Apply suggestions from code review

erik-krogh · asgerf · web-flow · commit 5e060fa6a87f · 2020-06-15T23:47:40.000+02:00
Co-authored-by: Asger F &lt;asgerf@github.com&gt;
diff --git a/javascript/ql/src/Security/CWE-829/InsecureDownload.qhelp b/javascript/ql/src/Security/CWE-829/InsecureDownload.qhelp
@@ -13,7 +13,7 @@
 	</overview>
 	<recommendation>
 		<p>
-			Use an transfer protocol that includes encryption when downloading executeables or other sensitive files.
+			Use a secure transfer protocol when downloading executeables or other sensitive files.
 		</p>
 	</recommendation>
 	<example>
diff --git a/javascript/ql/src/semmle/javascript/security/dataflow/InsecureDownload.qll b/javascript/ql/src/semmle/javascript/security/dataflow/InsecureDownload.qll
@@ -18,7 +18,7 @@ module InsecureDownload {
    * A taint tracking configuration for download of sensitive file through insecure connection.
    */
   class Configuration extends DataFlow::Configuration {
-    Configuration() { this = "HTTP/HTTPS" }
+    Configuration() { this = "InsecureDownload" }
 
     override predicate isSource(DataFlow::Node source) { source instanceof Source }
 
