From 890ca8e7d128fda92f88826fa8bb045bd749aadf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Wed, 8 Oct 2025 13:22:57 +0200
Subject: [PATCH] Actions/RequestForgeryQuery

actions/ql/src/experimental/Security/CWE-918/RequestForgery.ql uses source as endpoint
---
 actions/ql/lib/codeql/actions/security/RequestForgeryQuery.qll | 2 --
 1 file changed, 2 deletions(-)

diff --git a/actions/ql/lib/codeql/actions/security/RequestForgeryQuery.qll b/actions/ql/lib/codeql/actions/security/RequestForgeryQuery.qll
index d96a12e2608..fb89ebdc8ba 100644
--- a/actions/ql/lib/codeql/actions/security/RequestForgeryQuery.qll
+++ b/actions/ql/lib/codeql/actions/security/RequestForgeryQuery.qll
@@ -18,8 +18,6 @@ private module RequestForgeryConfig implements DataFlow::ConfigSig {
   predicate isSink(DataFlow::Node sink) { sink instanceof RequestForgerySink }
 
   predicate observeDiffInformedIncrementalMode() { any() }
-
-  Location getASelectedSourceLocation(DataFlow::Node sink) { none() }
 }
 
 /** Tracks flow of unsafe user input that is used to construct and evaluate a system command. */