From aff848b038cffd9fbd3b4eb44bb6d40e45a1efd8 Mon Sep 17 00:00:00 2001
From: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
Date: Thu, 26 Oct 2023 13:06:52 +0100
Subject: [PATCH] Update
 javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .../security/dataflow/MissingRateLimiting.qll         | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll
index dcda29542f5..5f4ad1b3d73 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll
@@ -115,12 +115,11 @@ abstract class RateLimitingMiddleware extends DataFlow::SourceNode {
  */
 class ExpressRateLimit extends RateLimitingMiddleware {
   ExpressRateLimit() {
-    exists(API::Node rateLimitImport, API::Node rateLimit |
-      rateLimitImport = API::moduleImport("express-rate-limit") and
-      rateLimit in [rateLimitImport, rateLimitImport.getMember("rateLimit")]
-    |
-      this = rateLimit.getReturn().asSource()
-    )
+    this =
+      [
+        API::moduleImport("express-rate-limit"),
+        API::moduleImport("express-rate-limit").getMember("rateLimit")
+      ].getReturn().asSource()
   }
 }