From 953ff9f0d07227725deecf08596febcc1e28a9ce Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Fri, 13 Feb 2026 22:41:20 +0000
Subject: [PATCH] PatternAnnotation.getString() should only be field reads

---
 java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll b/java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll
index 92217938472..e1dacb6ed08 100644
--- a/java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll
@@ -182,7 +182,7 @@ class PatternAnnotation extends Annotation, RegexExecutionExpr::Range {
 
   override Expr getString() {
     // Annotation on field accessed by direct read - value of field will match regexp
-    result = this.getAnnotatedElement().(Field).getAnAccess()
+    result.(FieldRead).getField() = this.getAnnotatedElement()
     or
     // Annotation on field accessed by getter - value of field will match regexp
     result.(MethodCall).getMethod().(GetterMethod).getField() = this.getAnnotatedElement()