From 09e4c78b0f766aa14d0863d77d0465c4fe63f7df Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 3 Jan 2025 16:33:42 +0000
Subject: [PATCH 01/21] New XSS sink - writing to innerHTML using the Angular
 Renderer2 API

---
 .../dataflow/DomBasedXssCustomizations.qll    | 20 +++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index 72d9ae4e55a6..270d58d4fa7e 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -251,6 +251,26 @@ module DomBasedXss {
     }
   }
 
+  /**
+   * A write to the `innerHTML` property of a DOM element, viewed as an XSS sink.
+   * 
+   * Uses the Angular Renderer2 API, instead of the default `Element.innerHTML` property.
+   */
+  class AngularRender2SetPropertyInnerHtmlSink extends Sink {
+    AngularRender2SetPropertyInnerHtmlSink() {
+      exists(API::CallNode setProperty |
+        setProperty =
+          API::moduleImport("@angular/core")
+              .getMember("Renderer2")
+              .getInstance()
+              .getMember("setProperty")
+              .getACall() and
+        this = setProperty.getParameter(2).asSink() and
+        setProperty.getParameter(1).asSink().asExpr().(StringLiteral).getValue() = "innerHTML"
+      )
+    }
+  }
+
   /**
    * A value being piped into the `safe` pipe in a template file,
    * disabling subsequent HTML escaping.

From 0f648223562adaaffa6eea006263ee51a7cfcfb2 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 3 Jan 2025 16:34:15 +0000
Subject: [PATCH 02/21] New remote source - reading from an @Input() decorated
 class member

---
 .../security/dataflow/RemoteFlowSources.qll   | 33 +++++++++++++++++++
 1 file changed, 33 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
index aad00b2d22e5..a41b8d8062d3 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
@@ -184,3 +184,36 @@ private class ExternalRemoteFlowSource extends RemoteFlowSource {
 
   override string getSourceType() { result = ap.getSourceType() }
 }
+
+// Angular @Input() decorator on a member declaration.
+class InputMember extends MemberDeclaration {
+  InputMember() {
+    exists(Decorator decorator, Expr expr |
+        decorator.getElement() = this
+        and decorator.getExpression() = expr
+        and expr.(CallExpr).getCallee().(VarRef).getName() = "Input"
+    )
+  }
+}
+
+// Use of an Angular @Input() member.
+class InputMemberUse extends DataFlow::Node {
+    InputMemberUse() {
+        exists(InputMember member, string memberName, ThisExpr ta, FieldAccess fa |
+            memberName = member.getName()
+            and fa.getBase() = ta
+            and fa.getPropertyName() = memberName
+            and this.asExpr() = fa
+        )
+    }
+}
+
+private class AngularInputUse extends RemoteFlowSource {
+  AngularInputUse() {
+    exists(  InputMemberUse inputUse |
+      this = inputUse
+    )
+  }
+
+  override string getSourceType() { result = "Angular @Input()" }
+}
\ No newline at end of file

From 477391787679b63672c597aacb530b8926150e8d Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 3 Jan 2025 16:43:00 +0000
Subject: [PATCH 03/21] Formatting

---
 .../dataflow/DomBasedXssCustomizations.qll    |  2 +-
 .../security/dataflow/RemoteFlowSources.qll   | 30 ++++++++-----------
 2 files changed, 14 insertions(+), 18 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index 270d58d4fa7e..ab5bff5d73e9 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -253,7 +253,7 @@ module DomBasedXss {
 
   /**
    * A write to the `innerHTML` property of a DOM element, viewed as an XSS sink.
-   * 
+   *
    * Uses the Angular Renderer2 API, instead of the default `Element.innerHTML` property.
    */
   class AngularRender2SetPropertyInnerHtmlSink extends Sink {
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
index a41b8d8062d3..6b1748996e3b 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
@@ -189,31 +189,27 @@ private class ExternalRemoteFlowSource extends RemoteFlowSource {
 class InputMember extends MemberDeclaration {
   InputMember() {
     exists(Decorator decorator, Expr expr |
-        decorator.getElement() = this
-        and decorator.getExpression() = expr
-        and expr.(CallExpr).getCallee().(VarRef).getName() = "Input"
+      decorator.getElement() = this and
+      decorator.getExpression() = expr and
+      expr.(CallExpr).getCallee().(VarRef).getName() = "Input"
     )
   }
 }
 
 // Use of an Angular @Input() member.
 class InputMemberUse extends DataFlow::Node {
-    InputMemberUse() {
-        exists(InputMember member, string memberName, ThisExpr ta, FieldAccess fa |
-            memberName = member.getName()
-            and fa.getBase() = ta
-            and fa.getPropertyName() = memberName
-            and this.asExpr() = fa
-        )
-    }
+  InputMemberUse() {
+    exists(InputMember member, string memberName, ThisExpr ta, FieldAccess fa |
+      memberName = member.getName() and
+      fa.getBase() = ta and
+      fa.getPropertyName() = memberName and
+      this.asExpr() = fa
+    )
+  }
 }
 
 private class AngularInputUse extends RemoteFlowSource {
-  AngularInputUse() {
-    exists(  InputMemberUse inputUse |
-      this = inputUse
-    )
-  }
+  AngularInputUse() { exists(InputMemberUse inputUse | this = inputUse) }
 
   override string getSourceType() { result = "Angular @Input()" }
-}
\ No newline at end of file
+}

From 4891c1e5fe132df851c4ed333176047bab24883b Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 3 Jan 2025 16:50:47 +0000
Subject: [PATCH 04/21] Added QLdoc and simplified QL in source class

---
 .../security/dataflow/RemoteFlowSources.qll         | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
index 6b1748996e3b..2c16406cac49 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
@@ -185,7 +185,9 @@ private class ExternalRemoteFlowSource extends RemoteFlowSource {
   override string getSourceType() { result = ap.getSourceType() }
 }
 
-// Angular @Input() decorator on a member declaration.
+/**
+ *  Angular @Input() decorator on a member declaration.
+ */
 class InputMember extends MemberDeclaration {
   InputMember() {
     exists(Decorator decorator, Expr expr |
@@ -196,7 +198,9 @@ class InputMember extends MemberDeclaration {
   }
 }
 
-// Use of an Angular @Input() member.
+/**
+ * Use of an Angular @Input() member, modelled as `InputMember`.
+ */
 class InputMemberUse extends DataFlow::Node {
   InputMemberUse() {
     exists(InputMember member, string memberName, ThisExpr ta, FieldAccess fa |
@@ -208,8 +212,11 @@ class InputMemberUse extends DataFlow::Node {
   }
 }
 
+/**
+ * A remote flow source that is a member of an Angular component class.
+ */
 private class AngularInputUse extends RemoteFlowSource {
-  AngularInputUse() { exists(InputMemberUse inputUse | this = inputUse) }
+  AngularInputUse() { this instanceof InputMemberUse }
 
   override string getSourceType() { result = "Angular @Input()" }
 }

From 712870000307ce275360bd9a05ebf72106294c77 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 3 Jan 2025 17:02:55 +0000
Subject: [PATCH 05/21] Simplified AngularInputUse class

---
 .../javascript/security/dataflow/RemoteFlowSources.qll    | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
index 2c16406cac49..60031d3a94bb 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
@@ -186,7 +186,7 @@ private class ExternalRemoteFlowSource extends RemoteFlowSource {
 }
 
 /**
- *  Angular @Input() decorator on a member declaration.
+ *  An Angular @Input() decorator on a member declaration.
  */
 class InputMember extends MemberDeclaration {
   InputMember() {
@@ -199,7 +199,7 @@ class InputMember extends MemberDeclaration {
 }
 
 /**
- * Use of an Angular @Input() member, modelled as `InputMember`.
+ * A use of an Angular @Input() member, modeled as `InputMember`.
  */
 class InputMemberUse extends DataFlow::Node {
   InputMemberUse() {
@@ -215,8 +215,8 @@ class InputMemberUse extends DataFlow::Node {
 /**
  * A remote flow source that is a member of an Angular component class.
  */
-private class AngularInputUse extends RemoteFlowSource {
-  AngularInputUse() { this instanceof InputMemberUse }
+private class AngularInputUse extends RemoteFlowSource, InputMemberUse {
+  AngularInputUse() { this = this }
 
   override string getSourceType() { result = "Angular @Input()" }
 }

From aba8be2902b207cd8639882b3ad7b68e0598bc63 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 3 Jan 2025 17:07:35 +0000
Subject: [PATCH 06/21] Changelog for Angular source/sink update

---
 .../ql/lib/change-notes/2025-01-03-angular-source-sink.md    | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md

diff --git a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md b/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
new file mode 100644
index 000000000000..4ba7122ecccb
--- /dev/null
+++ b/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
@@ -0,0 +1,5 @@
+---
+category: majorAnalysis
+---
+* Added new remote source from class members decorated with `@Input()`
+* Added new XSS sink where `InnerHTML` is assigned to with the Angular Renderer2 API

From 8dac00aa832c55bd91d54544b310ad208810da7f Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Mon, 6 Jan 2025 15:43:47 +0000
Subject: [PATCH 07/21] Change from getParameter() to getArgument()

---
 .../javascript/security/dataflow/DomBasedXssCustomizations.qll  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index ab5bff5d73e9..8a3e66e8e806 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -266,7 +266,7 @@ module DomBasedXss {
               .getMember("setProperty")
               .getACall() and
         this = setProperty.getParameter(2).asSink() and
-        setProperty.getParameter(1).asSink().asExpr().(StringLiteral).getValue() = "innerHTML"
+        setProperty.getArgument(1).getStringValue() = "innerHTML"
       )
     }
   }

From e414b8c5be491c957f93526224b51a07c5a73f44 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Mon, 6 Jan 2025 16:51:35 +0000
Subject: [PATCH 08/21] Remove @Input() decorated members as remote sources, in
 favour of a later Threat Model

---
 .../security/dataflow/RemoteFlowSources.qll   | 36 -------------------
 1 file changed, 36 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
index 60031d3a94bb..aad00b2d22e5 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RemoteFlowSources.qll
@@ -184,39 +184,3 @@ private class ExternalRemoteFlowSource extends RemoteFlowSource {
 
   override string getSourceType() { result = ap.getSourceType() }
 }
-
-/**
- *  An Angular @Input() decorator on a member declaration.
- */
-class InputMember extends MemberDeclaration {
-  InputMember() {
-    exists(Decorator decorator, Expr expr |
-      decorator.getElement() = this and
-      decorator.getExpression() = expr and
-      expr.(CallExpr).getCallee().(VarRef).getName() = "Input"
-    )
-  }
-}
-
-/**
- * A use of an Angular @Input() member, modeled as `InputMember`.
- */
-class InputMemberUse extends DataFlow::Node {
-  InputMemberUse() {
-    exists(InputMember member, string memberName, ThisExpr ta, FieldAccess fa |
-      memberName = member.getName() and
-      fa.getBase() = ta and
-      fa.getPropertyName() = memberName and
-      this.asExpr() = fa
-    )
-  }
-}
-
-/**
- * A remote flow source that is a member of an Angular component class.
- */
-private class AngularInputUse extends RemoteFlowSource, InputMemberUse {
-  AngularInputUse() { this = this }
-
-  override string getSourceType() { result = "Angular @Input()" }
-}

From 6fb201372bc95eee4f797d437cb1de6d9fdd18ab Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Mon, 6 Jan 2025 16:51:59 +0000
Subject: [PATCH 09/21] Update changelog note to remove new source

---
 javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md b/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
index 4ba7122ecccb..609642c25b4a 100644
--- a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
+++ b/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
@@ -1,5 +1,4 @@
 ---
 category: majorAnalysis
 ---
-* Added new remote source from class members decorated with `@Input()`
 * Added new XSS sink where `InnerHTML` is assigned to with the Angular Renderer2 API

From 322c731ac339b6843f4ed58e8f55f8e9d5b28c21 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Mon, 6 Jan 2025 16:52:38 +0000
Subject: [PATCH 10/21] Attempt at AttributeDefinition to generalise Angular
 Renderer2 support

---
 .../frameworks/AngularJS/AngularJSCore.qll    | 34 +++++++++++++++++++
 1 file changed, 34 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
index 1a6d11cd7534..2778a9f84d78 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
@@ -1032,3 +1032,37 @@ private class BindCall extends DataFlow::PartialInvokeNode::Range, DataFlow::Cal
     result = this.getArgument(0)
   }
 }
+
+/**
+ * A DOM attribute write, using the AngularJS Renderer2 API: a call to `Renderer2.setProperty`.
+ */
+private class AngularRenderer2AttributeDefinition extends DOM::AttributeDefinition {
+  DataFlow::Node propertyNode;
+  DataFlow::Node valueNode;
+  DataFlow::Node elementNode;
+
+  AngularRenderer2AttributeDefinition() {
+    exists(API::CallNode setProperty |
+      setProperty =
+        API::moduleImport("@angular/core")
+            .getMember("Renderer2")
+            .getInstance()
+            .getMember("setProperty")
+            .getACall() and
+      elementNode = setProperty.getArgument(0) and
+      propertyNode = setProperty.getArgument(1) and
+      valueNode = setProperty.getArgument(2) and
+      this = setProperty.asExpr()
+    )
+  }
+
+  override string getName() { result = propertyNode.getStringValue() }
+
+  // override DOM::ElementDefinition getElement() { /* TODO */ }
+
+  DataFlow::Node getElementNode() { result = elementNode }
+
+  override DataFlow::Node getValueNode() { result = valueNode }
+
+  //override predicate mayHaveTemplateValue() { /* TODO */ }
+}

