Replace regex

dellalibera · dellalibera · commit d4b231b86796 · 2020-08-16T14:48:26.000+02:00
diff --git a/javascript/ql/src/experimental/Security/CWE-614/InsecureCookie.qll b/javascript/ql/src/experimental/Security/CWE-614/InsecureCookie.qll
@@ -112,7 +112,7 @@ module InsecureCookie {
       // A cookie is insecure if the 'secure' flag is not specified in the cookie definition.
       not exists(string s |
         getCookieOptionsArgument().mayHaveStringValue(s) and
-        s.matches("%; secure%")
+        s.regexpMatch("(.*;)?\\s*secure.*")
       )
     }
   }

Original file line number	Diff line number	Diff line change
`@@ -112,7 +112,7 @@ module InsecureCookie {`
`112`	`112`	`// A cookie is insecure if the 'secure' flag is not specified in the cookie definition.`
`113`	`113`	`not exists(string s \|`
`114`	`114`	`getCookieOptionsArgument().mayHaveStringValue(s) and`
`115`		`- s.matches("%; secure%")`
	`115`	`+ s.regexpMatch("(.;)?\\ssecure.*")`
`116`	`116`	`)`
`117`	`117`	`}`
`118`	`118`	`}`