Skip to content

Commit

Permalink
test(vulnerability-check): add test due to changes in results from np…
Browse files Browse the repository at this point in the history 
…m audit
  • Loading branch information
@hdorgeval
hdorgeval committed Jun 28, 2019
1 parent ff095a6 commit 77463c9
Showing 1 changed file with 86 additions and 3 deletions.
89 changes: 86 additions & 3 deletions test/16-npx-integration-with-npm-audit-tests.js
View file
Expand Up @@ -271,10 +271,9 @@ describe('npx integration tests with npm audit', () => {
writeFile('package.json', JSON.stringify(pkg, null, 2));
})
.then(() => {
// will remove low+moderate+high vulnerabilities
const auditOptions = `
--debug
--audit-level=critical
--json
--audit-level=critical
`;
writeFile('audit.opts', auditOptions);
})
Expand Down Expand Up @@ -325,5 +324,89 @@ describe('npx integration tests with npm audit', () => {
assert(publishLog.includes('Command `npm` exited with code'));
});
});

it('Should not publish when --audit-level is set to high and vulnerability check is enabled in .publishrc config file', () => {
return Promise.resolve()
.then(() => {
writeFile(
'.publishrc',
JSON.stringify({
confirm: false,
validations: {
vulnerableDependencies: true,
sensitiveData: false,
uncommittedChanges: false,
untrackedFiles: false,
branch: 'master',
gitTag: false,
},
publishTag: 'latest',
prePublishScript:
'echo "running script defined in .publishrc ..."',
postPublishScript: false,
})
);
})
.then(() => {
const pkg = JSON.parse(readFile('package.json').toString());
pkg.dependencies = {
'publish-please': '2.4.1',
};
writeFile('package.json', JSON.stringify(pkg, null, 2));
})
.then(() => {
// will remove low+moderate vulnerabilities
const auditOptions = `
--audit-level=high
`;
writeFile('audit.opts', auditOptions);
})
.then(() => console.log(`> npx ${packageName}`))
.then(() =>
exec(
/* prettier-ignore */
`npx ../${packageName.replace('@','-')}.tgz > ./publish10.log`
)
)
.then(() => {
const publishLog = readFile('./publish10.log').toString();
console.log(publishLog);
return publishLog;
})
.then((publishLog) => {
/* prettier-ignore */
assert(publishLog.includes('Running pre-publish script'));
/* prettier-ignore */
assert(publishLog.includes('running script defined in .publishrc ...'));
/* prettier-ignore */
assert(publishLog.includes('Running validations'));
/* prettier-ignore */
assert(publishLog.includes('Checking for the vulnerable dependencies'));
/* prettier-ignore */
assert(publishLog.includes('Validating branch'));
/* prettier-ignore */
assert(publishLog.includes('ERRORS'));
/* prettier-ignore */
assert(publishLog.includes('publish-please -> ban-sensitive-files -> ggit -> lodash'));
/* prettier-ignore */
assert(publishLog.includes('publish-please -> nsp -> https-proxy-agent'));
/* prettier-ignore */
assert(!publishLog.includes('publish-please -> nsp -> joi -> hoek'));
/* prettier-ignore */
assert(!publishLog.includes('publish-please -> nsp -> joi -> moment'));
/* prettier-ignore */
assert(!publishLog.includes('publish-please -> nsp -> joi -> topo -> hoek'));
/* prettier-ignore */
assert(!publishLog.includes('publish-please -> nsp -> rc -> deep-extend'));
/* prettier-ignore */
assert(!publishLog.includes('publish-please -> nsp -> wreck -> boom -> hoek'));
/* prettier-ignore */
assert(!publishLog.includes('publish-please -> nsp -> wreck -> hoek'));
/* prettier-ignore */
assert(!publishLog.includes('Release info'));
/* prettier-ignore */
assert(!publishLog.includes('Command `npm` exited with code'));
});
});
}
});

0 comments on commit 77463c9

Please sign in to comment.