From 820fe6cd042385058f1a25f0b22fc389078098de Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Mon, 6 Jan 2025 16:59:04 +0000
Subject: [PATCH 11/21] Formatting

---
 .../semmle/javascript/frameworks/AngularJS/AngularJSCore.qll    | 2 --
 1 file changed, 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
index 2778a9f84d78..2b4826c1529b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
@@ -1059,10 +1059,8 @@ private class AngularRenderer2AttributeDefinition extends DOM::AttributeDefiniti
   override string getName() { result = propertyNode.getStringValue() }
 
   // override DOM::ElementDefinition getElement() { /* TODO */ }
-
   DataFlow::Node getElementNode() { result = elementNode }
 
   override DataFlow::Node getValueNode() { result = valueNode }
-
   //override predicate mayHaveTemplateValue() { /* TODO */ }
 }

From 45301186810dc0b41b596fbda246d0ef00b41189 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Mon, 6 Jan 2025 17:33:31 +0000
Subject: [PATCH 12/21] Comment out hardcoded definition of sink

---
 .../dataflow/DomBasedXssCustomizations.qll    | 38 +++++++++----------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index 8a3e66e8e806..026cf47106fd 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -251,25 +251,25 @@ module DomBasedXss {
     }
   }
 
-  /**
-   * A write to the `innerHTML` property of a DOM element, viewed as an XSS sink.
-   *
-   * Uses the Angular Renderer2 API, instead of the default `Element.innerHTML` property.
-   */
-  class AngularRender2SetPropertyInnerHtmlSink extends Sink {
-    AngularRender2SetPropertyInnerHtmlSink() {
-      exists(API::CallNode setProperty |
-        setProperty =
-          API::moduleImport("@angular/core")
-              .getMember("Renderer2")
-              .getInstance()
-              .getMember("setProperty")
-              .getACall() and
-        this = setProperty.getParameter(2).asSink() and
-        setProperty.getArgument(1).getStringValue() = "innerHTML"
-      )
-    }
-  }
+  // /**
+  //  * A write to the `innerHTML` property of a DOM element, viewed as an XSS sink.
+  //  *
+  //  * Uses the Angular Renderer2 API, instead of the default `Element.innerHTML` property.
+  //  */
+  // class AngularRender2SetPropertyInnerHtmlSink extends Sink {
+  //   AngularRender2SetPropertyInnerHtmlSink() {
+  //     exists(API::CallNode setProperty |
+  //       setProperty =
+  //         API::moduleImport("@angular/core")
+  //             .getMember("Renderer2")
+  //             .getInstance()
+  //             .getMember("setProperty")
+  //             .getACall() and
+  //       this = setProperty.getParameter(2).asSink() and
+  //       setProperty.getArgument(1).getStringValue() = "innerHTML"
+  //     )
+  //   }
+  // }
 
   /**
    * A value being piped into the `safe` pipe in a template file,

From 2dc9e7bab78a67b0eb9e9129a7a5b05edb9c72e6 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Wed, 8 Jan 2025 16:36:10 +0000
Subject: [PATCH 13/21] Moved def from AngularJSCore to Angular2

---
 .../semmle/javascript/frameworks/Angular2.qll | 32 +++++++++++++++++++
 .../frameworks/AngularJS/AngularJSCore.qll    | 32 -------------------
 2 files changed, 32 insertions(+), 32 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
index 16430ff0475a..ba0f339f594e 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
@@ -554,4 +554,36 @@ module Angular2 {
       this = API::Node::ofType("@angular/core", "ElementRef").getMember("nativeElement").asSource()
     }
   }
+
+  /**
+   * A DOM attribute write, using the AngularJS Renderer2 API: a call to `Renderer2.setProperty`.
+   */
+  class AngularRenderer2AttributeDefinition extends DOM::AttributeDefinition {
+    DataFlow::Node propertyNode;
+    DataFlow::Node valueNode;
+    DataFlow::Node elementNode;
+
+    AngularRenderer2AttributeDefinition() {
+      exists(API::CallNode setProperty |
+        setProperty =
+          API::moduleImport("@angular/core")
+              .getMember("Renderer2")
+              .getInstance()
+              .getMember("setProperty")
+              .getACall() and
+        elementNode = setProperty.getArgument(0) and
+        propertyNode = setProperty.getArgument(1) and
+        valueNode = setProperty.getArgument(2) and
+        this = setProperty.asExpr()
+      )
+    }
+
+    override string getName() { result = propertyNode.getStringValue() }
+
+    // override DOM::ElementDefinition getElement() { /* TODO */ }
+    DataFlow::Node getElementNode() { result = elementNode }
+
+    override DataFlow::Node getValueNode() { result = valueNode }
+    //override predicate mayHaveTemplateValue() { /* TODO */ }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
index 2b4826c1529b..1a6d11cd7534 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
@@ -1032,35 +1032,3 @@ private class BindCall extends DataFlow::PartialInvokeNode::Range, DataFlow::Cal
     result = this.getArgument(0)
   }
 }
-
-/**
- * A DOM attribute write, using the AngularJS Renderer2 API: a call to `Renderer2.setProperty`.
- */
-private class AngularRenderer2AttributeDefinition extends DOM::AttributeDefinition {
-  DataFlow::Node propertyNode;
-  DataFlow::Node valueNode;
-  DataFlow::Node elementNode;
-
-  AngularRenderer2AttributeDefinition() {
-    exists(API::CallNode setProperty |
-      setProperty =
-        API::moduleImport("@angular/core")
-            .getMember("Renderer2")
-            .getInstance()
-            .getMember("setProperty")
-            .getACall() and
-      elementNode = setProperty.getArgument(0) and
-      propertyNode = setProperty.getArgument(1) and
-      valueNode = setProperty.getArgument(2) and
-      this = setProperty.asExpr()
-    )
-  }
-
-  override string getName() { result = propertyNode.getStringValue() }
-
-  // override DOM::ElementDefinition getElement() { /* TODO */ }
-  DataFlow::Node getElementNode() { result = elementNode }
-
-  override DataFlow::Node getValueNode() { result = valueNode }
-  //override predicate mayHaveTemplateValue() { /* TODO */ }
-}

From 4b57d5feb2a346e79a71e8e6d60e3b66609f2509 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Wed, 8 Jan 2025 16:36:46 +0000
Subject: [PATCH 14/21] Added XSS sink for innerHTML/outerHTML using new
 Angular attribute def

---
 .../dataflow/DomBasedXssCustomizations.qll    | 32 ++++++++-----------
 1 file changed, 13 insertions(+), 19 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index 026cf47106fd..e2a785ee4b14 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -251,25 +251,19 @@ module DomBasedXss {
     }
   }
 
-  // /**
-  //  * A write to the `innerHTML` property of a DOM element, viewed as an XSS sink.
-  //  *
-  //  * Uses the Angular Renderer2 API, instead of the default `Element.innerHTML` property.
-  //  */
-  // class AngularRender2SetPropertyInnerHtmlSink extends Sink {
-  //   AngularRender2SetPropertyInnerHtmlSink() {
-  //     exists(API::CallNode setProperty |
-  //       setProperty =
-  //         API::moduleImport("@angular/core")
-  //             .getMember("Renderer2")
-  //             .getInstance()
-  //             .getMember("setProperty")
-  //             .getACall() and
-  //       this = setProperty.getParameter(2).asSink() and
-  //       setProperty.getArgument(1).getStringValue() = "innerHTML"
-  //     )
-  //   }
-  // }
+  /**
+   * A write to the `innerHTML` or `outerHTML` property of a DOM element, viewed as an XSS sink.
+   *
+   * Uses the Angular Renderer2 API, instead of the default `Element.innerHTML` property.
+   */
+  class AngularRender2SetPropertyInnerHtmlSink2 extends Sink {
+    AngularRender2SetPropertyInnerHtmlSink2() {
+      exists(Angular2::AngularRenderer2AttributeDefinition attrDef |
+        attrDef.getName() = ["innerHTML", "outerHTML"] and
+        this = attrDef.getValueNode()
+      )
+    }
+  }
 
   /**
    * A value being piped into the `safe` pipe in a template file,

From 98b4c358442cd5dde729eab25c278fbd1c1160b5 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Thu, 9 Jan 2025 17:00:01 +0000
Subject: [PATCH 15/21] Set doc string on getElementNode predicate

---
 javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
index ba0f339f594e..1291477af72b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
@@ -580,10 +580,12 @@ module Angular2 {
 
     override string getName() { result = propertyNode.getStringValue() }
 
-    // override DOM::ElementDefinition getElement() { /* TODO */ }
+    /** Get the `DataFlow::Node` that is affected by this Attribute Definition.
+     * 
+     *  Defined instead of defining `getElement()`, which requires returning a DOM element defintion, `ElementDefinition`.
+     */
     DataFlow::Node getElementNode() { result = elementNode }
 
     override DataFlow::Node getValueNode() { result = valueNode }
-    //override predicate mayHaveTemplateValue() { /* TODO */ }
   }
 }

From 62599b2a1256dcc94ddb33825bedb6a71b6f0dd8 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Thu, 9 Jan 2025 17:02:37 +0000
Subject: [PATCH 16/21] Formatted

---
 javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
index 1291477af72b..ba8f2e231219 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
@@ -580,8 +580,9 @@ module Angular2 {
 
     override string getName() { result = propertyNode.getStringValue() }
 
-    /** Get the `DataFlow::Node` that is affected by this Attribute Definition.
-     * 
+    /**
+     * Get the `DataFlow::Node` that is affected by this Attribute Definition.
+     *
      *  Defined instead of defining `getElement()`, which requires returning a DOM element defintion, `ElementDefinition`.
      */
     DataFlow::Node getElementNode() { result = elementNode }

From e7881a8c7fd9b2438f6b11e0898e7fcd3ea8f350 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Thu, 9 Jan 2025 17:11:06 +0000
Subject: [PATCH 17/21] Fix typo

---
 javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
index ba8f2e231219..dd71a1cf728b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Angular2.qll
@@ -583,7 +583,7 @@ module Angular2 {
     /**
      * Get the `DataFlow::Node` that is affected by this Attribute Definition.
      *
-     *  Defined instead of defining `getElement()`, which requires returning a DOM element defintion, `ElementDefinition`.
+     *  Defined instead of defining `getElement()`, which requires returning a DOM element definition, `ElementDefinition`.
      */
     DataFlow::Node getElementNode() { result = elementNode }
 

From b07e801c106b0824e7df3daee127a645cf7674c0 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Thu, 9 Jan 2025 18:02:45 +0000
Subject: [PATCH 18/21] Add new test for new XSS sink, update `expected` to
 match

---
 .../Security/CWE-079/DomBasedXss/Xss.expected | 240 +++++++++---------
 .../XssWithAdditionalSources.expected         | 211 +++++++--------
 .../CWE-079/DomBasedXss/angular2-client.ts    |   7 +-
 3 files changed, 244 insertions(+), 214 deletions(-)

