working GL release notes integration test

vivus-ignis · vivus-ignis · commit b22f3491adc9 · 2025-09-16T17:29:03.000+02:00
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -29,6 +29,7 @@ pytest = "^8.4.1"
 pytest-cov = "^6.3.0"
 isort = "^6.0.1"
 ptpython = "^3.0.31"
+requests-mock = "^1.12.1"
 
 [tool.poetry.group.docs.dependencies]
 sphinx-rtd-theme = "^3.0.2"
diff --git a/src/gardenlinux/github/__main__.py b/src/gardenlinux/github/__main__.py
@@ -582,9 +582,10 @@ def release_notes_changes_section(gardenlinux_version):
                     output.append(f"  - {fixedCve}")
 
         return "\n".join(output) + "\n\n"
-    except:
+    except Exception as exn:
         # There are expected error cases, for example with versions not supported by glvd (1443.x) or when the api is not available
         # Fail gracefully by adding the placeholder we previously used, so that the release note generation does not fail.
+        LOGGER.error(f"Failed to process GLVD API output: {exn}")
         return textwrap.dedent(
             """
         ## Changes
@@ -693,7 +694,7 @@ def create_github_release_notes(gardenlinux_version, commitish):
     output += generate_release_note_image_ids(metadata_files)
 
     output += "\n"
-    output += "## Kernel Module Build Container (kmodbuild) "
+    output += "## Kernel Module Build Container (kmodbuild)"
     output += "\n"
     output += "```"
     output += "\n"
diff --git a/test-data/release_notes/github_release_notes_1877.3.md b/test-data/release_notes/github_release_notes_1877.3.md
diff --git a/test-data/release_notes/glvd_1877.3.json b/test-data/release_notes/glvd_1877.3.json
@@ -0,0 +1,193 @@
+{
+  "version": "1877.3",
+  "packageList": [
+    {
+      "sourcePackageName": "gnutls28",
+      "oldVersion": "3.8.9-2",
+      "newVersion": "3.8.9-3gl0+bp1877",
+      "fixedCves": [
+        "CVE-2025-32988",
+        "CVE-2025-32989",
+        "CVE-2025-32990",
+        "CVE-2025-6395"
+      ]
+    },
+    {
+      "sourcePackageName": "sqlite3",
+      "oldVersion": "3.46.1-4",
+      "newVersion": "3.46.1-7gl0+bp1877",
+      "fixedCves": [
+        "CVE-2025-6965"
+      ]
+    },
+    {
+      "sourcePackageName": "dpkg",
+      "oldVersion": "1.22.18",
+      "newVersion": "1.22.21gl0+bp1877",
+      "fixedCves": [
+        "CVE-2025-6297"
+      ]
+    },
+    {
+      "sourcePackageName": "linux",
+      "oldVersion": "6.12.40-2gl0",
+      "newVersion": "6.12.44-3gl0",
+      "fixedCves": [
+        "CVE-2025-38676",
+        "CVE-2025-38683",
+        "CVE-2025-38684",
+        "CVE-2025-38686",
+        "CVE-2025-38687",
+        "CVE-2025-38688",
+        "CVE-2025-38691",
+        "CVE-2025-38692",
+        "CVE-2025-38695",
+        "CVE-2025-38696",
+        "CVE-2025-38699",
+        "CVE-2025-38700",
+        "CVE-2025-38701",
+        "CVE-2025-38704",
+        "CVE-2025-38708",
+        "CVE-2025-38709",
+        "CVE-2025-38710",
+        "CVE-2025-38711",
+        "CVE-2025-38717",
+        "CVE-2025-38718",
+        "CVE-2025-38721",
+        "CVE-2025-38722",
+        "CVE-2025-38724",
+        "CVE-2025-38726",
+        "CVE-2025-38727",
+        "CVE-2025-38728",
+        "CVE-2025-38730",
+        "CVE-2025-38601",
+        "CVE-2025-38604",
+        "CVE-2025-38608",
+        "CVE-2025-38609",
+        "CVE-2025-38610",
+        "CVE-2025-38614",
+        "CVE-2022-50031",
+        "CVE-2022-50083",
+        "CVE-2023-53137",
+        "CVE-2025-37744",
+        "CVE-2025-38500",
+        "CVE-2025-38501",
+        "CVE-2025-38732",
+        "CVE-2025-38734",
+        "CVE-2025-38735",
+        "CVE-2025-38737",
+        "CVE-2025-39673",
+        "CVE-2025-39676",
+        "CVE-2025-39681",
+        "CVE-2025-39682",
+        "CVE-2025-39683",
+        "CVE-2025-39684",
+        "CVE-2025-39685",
+        "CVE-2025-39686",
+        "CVE-2025-39689",
+        "CVE-2025-39691",
+        "CVE-2025-39692",
+        "CVE-2025-39695",
+        "CVE-2025-39697",
+        "CVE-2025-39698",
+        "CVE-2025-39700",
+        "CVE-2025-39701",
+        "CVE-2025-39702",
+        "CVE-2025-39703",
+        "CVE-2025-39718",
+        "CVE-2025-39720",
+        "CVE-2025-39721",
+        "CVE-2025-39722",
+        "CVE-2025-39724",
+        "CVE-2025-39727",
+        "CVE-2025-39730",
+        "CVE-2025-39732",
+        "CVE-2025-21884",
+        "CVE-2025-38335",
+        "CVE-2025-38351",
+        "CVE-2025-38553",
+        "CVE-2025-38559",
+        "CVE-2025-38560",
+        "CVE-2025-38561",
+        "CVE-2025-38562",
+        "CVE-2025-38563",
+        "CVE-2025-38565",
+        "CVE-2025-38566",
+        "CVE-2025-38568",
+        "CVE-2025-38569",
+        "CVE-2025-38571",
+        "CVE-2025-38572",
+        "CVE-2025-38574",
+        "CVE-2025-38581",
+        "CVE-2025-38582",
+        "CVE-2025-38583",
+        "CVE-2025-38586",
+        "CVE-2025-38587",
+        "CVE-2025-38588",
+        "CVE-2025-38590",
+        "CVE-2025-38593",
+        "CVE-2025-38616",
+        "CVE-2025-38617",
+        "CVE-2025-38618",
+        "CVE-2025-38622",
+        "CVE-2025-38624",
+        "CVE-2025-38625",
+        "CVE-2025-38628",
+        "CVE-2025-38631",
+        "CVE-2025-38632",
+        "CVE-2025-38634",
+        "CVE-2025-38635",
+        "CVE-2025-38639",
+        "CVE-2025-38640",
+        "CVE-2025-38644",
+        "CVE-2025-38645",
+        "CVE-2025-38646",
+        "CVE-2025-38653",
+        "CVE-2025-38659",
+        "CVE-2025-38660",
+        "CVE-2025-38666",
+        "CVE-2025-38668",
+        "CVE-2025-38670",
+        "CVE-2025-38675",
+        "CVE-2025-39736",
+        "CVE-2025-39737",
+        "CVE-2025-39738",
+        "CVE-2025-39739",
+        "CVE-2025-39742",
+        "CVE-2025-39744",
+        "CVE-2025-39746",
+        "CVE-2025-39748",
+        "CVE-2025-39749",
+        "CVE-2025-39750",
+        "CVE-2025-39752",
+        "CVE-2025-39753",
+        "CVE-2025-39754",
+        "CVE-2025-39756",
+        "CVE-2025-39758",
+        "CVE-2025-39759",
+        "CVE-2025-39761",
+        "CVE-2025-39763",
+        "CVE-2025-39766",
+        "CVE-2025-39770",
+        "CVE-2025-39773",
+        "CVE-2025-39776",
+        "CVE-2025-39779",
+        "CVE-2025-39780",
+        "CVE-2025-39782",
+        "CVE-2025-39783",
+        "CVE-2025-39787",
+        "CVE-2025-39788",
+        "CVE-2025-39790",
+        "CVE-2025-39791"
+      ]
+    },
+    {
+      "sourcePackageName": "iputils",
+      "oldVersion": "3:20240905-3",
+      "newVersion": "3:20250605-1gl0~bp1877",
+      "fixedCves": [
+        "CVE-2025-47268"
+      ]
+    }
+  ]
+}
diff --git a/tests/github/test_release_page.py b/tests/github/test_release_page.py
@@ -3,8 +3,15 @@
 from pathlib import Path
 
