Skip to content

Commit e02a63a

Browse files
jorgectfjorgectf
committed
Delete trivial *_good.py tests
1 parent 621a810 commit e02a63a

File tree

2 files changed

+2
-52
lines changed

2 files changed

+2
-52
lines changed

python/ql/test/experimental/query-tests/Security/CWE-943/flask_mongoengine_good.py

Lines changed: 0 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -23,14 +23,5 @@ def subclass_objects():
2323

2424
return Movie.objects(__raw__=safe_search)
2525

26-
@app.route("/get_db_find")
27-
def get_db_find():
28-
unsafe_search = request.args['search']
29-
json_search = json.loads(unsafe_search)
30-
safe_search = sanitize(json_search)
31-
32-
retrieved_db = db.get_db()
33-
return retrieved_db["Movie"].find({'name': safe_search})
34-
3526
# if __name__ == "__main__":
3627
# app.run(debug=True)

python/ql/test/experimental/query-tests/Security/CWE-943/mongoengine_good.py

Lines changed: 2 additions & 43 deletions
Original file line numberDiff line numberDiff line change
@@ -23,46 +23,5 @@ def connect_find():
2323
db = me.connect('mydb')
2424
return db.movie.find({'name': json_search})
2525

26-
@app.route("/connection_connect_find")
27-
def connection_connect_find():
28-
unsafe_search = request.args['search']
29-
json_search = json.loads(unsafe_search)
30-
safe_search = sanitize(json_search)
31-
32-
db = connect('mydb')
33-
return db.movie.find({'name': json_search})
34-
35-
@app.route("/subclass_objects")
36-
def subclass_objects():
37-
unsafe_search = request.args['search']
38-
json_search = json.loads(unsafe_search)
39-
safe_search = sanitize(json_search)
40-
41-
return Movie.objects(__raw__=safe_search)
42-
43-
@app.route("/get_db_find")
44-
def get_db_find():
45-
unsafe_search = request.args['search']
46-
json_search = json.loads(unsafe_search)
47-
safe_search = sanitize(json_search)
48-
49-
db = me.get_db()
50-
return db.movie.find({'name': safe_search})
51-
52-
@app.route("/connection_get_db_find")
53-
def connection_get_db_find():
54-
unsafe_search = request.args['search']
55-
json_search = json.loads(unsafe_search)
56-
safe_search = sanitize(json_search)
57-
58-
db = get_db()
59-
return db.movie.find({'name': safe_search})
60-
61-
@app.route("/subscript_find")
62-
def subscript_find():
63-
unsafe_search = request.args['search']
64-
json_search = json.loads(unsafe_search)
65-
safe_search = sanitize(json_search)
66-
67-
db = me.connect('mydb')
68-
return db['movie'].find({'name': safe_search})
26+
# if __name__ == "__main__":
27+
# app.run(debug=True)

0 commit comments

Comments
 (0)