Add example code for CodeQL to flag

Author: samjwu

test.py

@@ -0,0 +1,22 @@
+import sqlite3
+
+def get_user_data(username):
+    query = "SELECT * FROM users WHERE username = '" + username + "'"
+    
+    try:
+        conn = sqlite3.connect('database.db')
+        cursor = conn.cursor()
+        cursor.execute(query)
+        
+        rows = cursor.fetchall()
+        for row in rows:
+            print("User ID:", row[0])
+            print("Username:", row[1])
+            print("Email:", row[2])
+        
+        cursor.close()
+        conn.close()
+    except sqlite3.Error as e:
+        print("Error executing SQLite query:", e)
+
+get_user_data("admin' OR '1'='1")