fix: testifylint last issues

Signed-off-by: Matthieu MOREL <[email protected]>

Author: mmorel-35

.golangci.yaml

@@ -140,9 +140,6 @@ linters:
       - linters:
           - goconst
         text: "string `each` has 3 occurrences, make it a constant"  # FIXME
-      - linters:
-          - testifylint
-        text: "(len|empty|equal-values)"  # FIXME
     presets:
       - comments
       - common-false-positives

internal/testutil/util.go

@@ -23,7 +23,7 @@ func AssertRuleFound(t *testing.T, ruleID string, results scan.Results, message
 			m := result.Metadata()
 			meta := &m
 			for meta != nil {
-				assert.NotNil(t, meta.Range(), 0)
+				assert.NotNil(t, meta.Range())
 				assert.Positive(t, meta.Range().GetStartLine())
 				assert.Positive(t, meta.Range().GetEndLine())
 				meta = meta.Parent()

pkg/cache/fs_test.go

@@ -20,7 +20,7 @@ func newTempDB(t *testing.T, dbPath string) (string, error) {
 	dir := t.TempDir()
 	if dbPath != "" {
 		d := filepath.Join(dir, "fanal")
-		if err := os.MkdirAll(d, 0700); err != nil {
+		if err := os.MkdirAll(d, 0o700); err != nil {
 			return "", err
 		}
 
@@ -105,7 +105,11 @@ func TestFSCache_GetBlob(t *testing.T) {
 			}()
 
 			got, err := fs.GetBlob(tt.args.layerID)
-			assert.Equal(t, tt.wantErr, err != nil, err)
+			if tt.wantErr {
+				require.Error(t, err)
+			} else {
+				require.NoError(t, err)
+			}
 			assert.Equal(t, tt.want, got)
 		})
 	}

pkg/detector/ospkg/redhat/redhat_test.go

@@ -428,7 +428,11 @@ func TestScanner_Detect(t *testing.T) {
 
 			s := redhat.NewScanner()
 			got, err := s.Detect(nil, tt.args.osVer, nil, tt.args.pkgs)
-			require.Equal(t, tt.wantErr, err != nil, err)
+			if tt.wantErr {
+				require.Error(t, err)
+			} else {
+				require.NoError(t, err)
+			}
 			assert.Equal(t, tt.want, got)
 		})
 	}

pkg/fanal/analyzer/language/golang/binary/binary_test.go

@@ -122,7 +122,7 @@ func Test_gobinaryLibraryAnalyzer_Required(t *testing.T) {
 			fileInfo, err := os.Lstat(tt.filePath)
 			require.NoError(t, err)
 			got := a.Required(tt.filePath, fileInfo)
-			assert.Equal(t, tt.want, got, fileInfo.Mode().Perm())
+			assert.Equal(t, tt.want, got, "%+v", fileInfo.Mode().Perm())
 		})
 	}
 

pkg/fanal/analyzer/language/rust/binary/binary_test.go

@@ -102,7 +102,7 @@ func Test_rustBinaryLibraryAnalyzer_Required(t *testing.T) {
 			fileInfo, err := os.Lstat(tt.filePath)
 			require.NoError(t, err)
 			got := a.Required(tt.filePath, fileInfo)
-			assert.Equal(t, tt.want, got, fileInfo.Mode().Perm())
+			assert.Equal(t, tt.want, got, "%+v", fileInfo.Mode().Perm())
 		})
 	}
 }

pkg/fanal/image/daemon/docker_test.go

@@ -6,7 +6,6 @@ import (
 	"github.com/docker/docker/api/types"
 	"github.com/google/go-containerregistry/pkg/name"
 	v1 "github.com/google/go-containerregistry/pkg/v1"
-	"github.com/stretchr/testify/assert"
 	"github.com/stretchr/testify/require"
 )
 
@@ -40,7 +39,11 @@ func TestDockerImage(t *testing.T) {
 			require.NoError(t, err)
 
