Continue iterating on tests

Author: picatz

sql/injection/testdata/src/github.com/sqreen/go-dvwa/vulnerable/sql.go

@@ -1,15 +1,21 @@
-package main
+package v
 
 import (
+	"database/sql"
 	"net/http"
-
-	"github.com/sqreen/go-dvwa/vulnerable"
+	"v/nested"
 )
 
 func main() {
-	db, _ := vulnerable.PrepareSQLDB()
-	http.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
-		vulnerable.GetProducts(r.Context(), db, r.FormValue("category"))
+	db, err := sql.Open("sqlite3", ":memory:")
+	if err != nil {
+		panic(err)
+	}
+	mux := http.NewServeMux()
+
+	mux.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
+		nested.Run(db, r.URL.Query().Get("name"))
 	})
-	http.ListenAndServe(":8080", nil)
+
+	http.ListenAndServe(":8080", mux)
 }

sql/injection/testdata/src/v/main.go

@@ -0,0 +1,13 @@
+package nested
+
+import (
+	"database/sql"
+)
+
+func Run(db *sql.DB, query string) error {
+	_, err := db.Query(query) // want "potential sql injection"
+	if err != nil {
+		return err
+	}
+	return nil
+}