Debug query according to the new test cases

jeongsoolee09 · jeongsoolee09 · commit 0004b882720a · 2025-06-26T13:05:54.000-04:00
diff --git a/javascript/frameworks/cap/lib/advanced_security/javascript/frameworks/cap/CAPCqlInjectionQuery.qll b/javascript/frameworks/cap/lib/advanced_security/javascript/frameworks/cap/CAPCqlInjectionQuery.qll
@@ -31,13 +31,18 @@ class CqlClauseWithStringConcatParameter instanceof CqlClause {
  * concatenation expression.
  */
 class CqlShortcutMethodCallWithStringConcat instanceof CqlShortcutMethodCall {
+  DataFlow::Node stringConcatParameter; 
+
   CqlShortcutMethodCallWithStringConcat() {
-    exists(StringConcatenation::getAnOperand(super.getAQueryParameter()))
+    stringConcatParameter = super.getAQueryParameter() and
+    exists(StringConcatenation::getAnOperand(stringConcatParameter))
   }
 
   Location getLocation() { result = super.getLocation() }
 
   string toString() { result = super.toString() }
+
+  DataFlow::Node getStringConcatParameter() { result = stringConcatParameter }
 }
 
 /**
@@ -66,7 +71,7 @@ class CqlInjectionConfiguration extends TaintTracking::Configuration {
     )
     or
     exists(CqlShortcutMethodCallWithStringConcat queryRunnerCall |
-      node = queryRunnerCall.(CqlQueryRunnerCall).getAQueryParameter()
+      node = queryRunnerCall.getStringConcatParameter()
     )
     or
     exists(AwaitExpr await, CqlClauseWithStringConcatParameter cqlClauseWithStringConcat |
