microsoft
diff --git a/‎python/ql/test/experimental/query-tests/Security/CWE-074-TemplateInjection/CheetahSinks.py
Lines changed: 22 additions & 0 deletions b/‎python/ql/test/experimental/query-tests/Security/CWE-074-TemplateInjection/CheetahSinks.py
Lines changed: 22 additions & 0 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/Airspeed.py
Lines changed: 0 additions & 10 deletions b/‎python/ql/test/experimental/semmle/python/templates/Airspeed.py
Lines changed: 0 additions & 10 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/AirspeedSSTISinks.expected
Lines changed: 0 additions & 2 deletions b/‎python/ql/test/experimental/semmle/python/templates/AirspeedSSTISinks.expected
Lines changed: 0 additions & 2 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/AirspeedSSTISinks.ql
Lines changed: 0 additions & 5 deletions b/‎python/ql/test/experimental/semmle/python/templates/AirspeedSSTISinks.ql
Lines changed: 0 additions & 5 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/Bottle.py
Lines changed: 0 additions & 17 deletions b/‎python/ql/test/experimental/semmle/python/templates/Bottle.py
Lines changed: 0 additions & 17 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/BottleSSTISinks.expected
Lines changed: 0 additions & 3 deletions b/‎python/ql/test/experimental/semmle/python/templates/BottleSSTISinks.expected
Lines changed: 0 additions & 3 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/BottleSSTISinks.ql
Lines changed: 0 additions & 5 deletions b/‎python/ql/test/experimental/semmle/python/templates/BottleSSTISinks.ql
Lines changed: 0 additions & 5 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/Chameleon.py
Lines changed: 0 additions & 5 deletions b/‎python/ql/test/experimental/semmle/python/templates/Chameleon.py
Lines changed: 0 additions & 5 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/ChameleonSSTISinks.expected
Lines changed: 0 additions & 2 deletions b/‎python/ql/test/experimental/semmle/python/templates/ChameleonSSTISinks.expected
Lines changed: 0 additions & 2 deletions
diff --git a/‎python/ql/test/experimental/semmle/python/templates/ChameleonSSTISinks.ql
Lines changed: 0 additions & 5 deletions b/‎python/ql/test/experimental/semmle/python/templates/ChameleonSSTISinks.ql
Lines changed: 0 additions & 5 deletions
@@ -0,0 +1,22 @@
+from flask import Flask, request
+from Cheetah.Template import Template
+
+
+app = Flask(__name__)
+
+
+@app.route('/other')
+def a():
+    template = request.args.get('template')
+    return Template(template)
+
+
+class Template3(Template):
+    title = 'Hello World Example!'
+    contents = 'Hello World!'
+
+
+@app.route('/other2')
+def b():
+    template = request.args.get('template')
+    t3 = Template3(template)