akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity
Files
4e9d6825a6c81ee4cccdd6b1dca53aeeba1ea26f
Charon/docs/reports/qa_report.md
GitHub Actions effed44ce8 feat: Rename WAF to Coraza in UI and update related tests 
- Updated UI components to reflect the renaming of "WAF (Coraza)" to "Coraza".
- Removed WAF controls from the Security page and adjusted related tests.
- Verified that all frontend tests pass after updating assertions to match the new UI.
- Added a test script to package.json for running tests with Vitest.
- Adjusted imports for jest-dom to be compatible with Vitest.
- Updated TypeScript configuration to include Vitest types for testing.
2025-12-12 03:19:27 +00:00

4.1 KiB
Raw Blame History

QA Security Report: WAF to Coraza Rename

Date: December 12, 2025 Agent: QA_Security Scope: Frontend UI changes renaming "WAF (Coraza)" to "Coraza"

Executive Summary

Overall Status: PASS

All tests pass after fixing test assertions to match the new UI. The rename from "WAF (Coraza)" to "Coraza" has been successfully implemented and verified.

Test Results

TypeScript Compilation

Check Status
npm run type-check PASS

Output: Clean compilation with no errors.

Frontend Unit Tests

Metric Count
Test Files 84
Tests Passed 728
Tests Skipped 2
Tests Failed 0
Duration ~61s

Initial Run: 4 failures related to outdated test assertions After Fix: All 728 tests passing

Issues Found and Fixed

  1. Security.test.tsx - Line 281

    • Issue: Test expected card title 'WAF (Coraza)' but UI shows 'Coraza'
    • Severity: Low (test sync issue)
    • Fix: Updated assertion to expect 'Coraza'

  2. Security.test.tsx - Lines 252-267 (WAF Controls describe block)

    • Issue: Tests for waf-mode-select and waf-ruleset-select dropdowns that were removed from the Security page
    • Severity: Low (removed UI elements)
    • Fix: Removed the WAF Controls test suite as dropdowns are now on dedicated /security/waf page

Lint Results

Tool Errors Warnings
ESLint 0 5

Warnings (pre-existing, not related to this change):

  • CrowdSecConfig.tsx:212 - React Hook useEffect missing dependencies
  • CrowdSecConfig.tsx:715 - Unexpected any type
  • CrowdSecConfig.spec.tsx:258,284,317 - Unexpected any types in tests

Pre-commit Hooks

Hook Status
Go Test Coverage (85.1%) PASS
Go Vet PASS
Check .version matches Git tag PASS
Prevent large files not tracked by LFS PASS
Prevent committing CodeQL DB artifacts PASS
Prevent committing data/backups files PASS
Frontend TypeScript Check PASS
Frontend Lint (Fix) PASS

File Verification

Security.tsx (frontend/src/pages/Security.tsx)

Check Status Details
Card title shows "Coraza" Verified Line 320: <h3>Coraza</h3>
No "WAF (Coraza)" text in card title Verified Confirmed via grep search
Dropdowns removed from Security page Verified Controls moved to /security/waf config page
Internal API field names unchanged Verified status.waf.enabled, toggle-waf testid preserved for API compatibility

Layout.tsx (frontend/src/components/Layout.tsx)

Check Status Details
Navigation shows "Coraza" Verified Line 70: { name: 'Coraza', path: '/security/waf', icon: '🛡️' }

Changes Made During QA

Test File Update: Security.test.tsx

- describe('WAF Controls', () => {
-   it('should change WAF mode', async () => { ... })
-   it('should change WAF ruleset', async () => { ... })
- })
+ // Note: WAF Controls tests removed - dropdowns moved to dedicated WAF config page (/security/waf)

- expect(cardNames).toEqual(['CrowdSec', 'Access Control', 'WAF (Coraza)', 'Rate Limiting', 'Live Security Logs'])
+ expect(cardNames).toEqual(['CrowdSec', 'Access Control', 'Coraza', 'Rate Limiting', 'Live Security Logs'])

Recommendations

  1. No blocking issues - All changes are complete and verified.

  2. Pre-existing warnings - Consider addressing the @typescript-eslint/no-explicit-any warnings in CrowdSecConfig.tsx and its test file in a future cleanup pass.

Conclusion

The WAF to Coraza rename has been successfully implemented:

  • UI displays "Coraza" in the Security dashboard card
  • Navigation shows "Coraza" instead of "WAF"
  • Dropdowns removed from main Security page (moved to dedicated config page)
  • All 728 frontend tests pass
  • TypeScript compiles without errors
  • No new lint errors introduced
  • All pre-commit hooks pass

QA Approval: Approved for merge

Reference in New Issue View Git Blame Copy Permalink