Added test cases for open package.

Napalys · Napalys · commit df8973908590 · 2025-04-08T08:10:10.000+02:00
diff --git a/javascript/ql/test/query-tests/Security/CWE-022/TaintedPath/open.js b/javascript/ql/test/query-tests/Security/CWE-022/TaintedPath/open.js
@@ -0,0 +1,11 @@
+import open, {openApp, apps} from 'open';
+
+const express = require('express');
+const app = express();
+
+app.get('/open', (req, res) => {
+    const file = req.query.file; // $ MISSING: Source
+
+    open(file); // $ MISSING: Alert
+    openApp(file); // $ MISSING: Alert
+});
