added cmdletbinding case to tests

chanel-y · chanel-y · commit a5a632fb5997 · 2025-09-03T13:24:01.000-07:00
diff --git a/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjectionCritical.expected b/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjectionCritical.expected
diff --git a/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjectionCritical.qlref b/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjectionCritical.qlref
@@ -0,0 +1 @@
+queries/security/cwe-078/CommandInjectionCritical.ql
diff --git a/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/test.ps1 b/powershell/ql/test/query-tests/security/cwe-078/CommandInjection/test.ps1
@@ -147,6 +147,12 @@ function Invoke-ExpandStringInjection2
     $executionContext.SessionState.InvokeCommand.ExpandString($UserInput) # BAD
 }
 
+function Invoke-InvokeExpressionInjectionCmdletBinding
+{
+    [CmdletBinding()]
+    param($UserInput)
+    Invoke-Expression "Get-Process -Name $UserInput" # BAD
+}
 
 
 $input = Read-Host "enter input"
@@ -171,6 +177,7 @@ Invoke-MethodInjection3 -UserInput $input
 Invoke-PropertyInjection -UserInput $input  
 Invoke-ExpandStringInjection1 -UserInput $input  
 Invoke-ExpandStringInjection2 -UserInput $input
+Invoke-InvokeExpressionInjectionCmdletBinding -userInput $input
 
 #typed input
 function Invoke-InvokeExpressionInjectionSafe1

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+queries/security/cwe-078/CommandInjectionCritical.ql`