simplesamlphp
diff --git a/‎tests/Vulnerabilities/GoldenSAMLResponseTest.php‎
Lines changed: 0 additions & 2 deletions b/‎tests/Vulnerabilities/GoldenSAMLResponseTest.php‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎…L2/Response/XmlSignatureWrappingTest.php‎ ‎…erabilities/XmlSignatureWrappingTest.php‎tests/SAML2/Response/XmlSignatureWrappingTest.php renamed to tests/Vulnerabilities/XmlSignatureWrappingTest.php
Lines changed: 10 additions & 2 deletions b/‎…L2/Response/XmlSignatureWrappingTest.php‎ ‎…erabilities/XmlSignatureWrappingTest.php‎tests/SAML2/Response/XmlSignatureWrappingTest.php renamed to tests/Vulnerabilities/XmlSignatureWrappingTest.php
Lines changed: 10 additions & 2 deletions
diff --git a/‎…AssertionReferencedEmbeddedAssertion.xml‎ ‎…AssertionReferencedEmbeddedAssertion.xml‎tests/SAML2/Response/signedAssertionReferencedEmbeddedAssertion.xml renamed to tests/resources/xml/vulnerabilities/signedAssertionReferencedEmbeddedAssertion.xml b/‎…AssertionReferencedEmbeddedAssertion.xml‎ ‎…AssertionReferencedEmbeddedAssertion.xml‎tests/SAML2/Response/signedAssertionReferencedEmbeddedAssertion.xml renamed to tests/resources/xml/vulnerabilities/signedAssertionReferencedEmbeddedAssertion.xml
diff --git a/‎…gnedAssertionWithInvalidReferencedId.xml‎ ‎…gnedAssertionWithInvalidReferencedId.xml‎tests/SAML2/Response/signedAssertionWithInvalidReferencedId.xml renamed to tests/resources/xml/vulnerabilities/signedAssertionWithInvalidReferencedId.xml b/‎…gnedAssertionWithInvalidReferencedId.xml‎ ‎…gnedAssertionWithInvalidReferencedId.xml‎tests/SAML2/Response/signedAssertionWithInvalidReferencedId.xml renamed to tests/resources/xml/vulnerabilities/signedAssertionWithInvalidReferencedId.xml
@@ -4,7 +4,6 @@
 
 namespace SimpleSAML\Test\SAML2\Response;
 
-use PHPUnit\Framework\Attributes\CoversClass;
 use PHPUnit\Framework\Attributes\Group;
 use PHPUnit\Framework\TestCase;
 use SimpleSAML\SAML2\XML\samlp\Response;
@@ -23,7 +22,6 @@
  * @package simplesamlphp/saml2
  */
 #[Group('vulnerabilities')]
-#[CoversClass(ResponseProcessor::class)]
 final class GoldenSAMLResponseTest extends TestCase
 {
     /**
 
@@ -4,6 +4,7 @@
 
 namespace SimpleSAML\Test\SAML2\Response;
 
+use PHPUnit\Framework\Attributes\Group;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\NullLogger;
 use SimpleSAML\SAML2\Configuration\IdentityProvider;
@@ -16,6 +17,7 @@
 /**
  * @package simplesamlphp/saml2
  */
+#[Group('vulnerabilities')]
 final class XmlSignatureWrappingTest extends TestCase
 {
     /** @var \SimpleSAML\SAML2\Signature\Validator */
@@ -66,7 +68,10 @@ public function testThatASignatureReferencingAnotherAssertionIsNotValid(): void
      */
     private function getSignedAssertionWithSignatureThatReferencesAnotherAssertion(): Assertion
     {
-        $document = DOMDocumentFactory::fromFile(__DIR__ . '/signedAssertionWithInvalidReferencedId.xml');
+        $document = DOMDocumentFactory::fromFile(
+            dirname(__DIR__, 1) . '/resources/xml/vulnerabilities/signedAssertionWithInvalidReferencedId.xml',
+        );
+
         /** @var \DOMElement $element */
         $element = $document->firstChild;
         return Assertion::fromXML($element);
@@ -78,7 +83,10 @@ private function getSignedAssertionWithSignatureThatReferencesAnotherAssertion()
      */
     private function getSignedAssertionWithEmbeddedAssertionReferencedInSignature(): Assertion
     {
-        $document = DOMDocumentFactory::fromFile(__DIR__ . '/signedAssertionReferencedEmbeddedAssertion.xml');
+        $document = DOMDocumentFactory::fromFile(
+            dirname(__DIR__, 1) . '/resources/xml/vulnerabilities/signedAssertionReferencedEmbeddedAssertion.xml',
+        );
+
         /** @var \DOMElement $element */
         $element = $document->firstChild;
         return Assertion::fromXML($element);