search

Yelp / fuzz-lightyear

A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos engineering testing and stateful, Swagger fuzzing.
Other
212 stars 26 forks source link

Error: Invalid swagger format #47

Closed holumyn closed 4 years ago

holumyn commented 4 years ago

After installing, I ran fuzz-lightyear on the sample swagger doc. I received Error: invalid swager format. Please advise on what may be wrong.

Reproduction Step pip install fuzz-lightyear

fuzz-lightyear https://petstore.swagger.io/v2/swagger.json -v --ignore-exceptions

Error Message Error: Invalid swagger format FYI: I tried with addition self hosted swagger(.json) files but the result is the same

fuzz-lightyear 0.0.6 Mac 10.14.6 Python - Ran on 3.7.3 and 3.6.10

domanchi commented 4 years ago

Hi @holumyn,

This is bizarre. I've tried installing both HEAD (v0.0.7) and your specified version (v0.0.6), and have not been able to reproduce the error message. Can you provide a traceback?

EDIT: To make sure it isn't a network issue, you can also just point to a local swagger file by using file://. e.g.

$ curl https://petstore.swagger.io/v2/swagger.json > swagger.json
$ fuzz-lightyear `pwd`/swagger.json -v --ignore-exceptions

If your swagger file is YAML, make sure the file extension matches.

holumyn commented 4 years ago

Hi @domanchi . Thanks for the feedback.

I tried on a windows environment and it works as expected. I will run further trace on my Mac and share my findings.