hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-25 08:45:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update to new MethodCall name

Browse Source
This commit is contained in:
Ed Minnix
2023-10-25 23:13:15 -04:00
parent a1e9564cc5
commit e9ca4a25d4
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
java/ql/lib/semmle/code/java/security/WeakRandomnessQuery.qll
View File

@@ -51,10 +51,10 @@ abstract class WeakRandomnessSink extends DataFlow::Node { }
private class CookieSink extends WeakRandomnessSink {
CookieSink() {
this.getType() instanceof TypeCookie and
exists(MethodAccess ma |
ma.getMethod().hasQualifiedName("javax.servlet.http", "HttpServletResponse", "addCookie")
exists(MethodCall mc |
mc.getMethod().hasQualifiedName("javax.servlet.http", "HttpServletResponse", "addCookie")
|
ma.getArgument(0) = this.asExpr()
mc.getArgument(0) = this.asExpr()
)
}
}
@@ -71,7 +71,7 @@ private class CredentialsSink extends WeakRandomnessSink instanceof CredentialsS
private predicate covertsBytesToString(DataFlow::Node bytes, DataFlow::Node str) {
bytes.getType().(Array).getElementType().(PrimitiveType).hasName("byte") and
str.getType() instanceof TypeString and
exists(MethodAccess ma | ma = str.asExpr() | bytes.asExpr() = ma.getAnArgument())
exists(MethodCall mc | mc = str.asExpr() | bytes.asExpr() = mc.getAnArgument())
}
/**