Add pyramid models

2026-04-28 02:05:14 +02:00 · 2024-04-22 13:27:18 +01:00
parent 75b1e14098
commit 88e3227ed0
5 changed files with 115 additions and 0 deletions
--- a/python/ql/test/library-tests/frameworks/pyramid/InlineTaintTest.expected
+++ b/python/ql/test/library-tests/frameworks/pyramid/InlineTaintTest.expected
@@ -0,0 +1,4 @@
+argumentToEnsureNotTaintedNotMarkedAsSpurious
+untaintedArgumentToEnsureTaintedNotMarkedAsMissing
+testFailures
+failures
--- a/python/ql/test/library-tests/frameworks/pyramid/InlineTaintTest.ql
+++ b/python/ql/test/library-tests/frameworks/pyramid/InlineTaintTest.ql
@@ -0,0 +1,2 @@
+import experimental.meta.InlineTaintTest
+import MakeInlineTaintTest<TestTaintTrackingConfig>
--- a/python/ql/test/library-tests/frameworks/pyramid/pyramid_test.py
+++ b/python/ql/test/library-tests/frameworks/pyramid/pyramid_test.py
@@ -0,0 +1,21 @@
+from pyramid.view import view_config
+from pyramid.config import Configurator
+
+@view_config(route_name="test1")
+def test1(request):
+    ensure_tainted(
+        request,              # $ tainted
+        request.body,         # $ MISSING:tainted
+        request.GET['a']      # $ MISSING:tainted
+        ) 
+
+def test2(request):
+    ensure_tainted(request) # $ tainted
+
+@view_config(route_name="test1")
+def test3(context, request):
+    ensure_tainted(request) # $ tainted
+
+if __name__ == "__main__":
+    with Configurator() as config:
+        config.add_view(test2, route_name="test2")