Issues in CollectionTest.php (master) - Issues in master - consolidation/robo - Measure and Improve Code Quality continuously with Scrutinizer

Issues (569)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

tests/unit/Task/CollectionTest.php (5 issues)

Labels

Unused Code 5

Severity

Major 5

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
namespace unit;

// @codingStandardsIgnoreFile
// We do not want NitPick CI to report results about this file,
// as we have a couple of private test classes that appear in this file
// rather than in their own file.

use Robo\Robo;
use Robo\Result;
use Robo\State\Data;
use Robo\Task\BaseTask;
use Robo\Collection\Collection;
use Robo\Task\ValueProviderTask;
use Robo\Task\CollectionTestTask;
use Robo\Task\CountingTask;

class CollectionTest extends \Codeception\TestCase\Test
{
    /**
     * @var \CodeGuy
     */
    protected $guy;

    public function testAfterFilters()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $taskA = new CollectionTestTask('a', 'value-a');
        $taskB = new CollectionTestTask('b', 'value-b');

        $collection
            ->add($taskA, 'a-name')
            ->add($taskB, 'b-name');

        // We add methods of our task instances as before and
        // after tasks. These methods have access to the task
        // class' fields, and may modify them as needed.
        $collection
            ->after('a-name', [$taskA, 'parenthesizer'])
            ->after('a-name', [$taskA, 'emphasizer'])
            ->after('b-name', [$taskB, 'emphasizer'])
            ->after('b-name', [$taskB, 'parenthesizer'])
            ->after('b-name', [$taskB, 'parenthesizer'], 'special-name');

        $result = $collection->run();

        // Ensure that the results have the correct key values
        $this->assertEquals(
            'a-name,b-name,special-name,time',
            implode(',', array_keys($result->getData())));

        // Verify that all of the after tasks ran in
        // the correct order.
        $this->assertEquals(
            '*(value-a)*',
            $result['a-name']['a']);
        $this->assertEquals(
            '(*value-b*)',
            $result['b-name']['b']);

        // Note that the last after task is added with a special name;
        // its results therefore show up under the name given, rather
        // than being stored under the name of the task it was added after.
        $this->assertEquals(
            '((*value-b*))',
            $result['special-name']['b']);
    }

    public function testBeforeFilters()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $taskA = new CollectionTestTask('a', 'value-a');
        $taskB = new CollectionTestTask('b', 'value-b');

        $collection
            ->add($taskA, 'a-name')
            ->add($taskB, 'b-name');

        // We add methods of our task instances as before and
        // after tasks. These methods have access to the task
        // class' fields, and may modify them as needed.
        $collection
            ->before('b-name', [$taskA, 'parenthesizer'])
            ->before('b-name', [$taskA, 'emphasizer'], 'special-before-name');

        $result = $collection->run();

        // Ensure that the results have the correct key values
        $this->assertEquals(
            'a-name,b-name,special-before-name,time',
            implode(',', array_keys($result->getData())));

        // The result from the 'before' task is attached
        // to 'b-name', since it was called as before('b-name', ...)
        $this->assertEquals(
            '(value-a)',
            $result['b-name']['a']);
        // When a 'before' task is given its own name, then
        // its results are attached under that name.
        $this->assertEquals(
            '*(value-a)*',
            $result['special-before-name']['a']);
    }

    public function testAddCodeRollbackAndCompletion()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $rollback1 = new CountingTask();
        $rollback2 = new CountingTask();
        $completion1 = new CountingTask();
        $completion2 = new CountingTask();

        $collection
            ->progressMessage("start collection tasks")
            ->rollback($rollback1)
            ->completion($completion1)
            ->rollbackCode(function() use($rollback1) { $rollback1->run(); } )
            ->completionCode(function() use($completion1) { $completion1->run(); } )
            ->addCode(function () { return 42; })
            ->progressMessage("not reached")
            ->rollback($rollback2)
            ->completion($completion2)
            ->addCode(function () { return 13; });

        $collection->setLogger($this->guy->logger());

        $result = $collection->run();
        // Execution stops on the first error.
        // Confirm that status code is converted to a Result object.
        $this->assertEquals(42, $result->getExitCode());
        $this->assertEquals(2, $rollback1->getCount());
        $this->assertEquals(0, $rollback2->getCount());
        $this->assertEquals(2, $completion1->getCount());
        $this->assertEquals(0, $completion2->getCount());
        $this->guy->seeInOutput('start collection tasks');
        $this->guy->doNotSeeInOutput('not reached');
    }

    public function testStateWithAddCode()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $result = $collection
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
            ->addCode(
                function (Data $state) {
                    $state['one'] = 'first';
                })
            ->addCode(
                function (Data $state) {
                    $state['two'] = 'second';
                })
            ->addCode(
                function (Data $state) {
                    $state['three'] = "{$state['one']} and {$state['two']}";
                })
            ->run();

