


















@@ -220,8 +220,12 @@ describe("secrets audit", () => {
220220expect(report.status).toBe("findings");
221221expect(report.summary.plaintextCount).toBeGreaterThan(0);
222222expect(report.summary.shadowedRefCount).toBeGreaterThan(0);
223-expect(hasFinding(report, (entry) => entry.code === "REF_SHADOWED")).toBe(true);
224-expect(hasFinding(report, (entry) => entry.code === "PLAINTEXT_FOUND")).toBe(true);
223+expect(report.findings).toEqual(
224+expect.arrayContaining([
225+expect.objectContaining({ code: "REF_SHADOWED" }),
226+expect.objectContaining({ code: "PLAINTEXT_FOUND" }),
227+]),
228+);
225229});
226230227231it("does not mutate legacy auth.json during audit", async () => {
@@ -234,7 +238,9 @@ describe("secrets audit", () => {
234238});
235239236240const report = await runSecretsAudit({ env: fixture.env });
237-expect(hasFinding(report, (entry) => entry.code === "LEGACY_RESIDUE")).toBe(true);
241+expect(report.findings).toEqual(
242+expect.arrayContaining([expect.objectContaining({ code: "LEGACY_RESIDUE" })]),
243+);
238244const authJsonStat = await fs.stat(fixture.authJsonPath);
239245expect(authJsonStat.isFile()).toBe(true);
240246await expect(fs.stat(fixture.authStorePath)).rejects.toMatchObject({ code: "ENOENT" });
@@ -245,9 +251,13 @@ describe("secrets audit", () => {
245251await fs.writeFile(fixture.authJsonPath, "{invalid-json", "utf8");
246252247253const report = await runSecretsAudit({ env: fixture.env });
248-expect(hasFinding(report, (entry) => entry.file === fixture.authStorePath)).toBe(true);
249-expect(hasFinding(report, (entry) => entry.file === fixture.authJsonPath)).toBe(true);
250-expect(hasFinding(report, (entry) => entry.code === "REF_UNRESOLVED")).toBe(true);
254+expect(report.findings).toEqual(
255+expect.arrayContaining([
256+expect.objectContaining({ file: fixture.authStorePath }),
257+expect.objectContaining({ file: fixture.authJsonPath }),
258+expect.objectContaining({ code: "REF_UNRESOLVED" }),
259+]),
260+);
251261});
252262253263it("skips exec ref resolution during audit unless explicitly allowed", async () => {
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。