1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
|
import Vue from 'vue';
import { GlDropdown } from '@gitlab/ui';
import VueApollo from 'vue-apollo';
import MRSecurityWidget from '~/vue_merge_request_widget/extensions/security_reports/mr_widget_security_reports.vue';
import Widget from '~/vue_merge_request_widget/components/widget/widget.vue';
import securityReportMergeRequestDownloadPathsQuery from '~/vue_merge_request_widget/extensions/security_reports/graphql/security_report_merge_request_download_paths.query.graphql';
import { mountExtended } from 'helpers/vue_test_utils_helper';
import waitForPromises from 'helpers/wait_for_promises';
import createMockApollo from 'helpers/mock_apollo_helper';
import { mockArtifacts } from './mock_data';
Vue.use(VueApollo);
describe('vue_merge_request_widget/extensions/security_reports/mr_widget_security_reports.vue', () => {
let wrapper;
const createComponent = ({ propsData, mockResponse = mockArtifacts() } = {}) => {
wrapper = mountExtended(MRSecurityWidget, {
apolloProvider: createMockApollo([
[securityReportMergeRequestDownloadPathsQuery, jest.fn().mockResolvedValue(mockResponse)],
]),
propsData: {
...propsData,
mr: {},
},
});
};
const findWidget = () => wrapper.findComponent(Widget);
const findDropdown = () => wrapper.findComponent(GlDropdown);
const findDropdownItem = (name) => wrapper.findByTestId(name);
describe('with data', () => {
beforeEach(async () => {
createComponent();
await waitForPromises();
});
it('displays the correct message', () => {
expect(wrapper.findByText('Security scans have run').exists()).toBe(true);
});
it('displays the help popover', () => {
expect(findWidget().props('helpPopover')).toEqual({
content: {
learnMorePath:
'/help/user/application_security/index#view-security-scan-information-in-merge-requests',
text:
'New vulnerabilities are vulnerabilities that the security scan detects in the merge request that are different to existing vulnerabilities in the default branch.',
},
options: {
title: 'Security scan results',
},
});
});
it.each`
artifactName | exists | downloadPath
${'sam_scan'} | ${true} | ${'/root/security-reports/-/jobs/14/artifacts/download?file_type=sast'}
${'sast-spotbugs'} | ${true} | ${'/root/security-reports/-/jobs/11/artifacts/download?file_type=sast'}
${'sast-sobelow'} | ${false} | ${''}
${'sast-pmd-apex'} | ${false} | ${''}
${'sast-eslint'} | ${true} | ${'/root/security-reports/-/jobs/8/artifacts/download?file_type=sast'}
${'secrets'} | ${true} | ${'/root/security-reports/-/jobs/7/artifacts/download?file_type=secret_detection'}
`(
'has a dropdown to download $artifactName artifacts',
({ artifactName, exists, downloadPath }) => {
expect(findDropdown().exists()).toBe(true);
expect(wrapper.findByText(`Download ${artifactName}`).exists()).toBe(exists);
if (exists) {
const dropdownItem = findDropdownItem(`download-${artifactName}`);
expect(dropdownItem.attributes('download')).toBe('');
expect(dropdownItem.attributes('href')).toBe(downloadPath);
}
},
);
});
describe('without data', () => {
beforeEach(() => {
createComponent({ mockResponse: { data: { project: { id: 'project-id' } } } });
});
it('displays the correct message', () => {
expect(wrapper.findByText('Security scans have run').exists()).toBe(true);
});
it('should not display the artifacts dropdown', () => {
expect(findDropdown().exists()).toBe(false);
});
});
});
|
