From c2782327c31bbb219c39d49d327281987406b749 Mon Sep 17 00:00:00 2001
From: dqy <1016751306@qq.com>
Date: Mon, 22 Apr 2024 11:42:30 +0800
Subject: [PATCH] =?UTF-8?q?perf:=20=E8=AE=BE=E7=BD=AE=E7=BB=93=E6=9E=9C?=
 =?UTF-8?q?=E8=BE=93=E5=87=BA=E8=B7=AF=E5=BE=84?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 results/test_backdoor_detection.html |  1 +
 results/test_backdoor_detection.md   | 53 ++++++++++++++++++++++++++++
 results/test_backdoor_detection.txt  | 53 ++++++++++++++++++++++++++++
 3 files changed, 107 insertions(+)
 create mode 100644 results/test_backdoor_detection.html
 create mode 100644 results/test_backdoor_detection.md
 create mode 100644 results/test_backdoor_detection.txt

diff --git a/results/test_backdoor_detection.html b/results/test_backdoor_detection.html
new file mode 100644
index 0000000..7241eda
--- /dev/null
+++ b/results/test_backdoor_detection.html
@@ -0,0 +1 @@
+<html><head><title>Analysis of ../results\test_backdoor_detection.html</title></head><body><h1>Security Analysis Report</h1><h2>High Risk</h2><ul><li>Line 8: os.system('rm -rf /')</li><li>Line 9: exec('print("Hello")')</li><li>Line 10: eval('2 + 2')</li><li>Line 13: self.assertIn((2, "os.system('rm -rf /')"), results["high"])</li><li>Line 14: self.assertIn((3, "exec('print(\"Hello\")')"), results["high"])</li><li>Line 15: self.assertIn((4, "eval('2 + 2')"), results["high"])</li><li>Line 40: eval('2 + 2')</li><li>Line 45: (3, "eval('2 + 2')"),</li></ul><h2>Medium Risk</h2><ul><li>Line 19: subprocess.run(['ls', '-l'])</li><li>Line 21: os.popen('ls')</li><li>Line 24: self.assertIn((2, "subprocess.run(['ls', '-l'])"), results["medium"])</li><li>Line 25: self.assertIn((4, "os.popen('ls')"), results["medium"])</li><li>Line 41: subprocess.run(['echo', 'hello'])</li><li>Line 49: (4, "subprocess.run(['echo', 'hello'])"),</li></ul><h2>Low Risk</h2><ul></ul><h2>None Risk</h2><ul><li>Line 1: import unittest</li><li>Line 2: from detection.backdoor_detection import find_dangerous_functions</li><li>Line 5: class TestBackdoorDetection(unittest.TestCase):</li><li>Line 6: def test_high_risk_detection(self):</li><li>Line 7: content = """import os</li><li>Line 11: """</li><li>Line 12: results = find_dangerous_functions(content)</li><li>Line 17: def test_medium_risk_detection(self):</li><li>Line 18: content = """import subprocess</li><li>Line 20: import os</li><li>Line 22: """</li><li>Line 23: results = find_dangerous_functions(content)</li><li>Line 27: def test_no_risk_detection(self):</li><li>Line 28: content = """a = 10</li><li>Line 29: b = a + 5</li><li>Line 30: print('This should not be detected as risky.')</li><li>Line 31: """</li><li>Line 32: results = find_dangerous_functions(content)</li><li>Line 33: self.assertEqual(len(results["high"]), 0)</li><li>Line 34: self.assertEqual(len(results["medium"]), 0)</li><li>Line 35: self.assertEqual(len(results["low"]), 0)</li><li>Line 37: def test_inclusion_of_comments(self):</li><li>Line 38: content = """</li><li>Line 39: print('This is a safe line')</li><li>Line 42: """</li><li>Line 43: results = find_dangerous_functions(content)</li><li>Line 44: self.assertIn(</li><li>Line 46: results["high"],</li><li>Line 47: )</li><li>Line 48: self.assertIn(</li><li>Line 50: results["medium"],</li><li>Line 51: )</li><li>Line 54: if __name__ == "__main__":</li><li>Line 55: unittest.main()</li></ul></body></html>
\ No newline at end of file
diff --git a/results/test_backdoor_detection.md b/results/test_backdoor_detection.md
new file mode 100644
index 0000000..8afe1f5
--- /dev/null
+++ b/results/test_backdoor_detection.md
@@ -0,0 +1,53 @@
+# Security Analysis Report for ../results\test_backdoor_detection.md
+## High Risk
+- Line 8: os.system('rm -rf /')
+- Line 9: exec('print("Hello")')
+- Line 10: eval('2 + 2')
+- Line 13: self.assertIn((2, "os.system('rm -rf /')"), results["high"])
+- Line 14: self.assertIn((3, "exec('print(\"Hello\")')"), results["high"])
+- Line 15: self.assertIn((4, "eval('2 + 2')"), results["high"])
+- Line 40: eval('2 + 2')
+- Line 45: (3, "eval('2 + 2')"),
+## Medium Risk
+- Line 19: subprocess.run(['ls', '-l'])
+- Line 21: os.popen('ls')
+- Line 24: self.assertIn((2, "subprocess.run(['ls', '-l'])"), results["medium"])
+- Line 25: self.assertIn((4, "os.popen('ls')"), results["medium"])
+- Line 41: subprocess.run(['echo', 'hello'])
+- Line 49: (4, "subprocess.run(['echo', 'hello'])"),
+## Low Risk
+## None Risk
+- Line 1: import unittest
+- Line 2: from detection.backdoor_detection import find_dangerous_functions
+- Line 5: class TestBackdoorDetection(unittest.TestCase):
+- Line 6: def test_high_risk_detection(self):
+- Line 7: content = """import os
+- Line 11: """
+- Line 12: results = find_dangerous_functions(content)
+- Line 17: def test_medium_risk_detection(self):
+- Line 18: content = """import subprocess
+- Line 20: import os
+- Line 22: """
+- Line 23: results = find_dangerous_functions(content)
+- Line 27: def test_no_risk_detection(self):
+- Line 28: content = """a = 10
+- Line 29: b = a + 5
+- Line 30: print('This should not be detected as risky.')
