Add tests.

2026-05-05 13:45:19 +02:00 · 2019-01-17 14:44:23 +01:00
parent 7c3dc929ac
commit ad429f5ae1
4 changed files with 15 additions and 0 deletions
--- a/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.expected
+++ b/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.expected
@@ -0,0 +1 @@
+| InsecureTemporaryFile.py:4:16:4:23 | ControlFlowNode for mktemp() | Call to deprecated function mktemp may be insecure. |
--- a/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.py
+++ b/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.py
@@ -0,0 +1,7 @@
+from tempfile import mktemp
+
+def write_results(results):
+    filename = mktemp()
+    with open(filename, "w+") as f:
+        f.write(results)
+    print("Results written to", filename)
--- a/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.qlref
+++ b/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.qlref
@@ -0,0 +1 @@
+Security/CWE-377/InsecureTemporaryFile.ql
--- a/python/ql/test/query-tests/Security/CWE-377/SecureTemporaryFile.py
+++ b/python/ql/test/query-tests/Security/CWE-377/SecureTemporaryFile.py
@@ -0,0 +1,6 @@
+from tempfile import NamedTemporaryFile
+
+def write_results(results):
+    with NamedTemporaryFile(mode="w+", delete=False) as f:
+        f.write(results)
+    print("Results written to", f.name)
				`@@ -0,0 +1 @@`
				`\| InsecureTemporaryFile.py:4:16:4:23 \| ControlFlowNode for mktemp() \| Call to deprecated function mktemp may be insecure. \|`