C# (CSharp) SqlCommandConcatinationAnalyser示例

编程语言: C# (CSharp)

hotexamples.com的示例: 3

C# (CSharp) SqlCommandConcatinationAnalyser - 已找到3个示例。这些是从开源项目中提取的最受好评的SqlCommandConcatinationAnalyser现实C# (CSharp)示例。您可以评价示例，以帮助我们提高示例质量。

常用方法

显示隐藏

Visit(3)

示例#1

显示文件

文件： SqlCommandConcatinationAnalyserTests.cs 项目： JSingmin/CSharpAnalyser

        public void SqlCommandConcatinationAnalyserReportsNothingIfArgumentsIsMethodCall()
        {
            string code = @"
            using System;
            using System.Data.SqlClient;

            public class TestClass
            {
                public void TestMethod(SqlConnection connection)
                {
                    SqlCommand sql = new SqlCommand(this.GetCommand(), connection);
                }

                private string GetCommand()
                {
                    return ""SELECT * FROM dbo.Users"";
                }
            }
            ";

            CompilationUnitSyntax root = CSharpSyntaxTree.ParseText(code).GetCompilationUnitRoot();

            SqlCommandConcatinationAnalyser analyser = new SqlCommandConcatinationAnalyser();

            analyser.Visit(root);
            IReadOnlyCollection <AnalyserItem> result = analyser.AnalyserItems;

            Assert.Empty(result);
        }

示例#2

显示文件

文件： SqlCommandConcatinationAnalyserTests.cs 项目： JSingmin/CSharpAnalyser

        public void SqlCommandConcatinationAnalyserReportsIfArgumentsVariableIsConcatenatedWithMethodCall()
        {
            string code = @"
            using System;
            using System.Data.SqlClient;

            public class TestClass
            {
                public void TestMethod(SqlConnection connection)
                {
                    string cmd = ""SELECT * FROM dbo.Users WHERE id = "" + this.GetID();
                    SqlCommand sql = new SqlCommand(cmd, connection);
                }

                private int GetID()
                {
                    return 1;
                }
            }
            ";

            CompilationUnitSyntax root = CSharpSyntaxTree.ParseText(code).GetCompilationUnitRoot();

            SqlCommandConcatinationAnalyser analyser = new SqlCommandConcatinationAnalyser();

            analyser.Visit(root);
            IReadOnlyCollection <AnalyserItem> result = analyser.AnalyserItems;

            Assert.NotEmpty(result);
            Assert.Equal(1, result.Count);
            Assert.Equal("Concatinated SQL string", result.Last().Message);
            Assert.Equal(9, result.Last().NodeReference.GetSyntax().GetLocation().GetMappedLineSpan().StartLinePosition.Line);
        }

示例#3

显示文件

文件： SqlCommandConcatinationAnalyserTests.cs 项目： JSingmin/CSharpAnalyser

        public void SqlCommandConcatinationAnalyserReportsNothingIfArgumentsVariableIsParameter()
        {
            string code = @"
            using System;
            using System.Data.SqlClient;

            public class TestClass
            {
                public void TestMethod(SqlConnection connection, string cmd)
                {
                    SqlCommand sql = new SqlCommand(cmd, connection);
                }
            }
            ";

            CompilationUnitSyntax root = CSharpSyntaxTree.ParseText(code).GetCompilationUnitRoot();

            SqlCommandConcatinationAnalyser analyser = new SqlCommandConcatinationAnalyser();

            analyser.Visit(root);
            IReadOnlyCollection <AnalyserItem> result = analyser.AnalyserItems;

            Assert.Empty(result);
        }