public void ReportVulnerabilityWithNullReferences()
{
var vulnDict = new Dictionary <string, Dictionary <string, Vulnerability> >
{
{
"TestPkg", new Dictionary <string, Vulnerability>
{
{
"CVE-Test", new Vulnerability(
"CVE-Test",
6.6,
"CWE-Test",
"Test Description",
null,
Vulnerability.AccessVectorType.NETWORK,
"Test Vendor"
)
}
}
}
};
var pkgs = new[] { new NuGetPackage {
LineNumber = 1, Id = "TestPkg", Version = "1.0.1"
} };
var reporter = new VulnerabilityReporter();
reporter.BuildVulnerabilityTextReport(vulnDict, pkgs, "NuGetDefense.dll", false, 0D, out var vulnNumber);
Assert.Equal(0, vulnNumber);
//TODO: Assert MSBuildMessages and VulnerabilityReport
}
public void ReportVulnerabilityWithNullReferences()
{
var vulnDict = new Dictionary <string, Dictionary <string, Vulnerability> >
{
{
"TestPkg", new Dictionary <string, Vulnerability>
{
{
"CVE-Test", new Vulnerability
{
Cve = "CVE-Test",
Cwe = "CWE-Test",
CvssScore = 6.6,
Description = "Test Description",
References = null,
Vendor = "Test Vendor",
Vector = Vulnerability.AccessVectorType.NETWORK
}
}
}
}
};
var pkgs = new[] { new NuGetPackage {
LineNumber = 1, Id = "TestPkg", Version = "1.0.1"
} };
var reporter = new VulnerabilityReporter();
reporter.BuildVulnerabilityReport(vulnDict, pkgs, "NuGetDefense.dll", false, 0D);
//TODO: Assert MSBuildMessages and VulnerabilityReport
}
