Update generic-path-traversal.yaml

file/nodejs/generic-path-traversal.yaml

@@ -14,26 +14,8 @@ file:
     matchers:
       - type: regex
         regex:
-          - "function \\(\\$REQ, \\$RES, ...\\) {...}"
+          - "[^\\.]*\\.createReadStream\\([^\\)]*\\, <[\\s\\S]*?\\> [^\\)]*\\)"
-          - "function \\$FUNC\\(\\$REQ, \\$RES, ...\\) {...}"
+          - "[^\\.]*\\.readFile\\([^\\)]*\\, <[\\s\\S]*?\\> [^\\)]*\\)"
-          - "\\$X = function \\$FUNC\\(\\$REQ, \\$RES, ...\\) {...}"
+          - "[^\\.]*\\.readFileSync\\([^\\)]*\\, <[\\s\\S]*?\\> [^\\)]*\\)"
-          - "var \\$X = function \\$FUNC\\(\\$REQ, \\$RES, ...\\) {...};"
+          - "[^\\.]*\\.readFileAsync\\([^\\)]*\\, <[\\s\\S]*?\\> [^\\)]*\\)"
-          - "\\$APP.\\$METHOD\\(..., function \\$FUNC\\(\\$REQ, \\$RES, ...\\) {...}\\)"
-          - "\\$X\\.createReadStream\\(..., <... \\$REQ\\.\\$QUERY\\.\\$VAR ...>, ...\\)"
-          - "\\$X\\.createReadStream\\(..., <... \\$REQ\\.\\$QUERY ...>, ...\\)"
-          - "\\$X\\.readFile\\(..., <... \\$REQ\\.\\$QUERY\\.\\$VAR ...>, ...\\)"
-          - "\\$X\\.readFile\\(..., <... \\$REQ\\.\\$QUERY ...>, ...\\)"
-          - "\\$X\\.readFileSync\\(..., <... \\$REQ\\.\\$QUERY\\.\\$VAR ...>, ...\\)"
-          - "\\$X\\.readFileSync\\(..., <... \\$REQ\\.\\$QUERY ...>, ...\\)"
-          - "\\$X\\.readFileAsync\\(..., <... \\$REQ\\.\\$QUERY\\.\\$VAR ...>, ...\\)"
-          - "\\$X\\.readFileAsync\\(..., <... \\$REQ\\.\\$QUERY ...>, ...\\)"
-          - "\\$INP = <... \\$REQ\\.\\$QUERY\\.\\$VAR ...>\\;"
-          - "\\$X\\.createReadStream\\(..., <... \\$INP ...>, ...\\)"
-          - "\\$INP = <... \\$REQ\\.\\$QUERY ...>\\;"
-          - "\\$X\\.readFile\\(..., <... \\$INP ...>, ...\\)"
-          - "\\$X\\.readFileSync\\(..., <... \\$INP ...>, ...\\)"
-          - "\\$Y = \\$REQ\\.\\$QUERY\\.\\$VAR\\;"
-          - "\\$INP = <... \\$Y ...>\\;"
-          - "\\$Y = \\$REQ\\.\\$QUERY\\;"
-          - "\\$X\\.readFileAsync\\(..., <... \\$INP ...>, ...\\)"
         condition: or