diff --git a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected
index 9b764729c99d..e1308043db9e 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected
@@ -25,67 +25,73 @@ nodes
 | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
 | angular-tempate-url.js:13:30:13:31 | ev |
@@ -1249,44 +1255,51 @@ edges
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment | angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') | angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path | angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') | angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:58 | this.router.url | angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url | angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment | angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') | angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:40:44:40:58 | this.router.url | angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url | angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
 | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
 | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
 | angular-tempate-url.js:14:26:14:27 | ev | angular-tempate-url.js:14:26:14:32 | ev.data |
@@ -2415,20 +2428,21 @@ edges
 | addEventListener.js:2:20:2:29 | event.data | addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:29 | event.data | Cross-site scripting vulnerability due to $@. | addEventListener.js:1:43:1:47 | event | user-provided value |
 | addEventListener.js:6:20:6:23 | data | addEventListener.js:5:43:5:48 | {data} | addEventListener.js:6:20:6:23 | data | Cross-site scripting vulnerability due to $@. | addEventListener.js:5:43:5:48 | {data} | user-provided value |
 | addEventListener.js:12:24:12:33 | event.data | addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:33 | event.data | Cross-site scripting vulnerability due to $@. | addEventListener.js:10:21:10:25 | event | user-provided value |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Cross-site scripting vulnerability due to $@. | angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | user-provided value |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | Cross-site scripting vulnerability due to $@. | angular2-client.ts:24:44:24:69 | this.ro ... .params | user-provided value |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | Cross-site scripting vulnerability due to $@. | angular2-client.ts:25:44:25:74 | this.ro ... yParams | user-provided value |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment | angular2-client.ts:26:44:26:71 | this.ro ... ragment | angular2-client.ts:26:44:26:71 | this.ro ... ragment | Cross-site scripting vulnerability due to $@. | angular2-client.ts:26:44:26:71 | this.ro ... ragment | user-provided value |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | user-provided value |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | user-provided value |
-| angular2-client.ts:30:46:30:59 | map.get('foo') | angular2-client.ts:30:46:30:59 | map.get('foo') | angular2-client.ts:30:46:30:59 | map.get('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:30:46:30:59 | map.get('foo') | user-provided value |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path | angular2-client.ts:33:44:33:74 | this.ro ... 1].path | angular2-client.ts:33:44:33:74 | this.ro ... 1].path | Cross-site scripting vulnerability due to $@. | angular2-client.ts:33:44:33:74 | this.ro ... 1].path | user-provided value |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x | angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x | Cross-site scripting vulnerability due to $@. | angular2-client.ts:34:44:34:80 | this.ro ... ameters | user-provided value |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') | angular2-client.ts:35:44:35:91 | this.ro ... et('x') | angular2-client.ts:35:44:35:91 | this.ro ... et('x') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:35:44:35:91 | this.ro ... et('x') | user-provided value |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x | angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x | Cross-site scripting vulnerability due to $@. | angular2-client.ts:36:44:36:89 | this.ro ... .params | user-provided value |
-| angular2-client.ts:38:44:38:58 | this.router.url | angular2-client.ts:38:44:38:58 | this.router.url | angular2-client.ts:38:44:38:58 | this.router.url | Cross-site scripting vulnerability due to $@. | angular2-client.ts:38:44:38:58 | this.router.url | user-provided value |
-| angular2-client.ts:40:45:40:59 | this.router.url | angular2-client.ts:40:45:40:59 | this.router.url | angular2-client.ts:40:45:40:59 | this.router.url | Cross-site scripting vulnerability due to $@. | angular2-client.ts:40:45:40:59 | this.router.url | user-provided value |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | user-provided value |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | Cross-site scripting vulnerability due to $@. | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | user-provided value |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo | angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo | Cross-site scripting vulnerability due to $@. | angular2-client.ts:26:44:26:69 | this.ro ... .params | user-provided value |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo | angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo | Cross-site scripting vulnerability due to $@. | angular2-client.ts:27:44:27:74 | this.ro ... yParams | user-provided value |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment | angular2-client.ts:28:44:28:71 | this.ro ... ragment | angular2-client.ts:28:44:28:71 | this.ro ... ragment | Cross-site scripting vulnerability due to $@. | angular2-client.ts:28:44:28:71 | this.ro ... ragment | user-provided value |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | user-provided value |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | user-provided value |
+| angular2-client.ts:32:46:32:59 | map.get('foo') | angular2-client.ts:32:46:32:59 | map.get('foo') | angular2-client.ts:32:46:32:59 | map.get('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:32:46:32:59 | map.get('foo') | user-provided value |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | angular2-client.ts:35:44:35:74 | this.ro ... 1].path | angular2-client.ts:35:44:35:74 | this.ro ... 1].path | Cross-site scripting vulnerability due to $@. | angular2-client.ts:35:44:35:74 | this.ro ... 1].path | user-provided value |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x | angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x | Cross-site scripting vulnerability due to $@. | angular2-client.ts:36:44:36:80 | this.ro ... ameters | user-provided value |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | angular2-client.ts:37:44:37:91 | this.ro ... et('x') | angular2-client.ts:37:44:37:91 | this.ro ... et('x') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:37:44:37:91 | this.ro ... et('x') | user-provided value |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x | angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x | Cross-site scripting vulnerability due to $@. | angular2-client.ts:38:44:38:89 | this.ro ... .params | user-provided value |
+| angular2-client.ts:40:44:40:58 | this.router.url | angular2-client.ts:40:44:40:58 | this.router.url | angular2-client.ts:40:44:40:58 | this.router.url | Cross-site scripting vulnerability due to $@. | angular2-client.ts:40:44:40:58 | this.router.url | user-provided value |
+| angular2-client.ts:42:45:42:59 | this.router.url | angular2-client.ts:42:45:42:59 | this.router.url | angular2-client.ts:42:45:42:59 | this.router.url | Cross-site scripting vulnerability due to $@. | angular2-client.ts:42:45:42:59 | this.router.url | user-provided value |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo | angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo | Cross-site scripting vulnerability due to $@. | angular2-client.ts:43:75:43:105 | this.ro ... yParams | user-provided value |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | Cross-site scripting vulnerability due to $@. | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | user-provided value |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") | Cross-site scripting vulnerability due to $@. | angular-tempate-url.js:13:30:13:31 | ev | user-provided value |
 | classnames.js:7:31:7:84 | `<span  ... <span>` | classnames.js:7:58:7:68 | window.name | classnames.js:7:31:7:84 | `<span  ... <span>` | Cross-site scripting vulnerability due to $@. | classnames.js:7:58:7:68 | window.name | user-provided value |
 | classnames.js:8:31:8:85 | `<span  ... <span>` | classnames.js:8:59:8:69 | window.name | classnames.js:8:31:8:85 | `<span  ... <span>` | Cross-site scripting vulnerability due to $@. | classnames.js:8:59:8:69 | window.name | user-provided value |
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected
index 185cae0d2d30..3d968b9022a6 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected
@@ -25,67 +25,73 @@ nodes
 | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
 | angular-tempate-url.js:13:30:13:31 | ev |
@@ -1299,44 +1305,51 @@ edges
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment | angular2-client.ts:26:44:26:71 | this.ro ... ragment |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') | angular2-client.ts:30:46:30:59 | map.get('foo') |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path | angular2-client.ts:33:44:33:74 | this.ro ... 1].path |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') | angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:58 | this.router.url | angular2-client.ts:38:44:38:58 | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url | angular2-client.ts:40:45:40:59 | this.router.url |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment | angular2-client.ts:28:44:28:71 | this.ro ... ragment |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') | angular2-client.ts:32:46:32:59 | map.get('foo') |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
+| angular2-client.ts:40:44:40:58 | this.router.url | angular2-client.ts:40:44:40:58 | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url | angular2-client.ts:42:45:42:59 | this.router.url |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
 | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
 | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
 | angular-tempate-url.js:14:26:14:27 | ev | angular-tempate-url.js:14:26:14:32 | ev.data |
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/angular2-client.ts b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/angular2-client.ts
index 734a06da3bc1..6d1823c2f601 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/angular2-client.ts
+++ b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/angular2-client.ts
@@ -1,4 +1,4 @@
-import { Component, OnInit, DomSanitizer as DomSanitizer2 } from '@angular/core';
+import { Component, OnInit, DomSanitizer as DomSanitizer2, Renderer2, Inject } from '@angular/core';
 import { ɵgetDOM } from '@angular/common';
 import { ActivatedRoute, ActivatedRouteSnapshot, Router } from '@angular/router';
 import { DomSanitizer } from '@angular/platform-browser';
@@ -15,7 +15,9 @@ export class AppComponent implements OnInit {
     private route: ActivatedRoute,
     private sanitizer: DomSanitizer,
     private router: Router,
-    private sanitizer2: DomSanitizer2
+    private sanitizer2: DomSanitizer2,
+    private renderer: Renderer2,
+    @Inject(DOCUMENT) private document: Document
   ) {}
 
   ngOnInit() {
@@ -38,6 +40,7 @@ export class AppComponent implements OnInit {
     this.sanitizer.bypassSecurityTrustHtml(this.router.url); // NOT OK
 
     this.sanitizer2.bypassSecurityTrustHtml(this.router.url); // NOT OK
+    this.renderer.setProperty(this.document.documentElement, 'innerHTML', this.route.snapshot.queryParams.foo); // NOT OK
   }
 
   someMethod(routeSnapshot: ActivatedRouteSnapshot) {

From eacc322d4ff0a8654b61400e90dd81efea1da1e6 Mon Sep 17 00:00:00 2001
From: Paul Hodgkinson <41705651+aegilops@users.noreply.github.com>
Date: Thu, 23 Jan 2025 16:39:18 +0000
Subject: [PATCH 19/21] Update Angular Renderer2 XSS sink details in change
 note

---
 .../ql/lib/change-notes/2025-01-03-angular-source-sink.md       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md b/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
index 609642c25b4a..a1ca70800b3b 100644
--- a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
+++ b/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md
@@ -1,4 +1,4 @@
 ---
 category: majorAnalysis
 ---
-* Added new XSS sink where `InnerHTML` is assigned to with the Angular Renderer2 API
+* Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter

From d248551e88a8bf0a0752c60f6dd3d4245dbf7c38 Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 24 Jan 2025 15:46:09 +0000
Subject: [PATCH 20/21] Updated expected test result files using HEAD version
 of codeql

---
 .../Security/CWE-079/ExceptionXss.expected    |  6 +--
 .../Security/CWE-079/ReflectedXss.expected    | 14 +++---
 .../src/Security/CWE-079/StoredXss.expected   | 45 ++++++++-----------
 .../CWE-079/UnsafeHtmlConstruction.expected   |  1 +
 .../CWE-079/UnsafeJQueryPlugin.expected       | 17 +++----
 .../ql/src/Security/CWE-079/Xss.expected      |  1 +
 .../Security/CWE-079/XssThroughDom.expected   | 17 +++----
 7 files changed, 41 insertions(+), 60 deletions(-)

