add a test for explicit shell invocations using Kernel.open

2026-04-29 10:45:15 +02:00 · 2022-10-07 14:06:30 +02:00
parent de3b15ebe9
commit 186205bd4b
1 changed files with 2 additions and 0 deletions
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
@@ -17,5 +17,7 @@ class UsersController < ActionController::Base
    Kernel.open("this is #{fine}") # GOOD

    Kernel.open("#{this_is} bad") # BAD
+
+    open("| #{this_is_an_explicit_command} foo bar") # GOOD
  end
 end