ci: fix test file references and hardcoded paths
Some checks failed
CI / Lint & Format (push) Successful in 22s
CI / Security Scan (push) Successful in 20s
CI / Advanced Security Tests (push) Successful in 15s
CI / Memory Leak Check (push) Successful in 19s
CI / Security Tests (push) Successful in 25s
CI / Unit Tests (push) Successful in 33s
CI / SBOM Generation (push) Successful in 20s
CI / Build & Push Image (push) Failing after 29s
Some checks failed
CI / Lint & Format (push) Successful in 22s
CI / Security Scan (push) Successful in 20s
CI / Advanced Security Tests (push) Successful in 15s
CI / Memory Leak Check (push) Successful in 19s
CI / Security Tests (push) Successful in 25s
CI / Unit Tests (push) Successful in 33s
CI / SBOM Generation (push) Successful in 20s
CI / Build & Push Image (push) Failing after 29s
- Remove non-existent test_mime_detection.py from unit tests - Use relative paths in security tests for container compatibility
This commit is contained in:
Username
@@ -117,7 +117,7 @@ jobs:
|
||||
|
||||
- name: Run unit tests
|
||||
run: |
|
||||
pytest tests/test_api.py tests/test_database.py tests/test_mime_detection.py \
|
||||
pytest tests/test_api.py tests/test_database.py \
|
||||
tests/test_paste_*.py tests/test_metrics.py tests/test_pki.py \
|
||||
-v --tb=short
|
||||
|
||||
|
||||
@@ -8,7 +8,7 @@ import tempfile
|
||||
from pathlib import Path
|
||||
|
||||
# Load fpaste as a module by exec
|
||||
fpaste_path = Path("/home/user/git/flaskpaste/fpaste")
|
||||
fpaste_path = Path(__file__).parent.parent.parent / "fpaste"
|
||||
fpaste_globals = {"__name__": "fpaste", "__file__": str(fpaste_path)}
|
||||
exec(compile(fpaste_path.read_text(), fpaste_path, "exec"), fpaste_globals) # noqa: S102
|
||||
|
||||
@@ -105,7 +105,7 @@ def test_subprocess_safety():
|
||||
print("=" * 50)
|
||||
|
||||
# Read fpaste source and check for dangerous patterns
|
||||
fpaste_src = Path("/home/user/git/flaskpaste/fpaste")
|
||||
fpaste_src = Path(__file__).parent.parent.parent / "fpaste"
|
||||
content = fpaste_src.read_text()
|
||||
|
||||
issues = []
|
||||
@@ -190,7 +190,7 @@ def test_key_file_permissions():
|
||||
print("=" * 50)
|
||||
|
||||
# Check the source code for chmod calls
|
||||
fpaste_src = Path("/home/user/git/flaskpaste/fpaste")
|
||||
fpaste_src = Path(__file__).parent.parent.parent / "fpaste"
|
||||
content = fpaste_src.read_text()
|
||||
|
||||
# Find all chmod(0o600) calls for key files
|
||||
@@ -239,7 +239,7 @@ def test_symlink_attacks():
|
||||
print(" RECOMMENDATION: Check for symlinks before write, or use O_NOFOLLOW")
|
||||
|
||||
# Check if the code verifies paths before writing
|
||||
fpaste_src = Path("/home/user/git/flaskpaste/fpaste")
|
||||
fpaste_src = Path(__file__).parent.parent.parent / "fpaste"
|
||||
content = fpaste_src.read_text()
|
||||
|
||||
if "is_symlink()" in content or "O_NOFOLLOW" in content:
|
||||
|
||||
@@ -7,8 +7,9 @@ import io
|
||||
import pstats
|
||||
import signal
|
||||
import sys
|
||||
from pathlib import Path
|
||||
|
||||
sys.path.insert(0, "/home/user/git/flaskpaste")
|
||||
sys.path.insert(0, str(Path(__file__).parent.parent.parent))
|
||||
|
||||
from app import create_app
|
||||
|
||||
|
||||
Reference in New Issue
Block a user