CMS Framework - v2.2.2

This document tracks the skipped tests in the CMS Framework test suite and the reasons they are skipped.

Overview

Total Skipped Tests: 4 Test Status: 404 tests passing, 4 skipped

Skipped Tests by Module

1. Plugin Security Tests (2 tests)

File: tests/Feature/Plugins/PluginSecurityTest.php

Tests:

1. it rejects files exceeding size limit (line 215)
2. it validates ZIP file integrity (line 222)

Reason: ZIP MIME type detection varies by system

These tests are in the Upload Security describe block. The tests are skipped because dynamically created ZIP files in PHP don't always get the correct MIME type from finfo_file(). The actual security checks work correctly in production - MIME type and integrity are validated.

Status: The security functionality is working correctly. Only the automated tests are system-dependent.

Note: The PluginSecurityTest file contains 15+ working security tests covering:

• Path traversal prevention
• XSS prevention
• SQL injection prevention
• Manifest injection prevention
• Permission checks
• File system security

2. Plugin Update Tests (2 tests)

File: tests/Feature/Plugins/PluginUpdateTest.php

Tests:

1. Plugin update test - "Requires mock ZIP creation"
2. Complete update flow test - "Requires complete update flow mock"

Reason: These tests require mocking ZIP file creation and the complete update flow, which requires additional test infrastructure.

Note: The Core Updates module has comprehensive update tests that verify the update functionality works correctly.

Summary

All skipped tests are in the Plugin system (experimental features). The skipped tests do not affect the reliability of the package:

• Plugin Security: 15+ security tests pass; only 2 system-dependent tests are skipped
• Plugin Updates: Core Updates module provides comprehensive update testing
• Core functionality: Has complete test coverage with all tests passing