jorgectf
diff --git a/‎javascript/ql/lib/semmle/javascript/AMD.qll
Lines changed: 13 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/AMD.qll
Lines changed: 13 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/Closure.qll
Lines changed: 4 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/Closure.qll
Lines changed: 4 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/Modules.qll
Lines changed: 17 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/Modules.qll
Lines changed: 17 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/NodeJS.qll
Lines changed: 8 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/NodeJS.qll
Lines changed: 8 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/PackageExports.qll
Lines changed: 3 additions & 5 deletions b/‎javascript/ql/lib/semmle/javascript/PackageExports.qll
Lines changed: 3 additions & 5 deletions
@@ -313,6 +313,19 @@ class AmdModule extends Module {
       name = pwn.getPropertyName()
     )
   }
+
+  override DataFlow::Node getABulkExportedNode() {
+    // Assigned to `module.exports` via the factory's `module` parameter
+    exists(AbstractModuleObject m, DataFlow::PropWrite write |
+      m.getModule() = this and
+      write.getPropertyName() = "exports" and
+      write.getBase().analyze().getAValue() = m and
+      result = write.getRhs()
+    )
+    or
+    // Returned from factory function
+    result = getDefine().getModuleExpr().flow()
+  }
 }
 
 /**
 
@@ -177,6 +177,10 @@ module Closure {
         )
       )
     }
+
+    override DataFlow::Node getABulkExportedNode() {
+      result = getExportsVariable().getAnAssignedExpr().flow()
+    }
   }
 
   /**
 
@@ -111,6 +111,23 @@ abstract class Module extends TopLevel {
   cached
   abstract DataFlow::Node getAnExportedValue(string name);
 
+  /**
+   * Gets a value that is exported as the whole exports object of this module.
+   */
+  cached
+  DataFlow::Node getABulkExportedNode() { none() } // overridden in subclasses
+
+  /**
+   * Gets the ES2015 `default` export from this module, or for other types of modules,
+   * gets a bulk exported node.
+   *
+   * This can be used to determine which value a default-import will likely refer to,
+   * as the interaction between different module types is not standardized.
+   */
+  DataFlow::Node getDefaultOrBulkExport() {
+    result = [getAnExportedValue("default"), getABulkExportedNode()]
+  }
+
   /**
    * Gets the root folder relative to which the given import path (which must
    * appear in this module) is resolved.
 
@@ -99,6 +99,14 @@ class NodeModule extends Module {
     )
   }
 
+  override DataFlow::Node getABulkExportedNode() {
+    exists(DataFlow::PropWrite write |
+      write.getBase().asExpr() = getModuleVariable().getAnAccess() and
+      write.getPropertyName() = "exports" and
+      result = write.getRhs()
+    )
+  }
+
   /** Gets a symbol that the module object inherits from its prototypes. */
   private string getAnImplicitlyExportedSymbol() {
     exists(ExternalConstructor ec | ec = getPrototypeOfExportedExpr() |
 
@@ -164,11 +164,9 @@ private DataFlow::Node getAValueExportedByPackage() {
  * Gets an exported node from the module `mod`.
  */
 private DataFlow::Node getAnExportFromModule(Module mod) {
-  result.analyze().getAValue() = mod.(NodeModule).getAModuleExportsValue()
-  or
-  result = mod.(Closure::ClosureModule).getExportsVariable().getAnAssignedExpr().flow()
+  result = mod.getAnExportedValue(_)
   or
-  result.analyze().getAValue() = mod.(AmdModule).getDefine().getAModuleExportsValue()
+  result = mod.getABulkExportedNode()
   or
-  result = mod.getAnExportedValue(_)
+  result.analyze().getAValue() = TAbstractModuleObject(mod)
 }
Original file line number	Diff line number	Diff line change
`@@ -313,6 +313,19 @@ class AmdModule extends Module {`
`313`	`313`	`name = pwn.getPropertyName()`
`314`	`314`	`)`
`315`	`315`	`}`
	`316`	`+`
	`317`	`+ override DataFlow::Node getABulkExportedNode() {`
	`318`	+ // Assigned to `module.exports` via the factory's `module` parameter
	`319`	`+ exists(AbstractModuleObject m, DataFlow::PropWrite write \|`
	`320`	`+ m.getModule() = this and`
	`321`	`+ write.getPropertyName() = "exports" and`
	`322`	`+ write.getBase().analyze().getAValue() = m and`
	`323`	`+ result = write.getRhs()`
	`324`	`+ )`
	`325`	`+ or`
	`326`	`+ // Returned from factory function`
	`327`	`+ result = getDefine().getModuleExpr().flow()`
	`328`	`+ }`
`316`	`329`	`}`
`317`	`330`
`318`	`331`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -177,6 +177,10 @@ module Closure {`
`177`	`177`	`)`
`178`	`178`	`)`
`179`	`179`	`}`
	`180`	`+`
	`181`	`+ override DataFlow::Node getABulkExportedNode() {`
	`182`	`+ result = getExportsVariable().getAnAssignedExpr().flow()`
	`183`	`+ }`
`180`	`184`	`}`
`181`	`185`
`182`	`186`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -99,6 +99,14 @@ class NodeModule extends Module {`
`99`	`99`	`)`
`100`	`100`	`}`
`101`	`101`
	`102`	`+ override DataFlow::Node getABulkExportedNode() {`
	`103`	`+ exists(DataFlow::PropWrite write \|`
	`104`	`+ write.getBase().asExpr() = getModuleVariable().getAnAccess() and`
	`105`	`+ write.getPropertyName() = "exports" and`
	`106`	`+ result = write.getRhs()`
	`107`	`+ )`
	`108`	`+ }`
	`109`	`+`
`102`	`110`	`/** Gets a symbol that the module object inherits from its prototypes. */`
`103`	`111`	`private string getAnImplicitlyExportedSymbol() {`
`104`	`112`	`exists(ExternalConstructor ec \| ec = getPrototypeOfExportedExpr() \|`