Updated vuln-scan command to return error when no path(s) are supplied.

wordfence · Oct 27, 2023 · 367e781 · 367e781
1 parent 5c54042
commit 367e781
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 0 deletions.
diff --git a/wordfence/cli/vulnscan/vulnscan.py b/wordfence/cli/vulnscan/vulnscan.py
@@ -11,6 +11,7 @@
 from ...logging import log
 from ..subcommands import Subcommand
 from .reporting import VulnScanReportManager
+from ...vulnscanning.exceptions import VulnScanningConfigurationException
 
 
 class VulnScanSubcommand(Subcommand):
@@ -157,6 +158,14 @@ def _scan_site(
             )
 
     def invoke(self) -> int:
+        if (len(self.config.trailing_arguments) + \
+            len(self.config.wordpress_path) + \
+            len(self.config.plugin_directory) + \
+            len(self.config.theme_directory)) \
+            < 1:
+            raise VulnScanningConfigurationException(
+                    'At least one WordPress path must be specified'
+                )
         if self.config.output_format == 'human' \
                 and not self.context.allows_color:
             log.warning(

diff --git a/wordfence/vulnscanning/exceptions.py b/wordfence/vulnscanning/exceptions.py
@@ -0,0 +1,6 @@
+class VulnScanningException(Exception):
+    pass
+
+class VulnScanningConfigurationException(VulnScanningException):
+    pass
+