Code cleanup from review

Includes spacing fix in description generation

Code cleanup from review
Includes spacing fix in description generation
2990435f · Jonathan Schafer · cad12337 · 2990435f · 2990435f · 2990435f
Commit 2990435f authored Nov 16, 2020 by Jonathan Schafer
5 changed files
--- a/ee/app/services/issues/build_from_vulnerability_service.rb
+++ b/ee/app/services/issues/build_from_vulnerability_service.rb
@@ -5,11 +5,11 @@ module Issues
    def execute
      vulnerability = params[:vulnerability]

-      params.merge!({
-        title: "Investigate vulnerability: #{vulnerability.title}",
+      params.merge!(
+        title: _("Investigate vulnerability: %{title}") % { title: vulnerability.title },
        description: render_description(vulnerability),
        confidential: true
-      })
+      )

      super
    end

--- a/ee/app/views/vulnerabilities/issue_description.md.erb
+++ b/ee/app/views/vulnerabilities/issue_description.md.erb
@@ -15,14 +15,14 @@
 <% if vulnerability.try(:file) %>
 * <%= _("Location") %>: [<%= vulnerability.location_text %>](<%= vulnerability.location_link %>)
 <% end %>
-
 <% if vulnerability.solution.present? %>
+
 ### <%= _("Solution") %>:

 <%= vulnerability.solution %>
 <% end %>
-
 <% if vulnerability.identifiers.present? %>
+
 ### <%= _("Identifiers") %>:

 <% vulnerability.identifiers.each do |identifier| %>
@@ -33,8 +33,8 @@
 <% end %>
 <% end %>
 <% end %>
-
 <% if vulnerability.links.present? %>
+
 ### <%= _("Links") %>:

 <% vulnerability.links.each do |link| %>
@@ -45,8 +45,8 @@
 <% end %>
 <% end %>
 <% end %>
-
 <% if vulnerability.remediations.present? && vulnerability.remediations.any? %>
+
 ### <%= _("Remediations") %>:

 <% vulnerability.remediations.each do |remediation| %>
@@ -60,8 +60,8 @@
  </details>
 <% end %>
 <% end %>
-
 <% if vulnerability.scanner.present? || vulnerability.scan.present? %>
+
 ### <%= _("Scanner") %>:

 <% if vulnerability.scanner.present? %>

--- a/ee/spec/services/ee/issues/build_from_vulnerability_service_spec.rb
+++ b/ee/spec/services/ee/issues/build_from_vulnerability_service_spec.rb
@@ -2,17 +2,21 @@

 require 'spec_helper'

-RSpec.describe Issues::BuildFromVulnerabilityService, '#execute' do
+RSpec.describe Issues::BuildFromVulnerabilityService do
  let_it_be(:group)   { create(:group) }
  let_it_be(:project) { create(:project, :public, :repository, namespace: group) }
  let_it_be(:user)    { create(:user) }
  let(:vulnerability) { create(:vulnerability, :with_finding, project: project) }
  let(:params) { { vulnerability: vulnerability } }
-  let(:result) { described_class.new(project, user, params).execute }
+  let(:issue) { described_class.new(project, user, params).execute }
+
+  describe '#execute' do
+    before_all do
+      group.add_developer(user)
+    end

    before do
      stub_licensed_features(security_dashboard: true)
-    group.add_developer(user)
    end

    context 'when a vulnerability has remediations' do
@@ -23,7 +27,7 @@ RSpec.describe Issues::BuildFromVulnerabilityService, '#execute' do

        it 'does not display Remediations section' do
          expect(vulnerability.remediations).to eq(nil)
-        expect(result.description).not_to match(/Remediations/)
+          expect(issue.description).not_to match(/Remediations/)
        end
      end

@@ -38,18 +42,18 @@ RSpec.describe Issues::BuildFromVulnerabilityService, '#execute' do

        it 'does not display Remediations section' do
          expect(vulnerability.remediations).to eq([nil])
-        expect(result.description).not_to match(/Remediations/)
+          expect(issue.description).not_to match(/Remediations/)
        end
      end

      context 'when raw_metadata has a remediation' do
        it 'displays Remediations section' do
          expect(vulnerability.remediations.length).to eq(1)
-        expect(result.description).to match(/Remediations/)
+          expect(issue.description).to match(/Remediations/)
        end

        it 'attaches the diff' do
-        expect(result.description).to match(/This is a diff/)
+          expect(issue.description).to match(/This is a diff/)
        end
      end
    end
@@ -57,7 +61,7 @@ RSpec.describe Issues::BuildFromVulnerabilityService, '#execute' do
    context 'when an issue is built' do
      let(:expected_title) { "Investigate vulnerability: #{vulnerability.title}" }
      let(:expected_description) do
-      <<~DESC.chomp
+        <<~DESC
          Issue created from vulnerability <a href="http://localhost/#{group.name}/#{project.name}/-/security/vulnerabilities/#{vulnerability.id}">#{vulnerability.id}</a>

          ### Description:
@@ -79,17 +83,29 @@ RSpec.describe Issues::BuildFromVulnerabilityService, '#execute' do
          ### Links:

          * [Cipher does not check for integrity first?](https://crypto.stackexchange.com/questions/31428/pbewithmd5anddes-cipher-does-not-check-for-integrity-first)
+
+          ### Scanner:
+
+          * Name: Find Security Bugs
        DESC
      end

      it 'builds the issue with the given params' do
-      issue = result
+        expected_attributes = {
+          project: project,
+          author: user,
+          title: expected_title,
+          description: expected_description
+        }
+
        expect(issue).not_to be_persisted
-      expect(issue.project).to eq(project)
-      expect(issue.author).to eq(user)
-      expect(issue.title).to eq(expected_title)
-      expect(issue.description.strip).to eq(expected_description)
-      expect(issue).to be_confidential
+        expect(issue).to have_attributes(expected_attributes)
+        # expect(issue.project).to eq(project)
+        # expect(issue.author).to eq(user)
+        # expect(issue.title).to eq(expected_title)
+        # expect(issue.description.strip).to eq(expected_description)
+        # expect(issue).to be_confidential
+      end
    end
  end
 end
--- a/ee/spec/services/ee/issues/create_from_vulnerability_data_service_spec.rb
+++ b/ee/spec/services/ee/issues/create_from_vulnerability_data_service_spec.rb
@@ -118,7 +118,6 @@ RSpec.describe Issues::CreateFromVulnerabilityDataService, '#execute' do
            * [Awesome-security blog post](https;//example.com/blog-post)
            * https://example.com/another-link

-
            ### Scanner:

            * Name: Gemnasium
@@ -164,9 +163,6 @@ RSpec.describe Issues::CreateFromVulnerabilityDataService, '#execute' do

            Please do something!

-
-
-
            ### Scanner:

            * Name: Gemnasium

--- a/ee/spec/services/ee/issues/create_from_vulnerability_service_spec.rb
+++ b/ee/spec/services/ee/issues/create_from_vulnerability_service_spec.rb
@@ -119,7 +119,6 @@ RSpec.describe Issues::CreateFromVulnerabilityService, '#execute' do

          * [Cipher does not check for integrity first?](https://crypto.stackexchange.com/questions/31428/pbewithmd5anddes-cipher-does-not-check-for-integrity-first)

-
          ### Scanner:

          * Name: Find Security Bugs