fix a mistake :(

am0o0 · am0o0 · commit 8fccd65d34a2 · 2023-06-26T16:51:14.000+10:00
diff --git a/python/ql/src/experimental/Security/CWE-409/DecompressionBombs.ql b/python/ql/src/experimental/Security/CWE-409/DecompressionBombs.ql
@@ -502,8 +502,8 @@ module BombsConfig implements DataFlow::ConfigSig {
   predicate isSink(DataFlow::Node sink) {
     sink =
       [
-        PyZipFile::isSink(), ZipFile::isSink(), Gzip::isSink(), Lzma::isSink(), Bz2::isSink(),
-        TarFile::isSink(), Shutil::isSink(), Pandas::isSink()
+        ZipFile::isSink(), Gzip::isSink(), Lzma::isSink(), Bz2::isSink(), TarFile::isSink(),
+        Shutil::isSink(), Pandas::isSink()
       ] and
     exists(sink.getLocation().getFile().getRelativePath())
   }
@@ -512,7 +512,6 @@ module BombsConfig implements DataFlow::ConfigSig {
     (
       isAdditionalTaintStepTextIOWrapper(nodeFrom, nodeTo) or
       ZipFile::isAdditionalTaintStep(nodeFrom, nodeTo) or
-      PyZipFile::isAdditionalTaintStep(nodeFrom, nodeTo) or
       TarFile::isAdditionalTaintStep(nodeFrom, nodeTo)
     ) and
     exists(nodeTo.getLocation().getFile().getRelativePath())

Original file line number	Diff line number	Diff line change
`@@ -502,8 +502,8 @@ module BombsConfig implements DataFlow::ConfigSig {`
`502`	`502`	`predicate isSink(DataFlow::Node sink) {`
`503`	`503`	`sink =`
`504`	`504`	`[`
`505`		`- PyZipFile::isSink(), ZipFile::isSink(), Gzip::isSink(), Lzma::isSink(), Bz2::isSink(),`
`506`		`- TarFile::isSink(), Shutil::isSink(), Pandas::isSink()`
	`505`	`+ ZipFile::isSink(), Gzip::isSink(), Lzma::isSink(), Bz2::isSink(), TarFile::isSink(),`
	`506`	`+ Shutil::isSink(), Pandas::isSink()`
`507`	`507`	`] and`
`508`	`508`	`exists(sink.getLocation().getFile().getRelativePath())`
`509`	`509`	`}`
`@@ -512,7 +512,6 @@ module BombsConfig implements DataFlow::ConfigSig {`
`512`	`512`	`(`
`513`	`513`	`isAdditionalTaintStepTextIOWrapper(nodeFrom, nodeTo) or`
`514`	`514`	`ZipFile::isAdditionalTaintStep(nodeFrom, nodeTo) or`
`515`		`- PyZipFile::isAdditionalTaintStep(nodeFrom, nodeTo) or`
`516`	`515`	`TarFile::isAdditionalTaintStep(nodeFrom, nodeTo)`
`517`	`516`	`) and`
`518`	`517`	`exists(nodeTo.getLocation().getFile().getRelativePath())`