-
-
Notifications
You must be signed in to change notification settings - Fork 697
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ascanrules: add SqlInjectionScanRule unit tests for boolean based #5797
base: main
Are you sure you want to change the base?
Conversation
addOns/ascanrules/CHANGELOG.md
Outdated
### Added | ||
- Sql injection rule unit tests for boolean based attacks | ||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Only changes affecting the user should be mentioned in the changelog, tests themselves not worth it.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Removed
@@ -403,7 +403,7 @@ private static List<String> asList(String... strings) { | |||
* *not* in the last where clause in a SQL query so as a result, the rest of the query needs to | |||
* be closed off with the comment. | |||
*/ | |||
private static final String[] SQL_LOGIC_AND_TRUE = { | |||
public static final String[] SQL_LOGIC_AND_TRUE = { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Package accessible.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Changed
@@ -93,287 +101,640 @@ void shouldReturnExpectedMappings() { | |||
is(equalTo(CommonAlertTag.WSTG_V42_INPV_05_SQLI.getValue()))); | |||
} | |||
|
|||
@Test | |||
void shouldTargetDbTech() { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It would have been better if this was done in a separate commit.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Good point. I'll keep code reorganization separate from code changes going forward.
be5fde3
to
8fcb9d6
Compare
Signed-off-by: FiveOFive <FiveOFive@users.noreply.github.com>
8fcb9d6
to
ff7eae4
Compare
Overview
Briefly describe the purpose, goals, and changes or improvements made in this pull request.
Related Issues
Specify any related issues or pull requests by linking to them. zaproxy/zaproxy#8652
Checklist
./gradlew spotlessApply
for code formattingFor more details, please refer to the developer rules and guidelines.