diff --git a/javascript/ql/src/Security/CWE-079/ExceptionXss.expected b/javascript/ql/src/Security/CWE-079/ExceptionXss.expected
index be68b55ab4af..7f73c5678172 100644
--- a/javascript/ql/src/Security/CWE-079/ExceptionXss.expected
+++ b/javascript/ql/src/Security/CWE-079/ExceptionXss.expected
@@ -1,8 +1,6 @@
 nodes
-| examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() |
-| examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() |
-| examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() |
+| examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() | semmle.label | ajv.errorsText() |
 edges
-| examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() | examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() |
+subpaths
 #select
 | examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() | examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() | examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() | $@ is reinterpreted as HTML without escaping meta-characters. | examples/ExceptionXssAjv.js:11:18:11:33 | ajv.errorsText() | JSON schema validation error |
diff --git a/javascript/ql/src/Security/CWE-079/ReflectedXss.expected b/javascript/ql/src/Security/CWE-079/ReflectedXss.expected
index 7610893fd7b9..a7b27a2e9885 100644
--- a/javascript/ql/src/Security/CWE-079/ReflectedXss.expected
+++ b/javascript/ql/src/Security/CWE-079/ReflectedXss.expected
@@ -1,12 +1,8 @@
-nodes
-| examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id |
-| examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id |
-| examples/ReflectedXss.js:6:33:6:45 | req.params.id |
-| examples/ReflectedXss.js:6:33:6:45 | req.params.id |
 edges
-| examples/ReflectedXss.js:6:33:6:45 | req.params.id | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id |
-| examples/ReflectedXss.js:6:33:6:45 | req.params.id | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id |
-| examples/ReflectedXss.js:6:33:6:45 | req.params.id | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id |
-| examples/ReflectedXss.js:6:33:6:45 | req.params.id | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id |
+| examples/ReflectedXss.js:6:33:6:45 | req.params.id | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id | provenance |  |
+nodes
+| examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id | semmle.label | "Unknow ... rams.id |
+| examples/ReflectedXss.js:6:33:6:45 | req.params.id | semmle.label | req.params.id |
+subpaths
 #select
 | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id | examples/ReflectedXss.js:6:33:6:45 | req.params.id | examples/ReflectedXss.js:6:14:6:45 | "Unknow ... rams.id | Cross-site scripting vulnerability due to a $@. | examples/ReflectedXss.js:6:33:6:45 | req.params.id | user-provided value |
diff --git a/javascript/ql/src/Security/CWE-079/StoredXss.expected b/javascript/ql/src/Security/CWE-079/StoredXss.expected
index 9eda1d3e049f..8b0e8dc8bde7 100644
--- a/javascript/ql/src/Security/CWE-079/StoredXss.expected
+++ b/javascript/ql/src/Security/CWE-079/StoredXss.expected
@@ -1,30 +1,21 @@
-nodes
-| examples/StoredXss.js:5:44:5:52 | fileNames |
-| examples/StoredXss.js:5:44:5:52 | fileNames |
-| examples/StoredXss.js:7:9:7:17 | fileNames |
-| examples/StoredXss.js:7:27:7:34 | fileName |
-| examples/StoredXss.js:9:13:9:16 | list |
-| examples/StoredXss.js:9:13:9:47 | list |
-| examples/StoredXss.js:9:21:9:47 | '<li>'  ... '</li>' |
-| examples/StoredXss.js:9:30:9:37 | fileName |
-| examples/StoredXss.js:11:9:11:12 | list |
-| examples/StoredXss.js:11:9:11:23 | list |
-| examples/StoredXss.js:12:18:12:21 | list |
-| examples/StoredXss.js:12:18:12:21 | list |
 edges
-| examples/StoredXss.js:5:44:5:52 | fileNames | examples/StoredXss.js:7:9:7:17 | fileNames |
-| examples/StoredXss.js:5:44:5:52 | fileNames | examples/StoredXss.js:7:9:7:17 | fileNames |
-| examples/StoredXss.js:7:9:7:17 | fileNames | examples/StoredXss.js:7:27:7:34 | fileName |
-| examples/StoredXss.js:7:27:7:34 | fileName | examples/StoredXss.js:9:30:9:37 | fileName |
-| examples/StoredXss.js:9:13:9:16 | list | examples/StoredXss.js:9:13:9:47 | list |
-| examples/StoredXss.js:9:13:9:47 | list | examples/StoredXss.js:9:13:9:16 | list |
-| examples/StoredXss.js:9:13:9:47 | list | examples/StoredXss.js:11:9:11:12 | list |
-| examples/StoredXss.js:9:21:9:47 | '<li>'  ... '</li>' | examples/StoredXss.js:9:13:9:47 | list |
-| examples/StoredXss.js:9:30:9:37 | fileName | examples/StoredXss.js:9:21:9:47 | '<li>'  ... '</li>' |
-| examples/StoredXss.js:11:9:11:12 | list | examples/StoredXss.js:11:9:11:23 | list |
-| examples/StoredXss.js:11:9:11:23 | list | examples/StoredXss.js:9:13:9:16 | list |
-| examples/StoredXss.js:11:9:11:23 | list | examples/StoredXss.js:11:9:11:12 | list |
-| examples/StoredXss.js:11:9:11:23 | list | examples/StoredXss.js:12:18:12:21 | list |
-| examples/StoredXss.js:11:9:11:23 | list | examples/StoredXss.js:12:18:12:21 | list |
+| examples/StoredXss.js:5:44:5:52 | fileNames | examples/StoredXss.js:7:9:7:17 | fileNames | provenance |  |
+| examples/StoredXss.js:7:9:7:17 | fileNames | examples/StoredXss.js:7:27:7:34 | fileName | provenance |  |
+| examples/StoredXss.js:7:9:7:17 | fileNames | examples/StoredXss.js:11:9:11:12 | list | provenance |  |
+| examples/StoredXss.js:7:27:7:34 | fileName | examples/StoredXss.js:9:30:9:37 | fileName | provenance |  |
+| examples/StoredXss.js:9:30:9:37 | fileName | examples/StoredXss.js:9:13:9:47 | list | provenance |  |
+| examples/StoredXss.js:11:9:11:12 | list | examples/StoredXss.js:11:9:11:23 | list | provenance |  |
+| examples/StoredXss.js:11:9:11:23 | list | examples/StoredXss.js:12:18:12:21 | list | provenance |  |
+nodes
+| examples/StoredXss.js:5:44:5:52 | fileNames | semmle.label | fileNames |
+| examples/StoredXss.js:7:9:7:17 | fileNames | semmle.label | fileNames |
+| examples/StoredXss.js:7:27:7:34 | fileName | semmle.label | fileName |
+| examples/StoredXss.js:9:13:9:47 | list | semmle.label | list |
+| examples/StoredXss.js:9:30:9:37 | fileName | semmle.label | fileName |
+| examples/StoredXss.js:11:9:11:12 | list | semmle.label | list |
+| examples/StoredXss.js:11:9:11:23 | list | semmle.label | list |
+| examples/StoredXss.js:12:18:12:21 | list | semmle.label | list |
+subpaths
+| examples/StoredXss.js:7:9:7:17 | fileNames | examples/StoredXss.js:7:27:7:34 | fileName | examples/StoredXss.js:9:13:9:47 | list | examples/StoredXss.js:11:9:11:12 | list |
 #select
 | examples/StoredXss.js:12:18:12:21 | list | examples/StoredXss.js:5:44:5:52 | fileNames | examples/StoredXss.js:12:18:12:21 | list | Stored cross-site scripting vulnerability due to $@. | examples/StoredXss.js:5:44:5:52 | fileNames | stored value |
diff --git a/javascript/ql/src/Security/CWE-079/UnsafeHtmlConstruction.expected b/javascript/ql/src/Security/CWE-079/UnsafeHtmlConstruction.expected
index ac992895b9cc..57a021bf40a2 100644
--- a/javascript/ql/src/Security/CWE-079/UnsafeHtmlConstruction.expected
+++ b/javascript/ql/src/Security/CWE-079/UnsafeHtmlConstruction.expected
@@ -1,3 +1,4 @@
 nodes
 edges
+subpaths
 #select
diff --git a/javascript/ql/src/Security/CWE-079/UnsafeJQueryPlugin.expected b/javascript/ql/src/Security/CWE-079/UnsafeJQueryPlugin.expected
index 43d8d4394f0d..e805f2863381 100644
--- a/javascript/ql/src/Security/CWE-079/UnsafeJQueryPlugin.expected
+++ b/javascript/ql/src/Security/CWE-079/UnsafeJQueryPlugin.expected
@@ -1,13 +1,10 @@
-nodes
-| examples/UnsafeJQueryPlugin.js:1:31:1:37 | options |
-| examples/UnsafeJQueryPlugin.js:1:31:1:37 | options |
-| examples/UnsafeJQueryPlugin.js:3:22:3:28 | options |
-| examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector |
-| examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector |
 edges
-| examples/UnsafeJQueryPlugin.js:1:31:1:37 | options | examples/UnsafeJQueryPlugin.js:3:22:3:28 | options |
-| examples/UnsafeJQueryPlugin.js:1:31:1:37 | options | examples/UnsafeJQueryPlugin.js:3:22:3:28 | options |
-| examples/UnsafeJQueryPlugin.js:3:22:3:28 | options | examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector |
-| examples/UnsafeJQueryPlugin.js:3:22:3:28 | options | examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector |
+| examples/UnsafeJQueryPlugin.js:1:31:1:37 | options | examples/UnsafeJQueryPlugin.js:3:22:3:28 | options | provenance |  |
+| examples/UnsafeJQueryPlugin.js:3:22:3:28 | options | examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector | provenance |  |
+nodes
+| examples/UnsafeJQueryPlugin.js:1:31:1:37 | options | semmle.label | options |
+| examples/UnsafeJQueryPlugin.js:3:22:3:28 | options | semmle.label | options |
+| examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector | semmle.label | options ... elector |
+subpaths
 #select
 | examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector | examples/UnsafeJQueryPlugin.js:1:31:1:37 | options | examples/UnsafeJQueryPlugin.js:3:22:3:43 | options ... elector | Potential XSS vulnerability in the $@. | examples/UnsafeJQueryPlugin.js:1:22:6:1 | functio ... ext);\\n} | '$.fn.copyText' plugin |
diff --git a/javascript/ql/src/Security/CWE-079/Xss.expected b/javascript/ql/src/Security/CWE-079/Xss.expected
index ac992895b9cc..57a021bf40a2 100644
--- a/javascript/ql/src/Security/CWE-079/Xss.expected
+++ b/javascript/ql/src/Security/CWE-079/Xss.expected
@@ -1,3 +1,4 @@
 nodes
 edges
+subpaths
 #select
diff --git a/javascript/ql/src/Security/CWE-079/XssThroughDom.expected b/javascript/ql/src/Security/CWE-079/XssThroughDom.expected
index 9542392791d1..c0c29d0863f5 100644
--- a/javascript/ql/src/Security/CWE-079/XssThroughDom.expected
+++ b/javascript/ql/src/Security/CWE-079/XssThroughDom.expected
@@ -1,13 +1,10 @@
-nodes
-| examples/XssThroughDom.js:2:9:2:44 | target |
-| examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") |
-| examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") |
-| examples/XssThroughDom.js:3:7:3:12 | target |
-| examples/XssThroughDom.js:3:7:3:12 | target |
 edges
-| examples/XssThroughDom.js:2:9:2:44 | target | examples/XssThroughDom.js:3:7:3:12 | target |
-| examples/XssThroughDom.js:2:9:2:44 | target | examples/XssThroughDom.js:3:7:3:12 | target |
-| examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") | examples/XssThroughDom.js:2:9:2:44 | target |
-| examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") | examples/XssThroughDom.js:2:9:2:44 | target |
+| examples/XssThroughDom.js:2:9:2:44 | target | examples/XssThroughDom.js:3:7:3:12 | target | provenance |  |
+| examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") | examples/XssThroughDom.js:2:9:2:44 | target | provenance |  |
+nodes
+| examples/XssThroughDom.js:2:9:2:44 | target | semmle.label | target |
+| examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") | semmle.label | $(this) ... arget") |
+| examples/XssThroughDom.js:3:7:3:12 | target | semmle.label | target |
+subpaths
 #select
 | examples/XssThroughDom.js:3:7:3:12 | target | examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") | examples/XssThroughDom.js:3:7:3:12 | target | $@ is reinterpreted as HTML without escaping meta-characters. | examples/XssThroughDom.js:2:18:2:44 | $(this) ... arget") | DOM text |

From 76da4795506b3b6bb83322eed9c471562f26437a Mon Sep 17 00:00:00 2001
From: aegilops <41705651+aegilops@users.noreply.github.com>
Date: Fri, 24 Jan 2025 16:52:11 +0000
Subject: [PATCH 21/21] Updated tests

---
 .../Security/CWE-079/DomBasedXss/Xss.expected | 2472 +---------------
 .../XssWithAdditionalSources.expected         | 2573 +----------------
 2 files changed, 50 insertions(+), 4995 deletions(-)

