correct unit test and doctest for curl importer

Signed-off-by: ambuj <[email protected]>

Author: ambuj-1211

vulnerabilities/importers/curl.py

@@ -98,7 +98,7 @@ def parse_advisory_data(raw_data) -> AdvisoryData:
         ...     ]
         ... }
         >>> parse_advisory_data(raw_data)
-        AdvisoryData(aliases=['CVE-2024-2379'], summary='QUIC certificate check bypass with wolfSSL', affected_packages=[AffectedPackage(package=PackageURL(type='generic', namespace='curl.se', name='curl', version=None, qualifiers={}, subpath=None), affected_version_range=GenericVersionRange(constraints=(VersionConstraint(comparator='=', version=SemverVersion(string='8.6.0')),)), fixed_version=SemverVersion(string='8.7.0'))], references=[Reference(reference_id='', url='https://curl.se/docs/CVE-2024-2379.html', severities=[VulnerabilitySeverity(system=Cvssv3ScoringSystem(identifier='cvssv3.1', name='CVSSv3.1 Base Score', url='https://www.first.org/cvss/v3-1/', notes='CVSSv3.1 base score and vector'), value='Low', scoring_elements='')]), Reference(reference_id='', url='https://hackerone.com/reports/2410774', severities=[])], date_published=datetime.datetime(2024, 3, 27, 8, 0, tzinfo=datetime.timezone.utc), weaknesses=[297], url='https://curl.se/docs/CVE-2024-2379.json')
+        AdvisoryData(aliases=['CVE-2024-2379'], summary='QUIC certificate check bypass with wolfSSL', affected_packages=[AffectedPackage(package=PackageURL(type='generic', namespace='curl.se', name='curl', version=None, qualifiers={}, subpath=None), affected_version_range=GenericVersionRange(constraints=(VersionConstraint(comparator='=', version=SemverVersion(string='8.6.0')),)), fixed_version=SemverVersion(string='8.7.0'))], references=[Reference(reference_id='', reference_type='', url='https://curl.se/docs/CVE-2024-2379.html', severities=[VulnerabilitySeverity(system=Cvssv3ScoringSystem(identifier='cvssv3.1', name='CVSSv3.1 Base Score', url='https://www.first.org/cvss/v3-1/', notes='CVSSv3.1 base score and vector'), value='Low', scoring_elements='', published_at=None)]), Reference(reference_id='', reference_type='', url='https://hackerone.com/reports/2410774', severities=[])], date_published=datetime.datetime(2024, 3, 27, 8, 0, tzinfo=datetime.timezone.utc), weaknesses=[297], url='https://curl.se/docs/CVE-2024-2379.json')
     """
 
     affected = get_item(raw_data, "affected")[0] if len(get_item(raw_data, "affected")) > 0 else []

vulnerabilities/tests/test_data/curl/expected_curl_advisory_output1.json

@@ -1,41 +1,45 @@
 {
-    "aliases": [
+  "aliases": [
     "CVE-2024-2379"
-    ],
-    "summary": "QUIC certificate check bypass with wolfSSL",
-    "affected_packages": [
-        {
-            "package": {
-              "type": "generic",
-              "namespace": "curl.se",
-              "name": "curl",
-              "version": "",
-              "qualifiers": "",
-              "subpath": ""
-            },
-            "affected_version_range": "vers:generic/8.6.0",
-            "fixed_version": "8.7.0"
-          }
-    ],
-    "references": [
-      {
-        "reference_id": "",
-        "url": "https://curl.se/docs/CVE-2024-2379.html",
-        "severities": [
-            {
-                "system": "cvssv3.1",
-                "value": "Low",
-                "scoring_elements": ""
-              }
-        ]
+  ],
+  "summary": "QUIC certificate check bypass with wolfSSL",
+  "affected_packages": [
+    {
+      "package": {
+        "type": "generic",
+        "namespace": "curl.se",
+        "name": "curl",
+        "version": "",
+        "qualifiers": "",
+        "subpath": ""
       },
-      {
-        "reference_id": "", 
-      "url": "https://hackerone.com/reports/2410774", 
+      "affected_version_range": "vers:generic/8.6.0",
+      "fixed_version": "8.7.0"
+    }
+  ],
+  "references": [
+    {
+      "reference_id": "",
+      "reference_type": "",
+      "url": "https://curl.se/docs/CVE-2024-2379.html",
+      "severities": [
+        {
+          "system": "cvssv3.1",
+          "value": "Low",
+          "scoring_elements": ""
+        }
+      ]
+    },
+    {
+      "reference_id": "",
+      "reference_type": "",
+      "url": "https://hackerone.com/reports/2410774",
       "severities": []
     }
-    ],
-    "date_published": "2024-03-27T08:00:00+00:00",
-    "weaknesses": [295],
-    "url": "https://curl.se/docs/CVE-2024-2379.json"
+  ],
+  "date_published": "2024-03-27T08:00:00+00:00",
+  "weaknesses": [
+    295
+  ],
+  "url": "https://curl.se/docs/CVE-2024-2379.json"
 }

