refactor isSanitizerEdge in clear-text-logging

erik-krogh · erik-krogh · commit 2bd48db8cd0b · 2019-11-16T15:20:42.000+01:00
diff --git a/javascript/ql/src/semmle/javascript/security/dataflow/CleartextLogging.qll b/javascript/ql/src/semmle/javascript/security/dataflow/CleartextLogging.qll
@@ -36,10 +36,8 @@ module CleartextLogging {
 
     override predicate isSanitizerEdge(DataFlow::Node pred, DataFlow::Node succ, DataFlow::FlowLabel lbl) {
       // Only unknown property reads on `process.env` propagate taint.
-      not lbl instanceof ProcessEnvLabel and 
+      (not lbl instanceof ProcessEnvLabel or exists(succ.(DataFlow::PropRead).getPropertyName())) and 
       succ.(DataFlow::PropRead).getBase() = pred
-      or 
-      exists(succ.(DataFlow::PropRead).getPropertyName())
     }
        
     override predicate isAdditionalFlowStep(
