/dports/security/owasp-dependency-check/DependencyCheck-3.1.1/dependency-check-core/src/test/java/org/owasp/dependencycheck/analyzer/ |
H A D | VersionFilterAnalyzerTest.java | 25 import org.owasp.dependencycheck.dependency.EvidenceType; 85 assertEquals(3, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependency() 90 assertEquals(4, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependency() 94 assertEquals(2, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependency() 98 assertEquals(3, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependency() 103 assertEquals(4, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependency() 108 assertEquals(5, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependency() 126 assertEquals(3, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependencyFilePom() 131 assertEquals(4, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependencyFilePom() 135 assertEquals(2, dependency.getEvidence(EvidenceType.VERSION).size()); in testAnalyzeDependencyFilePom() [all …]
|
H A D | HintAnalyzerTest.java | 31 import org.owasp.dependencycheck.dependency.EvidenceType; 96 assertFalse(gdep.contains(EvidenceType.PRODUCT, springTest1)); in testAnalyze() 97 assertFalse(gdep.contains(EvidenceType.VENDOR, springTest2)); in testAnalyze() 98 assertFalse(gdep.contains(EvidenceType.VENDOR, springTest3)); in testAnalyze() 99 assertFalse(gdep.contains(EvidenceType.PRODUCT, springTest4)); in testAnalyze() 100 assertFalse(gdep.contains(EvidenceType.VENDOR, springTest5)); in testAnalyze() 102 assertTrue(sdep.contains(EvidenceType.PRODUCT, springTest1)); in testAnalyze() 103 assertTrue(sdep.contains(EvidenceType.VENDOR, springTest2)); in testAnalyze() 104 assertTrue(sdep.contains(EvidenceType.VENDOR, springTest3)); in testAnalyze() 129 assertEquals("vendor evidence mismatch", 2, d.getEvidence(EvidenceType.VENDOR).size()); in testAnalyze_1() [all …]
|
H A D | AutoconfAnalyzerTest.java | 33 import org.owasp.dependencycheck.dependency.EvidenceType; 93 …assertTrue(result.contains(EvidenceType.PRODUCT, new Evidence("configure.ac", "Package", "gnu-ghos… in testAnalyzeConfigureAC1() 94 …assertTrue(result.contains(EvidenceType.VERSION, new Evidence("configure.ac", "Package Version", "… in testAnalyzeConfigureAC1() 109 …assertTrue(result.contains(EvidenceType.PRODUCT, new Evidence("configure.ac", "Package", "readable… in testAnalyzeConfigureAC2() 110 …assertTrue(result.contains(EvidenceType.VERSION, new Evidence("configure.ac", "Package Version", "… in testAnalyzeConfigureAC2() 125 …assertTrue(result.contains(EvidenceType.PRODUCT, new Evidence("configure", "NAME", "binutils", Con… in testAnalyzeConfigureScript() 126 …assertTrue(result.contains(EvidenceType.VERSION, new Evidence("configure", "VERSION", "2.25.51", C… in testAnalyzeConfigureScript() 141 …assertTrue(result.contains(EvidenceType.VENDOR, new Evidence("configure", "BUGREPORT", "dwheeler@d… in testAnalyzeReadableConfigureScript() 142 …assertTrue(result.contains(EvidenceType.PRODUCT, new Evidence("configure", "NAME", "readable", Con… in testAnalyzeReadableConfigureScript() 143 …assertTrue(result.contains(EvidenceType.VERSION, new Evidence("configure", "VERSION", "1.0.7", Con… in testAnalyzeReadableConfigureScript() [all …]
|