vulnerabilities/tests/test_data/curl/expected_curl_advisory_output2.json

@@ -1,32 +1,45 @@
 {
-    "aliases": ["CVE-2024-0853"], 
-    "summary": "OCSP verification bypass with TLS session reuse", 
+    "aliases": [
+        "CVE-2024-0853"
+    ],
+    "summary": "OCSP verification bypass with TLS session reuse",
     "affected_packages": [
         {
-            "package": {"type": "generic", "namespace": "curl.se", "name": "curl", "version": "", "qualifiers": "", "subpath": ""}, 
-            "affected_version_range": "vers:generic/8.5.0", 
+            "package": {
+                "type": "generic",
+                "namespace": "curl.se",
+                "name": "curl",
+                "version": "",
+                "qualifiers": "",
+                "subpath": ""
+            },
+            "affected_version_range": "vers:generic/8.5.0",
             "fixed_version": "8.6.0"
         }
-    ], 
+    ],
     "references": [
         {
-            "reference_id": "", 
-            "url": "https://curl.se/docs/CVE-2024-0853.html", 
+            "reference_id": "",
+            "reference_type": "",
+            "url": "https://curl.se/docs/CVE-2024-0853.html",
             "severities": [
                 {
-                    "system": "cvssv3.1", 
-                    "value": "Low", 
+                    "system": "cvssv3.1",
+                    "value": "Low",
                     "scoring_elements": ""
                 }
             ]
-        }, 
+        },
         {
-            "reference_id": "", 
-            "url": "https://hackerone.com/reports/2298922", 
+            "reference_id": "",
+            "reference_type": "",
+            "url": "https://hackerone.com/reports/2298922",
             "severities": []
-            }
-        ], 
-        "date_published": "2024-01-31T08:00:00+00:00", 
-        "weaknesses": [299], 
-        "url": "https://curl.se/docs/CVE-2024-0853.json"
+        }
+    ],
+    "date_published": "2024-01-31T08:00:00+00:00",
+    "weaknesses": [
+        299
+    ],
+    "url": "https://curl.se/docs/CVE-2024-0853.json"
 }

vulnerabilities/tests/test_data/curl/expected_curl_advisory_output3.json

@@ -1,39 +1,45 @@
 {
-    "aliases": ["CVE-2023-46218"], 
-    "summary": "cookie mixed case PSL bypass", 
+    "aliases": [
+        "CVE-2023-46218"
+    ],
+    "summary": "cookie mixed case PSL bypass",
     "affected_packages": [
         {
             "package": {
-                "type": "generic", 
-                "namespace": "curl.se", 
-                "name": "curl", 
-                "version": "", 
-                "qualifiers": "", 
+                "type": "generic",
+                "namespace": "curl.se",
+                "name": "curl",
+                "version": "",
+                "qualifiers": "",
                 "subpath": ""
-            }, 
-            "affected_version_range": "vers:generic/7.46.0|7.47.0|7.47.1|7.48.0|7.49.0|7.49.1|7.50.0|7.50.1|7.50.2|7.50.3|7.51.0|7.52.0|7.52.1|7.53.0|7.53.1|7.54.0|7.54.1|7.55.0|7.55.1|7.56.0|7.56.1|7.57.0|7.58.0|7.59.0|7.60.0|7.61.0|7.61.1|7.62.0|7.63.0|7.64.0|7.64.1|7.65.0|7.65.1|7.65.2|7.65.3|7.66.0|7.67.0|7.68.0|7.69.0|7.69.1|7.70.0|7.71.0|7.71.1|7.72.0|7.73.0|7.74.0|7.75.0|7.76.0|7.76.1|7.77.0|7.78.0|7.79.0|7.79.1|7.80.0|7.81.0|7.82.0|7.83.0|7.83.1|7.84.0|7.85.0|7.86.0|7.87.0|7.88.0|7.88.1|8.0.0|8.0.1|8.1.0|8.1.1|8.1.2|8.2.0|8.2.1|8.3.0|8.4.0", 
+            },
+            "affected_version_range": "vers:generic/7.46.0|7.47.0|7.47.1|7.48.0|7.49.0|7.49.1|7.50.0|7.50.1|7.50.2|7.50.3|7.51.0|7.52.0|7.52.1|7.53.0|7.53.1|7.54.0|7.54.1|7.55.0|7.55.1|7.56.0|7.56.1|7.57.0|7.58.0|7.59.0|7.60.0|7.61.0|7.61.1|7.62.0|7.63.0|7.64.0|7.64.1|7.65.0|7.65.1|7.65.2|7.65.3|7.66.0|7.67.0|7.68.0|7.69.0|7.69.1|7.70.0|7.71.0|7.71.1|7.72.0|7.73.0|7.74.0|7.75.0|7.76.0|7.76.1|7.77.0|7.78.0|7.79.0|7.79.1|7.80.0|7.81.0|7.82.0|7.83.0|7.83.1|7.84.0|7.85.0|7.86.0|7.87.0|7.88.0|7.88.1|8.0.0|8.0.1|8.1.0|8.1.1|8.1.2|8.2.0|8.2.1|8.3.0|8.4.0",
             "fixed_version": "8.5.0"
-            }
-        ], 
+        }
+    ],
     "references": [
         {
-            "reference_id": "", 
-            "url": "https://curl.se/docs/CVE-2023-46218.html", 
+            "reference_id": "",
+            "reference_type": "",
+            "url": "https://curl.se/docs/CVE-2023-46218.html",
             "severities": [
                 {
-                    "system": "cvssv3.1", 
-                    "value": "Medium", 
+                    "system": "cvssv3.1",
+                    "value": "Medium",
                     "scoring_elements": ""
                 }
             ]
         },
         {
-            "reference_id": "", 
-            "url": "https://hackerone.com/reports/2212193", 
+            "reference_id": "",
+            "reference_type": "",
+            "url": "https://hackerone.com/reports/2212193",
             "severities": []
         }
-    ], 
-    "date_published": "2023-12-06T08:00:00+00:00", 
-    "weaknesses": [201], 
+    ],
+    "date_published": "2023-12-06T08:00:00+00:00",
+    "weaknesses": [
+        201
+    ],
     "url": "https://curl.se/docs/CVE-2023-46218.json"
 }