add mocha tests

Author: spencer

.gitignore

@@ -1 +1,2 @@
+/.idea
 /node_modules

README.md

@@ -17,7 +17,7 @@ and then run the following command in another terminal
 ```
 curl --path-as-is 'http://127.0.0.1:8001/api/'
 ```
-You can see the the code execution vulnerability are executed mutliple times.
+You can see the code execution vulnerability are executed mutliple times.
 
 
 ## Vulnerability 2 Exploit

index.js

@@ -1,37 +1,6 @@
 'use strict';
 
-const	http     = require('http'),
-        algoserv = require('algo-httpserv'),
-	fs	 = require('fs'),
-        yaml     = require('js-yaml'),
-	yamlTo   = require('to'),
-        yamlConf = require('node-yaml-config');// the vunlerable library is include to check whether we have false postives
-
-
-///----------The following are the driver---------------------///
-
-// call vulnerable method js-yaml.load directly
-// js-yaml.load is vulnerable to code execution in yaml file 
-const data = yaml.load(fs.readFileSync('./data/yaml-exploit.yml', 'utf-8'));
-console.log(data);
-
-// transitive vulnerable method, 
-// the to lib uses js-yaml.load which is vulnerable
-const data2 = yamlTo.load('./data/yaml-exploit.yml');
-console.log(data2);
-
-// pass the vulnerable method as a callback
-const server = http.createServer(algoserv.serve);
-
-// pass an callback which calls vulnerable method 
-algoserv.on('/api/', (request, response, url) => {
-    response.writeHead(200, {'Content-Type': 'application/json'});
-    const data3 = yaml.load(fs.readFileSync('./data/yaml-exploit.yml', 'utf-8'));
-    console.log(data3);
-    response.write(JSON.stringify(data3));
-    response.end();
-});
-
+const server = require('./server');
 server.listen(8001);