Apply review suggestions

joefarebrother · joefarebrother · commit f48b57c95ad8 · 2022-11-16T10:54:13.000Z
diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -2,24 +2,23 @@
 
 import java
 import semmle.code.java.security.SensitiveActions
+import semmle.code.xml.AndroidManifest
 
 /** An Android Layout XML file. */
-class AndroidLayoutXmlFile extends XmlFile {
-  AndroidLayoutXmlFile() { this.getAbsolutePath().matches("%/res/layout/%.xml") }
+private class AndroidLayoutXmlFile extends XmlFile {
+  AndroidLayoutXmlFile() { this.getRelativePath().matches("%/res/layout/%.xml") }
 }
 
 /** An XML element that represents an editable text field. */
 class AndroidEditableXmlElement extends XmlElement {
-  XmlAttribute inputType;
-  XmlAttribute id;
+  AndroidXmlAttribute inputType;
+  AndroidXmlAttribute id;
 
   AndroidEditableXmlElement() {
     this.getFile() instanceof AndroidLayoutXmlFile and
     inputType = this.getAnAttribute() and
-    inputType.getNamespace().getPrefix() = "android" and
     inputType.getName() = "inputType" and
     id = this.getAnAttribute() and
-    id.getNamespace().getPrefix() = "android" and
     id.getName() = "id"
   }
 
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -7,7 +7,7 @@
  * @id java/android/sensitive-keyboard-cache
  * @tags security
  *       external/cwe/cwe-524
- * @precision high
+ * @precision medium
  */
 
 import java
