AC-9509: Scheduled operation improvements.

sreenia806 · sreenia806 · commit 5957a45552ab · 2023-09-22T18:36:17.000+05:30
diff --git a/lib/internal/Magento/Framework/Filter/Input/MaliciousCode.php b/lib/internal/Magento/Framework/Filter/Input/MaliciousCode.php
@@ -50,8 +50,6 @@ public function __construct(?PurifierInterface $purifier = null)
         '/<\?\s*?(php|=).*>/Uis',
         //base64 usage
         '/src=[^<]*base64[^<]*(?=\/*\>)/Uis',
-        //command line injections
-        '/[|$`;!&]/',
     ];
 
     /**
diff --git a/lib/internal/Magento/Framework/Filter/Test/Unit/Input/MaliciousCodeTest.php b/lib/internal/Magento/Framework/Filter/Test/Unit/Input/MaliciousCodeTest.php
@@ -51,10 +51,10 @@ public function testFilter($input, $expectedOutput)
     {
         $this->purifier->expects(self::atLeastOnce())
             ->method('purify')
-            ->will(
-                $this->returnCallback(function ($arg) {
+            ->willReturnCallback(
+                function ($arg) {
                     return $arg;
-                })
+                }
             );
         self::assertEquals($expectedOutput, $this->filter->filter($input));
     }
@@ -135,7 +135,7 @@ public function filterDataProvider()
             ],
             'Nested malicious tags' => [
                 '<scri<script>pt>alert(1);</scri<script>pt>',
-                'alert(1)',
+                'alert(1);',
             ],
             'Nested scripts' => [
                 '<?php echo "test" ?>',
@@ -149,10 +149,6 @@ public function filterDataProvider()
                 '<?=$test?>',
                 '',
             ],
-            'Commandline injections' => [
-                'ping -c3 www.example.com && links www.sample.com',
-                'ping -c3 www.example.com  links www.sample.com',
-            ],
             'Null Value' => [null, ''],
         ];
     }
@@ -166,7 +162,11 @@ public function testAddExpression()
 
         $this->purifier->expects(self::atLeastOnce())
             ->method('purify')
-            ->willReturn('Custom malicious tag is removed customMalicious');
+            ->willReturnCallback(
+                function ($arg) {
+                    return $arg;
+                }
+            );
 
         $this->filter->addExpression($customExpression);
         $this->assertEquals(
@@ -188,7 +188,11 @@ public function testSetExpression()
 
         $this->purifier->expects(self::atLeastOnce())
             ->method('purify')
-            ->willReturn("Custom \tmalicious tag\t\t is removed customMalicious");
+            ->willReturnCallback(
+                function ($arg) {
+                    return $arg;
+                }
+            );
 
         $this->filter->setExpressions([$customExpression]);
         $this->assertEquals(
