hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.22.1
codeql/csharp/ql/test/query-tests/API Abuse/FormatInvalid/FormatUnusedArgument.cs
Michael Nebel 65ac951964 C#: Remove all Sink tags after rebase.
2025-04-24 08:54:53 +02:00

88 lines
2.5 KiB
C#
Raw Permalink Blame History

using System;
using System.Text;
class C
{
void FormatTests()
{
// GOOD: Uses all args
String.Format("{0} {1} {2}", 0, 1, 2);
// BAD: Missing arg {0}
String.Format("X", 1); // $ Alert
// BAD: Missing {1}
String.Format("{0}", 1, 2); // $ Alert
// BAD: Missing {1}
String.Format("{0} {0}", 1, 2); // $ Alert
// BAD: Missing {0}
String.Format("{1} {1}", 1, 2); // $ Alert
// BAD: Missing {0}, {1} and {2}
String.Format("abcdefg", 0, 1, 2); // $ Alert
// BAD: {0} is unused
String.Format("{{sdc}}", 0); // $ Alert
// GOOD: {0} is used
String.Format("{{{0:D}}}", 0);
// GOOD: Uses all args in params
String.Format("{0} {1} {2} {3}", 0, 1, 2, 3);
// GOOD: Params supplied
String.Format("{0} {1} {2}", ps);
// BAD: Would display "{0}"
String.Format("{{0}}", 1); // $ Alert
// GOOD: Ignore the empty string as it's often used as the default value
// of GetResource().
String.Format("", 1);
}
void CompositeFormatTests()
{
var format = CompositeFormat.Parse("X"); // $ Source=source4
var format00 = CompositeFormat.Parse("{0}{0}"); // $ Source=source5
var format11 = CompositeFormat.Parse("{1}{1}"); // $ Source=source6
// BAD: Unused arg {0}
String.Format<string>(null, format, ""); // $ Alert=source4
// BAD: Unused arg {1}
String.Format<string, string>(null, format00, "", ""); // $ Alert=source5
// BAD: Unused arg {0}
String.Format<string, string>(null, format11, "", ""); // $ Alert=source6
// BAD: Unused arg {0}
sb.AppendFormat(null, format, ""); // $ Alert=source4
sb.AppendFormat<string>(null, format, ""); // $ Alert=source4
// BAD: Unused arg {1}
sb.AppendFormat<string, string>(null, format00, "", ""); // $ Alert=source5
// BAD: Unused arg {0}
sb.AppendFormat<string, string>(null, format11, "", ""); // $ Alert=source6
var span = new Span<char>();
// BAD: Unused arg {0}
span.TryWrite(null, format, out _, ""); // $ Alert=source4
span.TryWrite<string>(null, format, out _, ""); // $ Alert=source4
// BAD: Unused arg {1}
span.TryWrite<string, string>(null, format00, out _, "", ""); // $ Alert=source5
// BAD: Unused arg {0}
span.TryWrite<string, string>(null, format11, out _, "", ""); // $ Alert=source6
}
object[] ps;
StringBuilder sb;
}
Reference in New Issue View Git Blame Copy Permalink