mirror of
https://github.com/github/codeql.git
synced 2025-12-17 17:23:36 +01:00
91a718cfe5
We were previously missing a data-flow edge from reflected calls to the corresponding reflective call, that is, for `f.call(...)` we didn't have a flow edge from the implicit call to `f` to the result of `f.call(...)`.
19 lines
228 B
JavaScript
19 lines
228 B
JavaScript
class A {
|
|
constructor(f) {
|
|
this._f = f;
|
|
|
|
}
|
|
|
|
m() {
|
|
return this._f;
|
|
}
|
|
}
|
|
|
|
var source = "source";
|
|
var a = new A(source);
|
|
var sink = a.m();
|
|
|
|
var source2 = "source2";
|
|
var a2 = new A(source2);
|
|
var sink2 = a.m.call(a2);
|