diff --git a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected
index eeb351a3201b..7d067911c197 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/Xss.expected
@@ -1,2429 +1,4 @@
 nodes
-| addEventListener.js:1:43:1:47 | event |
-| addEventListener.js:1:43:1:47 | event |
-| addEventListener.js:1:43:1:47 | event |
-| addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:5:43:5:48 | {data} |
-| addEventListener.js:5:43:5:48 | {data} |
-| addEventListener.js:5:43:5:48 | {data} |
-| addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:10:21:10:25 | event |
-| addEventListener.js:10:21:10:25 | event |
-| addEventListener.js:10:21:10:25 | event |
-| addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params |
-| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
-| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
-| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params |
-| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
-| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| angular-tempate-url.js:13:30:13:31 | ev |
-| angular-tempate-url.js:13:30:13:31 | ev |
-| angular-tempate-url.js:14:26:14:27 | ev |
-| angular-tempate-url.js:14:26:14:32 | ev.data |
-| classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:47:7:69 | classNa ... w.name) |
-| classnames.js:7:58:7:68 | window.name |
-| classnames.js:7:58:7:68 | window.name |
-| classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:47:8:70 | classNa ... w.name) |
-| classnames.js:8:59:8:69 | window.name |
-| classnames.js:8:59:8:69 | window.name |
-| classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:47:9:70 | classNa ... w.name) |
-| classnames.js:9:59:9:69 | window.name |
-| classnames.js:9:59:9:69 | window.name |
-| classnames.js:10:45:10:55 | window.name |
-| classnames.js:10:45:10:55 | window.name |
-| classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:11:47:11:64 | unsafeStyle('foo') |
-| classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:47:13:68 | safeSty ... w.name) |
-| classnames.js:13:57:13:67 | window.name |
-| classnames.js:13:57:13:67 | window.name |
-| classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:47:15:63 | clsx(window.name) |
-| classnames.js:15:52:15:62 | window.name |
-| classnames.js:15:52:15:62 | window.name |
-| classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:48:17:64 | clsx(window.name) |
-| classnames.js:17:53:17:63 | window.name |
-| classnames.js:17:53:17:63 | window.name |
-| clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') |
-| clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') |
-| clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') |
-| clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') |
-| clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:99:23:99:26 | html |
-| custom-element.js:5:26:5:36 | window.name |
-| custom-element.js:5:26:5:36 | window.name |
-| custom-element.js:5:26:5:36 | window.name |
-| custom-element.js:5:26:5:36 | window.name |
-| d3.js:4:12:4:22 | window.name |
-| d3.js:4:12:4:22 | window.name |
-| d3.js:4:12:4:22 | window.name |
-| d3.js:11:15:11:24 | getTaint() |
-| d3.js:11:15:11:24 | getTaint() |
-| d3.js:11:15:11:24 | getTaint() |
-| d3.js:12:20:12:29 | getTaint() |
-| d3.js:12:20:12:29 | getTaint() |
-| d3.js:12:20:12:29 | getTaint() |
-| d3.js:14:20:14:29 | getTaint() |
-| d3.js:14:20:14:29 | getTaint() |
-| d3.js:14:20:14:29 | getTaint() |
-| d3.js:21:15:21:24 | getTaint() |
-| d3.js:21:15:21:24 | getTaint() |
-| d3.js:21:15:21:24 | getTaint() |
-| dates.js:9:9:9:69 | taint |
-| dates.js:9:9:9:69 | taint |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:9:36:9:55 | window.location.hash |
-| dates.js:9:36:9:55 | window.location.hash |
-| dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:11:63:11:67 | taint |
-| dates.js:11:63:11:67 | taint |
-| dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:12:66:12:70 | taint |
-| dates.js:12:66:12:70 | taint |
-| dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:13:59:13:63 | taint |
-| dates.js:13:59:13:63 | taint |
-| dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:16:62:16:66 | taint |
-| dates.js:16:62:16:66 | taint |
-| dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:18:59:18:63 | taint |
-| dates.js:18:59:18:63 | taint |
-| dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:21:61:21:65 | taint |
-| dates.js:21:61:21:65 | taint |
-| dates.js:30:9:30:69 | taint |
-| dates.js:30:9:30:69 | taint |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:30:36:30:55 | window.location.hash |
-| dates.js:30:36:30:55 | window.location.hash |
-| dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:37:77:37:81 | taint |
-| dates.js:37:77:37:81 | taint |
-| dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:38:77:38:81 | taint |
-| dates.js:38:77:38:81 | taint |
-| dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:39:79:39:83 | taint |
-| dates.js:39:79:39:83 | taint |
-| dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:40:77:40:81 | taint |
-| dates.js:40:77:40:81 | taint |
-| dates.js:46:9:46:69 | taint |
-| dates.js:46:9:46:69 | taint |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:46:36:46:55 | window.location.hash |
-| dates.js:46:36:46:55 | window.location.hash |
-| dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:48:83:48:87 | taint |
-| dates.js:48:83:48:87 | taint |
-| dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:49:82:49:86 | taint |
-| dates.js:49:82:49:86 | taint |
-| dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:50:97:50:101 | taint |
-| dates.js:50:97:50:101 | taint |
-| dates.js:54:9:54:69 | taint |
-| dates.js:54:9:54:69 | taint |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:54:36:54:55 | window.location.hash |
-| dates.js:54:36:54:55 | window.location.hash |
-| dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:57:94:57:98 | taint |
-| dates.js:57:94:57:98 | taint |
-| dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:59:80:59:84 | taint |
-| dates.js:59:80:59:84 | taint |
-| dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dates.js:61:81:61:85 | taint |
-| dates.js:61:81:61:85 | taint |
-| dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
-| dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
-| dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
-| dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href |
-| event-handler-receiver.js:2:49:2:61 | location.href |
-| express.js:7:15:7:33 | req.param("wobble") |
-| express.js:7:15:7:33 | req.param("wobble") |
-| express.js:7:15:7:33 | req.param("wobble") |
-| express.js:7:15:7:33 | req.param("wobble") |
-| jquery.js:2:7:2:40 | tainted |
-| jquery.js:2:17:2:40 | documen ... .search |
-| jquery.js:2:17:2:40 | documen ... .search |
-| jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:7:20:7:26 | tainted |
-| jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:8:28:8:34 | tainted |
-| jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:10:13:10:20 | location |
-| jquery.js:10:13:10:20 | location |
-| jquery.js:10:13:10:31 | location.toString() |
-| jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash |
-| jquery.js:14:38:14:57 | window.location.hash |
-| jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search |
-| jquery.js:15:38:15:59 | window. ... .search |
-| jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:16:38:16:52 | window.location |
-| jquery.js:16:38:16:52 | window.location |
-| jquery.js:16:38:16:63 | window. ... tring() |
-| jquery.js:18:7:18:33 | hash |
-| jquery.js:18:14:18:33 | window.location.hash |
-| jquery.js:18:14:18:33 | window.location.hash |
-| jquery.js:21:5:21:8 | hash |
-| jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:22:5:22:8 | hash |
-| jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:23:5:23:8 | hash |
-| jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:24:5:24:8 | hash |
-| jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:27:5:27:8 | hash |
-| jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:28:5:28:26 | window. ... .search |
-| jquery.js:28:5:28:26 | window. ... .search |
-| jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:34:13:34:16 | hash |
-| jquery.js:36:25:36:31 | tainted |
-| jquery.js:36:25:36:31 | tainted |
-| jquery.js:37:25:37:37 | () => tainted |
-| jquery.js:37:25:37:37 | () => tainted |
-| jquery.js:37:31:37:37 | tainted |
-| json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") |
-| json-stringify.jsx:11:16:11:58 | `https: ... ocale}` |
-| json-stringify.jsx:11:51:11:56 | locale |
-| json-stringify.jsx:19:16:19:63 | `https: ... ocale}` |
-| json-stringify.jsx:19:56:19:61 | locale |
-| json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") |
-| jwt-server.js:7:17:7:35 | req.param("wobble") |
-| jwt-server.js:7:17:7:35 | req.param("wobble") |
-| jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:29 | decoded.foo |
-| nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message |
-| nodemailer.js:13:50:13:66 | req.query.message |
-| optionalSanitizer.js:2:7:2:39 | target |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search |
-| optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:8:7:8:22 | tainted |
-| optionalSanitizer.js:8:17:8:22 | target |
-| optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:15:9:15:14 | target |
-| optionalSanitizer.js:16:18:16:18 | x |
-| optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:26:7:26:39 | target |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search |
-| optionalSanitizer.js:31:7:31:23 | tainted2 |
-| optionalSanitizer.js:31:18:31:23 | target |
-| optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:34:5:34:36 | tainted2 |
-| optionalSanitizer.js:34:16:34:36 | sanitiz ... inted2) |
-| optionalSanitizer.js:34:28:34:35 | tainted2 |
-| optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 |
-| optionalSanitizer.js:38:18:38:23 | target |
-| optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:41:5:41:36 | tainted3 |
-| optionalSanitizer.js:41:16:41:36 | sanitiz ... inted3) |
-| optionalSanitizer.js:41:28:41:35 | tainted3 |
-| optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) |
-| optionalSanitizer.js:45:41:45:46 | target |
-| optionalSanitizer.js:45:51:45:56 | target |
-| pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:18:5:29 | router.query |
-| pages/[id].jsx:5:18:5:29 | router.query |
-| pages/[id].jsx:5:18:5:29 | router.query |
-| pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:25:11:25:24 | context.params |
-| pages/[id].jsx:25:11:25:24 | context.params |
-| pages/[id].jsx:25:11:25:24 | context.params |
-| pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:26:10:26:22 | context.query |
-| pages/[id].jsx:26:10:26:22 | context.query |
-| pages/[id].jsx:26:10:26:22 | context.query |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") |
-| react-native.js:7:17:7:33 | req.param("code") |
-| react-native.js:7:17:7:33 | req.param("code") |
-| react-native.js:8:18:8:24 | tainted |
-| react-native.js:8:18:8:24 | tainted |
-| react-native.js:8:18:8:24 | tainted |
-| react-native.js:9:27:9:33 | tainted |
-| react-native.js:9:27:9:33 | tainted |
-| react-native.js:9:27:9:33 | tainted |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-router.js:4:9:4:28 | router |
-| react-use-router.js:4:18:4:28 | useRouter() |
-| react-use-router.js:8:21:8:26 | router |
-| react-use-router.js:8:21:8:32 | router.query |
-| react-use-router.js:8:21:8:32 | router.query |
-| react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:11:24:11:29 | router |
-| react-use-router.js:11:24:11:35 | router.query |
-| react-use-router.js:11:24:11:35 | router.query |
-| react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:22:15:22:24 | router |
-| react-use-router.js:22:17:22:22 | router |
-| react-use-router.js:23:43:23:48 | router |
-| react-use-router.js:23:43:23:54 | router.query |
-| react-use-router.js:23:43:23:54 | router.query |
-| react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:29:9:29:30 | router |
-| react-use-router.js:29:18:29:30 | myUseRouter() |
-| react-use-router.js:33:21:33:26 | router |
-| react-use-router.js:33:21:33:32 | router.query |
-| react-use-router.js:33:21:33:32 | router.query |
-| react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name |
-| react-use-state.js:4:38:4:48 | window.name |
-| react-use-state.js:4:38:4:48 | window.name |
-| react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name |
-| react-use-state.js:10:14:10:24 | window.name |
-| react-use-state.js:10:14:10:24 | window.name |
-| react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name |
-| react-use-state.js:16:20:16:30 | window.name |
-| react-use-state.js:16:20:16:30 | window.name |
-| react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:25:20:25:30 | window.name |
-| react-use-state.js:25:20:25:30 | window.name |
-| react-use-state.js:25:20:25:30 | window.name |
-| sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name |
-| sanitiser.js:16:17:16:27 | window.name |
-| sanitiser.js:16:17:16:27 | window.name |
-| sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:23:29:23:35 | tainted |
-| sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:29:30:35 | tainted |
-| sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:29:33:35 | tainted |
-| sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:29:38:35 | tainted |
-| sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:29:45:35 | tainted |
-| sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| stored-xss.js:2:39:2:62 | documen ... .search |
-| stored-xss.js:2:39:2:62 | documen ... .search |
-| stored-xss.js:3:35:3:58 | documen ... .search |
-| stored-xss.js:3:35:3:58 | documen ... .search |
-| stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:10:9:10:44 | href |
-| stored-xss.js:10:16:10:44 | localSt ... local') |
-| stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:35:12:38 | href |
-| string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href |
-| string-manipulations.js:6:16:6:37 | documen ... on.href |
-| string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href |
-| string-manipulations.js:7:16:7:37 | documen ... on.href |
-| string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href |
-| string-manipulations.js:8:16:8:37 | documen ... on.href |
-| string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href |
-| string-manipulations.js:9:36:9:57 | documen ... on.href |
-| string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href |
-| string-manipulations.js:10:23:10:44 | documen ... on.href |
-| tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name |
-| tooltip.jsx:6:20:6:30 | window.name |
-| tooltip.jsx:6:20:6:30 | window.name |
-| tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name |
-| tooltip.jsx:22:20:22:30 | window.name |
-| tooltip.jsx:22:20:22:30 | window.name |
-| tooltip.jsx:23:38:23:43 | source |
-| tooltip.jsx:23:38:23:43 | source |
-| translate.js:6:7:6:39 | target |
-| translate.js:6:16:6:39 | documen ... .search |
-| translate.js:6:16:6:39 | documen ... .search |
-| translate.js:7:7:7:61 | searchParams |
-| translate.js:7:22:7:61 | new URL ... ing(1)) |
-| translate.js:7:42:7:47 | target |
-| translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:9:27:9:38 | searchParams |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:4:20:4:30 | window.name |
-| trusted-types.js:4:20:4:30 | window.name |
-| trusted-types.js:4:20:4:30 | window.name |
-| trusted-types.js:13:20:13:30 | window.name |
-| trusted-types.js:13:20:13:30 | window.name |
-| trusted-types.js:13:20:13:30 | window.name |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) |
-| tst3.js:2:23:2:74 | decodeU ... str(1)) |
-| tst3.js:2:42:2:63 | window. ... .search |
-| tst3.js:2:42:2:63 | window. ... .search |
-| tst3.js:2:42:2:73 | window. ... bstr(1) |
-| tst3.js:4:25:4:28 | data |
-| tst3.js:4:25:4:32 | data.src |
-| tst3.js:4:25:4:32 | data.src |
-| tst3.js:5:26:5:29 | data |
-| tst3.js:5:26:5:31 | data.p |
-| tst3.js:5:26:5:31 | data.p |
-| tst3.js:7:32:7:35 | data |
-| tst3.js:7:32:7:37 | data.p |
-| tst3.js:7:32:7:37 | data.p |
-| tst3.js:9:37:9:40 | data |
-| tst3.js:9:37:9:42 | data.p |
-| tst3.js:9:37:9:42 | data.p |
-| tst3.js:10:38:10:41 | data |
-| tst3.js:10:38:10:43 | data.p |
-| tst3.js:10:38:10:43 | data.p |
-| tst.js:2:7:2:39 | target |
-| tst.js:2:16:2:39 | documen ... .search |
-| tst.js:2:16:2:39 | documen ... .search |
-| tst.js:5:18:5:23 | target |
-| tst.js:5:18:5:23 | target |
-| tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:58 | documen ... on.href |
-| tst.js:8:37:8:58 | documen ... on.href |
-| tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:12:28:12:33 | target |
-| tst.js:17:7:17:56 | params |
-| tst.js:17:16:17:56 | (new UR ... hParams |
-| tst.js:17:25:17:41 | document.location |
-| tst.js:17:25:17:41 | document.location |
-| tst.js:18:18:18:23 | params |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:20:7:20:61 | searchParams |
-| tst.js:20:22:20:61 | new URL ... ing(1)) |
-| tst.js:20:42:20:47 | target |
-| tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:21:18:21:29 | searchParams |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:24:14:24:19 | target |
-| tst.js:26:18:26:23 | target |
-| tst.js:26:18:26:23 | target |
-| tst.js:28:5:28:28 | documen ... .search |
-| tst.js:28:5:28:28 | documen ... .search |
-| tst.js:31:10:31:33 | documen ... .search |
-| tst.js:31:10:31:33 | documen ... .search |
-| tst.js:34:16:34:20 | bar() |
-| tst.js:34:16:34:20 | bar() |
-| tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search |
-| tst.js:40:20:40:43 | documen ... .search |
-| tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search |
-| tst.js:46:21:46:44 | documen ... .search |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search |
-| tst.js:54:21:54:44 | documen ... .search |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search |
-| tst.js:56:21:56:44 | documen ... .search |
-| tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:58:26:58:30 | bar() |
-| tst.js:60:34:60:34 | s |
-| tst.js:62:18:62:18 | s |
-| tst.js:62:18:62:18 | s |
-| tst.js:64:25:64:48 | documen ... .search |
-| tst.js:64:25:64:48 | documen ... .search |
-| tst.js:65:25:65:48 | documen ... .search |
-| tst.js:65:25:65:48 | documen ... .search |
-| tst.js:68:16:68:20 | bar() |
-| tst.js:68:16:68:20 | bar() |
-| tst.js:70:1:70:27 | [,docum ... search] |
-| tst.js:70:3:70:26 | documen ... .search |
-| tst.js:70:3:70:26 | documen ... .search |
-| tst.js:70:46:70:46 | x |
-| tst.js:73:20:73:20 | x |
-| tst.js:73:20:73:20 | x |
-| tst.js:77:49:77:72 | documen ... .search |
-| tst.js:77:49:77:72 | documen ... .search |
-| tst.js:77:49:77:72 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search |
-| tst.js:107:7:107:44 | v |
-| tst.js:107:7:107:44 | v |
-| tst.js:107:7:107:44 | v |
-| tst.js:107:11:107:34 | documen ... .search |
-| tst.js:107:11:107:34 | documen ... .search |
-| tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:110:18:110:18 | v |
-| tst.js:110:18:110:18 | v |
-| tst.js:110:18:110:18 | v |
-| tst.js:110:18:110:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:148:29:148:50 | window. ... .search |
-| tst.js:148:29:148:50 | window. ... .search |
-| tst.js:151:29:151:29 | v |
-| tst.js:151:49:151:49 | v |
-| tst.js:151:49:151:49 | v |
-| tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search |
-| tst.js:158:40:158:61 | window. ... .search |
-| tst.js:177:9:177:41 | target |
-| tst.js:177:18:177:41 | documen ... .search |
-| tst.js:177:18:177:41 | documen ... .search |
-| tst.js:180:28:180:33 | target |
-| tst.js:180:28:180:33 | target |
-| tst.js:184:9:184:42 | tainted |
-| tst.js:184:19:184:42 | documen ... .search |
-| tst.js:184:19:184:42 | documen ... .search |
-| tst.js:186:31:186:37 | tainted |
-| tst.js:186:31:186:37 | tainted |
-| tst.js:188:42:188:48 | tainted |
-| tst.js:188:42:188:48 | tainted |
-| tst.js:189:33:189:39 | tainted |
-| tst.js:189:33:189:39 | tainted |
-| tst.js:191:54:191:60 | tainted |
-| tst.js:191:54:191:60 | tainted |
-| tst.js:192:45:192:51 | tainted |
-| tst.js:192:45:192:51 | tainted |
-| tst.js:193:49:193:55 | tainted |
-| tst.js:193:49:193:55 | tainted |
-| tst.js:197:9:197:42 | tainted |
-| tst.js:197:19:197:42 | documen ... .search |
-| tst.js:197:19:197:42 | documen ... .search |
-| tst.js:199:67:199:73 | tainted |
-| tst.js:199:67:199:73 | tainted |
-| tst.js:200:67:200:73 | tainted |
-| tst.js:200:67:200:73 | tainted |
-| tst.js:204:35:204:41 | tainted |
-| tst.js:206:46:206:52 | tainted |
-| tst.js:207:38:207:44 | tainted |
-| tst.js:208:35:208:41 | tainted |
-| tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:236:35:236:41 | tainted |
-| tst.js:238:20:238:26 | tainted |
-| tst.js:240:23:240:29 | tainted |
-| tst.js:241:23:241:29 | tainted |
-| tst.js:247:39:247:55 | props.propTainted |
-| tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:255:23:255:29 | tainted |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:260:7:260:10 | name |
-| tst.js:260:7:260:10 | name |
-| tst.js:260:7:260:10 | name |
-| tst.js:260:7:260:10 | name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:280:22:280:29 | location |
-| tst.js:280:22:280:29 | location |
-| tst.js:280:22:280:29 | location |
-| tst.js:285:9:285:29 | tainted |
-| tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name |
-| tst.js:285:19:285:29 | window.name |
-| tst.js:285:19:285:29 | window.name |
-| tst.js:288:59:288:65 | tainted |
-| tst.js:288:59:288:65 | tainted |
-| tst.js:288:59:288:65 | tainted |
-| tst.js:301:9:301:16 | location |
-| tst.js:301:9:301:16 | location |
-| tst.js:302:10:302:10 | e |
-| tst.js:303:20:303:20 | e |
-| tst.js:303:20:303:20 | e |
-| tst.js:308:10:308:17 | location |
-| tst.js:308:10:308:17 | location |
-| tst.js:310:10:310:10 | e |
-| tst.js:311:20:311:20 | e |
-| tst.js:311:20:311:20 | e |
-| tst.js:316:35:316:42 | location |
-| tst.js:316:35:316:42 | location |
-| tst.js:316:35:316:42 | location |
-| tst.js:327:18:327:34 | document.location |
-| tst.js:327:18:327:34 | document.location |
-| tst.js:331:7:331:43 | params |
-| tst.js:331:16:331:43 | getTain ... hParams |
-| tst.js:332:18:332:23 | params |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:341:20:341:36 | document.location |
-| tst.js:341:20:341:36 | document.location |
-| tst.js:343:5:343:17 | getUrl().hash |
-| tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:348:7:348:39 | target |
-| tst.js:348:16:348:39 | documen ... .search |
-| tst.js:348:16:348:39 | documen ... .search |
-| tst.js:349:12:349:17 | target |
-| tst.js:349:12:349:17 | target |
-| tst.js:355:10:355:42 | target |
-| tst.js:355:19:355:42 | documen ... .search |
-| tst.js:355:19:355:42 | documen ... .search |
-| tst.js:356:16:356:21 | target |
-| tst.js:356:16:356:21 | target |
-| tst.js:360:21:360:26 | target |
-| tst.js:360:21:360:26 | target |
-| tst.js:363:18:363:23 | target |
-| tst.js:363:18:363:23 | target |
-| tst.js:371:7:371:39 | target |
-| tst.js:371:16:371:39 | documen ... .search |
-| tst.js:371:16:371:39 | documen ... .search |
-| tst.js:374:18:374:23 | target |
-| tst.js:374:18:374:23 | target |
-| tst.js:381:7:381:39 | target |
-| tst.js:381:16:381:39 | documen ... .search |
-| tst.js:381:16:381:39 | documen ... .search |
-| tst.js:384:18:384:23 | target |
-| tst.js:384:18:384:23 | target |
-| tst.js:386:18:386:23 | target |
-| tst.js:386:18:386:29 | target.taint |
-| tst.js:386:18:386:29 | target.taint |
-| tst.js:391:19:391:42 | documen ... .search |
-| tst.js:391:19:391:42 | documen ... .search |
-| tst.js:392:18:392:30 | target.taint3 |
-| tst.js:392:18:392:30 | target.taint3 |
-| tst.js:397:18:397:23 | target |
-| tst.js:397:18:397:30 | target.taint5 |
-| tst.js:397:18:397:30 | target.taint5 |
-| tst.js:406:18:406:23 | target |
-| tst.js:406:18:406:30 | target.taint7 |
-| tst.js:406:18:406:30 | target.taint7 |
-| tst.js:408:19:408:24 | target |
-| tst.js:408:19:408:31 | target.taint8 |
-| tst.js:409:18:409:30 | target.taint8 |
-| tst.js:409:18:409:30 | target.taint8 |
-| tst.js:416:7:416:46 | payload |
-| tst.js:416:7:416:46 | payload |
-| tst.js:416:7:416:46 | payload |
-| tst.js:416:17:416:36 | window.location.hash |
-| tst.js:416:17:416:36 | window.location.hash |
-| tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:417:18:417:24 | payload |
-| tst.js:417:18:417:24 | payload |
-| tst.js:417:18:417:24 | payload |
-| tst.js:417:18:417:24 | payload |
-| tst.js:419:7:419:55 | match |
-| tst.js:419:15:419:34 | window.location.hash |
-| tst.js:419:15:419:34 | window.location.hash |
-| tst.js:419:15:419:55 | window. ... (\\w+)/) |
-| tst.js:421:20:421:24 | match |
-| tst.js:421:20:421:27 | match[1] |
-| tst.js:421:20:421:27 | match[1] |
-| tst.js:424:18:424:37 | window.location.hash |
-| tst.js:424:18:424:37 | window.location.hash |
-| tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:428:7:428:39 | target |
-| tst.js:428:16:428:39 | documen ... .search |
-| tst.js:428:16:428:39 | documen ... .search |
-| tst.js:430:18:430:23 | target |
-| tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:436:6:436:38 | source |
-| tst.js:436:15:436:38 | documen ... .search |
-| tst.js:436:15:436:38 | documen ... .search |
-| tst.js:440:28:440:33 | source |
-| tst.js:440:28:440:33 | source |
-| tst.js:441:33:441:38 | source |
-| tst.js:441:33:441:38 | source |
-| tst.js:442:34:442:39 | source |
-| tst.js:442:34:442:39 | source |
-| tst.js:443:41:443:46 | source |
-| tst.js:443:41:443:46 | source |
-| tst.js:444:44:444:49 | source |
-| tst.js:444:44:444:49 | source |
-| tst.js:445:32:445:37 | source |
-| tst.js:445:32:445:37 | source |
-| tst.js:453:7:453:39 | source |
-| tst.js:453:16:453:39 | documen ... .search |
-| tst.js:453:16:453:39 | documen ... .search |
-| tst.js:455:18:455:23 | source |
-| tst.js:455:18:455:23 | source |
-| tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:456:36:456:41 | source |
-| tst.js:460:6:460:38 | source |
-| tst.js:460:15:460:38 | documen ... .search |
-| tst.js:460:15:460:38 | documen ... .search |
-| tst.js:463:21:463:26 | source |
-| tst.js:463:21:463:26 | source |
-| tst.js:465:19:465:24 | source |
-| tst.js:465:19:465:24 | source |
-| tst.js:467:20:467:25 | source |
-| tst.js:467:20:467:25 | source |
-| tst.js:471:7:471:46 | url |
-| tst.js:471:13:471:36 | documen ... .search |
-| tst.js:471:13:471:36 | documen ... .search |
-| tst.js:471:13:471:46 | documen ... bstr(1) |
-| tst.js:473:19:473:21 | url |
-| tst.js:473:19:473:21 | url |
-| tst.js:474:26:474:28 | url |
-| tst.js:474:26:474:28 | url |
-| tst.js:475:25:475:27 | url |
-| tst.js:475:25:475:27 | url |
-| tst.js:476:20:476:22 | url |
-| tst.js:476:20:476:22 | url |
-| tst.js:486:22:486:24 | url |
-| tst.js:486:22:486:24 | url |
-| tst.js:491:23:491:35 | location.hash |
-| tst.js:491:23:491:35 | location.hash |
-| tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash |
-| tst.js:494:18:494:30 | location.hash |
-| tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash |
-| tst.js:501:43:501:62 | window.location.hash |
-| tst.js:508:7:508:39 | target |
-| tst.js:508:16:508:39 | documen ... .search |
-| tst.js:508:16:508:39 | documen ... .search |
-| tst.js:509:18:509:23 | target |
-| tst.js:509:18:509:54 | target. ... "), '') |
-| tst.js:509:18:509:54 | target. ... "), '') |
-| typeahead.js:20:13:20:45 | target |
-| typeahead.js:20:22:20:45 | documen ... .search |
-| typeahead.js:20:22:20:45 | documen ... .search |
-| typeahead.js:21:12:21:17 | target |
-| typeahead.js:24:30:24:32 | val |
-| typeahead.js:25:18:25:20 | val |
-| typeahead.js:25:18:25:20 | val |
-| v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location |
-| v-html.vue:6:42:6:58 | document.location |
-| various-concat-obfuscations.js:2:6:2:39 | tainted |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search |
-| various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:4:14:4:20 | tainted |
-| various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:5:12:5:18 | tainted |
-| various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) |
-| various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:19:6:25 | tainted |
-| various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] |
-| various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:14:7:20 | tainted |
-| various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:9:19:9:25 | tainted |
-| various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:10:16:10:22 | tainted |
-| various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) |
-| various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:24:11:30 | tainted |
-| various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] |
-| various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:19:12:25 | tainted |
-| various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search |
-| various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search |
-| various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs |
-| winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:17:2:40 | documen ... .search |
-| winjs.js:2:17:2:40 | documen ... .search |
-| winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-edges
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:44:5:47 | data | addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:5:44:5:47 | data | addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment | angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') | angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:40:44:40:58 | this.router.url | angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url | angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
-| angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
-| angular-tempate-url.js:14:26:14:27 | ev | angular-tempate-url.js:14:26:14:32 | ev.data |
-| angular-tempate-url.js:14:26:14:32 | ev.data | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| angular-tempate-url.js:14:26:14:32 | ev.data | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| classnames.js:7:47:7:69 | classNa ... w.name) | classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:47:7:69 | classNa ... w.name) | classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:58:7:68 | window.name | classnames.js:7:47:7:69 | classNa ... w.name) |
-| classnames.js:7:58:7:68 | window.name | classnames.js:7:47:7:69 | classNa ... w.name) |
-| classnames.js:8:47:8:70 | classNa ... w.name) | classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:47:8:70 | classNa ... w.name) | classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:59:8:69 | window.name | classnames.js:8:47:8:70 | classNa ... w.name) |
-| classnames.js:8:59:8:69 | window.name | classnames.js:8:47:8:70 | classNa ... w.name) |
-| classnames.js:9:47:9:70 | classNa ... w.name) | classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:47:9:70 | classNa ... w.name) | classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:59:9:69 | window.name | classnames.js:9:47:9:70 | classNa ... w.name) |
-| classnames.js:9:59:9:69 | window.name | classnames.js:9:47:9:70 | classNa ... w.name) |
-| classnames.js:10:45:10:55 | window.name | classnames.js:11:47:11:64 | unsafeStyle('foo') |
-| classnames.js:10:45:10:55 | window.name | classnames.js:11:47:11:64 | unsafeStyle('foo') |
-| classnames.js:11:47:11:64 | unsafeStyle('foo') | classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:11:47:11:64 | unsafeStyle('foo') | classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:13:47:13:68 | safeSty ... w.name) | classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:47:13:68 | safeSty ... w.name) | classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:57:13:67 | window.name | classnames.js:13:47:13:68 | safeSty ... w.name) |
-| classnames.js:13:57:13:67 | window.name | classnames.js:13:47:13:68 | safeSty ... w.name) |
-| classnames.js:15:47:15:63 | clsx(window.name) | classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:47:15:63 | clsx(window.name) | classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:52:15:62 | window.name | classnames.js:15:47:15:63 | clsx(window.name) |
-| classnames.js:15:52:15:62 | window.name | classnames.js:15:47:15:63 | clsx(window.name) |
-| classnames.js:17:48:17:64 | clsx(window.name) | classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:48:17:64 | clsx(window.name) | classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:53:17:63 | window.name | classnames.js:17:48:17:64 | clsx(window.name) |
