Added RSpec tests to validate the advisories.

postmodern · postmodern · commit e582cd2384d2 · 2013-02-13T20:05:06.000-08:00
diff --git a/.rspec b/.rspec
@@ -0,0 +1 @@
+--colour
diff --git a/spec/advisory_example.rb b/spec/advisory_example.rb
@@ -0,0 +1,80 @@
+require 'spec_helper'
+require 'yaml'
+
+shared_examples_for 'Advisory' do |path|
+  advisory = YAML.load_file(path)
+
+  describe path do
+    let(:gem) { File.basename(File.dirname(path)) }
+    let(:cve) { File.basename(path).chomp('.yml') }
+
+    describe "gem" do
+      subject { advisory['gem'] }
+
+      it { should be_kind_of(String) }
+      it { should == gem }
+    end
+
+    describe "cve" do
+      subject { advisory['cve'] }
+
+      it { should be_kind_of(String) }
+      it { should == cve }
+    end
+
+    describe "url" do
+      subject { advisory['url'] }
+
+      it { should be_kind_of(String) }
+      it { should_not be_empty }
+    end
+
+    describe "title" do
+      subject { advisory['title'] }
+
+      it { should be_kind_of(String) }
+      it { should_not be_empty }
+    end
+
+    describe "description" do
+      subject { advisory['description'] }
+
+      it { should be_kind_of(String) }
+      it { should_not be_empty }
+    end
+
+    describe "cvss_v2" do
+      subject { advisory['cvss_v2'] }
+
+      it "may be nil or a Float" do
+        [NilClass, Float].should include(subject.class)
+      end
+
+      case advisory['cvss_v2']
+      when Float
+        context "when a Float" do
+          it { ((0.0)..(10.0)).should include(subject) }
+        end
+      end
+    end
+
+    describe "patched_versions" do
+      subject { advisory['patched_versions'] }
+
+      it { should be_kind_of(Array) }
+      it { should_not be_empty }
+
+      advisory['patched_versions'].each do |version|
+        describe version do
+          subject { version.split(', ') }
+
+          it "should contain valid RubyGem version requirements" do
+            lambda {
+              Gem::Requirement.new(version)
+            }.should_not raise_error(ArgumentError)
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/spec/gems_spec.rb b/spec/gems_spec.rb
@@ -0,0 +1,8 @@
+require 'spec_helper'
+require 'advisory_example'
+
+describe "gems" do
+  Dir.glob('gems/*/*.yml') do |path|
+    include_examples 'Advisory', path
+  end
+end
diff --git a/spec/spec_helper.rb b/spec/spec_helper.rb
@@ -0,0 +1 @@
+require 'rspec'
