Add support for Promise.value and Promise::flatMap

2026-05-04 13:15:21 +02:00 · 2021-04-30 17:48:41 -04:00
parent b2ad128beb
commit b2e3df29b3
3 changed files with 41 additions and 8 deletions
--- a/java/ql/test/library-tests/frameworks/ratpack/resources/Resource.java
+++ b/java/ql/test/library-tests/frameworks/ratpack/resources/Resource.java
@@ -1,12 +1,17 @@
 import ratpack.core.handling.Context;
 import ratpack.core.http.TypedData;
 import ratpack.core.form.UploadedFile;
+import ratpack.exec.Promise;
 import java.io.OutputStream;

 class Resource {

    void sink(Object o) {}

+    String taint() {
+        return null;
+    }
+
    void test1(Context ctx) {
        sink(ctx.getRequest().getContentLength()); //$hasTaintFlow
        sink(ctx.getRequest().getCookies()); //$hasTaintFlow
@@ -53,4 +58,14 @@ class Resource {
            .next(this::sink) //$hasTaintFlow
            .then(this::sink); //$hasTaintFlow
    }
+
+    void test6() {
+        String tainted = taint();
+        Promise.value(tainted);
+        sink(Promise.value(tainted)); //$hasTaintFlow
+        Promise
+            .value(tainted)
+            .flatMap(a -> Promise.value(a))
+            .then(this::sink); //$hasTaintFlow
+    }
 }