Make StoredXss use new API

Author: owen-mc

go/ql/lib/semmle/go/security/StoredXss.qll

@@ -17,9 +17,11 @@ module StoredXss {
   import StoredXssCustomizations::StoredXss
 
   /**
+   * DEPRECATED: Use `Flow` instead.
+   *
    * A taint-tracking configuration for reasoning about XSS.
    */
-  class Configuration extends TaintTracking::Configuration {
+  deprecated class Configuration extends TaintTracking::Configuration {
     Configuration() { this = "StoredXss" }
 
     override predicate isSource(DataFlow::Node source) { source instanceof Source }
@@ -35,4 +37,14 @@ module StoredXss {
       guard instanceof SanitizerGuard
     }
   }
+
+  private module Config implements DataFlow::ConfigSig {
+    predicate isSource(DataFlow::Node source) { source instanceof Source }
+
+    predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
+
+    predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }
+  }
+
+  module Flow = TaintTracking::Global<Config>;
 }

go/ql/src/Security/CWE-079/StoredXss.ql

@@ -13,10 +13,10 @@
  */
 
 import go
-import semmle.go.security.StoredXss::StoredXss
-import DataFlow::PathGraph
+import semmle.go.security.StoredXss
+import StoredXss::Flow::PathGraph
 
-from Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink
-where cfg.hasFlowPath(source, sink)
+from StoredXss::Flow::PathNode source, StoredXss::Flow::PathNode sink
+where StoredXss::Flow::flowPath(source, sink)
 select sink.getNode(), source, sink, "Stored cross-site scripting vulnerability due to $@.",
   source.getNode(), "stored value"