From 63ee51a4e27aa757402b10b7fbb451fd6cb29598 Mon Sep 17 00:00:00 2001
From: Rasmus Lerchedahl Petersen <yoff@github.com>
Date: Wed, 28 Sep 2022 11:40:06 +0200
Subject: [PATCH] Python: inline `mongoCollectionMethod`

---
 .../semmle/python/frameworks/NoSQL.qll        | 21 ++++---------------
 1 file changed, 4 insertions(+), 17 deletions(-)

diff --git a/python/ql/src/experimental/semmle/python/frameworks/NoSQL.qll b/python/ql/src/experimental/semmle/python/frameworks/NoSQL.qll
index bf2caaced5e..ed0ce0315df 100644
--- a/python/ql/src/experimental/semmle/python/frameworks/NoSQL.qll
+++ b/python/ql/src/experimental/semmle/python/frameworks/NoSQL.qll
@@ -101,21 +101,6 @@ private module NoSql {
     }
   }
 
-  /**
-   * Gets a reference to a `Mongo` collection method.
-   *
-   * ```py
-   * from flask_pymongo import PyMongo
-   * mongo = PyMongo(app)
-   * mongo.db.user.find({'name': safe_search})
-   * ```
-   *
-   * `mongo.db.user.find` would be a collection method.
-   */
-  private API::Node mongoCollectionMethod() {
-    result = mongoCollection().getMember(any(MongoCollectionMethodNames m))
-  }
-
   /**
    * Gets a reference to a `Mongo` collection method call
    *
@@ -125,10 +110,12 @@ private module NoSql {
    * mongo.db.user.find({'name': safe_search})
    * ```
    *
-   * `mongo.db.user.find({'name': safe_search})` would be a collection method call, and so the result.
+   * `mongo.db.user.find({'name': safe_search})` would be a collection method call.
    */
   private class MongoCollectionCall extends DataFlow::CallCfgNode, NoSqlQuery::Range {
-    MongoCollectionCall() { this = mongoCollectionMethod().getACall() }
+    MongoCollectionCall() {
+      this = mongoCollection().getMember(any(MongoCollectionMethodNames m)).getACall()
+    }
 
     override DataFlow::Node getQuery() { result = this.getArg(0) }
   }