fixed remaining assertions

Author: OsamaMahmood

unittests/tools/test_wizcli_iac_parser.py

@@ -77,22 +77,22 @@ def test_multiple_findings(self):
             # Test second finding
             finding = findings[1]
             self.assertEqual(
-                "Healthcheck Instruction Missing - FROM={{registry.gitlab.com/evilorg.com/infra/images/alpine-3.9:latest}}",
+                "Bucket usage logs should be enabled - google_storage_bucket[vault-store]",
                 finding.title,
             )
             self.assertEqual("Low", finding.severity)
-            self.assertEqual("Dockerfile", finding.file_path)
-            self.assertEqual(58, finding.line)
+            self.assertEqual("states/dev/storage.tf", finding.file_path)
+            self.assertEqual(17, finding.line)
             self.assertIn(
-                "**Rule**: Healthcheck Instruction Missing (ID: `ab1043e3-1eeb-4e38-9ca9-7ec0e99fe2ba`)\n"
+                "**Rule**: Bucket usage logs should be enabled (ID: `bd9e69dd-93a1-4122-900a-992135c62572`)\n"
                 "**Severity**: Low\n"
-                "**Resource**: `FROM={{registry.gitlab.com/evilorg.com/infra/images/alpine-3.9:latest}}`\n"
-                "**File**: `Dockerfile`\n"
-                "**Line**: 58\n"
-                "**Code Snippet**: ```\nFROM registry.gitlab.com/evilorg.com/infra/images/alpine-3.9:latest\n```\n"
+                "**Resource**: `google_storage_bucket[vault-store]`\n"
+                "**File**: `states/dev/storage.tf`\n"
+                "**Line**: 17\n"
+                '**Code Snippet**: ```\nresource "google_storage_bucket" "vault-store" {\n```\n'
                 "\n**Finding Details**:\n"
-                "- **Expected**: Dockerfile should contain instruction 'HEALTHCHECK'\n"
-                "- **Found**: Dockerfile doesn't contain instruction 'HEALTHCHECK'\n"
-                "- **File Type**: DOCKERFILE",
+                "- **Expected**: 'logging' should be set\n"
+                "- **Found**: 'logging' is undefined\n"
+                "- **File Type**: TERRAFORM",
                 finding.description,
             )

unittests/tools/test_wizcli_img_parser.py

@@ -68,19 +68,25 @@ def test_multiple_findings(self):
 
             # Test second finding
             finding = findings[1]
-            self.assertEqual("OS Pkg: libssl3 3.3.1-r0 - CVE-2024-5535", finding.title)
-            self.assertEqual("Low", finding.severity)
+            self.assertEqual("OS Pkg: curl 7.64.0-r5 - CVE-2023-38039", finding.title)
+            self.assertEqual("Medium", finding.severity)
             self.assertIsNone(finding.file_path)
             self.assertIn(
-                "**Vulnerability**: `CVE-2024-5535`\n"
-                "**Severity**: Low\n"
-                "**OS Package**: `libssl3`\n"
-                "**Version**: `3.3.1-r0`\n"
-                "**Fixed Version**: 3.3.1-r1\n"
-                "**Source**: https://security.alpinelinux.org/vuln/CVE-2024-5535",
+                "**Vulnerability**: `CVE-2023-38039`\n"
+                "**Severity**: Medium\n"
+                "**OS Package**: `curl`\n"
+                "**Version**: `7.64.0-r5`\n"
+                "**Fixed Version**: N/A\n"
+                "**Source**: https://security.alpinelinux.org/vuln/CVE-2023-38039\n"
+                "**CVSS Score (from Wiz)**: 7.5\n"
+                "**Has Exploit (Known)**: True\n"
+                "**In CISA KEV**: False\n\n"
+                "**Ignored Policies**:\n"
+                "- test Default vulnerabilities policy (ID: 9c6726d0-1ada-4541-b6d6-3da5ca1124f9)\n"
+                "- test Default vulnerabilities policy ( Updated ) (ID: 9bf73b16-99e7-4a54-af1e-dcfa1436a8f2)",
                 finding.description,
             )
-            self.assertEqual("CVE-2024-5535", finding.cve)
+            self.assertEqual("CVE-2023-38039", finding.cve)
             self.assertTrue(finding.static_finding)
             self.assertFalse(finding.dynamic_finding)
             self.assertTrue(finding.active)