hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-17 13:04:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Java: remove exists variable

Browse Source
This commit is contained in:
Jami Cogswell
2024-12-15 23:08:24 -05:00
parent c9ad15cc83
commit 48d1fe062b
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
java/ql/lib/semmle/code/java/security/CsrfUnprotectedRequestTypeQuery.qll
View File

@@ -186,9 +186,7 @@ predicate unprotectedDatabaseUpdate(CallPathNode sourceMethod, CallPathNode sink
sinkMethod.asMethod() instanceof SqlInjectionMethod and
sinkMethod.asMethod().hasName("execute")
then
exists(SqlExecuteFlow::PathNode executeSrc, SqlExecuteFlow::PathNode executeSink |
SqlExecuteFlow::flowPath(executeSrc, executeSink)
|
exists(SqlExecuteFlow::PathNode executeSink | SqlExecuteFlow::flowPath(_, executeSink) |
sinkMethodCall.asCall() = executeSink.getNode().asExpr().(Argument).getCall()
)
else any()