Update javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll

asgerf · erik-krogh · web-flow · commit b28254327a9c · 2023-05-10T08:16:31.000+02:00
Co-authored-by: Erik Krogh Kristensen &lt;erik-krogh@github.com&gt;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll
@@ -58,7 +58,7 @@ module IndirectCommandInjection {
   }
 
   /** Gets a data flow node referring to `process.env`. */
-  DataFlow::SourceNode envObject() { result = envObject(DataFlow::TypeTracker::end()) }
+  private DataFlow::SourceNode envObject() { result = envObject(DataFlow::TypeTracker::end()) }
 
   /**
    * Gets the name of an environment variable that is assumed to be safe.

Original file line number	Diff line number	Diff line change
`@@ -58,7 +58,7 @@ module IndirectCommandInjection {`
`58`	`58`	`}`
`59`	`59`
`60`	`60`	/** Gets a data flow node referring to `process.env`. */
`61`		`- DataFlow::SourceNode envObject() { result = envObject(DataFlow::TypeTracker::end()) }`
	`61`	`+ private DataFlow::SourceNode envObject() { result = envObject(DataFlow::TypeTracker::end()) }`
`62`	`62`
`63`	`63`	`/**`
`64`	`64`	`* Gets the name of an environment variable that is assumed to be safe.`