|
t.Run(test.name+" "+string(test.input.Type), func(t *testing.T) {
|
|
if test.input.Type != "" {
|
|
pkgTypes = append(pkgTypes, test.input.Type)
|
|
}
|
|
actual := SourceInfo(test.input)
|
|
for _, expected := range test.expected {
|
|
assert.Contains(t, actual, expected)
|
|
}
|
|
})
|
|
}
|
|
assert.ElementsMatch(t, pkg.AllPkgs, pkgTypes, "missing one or more package types to test against (maybe a package type was added?)")
|
|
}
|