use of com.mercedesbenz.sechub.commons.model.SecHubFinding in project sechub by mercedes-benz.
the class ReportTrafficLightCalculatorTest method prepareSechubResultWithFindings.
/* +-----------------------------------------------------------------------+ */
/* +............................ Helpers ..................................+ */
/* +-----------------------------------------------------------------------+ */
private SecHubReportModel prepareSechubResultWithFindings(Severity... severities) {
List<SecHubFinding> findingList = new ArrayList<>();
for (Severity severity : severities) {
SecHubFinding finding = new SecHubFinding();
finding.setSeverity(severity);
findingList.add(finding);
}
SecHubReportModel model = new SecHubReportModel();
model.getResult().getFindings().addAll(findingList);
return model;
}
use of com.mercedesbenz.sechub.commons.model.SecHubFinding in project sechub by mercedes-benz.
the class ScanSecHubReportTest method scanreport_result_with_report_containing_sechub_report_model_init_and_json_parts_work.
@Test
void scanreport_result_with_report_containing_sechub_report_model_init_and_json_parts_work() {
/* prepare */
SecHubReportModel reportModel = new SecHubReportModel();
SecHubFinding finding = new SecHubFinding();
finding.setName("finding1");
reportModel.getResult().getFindings().add(finding);
reportModel.setStatus(SecHubStatus.FAILED);
reportModel.getMessages().add(new SecHubMessage(SecHubMessageType.WARNING, "Testwarning"));
ScanReport report = new ScanReport();
report.setResult(reportModel.toJSON());
report.setResultType(ScanReportResultType.MODEL);
/* execute */
ScanSecHubReport createdReport = new ScanSecHubReport(report);
// now we also check if the JSON deserialization /serialization works as
// expected
String json = createdReport.toJSON();
ScanSecHubReport reportToTest = ScanSecHubReport.fromJSONString(json);
/* test */
assertEquals(SecHubStatus.FAILED, reportToTest.getStatus());
// traffic light was not set at all
assertEquals(null, reportToTest.getTrafficLight());
assertEquals(1, reportToTest.getMessages().size());
SecHubMessage message1 = reportToTest.getMessages().iterator().next();
assertEquals("Testwarning", message1.getText());
assertEquals(SecHubMessageType.WARNING, message1.getType());
assertEquals(1, reportToTest.getResult().getFindings().size());
assertEquals(1, reportToTest.getResult().getCount());
}
use of com.mercedesbenz.sechub.commons.model.SecHubFinding in project sechub by mercedes-benz.
the class ScanSecHubReportTest method scanreport_result_by_simple_result_does_not_recalculate_traffic_light_but_uses_report_traffic_light.
@Test
void scanreport_result_by_simple_result_does_not_recalculate_traffic_light_but_uses_report_traffic_light() {
/* prepare */
SecHubResult result = new SecHubResult();
SecHubFinding finding = new SecHubFinding();
finding.setName("finding1");
finding.setSeverity(Severity.CRITICAL);
result.getFindings().add(finding);
ScanReport report = new ScanReport();
report.setResult(result.toJSON());
report.setTrafficLight(TrafficLight.GREEN);
report.setResultType(ScanReportResultType.RESULT);
/* execute */
ScanSecHubReport createdReport = new ScanSecHubReport(report);
// now we also check if the JSON deserialization /serialization works as
// expected
String json = createdReport.toJSON();
ScanSecHubReport reportToTest = ScanSecHubReport.fromJSONString(json);
/* test */
assertEquals(TrafficLight.GREEN, reportToTest.getTrafficLight());
}
use of com.mercedesbenz.sechub.commons.model.SecHubFinding in project sechub by mercedes-benz.
the class FalsePositiveJobDataConfigMergerTest method sanity_check_for_JSON_example_data.
@Test
public void sanity_check_for_JSON_example_data() {
/* execute */
ScanSecHubReport scanSecHubReport = loadScanReport("sechub_result/sechub-report-example1-noscantype.json");
SecHubFinding secHubFinding = scanSecHubReport.getResult().getFindings().get(1);
assertEquals(Severity.MEDIUM, secHubFinding.getSeverity());
Integer cweId = secHubFinding.getCweId();
assertEquals(Integer.valueOf(1), cweId);
}
use of com.mercedesbenz.sechub.commons.model.SecHubFinding in project sechub by mercedes-benz.
the class FalsePositiveMetaDataFactoryTest method createTestFinding.
private SecHubFinding createTestFinding() {
SecHubFinding finding = new SecHubFinding();
finding.setCweId(4211);
finding.setCveId("CVE-4211");
return finding;
}
Aggregations