Skip to content

Commit 52dc905

Browse files
tausbntausbn
committed
Python: Fixup CWE-502 tests.
1 parent f903e4f commit 52dc905

File tree

6 files changed

+14
-50
lines changed

6 files changed

+14
-50
lines changed

python/ql/test/experimental/query-tests/Security-new-dataflow/CWE-502/UnsafeDeserialization.expected

Lines changed: 0 additions & 16 deletions
This file was deleted.

python/ql/test/experimental/query-tests/Security-new-dataflow/CWE-502/UnsafeDeserialization.qlref

Lines changed: 0 additions & 1 deletion
This file was deleted.

python/ql/test/query-tests/Security/CWE-502/UnsafeDeserialization.expected

Lines changed: 14 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -1,16 +1,16 @@
11
edges
2-
| test.py:11:15:11:26 | dict of externally controlled string | test.py:11:15:11:41 | externally controlled string |
3-
| test.py:11:15:11:26 | dict of externally controlled string | test.py:11:15:11:41 | externally controlled string |
4-
| test.py:11:15:11:41 | externally controlled string | test.py:12:18:12:24 | externally controlled string |
5-
| test.py:11:15:11:41 | externally controlled string | test.py:12:18:12:24 | externally controlled string |
6-
| test.py:11:15:11:41 | externally controlled string | test.py:13:15:13:21 | externally controlled string |
7-
| test.py:11:15:11:41 | externally controlled string | test.py:13:15:13:21 | externally controlled string |
8-
| test.py:11:15:11:41 | externally controlled string | test.py:14:19:14:25 | externally controlled string |
9-
| test.py:11:15:11:41 | externally controlled string | test.py:14:19:14:25 | externally controlled string |
10-
| test.py:11:15:11:41 | externally controlled string | test.py:16:16:16:22 | externally controlled string |
11-
| test.py:11:15:11:41 | externally controlled string | test.py:16:16:16:22 | externally controlled string |
2+
| unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:15:18:15:24 | ControlFlowNode for payload |
3+
| unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:16:15:16:21 | ControlFlowNode for payload |
4+
| unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:18:19:18:25 | ControlFlowNode for payload |
5+
| unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:21:16:21:22 | ControlFlowNode for payload |
6+
nodes
7+
| unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
8+
| unsafe_deserialization.py:15:18:15:24 | ControlFlowNode for payload | semmle.label | ControlFlowNode for payload |
9+
| unsafe_deserialization.py:16:15:16:21 | ControlFlowNode for payload | semmle.label | ControlFlowNode for payload |
10+
| unsafe_deserialization.py:18:19:18:25 | ControlFlowNode for payload | semmle.label | ControlFlowNode for payload |
11+
| unsafe_deserialization.py:21:16:21:22 | ControlFlowNode for payload | semmle.label | ControlFlowNode for payload |
1212
#select
13-
| test.py:12:18:12:24 | payload | test.py:11:15:11:26 | dict of externally controlled string | test.py:12:18:12:24 | externally controlled string | Deserializing of $@. | test.py:11:15:11:26 | Attribute | untrusted input |
14-
| test.py:13:15:13:21 | payload | test.py:11:15:11:26 | dict of externally controlled string | test.py:13:15:13:21 | externally controlled string | Deserializing of $@. | test.py:11:15:11:26 | Attribute | untrusted input |
15-
| test.py:14:19:14:25 | payload | test.py:11:15:11:26 | dict of externally controlled string | test.py:14:19:14:25 | externally controlled string | Deserializing of $@. | test.py:11:15:11:26 | Attribute | untrusted input |
16-
| test.py:16:16:16:22 | payload | test.py:11:15:11:26 | dict of externally controlled string | test.py:16:16:16:22 | externally controlled string | Deserializing of $@. | test.py:11:15:11:26 | Attribute | untrusted input |
13+
| unsafe_deserialization.py:15:18:15:24 | ControlFlowNode for payload | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:15:18:15:24 | ControlFlowNode for payload | Deserializing of $@. | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | untrusted input |
14+
| unsafe_deserialization.py:16:15:16:21 | ControlFlowNode for payload | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:16:15:16:21 | ControlFlowNode for payload | Deserializing of $@. | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | untrusted input |
15+
| unsafe_deserialization.py:18:19:18:25 | ControlFlowNode for payload | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:18:19:18:25 | ControlFlowNode for payload | Deserializing of $@. | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | untrusted input |
16+
| unsafe_deserialization.py:21:16:21:22 | ControlFlowNode for payload | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | unsafe_deserialization.py:21:16:21:22 | ControlFlowNode for payload | Deserializing of $@. | unsafe_deserialization.py:14:15:14:26 | ControlFlowNode for Attribute | untrusted input |

python/ql/test/query-tests/Security/CWE-502/options

Lines changed: 0 additions & 1 deletion
This file was deleted.

python/ql/test/query-tests/Security/CWE-502/test.py

Lines changed: 0 additions & 18 deletions
This file was deleted.

python/ql/test/experimental/query-tests/Security-new-dataflow/CWE-502/unsafe_deserialization.py renamed to python/ql/test/query-tests/Security/CWE-502/unsafe_deserialization.py

File renamed without changes.

0 commit comments

Comments
 (0)