 			_, cleanup, err := DockerImage(ref, "")
-			assert.Equal(t, tt.wantErr, err != nil, err)
+			if tt.wantErr {
+				require.Error(t, err)
+			} else {
+				require.NoError(t, err)
+			}
 			defer func() {
 				if cleanup != nil {
 					cleanup()

pkg/fanal/image/daemon/image_test.go

@@ -72,7 +72,6 @@ func Test_image_ConfigName(t *testing.T) {
 }
 
 func Test_image_ConfigNameWithCustomDockerHost(t *testing.T) {
-
 	ref, err := name.ParseReference("alpine:3.11")
 	require.NoError(t, err)
 
@@ -241,7 +240,11 @@ func Test_image_ConfigFile(t *testing.T) {
 			defer cleanup()
 
 			conf, err := img.ConfigFile()
-			require.Equal(t, tt.wantErr, err != nil, err)
+			if tt.wantErr {
+				require.Error(t, err)
+			} else {
+				require.NoError(t, err)
+			}
 			assert.Equal(t, tt.want, conf)
 		})
 	}
@@ -286,7 +289,11 @@ func Test_image_LayerByDiffID(t *testing.T) {
 			defer cleanup()
 
 			_, err = img.LayerByDiffID(tt.args.h)
-			assert.Equal(t, tt.wantErr, err != nil, err)
+			if tt.wantErr {
+				assert.Error(t, err)
+			} else {
+				require.NoError(t, err)
+			}
 		})
 	}
 }
@@ -315,7 +322,11 @@ func Test_image_RawConfigFile(t *testing.T) {
 			defer cleanup()
 
 			got, err := img.RawConfigFile()
-			assert.Equal(t, tt.wantErr, err != nil, err)
+			if tt.wantErr {
+				require.Error(t, err)
+			} else {
+				require.NoError(t, err)
+			}
 
 			if err != nil {
 				return

pkg/fanal/image/daemon/podman_test.go

@@ -99,7 +99,7 @@ func TestPodmanImage(t *testing.T) {
 			confFile, err := img.ConfigFile()
 			require.NoError(t, err)
 
-			assert.Equal(t, len(confFile.History), len(tt.wantCreateBy))
+			assert.Len(t, tt.wantCreateBy, len(confFile.History))
 			for _, h := range confFile.History {
 				assert.Contains(t, tt.wantCreateBy, h.CreatedBy)
 			}

pkg/fanal/image/image_test.go

@@ -163,16 +163,16 @@ func TestNewDockerImage(t *testing.T) {
 			wantConfigFile: &v1.ConfigFile{
 				Architecture:  "amd64",
 				Container:     "7f4a36a667d138b079b5ff059485ff65bfbb5ebc48f24a89f983b918e73f4f28",
-				Created:       v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 06, 686519038, time.UTC)},
+				Created:       v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 0o6, 686519038, time.UTC)},
 				DockerVersion: "18.06.1-ce",
 				History: []v1.History{
 					{
-						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 06, 551172402, time.UTC)},
+						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 0o6, 551172402, time.UTC)},
 						CreatedBy:  "/bin/sh -c #(nop) ADD file:d48cac34fac385cbc1de6adfdd88300f76f9bbe346cd17e64fd834d042a98326 in / ",
 						EmptyLayer: false,
 					},
 					{
-						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 06, 686519038, time.UTC)},
+						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 0o6, 686519038, time.UTC)},
 						CreatedBy:  "/bin/sh -c #(nop)  CMD [\"/bin/sh\"]",
 						Comment:    "",
 						EmptyLayer: true,
@@ -222,16 +222,16 @@ func TestNewDockerImage(t *testing.T) {
 			wantConfigFile: &v1.ConfigFile{
 				Architecture:  "amd64",
 				Container:     "7f4a36a667d138b079b5ff059485ff65bfbb5ebc48f24a89f983b918e73f4f28",
-				Created:       v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 06, 686519038, time.UTC)},
+				Created:       v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 0o6, 686519038, time.UTC)},
 				DockerVersion: "18.06.1-ce",
 				History: []v1.History{
 					{
-						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 06, 551172402, time.UTC)},
+						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 0o6, 551172402, time.UTC)},
 						CreatedBy:  "/bin/sh -c #(nop) ADD file:d48cac34fac385cbc1de6adfdd88300f76f9bbe346cd17e64fd834d042a98326 in / ",
 						EmptyLayer: false,
 					},
 					{
-						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 06, 686519038, time.UTC)},
+						Created:    v1.Time{Time: time.Date(2020, 1, 23, 16, 53, 0o6, 686519038, time.UTC)},
 						CreatedBy:  "/bin/sh -c #(nop)  CMD [\"/bin/sh\"]",
 						Comment:    "",
 						EmptyLayer: true,
@@ -396,7 +396,7 @@ func TestNewDockerImageWithPrivateRegistry(t *testing.T) {
 			defer cleanup()
 
