Add unit test for the verify-project management command

tdruez · tdruez · commit 8d97ff4fd636 · 2025-10-14T16:39:17.000+04:00
Signed-off-by: tdruez &lt;tdruez@nexb.com&gt;
diff --git a/scanpipe/management/commands/verify-project.py b/scanpipe/management/commands/verify-project.py
@@ -96,4 +96,4 @@ def handle(self, *args, **options):
         if errors:
             raise CommandError("Project verification failed:\n" + "\n".join(errors))
 
-        self.stdout.write(self.style.SUCCESS("Project verification passed."))
+        self.stdout.write("Project verification passed.", self.style.SUCCESS)
diff --git a/scanpipe/tests/test_commands.py b/scanpipe/tests/test_commands.py
@@ -1371,6 +1371,49 @@ def test_scanpipe_management_command_report(self):
         expected = ("project1", "file.ext", "file", "file.ext", "requires-review")
         self.assertEqual(expected, row1[0:5])
 
+    def test_scanpipe_management_command_verify_project(self):
+        project = make_project(name="my_project")
+        make_package(project, package_url="pkg:generic/name@1.0")
+        make_dependency(project)
+
+        out = StringIO()
+        call_command(
+            "verify-project",
+            "--project",
+            project.name,
+            "--packages",
+            "1",
+            "--vulnerable-packages",
+            "0",
+            "--dependencies",
+            "1",
+            "--vulnerable-dependencies",
+            "0",
+            stdout=out,
+        )
+        self.assertIn("Project verification passed.", out.getvalue())
+
+        out = StringIO()
+        expected = (
+            "Project verification failed:\n"
+            "Expected at least 5 packages, found 1\n"
+            "Expected exactly 10 vulnerable packages, found 0\n"
+            "Expected at least 5 dependencies, found 1"
+        )
+        with self.assertRaisesMessage(CommandError, expected):
+            call_command(
+                "verify-project",
+                "--project",
+                project.name,
+                "--packages",
+                "5",
+                "--vulnerable-packages",
+                "10",
+                "--dependencies",
+                "5",
+                stdout=out,
+            )
+
 
 class ScanPipeManagementCommandMixinTest(TestCase):
     class CreateProjectCommand(
