Convert more to using better predicate calls

jeongsoolee09 · jeongsoolee09 · commit 8c08f3dd4944 · 2025-10-01T14:04:56.000-04:00
diff --git a/javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/RemoteFlowSources.qll b/javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/RemoteFlowSources.qll
@@ -133,21 +133,17 @@ private class RouteParameterAccess extends RemoteFlowSource instanceof PropRead
   override string getSourceType() { result = "RouteParameterAccess" }
 
   RouteParameterAccess() {
-    exists(
-      ControllerHandler handler, RouteManifest routeManifest, ParameterNode handlerParameter,
-      MethodCallNode getParameterCall
-    |
+    exists(ControllerHandler handler, RouteManifest routeManifest, MethodCallNode getParameterCall |
       handler.isAttachedToRoute(routeManifest.getName()) and
       this.asExpr().getEnclosingFunction() = handler.getFunction() and
-      handlerParameter = handler.getParameter(0) and
-      getParameterCall.getMethodName() = "getParameter" and
-      getParameterCall.getReceiver().getALocalSource() = handlerParameter and
+      getParameterCall = handler.getParameter(0).getAMemberCall("getParameter") and
       (
-        routeManifest.matchesPathString(this.getPropertyName()) and
-        this.getBase().getALocalSource() = getParameterCall
+        exists(string path |
+          this = getParameterCall.getAPropertyRead(path) and
+          routeManifest.matchesPathString(path)
+        )
         or
-        /* TODO: Why does `routeManifest.matchesPathString` not work for propertyName?? */
-        this.getBase().(PropRead).getBase().getALocalSource() = getParameterCall
+        this = getParameterCall.getAPropertyRead().getAPropertyRead()
       )
     )
   }
@@ -157,10 +153,8 @@ private class DisplayEventHandlerParameterAccess extends RemoteFlowSource instan
   override string getSourceType() { result = "DisplayEventHandlerParameterAccess" }
 
   DisplayEventHandlerParameterAccess() {
-    exists(DisplayEventHandler handler, MethodCallNode getParameterCall |
-      getParameterCall.getMethodName() = "getParameter" and
-      this.getBase().getALocalSource() = getParameterCall and
-      handler.getParameter(0) = getParameterCall.getReceiver().getALocalSource()
+    exists(DisplayEventHandler handler |
+      this = handler.getParameter(0).getAMemberCall("getParameter").getAPropertyRead()
     )
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -133,21 +133,17 @@ private class RouteParameterAccess extends RemoteFlowSource instanceof PropRead`
`133`	`133`	`override string getSourceType() { result = "RouteParameterAccess" }`
`134`	`134`
`135`	`135`	`RouteParameterAccess() {`
`136`		`- exists(`
`137`		`- ControllerHandler handler, RouteManifest routeManifest, ParameterNode handlerParameter,`
`138`		`- MethodCallNode getParameterCall`
`139`		`- \|`
	`136`	`+ exists(ControllerHandler handler, RouteManifest routeManifest, MethodCallNode getParameterCall \|`
`140`	`137`	`handler.isAttachedToRoute(routeManifest.getName()) and`
`141`	`138`	`this.asExpr().getEnclosingFunction() = handler.getFunction() and`
`142`		`- handlerParameter = handler.getParameter(0) and`
`143`		`- getParameterCall.getMethodName() = "getParameter" and`
`144`		`- getParameterCall.getReceiver().getALocalSource() = handlerParameter and`
	`139`	`+ getParameterCall = handler.getParameter(0).getAMemberCall("getParameter") and`
`145`	`140`	`(`
`146`		`- routeManifest.matchesPathString(this.getPropertyName()) and`
`147`		`- this.getBase().getALocalSource() = getParameterCall`
	`141`	`+ exists(string path \|`
	`142`	`+ this = getParameterCall.getAPropertyRead(path) and`
	`143`	`+ routeManifest.matchesPathString(path)`
	`144`	`+ )`
`148`	`145`	`or`
`149`		- /* TODO: Why does `routeManifest.matchesPathString` not work for propertyName?? */
`150`		`- this.getBase().(PropRead).getBase().getALocalSource() = getParameterCall`
	`146`	`+ this = getParameterCall.getAPropertyRead().getAPropertyRead()`
`151`	`147`	`)`
`152`	`148`	`)`
`153`	`149`	`}`
`@@ -157,10 +153,8 @@ private class DisplayEventHandlerParameterAccess extends RemoteFlowSource instan`
`157`	`153`	`override string getSourceType() { result = "DisplayEventHandlerParameterAccess" }`
`158`	`154`
`159`	`155`	`DisplayEventHandlerParameterAccess() {`
`160`		`- exists(DisplayEventHandler handler, MethodCallNode getParameterCall \|`
`161`		`- getParameterCall.getMethodName() = "getParameter" and`
`162`		`- this.getBase().getALocalSource() = getParameterCall and`
`163`		`- handler.getParameter(0) = getParameterCall.getReceiver().getALocalSource()`
	`156`	`+ exists(DisplayEventHandler handler \|`
	`157`	`+ this = handler.getParameter(0).getAMemberCall("getParameter").getAPropertyRead()`
`164`	`158`	`)`
`165`	`159`	`}`
`166`	`160`	`}`