mirror of
https://github.com/anchore/syft
synced 2024-11-13 23:57:07 +00:00
7392d607b6
* split up sbom.Format into encode and decode ops Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * update cmd pkg to inject format configs Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * bump cyclonedx schema to 1.5 Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * redact image metadata from github encoder tests Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * add more testing around format decoder identify Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * add test case for format version options Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * fix cli tests Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * fix CLI test Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * [wip] - review comments Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * keep encoder creation out of post load function Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * keep decider and identify functions Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * add a few more doc comments Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * remove format encoder default function helpers Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * address PR feedback Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * move back to streaming based decode functions Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * with common convention for encoder constructors Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * fix tests and allow for encoders to be created from cli options Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * fix cli tests Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * fix linting Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> * buffer reads from stdin to support seeking Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com> --------- Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>
101 lines
2.8 KiB
Go
101 lines
2.8 KiB
Go
package integration
|
|
|
|
import (
|
|
"fmt"
|
|
"os"
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/require"
|
|
|
|
"github.com/anchore/syft/cmd/syft/cli/commands"
|
|
"github.com/anchore/syft/cmd/syft/cli/options"
|
|
"github.com/anchore/syft/syft/format"
|
|
"github.com/anchore/syft/syft/format/cyclonedxjson"
|
|
"github.com/anchore/syft/syft/format/cyclonedxxml"
|
|
"github.com/anchore/syft/syft/format/spdxjson"
|
|
"github.com/anchore/syft/syft/format/spdxtagvalue"
|
|
"github.com/anchore/syft/syft/format/syftjson"
|
|
"github.com/anchore/syft/syft/sbom"
|
|
"github.com/anchore/syft/syft/source"
|
|
)
|
|
|
|
func mustEncoder(enc sbom.FormatEncoder, err error) sbom.FormatEncoder {
|
|
if err != nil {
|
|
panic(err)
|
|
}
|
|
return enc
|
|
}
|
|
|
|
// TestConvertCmd tests if the converted SBOM is a valid document according
|
|
// to spec.
|
|
// TODO: This test can, but currently does not, check the converted SBOM content. It
|
|
// might be useful to do that in the future, once we gather a better understanding of
|
|
// what users expect from the convert command.
|
|
func TestConvertCmd(t *testing.T) {
|
|
tests := []struct {
|
|
name string
|
|
format sbom.FormatEncoder
|
|
}{
|
|
{
|
|
name: "syft-json",
|
|
format: syftjson.NewFormatEncoder(),
|
|
},
|
|
{
|
|
name: "spdx-json",
|
|
format: mustEncoder(spdxjson.NewFormatEncoderWithConfig(spdxjson.DefaultEncoderConfig())),
|
|
},
|
|
{
|
|
name: "spdx-tag-value",
|
|
format: mustEncoder(spdxtagvalue.NewFormatEncoderWithConfig(spdxtagvalue.DefaultEncoderConfig())),
|
|
},
|
|
{
|
|
name: "cyclonedx-json",
|
|
format: mustEncoder(cyclonedxjson.NewFormatEncoderWithConfig(cyclonedxjson.DefaultEncoderConfig())),
|
|
},
|
|
{
|
|
name: "cyclonedx-xml",
|
|
format: mustEncoder(cyclonedxxml.NewFormatEncoderWithConfig(cyclonedxxml.DefaultEncoderConfig())),
|
|
},
|
|
}
|
|
for _, test := range tests {
|
|
t.Run(test.name, func(t *testing.T) {
|
|
syftSbom, _ := catalogFixtureImage(t, "image-pkg-coverage", source.SquashedScope, nil)
|
|
syftFormat := syftjson.NewFormatEncoder()
|
|
|
|
syftFile, err := os.CreateTemp("", "test-convert-sbom-")
|
|
require.NoError(t, err)
|
|
defer func() {
|
|
_ = os.Remove(syftFile.Name())
|
|
}()
|
|
|
|
err = syftFormat.Encode(syftFile, syftSbom)
|
|
require.NoError(t, err)
|
|
|
|
formatFile, err := os.CreateTemp("", "test-convert-sbom-")
|
|
require.NoError(t, err)
|
|
defer func() {
|
|
_ = os.Remove(syftFile.Name())
|
|
}()
|
|
|
|
opts := &commands.ConvertOptions{
|
|
Output: options.Output{
|
|
Outputs: []string{fmt.Sprintf("%s=%s", test.format.ID().String(), formatFile.Name())},
|
|
},
|
|
}
|
|
require.NoError(t, opts.PostLoad())
|
|
|
|
// stdout reduction of test noise
|
|
rescue := os.Stdout // keep backup of the real stdout
|
|
os.Stdout, _ = os.OpenFile(os.DevNull, os.O_APPEND|os.O_WRONLY, os.ModeAppend)
|
|
defer func() {
|
|
os.Stdout = rescue
|
|
}()
|
|
|
|
err = commands.RunConvert(opts, syftFile.Name())
|
|
require.NoError(t, err)
|
|
|
|
foundID, _ := format.Identify(formatFile)
|
|
require.Equal(t, test.format.ID(), foundID)
|
|
})
|
|
}
|
|
}
|