From ef5678708c09aa6c6f6c557b45c9beb0e5e9dbca Mon Sep 17 00:00:00 2001 From: BazookaMusic Date: Thu, 11 Jun 2026 12:01:56 +0200 Subject: [PATCH] Update not_included_in_qls.expected for promoted prompt injection queries UserPromptInjection moved from experimental to stable (precision low, so not in any well-known suite); the old experimental path no longer exists. --- .../integration-tests/query-suite/not_included_in_qls.expected | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/javascript/ql/integration-tests/query-suite/not_included_in_qls.expected b/javascript/ql/integration-tests/query-suite/not_included_in_qls.expected index 14200e6c63d..9f1b358a4ab 100644 --- a/javascript/ql/integration-tests/query-suite/not_included_in_qls.expected +++ b/javascript/ql/integration-tests/query-suite/not_included_in_qls.expected @@ -43,6 +43,7 @@ ql/javascript/ql/src/Performance/NonLocalForIn.ql ql/javascript/ql/src/RegExp/MalformedRegExp.ql ql/javascript/ql/src/Security/CWE-020/ExternalAPIsUsedWithUntrustedData.ql ql/javascript/ql/src/Security/CWE-020/UntrustedDataToExternalAPI.ql +ql/javascript/ql/src/Security/CWE-1427/UserPromptInjection.ql ql/javascript/ql/src/Security/CWE-313/PasswordInConfigurationFile.ql ql/javascript/ql/src/Security/CWE-451/MissingXFrameOptions.ql ql/javascript/ql/src/Security/CWE-798/HardcodedCredentials.ql @@ -57,7 +58,6 @@ ql/javascript/ql/src/definitions.ql ql/javascript/ql/src/experimental/Security/CWE-094-dataURL/CodeInjection.ql ql/javascript/ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql ql/javascript/ql/src/experimental/Security/CWE-099/EnvValueInjection.ql -ql/javascript/ql/src/experimental/Security/CWE-1427/UserPromptInjection.ql ql/javascript/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql ql/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql ql/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerificationLocalSource.ql