Python: Modernise TurboGears library

Author: RasmusWL

python/ql/src/semmle/python/web/turbogears/TurboGears.qll

@@ -2,13 +2,13 @@ import python
 
 import semmle.python.security.TaintTracking
 
-private ClassObject theTurboGearsControllerClass() {
-    result = ModuleObject::named("tg").attr("TGController")
+private ClassValue theTurboGearsControllerClass() {
+    result = Value::named("tg.TGController")
 }
 
 
-ClassObject aTurboGearsControllerClass() {
-    result.getASuperType() = theTurboGearsControllerClass()
+ClassValue aTurboGearsControllerClass() {
+    result.getABaseType+() = theTurboGearsControllerClass()
 }
 
 
@@ -17,13 +17,13 @@ class TurboGearsControllerMethod extends Function {
     ControlFlowNode decorator;
 
     TurboGearsControllerMethod() {
-        aTurboGearsControllerClass().getPyClass() = this.getScope() and
+        aTurboGearsControllerClass().getScope() = this.getScope() and
         decorator = this.getADecorator().getAFlowNode() and
         /* Is decorated with @expose() or @expose(path) */
         (
             decorator.(CallNode).getFunction().(NameNode).getId() = "expose"
             or
-            decorator.refersTo(_, ModuleObject::named("tg").attr("expose"), _)
+            decorator.pointsTo().getClass() = Value::named("tg.expose")
         )
     }
 
@@ -35,21 +35,12 @@ class TurboGearsControllerMethod extends Function {
         exists(templateName())
     }
 
-    string getTemplateName() {
-        exists(StringObject str |
-            templateName().refersTo(str) and
-            result = str.getText()
-        )
-    }
-
     Dict getValidationDict() {
-        exists(Call call, Object dict |
+        exists(Call call, Value dict |
             call = this.getADecorator() and
             call.getFunc().(Name).getId() = "validate" and
-            call.getArg(0).refersTo(dict) and
-            result = dict.getOrigin()
+            call.getArg(0).pointsTo(dict, result)
         )
     }
 
 }
-