Skip to content

Commit 2962272

Browse files
tmihalacTheodor Mihalache
tmihalac
authored and
Theodor Mihalache
committed
Added tests for aggregator maven project
Signed-off-by: Theodor Mihalache <tmihalac@tmihalac-thinkpadp1gen7.rmtusfl.csb>
1 parent bc9d0cc commit 2962272

File tree

1 file changed

+196
-0
lines changed

1 file changed

+196
-0
lines changed

src/vuln_analysis/tools/tests/test_transitive_code_search.py

Lines changed: 196 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -422,6 +422,202 @@ async def test_transitive_search_java_4():
422422
document = list_path[-1]
423423
assert 'src/main/java/io/cryostat' in document.metadata['source']
424424

425+
# Test method reference
426+
@pytest.mark.asyncio
427+
async def test_transitive_search_java_5():
428+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
429+
set_input_for_next_run(git_repository="https://github.com/cryostatio/cryostat",
430+
git_ref="8f753753379e9381429b476aacbf6890ef101438",
431+
included_extensions=["**/*.java"],
432+
excluded_extensions=["target/**/*",
433+
"build/**/*",
434+
"*.class",
435+
".gradle/**/*",
436+
".mvn/**/*",
437+
".gitignore",
438+
"test/**/*",
439+
"tests/**/*",
440+
"src/test/**/*",
441+
"pom.xml",
442+
"build.gradle"])
443+
result = await transitive_code_search_runner_coroutine("commons-io:commons-io:2.16.1,org.apache.commons.io.FileUtils.forceDeleteOnExit")
444+
(path_found, list_path) = result
445+
print(result)
446+
assert path_found is False
447+
assert len(list_path) is 1
448+
449+
# CVE-2025-48734 - https://github.com/rh-messaging/activemq-artemis - Reachable
450+
@pytest.mark.asyncio
451+
async def test_transitive_search_java_11():
452+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
453+
set_input_for_next_run(git_repository="https://github.com/rh-messaging/activemq-artemis",
454+
git_ref="7.11.0.CR2",
455+
included_extensions=["**/*.java"],
456+
excluded_extensions=["target/**/*",
457+
"build/**/*",
458+
"*.class",
459+
".gradle/**/*",
460+
".mvn/**/*",
461+
".gitignore",
462+
"test/**/*",
463+
"tests/**/*",
464+
"src/test/**/*",
465+
"pom.xml",
466+
"build.gradle"])
467+
result = await transitive_code_search_runner_coroutine("commons-beanutils:commons-beanutils:1.9.4,org.apache.commons.beanutils.PropertyUtilsBean.getProperty")
468+
(path_found, list_path) = result
469+
print(result)
470+
assert path_found is True
471+
assert len(list_path) > 1
472+
document = list_path[-1]
473+
assert ('activemq' in document.metadata['source']) or ('artemis' in document.metadata['source'])
474+
475+
# CVE-2025-58057 - https://github.com/rh-messaging/activemq-artemis - Not Reachable
476+
@pytest.mark.asyncio
477+
async def test_transitive_search_java_12():
478+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
479+
set_input_for_next_run(git_repository="https://github.com/rh-messaging/activemq-artemis",
480+
git_ref="7.11.0.CR2",
481+
included_extensions=["**/*.java"],
482+
excluded_extensions=["target/**/*",
483+
"build/**/*",
484+
"*.class",
485+
".gradle/**/*",
486+
".mvn/**/*",
487+
".gitignore",
488+
"test/**/*",
489+
"tests/**/*",
490+
"src/test/**/*",
491+
"pom.xml",
492+
"build.gradle"])
493+
result = await transitive_code_search_runner_coroutine("io.netty:netty-codec:4.1.119.Final,io.netty.handler.codec.compression.BrotliDecoder.decode")
494+
(path_found, list_path) = result
495+
print(result)
496+
assert path_found is False
497+
assert len(list_path) is 1
498+
499+
# CVE-2023-1370 - https://github.com/rh-messaging/activemq-artemis - Not Reachable
500+
@pytest.mark.asyncio
501+
async def test_transitive_search_java_13():
502+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
503+
set_input_for_next_run(git_repository="https://github.com/rh-messaging/activemq-artemis",
504+
git_ref="7.11.0.CR2",
505+
included_extensions=["**/*.java"],
506+
excluded_extensions=["target/**/*",
507+
"build/**/*",
508+
"*.class",
509+
".gradle/**/*",
510+
".mvn/**/*",
511+
".gitignore",
512+
"test/**/*",
513+
"tests/**/*",
514+
"src/test/**/*",
515+
"pom.xml",
516+
"build.gradle"])
517+
