Skip to content

Commit

Permalink
GR: resolve tests & mock client (#909)
Browse files Browse the repository at this point in the history 
Some tests checking dependency resolution works as expected and
correctly finds the vulnerable dependency chains.

Includes a new `MockResolutionClient` so I can test guided resolution on
toy data without relying on the live OSV / deps.dev APIs.
  • Loading branch information
@michaelkedar
michaelkedar committed Apr 11, 2024
1 parent 0280abf commit b6c013e
Show file tree
Hide file tree
Showing 9 changed files with 1,045 additions and 12 deletions.
8 changes: 4 additions & 4 deletions go.mod
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,10 +3,10 @@ module github.com/google/osv-scanner
go 1.21.8

require (
deps.dev/api/v3 v3.0.0-20240408233705-d32937cb3c73
deps.dev/util/maven v0.0.0-20240408233705-d32937cb3c73
deps.dev/util/resolve v0.0.0-20240408233705-d32937cb3c73
deps.dev/util/semver v0.0.0-20240408233705-d32937cb3c73
deps.dev/api/v3 v3.0.0-20240410004301-2c48bd578133
deps.dev/util/maven v0.0.0-20240410004301-2c48bd578133
deps.dev/util/resolve v0.0.0-20240410004301-2c48bd578133
deps.dev/util/semver v0.0.0-20240410004301-2c48bd578133
github.com/BurntSushi/toml v1.3.2
github.com/CycloneDX/cyclonedx-go v0.8.0
github.com/charmbracelet/bubbles v0.18.0
Expand Down
16 changes: 8 additions & 8 deletions go.sum
View file
Original file line number Diff line number Diff line change
@@ -1,13 +1,13 @@
dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
deps.dev/api/v3 v3.0.0-20240408233705-d32937cb3c73 h1:EkRr4/wSWtl8d2+PyuXsPNCUZr0avlULXXqW54s1tck=
deps.dev/api/v3 v3.0.0-20240408233705-d32937cb3c73/go.mod h1:k3RHZwAw7ijqoXmVDvcO7ikeTwTC4jtmhCDathV+IKE=
deps.dev/util/maven v0.0.0-20240408233705-d32937cb3c73 h1:H2SKkJ/f6wbFbDV751Y4QoKwYtndcncTju2z5nceaRg=
deps.dev/util/maven v0.0.0-20240408233705-d32937cb3c73/go.mod h1:SBW3EribdkZYk6zxi5oVn/ZECvi4ixb7EGgEWfSimNk=
deps.dev/util/resolve v0.0.0-20240408233705-d32937cb3c73 h1:UPGf40y60F4vTopLzuvv97KaEjB9E4VplJnyfrhtV+Y=
deps.dev/util/resolve v0.0.0-20240408233705-d32937cb3c73/go.mod h1:8JnoxYaxXYJ0gJ9RbNPFgCZFDO/TMNFrHTcRkGApBV0=
deps.dev/util/semver v0.0.0-20240408233705-d32937cb3c73 h1:gj+40U8zWZ/rPmxrbaXEJI1td0tqbBCyrG4GwFhyC5U=
deps.dev/util/semver v0.0.0-20240408233705-d32937cb3c73/go.mod h1:jkcH+k02gWHBiZ7G4OnUOkSZ6WDq54Pt5DrOA8FN8Uo=
deps.dev/api/v3 v3.0.0-20240410004301-2c48bd578133 h1:RZj09g++MGd4JkSmFqU5g3KJiuY2LB5LW2vgOVsyYp4=
deps.dev/api/v3 v3.0.0-20240410004301-2c48bd578133/go.mod h1:k3RHZwAw7ijqoXmVDvcO7ikeTwTC4jtmhCDathV+IKE=
deps.dev/util/maven v0.0.0-20240410004301-2c48bd578133 h1:QHLkms89+9CAsK9XajnsBUdeDQ/bx9VOemJZD1e6/Dg=
deps.dev/util/maven v0.0.0-20240410004301-2c48bd578133/go.mod h1:SBW3EribdkZYk6zxi5oVn/ZECvi4ixb7EGgEWfSimNk=
deps.dev/util/resolve v0.0.0-20240410004301-2c48bd578133 h1:jnYj12u4w8JUwT5Aom+zSJd1fm3YPkVYGG3wWNT0W80=
deps.dev/util/resolve v0.0.0-20240410004301-2c48bd578133/go.mod h1:8JnoxYaxXYJ0gJ9RbNPFgCZFDO/TMNFrHTcRkGApBV0=
deps.dev/util/semver v0.0.0-20240410004301-2c48bd578133 h1:ezuCAD47LNWxNRZ9KtDYWfOx7OtdEG+bQ4a6uN6pIiM=
deps.dev/util/semver v0.0.0-20240410004301-2c48bd578133/go.mod h1:jkcH+k02gWHBiZ7G4OnUOkSZ6WDq54Pt5DrOA8FN8Uo=
github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
github.com/CycloneDX/cyclonedx-go v0.8.0 h1:FyWVj6x6hoJrui5uRQdYZcSievw3Z32Z88uYzG/0D6M=
Expand Down

0 comments on commit b6c013e

Please sign in to comment.