test snyk Datasource

keshav-space · pombredanne · commit ec64fc968063 · 2022-11-19T09:22:15.000+01:00
Signed-off-by: Keshav Priyadarshi &lt;git@keshav.space&gt;
diff --git a/vulntotal/tests/test_data/snyk/extract_html_json-expected.json b/vulntotal/tests/test_data/snyk/extract_html_json-expected.json
@@ -0,0 +1,218 @@
+[
+  {
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKICMDOCTORPKI-2401203": [
+      "<1.4.3"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKICMDOCTORPKI-1924465": [
+      "<1.4.1"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKICMDOCTORPKI-1915648": [
+      "<1.4.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKICMDOCTORPKI-1915560": [
+      "<1.4.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKICMDOCTORPKI-1915390": [
+      "<1.4.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKISYNCLIB-1915559": [
+      "<1.4.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKIVALIDATORLIB-1915544": [
+      "<1.4.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKIVALIDATORLIB-1915643": [
+      "<1.4.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKIVALIDATORLIB-1583445": [
+      "<1.3.0"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKIVALIDATORPKI-2401204": [
+      "<1.4.3"
+    ],
+    "SNYK-GOLANG-GITHUBCOMCLOUDFLARECFRPKIVALIDATORPKI-1915649": [
+      "<v1.4.0"
+    ]
+  },
+  {
+    "SNYK-PHP-CENTREONCENTREON-2971021": [
+      "<21.4.16",
+      ">=21.10.0-beta.1, <21.10.8",
+      ">=22.4.0-beta.1, <22.4.1"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-2971034": [
+      "<21.4.16",
+      ">=21.10.0-beta.1, <21.10.8",
+      ">=22.4.0-beta.1, <22.4.1"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1567260": [
+      ">=19.10.0, <20.4.0-beta.1",
+      ">=19.4.0, <19.4.15"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1536559": [
+      ">=21.4.0, <21.4.2",
+      ">=20.10.0, <20.10.8",
+      "<20.4.14"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1536560": [
+      ">=21.4.0, <21.4.2",
+      ">=20.10.0, <20.10.8",
+      "<20.4.14"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1536561": [
+      ">=21.4.0, <21.4.2",
+      ">=20.10.0, <20.10.8",
+      "<20.4.14"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1534849": [
+      ">=19.0.0, <19.4.5",
+      ">=18.10.0, <18.10.8",
+      "<2.8.30"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1320017": [
+      "<20.4.13"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1320018": [
+      "<20.4.13"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1296846": [
+      "<21.4.0"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1247370": [
+      "<2.8.37",
+      ">=20.10, <20.10.7",
+      ">=20.4, <20.4.13",
+      ">=19.10, <19.10.23"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-1075031": [
+      "<2.8.37",
+      ">=21.4, <21.4.1",
+      ">=20.10, <20.10.7",
+      ">=20.4, <20.4.13",
+      ">=19.10, <19.10.23"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-570529": [
+      ">=0.0.0, <1.6.4",
+      ">=18.10.0, <18.10.5",
+      ">=19.4.0, <19.4.3",
+      ">=19.10.0-beta.1, <19.10.2"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-570528": [
+      ">=0.0.0, <1.6.4",
+      ">=18.10.0, <18.10.5",
+      ">=19.4.0, <19.4.3",
+      ">=19.10.0-beta.1, <19.10.2"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-570527": [
+      "<19.10.7"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-570051": [
+      "<19.4.15"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-564443": [
+      "<19.10.13"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-560860": [
+      "<19.4.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-560859": [
+      "<19.4.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-560847": [
+      "<19.4.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-559334": [
+      ">=18.10.6, <18.10.8",
+      ">=19.10.0, <19.10.2",
+      ">=19.04.2, <19.04.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-559444": [
+      ">=19.10.0, <19.10.2",
+      ">=19.4.0, <19.4.5",
+      ">=18.10.0, <18.10.8",
+      "<2.8.30"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-559445": [
+      ">=19.10.0, <19.10.2",
+      ">=19.4.0, <19.4.5",
+      "<18.10.8"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-559335": [
+      ">=18.10.6, <18.10.9",
+      ">=19.10.0, <19.10.3",
+      ">=19.04.2, <19.04.7"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-551996": [
+      ">=19.10.0, <19.10.2",
