1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
# frozen_string_literal: true
RSpec.describe Spandx::Ruby::Parsers::GemfileLock do
let(:described_instance) { described_class.new }
describe '#parse' do
def build(name, version, path)
Spandx::Core::Dependency.new(name: name, version: version, path: path)
end
context 'when parsing a Gemfile that was BUNDLED_WITH 1.17.3 with a single dependency' do
subject { described_instance.parse(path) }
let(:path) { fixture_file('bundler/Gemfile.lock') }
specify { expect(subject[0].meta[:dependencies]).to be_empty }
specify { expect(subject[0].meta[:platform]).to eql('ruby') }
specify { expect(subject[0].meta[:source]).to be_a_kind_of(Bundler::Source) }
specify { expect(subject).to match_array([build('net-hippie', '0.2.7', path)]) }
end
context 'when parsing a gems.lock that was BUNDLED_WITH 2.1.2 with a single dependency' do
subject { described_instance.parse(path) }
let(:path) { fixture_file('bundler/gems.lock') }
specify { expect(subject[0].meta[:dependencies]).to be_empty }
specify { expect(subject[0].meta[:platform]).to eql('ruby') }
specify { expect(subject[0].meta[:source]).to be_a_kind_of(Bundler::Source) }
specify { expect(subject).to match_array([build('net-hippie', '0.2.7', path)]) }
end
context 'when parsing a Gemfile.lock with multiple dependencies' do
subject { described_instance.parse(path) }
let(:path) { Pathname.new('./Gemfile.lock') }
let(:spandx) { subject.find { |x| x.name == 'spandx' } }
specify do
expect(subject.map(&:name)).to match_array([
'addressable',
'ast',
'benchmark-ips',
'benchmark-malloc',
'benchmark-perf',
'benchmark-trend',
'bundler-audit',
'byebug',
'crack',
'diff-lcs',
'dotenv',
'faraday',
'faraday-net_http',
'hashdiff',
'hcl2',
'licensed',
'licensee',
'mini_portile2',
'multipart-post',
'net-hippie',
'nokogiri',
'octokit',
'oj',
'parallel',
'parser',
'parslet',
'pathname-common_prefix',
'public_suffix',
'racc',
'rainbow',
'rake',
'rake-compiler',
'rbtree',
'regexp_parser',
'reverse_markdown',
'rexml',
'rspec',
'rspec-benchmark',
'rspec-core',
'rspec-expectations',
'rspec-mocks',
'rspec-support',
'rubocop',
'rubocop-ast',
'rubocop-rspec',
'ruby-prof',
'ruby-progressbar',
'ruby-xxHash',
'ruby2_keywords',
'rugged',
'sawyer',
'set',
'sorted_set',
'spandx',
'terminal-table',
'thor',
'tomlrb',
'tty-cursor',
'tty-spinner',
'unicode-display_width',
'vcr',
'webmock',
'zeitwerk',
])
end
specify { expect(subject.map(&:path).uniq).to match_array([path.expand_path]) }
specify { expect(spandx.meta[:platform]).to eql('ruby') }
specify { expect(spandx.meta[:source]).to be_a_kind_of(Bundler::Source) }
end
end
describe '#match?' do
it { is_expected.to be_match(to_path('Gemfile.lock')) }
it { is_expected.to be_match(to_path('gems.lock')) }
it { is_expected.to be_match(to_path('./Gemfile.lock')) }
it { is_expected.to be_match(to_path('./gems.lock')) }
it { is_expected.to be_match(to_path('/root/Gemfile.lock')) }
it { is_expected.to be_match(to_path('/root/gems.lock')) }
it { is_expected.not_to be_match(to_path('sitemap.xml')) }
it { is_expected.not_to be_match(to_path('/root/notGemfile.lock')) }
it { is_expected.not_to be_match(to_path('/root/notgems.lock')) }
end
end
|
