PS: Don't raise an alert on all call operator node arguments.

MathiasVP · MathiasVP · commit a382d08915a3 · 2024-11-11T15:25:18.000Z
diff --git a/powershell/ql/lib/semmle/code/powershell/security/CommandInjectionCustomizations.qll b/powershell/ql/lib/semmle/code/powershell/security/CommandInjectionCustomizations.qll
@@ -39,10 +39,7 @@ module CommandInjection {
     SystemCommandExecutionSink() {
       // An argument to a call
       exists(DataFlow::CallNode call |
-        call.getName() = "Invoke-Expression"
-        or
-        call instanceof DataFlow::CallOperatorNode
-      |
+        call.getName() = "Invoke-Expression" and
         call.getAnArgument() = this
       )
       or
