hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-24 04:36:35 +01:00
Code Issues Packages Projects Releases Wiki Activity

add tests

Browse Source
This commit is contained in:
liangjinhuang
2021-12-04 00:52:15 +08:00
parent d0ac11817e
commit 1102f60f3e
3 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
python/ql/test/experimental/query-tests/Security/CWE-338/InsecureRandomness.expected Normal file
View File

@@ -0,0 +1,6 @@
edges
nodes
| InsecureRandomness.py:5:12:5:26 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
subpaths
#select
| InsecureRandomness.py:5:12:5:26 | ControlFlowNode for Attribute() | InsecureRandomness.py:5:12:5:26 | ControlFlowNode for Attribute() | InsecureRandomness.py:5:12:5:26 | ControlFlowNode for Attribute() | Cryptographically insecure $@ in a security context. | InsecureRandomness.py:5:12:5:26 | ControlFlowNode for Attribute() | random value |

5
python/ql/test/experimental/query-tests/Security/CWE-338/InsecureRandomness.py Normal file
View File

@@ -0,0 +1,5 @@
import random
def generatePassword():
# BAD: the random is not cryptographically secure
return random.random()

1
python/ql/test/experimental/query-tests/Security/CWE-338/InsecureRandomness.qlref Normal file
View File

@@ -0,0 +1 @@
experimental/Security/CWE-338/InsecureRandomness.ql