File tree Expand file tree Collapse file tree 1 file changed +6
-11
lines changed
java/ql/src/experimental/Security/CWE/CWE-625 Expand file tree Collapse file tree 1 file changed +6
-11
lines changed Original file line number Diff line number Diff line change @@ -77,17 +77,12 @@ private class SpringUriInputParameterSource extends DataFlow::Node {
7777 */
7878private class CompileRegexSink extends DataFlow:: ExprNode {
7979 CompileRegexSink ( ) {
80- exists ( MethodCall ma , Method m | m = ma .getMethod ( ) |
81- (
82- ma .getArgument ( 0 ) = this .asExpr ( ) and
83- (
84- ma instanceof StringMatchesCall // input.matches(regexPattern)
85- or
86- ma instanceof PatternCompileCall // p = Pattern.compile(regexPattern)
87- or
88- ma instanceof PatternMatchesCall // p = Pattern.matches(regexPattern, input)
89- )
90- )
80+ exists ( MethodCall ma | ma .getArgument ( 0 ) = this .asExpr ( ) |
81+ ma instanceof StringMatchesCall // input.matches(regexPattern)
82+ or
83+ ma instanceof PatternCompileCall // p = Pattern.compile(regexPattern)
84+ or
85+ ma instanceof PatternMatchesCall // p = Pattern.matches(regexPattern, input)
9186 )
9287 }
9388}
You can’t perform that action at this time.
0 commit comments