Add integration test for trivy a and pylint CF-1742

machadoit · machadoit · commit 6487f9612c57 · 2025-07-09T19:01:36.000+02:00
Trivy should check and report on requirements.txt (done)
Pylint should ignore the requirements.txt (not done yet)

When the CLI is fixed to generate the correct files for pylint
(not having the requirements.txt file), the langauges-config.yaml
should be regenerated in order to fix the test
diff --git a/plugins/tools/pylint/test/src/.codacy/tools-configs/languages-config.yaml b/plugins/tools/pylint/test/src/.codacy/tools-configs/languages-config.yaml
@@ -0,0 +1,5 @@
+tools:
+    - name: pylint
+      languages: [Python]
+      extensions: [.py]
+      files: [Pipfile.lock, poetry.lock, requirements.txt, uv.lock]
diff --git a/plugins/tools/pylint/test/src/.codacy/tools-configs/pylint.rc b/plugins/tools/pylint/test/src/.codacy/tools-configs/pylint.rc
@@ -0,0 +1,9 @@
+[MASTER]
+ignore=CVS
+persistent=yes
+load-plugins=
+
+[MESSAGES CONTROL]
+disable=all
+enable=C0123,C0200,C0303,E0100,E0101,E0102,E0103,E0104,E0105,E0106,E0107,E0108,E0110,E0112,E0113,E0114,E0115,E0116,E0117,E0202,E0203,E0211,E0236,E0238,E0239,E0240,E0241,E0301,E0302,E0601,E0603,E0604,E0701,E0702,E0704,E0710,E0711,E0712,E1003,E1102,E1111,E1120,E1121,E1123,E1124,E1125,E1126,E1127,E1132,E1200,E1201,E1205,E1206,E1300,E1301,E1302,E1303,E1304,E1305,E1306,R0202,R0203,W0101,W0102,W0104,W0105,W0106,W0107,W0108,W0109,W0120,W0122,W0124,W0150,W0199,W0221,W0222,W0233,W0404,W0410,W0601,W0602,W0604,W0611,W0612,W0622,W0702,W0705,W0711,W1300,W1301,W1302,W1303,W1305,W1306,W1307
+
diff --git a/plugins/tools/pylint/test/src/requirements.txt b/plugins/tools/pylint/test/src/requirements.txt
@@ -0,0 +1,2 @@
+# This file should be successfully ignored by Codacy CLI as pylint does not support it.
+django==1.11.29
diff --git a/plugins/tools/trivy/test/expected.sarif b/plugins/tools/trivy/test/expected.sarif
@@ -9,6 +9,33 @@
         }
       },
       "results": [
+        {
+          "level": "note",
+          "locations": [
+            {
+              "message": {
+                "text": "package-lock.json: brace-expansion@1.1.11"
+              },
+              "physicalLocation": {
+                "artifactLocation": {
+                  "uri": "package-lock.json",
+                  "uriBaseId": "ROOTPATH"
+                },
+                "region": {
+                  "endColumn": 1,
+                  "endLine": 357,
+                  "startColumn": 1,
+                  "startLine": 349
+                }
+              }
+            }
+          ],
+          "message": {
+            "text": "Package: brace-expansion\nInstalled Version: 1.1.11\nVulnerability CVE-2025-5889\nSeverity: LOW\nFixed Version: 2.0.2, 1.1.12, 3.0.1, 4.0.1\nLink: [CVE-2025-5889](https://avd.aquasec.com/nvd/cve-2025-5889)"
+          },
+          "ruleId": "CVE-2025-5889",
+          "ruleIndex": 0
+        },
         {
           "level": "error",
           "locations": [
@@ -37,31 +64,112 @@
           "ruleIndex": 1
         },
         {
-          "level": "note",
+          "level": "error",
           "locations": [
             {
               "message": {
-                "text": "package-lock.json: brace-expansion@1.1.11"
+                "text": "requirements.txt: django@1.11.29"
               },
               "physicalLocation": {
                 "artifactLocation": {
-                  "uri": "package-lock.json",
+                  "uri": "requirements.txt",
                   "uriBaseId": "ROOTPATH"
                 },
                 "region": {
                   "endColumn": 1,
-                  "endLine": 357,
+                  "endLine": 1,
                   "startColumn": 1,
-                  "startLine": 349
+                  "startLine": 1
                 }