H A D | NuspecAnalyzerTest.java | 31 import org.owasp.dependencycheck.dependency.EvidenceType; 73 … assertTrue(result.getEvidence(EvidenceType.VENDOR).toString().toLowerCase().contains("bobsmack")); in testNuspecAnalysis() 76 … assertTrue(result.getEvidence(EvidenceType.VENDOR).toString().toLowerCase().contains("brianfox")); in testNuspecAnalysis() 79 assertTrue(result.getEvidence(EvidenceType.PRODUCT).toString().contains("TestDepCheck")); in testNuspecAnalysis() 82 assertTrue(result.getEvidence(EvidenceType.PRODUCT).toString().contains("Test Package")); in testNuspecAnalysis() 84 assertTrue(result.getEvidence(EvidenceType.VERSION).toString().contains("1.0.0")); in testNuspecAnalysis()
|
H A D | NspAnalyzerTest.java | 13 import org.owasp.dependencycheck.dependency.EvidenceType; 44 … assertTrue(result.getEvidence(EvidenceType.VENDOR).toString().contains("uglify-js")); in testAnalyzePackage() 45 … assertTrue(result.getEvidence(EvidenceType.PRODUCT).toString().contains("uglify-js")); in testAnalyzePackage() 46 … assertTrue(result.getEvidence(EvidenceType.VERSION).toString().contains("2.4.24")); in testAnalyzePackage() 64 assertEquals(result.getEvidence(EvidenceType.VENDOR).size(), 0); in testAnalyzeEmpty() 65 assertEquals(result.getEvidence(EvidenceType.PRODUCT).size(), 0); in testAnalyzeEmpty() 66 assertEquals(result.getEvidence(EvidenceType.VERSION).size(), 0); in testAnalyzeEmpty()
|
H A D | JarAnalyzerTest.java | 36 import org.owasp.dependencycheck.dependency.EvidenceType; 57 … assertTrue(result.getEvidence(EvidenceType.VENDOR).toString().toLowerCase().contains("apache")); in testAnalyze() 65 for (Evidence e : result.getEvidence(EvidenceType.VENDOR)) { in testAnalyze() 79 for (Evidence e : result.getEvidence(EvidenceType.PRODUCT)) { in testAnalyze() 89 for (Evidence e : result.getEvidence(EvidenceType.VENDOR)) { in testAnalyze() 99 for (Evidence e : result.getEvidence(EvidenceType.VERSION)) { in testAnalyze() 112 …assertEquals("org.mortbar.jmx.jar has version evidence?", result.getEvidence(EvidenceType.VERSION)… in testAnalyze() 149 …assertTrue(result.getEvidence(EvidenceType.VENDOR).toString().contains("manifest: org/apache/xalan… in testParseManifest()
|
H A D | RubyBundlerAnalyzerTest.java | 32 import org.owasp.dependencycheck.dependency.EvidenceType; 102 final String vendorString = result.getEvidence(EvidenceType.VENDOR).toString(); in testAnalyzeGemspec() 108 assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("dalli")); in testAnalyzeGemspec() 109 …assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("High performance m… in testAnalyzeGemspec() 110 assertThat(result.getEvidence(EvidenceType.VERSION).toString(), containsString("2.7.5")); in testAnalyzeGemspec()
|
H A D | SwiftAnalyzersTest.java | 16 import org.owasp.dependencycheck.dependency.EvidenceType; 110 final String vendorString = result.getEvidence(EvidenceType.VENDOR).toString(); in testCocoaPodsAnalyzer() 114 … assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("EasyPeasy")); in testCocoaPodsAnalyzer() 115 assertThat(result.getEvidence(EvidenceType.VERSION).toString(), containsString("0.2.3")); in testCocoaPodsAnalyzer() 134 assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("Gloss")); in testSPMAnalyzer()
|
