spec/integration/klar_spec.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14

# frozen_string_literal: true

RSpec.describe 'klar' do
  let(:scanner) { 'klar' }

  context "when scanning a vulnerable webgoat image" do
    let(:project_fixture) { 'docker/alpine-3.10' }
    let(:env) { { DOCKER_IMAGE: 'registry.gitlab.com/gitlab-org/security-products/dast/webgoat-8.0@sha256:bc09fe2e0721dfaeee79364115aeedf2174cce0947b9ae5fe7c33312ee019a4e' } }

    pending { expect(subject).to match_schema(:container_scanning) }
    specify { expect(subject['vulnerabilities'].length).to be > 1 }
    specify { expect(subject['vulnerabilities']).to all(include('category' => 'container_scanning')) }
  end
end