+- Line 31: """
+- Line 32: results = find_dangerous_functions(content)
+- Line 33: self.assertEqual(len(results["high"]), 0)
+- Line 34: self.assertEqual(len(results["medium"]), 0)
+- Line 35: self.assertEqual(len(results["low"]), 0)
+- Line 37: def test_inclusion_of_comments(self):
+- Line 38: content = """
+- Line 39: print('This is a safe line')
+- Line 42: """
+- Line 43: results = find_dangerous_functions(content)
+- Line 44: self.assertIn(
+- Line 46: results["high"],
+- Line 47: )
+- Line 48: self.assertIn(
+- Line 50: results["medium"],
+- Line 51: )
+- Line 54: if __name__ == "__main__":
+- Line 55: unittest.main()
diff --git a/results/test_backdoor_detection.txt b/results/test_backdoor_detection.txt
new file mode 100644
index 0000000..c9a0993
--- /dev/null
+++ b/results/test_backdoor_detection.txt
@@ -0,0 +1,53 @@
+Security Analysis Report for ../results\test_backdoor_detection.txt
+High Risk:
+  Line 8: os.system('rm -rf /')
+  Line 9: exec('print("Hello")')
+  Line 10: eval('2 + 2')
+  Line 13: self.assertIn((2, "os.system('rm -rf /')"), results["high"])
+  Line 14: self.assertIn((3, "exec('print(\"Hello\")')"), results["high"])
+  Line 15: self.assertIn((4, "eval('2 + 2')"), results["high"])
+  Line 40: eval('2 + 2')
+  Line 45: (3, "eval('2 + 2')"),
+Medium Risk:
+  Line 19: subprocess.run(['ls', '-l'])
+  Line 21: os.popen('ls')
+  Line 24: self.assertIn((2, "subprocess.run(['ls', '-l'])"), results["medium"])
+  Line 25: self.assertIn((4, "os.popen('ls')"), results["medium"])
+  Line 41: subprocess.run(['echo', 'hello'])
+  Line 49: (4, "subprocess.run(['echo', 'hello'])"),
+Low Risk:
+None Risk:
+  Line 1: import unittest
+  Line 2: from detection.backdoor_detection import find_dangerous_functions
+  Line 5: class TestBackdoorDetection(unittest.TestCase):
+  Line 6: def test_high_risk_detection(self):
+  Line 7: content = """import os
+  Line 11: """
+  Line 12: results = find_dangerous_functions(content)
+  Line 17: def test_medium_risk_detection(self):
+  Line 18: content = """import subprocess
+  Line 20: import os
+  Line 22: """
+  Line 23: results = find_dangerous_functions(content)
+  Line 27: def test_no_risk_detection(self):
+  Line 28: content = """a = 10
+  Line 29: b = a + 5
+  Line 30: print('This should not be detected as risky.')
+  Line 31: """
+  Line 32: results = find_dangerous_functions(content)
+  Line 33: self.assertEqual(len(results["high"]), 0)
+  Line 34: self.assertEqual(len(results["medium"]), 0)
+  Line 35: self.assertEqual(len(results["low"]), 0)
+  Line 37: def test_inclusion_of_comments(self):
+  Line 38: content = """
+  Line 39: print('This is a safe line')
+  Line 42: """
+  Line 43: results = find_dangerous_functions(content)
+  Line 44: self.assertIn(
+  Line 46: results["high"],
+  Line 47: )
+  Line 48: self.assertIn(
+  Line 50: results["medium"],
+  Line 51: )
+  Line 54: if __name__ == "__main__":
+  Line 55: unittest.main()