test: refactor fake email heuristic to be more optimistic and allow offline tests #1154
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
oracle-contributor-agreement
bot
added
the
OCA Verified
art1f1c3R
force-pushed
the
art1f1c3R/fake-email-heuristic-refactor
branch
from
a8aa63a to
57421da
Compare
|
|
art1f1c3R
changed the title
behnazh-w
reviewed
Aug 15, 2025
tests/integration/cases/email_checking_pypi_malware_analyzer/check_emails.sh
Outdated
Show resolved
Hide resolved
Thanks for that. But going forward, we don't need to run ShellCheck because it is added already as a pre-commit hook 🙂 |
behnazh-w
previously approved these changes
Aug 15, 2025
art1f1c3R
force-pushed
the
art1f1c3R/fake-email-heuristic-refactor
branch
from
b6d0a94 to
e38bc00
Compare
behnazh-w
previously approved these changes
Aug 15, 2025
art1f1c3R
force-pushed
the
art1f1c3R/fake-email-heuristic-refactor
branch
from
66a66fa to
4fff31a
Compare
behnazh-w
approved these changes
Aug 15, 2025
…ng emails Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
…d email check on smooth-operator Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
…iverability Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
Signed-off-by: Carl Flottmann <carl.flottmann@oracle.com>
art1f1c3R
force-pushed
the
art1f1c3R/fake-email-heuristic-refactor
branch
from
302c5b7 to
3768fea
Compare
behnazh-w
approved these changes
Aug 15, 2025
tromai
reviewed
Aug 15, 2025
| """Test the analyzer skips if no author_email or maintainer_email is present.""" | ||
| pypi_package_json_asset_mock.package_json = {"info": {"author_email": None, "maintainer_email": None}} | ||
| result, info = analyzer.analyze(pypi_package_json_asset_mock) | ||
| @pytest.fixture(name="fake_email_defaults_override") |
There was a problem hiding this comment.
I think this fixture is defined but it's not used within the tests. Therefore, the logic of overriding check_deliverability = False didn't run, meaning that all FakeEmailAnalyzer instances in this test module had check_deliverability set to True. I have verified this by adding a breakpoint
@pytest.fixture(name="fake_email_defaults_override")
def set_defaults_(tmp_path: Path) -> None:
"""Disable check_deliverability in defaults.ini so we do not make network connections.
Parameters
----------
tmp_path: Path
Pytest temporary path fixture.
"""
import pdb; pdb.set_trace()
defaults_file = Path(os.path.join(tmp_path, "config.ini"))
content = """
[heuristic.pypi]
check_deliverability = False
"""
defaults_file.write_text(content, encoding="utf-8")
assert load_defaults(str(defaults_file)) is True
And ran this test module with
pytest --no-cov /home/tromai/dev/oracle/github/oracle/macaron/tests/malware_analyzer/pypi/test_fake_email.py
where the breakpoint wasn't triggered.
One fix could be using this fixture in the analyzer_ fixture:
@pytest.fixture(name="analyzer")
def analyzer_(fake_email_defaults_override: None) -> FakeEmailAnalyzer:
"""Pytest fixture to create a FakeEmailAnalyzer instance."""
return FakeEmailAnalyzer()
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
This PR refactors the
FakeEmailAnalyzerfocusing on making it more optimistic in passing emails, providing more information, and allowing tests to be run offline.Description of changes
Previously, the
FakeEmailAnalyzer.analyzemethod would return aFAILresult on the first detected invalid, or non-email, field for both the author and maintainer emails. This PR refactors this with the goal of reducing false positives to instead only return aFAILif all emails are invalid, so if any of the emails are determined to be valid, then this heuristic passes. Previously, theFakeEmailAnalyzer.analyzemethod would also return immediately on aFAILcase and not analyze other emails if present. This PR refactors this to instead analyze all present emails regardless, to provide more information in its JSON return value.The tests are refactored to run offline. Unit tests only test for valid and non-emails, as to run offline checking deliverability is turned off. The integration test
email_checking_pypi_malware_analyzerhas been added to check the deliverability of emails so invalid emails can be tested. It runs against the packagesmooth-operator, which has a known invalid email address with domainexample.com, andemail-validator, which has a known valid and deliverable email address.Checklist
verifiedlabel should appear next to all of your commits on GitHub.