chore: testing sonarcloud scan for bugs. DO NOT MERGE

app/app/components/auth/sonarcloud-typescript-test.ts

@@ -0,0 +1,35 @@
+// This file is for testing the SonarCloud scan. Do not merge.
+
+// HTTP request redirections should not be open to forging attacks
+let server;
+server.get("/redirect", (request, response) => {
+  response.redirect(request.query.url); // Noncompliant
+});
+
+// Types without members, 'any' and 'never' should not be used in type intersections
+function foo(bar: String & null) {
+  // Noncompliant
+  if (bar) {
+    console.log("a");
+  }
+}
+
+foo(null);
+
+// Jump statements should not occur in "finally" blocks
+async function jump() {
+  let result, connection, connect;
+  try {
+    connection = await connect();
+    result = connection.send(1);
+  } catch (err) {
+    console.error(err.message); // if this line throws, this exception will not be propagated
+  } finally {
+    connection.close();
+    return result; // Noncompliant
+  }
+}
+
+jump();
+
+export {};

sonarcloud-kubernetes-test.yaml

@@ -0,0 +1,18 @@
+# This file is for testing the SonarCloud scan. Do not merge.
+
+# Mounting sensitive file system paths is security-sensitive
+apiVersion: v1
+kind: Pod
+metadata:
+  name: test
+spec:
+  containers:
+    - image: k8s.gcr.io/test-webserver
+      name: test-container
+      volumeMounts:
+        - mountPath: /data
+          name: test-volume
+  volumes:
+    - name: test-volume
+      hostPath:
+        path: /etc # Sensitive

sonarcloud-python-test.py

@@ -0,0 +1,33 @@
+# This file is for testing the SonarCloud scan. Do not merge.
+
+# OS commands should not be vulnerable to command injection attacks
+def ping():
+    cmd = "ping -c 1 %s" % request.args.get("host", "www.google.com")
+    status = os.system(cmd) # Noncompliant
+    return str(status == 0)
+
+# Applications should not create session cookies from untrusted input
+from django.shortcuts import render
+
+def check_cookie(request):
+    response = render(request, "welcome.html")
+
+    if not "sessionid" in request.COOKIE:
+        cookie = request.GET.get("cookie")
+        response.set_cookie("sessionid", cookie)  # Noncompliant
+
+    return response
+
+# Assert should not be called on a tuple literal
+def test_values(a, b):
+    assert (a, b)  # Noncompliant
+
+# Calls should not be made to non-callable values
+class MyClass:
+    pass
+
+myvar = MyClass()
+myvar()  # Noncompliant
+
+none_var = None
+none_var()  # Noncompliant

sonarcloud-sql-test.sql

@@ -0,0 +1,19 @@
+-- This file is for testing the SonarCloud scan. Do not merge. --
+
+-- Inserts should include values for non-null columns
+INSERT INTO MY_TABLE  -- Noncompliant; N2 value omitted
+  (
+    N1
+  )
+  VALUES
+  (
+    1
+  )
+
+-- "DELETE" and "UPDATE" statements should contain "WHERE" clauses
+DECLARE
+  maxAge PLS_INTEGER := 60;
+BEGIN
+  UPDATE employee SET status = 'retired'; -- Noncompliant - the WHERE was forgotten
+END;
+/

sonarcloud-terraform-test.tf

@@ -0,0 +1,20 @@
+# This file is for testing the SonarCloud scan. Do not merge.
+
+# AWS IAM policies should not allow privilege escalation
+resource "aws_iam_policy" "lambdaUpdatePolicy" {
+  name = "lambdaUpdatePolicy"
+  policy =<<EOF
+{
+    "Version": "2012-10-17",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "lambda:UpdateFunctionCode"
+            ],
+            "Resource": "*"
+        }
+    ]
+}
+EOF
+}