This PR aims to add some vulnerabilities in the vuln_packages.json file that were not contemplated before and add some new packages not vulnerable in some Windows upgrade cases. The test_vulnerability.yaml file has also been modified to incorporate these changes.
Testing performed
These changes have been tested locally by running only the cases that have been modified, that is, from the upgrade_package_maintain_add_vulnerability0 case onwards. The tests have failed, but in the alert file, you can see the alerts corresponding to the vulnerabilities of each installed package, so the test performance is as expected. The errors are due to the tests failing to detect vulnerabilities because of a change in the index reported in https://github.com/wazuh/wazuh-qa/issues/5239.
MARCOSD4
commented
2 weeks ago
Description
This PR aims to add some vulnerabilities in the
vuln_packages.jsonfile that were not contemplated before and add some new packages not vulnerable in some Windows upgrade cases. Thetest_vulnerability.yamlfile has also been modified to incorporate these changes.Testing performed
These changes have been tested locally by running only the cases that have been modified, that is, from the
upgrade_package_maintain_add_vulnerability0case onwards. The tests have failed, but in the alert file, you can see the alerts corresponding to the vulnerabilities of each installed package, so the test performance is as expected. The errors are due to the tests failing to detect vulnerabilities because of a change in the index reported in https://github.com/wazuh/wazuh-qa/issues/5239.Report: report.zip