hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 02:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

C#: Fix test for InsecureSQLConnection.ql

Browse Source
This commit is contained in:
Tom Hvitved
2021-08-26 13:46:47 +02:00
parent 7b204cebbe
commit 592a42231f
3 changed files with 17 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
csharp/ql/test/query-tests/Security Features/CWE-327/InsecureSQLConnection/InsecureSQLConnection.cs
View File

@@ -34,7 +34,7 @@ namespace InsecureSQLConnection
public void TriggerThis()
{
// BAD, Encrypt not specified [NOT DETECTED]
// BAD, Encrypt not specified
SqlConnection conn = new SqlConnection("Server=myServerName\\myInstanceName;Database=myDataBase;User Id=myUsername;");
}
@@ -42,7 +42,7 @@ namespace InsecureSQLConnection
{
string connectString =
"Server=1.2.3.4;Database=Anything;UID=ab;Pwd=cd";
// BAD, Encrypt not specified [NOT DETECTED]
// BAD, Encrypt not specified
SqlConnectionStringBuilder builder = new SqlConnectionStringBuilder(connectString);
var conn = new SqlConnection(builder.ConnectionString);
}
@@ -51,7 +51,7 @@ namespace InsecureSQLConnection
{
string connectString =
"Server=1.2.3.4;Database=Anything;UID=ab;Pwd=cd;Encrypt=false";
// BAD, Encrypt set to false [NOT DETECTED]
// BAD, Encrypt set to false
SqlConnectionStringBuilder builder = new SqlConnectionStringBuilder(connectString);
var conn = new SqlConnection(builder.ConnectionString);
}