PS: Add new false negative.

MathiasVP · MathiasVP · commit 1ff04d9f94d9 · 2025-06-20T16:30:49.000+01:00
diff --git a/powershell/ql/test/query-tests/security/cwe-089/test.ps1 b/powershell/ql/test/query-tests/security/cwe-089/test.ps1
@@ -67,4 +67,15 @@ $QueryConn = @{
     Query = ""
 }
 
-Invoke-Sqlcmd @QueryConn # GOOD
+Invoke-Sqlcmd @QueryConn # GOOD
+
+$QueryConn2 = @{
+    Database = "MyDB"
+    ServerInstance = "MyServer"
+    Username = "MyUserName"
+    Password = "MyPassword"
+    ConnectionTimeout = 0
+    Query = $userinput
+}
+
+Invoke-Sqlcmd @QueryConn2 # BAD [NOT DETECTED]