-| classnames.js:17:53:17:63 | window.name | classnames.js:17:48:17:64 | clsx(window.name) |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') | clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') | clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') | clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| custom-element.js:5:26:5:36 | window.name | custom-element.js:5:26:5:36 | window.name |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| dates.js:9:9:9:69 | taint | dates.js:11:63:11:67 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:11:63:11:67 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:12:66:12:70 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:12:66:12:70 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:13:59:13:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:13:59:13:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:16:62:16:66 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:16:62:16:66 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:18:59:18:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:18:59:18:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:21:61:21:65 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:21:61:21:65 | taint |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) | dates.js:9:9:9:69 | taint |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) | dates.js:9:9:9:69 | taint |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:68 | window. ... ring(1) | dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:9:36:9:68 | window. ... ring(1) | dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:63:11:67 | taint | dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:11:63:11:67 | taint | dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:66:12:70 | taint | dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:12:66:12:70 | taint | dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:59:13:63 | taint | dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:13:59:13:63 | taint | dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:62:16:66 | taint | dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:16:62:16:66 | taint | dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:59:18:63 | taint | dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:18:59:18:63 | taint | dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:61:21:65 | taint | dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:21:61:21:65 | taint | dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:30:9:30:69 | taint | dates.js:37:77:37:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:37:77:37:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:38:77:38:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:38:77:38:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:39:79:39:83 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:39:79:39:83 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:40:77:40:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:40:77:40:81 | taint |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) | dates.js:30:9:30:69 | taint |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) | dates.js:30:9:30:69 | taint |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:68 | window. ... ring(1) | dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:30:36:30:68 | window. ... ring(1) | dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:77:37:81 | taint | dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:37:77:37:81 | taint | dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:77:38:81 | taint | dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:38:77:38:81 | taint | dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:79:39:83 | taint | dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:39:79:39:83 | taint | dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:77:40:81 | taint | dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:40:77:40:81 | taint | dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:46:9:46:69 | taint | dates.js:48:83:48:87 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:48:83:48:87 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:49:82:49:86 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:49:82:49:86 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:50:97:50:101 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:50:97:50:101 | taint |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) | dates.js:46:9:46:69 | taint |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) | dates.js:46:9:46:69 | taint |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:68 | window. ... ring(1) | dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:46:36:46:68 | window. ... ring(1) | dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:83:48:87 | taint | dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:48:83:48:87 | taint | dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:82:49:86 | taint | dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:49:82:49:86 | taint | dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:97:50:101 | taint | dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:50:97:50:101 | taint | dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:54:9:54:69 | taint | dates.js:57:94:57:98 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:57:94:57:98 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:59:80:59:84 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:59:80:59:84 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:61:81:61:85 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:61:81:61:85 | taint |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) | dates.js:54:9:54:69 | taint |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) | dates.js:54:9:54:69 | taint |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:68 | window. ... ring(1) | dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:54:36:54:68 | window. ... ring(1) | dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:94:57:98 | taint | dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:57:94:57:98 | taint | dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:80:59:84 | taint | dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:59:80:59:84 | taint | dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:81:61:85 | taint | dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dates.js:61:81:61:85 | taint | dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| express.js:7:15:7:33 | req.param("wobble") | express.js:7:15:7:33 | req.param("wobble") |
-| jquery.js:2:7:2:40 | tainted | jquery.js:7:20:7:26 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:8:28:8:34 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:36:25:36:31 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:36:25:36:31 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:37:31:37:37 | tainted |
-| jquery.js:2:17:2:40 | documen ... .search | jquery.js:2:7:2:40 | tainted |
-| jquery.js:2:17:2:40 | documen ... .search | jquery.js:2:7:2:40 | tainted |
-| jquery.js:7:20:7:26 | tainted | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:7:20:7:26 | tainted | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:8:28:8:34 | tainted | jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:8:28:8:34 | tainted | jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:10:13:10:20 | location | jquery.js:10:13:10:31 | location.toString() |
-| jquery.js:10:13:10:20 | location | jquery.js:10:13:10:31 | location.toString() |
-| jquery.js:10:13:10:31 | location.toString() | jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:10:13:10:31 | location.toString() | jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:16:38:16:52 | window.location | jquery.js:16:38:16:63 | window. ... tring() |
-| jquery.js:16:38:16:52 | window.location | jquery.js:16:38:16:63 | window. ... tring() |
-| jquery.js:16:38:16:63 | window. ... tring() | jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:16:38:16:63 | window. ... tring() | jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:18:7:18:33 | hash | jquery.js:21:5:21:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:22:5:22:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:23:5:23:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:24:5:24:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:27:5:27:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:34:13:34:16 | hash |
-| jquery.js:18:14:18:33 | window.location.hash | jquery.js:18:7:18:33 | hash |
-| jquery.js:18:14:18:33 | window.location.hash | jquery.js:18:7:18:33 | hash |
-| jquery.js:21:5:21:8 | hash | jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:8 | hash | jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:8 | hash | jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:22:5:22:8 | hash | jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:8 | hash | jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:8 | hash | jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:23:5:23:8 | hash | jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:8 | hash | jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:8 | hash | jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:24:5:24:8 | hash | jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:8 | hash | jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:8 | hash | jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:27:5:27:8 | hash | jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:8 | hash | jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:8 | hash | jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:34:13:34:16 | hash | jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:34:13:34:16 | hash | jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:37:31:37:37 | tainted | jquery.js:37:25:37:37 | () => tainted |
-| jquery.js:37:31:37:37 | tainted | jquery.js:37:25:37:37 | () => tainted |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:11:51:11:56 | locale |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:19:56:19:61 | locale |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:11:16:11:58 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:11:16:11:58 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:11:51:11:56 | locale | json-stringify.jsx:11:16:11:58 | `https: ... ocale}` |
-| json-stringify.jsx:19:16:19:63 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:19:16:19:63 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:19:56:19:61 | locale | json-stringify.jsx:19:16:19:63 | `https: ... ocale}` |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| jwt-server.js:7:9:7:35 | taint | jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:7:9:7:35 | taint | jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:9:16:9:20 | taint | jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:9:16:9:20 | taint | jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:9:55:9:61 | decoded | jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:9:55:9:61 | decoded | jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:8:17:8:22 | target |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:15:9:15:14 | target |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search | optionalSanitizer.js:2:7:2:39 | target |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search | optionalSanitizer.js:2:7:2:39 | target |
-| optionalSanitizer.js:8:7:8:22 | tainted | optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:8:7:8:22 | tainted | optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:8:17:8:22 | target | optionalSanitizer.js:8:7:8:22 | tainted |
-| optionalSanitizer.js:15:9:15:14 | target | optionalSanitizer.js:16:18:16:18 | x |
-| optionalSanitizer.js:16:18:16:18 | x | optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:16:18:16:18 | x | optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:31:18:31:23 | target |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:38:18:38:23 | target |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:45:41:45:46 | target |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:45:51:45:56 | target |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search | optionalSanitizer.js:26:7:26:39 | target |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search | optionalSanitizer.js:26:7:26:39 | target |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:34:28:34:35 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:31:18:31:23 | target | optionalSanitizer.js:31:7:31:23 | tainted2 |
-| optionalSanitizer.js:34:5:34:36 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:34:5:34:36 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:34:16:34:36 | sanitiz ... inted2) | optionalSanitizer.js:34:5:34:36 | tainted2 |
-| optionalSanitizer.js:34:28:34:35 | tainted2 | optionalSanitizer.js:34:16:34:36 | sanitiz ... inted2) |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:41:28:41:35 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:38:18:38:23 | target | optionalSanitizer.js:38:7:38:23 | tainted3 |
-| optionalSanitizer.js:41:5:41:36 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:41:5:41:36 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:41:16:41:36 | sanitiz ... inted3) | optionalSanitizer.js:41:5:41:36 | tainted3 |
-| optionalSanitizer.js:41:28:41:35 | tainted3 | optionalSanitizer.js:41:16:41:36 | sanitiz ... inted3) |
-| optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:41:45:46 | target | optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) |
-| optionalSanitizer.js:45:51:45:56 | target | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:51:45:56 | target | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| pages/[id].jsx:5:9:5:14 | { id } | pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:9:5:14 | { id } | pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:11:5:12 | id | pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:11:5:12 | id | pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:27 | context.params.id | pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:25:11:25:27 | context.params.id | pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar | pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar | pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-use-context.js:10:22:10:32 | window.name | react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:16:26:16:36 | window.name | react-use-context.js:16:26:16:36 | window.name |
-| react-use-router.js:4:9:4:28 | router | react-use-router.js:8:21:8:26 | router |
-| react-use-router.js:4:9:4:28 | router | react-use-router.js:11:24:11:29 | router |
-| react-use-router.js:4:18:4:28 | useRouter() | react-use-router.js:4:9:4:28 | router |
-| react-use-router.js:8:21:8:26 | router | react-use-router.js:8:21:8:32 | router.query |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:39 | router.query.foobar | react-use-router.js:4:18:4:28 | useRouter() |
-| react-use-router.js:11:24:11:29 | router | react-use-router.js:11:24:11:35 | router.query |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:22:15:22:24 | router | react-use-router.js:23:43:23:48 | router |
-| react-use-router.js:22:17:22:22 | router | react-use-router.js:22:15:22:24 | router |
-| react-use-router.js:23:43:23:48 | router | react-use-router.js:23:43:23:54 | router.query |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:61 | router.query.foobar | react-use-router.js:22:17:22:22 | router |
-| react-use-router.js:29:9:29:30 | router | react-use-router.js:33:21:33:26 | router |
-| react-use-router.js:29:18:29:30 | myUseRouter() | react-use-router.js:29:9:29:30 | router |
-| react-use-router.js:33:21:33:26 | router | react-use-router.js:33:21:33:32 | router.query |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:39 | router.query.foobar | react-use-router.js:29:18:29:30 | myUseRouter() |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:10:4:14 | state | react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:10:4:14 | state | react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:10:9:14 | state | react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:9:10:9:14 | state | react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:10:15:14 | state | react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:15:10:15:14 | state | react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:21:10:21:14 | state | react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:21:10:21:14 | state | react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:23:29:23:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:30:29:30:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:33:29:33:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:38:29:38:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:45:29:45:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:23:29:23:35 | tainted | sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:23:29:23:35 | tainted | sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:29:30:35 | tainted | sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:29:30:35 | tainted | sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:29:33:35 | tainted | sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:29:33:35 | tainted | sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:29:38:35 | tainted | sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:29:38:35 | tainted | sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:29:45:35 | tainted | sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:29:45:35 | tainted | sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:10:16:10:44 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:10:16:10:44 | localSt ... local') |
