Simplify StartsWithCheck

haby0 · haby0 · commit 8f2013c32ebd · 2022-03-30T19:04:03.000+08:00
diff --git a/python/ql/src/experimental/semmle/python/security/injection/CsvInjection.qll b/python/ql/src/experimental/semmle/python/security/injection/CsvInjection.qll
@@ -21,11 +21,16 @@ class CsvInjectionFlowConfig extends TaintTracking::Configuration {
   }
 }
 
-class StartsWithCheck extends DataFlow::BarrierGuard {
-  StartsWithCheck() { this.(CallNode).getNode().getFunc().(Attribute).getName() = "startswith" }
+private class StartsWithCheck extends DataFlow::BarrierGuard {
+  Attribute attr;
+
+  StartsWithCheck() {
+    this.(CallNode).getNode().getFunc() = attr and
+    attr.getName() = "startswith"
+  }
 
   override predicate checks(ControlFlowNode node, boolean branch) {
-    node = this.(CallNode).getNode().getFunc().(Attribute).getObject().getAFlowNode() and
+    node = attr.getObject().getAFlowNode() and
     branch = true
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -21,11 +21,16 @@ class CsvInjectionFlowConfig extends TaintTracking::Configuration {`
`21`	`21`	`}`
`22`	`22`	`}`
`23`	`23`
`24`		`-class StartsWithCheck extends DataFlow::BarrierGuard {`
`25`		`- StartsWithCheck() { this.(CallNode).getNode().getFunc().(Attribute).getName() = "startswith" }`
	`24`	`+private class StartsWithCheck extends DataFlow::BarrierGuard {`
	`25`	`+ Attribute attr;`
	`26`	`+`
	`27`	`+ StartsWithCheck() {`
	`28`	`+ this.(CallNode).getNode().getFunc() = attr and`
	`29`	`+ attr.getName() = "startswith"`
	`30`	`+ }`
`26`	`31`
`27`	`32`	`override predicate checks(ControlFlowNode node, boolean branch) {`
`28`		`- node = this.(CallNode).getNode().getFunc().(Attribute).getObject().getAFlowNode() and`
	`33`	`+ node = attr.getObject().getAFlowNode() and`
`29`	`34`	`branch = true`
`30`	`35`	`}`
`31`	`36`	`}`