 import git
+import requests_mock
 from git import Repo
 
+GARDENLINUX_RELEASE = "1877.3"
+GARDENLINUX_COMMIT = "75df9f401a842914563f312899ec3ce34b24515c"
+GLVD_BASE_URL = "https://glvd.ingress.glvd.gardnlinux.shoot.canary.k8s-hana.ondemand.com/v1"
+
+TEST_DATA_DIR = Path(os.path.dirname(__file__)) / ".." / ".." / "test-data" / "release_notes"
+
 
 class SubmoduleAsRepo(Repo):
     """This will fake a git submodule as a git repository object."""
@@ -28,11 +35,21 @@ def test_github_release_page(monkeypatch):
     import gardenlinux.github
     importlib.reload(gardenlinux.github)
 
-    generated_release_notes = gardenlinux.github.create_github_release_notes(
-        "1877.3",
-        "75df9f401a842914563f312899ec3ce34b24515c"
-    )
-    fixture_path = Path(os.path.dirname(__file__)) / ".." / ".." / "test-data" / "github_release_notes_1877.3.md"
-    with open(fixture_path) as md:
-        release_notes_fixture = md.read()
-        assert generated_release_notes == release_notes_fixture
+    release_fixture_path = TEST_DATA_DIR / f"github_release_notes_{GARDENLINUX_RELEASE}.md"
+    glvd_response_fixture_path = TEST_DATA_DIR / f"glvd_{GARDENLINUX_RELEASE}.json"
+
+    with requests_mock.Mocker(real_http=True) as m:
+        with open(glvd_response_fixture_path) as resp_json:
+            m.get(
+                f"{GLVD_BASE_URL}/patchReleaseNotes/{GARDENLINUX_RELEASE}",
+                text=resp_json.read(),
+                status_code=200
+            )
+            generated_release_notes = gardenlinux.github.create_github_release_notes(
+                GARDENLINUX_RELEASE,
+                GARDENLINUX_COMMIT
+            )
+
+            with open(release_fixture_path) as md:
+                release_notes_fixture = md.read()
+                assert f"x{generated_release_notes}" == f"x{release_notes_fixture}"