        $state = $collection->getState();
        $this->assertEquals(
            'first and second',
            $state['three']);
    }

    public function testStateWithTaskResult()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $first = new ValueProviderTask();
        $first->provideData('one', 'First');

        $second = new ValueProviderTask();
        $second->provideData('two', 'Second');

        $result = $collection
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
            ->add($first)
            ->add($second)
            ->addCode(
                function (Data $state) {
                    $state['three'] = "{$state['one']} and {$state['two']}";
                })
            ->run();

        $state = $collection->getState();
        $this->assertEquals(
            'First',
            $state['one']);
        $this->assertEquals(
            'First and Second',
            $state['three']);
    }

    public function testDeferredInitialization()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $first = new ValueProviderTask();
        $first->provideData('one', 'First');

        $second = new ValueProviderTask();
        $second->provideData('two', 'Second');

        $third = new ValueProviderTask();

        $result = $collection
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
            ->add($first)
            ->add($second)
            ->add($third)
                ->defer(
                    $third,
                    function ($task, $state) {
                        $task->provideData('three', "{$state['one']} and {$state['two']}");
                    }
                )
            ->run();

        $state = $collection->getState();
        $this->assertEquals(
            'First',
            $state['one']);
        $this->assertEquals(
            'First and Second',
            $state['three']);
    }

    public function testDeferredInitializationWithMessageStorage()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        $first = new ValueProviderTask();
        $first->provideMessage('1st');

        $second = new ValueProviderTask();
        $second->provideData('other', '2nd');

        $third = new ValueProviderTask();

        $result = $collection
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
            ->add($first)
                ->storeState($first, 'one')
            ->add($second)
                ->storeState($second, 'two', 'other')
            ->add($third)
                ->defer(
                    $third,
                    function ($task, $state) {
                        $task->provideData('three', "{$state['one']} and {$state['two']}");
                    }
                )
            ->run();

        $state = $collection->getState();
        $this->assertEquals(
            '1st',
            $state['one']);
        $this->assertEquals(
            '1st and 2nd',
            $state['three']);
    }
    public function testDeferredInitializationWithChainedInitialization()
    {
        $collection = new Collection();
        $collection->setLogger(Robo::logger());

        // This task sets the Result message to '1st'
        $first = new ValueProviderTask();
        $first->provideMessage('1st');

        $second = new ValueProviderTask();
        $second->provideMessage('2nd');

        $third = new ValueProviderTask();

        $result = $collection
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
            // $first will set its Result's message to '1st' at `run()` time
            ->add($first)
                // This will copy the message from $first's result to $state['one'] after $first runs.
                // Note that it does not matter what order the `storeState` messages are called in;
                // their first parameter determines when they run. This differs from CollectionBuilder,
                // which manages order.
                ->storeState($first, 'one')
            ->add($second)
                // This will copy the message from $second's result to $state['two']
                ->storeState($second, 'two')
            ->add($third)
                ->deferTaskConfiguration($third, 'provideItem', 'one')
                ->deferTaskConfiguration($third, 'provideMessage', 'two')
                ->storeState($third, 'final')
            ->progressMessage('The final result is {final}')
            ->run();

        $state = $collection->getState();
        $this->assertEquals(
            '1st',
            $state['one']);
        $this->assertEquals(
            '1st',
            $state['item']);
        $this->assertEquals(
            '2nd',
            $state['final']);

