JS: Follow naming convention in InsecureModuleFlow module

asgerf · asgerf · commit 4e25036cdcb2 · 2024-12-13T11:09:59.000+01:00
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownloadQuery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownloadQuery.qll
@@ -29,7 +29,7 @@ module InsecureDownloadConfig implements DataFlow::StateConfigSig {
 /**
  * Taint tracking for download of sensitive file through insecure connection.
  */
-module InsecureDownload = DataFlow::GlobalWithState<InsecureDownloadConfig>;
+module InsecureDownloadFlow = DataFlow::GlobalWithState<InsecureDownloadConfig>;
 
 /**
  * DEPRECATED. Use the `InsecureDownload` module instead.
diff --git a/javascript/ql/src/Security/CWE-829/InsecureDownload.ql b/javascript/ql/src/Security/CWE-829/InsecureDownload.ql
@@ -13,9 +13,9 @@
 
 import javascript
 import semmle.javascript.security.dataflow.InsecureDownloadQuery
-import DataFlow::DeduplicatePathGraph<InsecureDownload::PathNode, InsecureDownload::PathGraph>
+import DataFlow::DeduplicatePathGraph<InsecureDownloadFlow::PathNode, InsecureDownloadFlow::PathGraph>
 
 from PathNode source, PathNode sink
-where InsecureDownload::flowPath(source.getAnOriginalPathNode(), sink.getAnOriginalPathNode())
+where InsecureDownloadFlow::flowPath(source.getAnOriginalPathNode(), sink.getAnOriginalPathNode())
 select sink.getNode(), source, sink, "$@ of sensitive file from $@.",
   sink.getNode().(Sink).getDownloadCall(), "Download", source.getNode(), "HTTP source"
