jared/test-repo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
574f1b9635fb2aa92a1fe2541471ea614e1868c8
test-repo/app.py
Jared Wadsworth 574f1b9635 Test fg
2026-01-31 17:46:45 -07:00

27 lines
607 B
Python
Raw Blame History

# A simple app with some issues for Heimdall to find
import os
import subprocess
def get_user_input():
query = input("Enter search: ")
# SQL injection vulnerability
result = db.execute(f"SELECT * FROM users WHERE name = '{query}'")
return result
def run_command(cmd):
# Command injection vulnerability
subprocess.call(cmd, shell=True)
# Hardcoded secret
API_KEY = "sk-1234567890abcdef"
def fetch_data():
# No error handling
response = requests.get(f"https://api.example.com?key={API_KEY}")
return response.json()
# More code
# Even more
# debug2
# foreground test
Reference in New Issue View Git Blame Copy Permalink