mirror of
https://github.com/mengxi-ream/read-frog.git
synced 2026-04-30 01:56:46 +00:00
22 lines
797 B
JavaScript
22 lines
797 B
JavaScript
import { describe, expect, it } from "vitest"
|
|
|
|
import { findManagedTrustComment, isManagedTrustComment } from "./managed-comment.js"
|
|
|
|
describe("managed trust comments", () => {
|
|
it("only matches marker comments authored by github-actions[bot]", () => {
|
|
const foreignComment = {
|
|
body: "<!-- contributor-trust-score:v1 -->\nspoofed marker",
|
|
id: 1,
|
|
user: { login: "malicious-user" },
|
|
}
|
|
const managedComment = {
|
|
body: "<!-- contributor-trust-score:v1 -->\nmanaged marker",
|
|
id: 2,
|
|
user: { login: "github-actions[bot]" },
|
|
}
|
|
|
|
expect(isManagedTrustComment(foreignComment)).toBe(false)
|
|
expect(isManagedTrustComment(managedComment)).toBe(true)
|
|
expect(findManagedTrustComment([foreignComment, managedComment])).toEqual(managedComment)
|
|
})
|
|
})
|