Update ruby/ql/lib/codeql/ruby/experimental/UnicodeBypassValidationQuery.qll

Sim4n6 · aibaars · web-flow · commit eb7e1de65b58 · 2023-05-20T12:43:05.000+01:00
Co-authored-by: Arthur Baars &lt;aibaars@github.com&gt;
diff --git a/ruby/ql/lib/codeql/ruby/experimental/UnicodeBypassValidationQuery.qll b/ruby/ql/lib/codeql/ruby/experimental/UnicodeBypassValidationQuery.qll
@@ -50,7 +50,7 @@ class Configuration extends TaintTracking::Configuration {
   override predicate isSink(DataFlow::Node sink, DataFlow::FlowState state) {
     exists(DataFlow::CallNode cn |
       cn.getMethodName() = "unicode_normalize" and
-      cn.getArgument(0).toString() = [":nfkc", ":nfc"] and
+      cn.getArgument(0).getConstantValue().getSymbol() = [":nfkc", ":nfc"] and
       sink = cn.getReceiver()
     ) and
     state instanceof PostValidation
