Create driver query for the unit test

jeongsoolee09 · jeongsoolee09 · commit aad96fd4f564 · 2025-10-28T15:51:08.000-04:00
diff --git a/javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/UI5View.qll b/javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/UI5View.qll
@@ -190,7 +190,6 @@ predicate isBuiltInControl(string qualifiedTypeUri) {
 /**
  * A UI5 View that might include XSS sources and sinks in standard controls.
  */
-/* TODO: Update docstring */
 abstract class UI5View extends File {
   abstract string getControllerName();
 
diff --git a/javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/UI5XssQuery.qll b/javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/UI5XssQuery.qll
@@ -90,7 +90,7 @@ private module TrackPlaceAtCallConfigFlow = TaintTracking::Global<TrackPlaceAtCa
  * TODO 2: Model the `placeAt`:
  */
 
-private class DangerouslySetElementValueOfInstantiatedHTMLControlPlacedAtDom extends DataFlow::Node {
+class DangerouslySetElementValueOfInstantiatedHTMLControlPlacedAtDom extends DataFlow::Node {
   HTMLControlInstantiation htmlControlInstantiation;
   ControlPlaceAtCall placeAtCall;
 
diff --git a/javascript/frameworks/ui5/test/models/dangerous_write_to_html_content/dangerousWriteToHtmlContent.ql b/javascript/frameworks/ui5/test/models/dangerous_write_to_html_content/dangerousWriteToHtmlContent.ql
@@ -1,5 +1,5 @@
 import javascript
-import advanced_security.javascript.frameworks.ui5.UI5
-import advanced_security.javascript.frameworks.ui5.UI5View
+import advanced_security.javascript.frameworks.ui5.UI5XssQuery
 
-select "TODO", "TODO"
+from DangerouslySetElementValueOfInstantiatedHTMLControlPlacedAtDom htmlContent
+select htmlContent, "Content write to an HTML element instantiated and placed in a DOM tree"
