Jump to content

PHPUnit

From Wikipedia, the free encyclopedia
Developer(s)Sebastian Bergmann
Initial release27 November 2001; 23 years ago (2001-11-27)[1]
Stable release
10 / 3 February 2023; 22 months ago (2023-02-03)[2]
Repository
Written inPHP
Operating systemCross-platform
TypeUnit testing framework
LicenseBSD 3 Clause
Websitephpunit.de

PHPUnit is a unit testing framework for the PHP programming language. It is an instance of the xUnit architecture for unit testing frameworks that originated with SUnit and became popular with JUnit. PHPUnit was created by Sebastian Bergmann and its development is hosted on GitHub.

Purpose

[edit]

PHPUnit is based on the idea that developers should be able to find mistakes in their newly committed code quickly and assert that no code regression has occurred in other parts of the code base. Much like other unit testing frameworks, PHPUnit uses assertions to verify that the behavior of the specific component - or "unit" - being tested behaves as expected.[3]

Benefits

[edit]

The goal of unit testing is to isolate each part of the program and show that the individual parts are correct. A unit test provides a strict, written contract that the piece of code must satisfy. As a result, unit tests find problems early in the development cycle.

PHPUnit can output test results in a number of different formats, including JUnit XML and TestDox.

Vulnerabilities

[edit]

A vulnerability that allowed attackers to execute remote code via PHPUnit was discovered in late 2017. By sending a payload of PHP code to a file that is part of PHPUnit, an attacker could execute PHP code on the webserver.[4]

References

[edit]
  1. ^ "PHP: Revision 63330". svn.php.net.
  2. ^ "Releases · sebastianbergmann/phpunit". GitHub.
  3. ^ Assertion (computing)
  4. ^ Bergmann, Sebastian. "PHPUnit: A Security Risk?". The PHP Consulting Company. Retrieved 20 October 2020.
[edit]