github
diff --git a/‎javascript/ql/src/Quality/UnhandledStreamPipe.ql
Copy file name to clipboardExpand all lines: javascript/ql/src/Quality/UnhandledStreamPipe.ql
+35-1Lines changed: 35 additions & 1 deletion b/‎javascript/ql/src/Quality/UnhandledStreamPipe.ql
Copy file name to clipboardExpand all lines: javascript/ql/src/Quality/UnhandledStreamPipe.ql
+35-1Lines changed: 35 additions & 1 deletion
diff --git a/‎javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.expected
Copy file name to clipboardExpand all lines: javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.expected
-1Lines changed: 0 additions & 1 deletion b/‎javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.expected
Copy file name to clipboardExpand all lines: javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.expected
-1Lines changed: 0 additions & 1 deletion
diff --git a/‎javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.js
Copy file name to clipboardExpand all lines: javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.js
+1-1Lines changed: 1 addition & 1 deletion b/‎javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.js
Copy file name to clipboardExpand all lines: javascript/ql/test/query-tests/Quality/UnhandledStreamPipe/test.js
+1-1Lines changed: 1 addition & 1 deletion
@@ -48,6 +48,21 @@ string getNonchainableStreamMethodName() {
   result = ["read", "write", "end", "pipe", "unshift", "push", "isPaused", "wrap", "emit"]
 }
 
+/**
+ * Gets the property names commonly found on Node.js streams.
+ */
+string getStreamPropertyName() {
+  result =
+    [
+      "readable", "writable", "destroyed", "closed", "readableHighWaterMark", "readableLength",
+      "readableObjectMode", "readableEncoding", "readableFlowing", "readableEnded", "flowing",
+      "writableHighWaterMark", "writableLength", "writableObjectMode", "writableFinished",
+      "writableCorked", "writableEnded", "defaultEncoding", "allowHalfOpen", "objectMode",
+      "errored", "pending", "autoDestroy", "encoding", "path", "fd", "bytesRead", "bytesWritten",
+      "_readableState", "_writableState"
+    ]
+}
+
 /**
  * Gets all method names commonly found on Node.js streams.
  */
@@ -109,6 +124,25 @@ predicate isPipeFollowedByNonStreamMethod(PipeCall pipeCall) {
   )
 }
 
+/**
+ * Holds if the pipe call result is used to access a property that is not typical of streams.
+ */
+predicate isPipeFollowedByNonStreamProperty(PipeCall pipeCall) {
+  exists(DataFlow::PropRef propRef |
+    propRef = pipeResultRef(pipeCall).getAPropertyRead() and
+    not propRef.getPropertyName() = getStreamPropertyName()
+  )
+}
+
+/**
+ * Holds if the pipe call result is used in a non-stream-like way,
+ * either by calling non-stream methods or accessing non-stream properties.
+ */
+predicate isPipeFollowedByNonStreamAccess(PipeCall pipeCall) {
+  isPipeFollowedByNonStreamMethod(pipeCall) or
+  isPipeFollowedByNonStreamProperty(pipeCall)
+}
+
 /**
  * Gets a reference to a stream that may be the source of the given pipe call.
  * Uses type back-tracking to trace stream references in the data flow.
@@ -145,6 +179,6 @@ predicate hasErrorHandlerRegistered(PipeCall pipeCall) {
 from PipeCall pipeCall
 where
   not hasErrorHandlerRegistered(pipeCall) and
-  not isPipeFollowedByNonStreamMethod(pipeCall)
+  not isPipeFollowedByNonStreamAccess(pipeCall)
 select pipeCall,
   "Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped."
@@ -11,6 +11,5 @@
 | test.js:143:5:143:62 | stream. ... itable) | Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped. |
 | test.js:171:5:171:50 | notStre ... itable) | Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped. |
 | test.js:175:5:175:39 | notStre ... itable) | Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped. |
-| test.js:179:17:179:40 | notStre ... itable) | Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped. |
 | test.js:183:17:183:40 | notStre ... itable) | Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped. |
 | test.js:193:5:193:32 | copyStr ... nation) | Stream pipe without error handling on the source stream. Errors won't propagate downstream and may be silently dropped. |
@@ -176,7 +176,7 @@ function test() {
   }
   { // Member access on a non-stream after pipe
     const notStream = getNotAStream();
-    const val = notStream.pipe(writable).someMember; // $SPURIOUS:Alert
+    const val = notStream.pipe(writable).someMember;
   }
   { // Member access on a stream after pipe
     const notStream = getNotAStream();
Original file line number	Diff line number	Diff line change
`@@ -176,7 +176,7 @@ function test() {`
`176`	`176`	`}`
`177`	`177`	`{ // Member access on a non-stream after pipe`
`178`	`178`	`const notStream = getNotAStream();`
`179`		`- const val = notStream.pipe(writable).someMember; // $SPURIOUS:Alert`
	`179`	`+ const val = notStream.pipe(writable).someMember;`
`180`	`180`	`}`
`181`	`181`	`{ // Member access on a stream after pipe`
`182`	`182`	`const notStream = getNotAStream();`