From a6dfb8351c78e03546accb602195f426b69f7960 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 6 Oct 2025 11:39:54 +0200
Subject: [PATCH] JS: Add back CallReceiverStep() restriction

This was initially lost after rebasing with indentation changes
---
 javascript/ql/lib/semmle/javascript/ApiGraphs.qll | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/ApiGraphs.qll b/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
index ec1585df6f5..d802d538f23 100644
--- a/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
+++ b/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
@@ -1371,7 +1371,9 @@ module API {
         exists(DataFlow::TypeTracker t, StepSummary summary, DataFlow::SourceNode prev |
           prev = trackUseNode(nd, promisified, boundArgs, prop, t) and
           StepSummary::step(prev, res, summary) and
-          result = t.append(summary)
+          result = t.append(summary) and
+          // Block argument-passing into 'this' when it determines the call target
+          not summary = CallReceiverStep()
         )
       }
 
@@ -1434,7 +1436,9 @@ module API {
         exists(DataFlow::TypeBackTracker t, StepSummary summary, DataFlow::Node next |
           next = trackDefNode(nd, t) and
           StepSummary::step(prev, next, summary) and
-          result = t.prepend(summary)
+          result = t.prepend(summary) and
+          // Block argument-passing into 'this' when it determines the call target
+          not summary = CallReceiverStep()
         )
       }