Add tests for lastaflute framework

Author: egregius313

java/ql/test/library-tests/frameworks/lastaflute/Test.java

@@ -0,0 +1,27 @@
+import java.io.IOException;
+
+import org.lastaflute.web.Execute;
+import org.lastaflute.web.ruts.multipart.MultipartFormFile;
+
+public class Test {
+
+    void sink(Object o) {
+    }
+
+    public class TestForm {
+        public MultipartFormFile file;
+    }
+
+    @Execute
+    public String index(TestForm form) throws IOException {
+        MultipartFormFile file = form.file;
+
+        sink(file.getFileData()); // $hasTaintFlow
+        sink(file.getInputStream()); // $hasTaintFlow
+
+        return "index.jsp";
+    }
+
+}
+
+    

java/ql/test/library-tests/frameworks/lastaflute/options

@@ -0,0 +1 @@
+//semmle-extractor-options: --javac-args -cp ${testdir}/../../../stubs/lastaflute

java/ql/test/library-tests/frameworks/lastaflute/test.expected

@@ -0,0 +1,11 @@
+import java
+import semmle.code.java.dataflow.FlowSources
+import TestUtilities.InlineFlowTest
+
+module Config implements DataFlow::ConfigSig {
+  predicate isSource(DataFlow::Node n) { n instanceof RemoteFlowSource }
+
+  predicate isSink(DataFlow::Node n) { DefaultFlowConfig::isSink(n) }
+}
+
+import TaintFlowTest<Config>