archive/renovatebot_renovate
0
0
Fork 0
mirror of https://github.com/renovatebot/renovate.git synced 2024-12-22 13:38:32 +00:00
Code Issues Projects Releases Wiki Activity
main
renovatebot_renovate/lib/util/vulnerability/utils.spec.ts
Adam Setch 1c82218197
feat(vulnerabilities): handle medium and unknown severities (#22257) 
Co-authored-by: Jamie Magee <jamie.magee@gmail.com>
2023-05-16 15:38:23 +00:00

158 lines
3.8 KiB
TypeScript
Raw Permalink Blame History

import { getHighestVulnerabilitySeverity } from './utils';
describe('util/vulnerability/utils', () => {
it('parent CRITICAL vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'CRITICAL',
};
const childConfig = {
vulnerabilitySeverity: 'MODERATE',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('CRITICAL');
});
it('child CRITICAL vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'MODERATE',
};
const childConfig = {
vulnerabilitySeverity: 'CRITICAL',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('CRITICAL');
});
it('parent HIGH vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'HIGH',
};
const childConfig = {
vulnerabilitySeverity: 'MODERATE',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('HIGH');
});
it('child HIGH vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'MODERATE',
};
const childConfig = {
vulnerabilitySeverity: 'HIGH',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('HIGH');
});
it('parent MODERATE vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'MODERATE',
};
const childConfig = {
vulnerabilitySeverity: 'LOW',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('MODERATE');
});
it('child MODERATE vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'LOW',
};
const childConfig = {
vulnerabilitySeverity: 'MODERATE',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('MODERATE');
});
it('child MEDIUM vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'LOW',
};
const childConfig = {
vulnerabilitySeverity: 'MEDIUM',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('MEDIUM');
});
it('parent LOW vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'LOW',
};
const childConfig = {
vulnerabilitySeverity: undefined,
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('LOW');
});
it('child LOW vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: undefined,
};
const childConfig = {
vulnerabilitySeverity: 'LOW',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('LOW');
});
it('child UNKNOWN vulnerability severity rating is maintained', () => {
const parentConfig = {
vulnerabilitySeverity: 'CRITICAL',
};
const childConfig = {
vulnerabilitySeverity: 'UNKNOWN',
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBe('UNKNOWN');
});
it('handled undefined parent and child vulnerability severity', () => {
const parentConfig = {
vulnerabilitySeverity: undefined,
};
const childConfig = {
vulnerabilitySeverity: undefined,
};
const severity = getHighestVulnerabilitySeverity(parentConfig, childConfig);
expect(severity).toBeUndefined();
});
});
Reference in New Issue View Git Blame Copy Permalink