File tree Expand file tree Collapse file tree 1 file changed +28
-0
lines changed
src/test/java/com/trivadis/tvdcc/validators/tests Expand file tree Collapse file tree 1 file changed +28
-0
lines changed Original file line number Diff line number Diff line change @@ -486,4 +486,32 @@ class SQLInjectionTest extends AbstractValidatorTest {
486486 Assert . assertEquals(1 , issues. size)
487487 }
488488
489+ @Test
490+ def void issue55_using_unasserted_constant_in_execute_immediate () {
491+ val stmt = ' ' '
492+ create or replace procedure exec_sql(in_sql in varchar2) is
493+ co_sql constant varchar2(1000 char) := in_sql;
494+ begin
495+ execute immediate co_sql;
496+ end exec_sql;
497+ /
498+ ' ' '
499+ val issues = stmt. issues
500+ Assert . assertEquals(1 , issues. size)
501+ }
502+
503+ @Test
504+ def void issue55_using_asserted_constant_in_execute_immediate () {
505+ val stmt = ' ' '
506+ create or replace procedure exec_sql(in_sql in varchar2) is
507+ co_sql constant varchar2(1000 char) := sys.dbms_assert.noop(in_sql);
508+ begin
509+ execute immediate co_sql;
510+ end exec_sql;
511+ /
512+ ' ' '
513+ val issues = stmt. issues
514+ Assert . assertEquals(0 , issues. size)
515+ }
516+
489517}
You can’t perform that action at this time.
0 commit comments