H A D | OpenSSLAnalyzerTest.java | 31 import org.owasp.dependencycheck.dependency.EvidenceType; 112 assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("OpenSSL")); in testOpenSSLVersionHeaderFile() 113 assertThat(result.getEvidence(EvidenceType.VENDOR).toString(), containsString("OpenSSL")); in testOpenSSLVersionHeaderFile() 114 assertThat(result.getEvidence(EvidenceType.VERSION).toString(), containsString("1.0.2c")); in testOpenSSLVersionHeaderFile()
|
H A D | PythonDistributionAnalyzerTest.java | 33 import org.owasp.dependencycheck.dependency.EvidenceType; 130 result.getEvidence(EvidenceType.VENDOR).toString().contains("djangoproject")); in djangoAssertions() 131 for (final Evidence e : result.getEvidence(EvidenceType.VERSION)) { in djangoAssertions() 186 .getEvidence(EvidenceType.VENDOR).toString().contains("example")); in eggtestAssertions() 187 for (final Evidence e : result.getEvidence(EvidenceType.VERSION)) { in eggtestAssertions()
|
H A D | RubyGemspecAnalyzerTest.java | 32 import org.owasp.dependencycheck.dependency.EvidenceType; 101 final String vendorString = result.getEvidence(EvidenceType.VENDOR).toString(); in testAnalyzePackageJson() 107 … assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("rest-client")); in testAnalyzePackageJson() 108 assertThat(result.getEvidence(EvidenceType.VERSION).toString(), containsString("1.7.2")); in testAnalyzePackageJson()
|
H A D | NodePackageAnalyzerTest.java | 33 import org.owasp.dependencycheck.dependency.EvidenceType; 109 final String vendorString = result.getEvidence(EvidenceType.VENDOR).toString(); in testAnalyzeShrinkwrapJson() 112 assertThat(result.getEvidence(EvidenceType.PRODUCT).toString(), containsString("dns-sync")); in testAnalyzeShrinkwrapJson() 113 assertThat(result.getEvidence(EvidenceType.VERSION).toString(), containsString("0.1.0")); in testAnalyzeShrinkwrapJson()
|
/dports/security/owasp-dependency-check/DependencyCheck-3.1.1/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/ |
H A D | JarAnalyzer.java | 56 import org.owasp.dependencycheck.dependency.EvidenceType; 541 addMatchingValues(classes, groupid, dependency, EvidenceType.VENDOR); in setPomEvidence() 542 addMatchingValues(classes, groupid, dependency, EvidenceType.PRODUCT); in setPomEvidence() 546 addMatchingValues(classes, parentGroupId, dependency, EvidenceType.VENDOR); in setPomEvidence() 547 addMatchingValues(classes, parentGroupId, dependency, EvidenceType.PRODUCT); in setPomEvidence() 557 addMatchingValues(classes, artifactid, dependency, EvidenceType.VENDOR); in setPomEvidence() 558 addMatchingValues(classes, artifactid, dependency, EvidenceType.PRODUCT); in setPomEvidence() 588 addMatchingValues(classes, org, dependency, EvidenceType.VENDOR); in setPomEvidence() 589 addMatchingValues(classes, org, dependency, EvidenceType.PRODUCT); in setPomEvidence() 609 addMatchingValues(classes, pomName, dependency, EvidenceType.VENDOR); in setPomEvidence() [all …]
|
H A D | RubyGemspecAnalyzer.java | 35 import org.owasp.dependencycheck.dependency.EvidenceType; 153 …dependency.addEvidence(EvidenceType.VENDOR, GEMSPEC, "name_project", name + "_project", Confidence… in analyzeDependency() 156 …addStringEvidence(dependency, EvidenceType.PRODUCT, contents, blockVariable, "summary", "summary",… in analyzeDependency() 158 …addStringEvidence(dependency, EvidenceType.VENDOR, contents, blockVariable, "author", "authors?", … in analyzeDependency() 159 …addStringEvidence(dependency, EvidenceType.VENDOR, contents, blockVariable, "email", "emails?", Co… in