Add tests.

taus-semmle · taus-semmle · commit ad429f5ae15f · 2019-01-17T14:45:25.000+01:00
diff --git a/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.expected b/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.expected
@@ -0,0 +1 @@
+| InsecureTemporaryFile.py:4:16:4:23 | ControlFlowNode for mktemp() | Call to deprecated function mktemp may be insecure. |
diff --git a/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.py b/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.py
@@ -0,0 +1,7 @@
+from tempfile import mktemp
+
+def write_results(results):
+    filename = mktemp()
+    with open(filename, "w+") as f:
+        f.write(results)
+    print("Results written to", filename)
diff --git a/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.qlref b/python/ql/test/query-tests/Security/CWE-377/InsecureTemporaryFile.qlref
@@ -0,0 +1 @@
+Security/CWE-377/InsecureTemporaryFile.ql
diff --git a/python/ql/test/query-tests/Security/CWE-377/SecureTemporaryFile.py b/python/ql/test/query-tests/Security/CWE-377/SecureTemporaryFile.py
@@ -0,0 +1,6 @@
+from tempfile import NamedTemporaryFile
+
+def write_results(results):
+    with NamedTemporaryFile(mode="w+", delete=False) as f:
+        f.write(results)
+    print("Results written to", f.name)

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+\| InsecureTemporaryFile.py:4:16:4:23 \| ControlFlowNode for mktemp() \| Call to deprecated function mktemp may be insecure. \|`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+Security/CWE-377/InsecureTemporaryFile.ql`