License Export - Updated test scenarios #20
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Rajan Ravi <[email protected]>
queria
requested changes
Feb 5, 2025
There was a problem hiding this comment.
Nice update, covers lot of the specific cases.
One Scenario I think may be a mistake, or maybe I misunderstood what it is trying to do? (see inline)
Three suggestions for future (can be ignored for this PR, just to think about):
-
Given User is on SBOM license information fileor such generic steps cannot be used later for automation- try to think about this little bit more as code (or imagine looking at just one scenario, without the others)
- ... as it needs context information too
- ... e.g.
Given user is on SBOM license information file for sbom "cdx-single-license"or such, - ... image that it is function call (which it actually is)
- ... and so all scenarios starting with same function call without any parameter have no way giving you the specific sample data you need to test
-
it is very helpfull to have sample data mentioned, but since they are not in public google drive disk (or at least still require google account), i think we should not be including them here
- instead we should attach sample data into this repo
- also we should use very exact crafted sample json for the testcases, avoid to have too much noise coming from the samples ... which makes it only lot harder to verify/debug
- e.g we could have few 'overall' samples (which can be used for most of the other tests where e.g. licenses does not matter) and then specific ones for 'cdx-pkg-multi-license', 'cdx-pkg-altref' and such, and as per the first point they should be named in the scenario i think (even if we do bulk upload of most of them, here it would be used for identifying them in ui/navigating to their search result line or sbom explorer page for ex.)
-
repeating all very detailed field/column assertions seems does not fit well into feature file
- i think feature file should be high level description, usually avoiding any implementation details
- so likely we should have then just single check for common parts + specific part:
And "license expression" column is matching "components.license.expression" from sbom` - i realize without code it is better to express/record it at least here
- but having feature file full of all these copied wall of text makes it impossible to read, i have no clue if there are typos or not, my brain starts melting when i get to middle of reading the file after so many 'and license should or should not be' :) if you get what i mean
ikanias
reviewed
Feb 5, 2025
ikanias
reviewed
Feb 5, 2025
ikanias
reviewed
Feb 5, 2025
ikanias
reviewed
Feb 5, 2025
Signed-off-by: Rajan Ravi <[email protected]>
queria
approved these changes
Feb 24, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Added test scenarios for the license export feature