don't have a MembershipTestBarrierGuard in Configuration.qll

erik-krogh · erik-krogh · commit ed4e1bbbdfc4 · 2020-06-04T16:13:49.000+02:00
diff --git a/javascript/ql/src/semmle/javascript/dataflow/Configuration.qll b/javascript/ql/src/semmle/javascript/dataflow/Configuration.qll
@@ -1814,19 +1814,3 @@ class VarAccessBarrier extends DataFlow::Node {
     )
   }
 }
-
-/**
- * A check of the form `whitelist.includes(x)` or equivalent, which sanitizes `x` in its "then" branch.
- *
- * Can be added to `isBarrierGuard` in a data-flow configuration to block flow through such checks.
- */
-class MembershipTestBarrierGuard extends BarrierGuardNode {
-  MembershipCandidate candidate;
-
-  MembershipTestBarrierGuard() { this = candidate.getTest() }
-
-  override predicate blocks(boolean outcome, Expr e) {
-    candidate = e.flow() and
-    candidate.getTestPolarity() = outcome
-  }
-}
diff --git a/javascript/ql/src/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll b/javascript/ql/src/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
@@ -373,9 +373,14 @@ module TaintedPath {
   /**
    * A check of the form `whitelist.includes(x)` or equivalent, which sanitizes `x` in its "then" branch.
    */
-  class MembershipTestBarrierGuard extends BarrierGuardNode, DataFlow::MembershipTestBarrierGuard {
+  class MembershipTestBarrierGuard extends BarrierGuardNode {
+    MembershipCandidate candidate;
+
+    MembershipTestBarrierGuard() { this = candidate.getTest() }
+
     override predicate blocks(boolean outcome, Expr e) {
-      DataFlow::MembershipTestBarrierGuard.super.blocks(outcome, e)
+      candidate = e.flow() and
+      candidate.getTestPolarity() = outcome
     }
   }
 
