Only flag up the deepest properties

2023-05-30 19:50:56 +01:00 · 2023-05-30 19:50:56 +01:00 · 86ead5e019
commit 86ead5e019
parent eb1c7a3887
1 changed files with 3 additions and 1 deletions
--- a/queries/default-setup-event-context.ql
+++ b/queries/default-setup-event-context.ql
@ -25,7 +25,9 @@ class EventContextAccessConfiguration extends DataFlow::Configuration {
  }

  override predicate isSink(DataFlow::Node sink, DataFlow::FlowLabel lbl) {
-    sink instanceof DataFlow::PropRead and lbl instanceof ParsedLabel
+    sink instanceof DataFlow::PropRead and
+    lbl instanceof ParsedLabel and
+    not exists(DataFlow::PropRead n | sink = n.getBase())
  }

  override predicate isAdditionalFlowStep(