+      "<19.4.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-536206": [
+      ">=19.10.0, <19.10.2",
+      ">=19.4.0, <19.4.5",
+      ">=18.10.0, <18.10.8",
+      ">=2.8.0, <2.8.30"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-536202": [
+      ">=19.10.0, <19.10.2",
+      ">=18.10.0, <18.10.8",
+      ">=2.8.0, <2.8.30",
+      ">=19.4.0, <19.4.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-535972": [
+      ">=18.10.6, <18.10.8",
+      ">=19.4.2, <19.4.5",
+      ">=2.7.3, <2.8.30"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-473006": [
+      ">=0.0.0"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472423": [
+      ">=2.8.0, <2.8.28",
+      ">=18.10.0, <18.10.4"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472430": [
+      ">=20.10.0, <20.10.3",
+      ">=20.4.0, <20.4.9",
+      ">=19.10.0, <19.10.19"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472429": [
+      ">=2.8.0, <2.8.28",
+      ">=18.10.0, <18.10.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472428": [
+      ">=18.10.0, <18.10.4"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472425": [
+      ">=2.8.0, <2.8.27",
+      ">=18.10.0, <18.10.4"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472424": [
+      ">=2.8.0, <18.10.5"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472422": [
+      ">=2.8.0, <2.8.27",
+      ">=18.10.0, <18.10.4"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472418": [
+      ">=2.8.0, <2.8.28",
+      ">=18.10.0, <18.10.4"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472371": [
+      ">=2.8.0, <2.8.28",
+      ">=18.10.0, <18.10.4"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-472370": [
+      "<19.4.17"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-469159": [
+      "<19.10.0-rc.1"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-451340": [
+      "<19.10.0"
+    ],
+    "SNYK-PHP-CENTREONCENTREON-450214": [
+      ">=18.10.0, <18.10.5",
+      ">=2.8.0, <2.8.28"
+    ]
+  }
+]
diff --git a/vulntotal/tests/test_data/snyk/package_advisory_url-expected.json b/vulntotal/tests/test_data/snyk/package_advisory_url-expected.json
@@ -0,0 +1,13 @@
+[
+  "https://security.snyk.io/package/pip/jinja2",
+  "https://security.snyk.io/package/maven/org.apache.tomcat%3Atomcat",
+  "https://security.snyk.io/package/npm/semver-regex",
+  "https://security.snyk.io/package/golang/github.com%2Fmattermost%2Fmattermost-server%2Fv6%2Fapi4",
+  "https://security.snyk.io/package/composer/bolt%2Fcore",
+  "https://security.snyk.io/package/linux/debain:11/trafficserver",
+  "https://security.snyk.io/package/nuget/moment.js",
+  "https://security.snyk.io/package/cocoapods/ffmpeg",
+  "https://security.snyk.io/package/hex/coherence",
+  "https://security.snyk.io/package/rubygems/log4j-jars",
+  "https://security.snyk.io/api/listing?search=firefox&type=unmanaged"
+]
diff --git a/vulntotal/tests/test_data/snyk/parsed_advisory-expected.json b/vulntotal/tests/test_data/snyk/parsed_advisory-expected.json
@@ -0,0 +1,56 @@
+[
+  {
+    "affected_versions": [
+      "TEST-AFFECTED"
+    ],
+    "fixed_versions": [
+      "6.0.3"
+    ],
+    "aliases": [
+      "CVE-2021-37861",
+      "TEST-SNYKID"
+    ]
+  },
+  {
+    "affected_versions": [
+      "TEST-AFFECTED"
+    ],
+    "fixed_versions": [
+      "0.6.1"
+    ],
+    "aliases": [
+      "CVE-2021-37863",
+      "TEST-SNYKID"
+    ]
+  },
+  {
+    "affected_versions": [
+      "TEST-AFFECTED"
+    ],
+    "fixed_versions": [
+      "5.37.9",
+      "6.2.5",
+      "6.3.5",
+      "6.4.2"
+    ],
+    "aliases": [
+      "CVE-2022-1332",
+      "TEST-SNYKID"
+    ]
+  },
+  {
+    "affected_versions": [
+      "TEST-AFFECTED"
+    ],
+    "fixed_versions": [
+      "5.37.7",
+      "6.1.2",
+      "6.2.2",
+      "6.3.1"
+    ],
+    "aliases": [
+      "CVE-2022-0708",
+      "TEST-SNYKID"
+    ]
+  }
+]
diff --git a/vulntotal/tests/test_data/snyk/purls.txt b/vulntotal/tests/test_data/snyk/purls.txt
@@ -0,0 +1,11 @@
+pkg:pypi/jinja2@2.4.1
+pkg:maven/org.apache.tomcat/tomcat@10.1.0-M8
+pkg:npm/semver-regex@3.1.3
+pkg:golang/github.com/mattermost/mattermost-server/v6/api4@0.1
+pkg:composer/bolt/core@0.1
+pkg:linux/trafficserver@5.4.1?distro=debain:11
+pkg:nuget/moment.js@2.18.0
+pkg:cocoapods/ffmpeg@0.2
+pkg:hex/coherence@0.2.1
+pkg:rubygems/log4j-jars@0.2
+pkg:unmanaged/firefox@8.9.1
diff --git a/vulntotal/tests/test_snyk.py b/vulntotal/tests/test_snyk.py
@@ -0,0 +1,63 @@
+#
+# Copyright (c) nexB Inc. and others. All rights reserved.
