PS: Accept test changes.

MathiasVP · MathiasVP · commit 7d07773a3330 · 2025-07-04T11:12:55.000+01:00
diff --git a/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.expected b/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.expected
@@ -14,6 +14,7 @@ edges
 | test.ps1:104:11:104:20 | userinput | test.ps1:108:58:108:87 | Get-Process -Name $UserInput | provenance |  |
 | test.ps1:114:11:114:20 | userinput | test.ps1:116:34:116:43 | UserInput | provenance |  |
 | test.ps1:121:11:121:20 | userinput | test.ps1:123:28:123:37 | UserInput | provenance |  |
+| test.ps1:129:11:129:20 | userinput | test.ps1:131:28:131:37 | UserInput | provenance |  |
 | test.ps1:136:11:136:20 | userinput | test.ps1:139:50:139:59 | UserInput | provenance |  |
 | test.ps1:144:11:144:20 | userinput | test.ps1:147:63:147:72 | UserInput | provenance |  |
 | test.ps1:152:10:152:32 | Call to read-host | test.ps1:154:46:154:51 | input | provenance | Src:MaD:0  |
@@ -31,6 +32,7 @@ edges
 | test.ps1:152:10:152:32 | Call to read-host | test.ps1:167:41:167:46 | input | provenance | Src:MaD:0  |
 | test.ps1:152:10:152:32 | Call to read-host | test.ps1:168:36:168:41 | input | provenance | Src:MaD:0  |
 | test.ps1:152:10:152:32 | Call to read-host | test.ps1:169:36:169:41 | input | provenance | Src:MaD:0  |
+| test.ps1:152:10:152:32 | Call to read-host | test.ps1:170:36:170:41 | input | provenance | Src:MaD:0  |
 | test.ps1:152:10:152:32 | Call to read-host | test.ps1:172:42:172:47 | input | provenance | Src:MaD:0  |
 | test.ps1:152:10:152:32 | Call to read-host | test.ps1:173:42:173:47 | input | provenance | Src:MaD:0  |
 | test.ps1:154:46:154:51 | input | test.ps1:3:11:3:20 | userinput | provenance |  |
@@ -48,6 +50,7 @@ edges
 | test.ps1:167:41:167:46 | input | test.ps1:104:11:104:20 | userinput | provenance |  |
 | test.ps1:168:36:168:41 | input | test.ps1:114:11:114:20 | userinput | provenance |  |
 | test.ps1:169:36:169:41 | input | test.ps1:121:11:121:20 | userinput | provenance |  |
+| test.ps1:170:36:170:41 | input | test.ps1:129:11:129:20 | userinput | provenance |  |
 | test.ps1:172:42:172:47 | input | test.ps1:136:11:136:20 | userinput | provenance |  |
 | test.ps1:173:42:173:47 | input | test.ps1:144:11:144:20 | userinput | provenance |  |
 nodes
@@ -81,6 +84,8 @@ nodes
 | test.ps1:116:34:116:43 | UserInput | semmle.label | UserInput |
 | test.ps1:121:11:121:20 | userinput | semmle.label | userinput |
 | test.ps1:123:28:123:37 | UserInput | semmle.label | UserInput |
+| test.ps1:129:11:129:20 | userinput | semmle.label | userinput |
+| test.ps1:131:28:131:37 | UserInput | semmle.label | UserInput |
 | test.ps1:136:11:136:20 | userinput | semmle.label | userinput |
 | test.ps1:139:50:139:59 | UserInput | semmle.label | UserInput |
 | test.ps1:144:11:144:20 | userinput | semmle.label | userinput |
@@ -101,6 +106,7 @@ nodes
 | test.ps1:167:41:167:46 | input | semmle.label | input |
 | test.ps1:168:36:168:41 | input | semmle.label | input |
 | test.ps1:169:36:169:41 | input | semmle.label | input |
+| test.ps1:170:36:170:41 | input | semmle.label | input |
 | test.ps1:172:42:172:47 | input | semmle.label | input |
 | test.ps1:173:42:173:47 | input | semmle.label | input |
 subpaths
@@ -120,5 +126,6 @@ subpaths
 | test.ps1:108:58:108:87 | Get-Process -Name $UserInput | test.ps1:152:10:152:32 | Call to read-host | test.ps1:108:58:108:87 | Get-Process -Name $UserInput | This command depends on a $@. | test.ps1:152:10:152:32 | Call to read-host | user-provided value |
 | test.ps1:116:34:116:43 | UserInput | test.ps1:152:10:152:32 | Call to read-host | test.ps1:116:34:116:43 | UserInput | This command depends on a $@. | test.ps1:152:10:152:32 | Call to read-host | user-provided value |
 | test.ps1:123:28:123:37 | UserInput | test.ps1:152:10:152:32 | Call to read-host | test.ps1:123:28:123:37 | UserInput | This command depends on a $@. | test.ps1:152:10:152:32 | Call to read-host | user-provided value |
+| test.ps1:131:28:131:37 | UserInput | test.ps1:152:10:152:32 | Call to read-host | test.ps1:131:28:131:37 | UserInput | This command depends on a $@. | test.ps1:152:10:152:32 | Call to read-host | user-provided value |
 | test.ps1:139:50:139:59 | UserInput | test.ps1:152:10:152:32 | Call to read-host | test.ps1:139:50:139:59 | UserInput | This command depends on a $@. | test.ps1:152:10:152:32 | Call to read-host | user-provided value |
 | test.ps1:147:63:147:72 | UserInput | test.ps1:152:10:152:32 | Call to read-host | test.ps1:147:63:147:72 | UserInput | This command depends on a $@. | test.ps1:152:10:152:32 | Call to read-host | user-provided value |
diff --git a/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/test.ps1 b/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/test.ps1
@@ -123,12 +123,12 @@ function Invoke-MethodInjection2
     (Get-Process -Id $pid).$UserInput()
 }
 
-#TODO: currently a FN
+
 function Invoke-MethodInjection3
 {
     param($UserInput)
 
-    (Get-Process -Id $pid).$UserInput.Invoke()
+    (Get-Process -Id $pid).$UserInput.Invoke() # BAD
 }
 
 function Invoke-ExpandStringInjection1

Original file line number	Diff line number	Diff line change
`@@ -123,12 +123,12 @@ function Invoke-MethodInjection2`
`123`	`123`	`(Get-Process -Id $pid).$UserInput()`
`124`	`124`	`}`
`125`	`125`
`126`		`-#TODO: currently a FN`
	`126`	`+`
`127`	`127`	`function Invoke-MethodInjection3`
`128`	`128`	`{`
`129`	`129`	`param($UserInput)`
`130`	`130`
`131`		`- (Get-Process -Id $pid).$UserInput.Invoke()`
	`131`	`+ (Get-Process -Id $pid).$UserInput.Invoke() # BAD`
`132`	`132`	`}`
`133`	`133`
`134`	`134`	`function Invoke-ExpandStringInjection1`