From fa703e3e6040b276b96cb708683dd26985dc0bf8 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 14 Nov 2025 16:53:46 +0000
Subject: [PATCH] Test cases for sensitive logging sanitizer

---
 java/ql/test/query-tests/security/CWE-532/Test.java | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/java/ql/test/query-tests/security/CWE-532/Test.java b/java/ql/test/query-tests/security/CWE-532/Test.java
index cf983afc287..77086bf31d5 100644
--- a/java/ql/test/query-tests/security/CWE-532/Test.java
+++ b/java/ql/test/query-tests/security/CWE-532/Test.java
@@ -9,5 +9,7 @@ class Test {
         logger.error("Auth failed for: " + username); // Safe
         logger.error("Auth failed for: " + nullToken); // Safe
         logger.error("Auth failed for: " + stringTokenizer); // Safe
+        logger.error("Auth failed for: " + authToken.substring(4) + "..."); // Safe
+        logger.error("Auth failed for: " + authToken.substring(0,4) + "..."); // Safe
     }
 }