2022-01-19 06:19:13 +00:00
package securitytrails
import (
"context"
"fmt"
"testing"
"time"
"github.com/kylelemons/godebug/pretty"
2022-02-10 18:54:33 +00:00
"github.com/trufflesecurity/trufflehog/v3/pkg/detectors"
2022-01-19 06:19:13 +00:00
2022-02-10 18:54:33 +00:00
"github.com/trufflesecurity/trufflehog/v3/pkg/common"
"github.com/trufflesecurity/trufflehog/v3/pkg/pb/detectorspb"
2022-01-19 06:19:13 +00:00
)
func TestSecurityTrails_FromChunk ( t * testing . T ) {
ctx , cancel := context . WithTimeout ( context . Background ( ) , time . Second * 5 )
defer cancel ( )
2022-01-19 06:24:42 +00:00
testSecrets , err := common . GetSecret ( ctx , "trufflehog-testing" , "scanners1" )
2022-01-19 06:19:13 +00:00
if err != nil {
t . Fatalf ( "could not get test secrets from GCP: %s" , err )
}
secret := testSecrets . MustGetField ( "SECURITYTRAILS" )
inactiveSecret := testSecrets . MustGetField ( "SECURITYTRAILS_INACTIVE" )
type args struct {
ctx context . Context
data [ ] byte
verify bool
}
tests := [ ] struct {
name string
s Scanner
args args
want [ ] detectors . Result
wantErr bool
} {
{
name : "found, verified" ,
s : Scanner { } ,
args : args {
ctx : context . Background ( ) ,
data : [ ] byte ( fmt . Sprintf ( "You can find a securitytrails secret %s within" , secret ) ) ,
verify : true ,
} ,
want : [ ] detectors . Result {
{
DetectorType : detectorspb . DetectorType_SecurityTrails ,
Verified : true ,
} ,
} ,
wantErr : false ,
} ,
{
name : "found, unverified" ,
s : Scanner { } ,
args : args {
ctx : context . Background ( ) ,
data : [ ] byte ( fmt . Sprintf ( "You can find a securitytrails secret %s within but not valid" , inactiveSecret ) ) , // the secret would satisfy the regex but not pass validation
verify : true ,
} ,
want : [ ] detectors . Result {
{
DetectorType : detectorspb . DetectorType_SecurityTrails ,
Verified : false ,
} ,
} ,
wantErr : false ,
} ,
{
name : "not found" ,
s : Scanner { } ,
args : args {
ctx : context . Background ( ) ,
data : [ ] byte ( "You cannot find the secret within" ) ,
verify : true ,
} ,
want : nil ,
wantErr : false ,
} ,
}
for _ , tt := range tests {
t . Run ( tt . name , func ( t * testing . T ) {
s := Scanner { }
got , err := s . FromData ( tt . args . ctx , tt . args . verify , tt . args . data )
if ( err != nil ) != tt . wantErr {
t . Errorf ( "SecurityTrails.FromData() error = %v, wantErr %v" , err , tt . wantErr )
return
}
for i := range got {
if len ( got [ i ] . Raw ) == 0 {
t . Fatalf ( "no raw secret present: \n %+v" , got [ i ] )
}
got [ i ] . Raw = nil
}
if diff := pretty . Compare ( got , tt . want ) ; diff != "" {
t . Errorf ( "SecurityTrails.FromData() %s diff: (-got +want)\n%s" , tt . name , diff )
}
} )
}
}
func BenchmarkFromData ( benchmark * testing . B ) {
ctx := context . Background ( )
s := Scanner { }
for name , data := range detectors . MustGetBenchmarkData ( ) {
benchmark . Run ( name , func ( b * testing . B ) {
for n := 0 ; n < b . N ; n ++ {
s . FromData ( ctx , false , data )
}
} )
}
}