github
diff --git a/‎java/ql/test/library-tests/frameworks/apache-commons-lang3/StringEscapeUtilsTest.java
Lines changed: 11 additions & 0 deletions b/‎java/ql/test/library-tests/frameworks/apache-commons-lang3/StringEscapeUtilsTest.java
Lines changed: 11 additions & 0 deletions
diff --git a/‎java/ql/test/stubs/apache-commons-lang3-3.7/org/apache/commons/lang3/StringEscapeUtils.java
Lines changed: 42 additions & 0 deletions b/‎java/ql/test/stubs/apache-commons-lang3-3.7/org/apache/commons/lang3/StringEscapeUtils.java
Lines changed: 42 additions & 0 deletions
diff --git a/‎java/ql/test/stubs/apache-commons-lang3-3.7/org/apache/commons/lang3/text/translate/CharSequenceTranslator.java
Lines changed: 15 additions & 0 deletions b/‎java/ql/test/stubs/apache-commons-lang3-3.7/org/apache/commons/lang3/text/translate/CharSequenceTranslator.java
Lines changed: 15 additions & 0 deletions
@@ -0,0 +1,11 @@
+import org.apache.commons.lang3.StringEscapeUtils;
+
+public class StringEscapeUtilsTest {
+  String taint() { return "tainted"; }
+
+  void sink(Object o) {}
+
+  void test() throws Exception {
+    sink(StringEscapeUtils.escapeJson(taint())); // $hasTaintFlow
+  }
+}