From 68df8028d21c289e00cf618862b9368cbffa838d Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 20 Jul 2021 14:47:16 +0200
Subject: [PATCH] Apply suggestions from code review

Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
---
 java/ql/src/semmle/code/java/security/MvelInjection.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/semmle/code/java/security/MvelInjection.qll b/java/ql/src/semmle/code/java/security/MvelInjection.qll
index 516a647d19b..984641fbd18 100644
--- a/java/ql/src/semmle/code/java/security/MvelInjection.qll
+++ b/java/ql/src/semmle/code/java/security/MvelInjection.qll
@@ -1,8 +1,8 @@
 /** Provides classes to reason about MVEL injection attacks. */
 
 import java
-import semmle.code.java.dataflow.DataFlow
-import semmle.code.java.dataflow.ExternalFlow
+private import semmle.code.java.dataflow.DataFlow
+private import semmle.code.java.dataflow.ExternalFlow
 
 /** A data flow sink for unvalidated user input that is used to construct MVEL expressions. */
 abstract class MvelEvaluationSink extends DataFlow::Node { }
@@ -184,7 +184,7 @@ private predicate templateCompileStep(DataFlow::Node node1, DataFlow::Node node2
 private class MvelScriptEngineCompilationMethod extends Method {
   MvelScriptEngineCompilationMethod() {
     getDeclaringType() instanceof MvelScriptEngine and
-    (hasName("compile") or hasName("compiledScript"))
+    hasName(["compile", "compiledScript"])
   }
 }