analyzeDependency() 160 …addStringEvidence(dependency, EvidenceType.VENDOR, contents, blockVariable, "homepage", "homepage"… in analyzeDependency() 161 …addStringEvidence(dependency, EvidenceType.VENDOR, contents, blockVariable, "license", "licen[cs]e… in analyzeDependency() 163 final String value = addStringEvidence(dependency, EvidenceType.VERSION, contents, in analyzeDependency() 166 … addEvidenceFromVersionFile(dependency, EvidenceType.VERSION, dependency.getActualFile()); in analyzeDependency() 186 private String addStringEvidence(Dependency dependency, EvidenceType type, String contents, in addStringEvidence() [all …]
|
H A D | AutoconfAnalyzer.java | 35 import org.owasp.dependencycheck.dependency.EvidenceType; 197 … dependency.addEvidence(EvidenceType.PRODUCT, name, variable, value, Confidence.HIGHEST); in extractConfigureScriptEvidence() 199 … dependency.addEvidence(EvidenceType.VERSION, name, variable, value, Confidence.HIGHEST); in extractConfigureScriptEvidence() 201 … dependency.addEvidence(EvidenceType.VENDOR, name, variable, value, Confidence.HIGH); in extractConfigureScriptEvidence() 203 … dependency.addEvidence(EvidenceType.VENDOR, name, variable, value, Confidence.HIGH); in extractConfigureScriptEvidence() 237 …dependency.addEvidence(EvidenceType.PRODUCT, name, "Package", matcher.group(1), Confidence.HIGHEST… in gatherEvidence() 238 …dependency.addEvidence(EvidenceType.VERSION, name, "Package Version", matcher.group(2), Confidence… in gatherEvidence() 241 …dependency.addEvidence(EvidenceType.VENDOR, name, "Bug report address", matcher.group(4), Confiden… in gatherEvidence() 244 … dependency.addEvidence(EvidenceType.PRODUCT, name, "Tarname", matcher.group(6), Confidence.HIGH); in gatherEvidence() 249 dependency.addEvidence(EvidenceType.VENDOR, name, "URL", url, Confidence.HIGH); in gatherEvidence()
|
H A D | HintAnalyzer.java | 35 import org.owasp.dependencycheck.dependency.EvidenceType; 146 if (hasMatchingEvidence(dependency.getEvidence(EvidenceType.VENDOR), given)) { in analyzeDependency() 153 if (hasMatchingEvidence(dependency.getEvidence(EvidenceType.PRODUCT), given)) { in analyzeDependency() 177 dependency.addEvidence(EvidenceType.VENDOR, e); in analyzeDependency() 180 dependency.addEvidence(EvidenceType.PRODUCT, e); in analyzeDependency() 183 dependency.addEvidence(EvidenceType.VERSION, e); in analyzeDependency() 187 removeMatchingEvidences(dependency, EvidenceType.VENDOR, e); in analyzeDependency() 190 removeMatchingEvidences(dependency, EvidenceType.PRODUCT, e); in analyzeDependency() 193 removeMatchingEvidences(dependency, EvidenceType.VERSION, e); in analyzeDependency() 198 final Iterator<Evidence> itr = dependency.getEvidence(EvidenceType.VENDOR).iterator(); in analyzeDependency() [all …]
|
H A D | PythonPackageAnalyzer.java | 38 import org.owasp.dependencycheck.dependency.EvidenceType; 200 …dependency.addEvidence(EvidenceType.PRODUCT, file.getName(), "PackageName", parentName, Confidence… in analyzeDependency() 235 found = gatherEvidence(dependency, EvidenceType.VERSION, VERSION_PATTERN, contents, in analyzeFileContents() 243 found |= gatherEvidence(dependency, EvidenceType.PRODUCT, TITLE_PATTERN, contents, in analyzeFileContents() 246 found |= gatherEvidence(dependency, EvidenceType.VENDOR, AUTHOR_PATTERN, contents, in analyzeFileContents() 248 found |= gatherHomePageEvidence(dependency, EvidenceType.VENDOR, URI_PATTERN, in analyzeFileContents() 250 found |= gatherHomePageEvidence(dependency, EvidenceType.VENDOR, HOMEPAGE_PATTERN, in analyzeFileContents() 289 … private boolean gatherHomePageEvidence(Dependency dependency, EvidenceType type, Pattern pattern, in gatherHomePageEvidence() 316 …private boolean gatherEvidence(Dependency dependency, EvidenceType type, Pattern pattern, String c… in gatherEvidence() 322 if (type == EvidenceType.VERSION) { in gatherEvidence()
|
H A D | FileNameAnalyzer.java | 30 import org.owasp.dependencycheck.dependency.EvidenceType; 126 …dependency.addEvidence(EvidenceType.VERSION, "file", "version", version.toString(), Confidence.MED… in analyzeDependency() 128 …dependency.addEvidence(EvidenceType.VERSION, "file", "version", version.toString(), Confidence.HIG… in analyzeDependency() 130 … dependency.addEvidence(EvidenceType.VERSION, "file", "name", packageName, Confidence.MEDIUM); in analyzeDependency() 134 … dependency.addEvidence(EvidenceType.PRODUCT, "file", "name", packageName, Confidence.HIGH); in analyzeDependency() 135 … dependency.addEvidence(EvidenceType.VENDOR, "file", "name", packageName, Confidence.HIGH); in analyzeDependency()
|
H A D | DependencyMergingAnalyzer.java | 24 import org.owasp.dependencycheck.dependency.EvidenceType; 127 for (Evidence e : relatedDependency.getEvidence(EvidenceType.VENDOR)) { in mergeDependencies() 128 dependency.addEvidence(EvidenceType.VENDOR, e); in mergeDependencies() 130 for (Evidence e : relatedDependency.getEvidence(EvidenceType.PRODUCT)) { in mergeDependencies() 131 dependency.addEvidence(EvidenceType.PRODUCT, e); in mergeDependencies() 133 for (Evidence e : relatedDependency.getEvidence(EvidenceType.VERSION)) { in mergeDependencies() 134 dependency.addEvidence(EvidenceType.VERSION, e); in mergeDependencies()
|
H A D | NuspecAnalyzer.java | 37 import org.owasp.dependencycheck.dependency.EvidenceType; 151 …dependency.addEvidence(EvidenceType.VENDOR, "nuspec", "owners", np.getOwners(), Confidence.HIGHEST… in analyzeDependency() 153 …dependency.addEvidence(EvidenceType.VENDOR, "nuspec", "authors", np.getAuthors(), Confidence.HIGH); in analyzeDependency() 154 …dependency.addEvidence(EvidenceType.VERSION, "nuspec", "version", np.getVersion(), Confidence.HIGH… in analyzeDependency() 155 … dependency.addEvidence(EvidenceType.PRODUCT, "nuspec", "id", np.getId(), Confidence.HIGHEST); in analyzeDependency() 159 … dependency.addEvidence(EvidenceType.PRODUCT, "nuspec", "title", np.getTitle(), Confidence.MEDIUM); in analyzeDependency()
|
H A D | AbstractNpmAnalyzer.java | 36 import org.owasp.dependencycheck.dependency.EvidenceType; 121 … nodeModule.addEvidence(EvidenceType.PRODUCT, "package.json", "name", name, Confidence.HIGHEST); in createDependency() 122 nodeModule.addEvidence(EvidenceType.VENDOR, "package.json", "name", name, Confidence.HIGH); in createDependency() 123 …nodeModule.addEvidence(EvidenceType.VERSION, "package.json", "version", version, Confidence.HIGHES… in createDependency() 188 … private static String addToEvidence(Dependency dep, EvidenceType t, JsonObject json, String key) { in addToEvidence() 251 …dependency.addEvidence(EvidenceType.PRODUCT, PACKAGE_JSON, "name", valueString, Confidence.HIGHEST… in gatherEvidence() 252 … dependency.addEvidence(EvidenceType.VENDOR, PACKAGE_JSON, "name", valueString, Confidence.HIGH); in gatherEvidence() 257 final String desc = addToEvidence(dependency, EvidenceType.PRODUCT, json, "description"); in gatherEvidence() 259 addToEvidence(dependency, EvidenceType.VENDOR, json, "author"); in gatherEvidence() 260 final String version = addToEvidence(dependency, EvidenceType.VERSION, json, "version"); in gatherEvidence()
