Skip to content

Add fuzzer test for capec_map_enricher.py #2197

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
abhijit9040 wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add fuzzer test for capec_map_enricher.py #2197

abhijit9040 wants to merge 1 commit into from
+134 −0

Conversation

@abhijit9040
Copy link
Contributor

@abhijit9040 abhijit9040 commented Feb 10, 2026

This PR adds coverage-guided fuzz testing for capec_map_enricher.py to improve robustness when handling malformed or unexpected JSON/YAML input.

Key changes:

  • Added tests/scripts/capec_map_enricher_fuzzer.py using Atheris
  • Mocked filesystem I/O and CLI arguments to isolate enrichment logic
  • Fuzzed edge cases such as empty catalogs, malformed IDs, and varied version/edition inputs

Reference issue-#2165

@sydseter
Copy link
Collaborator

sydseter commented Feb 10, 2026

length=120 --max-complexity=10 --ignore=E203,W503
Loading .env environment variables...
./tests/scripts/capec_map_enricher_fuzzer.py:7:1: F401 'unittest.mock.MagicMock' imported but unused
./tests/scripts/capec_map_enricher_fuzzer.py:8:1: F401 'pathlib.Path' imported but unused

sydseter
sydseter requested changes Feb 10, 2026
View reviewed changes
Copy link
Collaborator

@sydseter sydseter left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You have some style issues there.

@sydseter
Copy link
Collaborator

sydseter commented Feb 10, 2026

There is tje error:

File "capec_map_enricher_fuzzer.py", line 119, in test_main
File "capec_map_enricher_fuzzer.py", line 96, in test_main
File "unittest/mock.py", line 1430, in enter
File "pkgutil.py", line 715, in resolve_name
AttributeError: module 'scripts' has no attribute 'capec_map_enricher'

@abhijit9040
Copy link
Contributor Author

abhijit9040 commented Feb 11, 2026

Hi @sydseter , can you my review my pr . If any changes needed .

sydseter
sydseter reviewed Feb 12, 2026
View reviewed changes
.github/workflows/build-website.yml
Copy link
Collaborator

@sydseter sydseter Feb 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What did you change here? If you believe there is an issue please open separate pull-request. Pøease revert this so that it is easier to asess the fuzzing test.

.github/workflows/copi-build.yml
Copy link
Collaborator

@sydseter sydseter Feb 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same here. If you believe there is an issue please open separate pull-request. Pøease revert this so that it is easier to asess the fuzzing test.

sydseter
sydseter requested changes Feb 12, 2026
View reviewed changes
.github/workflows/build-website.yml
pnpm audit --prod
pnpm run coverage

- name: Smoke test
Copy link
Collaborator

@sydseter sydseter Feb 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems like this got lost in a merge? Could you just reset your commit and try to only commit the capec_map_enricher_fuzzer.py‎ file?

Copy link
Collaborator

@sydseter sydseter Feb 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

git reset HEAD~7

@abhijit9040
Copy link
Contributor Author

abhijit9040 commented Feb 12, 2026

Hi @sydseter,

I’ve cleaned up the PR as requested:

  • Clean history: Performed a git reset --hard and force-push. The PR now only includes tests/scripts/capec_map_enricher_fuzzer.py.
  • Fuzzer update: Switched to patch.object to ensure compatibility with ClusterFuzzLite (PyInstaller) .
  • ClusterFuzzLite check: The failure is due to a Docker API version issue in the GitHub runner environment, not related to the fuzzer code.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sydseter sydseter sydseter requested changes

@rewtd rewtd Awaiting requested review from rewtd rewtd is a code owner

@cw-owasp cw-owasp Awaiting requested review from cw-owasp cw-owasp is a code owner

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@abhijit9040 @sydseter