        $this->guy->seeInOutput("The final result is 2nd");
    }
}



1			<?php
2			namespace unit;
3
4			// @codingStandardsIgnoreFile
5			// We do not want NitPick CI to report results about this file,
6			// as we have a couple of private test classes that appear in this file
7			// rather than in their own file.
8
9			use Robo\Robo;
10			use Robo\Result;
11			use Robo\State\Data;
12			use Robo\Task\BaseTask;
13			use Robo\Collection\Collection;
14			use Robo\Task\ValueProviderTask;
15			use Robo\Task\CollectionTestTask;
16			use Robo\Task\CountingTask;
17
18			class CollectionTest extends \Codeception\TestCase\Test
19			{
20			/**
21			* @var \CodeGuy
22			*/
23			protected $guy;
24
25			public function testAfterFilters()
26			{
27			$collection = new Collection();
28			$collection->setLogger(Robo::logger());
29
30			$taskA = new CollectionTestTask('a', 'value-a');
31			$taskB = new CollectionTestTask('b', 'value-b');
32
33			$collection
34			->add($taskA, 'a-name')
35			->add($taskB, 'b-name');
36
37			// We add methods of our task instances as before and
38			// after tasks. These methods have access to the task
39			// class' fields, and may modify them as needed.
40			$collection
41			->after('a-name', [$taskA, 'parenthesizer'])
42			->after('a-name', [$taskA, 'emphasizer'])
43			->after('b-name', [$taskB, 'emphasizer'])
44			->after('b-name', [$taskB, 'parenthesizer'])
45			->after('b-name', [$taskB, 'parenthesizer'], 'special-name');
46
47			$result = $collection->run();
48
49			// Ensure that the results have the correct key values
50			$this->assertEquals(
51			'a-name,b-name,special-name,time',
52			implode(',', array_keys($result->getData())));
53
54			// Verify that all of the after tasks ran in
55			// the correct order.
56			$this->assertEquals(
57			'(value-a)',
58			$result['a-name']['a']);
59			$this->assertEquals(
60			'(value-b)',
61			$result['b-name']['b']);
62
63			// Note that the last after task is added with a special name;
64			// its results therefore show up under the name given, rather
65			// than being stored under the name of the task it was added after.
66			$this->assertEquals(
67			'((value-b))',
68			$result['special-name']['b']);
69			}
70
71			public function testBeforeFilters()
72			{
73			$collection = new Collection();
74			$collection->setLogger(Robo::logger());
75
76			$taskA = new CollectionTestTask('a', 'value-a');
77			$taskB = new CollectionTestTask('b', 'value-b');
78
79			$collection
80			->add($taskA, 'a-name')
81			->add($taskB, 'b-name');
82
83			// We add methods of our task instances as before and
84			// after tasks. These methods have access to the task
85			// class' fields, and may modify them as needed.
86			$collection
87			->before('b-name', [$taskA, 'parenthesizer'])
88			->before('b-name', [$taskA, 'emphasizer'], 'special-before-name');
89
90			$result = $collection->run();
91
92			// Ensure that the results have the correct key values
93			$this->assertEquals(
94			'a-name,b-name,special-before-name,time',
95			implode(',', array_keys($result->getData())));
96
97			// The result from the 'before' task is attached
98			// to 'b-name', since it was called as before('b-name', ...)
99			$this->assertEquals(
100			'(value-a)',
101			$result['b-name']['a']);
102			// When a 'before' task is given its own name, then
103			// its results are attached under that name.
104			$this->assertEquals(
105			'(value-a)',
106			$result['special-before-name']['a']);
107			}
108
109			public function testAddCodeRollbackAndCompletion()
110			{
111			$collection = new Collection();
112			$collection->setLogger(Robo::logger());
113
114			$rollback1 = new CountingTask();
115			$rollback2 = new CountingTask();
116			$completion1 = new CountingTask();
117			$completion2 = new CountingTask();
118
119			$collection
120			->progressMessage("start collection tasks")
121			->rollback($rollback1)
122			->completion($completion1)
123			->rollbackCode(function() use($rollback1) { $rollback1->run(); } )
124			->completionCode(function() use($completion1) { $completion1->run(); } )
125			->addCode(function () { return 42; })
126			->progressMessage("not reached")
127			->rollback($rollback2)
128			->completion($completion2)
129			->addCode(function () { return 13; });
130
131			$collection->setLogger($this->guy->logger());
132
133			$result = $collection->run();
134			// Execution stops on the first error.
135			// Confirm that status code is converted to a Result object.
136			$this->assertEquals(42, $result->getExitCode());
137			$this->assertEquals(2, $rollback1->getCount());
138			$this->assertEquals(0, $rollback2->getCount());
139			$this->assertEquals(2, $completion1->getCount());
140			$this->assertEquals(0, $completion2->getCount());
141			$this->guy->seeInOutput('start collection tasks');
142			$this->guy->doNotSeeInOutput('not reached');
143			}
144
145			public function testStateWithAddCode()
146			{
147			$collection = new Collection();
148			$collection->setLogger(Robo::logger());
149
150			$result = $collection
			0 ignored issues – show Unused Code introduced 2017-05-26 17:42 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$result` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
151			->addCode(
152			function (Data $state) {
153			$state['one'] = 'first';
