File: 10-mandatory-6.1.26.t

package info (click to toggle)
libcsaf-perl 0.26-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 2,280 kB
  • sloc: perl: 7,583; makefile: 2
file content (75 lines) | stat: -rw-r--r-- 2,198 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
 
#!perl

use 5.010001;
use strict;
use warnings;
use Test::More;

use FindBin '$RealBin';
use lib "$RealBin/lib";

use Test::CSAF qw(exec_validator_mandatory_test);
use CSAF;

# 6.1.26 Prohibited Document Category Name

# It MUST be tested that the document category is not equal to the (case insensitive) name (without the prefix csaf_) or value of any other profile than "CSAF Base". Any occurrences of dash, whitespace, and underscore characters are removed from the values on both sides before the match. Also the value MUST NOT start with the reserved prefix csaf_ except if the value is csaf_base.

# This test does only apply for CSAF documents with the profile "CSAF Base". Therefore, it MUST be skipped if the document category matches one of the values defined for the profile other than "CSAF Base".

#     For CSAF 2.0, the test must be skipped for the following values in /document/category:

#       csaf_base
#       csaf_security_incident_response
#       csaf_informational_advisory
#       csaf_security_advisory
#       csaf_vex

# This is the only mandatory test related to the profile "CSAF Base" as the required fields SHALL be checked by validating the JSON schema.

# The relevant path for this test is:

#   /document/category

# Currently prohibited values:

#   Csaf_a
#   Informational Advisory
#   security-incident-response
#   Security      Advisory
#   veX
#   V_eX

# Fail test:

#   "category": "Security_Incident_Response"

my $csaf = CSAF->new;

$csaf->document->title('Mandatory test: 6.1.26');
$csaf->document->publisher(category => 'vendor', name => 'CSAF', namespace => 'https://csaf.io');

my $tracking = $csaf->document->tracking(
    id                   => 'CSAF:2023-001',
    status               => 'final',
    version              => '1.0.0',
    initial_release_date => 'now',
    current_release_date => 'now'
);

my @categories = (
    'Security_Incident_Response', 'Csaf_a',
    'Informational Advisory',     'security-incident-response',
    'Security      Advisory',     'veX',
    'V_eX'
);

foreach my $category (@categories) {

    $csaf->document->category($category);

    exec_validator_mandatory_test($csaf, '6.1.26');

}

done_testing;