Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
aft-mocha-reporter
Advanced tools
Automated Functional Testing (AFT) Reporter for use with Mocha Test Framework
a Mocha Reporter
integration for AFT providing support for AFT plugins, configuration and helpers
> npm i aft-mocha-reporter
using this Reporter
requires either calling the mocha
command with the following argument --reporter=aft-mocha-reporter
or from within a .mocharc.json
file like the following:
// .mocharc.json
{
...
"reporter": "aft-mocha-reporter",
...
}
while no configuration is required, the aft-mocha-reporter
supports all AFT configuration via an aftconfig.json
file in the root directory.
this package comes with two helper classes that can be utilised from within your Mocha specs to make use of AFT features.
AftLog
the AftLog
class provides access to an AFT Reporter
instance for your currently executing spec file. you can use it like the following:
!!WARNING!! using arrow functions in your Spec definition IS NOT SUPPORTED if using
AftLog
because it removes thethis
scope
describe('YourTestSuite', () => {
it('allows you to log using AFT Reporter', async function() {
const aft = new AftLog(this);
await aft.reporter.step('starting test...');
/* do some test things here */
await aft.reporter.step('test is complete');
});
});
and which would output the following to your console and any AFT ReportingPlugin
instances referenced in your aftconfig.json
(assuming your test expectations all pass)
17:52:45 - [YourTestSuite allows you to log using AFT Reporter] - STEP - starting test...
17:54:02 - [YourTestSuite allows you to log using AFT Reporter] - STEP - test is complete
17:54:02 - [YourTestSuite allows you to log using AFT Reporter] - PASS - YourTestSuite allows you to log using AFT Reporter
AftTest
the AftTest
class extends from the AftLog
adding the ability to parse the Spec name for any referenced Test. each Test ID must be surrounded with square brackets [ABC123]
. you can then either directly call the AftTest.shouldRun()
async function which will determine if your test should be run based on any AFT TestExecutionPolicyPlugin
instances referenced in your aftconfig.json
file or you can call AftTest.verify(assertion)
which will perform the AftTest.shouldRun()
call and mark the test as skipped if it should not be run. using the AftTest
class would look like the following:
!!WARNING!! using arrow functions in your Spec definition IS NOT SUPPORTED if using
AftTest
because it removes thethis
scope
describe('YourTestSuite', () => {
it('can check if test [C1234] should be run', async function() {
const aft = new AftTest(this);
await aft.verify(async (v: Verifier) => {
// `verify` calls `v.test.skip()` if should not be run
await v.reporter.error('we should never get here if C1234 should not be run');
const result = await doStuff();
return result;
}).returns(equaling('expected'));
});
});
which would output the following to your console and any AFT ReportingPlugin
instances referenced in your aftconfig.json
if the test ID should not be run:
17:52:45 - [YourTestSuite can check if test [C1234] should be run] - WARN - none of the supplied tests should be run: [C1234]
17:52:45 - [YourTestSuite can check if test [C1234] should be run] - WARN - test skipped
AftLog
and AftTest
constructors expects to be passed a valid scope
containing reference to the currently executing Mocha.Test
. typically this will be the this
object within your SpecReporter
works in both parallel and sequential execution modes, but you MUST ALWAYS use a non-arrow function for your Spec definition if you are using AftLog
or AftTest
classes within your SpecVerifier
in combination with the AftLog
or AftTest
classes like follows:const aft = new AftTest();
await aft.verify((v: Verifier) => {
/* perform testing here */
}).returns(expected);
FAQs
Automated Functional Testing (AFT) Reporter for use with Mocha Test Framework
The npm package aft-mocha-reporter receives a total of 7 weekly downloads. As such, aft-mocha-reporter popularity was classified as not popular.
We found that aft-mocha-reporter demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.