JS: Add test case for GraphQLObjectType

2025-12-16 16:53:25 +01:00 · 2025-09-19 14:23:40 +02:00
parent 2cd1d2fd2f
commit d88bc8e408
1 changed files with 27 additions and 1 deletions
--- a/javascript/ql/test/query-tests/Security/CWE-094/CodeInjection/graph-ql.js
+++ b/javascript/ql/test/query-tests/Security/CWE-094/CodeInjection/graph-ql.js
@@ -1,5 +1,5 @@
 const express = require('express');
-const { graphql, buildSchema } = require('graphql');
+const { graphql, buildSchema, GraphQLObjectType, GraphQLString } = require('graphql');

 const app = express();
 app.use(express.json());
@@ -53,4 +53,30 @@ app.post('/graphql', async (req, res) => {
    rootValue: root1,
    variableValues: variables
  });
+
+  const MutationType = new GraphQLObjectType({
+    name: 'Mutation',
+    fields: {
+      runEval: {
+        type: GraphQLString,
+        args: {
+          value: { type: GraphQLString }
+        },
+        resolve: (_, { value }, context) => { // $ MISSING: Source[js/code-injection]
+          return eval(value); // $ MISSING: Alert[js/code-injection]
+        }
+      }
+    }
+  });
+  
+  const schema = new GraphQLSchema({
+    query: QueryType,
+    mutation: MutationType
+  });
+
+  await graphql({
+    schema,
+    source: query,
+    variableValues: variables
+  });
 });