Python: Adjust InsecureRandomnessCustomizations.qll

2025-12-20 18:56:32 +01:00 · 2022-08-16 09:12:21 +02:00
parent ed70e118a9
commit 2e2cee06c3
1 changed files with 3 additions and 4 deletions
--- a/python/ql/src/experimental/semmle/python/security/InsecureRandomnessCustomizations.qll
+++ b/python/ql/src/experimental/semmle/python/security/InsecureRandomnessCustomizations.qll
@@ -59,12 +59,11 @@ module InsecureRandomness {
   */
  class RandomFnSink extends Sink {
    RandomFnSink() {
-      exists(DataFlowCallable randomFn |
-        randomFn
-            .getName()
+      exists(Function func |
+        func.getName()
            .regexpMatch("(?i).*(gen(erate)?|make|mk|create).*(nonce|salt|pepper|Password).*")
      |
-        this.getEnclosingCallable() = randomFn
+        this.asExpr().getScope() = func
      )
    }
  }