0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2025-01-20 22:52:46 -05:00
verdaccio/e2e/cli/e2e-yarn2/audit.spec.ts
renovate[bot] 82ae08e3c8
fix(deps): update all package managers (master) (#4511)
* fix(deps): update all package managers

* fix tests

* test

* improve ci

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2024-02-18 11:33:07 +01:00

41 lines
1.3 KiB
TypeScript

import { initialSetup, yarnModernUtils } from '@verdaccio/test-cli-commons';
import { getYarnCommand, yarn } from './utils';
describe('audit a package yarn 2', () => {
jest.setTimeout(10000);
let registry;
let projectFolder;
beforeAll(async () => {
const setup = await initialSetup();
registry = setup.registry;
await registry.init();
const { tempFolder } = await yarnModernUtils.prepareYarnModernProject(
'yarn-2',
registry.getRegistryUrl(),
getYarnCommand(),
{
packageName: '@scope/name',
version: '1.0.0',
dependencies: { aaa: 'latest' },
devDependencies: {},
}
);
projectFolder = tempFolder;
});
test('should run yarn npm audit info json body', async () => {
await yarn(projectFolder, 'install');
// this might fails if the dependency used above has vulnerabilities
// always try to use ar real dependency that does not have such issues
// yarn berry uses exit 1 if has error https://github.com/yarnpkg/berry/pull/4358
const resp = await yarn(projectFolder, 'npm', 'audit', '--json');
const parsedBody = JSON.parse(resp.stdout as string);
expect(parsedBody.advisories).toBeDefined();
});
afterAll(async () => {
registry.stop();
});
});