michaelnebel
diff --git a/‎ruby/ql/lib/change-notes/2022-12-14-constructor-flow.md
Lines changed: 14 additions & 0 deletions b/‎ruby/ql/lib/change-notes/2022-12-14-constructor-flow.md
Lines changed: 14 additions & 0 deletions
diff --git a/‎ruby/ql/lib/codeql/ruby/ast/Call.qll
Lines changed: 5 additions & 2 deletions b/‎ruby/ql/lib/codeql/ruby/ast/Call.qll
Lines changed: 5 additions & 2 deletions
@@ -0,0 +1,14 @@
+---
+ category: majorAnalysis
+---
+ * Flow through `initialize` constructors is now taken into account. For example, in
+ ```rb
+class C
+  def initialize(x)
+    @field = x
+  end
+end
+
+C.new(y)
+```
+there will be flow from `y` to the field `@field` on the constructed `C` object.
@@ -53,9 +53,12 @@ class Call extends Expr instanceof CallImpl {
 
   /** Gets a potential target of this call, if any. */
   final Callable getATarget() {
-    exists(DataFlowCall c | this = c.asCall().getExpr() |
-      TCfgScope(result) = [viableCallable(c), viableCallableLambda(c, _)]
+    exists(DataFlowCall c |
+      this = c.asCall().getExpr() and
+      TCfgScope(result) = viableCallableLambda(c, _)
     )
+    or
+    result = getTarget(this.getAControlFlowNode())
   }
 
   override AstNode getAChild(string pred) {
Original file line number	Diff line number	Diff line change
`@@ -53,9 +53,12 @@ class Call extends Expr instanceof CallImpl {`
`53`	`53`
`54`	`54`	`/** Gets a potential target of this call, if any. */`
`55`	`55`	`final Callable getATarget() {`
`56`		`- exists(DataFlowCall c \| this = c.asCall().getExpr() \|`
`57`		`- TCfgScope(result) = [viableCallable(c), viableCallableLambda(c, _)]`
	`56`	`+ exists(DataFlowCall c \|`
	`57`	`+ this = c.asCall().getExpr() and`
	`58`	`+ TCfgScope(result) = viableCallableLambda(c, _)`
`58`	`59`	`)`
	`60`	`+ or`
	`61`	`+ result = getTarget(this.getAControlFlowNode())`
`59`	`62`	`}`
`60`	`63`
`61`	`64`	`override AstNode getAChild(string pred) {`