result = await transitive_code_search_runner_coroutine("net.minidev:json-smart:2.4.9,net.minidev.json.parser.JSONParser.parse")
518+
(path_found, list_path) = result
519+
print(result)
520+
assert path_found is False
521+
assert len(list_path) is 1
522+
523+
# CVE-2019-10086 - https://github.com/rh-messaging/activemq-artemis - Not Reachable
524+
@pytest.mark.asyncio
525+
async def test_transitive_search_java_14():
526+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
527+
set_input_for_next_run(git_repository="https://github.com/rh-messaging/activemq-artemis",
528+
git_ref="7.11.0.CR2",
529+
included_extensions=["**/*.java"],
530+
excluded_extensions=["target/**/*",
531+
"build/**/*",
532+
"*.class",
533+
".gradle/**/*",
534+
".mvn/**/*",
535+
".gitignore",
536+
"test/**/*",
537+
"tests/**/*",
538+
"src/test/**/*",
539+
"pom.xml",
540+
"build.gradle"])
541+
result = await transitive_code_search_runner_coroutine("commons-beanutils:commons-beanutils:1.9.2,org.apache.commons.beanutils.PropertyUtilsBean.getProperty")
542+
(path_found, list_path) = result
543+
print(result)
544+
assert path_found is False
545+
assert len(list_path) is 1
546+
547+
# CVE-2025-24970 - https://github.com/rh-messaging/activemq-artemis - Not Reachable
548+
@pytest.mark.asyncio
549+
async def test_transitive_search_java_15():
550+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
551+
set_input_for_next_run(git_repository="https://github.com/rh-messaging/activemq-artemis",
552+
git_ref="7.11.0.CR2",
553+
included_extensions=["**/*.java"],
554+
excluded_extensions=["target/**/*",
555+
"build/**/*",
556+
"*.class",
557+
".gradle/**/*",
558+
".mvn/**/*",
559+
".gitignore",
560+
"test/**/*",
561+
"tests/**/*",
562+
"src/test/**/*",
563+
"pom.xml",
564+
"build.gradle"])
565+
result = await transitive_code_search_runner_coroutine("io.netty:netty-handler:4.1.86.Final-redhat-00001,io.netty.handler.ssl.SslContext.newHandler")
566+
(path_found, list_path) = result
567+
print(result)
568+
assert path_found is False
569+
assert len(list_path) is 1
570+
571+
# CVE-2024-8184 - https://github.com/rh-messaging/activemq-artemis - Reachable
572+
@pytest.mark.asyncio
573+
async def test_transitive_search_java_16():
574+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
575+
set_input_for_next_run(git_repository="https://github.com/rh-messaging/activemq-artemis",
576+
git_ref="7.11.0.CR2",
577+
included_extensions=["**/*.java"],
578+
excluded_extensions=["target/**/*",
579+
"build/**/*",
580+
"*.class",
581+
".gradle/**/*",
582+
".mvn/**/*",
583+
".gitignore",
584+
"test/**/*",
585+
"tests/**/*",
586+
"src/test/**/*",
587+
"pom.xml",
588+
"build.gradle"])
589+
result = await transitive_code_search_runner_coroutine("org.eclipse.jetty:jetty-server:10.0.11,org.eclipse.jetty.server.handler.ThreadLimitHandler.getRemote")
590+
(path_found, list_path) = result
591+
print(result)
592+
assert path_found is True
593+
assert len(list_path) > 1
594+
document = list_path[-1]
595+
assert ('activemq' in document.metadata['source']) or ('artemis' in document.metadata['source'])
596+
597+
# Test method reference
598+
@pytest.mark.asyncio
599+
async def test_transitive_search_java_5():
600+
transitive_code_search_runner_coroutine = await get_transitive_code_runner_function()
601+
set_input_for_next_run(git_repository="https://github.com/cryostatio/cryostat",
602+
git_ref="8f753753379e9381429b476aacbf6890ef101438",
603+
included_extensions=["**/*.java"],
604+
excluded_extensions=["target/**/*",
605+
"build/**/*",
606+
"*.class",
607+
".gradle/**/*",
608+
".mvn/**/*",
609+
".gitignore",
610+
"test/**/*",
611+
"tests/**/*",
612+
"src/test/**/*",
613+
"pom.xml",
614+
"build.gradle"])
615+
result = await transitive_code_search_runner_coroutine("commons-io:commons-io:2.16.1,org.apache.commons.io.FileUtils.forceDeleteOnExit")
616+
(path_found, list_path) = result
617+
print(result)
618+
assert path_found is False
619+
assert len(list_path) is 1
620+
425621
# Test method reference
426622
@pytest.mark.asyncio
427623
async def test_transitive_search_java_5():

0 commit comments

Comments
 (0)