github
diff --git a/‎actions/ql/lib/codeql/actions/ast/internal/Ast.qll‎
Lines changed: 7 additions & 9 deletions b/‎actions/ql/lib/codeql/actions/ast/internal/Ast.qll‎
Lines changed: 7 additions & 9 deletions
diff --git a/‎actions/ql/lib/codeql/actions/dataflow/ExternalFlow.qll‎
Lines changed: 4 additions & 4 deletions b/‎actions/ql/lib/codeql/actions/dataflow/ExternalFlow.qll‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎actions/ql/lib/codeql/actions/security/ArtifactPoisoningQuery.qll‎
Lines changed: 9 additions & 8 deletions b/‎actions/ql/lib/codeql/actions/security/ArtifactPoisoningQuery.qll‎
Lines changed: 9 additions & 8 deletions
diff --git a/‎cpp/ql/lib/experimental/semmle/code/cpp/rangeanalysis/RangeAnalysis.qll‎
Lines changed: 10 additions & 8 deletions b/‎cpp/ql/lib/experimental/semmle/code/cpp/rangeanalysis/RangeAnalysis.qll‎
Lines changed: 10 additions & 8 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-190/IntegerOverflowTainted.ql‎
Lines changed: 4 additions & 4 deletions b/‎cpp/ql/src/Security/CWE/CWE-190/IntegerOverflowTainted.ql‎
Lines changed: 4 additions & 4 deletions
@@ -125,12 +125,11 @@ abstract class AstNodeImpl extends TAstNode {
    * Gets the enclosing Step.
    */
   StepImpl getEnclosingStep() {
-    if this instanceof StepImpl
-    then result = this
-    else
-      if this instanceof ScalarValueImpl
-      then result.getAChildNode*() = this.getParentNode()
-      else none()
+    this instanceof StepImpl and
+    result = this
+    or
+    this instanceof ScalarValueImpl and
+    result.getAChildNode*() = this.getParentNode()
   }
 
   /**
@@ -1416,9 +1415,8 @@ class ExternalJobImpl extends JobImpl, UsesImpl {
   override string getVersion() {
     exists(YamlString name |
       n.lookup("uses") = name and
-      if not name.getValue().matches("\\.%")
-      then result = name.getValue().regexpCapture(repoUsesParser(), 4)
-      else none()
+      not name.getValue().matches("\\.%") and
+      result = name.getValue().regexpCapture(repoUsesParser(), 4)
     )
   }
 }
 
@@ -63,10 +63,10 @@ predicate madSource(DataFlow::Node source, string kind, string fieldName) {
     (
       if fieldName.trim().matches("env.%")
       then source.asExpr() = uses.getInScopeEnvVarExpr(fieldName.trim().replaceAll("env.", ""))
-      else
-        if fieldName.trim().matches("output.%")
-        then source.asExpr() = uses
-        else none()
+      else (
+        fieldName.trim().matches("output.%") and
+        source.asExpr() = uses
+      )
     )
   )
 }
 
@@ -171,10 +171,10 @@ class ActionsGitHubScriptDownloadStep extends UntrustedArtifactDownloadStep, Use
                 .getScript()
                 .getACommand()
                 .regexpCapture(unzipRegexp() + unzipDirArgRegexp(), 3)))
-    else
-      if this.getAFollowingStep().(Run).getScript().getACommand().regexpMatch(unzipRegexp())
-      then result = "GITHUB_WORKSPACE/"
-      else none()
+    else (
+      this.getAFollowingStep().(Run).getScript().getACommand().regexpMatch(unzipRegexp()) and
+      result = "GITHUB_WORKSPACE/"
+    )
   }
 }
 
@@ -207,12 +207,13 @@ class GHRunArtifactDownloadStep extends UntrustedArtifactDownloadStep, Run {
                 .getScript()
                 .getACommand()
                 .regexpCapture(unzipRegexp() + unzipDirArgRegexp(), 3)))
-    else
-      if
+    else (
+      (
         this.getAFollowingStep().(Run).getScript().getACommand().regexpMatch(unzipRegexp()) or
         this.getScript().getACommand().regexpMatch(unzipRegexp())
-      then result = "GITHUB_WORKSPACE/"
-      else none()
+      ) and
+      result = "GITHUB_WORKSPACE/"
+    )
   }
 }
 
 
@@ -298,10 +298,11 @@ private predicate boundFlowStep(Instruction i, NonPhiOperand op, int delta, bool
       else
         if strictlyNegative(x)
         then upper = true and delta = -1
-        else
-          if negative(x)
-          then upper = true and delta = 0
-          else none()
+        else (
+          negative(x) and
+          upper = true and
+          delta = 0
+        )
   )
   or
   exists(Operand x |
@@ -321,10 +322,11 @@ private predicate boundFlowStep(Instruction i, NonPhiOperand op, int delta, bool
       else
         if strictlyNegative(x)
         then upper = false and delta = 1
-        else
-          if negative(x)
-          then upper = false and delta = 0
-          else none()
+        else (
+          negative(x) and
+          upper = false and
+          delta = 0
+        )
   )
   or
   i.(RemInstruction).getRightOperand() = op and positive(op) and delta = -1 and upper = true
 
@@ -25,10 +25,10 @@ import semmle.code.cpp.controlflow.IRGuards as IRGuards
 predicate outOfBoundsExpr(Expr expr, string kind) {
   if convertedExprMightOverflowPositively(expr)
   then kind = "overflow"
-  else
-    if convertedExprMightOverflowNegatively(expr)
-    then kind = "overflow negatively"
-    else none()
+  else (
+    convertedExprMightOverflowNegatively(expr) and
+    kind = "overflow negatively"
+  )
 }
 
 predicate isSource(FS::FlowSource source, string sourceType) { sourceType = source.getSourceType() }
Original file line number	Diff line number	Diff line change
`@@ -63,10 +63,10 @@ predicate madSource(DataFlow::Node source, string kind, string fieldName) {`
`63`	`63`	`(`
`64`	`64`	`if fieldName.trim().matches("env.%")`
`65`	`65`	`then source.asExpr() = uses.getInScopeEnvVarExpr(fieldName.trim().replaceAll("env.", ""))`
`66`		`- else`
`67`		`- if fieldName.trim().matches("output.%")`
`68`		`- then source.asExpr() = uses`
`69`		`- else none()`
	`66`	`+ else (`
	`67`	`+ fieldName.trim().matches("output.%") and`
	`68`	`+ source.asExpr() = uses`
	`69`	`+ )`
`70`	`70`	`)`
`71`	`71`	`)`
`72`	`72`	`}`