 			if tt.wantErr != "" {
-				require.ErrorContains(t, err, tt.wantErr, err)
+				require.ErrorContains(t, err, tt.wantErr)
 			} else {
 				require.NoError(t, err)
 			}
@@ -545,7 +545,7 @@ func TestDockerPlatformArguments(t *testing.T) {
 			defer cleanup()
 
 			if tt.wantErr != "" {
-				assert.ErrorContains(t, err, tt.wantErr, err)
+				assert.ErrorContains(t, err, tt.wantErr)
 			} else {
 				require.NoError(t, err)
 			}

pkg/fanal/image/oci_test.go

@@ -61,7 +61,7 @@ func TestTryOCI(t *testing.T) {
 		t.Run(test.name, func(t *testing.T) {
 			_, err := tryOCI(test.ociImagePath)
 			if test.wantErr != "" {
-				require.ErrorContains(t, err, test.wantErr, err)
+				require.ErrorContains(t, err, test.wantErr)
 			} else {
 				require.NoError(t, err)
 			}

pkg/iac/adapters/arm/storage/adapt_test.go

@@ -28,7 +28,7 @@ func Test_AdaptStorageDefaults(t *testing.T) {
 	require.Len(t, output.Accounts, 1)
 
 	account := output.Accounts[0]
-	assert.Equal(t, "", account.MinimumTLSVersion.Value())
+	assert.Empty(t, account.MinimumTLSVersion.Value())
 	assert.False(t, account.EnforceHTTPS.Value())
 	assert.True(t, account.PublicNetworkAccess.Value())
 

pkg/iac/detection/detect_test.go

@@ -449,7 +449,7 @@ rules:
 		t.Run(test.name, func(t *testing.T) {
 			t.Run("GetTypes", func(t *testing.T) {
 				actualDetections := GetTypes(test.path, test.r)
-				assert.Equal(t, len(test.expected), len(actualDetections))
+				assert.Len(t, actualDetections, len(test.expected))
 				for _, expected := range test.expected {
 					resetReader(test.r)
 					found := slices.Contains(actualDetections, expected)

pkg/iac/rego/scanner_test.go

@@ -31,7 +31,6 @@ func CreateFS(t *testing.T, files map[string]string) fs.FS {
 }
 
 func Test_RegoScanning_Deny(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `
 package defsec.test
@@ -64,14 +63,13 @@ deny {
 }
 
 func Test_RegoScanning_AbsolutePolicyPath_Deny(t *testing.T) {
-
 	tmp := t.TempDir()
-	require.NoError(t, os.Mkdir(filepath.Join(tmp, "policies"), 0755))
+	require.NoError(t, os.Mkdir(filepath.Join(tmp, "policies"), 0o755))
 	require.NoError(t, os.WriteFile(filepath.Join(tmp, "policies", "test.rego"), []byte(`package defsec.test
 
 deny {
     input.evil
-}`), 0600))
+}`), 0o600))
 
 	srcFS := os.DirFS(tmp)
 
@@ -128,7 +126,6 @@ deny {
 }
 
 func Test_RegoScanning_WithRuntimeValues(t *testing.T) {
-
 	t.Setenv("DEFSEC_RUNTIME_VAL", "AOK")
 
 	srcFS := CreateFS(t, map[string]string{
@@ -230,7 +227,6 @@ deny[res] {
 	assert.Equal(t, "/evil.lol", results.GetFailed()[0].Metadata().Range().GetFilename())
 	assert.Equal(t, 123, results.GetFailed()[0].Metadata().Range().GetStartLine())
 	assert.Equal(t, 456, results.GetFailed()[0].Metadata().Range().GetEndLine())
-
 }
 
 func Test_RegoScanning_WithDenyMetadata_PersistedPath(t *testing.T) {
@@ -271,7 +267,6 @@ deny[res] {
 	assert.Equal(t, "/blah.txt", results.GetFailed()[0].Metadata().Range().GetFilename())
 	assert.Equal(t, 123, results.GetFailed()[0].Metadata().Range().GetStartLine())
 	assert.Equal(t, 456, results.GetFailed()[0].Metadata().Range().GetEndLine())
-
 }
 
 func Test_RegoScanning_WithStaticMetadata(t *testing.T) {
@@ -332,7 +327,6 @@ deny[res] {
 	assert.Equal(t, severity.Low, failure.Rule().Severity)
 	assert.Equal(t, "This is a recommendation", failure.Rule().Resolution)
 	assert.Equal(t, "https://google.com", failure.Rule().Links[0])
-
 }
 
 func Test_RegoScanning_WithMatchingInputSelector(t *testing.T) {
@@ -403,7 +397,6 @@ deny {
 }
 
 func Test_RegoScanning_NoTracingByDefault(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `
 package defsec.test
@@ -435,7 +428,6 @@ deny {
 }
 
 func Test_RegoScanning_GlobalTracingEnabled(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `
 package defsec.test
@@ -471,7 +463,6 @@ deny {
 }
 
 func Test_RegoScanning_PerResultTracingEnabled(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `
 package defsec.test
@@ -504,7 +495,6 @@ deny {
 }
 
 func Test_dynamicMetadata(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `
 package defsec.test
@@ -536,7 +526,6 @@ deny {
 }
 
 func Test_staticMetadata(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `
 package defsec.test
@@ -568,7 +557,6 @@ deny {
 }
 
 func Test_annotationMetadata(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `# METADATA
 # title: i am a title
@@ -623,7 +611,6 @@ deny {
 }
 
 func Test_RegoScanning_WithInvalidInputSchema(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `# METADATA
 # schemas:
@@ -643,7 +630,6 @@ deny {
 }
 
 func Test_RegoScanning_WithValidInputSchema(t *testing.T) {
-
 	srcFS := CreateFS(t, map[string]string{
 		"policies/test.rego": `# METADATA
 # schemas:
@@ -766,7 +752,6 @@ deny {
 }
 
 func Test_NoErrorsWhenUsingBadRegoCheck(t *testing.T) {
-
 	// this check cause eval_conflict_error
 	// https://www.openpolicyagent.org/docs/latest/policy-language/#functions
 	fsys := fstest.MapFS{
@@ -793,7 +778,7 @@ deny {
 }
 
 func Test_RegoScanning_WithDeprecatedCheck(t *testing.T) {
-	var testCases = []struct {
+	testCases := []struct {
 		name            string
 		policy          string
 		expectedResults int
@@ -865,7 +850,6 @@ deny {
 }
 
 func Test_RegoScanner_WithCustomSchemas(t *testing.T) {
-
 	schema := `{
   "$id": "https://example.com/test.schema.json",
   "$schema": "https://json-schema.org/draft/2020-12/schema",
@@ -934,7 +918,6 @@ deny {
 }
 
 func Test_RegoScanner_WithDisabledCheckIDs(t *testing.T) {
-
 	check := `# METADATA
 # custom:
 #   id: TEST-001
@@ -1000,7 +983,6 @@ deny {
 
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-
 			scanner := rego.NewScanner(
 				rego.WithPolicyReader(strings.NewReader(tt.inputCheck)),
 				rego.WithDisabledCheckIDs(tt.disabledChecks...),