+# http://nexb.com and https://github.com/nexB/vulnerablecode/
+# The VulnTotal software is licensed under the Apache License version 2.0.
+# Data generated with VulnTotal require an acknowledgment.
+#
+# You may not use this software except in compliance with the License.
+# You may obtain a copy of the License at: http://apache.org/licenses/LICENSE-2.0
+# Unless required by applicable law or agreed to in writing, software distributed
+# under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
+# CONDITIONS OF ANY KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations under the License.
+#
+# When you publish or redistribute any data created with VulnTotal or any VulnTotal
+# derivative work, you must accompany this data with the following acknowledgment:
+#
+#  Generated with VulnTotal and provided on an "AS IS" BASIS, WITHOUT WARRANTIES
+#  OR CONDITIONS OF ANY KIND, either express or implied. No content created from
+#  VulnTotal should be considered or used as legal advice. Consult an Attorney
+#  for any legal advice.
+#  VulnTotal is a free software tool from nexB Inc. and others.
+#  Visit https://github.com/nexB/vulnerablecode/ for support and download.
+
+import json
+from pathlib import Path
+
+from commoncode import testcase
+from packageurl import PackageURL
+
+from vulnerabilities.tests import util_tests
+from vulntotal.datasources import snyk
+
+
+class TestSnyk(testcase.FileBasedTesting):
+    test_data_dir = str(Path(__file__).resolve().parent / "test_data" / "snyk")
+
+    def test_generate_package_advisory_url(self):
+        file_purls = self.get_test_loc("purls.txt")
+        with open(file_purls) as f:
+            purls = f.readlines()
+        results = [
+            snyk.generate_package_advisory_url(PackageURL.from_string(purl)) for purl in purls
+        ]
+        expected_file = self.get_test_loc("package_advisory_url-expected.json", must_exist=False)
+        util_tests.check_results_against_json(results, expected_file)
+
+    def test_extract_html_json_advisories(self):
+        file = self.get_test_loc("raw_pacakage_advisories.json")
+        with open(file) as f:
+            pages = json.load(f)
+        results = [snyk.extract_html_json_advisories(i) for i in pages]
+        expected_file = self.get_test_loc("extract_html_json-expected.json", must_exist=False)
+        util_tests.check_results_against_json(results, expected_file)
+
+    def test_parse_html_advisory(self):
+        file = self.get_test_loc("raw_html_advisory.json")
+        with open(file) as f:
+            pages = json.load(f)
+        results = [
+            snyk.parse_html_advisory(i, "TEST-SNYKID", ["TEST-AFFECTED"]).to_dict() for i in pages
+        ]
+        expected_file = self.get_test_loc("parsed_advisory-expected.json", must_exist=False)
+        util_tests.check_results_against_json(results, expected_file)

-Original file line number
+Diff line change
@@ @@ -0,0 +1,11 @@ @@
 +pkg:pypi/[email protected]
 +pkg:maven/org.apache.tomcat/[email protected]
 +pkg:npm/[email protected]
 +pkg:golang/github.com/mattermost/mattermost-server/v6/[email protected]
 +pkg:composer/bolt/[email protected]
 +pkg:linux/[email protected]?distro=debain:11
 +pkg:nuget/[email protected]
 +pkg:cocoapods/[email protected]
 +pkg:hex/[email protected]
 +pkg:rubygems/[email protected]
 +pkg:unmanaged/[email protected]