
Security News
Open Source CAI Framework Handles Pen Testing Tasks up to 3,600× Faster Than Humans
CAI is a new open source AI framework that automates penetration testing tasks like scanning and exploitation up to 3,600× faster than humans.
github.com/codeclimate/test-reporter
Report information about your CI builds to Code Climate.
Most CI systems allow configuration of commands to run as part of setup, before, and after a test build. Using Circle CI as an example:
machine:
environment:
CC_TEST_REPORTER_ID: ...
dependencies:
post:
- curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter
- chmod +x ./cc-test-reporter
test:
pre:
- ./cc-test-reporter before-build
post:
- ./cc-test-reporter after-build --exit-code $EXIT_CODE
Where:
$EXIT_CODE
should be the exit code of your test suite process. Some CI
system expose this as an environment variable; for others, you may need
to manually capture $? to provide it to after-build later. Providing this
will prevent sending test coverage results for failed tests.To report coverage to your locally-hosted Code Climate: Enterprise instance,
export the CC_TEST_REPORTER_COVERAGE_ENDPOINT
variable, or pass the
--coverage-endpoint
option to after-build
.
CC_TEST_REPORTER_COVERAGE_ENDPOINT=https://codeclimate.my-domain.com/test_reports
The test reporter is implemented as a composition of lower-level commands, which may themselves be useful. See the man-pages for details of these commands.
Code Climate supports parallel test setups using sub-commands provided by the test reporter. Specifically, the test reporter has sub-commands to:
format-coverage
)sum-coverage
) andupload-coverage
)To make use of these commands, parallel test support requires:
For example:
After each batch of tests:
./cc-test-reporter format-coverage --output "coverage/codeclimate.$N.json"
aws s3 sync coverage/ "s3://my-bucket/coverage/$SHA"
Where:
$N
should be a unique identifier for that batch of tests$SHA
should be the commit for which the coverage was generated; you can
use an existing, CI-provided variable or ./cc-test-reporter env
to infer
$GIT_COMMIT_SHA
and use that.After all tests:
aws s3 sync "s3://my-bucket/coverage/$SHA" coverage/
cc-test-reporter sum-coverage --output - --parts $PARTS coverage/codeclimate.*.json | \
cc-test-reporter upload-coverage --input -
Where:
$PARTS
should be the number of payloads to sum.Coverage from multiple suites can be sent to Code Climate by aggregating each suite's results into one final report.
./cc-test-reporter format-coverage --output coverage/codeclimate.$SUITE.json
./cc-test-reporter sum-coverage coverage/codeclimate.*.json | \
./cc-test-reporter upload-coverage
See the LICENSE.
FAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
CAI is a new open source AI framework that automates penetration testing tasks like scanning and exploitation up to 3,600× faster than humans.
Security News
Deno 2.4 brings back bundling, improves dependency updates and telemetry, and makes the runtime more practical for real-world JavaScript projects.
Security News
CVEForecast.org uses machine learning to project a record-breaking surge in vulnerability disclosures in 2025.