-
Notifications
You must be signed in to change notification settings - Fork 726
/
to_test.rb
83 lines (66 loc) · 2.13 KB
/
to_test.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
#This is a utility script for generating tests from reported warnings.
#
#It is not heavily tested. It is mostly for the convenience of coders. Sometimes
#it generates broken code which will need to be fixed manually.
#
#Usage:
#
# ruby to_test.rb apps/some_app > tests/test_some_app.rb`
# Set paths
$LOAD_PATH.unshift "#{File.expand_path(File.dirname(__FILE__))}/../lib"
require 'brakeman'
require 'ruby_parser'
require 'ruby_parser/bm_sexp'
require 'brakeman/options'
require 'brakeman/report/report_base'
class Brakeman::Report::Tests < Brakeman::Report::Base
def generate_report
counter = 0
name = camelize File.basename(tracker.app_path)
output = <<-RUBY
abort "Please run using test/test.rb" unless defined? BrakemanTester
#{name} = BrakemanTester.run_scan "#{File.basename tracker.app_path}", "#{name}"
class #{name}Tests < Test::Unit::TestCase
include BrakemanTester::FindWarning
include BrakemanTester::CheckExpected
def expected
@expected ||= {
:controller => #{@checks.controller_warnings.length},
:model => #{@checks.model_warnings.length},
:template => #{@checks.template_warnings.length},
:warning => #{@checks.warnings.length} }
end
def report
#{name}
end
RUBY
output << @checks.all_warnings.map do |w|
counter += 1
<<-RUBY
def test_#{w.warning_type.to_s.downcase.tr(" -", "__")}_#{counter}
assert_warning :type => #{w.warning_set.inspect},
:warning_code => #{w.warning_code},
:fingerprint => #{w.fingerprint.inspect},
:warning_type => #{w.warning_type.inspect},
:line => #{w.line.inspect},
:message => /^#{Regexp.escape w.message[0,40]}/,
:confidence => #{w.confidence},
:relative_path => #{w.relative_path.inspect},
:code => #{w.code},
:user_input => #{w.user_input.inspect}
end
RUBY
end.join("\n")
output << "\nend"
end
end
options, _ = Brakeman::Options.parse!(ARGV)
unless options[:app_path]
if ARGV[-1].nil?
options[:app_path] = "."
else
options[:app_path] = ARGV[-1]
end
end
tracker = Brakeman.run options
puts Brakeman::Report::Tests.new(nil, tracker).generate_report