github.com/pkumar631/talisman@v0.3.2/detector/base64_aggressive_detector_test.go (about) 1 package detector 2 3 import ( 4 "github.com/stretchr/testify/assert" 5 "github.com/thoughtworks/talisman/git_repo" 6 "testing" 7 ) 8 9 func TestShouldFlagPotentialAWSAccessKeysInAggressiveMode(t *testing.T) { 10 const awsAccessKeyIDExample string = "AKIAIOSFODNN7EXAMPLE\n" 11 results := NewDetectionResults() 12 content := []byte(awsAccessKeyIDExample) 13 filename := "filename" 14 additions := []git_repo.Addition{git_repo.NewAddition(filename, content)} 15 16 NewFileContentDetector().AggressiveMode().Test(additions, NewIgnores(), results) 17 assert.True(t, results.HasFailures(), "Expected file to not to contain base64 encoded texts") 18 } 19 20 func TestShouldFlagPotentialAWSAccessKeysAtPropertyDefinitionInAggressiveMode(t *testing.T) { 21 const awsAccessKeyIDExample string = "accessKey=AKIAIOSFODNN7EXAMPLE" 22 results := NewDetectionResults() 23 content := []byte(awsAccessKeyIDExample) 24 filename := "filename" 25 additions := []git_repo.Addition{git_repo.NewAddition(filename, content)} 26 27 NewFileContentDetector().AggressiveMode().Test(additions, NewIgnores(), results) 28 assert.True(t, results.HasFailures(), "Expected file to not to contain base64 encoded texts") 29 } 30 31 func TestShouldNotFlagPotentialSecretsWithinSafeJavaCodeEvenInAggressiveMode(t *testing.T) { 32 const awsAccessKeyIDExample string = "public class HelloWorld {\r\n\r\n public static void main(String[] args) {\r\n // Prints \"Hello, World\" to the terminal window.\r\n System.out.println(\"Hello, World\");\r\n }\r\n\r\n}" 33 results := NewDetectionResults() 34 content := []byte(awsAccessKeyIDExample) 35 filename := "filename" 36 additions := []git_repo.Addition{git_repo.NewAddition(filename, content)} 37 38 NewFileContentDetector().AggressiveMode().Test(additions, NewIgnores(), results) 39 if results == nil { 40 additions = nil 41 } 42 assert.False(t, results.HasFailures(), "Expected file to not to contain base64 encoded texts") 43 }