mirror/pnpm
1
0
Fork 0
mirror of https://github.com/pnpm/pnpm.git synced 2026-05-10 17:04:07 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
a080a4ba0a4ff1ec80cede2e71d3cc2ee92bccf4
pnpm/packages/plugin-commands-audit/test/fix.ts
Zoltan Kochan ecbc907a63 test(audit): mock responses from audit endpoint (#4354)
2022-02-18 18:09:48 +02:00

53 lines
1.4 KiB
TypeScript
Raw Blame History

import path from 'path'
import fixtures from '@pnpm/test-fixtures'
import { ProjectManifest } from '@pnpm/types'
import { audit } from '@pnpm/plugin-commands-audit'
import loadJsonFile from 'load-json-file'
import nock from 'nock'
import * as responses from './utils/responses'
const f = fixtures(__dirname)
const registries = {
default: 'https://registry.npmjs.org/',
}
test('overrides are added for vulnerable dependencies', async () => {
const tmp = f.prepare('has-vulnerabilities')
nock(registries.default)
.post('/-/npm/v1/security/audits')
.reply(200, responses.ALL_VULN_RESP)
const { exitCode, output } = await audit.handler({
auditLevel: 'moderate',
dir: tmp,
fix: true,
registries,
})
expect(exitCode).toBe(0)
expect(output).toMatch(/Run "pnpm install"/)
const manifest = await loadJsonFile<ProjectManifest>(path.join(tmp, 'package.json'))
expect(manifest.pnpm?.overrides?.['axios@<=0.18.0']).toBe('>=0.18.1')
expect(manifest.pnpm?.overrides?.['sync-exec@>=0.0.0']).toBeFalsy()
})
test('no overrides are added if no vulnerabilities are found', async () => {
const tmp = f.prepare('fixture')
nock(registries.default)
.post('/-/npm/v1/security/audits')
.reply(200, responses.NO_VULN_RESP)
const { exitCode, output } = await audit.handler({
auditLevel: 'moderate',
dir: tmp,
fix: true,
registries,
})
expect(exitCode).toBe(0)
expect(output).toBe('No fixes were made')
})
Reference in New Issue View Git Blame Copy Permalink