chore: enable iast_aggregated_leak_testing

DataDog · Jan 20, 2025 · ba1abba · ba1abba
1 parent 0111544
commit ba1abba
Show file tree

Hide file tree

Showing 3 changed files with 15 additions and 5 deletions.
diff --git a/hatch.toml b/hatch.toml
@@ -444,8 +444,8 @@ fastapi = ["~=0.114.2"]
 
 ## ASM Appsec Aggregated Leak Testing
 
-[envs.appsec_aggregated_leak_testing]
-template = "appsec_aggregated_leak_testing"
+[envs.iast_aggregated_leak_testing]
+template = "iast_aggregated_leak_testing"
 dependencies = [
     "pytest",
     "pytest-cov",
@@ -457,18 +457,18 @@ dependencies = [
     "pydantic-settings",
 ]
 
-[envs.appsec_aggregated_leak_testing.env-vars]
+[envs.iast_aggregated_leak_testing.env-vars]
 CMAKE_BUILD_PARALLEL_LEVEL = "12"
 DD_IAST_ENABLED = "true"
 
-[envs.appsec_aggregated_leak_testing.scripts]
+[envs.iast_aggregated_leak_testing.scripts]
 test = [
     "uname -a",
     "pip freeze",
     "python -m pytest tests/appsec/iast_aggregated_memcheck/test_aggregated_memleaks.py",
 ]
 
-[[envs.appsec_aggregated_leak_testing.matrix]]
+[[envs.iast_aggregated_leak_testing.matrix]]
 python = ["3.10", "3.11", "3.12", "3.13"]
 
 

diff --git a/scripts/iast/mod_leak_functions.py b/scripts/iast/mod_leak_functions.py
@@ -258,6 +258,8 @@ def sink_points(string_tainted):
     except Exception:
         pass
 
+    _ = eval('"aa" + ' + string_tainted)
+
     # Weak Randomness vulnerability
     _ = random.randint(1, 10)
 

diff --git a/tests/appsec/suitespec.yml b/tests/appsec/suitespec.yml
@@ -73,6 +73,14 @@ suites:
       - '@remoteconfig'
     retry: 2
     runner: hatch
+  iast_aggregated_leak_testing:
+    parallelism: 4
+    paths:
+      - '@appsec_iast'
+      - tests/appsec/iast_aggregated_memcheck/*
+    retry: 2
+    runner: hatch
+    timeout: 50m
   appsec_iast_packages:
     parallelism: 4
     paths: