From b83e35c3ad1244f16480cc2d0ecfd152f1bb42d5 Mon Sep 17 00:00:00 2001
From: Chris Smowton <chris@smowton.net>
Date: Fri, 10 Jan 2025 18:49:50 +0000
Subject: [PATCH] Filter revFlowParamToReturn using flowThroughIntoCall

---
 shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll b/shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll
index c6a16a0e15d..c87640678e4 100644
--- a/shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll
+++ b/shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll
@@ -2405,7 +2405,8 @@ module MakeImpl<LocationSig Location, InputSig<Location> Lang> {
           revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos),
             apSome(returnAp), pragma[only_bind_into](ap)) and
           parameterFlowThroughAllowed(p, pos.getKind()) and
-          PrevStage::parameterMayFlowThrough(p, isNil(ap))
+          PrevStage::parameterMayFlowThrough(p, isNil(ap)) and
+          flowThroughIntoCall(_, _, p, ap, returnAp) and
         }
 
         pragma[nomagic]