               }
             }
           ],
           "message": {
-            "text": "Package: brace-expansion\nInstalled Version: 1.1.11\nVulnerability CVE-2025-5889\nSeverity: LOW\nFixed Version: 2.0.2, 1.1.12, 3.0.1, 4.0.1\nLink: [CVE-2025-5889](https://avd.aquasec.com/nvd/cve-2025-5889)"
+            "text": "Package: django\nInstalled Version: 1.11.29\nVulnerability CVE-2022-36359\nSeverity: HIGH\nFixed Version: 3.2.15, 4.0.7\nLink: [CVE-2022-36359](https://avd.aquasec.com/nvd/cve-2022-36359)"
           },
-          "ruleId": "CVE-2025-5889",
-          "ruleIndex": 0
+          "ruleId": "CVE-2022-36359",
+          "ruleIndex": 2
+        },
+        {
+          "level": "warning",
+          "locations": [
+            {
+              "message": {
+                "text": "requirements.txt: django@1.11.29"
+              },
+              "physicalLocation": {
+                "artifactLocation": {
+                  "uri": "requirements.txt",
+                  "uriBaseId": "ROOTPATH"
+                },
+                "region": {
+                  "endColumn": 1,
+                  "endLine": 1,
+                  "startColumn": 1,
+                  "startLine": 1
+                }
+              }
+            }
+          ],
+          "message": {
+            "text": "Package: django\nInstalled Version: 1.11.29\nVulnerability CVE-2021-33203\nSeverity: MEDIUM\nFixed Version: 2.2.24, 3.1.12, 3.2.4\nLink: [CVE-2021-33203](https://avd.aquasec.com/nvd/cve-2021-33203)"
+          },
+          "ruleId": "CVE-2021-33203",
+          "ruleIndex": 3
+        },
+        {
+          "level": "warning",
+          "locations": [
+            {
+              "message": {
+                "text": "requirements.txt: django@1.11.29"
+              },
+              "physicalLocation": {
+                "artifactLocation": {
+                  "uri": "requirements.txt",
+                  "uriBaseId": "ROOTPATH"
+                },
+                "region": {
+                  "endColumn": 1,
+                  "endLine": 1,
+                  "startColumn": 1,
+                  "startLine": 1
+                }
+              }
+            }
+          ],
+          "message": {
+            "text": "Package: django\nInstalled Version: 1.11.29\nVulnerability CVE-2024-45231\nSeverity: MEDIUM\nFixed Version: 5.1.1, 5.0.9, 4.2.16\nLink: [CVE-2024-45231](https://avd.aquasec.com/nvd/cve-2024-45231)"
+          },
+          "ruleId": "CVE-2024-45231",
+          "ruleIndex": 4
+        },
+        {
+          "level": "warning",
+          "locations": [
+            {
+              "message": {
+                "text": "requirements.txt: django@1.11.29"
+              },
+              "physicalLocation": {
+                "artifactLocation": {
+                  "uri": "requirements.txt",
+                  "uriBaseId": "ROOTPATH"
+                },
+                "region": {
+                  "endColumn": 1,
+                  "endLine": 1,
+                  "startColumn": 1,
+                  "startLine": 1
+                }
+              }
+            }
+          ],
+          "message": {
+            "text": "Package: django\nInstalled Version: 1.11.29\nVulnerability CVE-2025-48432\nSeverity: MEDIUM\nFixed Version: 5.2.2, 5.1.10, 4.2.22\nLink: [CVE-2025-48432](https://avd.aquasec.com/nvd/cve-2025-48432)"
+          },
+          "ruleId": "CVE-2025-48432",
+          "ruleIndex": 5
         }
       ],
       "tool": {
diff --git a/plugins/tools/trivy/test/src/requirements.txt b/plugins/tools/trivy/test/src/requirements.txt
@@ -0,0 +1 @@
+django==1.11.29

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+# This file should be successfully ignored by Codacy CLI as pylint does not support it.`
	`2`	`+django==1.11.29`