// Copyright 2021 Security Scorecard Authors // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. package e2e import ( "context" . "github.com/onsi/ginkgo" . "github.com/onsi/gomega" "github.com/ossf/scorecard/v2/checker" "github.com/ossf/scorecard/v2/checks" "github.com/ossf/scorecard/v2/clients/githubrepo" scut "github.com/ossf/scorecard/v2/utests" ) // TODO: use dedicated repo that don't change. // TODO: need negative results. var _ = Describe("E2E TEST:"+checks.CheckDependencyUpdateTool, func() { Context("E2E TEST:Validating dependencies are updated with a tool", func() { It("Should return repo uses dependabot", func() { dl := scut.TestDetailLogger{} repoClient := githubrepo.CreateGithubRepoClient(context.Background(), logger) err := repoClient.InitRepo("ossf", "scorecard") Expect(err).Should(BeNil()) req := checker.CheckRequest{ Ctx: context.Background(), RepoClient: repoClient, Owner: "ossf", Repo: "scorecard", Dlogger: &dl, } expected := scut.TestReturn{ Error: nil, Score: checker.MaxResultScore, NumberOfWarn: 0, NumberOfInfo: 1, NumberOfDebug: 0, } result := checks.UsesDependencyUpdateTool(&req) // UPGRADEv2: to remove. // Old version. Expect(result.Error).Should(BeNil()) Expect(result.Pass).Should(BeTrue()) // New version. Expect(scut.ValidateTestReturn(nil, "dependabot", &expected, &result, &dl)).Should(BeTrue()) }) It("Should return repo uses renovatebot", func() { dl := scut.TestDetailLogger{} repoClient := githubrepo.CreateGithubRepoClient(context.Background(), logger) err := repoClient.InitRepo("netlify", "netlify-cms") Expect(err).Should(BeNil()) req := checker.CheckRequest{ Ctx: context.Background(), RepoClient: repoClient, Owner: "netlify", Repo: "netlify-cms", Dlogger: &dl, } expected := scut.TestReturn{ Error: nil, Score: checker.MaxResultScore, NumberOfWarn: 0, NumberOfInfo: 1, NumberOfDebug: 0, } result := checks.UsesDependencyUpdateTool(&req) // UPGRADEv2: to remove. // Old version. Expect(result.Error).Should(BeNil()) Expect(result.Pass).Should(BeTrue()) // New version. Expect(scut.ValidateTestReturn(nil, "renovabot", &expected, &result, &dl)).Should(BeTrue()) }) }) })