search

alipay / ant-application-security-testing-benchmark

xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
https://xastbenchmark.github.io
Apache License 2.0
323 stars 40 forks source link

testfiles folder requirement #36

Closed osxtest closed 4 months ago

osxtest commented 8 months ago

Hi, team.

I would like to suggest that we require a testfiles directory to be present in the same location as the JAR file. This is because the pathtraver related test cases report a No such file or directory error when the testfiles directory does not exist.

 cd  target/ 
+ mkdir testfiles
 java -jar antbenchmark-0.0.1-SNAPSHOT.jar

Relate source code: https://github.com/alipay/ant-application-security-testing-benchmark/blob/c7cef8e86e426cbaba481b327e312282221a5c9b/dast-java/src/main/java/com/alipay/antbenchmark/tools/Utils.java#L20

https://github.com/alipay/ant-application-security-testing-benchmark/blob/c7cef8e86e426cbaba481b327e312282221a5c9b/dast-java/README.md?plain=1#L73-L76

yulailailailai commented 4 months ago

Hello, thank you for discovering an unreasonable example in the DAST range. We have added the operation of creating the testfiles directory when starting the DAST range