Update javascript/ql/src/experimental/Security/CWE-94/ServerSideTemplateInjection.ql

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
2026-05-01 03:35:13 +02:00 · 2020-05-05 15:34:57 +03:00
parent a8019705b5
commit 758e85dd3e
1 changed files with 0 additions and 1 deletions
--- a/javascript/ql/src/experimental/Security/CWE-94/ServerSideTemplateInjection.ql
+++ b/javascript/ql/src/experimental/Security/CWE-94/ServerSideTemplateInjection.ql
@@ -29,7 +29,6 @@ class SSTIPugSink extends ServerSideTemplateInjectionSink {
      renderImport = moduleImport(["pug", "jade"]) and
      (
        compile = renderImport.getAMemberCall("compile") and
-        exists(compile.getACall())
        or
        compile = renderImport.getAMemberCall("render")
      ) and