test_project_scanner.pyβ’3.98 kB
#!/usr/bin/env python3
"""
Test script for the new project-aware security scanner.
"""
import asyncio
import shutil
import tempfile
from pathlib import Path
from src.documentation_search_enhanced.main import scan_project_dependencies
def setup_test_project(base: Path, name: str, files: dict) -> Path:
"""Create a temporary test project directory and files."""
project_dir = base / name
project_dir.mkdir(parents=True, exist_ok=True)
for filename, content in files.items():
(project_dir / filename).write_text(content)
print(f"π Created test project: '{project_dir}'")
return project_dir
async def _run_scanner_tests(base_dir: Path):
print("π§ͺ TESTING PROJECT-AWARE SECURITY SCANNER")
print("=" * 60)
# 1. Test with pyproject.toml
print("\n1. Testing with pyproject.toml...")
pyproject_content = """
[project]
name = "test-project-1"
version = "0.1.0"
dependencies = [
"requests==2.25.0", # Known to have vulnerabilities
"fastapi>=0.100.0",
"numpy"
]
"""
project1 = setup_test_project(base_dir, "test-project-1", {"pyproject.toml": pyproject_content})
report1 = await scan_project_dependencies(str(project1))
assert report1['summary']['vulnerable_count'] > 0
assert any(p['library'] == 'requests' for p in report1['vulnerable_packages'])
print("β
Successfully detected vulnerabilities in pyproject.toml.")
# 2. Test with requirements.txt
print("\n2. Testing with requirements.txt...")
requirements_content = """
# This is a comment
requests==2.25.0
# Another comment
django<4.0
"""
project2 = setup_test_project(base_dir, "test-project-2", {"requirements.txt": requirements_content})
report2 = await scan_project_dependencies(str(project2))
assert report2['summary']['vulnerable_count'] > 0
assert any(p['library'] == 'requests' for p in report2['vulnerable_packages'])
assert len(report2['vulnerable_packages']) >= 1
print("β
Successfully detected vulnerabilities in requirements.txt.")
# 3. Test with package.json (npm)
print("\n3. Testing with package.json...")
package_json_content = """
{
"name": "test-project-3",
"version": "1.0.0",
"dependencies": {
"express": "4.17.1",
"lodash": "4.17.20"
}
}
"""
project3 = setup_test_project(base_dir, "test-project-3", {"package.json": package_json_content})
report3 = await scan_project_dependencies(str(project3))
# Note: Our scanner might find vulns in old versions of express/lodash
if report3['summary']['vulnerable_count'] > 0:
print(f"β
Successfully detected {report3['summary']['vulnerable_count']} vulnerable npm packages.")
else:
print("β
Scanned npm packages successfully (no vulnerabilities found in these versions).")
# 4. Test with a clean project
print("\n4. Testing with a clean project...")
clean_pyproject = """
[project]
name = "clean-project"
version = "0.1.0"
dependencies = []
"""
project_clean = setup_test_project(base_dir, "test-project-clean", {"pyproject.toml": clean_pyproject})
report4 = await scan_project_dependencies(str(project_clean))
assert report4['summary']['total_dependencies'] == 0
print("β
Correctly handled project with no dependencies.")
# 5. Test with no dependency file
print("\n5. Testing with no dependency file...")
empty_project = setup_test_project(base_dir, "test-project-empty", {})
report5 = await scan_project_dependencies(str(empty_project))
assert "error" in report5
print("β
Correctly handled project with no dependency file.")
print("\n𧹠Cleaned up test directories.")
def test_scanner():
base_dir = Path(tempfile.mkdtemp(prefix="project_scanner_"))
try:
asyncio.run(_run_scanner_tests(base_dir))
finally:
shutil.rmtree(base_dir, ignore_errors=True)
print("β
Temporary project directories removed.")
if __name__ == "__main__":
test_scanner()