remove two more claseses of FPs in rb/non-constant-kernel-open

2026-05-02 20:25:13 +02:00 · 2022-11-29 12:49:23 +01:00
parent 6b1865d2ca
commit 7dcb813ff3
2 changed files with 20 additions and 6 deletions
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
@@ -25,5 +25,9 @@ class UsersController < ActionController::Base
    Kernel.open("#{this_is} bad") # BAD

    open("| #{this_is_an_explicit_command} foo bar") # GOOD
+
+    IO.foreach("|" + EnvUtil.rubybin + " -e 'puts :foo; puts :bar; puts :baz'") {|x| a << x } # GOOD
+
+    IO.write(File.join("foo", "bar.txt"), "bar") # GOOD
  end
 end