oib/aitbc
1
0
Fork 0
Code Issues Pull Requests Actions 21 Packages Projects Releases Wiki Activity
Files
3897bcbf245ad8e7746c2ab3b14b5d89cf41d2da
aitbc/apps/stubs/plugin-security/tests/test_edge_cases_plugin_security.py
aitbc 3897bcbf24
Some checks failed
CLI Tests / test-cli (push) Failing after 4s
Details
Deploy to Testnet / deploy-testnet (push) Successful in 1m40s
Details
Documentation Validation / validate-docs (push) Failing after 12s
Details
Documentation Validation / validate-policies-strict (push) Successful in 4s
Details
Integration Tests / test-service-integration (push) Successful in 2m42s
Details
Package Tests / Python package - aitbc-agent-sdk (push) Failing after 34s
Details
Package Tests / Python package - aitbc-core (push) Successful in 27s
Details
Package Tests / Python package - aitbc-crypto (push) Successful in 13s
Details
Package Tests / Python package - aitbc-sdk (push) Successful in 16s
Details
Package Tests / JavaScript package - aitbc-sdk-js (push) Successful in 8s
Details
Package Tests / JavaScript package - aitbc-token (push) Successful in 18s
Details
Python Tests / test-python (push) Failing after 50s
Details
Security Scanning / security-scan (push) Failing after 43s
Details
Multi-Node Stress Testing / stress-test (push) Successful in 12s
Details
Cross-Node Transaction Testing / transaction-test (push) Successful in 9s
Details
refactor: move version to separate module and improve logging 
- Created aitbc/_version.py with centralized version definition
- Updated aitbc/__init__.py to import __version__ from _version module
- Updated constants.py to use __version__ for PACKAGE_VERSION
- Replaced print() calls with logger in decorators.py, events.py, queue_manager.py, and state.py
- Added logger initialization using get_logger(__name__) in config.py, decorators.py, events.py, queue_manager.py, and state.py
- Added cli/commands
2026-05-11 20:12:01 +02:00

160 lines
4.7 KiB
Python
Raw Blame History

"""Edge case and error handling tests for plugin security service"""
import pytest
import sys
import sys
from pathlib import Path
from fastapi.testclient import TestClient
from datetime import datetime
from main import app, SecurityScan, scan_reports, security_policies, scan_queue, vulnerability_database
@pytest.fixture(autouse=True)
def reset_state():
"""Reset global state before each test"""
scan_reports.clear()
security_policies.clear()
scan_queue.clear()
vulnerability_database.clear()
yield
scan_reports.clear()
security_policies.clear()
scan_queue.clear()
vulnerability_database.clear()
@pytest.mark.unit
def test_security_scan_empty_fields():
"""Test SecurityScan with empty fields"""
scan = SecurityScan(
plugin_id="",
version="",
plugin_type="",
scan_type="",
priority=""
)
assert scan.plugin_id == ""
assert scan.version == ""
@pytest.mark.unit
def test_vulnerability_empty_description():
"""Test Vulnerability with empty description"""
vuln = {
"severity": "low",
"title": "Test",
"description": "",
"affected_file": "file.py",
"recommendation": "Fix"
}
assert vuln["description"] == ""
@pytest.mark.integration
def test_create_security_policy_minimal():
"""Test creating security policy with minimal fields"""
client = TestClient(app)
policy = {
"name": "Minimal Policy"
}
response = client.post("/api/v1/security/policies", json=policy)
assert response.status_code == 200
data = response.json()
assert data["policy_id"]
assert data["name"] == "Minimal Policy"
@pytest.mark.integration
def test_create_security_policy_empty_name():
"""Test creating security policy with empty name"""
client = TestClient(app)
policy = {}
response = client.post("/api/v1/security/policies", json=policy)
assert response.status_code == 200
@pytest.mark.integration
def test_list_security_reports_with_no_reports():
"""Test listing security reports when no reports exist"""
client = TestClient(app)
response = client.get("/api/v1/security/reports")
assert response.status_code == 200
data = response.json()
assert data["total_reports"] == 0
@pytest.mark.integration
def test_list_vulnerabilities_with_no_vulnerabilities():
"""Test listing vulnerabilities when no vulnerabilities exist"""
client = TestClient(app)
response = client.get("/api/v1/security/vulnerabilities")
assert response.status_code == 200
data = response.json()
assert data["total_vulnerabilities"] == 0
@pytest.mark.integration
def test_list_security_policies_with_no_policies():
"""Test listing security policies when no policies exist"""
client = TestClient(app)
response = client.get("/api/v1/security/policies")
assert response.status_code == 200
data = response.json()
assert data["total_policies"] == 0
@pytest.mark.integration
def test_scan_priority_ordering():
"""Test that scan queue respects priority ordering"""
client = TestClient(app)
# Add scans in random priority order
priorities = ["low", "critical", "medium", "high"]
for priority in priorities:
scan = SecurityScan(
plugin_id=f"plugin_{priority}",
version="1.0.0",
plugin_type="cli",
scan_type="basic",
priority=priority
)
client.post("/api/v1/security/scan", json=scan.model_dump())
# Critical should be first, low should be last
response = client.get("/api/v1/security/scan/nonexistent")
# This will fail, but we can check queue size
assert len(scan_queue) == 4
@pytest.mark.integration
def test_security_dashboard_with_no_data():
"""Test security dashboard with no data"""
client = TestClient(app)
response = client.get("/api/v1/security/dashboard")
assert response.status_code == 200
data = response.json()
assert data["dashboard"]["total_scans"] == 0
assert data["dashboard"]["queue_size"] == 0
@pytest.mark.integration
def test_list_reports_limit_parameter():
"""Test listing reports with limit parameter"""
client = TestClient(app)
response = client.get("/api/v1/security/reports?limit=5")
assert response.status_code == 200
data = response.json()
assert "reports" in data
@pytest.mark.integration
def test_list_vulnerabilities_invalid_filter():
"""Test listing vulnerabilities with invalid filter"""
client = TestClient(app)
response = client.get("/api/v1/security/vulnerabilities?severity=invalid")
assert response.status_code == 200
data = response.json()
assert data["total_vulnerabilities"] == 0
Reference in New Issue View Git Blame Copy Permalink