Add additional models; fix up tests

joefarebrother · joefarebrother · commit d7c777649528 · 2021-10-20T17:09:57.000+01:00
diff --git a/java/ql/test/query-tests/security/CWE-927/SensitiveBroadcast.java b/java/ql/test/query-tests/security/CWE-927/SensitiveBroadcast.java
@@ -72,7 +72,7 @@ public void sendBroadcast6(Context context) {
         intent.setAction("com.example.custom_action");
         intent.putExtra("ticket", ticket);
         String perm = "com.example.user_permission";
-        context.sendBroadcast(intent, perm); // $ hasTaintFlow 
+        context.sendBroadcast(intent, perm); 
     }
 
     // GOOD - Tests broadcast of sensitive user information to a specific application.
@@ -142,7 +142,6 @@ public void sendBroadcast11(Context context) {
 
     /** 
      * BAD - Tests broadcast of sensitive user information with multiple permissions using empty array initialization through two variables and `intent.getExtras().putString()`.
-     * Note this case of `getExtras().putString(...)` is not yet detected thus is beyond what the query is capable of.
      */ 
     public void sendBroadcast12(Context context) {
         String username = "test123";
