Change from getParameter() to getArgument()

2026-04-25 08:45:14 +02:00 · 2025-01-06 15:43:47 +00:00
parent aba8be2902
commit 8dac00aa83
1 changed files with 1 additions and 1 deletions
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -266,7 +266,7 @@ module DomBasedXss {
              .getMember("setProperty")
              .getACall() and
        this = setProperty.getParameter(2).asSink() and
-        setProperty.getParameter(1).asSink().asExpr().(StringLiteral).getValue() = "innerHTML"
+        setProperty.getArgument(1).getStringValue() = "innerHTML"
      )
    }
  }