154			})
155			->addCode(
156			function (Data $state) {
157			$state['two'] = 'second';
158			})
159			->addCode(
160			function (Data $state) {
161			$state['three'] = "{$state['one']} and {$state['two']}";
162			})
163			->run();
164
165			$state = $collection->getState();
166			$this->assertEquals(
167			'first and second',
168			$state['three']);
169			}
170
171			public function testStateWithTaskResult()
172			{
173			$collection = new Collection();
174			$collection->setLogger(Robo::logger());
175
176			$first = new ValueProviderTask();
177			$first->provideData('one', 'First');
178
179			$second = new ValueProviderTask();
180			$second->provideData('two', 'Second');
181
182			$result = $collection
			0 ignored issues – show Unused Code introduced 2017-05-19 21:58 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$result` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
183			->add($first)
184			->add($second)
185			->addCode(
186			function (Data $state) {
187			$state['three'] = "{$state['one']} and {$state['two']}";
188			})
189			->run();
190
191			$state = $collection->getState();
192			$this->assertEquals(
193			'First',
194			$state['one']);
195			$this->assertEquals(
196			'First and Second',
197			$state['three']);
198			}
199
200			public function testDeferredInitialization()
201			{
202			$collection = new Collection();
203			$collection->setLogger(Robo::logger());
204
205			$first = new ValueProviderTask();
206			$first->provideData('one', 'First');
207
208			$second = new ValueProviderTask();
209			$second->provideData('two', 'Second');
210
211			$third = new ValueProviderTask();
212
213			$result = $collection
			0 ignored issues – show Unused Code introduced 2017-05-19 22:46 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$result` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
214			->add($first)
215			->add($second)
216			->add($third)
217			->defer(
218			$third,
219			function ($task, $state) {
220			$task->provideData('three', "{$state['one']} and {$state['two']}");
221			}
222			)
223			->run();
224
225			$state = $collection->getState();
226			$this->assertEquals(
227			'First',
228			$state['one']);
229			$this->assertEquals(
230			'First and Second',
231			$state['three']);
232			}
233
234			public function testDeferredInitializationWithMessageStorage()
235			{
236			$collection = new Collection();
237			$collection->setLogger(Robo::logger());
238
239			$first = new ValueProviderTask();
240			$first->provideMessage('1st');
241
242			$second = new ValueProviderTask();
243			$second->provideData('other', '2nd');
244
245			$third = new ValueProviderTask();
246
247			$result = $collection
			0 ignored issues – show Unused Code introduced 2017-05-19 23:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$result` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
248			->add($first)
249			->storeState($first, 'one')
250			->add($second)
251			->storeState($second, 'two', 'other')
252			->add($third)
253			->defer(
254			$third,
255			function ($task, $state) {
256			$task->provideData('three', "{$state['one']} and {$state['two']}");
257			}
258			)
259			->run();
260
261			$state = $collection->getState();
262			$this->assertEquals(
263			'1st',
264			$state['one']);
265			$this->assertEquals(
266			'1st and 2nd',
267			$state['three']);
268			}
269			public function testDeferredInitializationWithChainedInitialization()
270			{
271			$collection = new Collection();
272			$collection->setLogger(Robo::logger());
273
274			// This task sets the Result message to '1st'
275			$first = new ValueProviderTask();
276			$first->provideMessage('1st');
277
278			$second = new ValueProviderTask();
279			$second->provideMessage('2nd');
280
281			$third = new ValueProviderTask();
282
283			$result = $collection
			0 ignored issues – show Unused Code introduced 2017-05-26 17:42 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$result` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
284			// $first will set its Result's message to '1st' at `run()` time
285			->add($first)
286			// This will copy the message from $first's result to $state['one'] after $first runs.
287			// Note that it does not matter what order the `storeState` messages are called in;
288			// their first parameter determines when they run. This differs from CollectionBuilder,
289			// which manages order.
290			->storeState($first, 'one')
291			->add($second)
292			// This will copy the message from $second's result to $state['two']
293			->storeState($second, 'two')
294			->add($third)
295			->deferTaskConfiguration($third, 'provideItem', 'one')
296			->deferTaskConfiguration($third, 'provideMessage', 'two')
297			->storeState($third, 'final')
298			->progressMessage('The final result is {final}')
299			->run();
300
301			$state = $collection->getState();
302			$this->assertEquals(
303			'1st',
304			$state['one']);
305			$this->assertEquals(
306			'1st',
307			$state['item']);
308			$this->assertEquals(
309			'2nd',
310			$state['final']);
311
312			$this->guy->seeInOutput("The final result is 2nd");
313			}
314			}
315
316

consolidation / robo

Issues (569)

Security Analysis not enabled

tests/unit/Task/CollectionTest.php (5 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like