From e6cd337e30962cc0982d51fa03beedcc6bc70e3d Mon Sep 17 00:00:00 2001
From: David Guevara <datwaftx@gmail.com>
Date: Fri, 5 Apr 2024 02:01:19 -0600
Subject: fix(bash): fix printf injection queries (#6405)

---
 queries/bash/injections.scm | 36 +++++++++++++++++++++++++++---------
 1 file changed, 27 insertions(+), 9 deletions(-)

(limited to 'queries/bash')

diff --git a/queries/bash/injections.scm b/queries/bash/injections.scm
index 169ad1358..2f385bfdc 100644
--- a/queries/bash/injections.scm
+++ b/queries/bash/injections.scm
@@ -14,9 +14,15 @@
   name: (command_name) @_command
   .
   argument: [
-    (string)
-    (raw_string)
-  ] @injection.content)
+    (string
+      (string_content) @injection.content)
+    (concatenation
+      (string
+        (string_content) @injection.content))
+    (raw_string) @injection.content
+    (concatenation
+      (raw_string) @injection.content)
+  ])
   (#eq? @_command "printf")
   (#set! injection.language "printf"))
 
@@ -28,9 +34,15 @@
   (_)
   .
   argument: [
-    (string)
-    (raw_string)
-  ] @injection.content)
+    (string
+      (string_content) @injection.content)
+    (concatenation
+      (string
+        (string_content) @injection.content))
+    (raw_string) @injection.content
+    (concatenation
+      (raw_string) @injection.content)
+  ])
   (#eq? @_command "printf")
   (#eq? @_arg "-v")
   (#set! injection.language "printf"))
@@ -41,9 +53,15 @@
   argument: (word) @_arg
   .
   argument: [
-    (string)
-    (raw_string)
-  ] @injection.content)
+    (string
+      (string_content) @injection.content)
+    (concatenation
+      (string
+        (string_content) @injection.content))
+    (raw_string) @injection.content
+    (concatenation
+      (raw_string) @injection.content)
+  ])
   (#eq? @_command "printf")
   (#eq? @_arg "--")
   (#set! injection.language "printf"))
-- 
cgit v1.2.3-70-g09d2