up

bench/reachability-benchmark/cases/c/unsafe-system/case.yaml

@@ -0,0 +1,37 @@
+id: "c-unsafe-system:001"
+language: c
+project: unsafe-system
+version: "1.0.0"
+description: "Command injection sink: user input passed directly to system()."
+entrypoints:
+  - "main(argv)"
+sinks:
+  - id: "UnsafeSystem::main"
+    path: "src/main.c::main"
+    kind: "command"
+    location:
+      file: src/main.c
+      line: 21
+    notes: "Untrusted input concatenated into shell command and executed."
+environment:
+  os_image: "gcc:13-bookworm"
+  runtime:
+    gcc: "13"
+  source_date_epoch: 1730000000
+build:
+  command: "./build/build.sh"
+  source_date_epoch: 1730000000
+  outputs:
+    artifact_path: outputs/binary.tar.gz
+    coverage_path: outputs/coverage.json
+    traces_path: outputs/traces/traces.json
+test:
+  command: "./tests/run-tests.sh"
+  expected_coverage:
+    - outputs/coverage.json
+  expected_traces:
+    - outputs/traces/traces.json
+ground_truth:
+  summary: "Running with argument 'echo OK' executes system() with user-controlled payload."
+  evidence_files:
+    - "../../../benchmark/truth/c-unsafe-system.json"