Skip to main content

Scanner Testing

Scanner

We employ two types of tests: Unit tests for the parser and integration-tests. Both types of tests are based upon the Jest testing framework.

Unit Tests for Parser

Each scanner has a parser and each parser has a unit test file. The unit test file is named parser.test.js. This file contains different test scenarios. In each test, the results from parser.js and the folder _snapshots_ are compared. If they are the same, the unit test is successful. A unit test can look like this:

test("parser parses large json result without vulnerable extensions successfully", async () => {
  const fileContent = await readFile(
    __dirname + "/__testFiles__/localhost.json",
    {
      encoding: "utf8",
    }
  );
  const findings = await parse(JSON.parse(fileContent));
  await expect(validateParser(findings)).resolves.toBeUndefined();
  expect(findings).toMatchSnapshot();
});

This test for example expects a test file, i.e a raw scanner output, to be found in /__testFiles__/localhost.json

How to Run a Unit Test

To run a unit-test it suffices to run

task test:unit

in the scanner directory.

Integration Tests

Each scanner has a folder with integration tests. For the integration tests we check the results of the scan function. This function runs an actual SCB scan in the Kind Cluster (Through the Scan CRD). It expects the following parameters: Name of the scan, scanType, scanner-specific parameters for the scan and the allowed timeout.

An integration test for, for example, the nmap scanner looks like this:

test(
  "nmap should identify open ports of bodgeit",
  async () => {
    const { count, categories } = await scan(
      "nmap-scanner-dummy-scan",
      "nmap",
      ["bodgeit.demo-targets.svc"],
      180
    );
    expect(count).toBe(2);
    expect(categories["Host"]).toBe(1);
    expect(categories["Open Port"]).toBe(1);
  },
  { timeout: 3 * 60 * 1000 },
);

For this test to be considered successful, it has to match the expected condition.

How to Run an Integration Test

To run the test it suffices to run:

task test

All previous tests will be deleted and the current test will be run on a clean slate.

If no clean install is needed before running the test, it is possible to run only the tests themselves through:

task test:integration