|
H A D | CocoaPodsAnalyzer.java | 33 import org.owasp.dependencycheck.dependency.EvidenceType; 148 … dependency.addEvidence(EvidenceType.PRODUCT, PODSPEC, "name_project", name, Confidence.HIGHEST); in analyzeDependency() 149 … dependency.addEvidence(EvidenceType.VENDOR, PODSPEC, "name_project", name, Confidence.HIGHEST); in analyzeDependency() 154 … dependency.addEvidence(EvidenceType.PRODUCT, PODSPEC, "summary", summary, Confidence.HIGHEST); in analyzeDependency() 159 … dependency.addEvidence(EvidenceType.VENDOR, PODSPEC, "author", author, Confidence.HIGHEST); in analyzeDependency() 163 … dependency.addEvidence(EvidenceType.VENDOR, PODSPEC, "homepage", homepage, Confidence.HIGHEST); in analyzeDependency() 172 … dependency.addEvidence(EvidenceType.VERSION, PODSPEC, "version", version, Confidence.HIGHEST); in analyzeDependency()
|
H A D | CMakeAnalyzer.java | 38 import org.owasp.dependencycheck.dependency.EvidenceType; 168 … dependency.addEvidence(EvidenceType.PRODUCT, name, "Project", group, Confidence.HIGH); in analyzeDependency() 169 … dependency.addEvidence(EvidenceType.VENDOR, name, "Project", group, Confidence.HIGH); in analyzeDependency() 215 … currentDep.addEvidence(EvidenceType.PRODUCT, source, "Product", product, Confidence.MEDIUM); in analyzeSetVersionCommand() 216 … currentDep.addEvidence(EvidenceType.VENDOR, source, "Vendor", product, Confidence.MEDIUM); in analyzeSetVersionCommand() 217 … currentDep.addEvidence(EvidenceType.VERSION, source, "Version", version, Confidence.MEDIUM); in analyzeSetVersionCommand()
|
/dports/lang/mono/mono-5.10.1.57/mcs/class/referencesource/mscorlib/system/security/policy/ |
H A D | evidencebase.cs | 77 Type EvidenceType { get; } property 103 public Type EvidenceType property in System.Security.Policy.LegacyEvidenceWrapper 154 public Type EvidenceType property in System.Security.Policy.LegacyEvidenceList 161 return adapter == null ? m_legacyEvidenceList[0].GetType() : adapter.EvidenceType; 168 … 0 || EvidenceType == evidence.GetType() || (evidence is LegacyEvidenceWrapper && (evidence as Leg… in Add()
|
/dports/security/owasp-dependency-check/DependencyCheck-3.1.1/dependency-check-core/src/main/java/org/owasp/dependencycheck/dependency/ |
H A D | EvidenceCollection.java | 110 public synchronized Iterable<Evidence> getIterator(EvidenceType type, Confidence confidence) { in getIterator() 148 public synchronized void addEvidence(EvidenceType type, Evidence e) { in addEvidence() 172 public synchronized void removeEvidence(EvidenceType type, Evidence e) { in removeEvidence() 200 …public void addEvidence(EvidenceType type, String source, String name, String value, Confidence co… in addEvidence() 271 public synchronized Set<Evidence> getEvidence(EvidenceType type) { in getEvidence() 294 public synchronized boolean contains(EvidenceType type, Evidence e) { in contains() 317 public synchronized boolean contains(EvidenceType type, Confidence confidence) { in contains()
|