-| stored-xss.js:10:9:10:44 | href | stored-xss.js:12:35:12:38 | href |
-| stored-xss.js:10:16:10:44 | localSt ... local') | stored-xss.js:10:9:10:44 | href |
-| stored-xss.js:12:35:12:38 | href | stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:35:12:38 | href | stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:35:12:38 | href | stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| string-manipulations.js:3:16:3:32 | document.location | string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:4:16:4:37 | documen ... on.href | string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:23:38:23:43 | source |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:23:38:23:43 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| translate.js:6:7:6:39 | target | translate.js:7:42:7:47 | target |
-| translate.js:6:16:6:39 | documen ... .search | translate.js:6:7:6:39 | target |
-| translate.js:6:16:6:39 | documen ... .search | translate.js:6:7:6:39 | target |
-| translate.js:7:7:7:61 | searchParams | translate.js:9:27:9:38 | searchParams |
-| translate.js:7:22:7:61 | new URL ... ing(1)) | translate.js:7:7:7:61 | searchParams |
-| translate.js:7:42:7:47 | target | translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:47 | target | translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:47 | target | translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:7:22:7:61 | new URL ... ing(1)) |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:38 | searchParams | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:38 | searchParams | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:38 | searchParams | translate.js:9:27:9:50 | searchP ... 'term') |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:4:25:4:28 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:5:26:5:29 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:7:32:7:35 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:9:37:9:40 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:10:38:10:41 | data |
-| tst3.js:2:23:2:74 | decodeU ... str(1)) | tst3.js:2:12:2:75 | JSON.pa ... tr(1))) |
-| tst3.js:2:42:2:63 | window. ... .search | tst3.js:2:42:2:73 | window. ... bstr(1) |
-| tst3.js:2:42:2:63 | window. ... .search | tst3.js:2:42:2:73 | window. ... bstr(1) |
-| tst3.js:2:42:2:73 | window. ... bstr(1) | tst3.js:2:23:2:74 | decodeU ... str(1)) |
-| tst3.js:4:25:4:28 | data | tst3.js:4:25:4:32 | data.src |
-| tst3.js:4:25:4:28 | data | tst3.js:4:25:4:32 | data.src |
-| tst3.js:5:26:5:29 | data | tst3.js:5:26:5:31 | data.p |
-| tst3.js:5:26:5:29 | data | tst3.js:5:26:5:31 | data.p |
-| tst3.js:7:32:7:35 | data | tst3.js:7:32:7:37 | data.p |
-| tst3.js:7:32:7:35 | data | tst3.js:7:32:7:37 | data.p |
-| tst3.js:9:37:9:40 | data | tst3.js:9:37:9:42 | data.p |
-| tst3.js:9:37:9:40 | data | tst3.js:9:37:9:42 | data.p |
-| tst3.js:10:38:10:41 | data | tst3.js:10:38:10:43 | data.p |
-| tst3.js:10:38:10:41 | data | tst3.js:10:38:10:43 | data.p |
-| tst.js:2:7:2:39 | target | tst.js:5:18:5:23 | target |
-| tst.js:2:7:2:39 | target | tst.js:5:18:5:23 | target |
-| tst.js:2:7:2:39 | target | tst.js:12:28:12:33 | target |
-| tst.js:2:7:2:39 | target | tst.js:20:42:20:47 | target |
-| tst.js:2:16:2:39 | documen ... .search | tst.js:2:7:2:39 | target |
-| tst.js:2:16:2:39 | documen ... .search | tst.js:2:7:2:39 | target |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:12:28:12:33 | target | tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:12:28:12:33 | target | tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:17:7:17:56 | params | tst.js:18:18:18:23 | params |
-| tst.js:17:16:17:56 | (new UR ... hParams | tst.js:17:7:17:56 | params |
-| tst.js:17:25:17:41 | document.location | tst.js:17:16:17:56 | (new UR ... hParams |
-| tst.js:17:25:17:41 | document.location | tst.js:17:16:17:56 | (new UR ... hParams |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:23 | params | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:23 | params | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:23 | params | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:20:7:20:61 | searchParams | tst.js:21:18:21:29 | searchParams |
-| tst.js:20:22:20:61 | new URL ... ing(1)) | tst.js:20:7:20:61 | searchParams |
-| tst.js:20:42:20:47 | target | tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:47 | target | tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:47 | target | tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:20:22:20:61 | new URL ... ing(1)) |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:29 | searchParams | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:29 | searchParams | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:29 | searchParams | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:24:14:24:19 | target | tst.js:26:18:26:23 | target |
-| tst.js:24:14:24:19 | target | tst.js:26:18:26:23 | target |
-| tst.js:28:5:28:28 | documen ... .search | tst.js:24:14:24:19 | target |
-| tst.js:28:5:28:28 | documen ... .search | tst.js:24:14:24:19 | target |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:58:26:58:30 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:58:26:58:30 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:26:58:30 | bar() | tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:58:26:58:30 | bar() | tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:60:34:60:34 | s | tst.js:62:18:62:18 | s |
-| tst.js:60:34:60:34 | s | tst.js:62:18:62:18 | s |
-| tst.js:64:25:64:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:64:25:64:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:65:25:65:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:65:25:65:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:70:1:70:27 | [,docum ... search] | tst.js:70:46:70:46 | x |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:1:70:27 | [,docum ... search] |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:1:70:27 | [,docum ... search] |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:46:70:46 | x |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:46:70:46 | x |
-| tst.js:70:46:70:46 | x | tst.js:73:20:73:20 | x |
-| tst.js:70:46:70:46 | x | tst.js:73:20:73:20 | x |
-| tst.js:77:49:77:72 | documen ... .search | tst.js:77:49:77:72 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search | tst.js:81:26:81:49 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search | tst.js:82:25:82:48 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search | tst.js:84:33:84:56 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search | tst.js:85:32:85:55 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search | tst.js:90:39:90:62 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search | tst.js:96:30:96:53 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search | tst.js:102:25:102:48 | documen ... .search |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:44 | documen ... bstr(1) | tst.js:107:7:107:44 | v |
-| tst.js:107:11:107:44 | documen ... bstr(1) | tst.js:107:7:107:44 | v |
-| tst.js:107:11:107:44 | documen ... bstr(1) | tst.js:107:7:107:44 | v |
-| tst.js:148:29:148:50 | window. ... .search | tst.js:151:29:151:29 | v |
-| tst.js:148:29:148:50 | window. ... .search | tst.js:151:29:151:29 | v |
-| tst.js:151:29:151:29 | v | tst.js:151:49:151:49 | v |
-| tst.js:151:29:151:29 | v | tst.js:151:49:151:49 | v |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:177:9:177:41 | target | tst.js:180:28:180:33 | target |
-| tst.js:177:9:177:41 | target | tst.js:180:28:180:33 | target |
-| tst.js:177:18:177:41 | documen ... .search | tst.js:177:9:177:41 | target |
-| tst.js:177:18:177:41 | documen ... .search | tst.js:177:9:177:41 | target |
-| tst.js:184:9:184:42 | tainted | tst.js:186:31:186:37 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:186:31:186:37 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:188:42:188:48 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:188:42:188:48 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:189:33:189:39 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:189:33:189:39 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:191:54:191:60 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:191:54:191:60 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:192:45:192:51 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:192:45:192:51 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:193:49:193:55 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:193:49:193:55 | tainted |
-| tst.js:184:19:184:42 | documen ... .search | tst.js:184:9:184:42 | tainted |
-| tst.js:184:19:184:42 | documen ... .search | tst.js:184:9:184:42 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:199:67:199:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:199:67:199:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:200:67:200:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:200:67:200:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:204:35:204:41 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:206:46:206:52 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:207:38:207:44 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:208:35:208:41 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:236:35:236:41 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:238:20:238:26 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:240:23:240:29 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:241:23:241:29 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:255:23:255:29 | tainted |
-| tst.js:197:19:197:42 | documen ... .search | tst.js:197:9:197:42 | tainted |
-| tst.js:197:19:197:42 | documen ... .search | tst.js:197:9:197:42 | tainted |
-| tst.js:204:35:204:41 | tainted | tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:204:35:204:41 | tainted | tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:206:46:206:52 | tainted | tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:206:46:206:52 | tainted | tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:207:38:207:44 | tainted | tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:207:38:207:44 | tainted | tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:208:35:208:41 | tainted | tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:208:35:208:41 | tainted | tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:236:35:236:41 | tainted | tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:236:35:236:41 | tainted | tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:238:20:238:26 | tainted | tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:238:20:238:26 | tainted | tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:240:23:240:29 | tainted | tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:240:23:240:29 | tainted | tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:241:23:241:29 | tainted | tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:241:23:241:29 | tainted | tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:247:39:247:55 | props.propTainted | tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:247:39:247:55 | props.propTainted | tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:255:23:255:29 | tainted | tst.js:247:39:247:55 | props.propTainted |
-| tst.js:259:7:259:17 | window.name | tst.js:259:7:259:17 | window.name |
-| tst.js:260:7:260:10 | name | tst.js:260:7:260:10 | name |
-| tst.js:264:11:264:21 | window.name | tst.js:264:11:264:21 | window.name |
-| tst.js:280:22:280:29 | location | tst.js:280:22:280:29 | location |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:301:9:301:16 | location | tst.js:302:10:302:10 | e |
-| tst.js:301:9:301:16 | location | tst.js:302:10:302:10 | e |
-| tst.js:302:10:302:10 | e | tst.js:303:20:303:20 | e |
-| tst.js:302:10:302:10 | e | tst.js:303:20:303:20 | e |
-| tst.js:308:10:308:17 | location | tst.js:310:10:310:10 | e |
-| tst.js:308:10:308:17 | location | tst.js:310:10:310:10 | e |
-| tst.js:310:10:310:10 | e | tst.js:311:20:311:20 | e |
-| tst.js:310:10:310:10 | e | tst.js:311:20:311:20 | e |
-| tst.js:316:35:316:42 | location | tst.js:316:35:316:42 | location |
-| tst.js:327:18:327:34 | document.location | tst.js:331:16:331:43 | getTain ... hParams |
-| tst.js:327:18:327:34 | document.location | tst.js:331:16:331:43 | getTain ... hParams |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:331:7:331:43 | params | tst.js:332:18:332:23 | params |
-| tst.js:331:16:331:43 | getTain ... hParams | tst.js:331:7:331:43 | params |
-| tst.js:332:18:332:23 | params | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:23 | params | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:23 | params | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:341:20:341:36 | document.location | tst.js:343:5:343:17 | getUrl().hash |
-| tst.js:341:20:341:36 | document.location | tst.js:343:5:343:17 | getUrl().hash |
-| tst.js:343:5:343:17 | getUrl().hash | tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:17 | getUrl().hash | tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:17 | getUrl().hash | tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:348:7:348:39 | target | tst.js:349:12:349:17 | target |
-| tst.js:348:7:348:39 | target | tst.js:349:12:349:17 | target |
-| tst.js:348:16:348:39 | documen ... .search | tst.js:348:7:348:39 | target |
-| tst.js:348:16:348:39 | documen ... .search | tst.js:348:7:348:39 | target |
-| tst.js:355:10:355:42 | target | tst.js:356:16:356:21 | target |
-| tst.js:355:10:355:42 | target | tst.js:356:16:356:21 | target |
-| tst.js:355:10:355:42 | target | tst.js:360:21:360:26 | target |
-| tst.js:355:10:355:42 | target | tst.js:360:21:360:26 | target |
-| tst.js:355:10:355:42 | target | tst.js:363:18:363:23 | target |
-| tst.js:355:10:355:42 | target | tst.js:363:18:363:23 | target |
-| tst.js:355:19:355:42 | documen ... .search | tst.js:355:10:355:42 | target |
-| tst.js:355:19:355:42 | documen ... .search | tst.js:355:10:355:42 | target |
-| tst.js:371:7:371:39 | target | tst.js:374:18:374:23 | target |
-| tst.js:371:7:371:39 | target | tst.js:374:18:374:23 | target |
-| tst.js:371:16:371:39 | documen ... .search | tst.js:371:7:371:39 | target |
-| tst.js:371:16:371:39 | documen ... .search | tst.js:371:7:371:39 | target |
-| tst.js:381:7:381:39 | target | tst.js:384:18:384:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:384:18:384:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:386:18:386:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:397:18:397:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:406:18:406:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:408:19:408:24 | target |
-| tst.js:381:16:381:39 | documen ... .search | tst.js:381:7:381:39 | target |
-| tst.js:381:16:381:39 | documen ... .search | tst.js:381:7:381:39 | target |
-| tst.js:386:18:386:23 | target | tst.js:386:18:386:29 | target.taint |
-| tst.js:386:18:386:23 | target | tst.js:386:18:386:29 | target.taint |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:397:18:397:23 | target | tst.js:397:18:397:30 | target.taint5 |
-| tst.js:397:18:397:23 | target | tst.js:397:18:397:30 | target.taint5 |
-| tst.js:406:18:406:23 | target | tst.js:406:18:406:30 | target.taint7 |
-| tst.js:406:18:406:23 | target | tst.js:406:18:406:30 | target.taint7 |
-| tst.js:408:19:408:24 | target | tst.js:408:19:408:31 | target.taint8 |
-| tst.js:408:19:408:31 | target.taint8 | tst.js:408:19:408:31 | target.taint8 |
-| tst.js:408:19:408:31 | target.taint8 | tst.js:409:18:409:30 | target.taint8 |
-| tst.js:408:19:408:31 | target.taint8 | tst.js:409:18:409:30 | target.taint8 |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:46 | window. ... bstr(1) | tst.js:416:7:416:46 | payload |
-| tst.js:416:17:416:46 | window. ... bstr(1) | tst.js:416:7:416:46 | payload |
-| tst.js:416:17:416:46 | window. ... bstr(1) | tst.js:416:7:416:46 | payload |
-| tst.js:419:7:419:55 | match | tst.js:421:20:421:24 | match |
-| tst.js:419:15:419:34 | window.location.hash | tst.js:419:15:419:55 | window. ... (\\w+)/) |
-| tst.js:419:15:419:34 | window.location.hash | tst.js:419:15:419:55 | window. ... (\\w+)/) |
-| tst.js:419:15:419:55 | window. ... (\\w+)/) | tst.js:419:7:419:55 | match |
-| tst.js:421:20:421:24 | match | tst.js:421:20:421:27 | match[1] |
-| tst.js:421:20:421:24 | match | tst.js:421:20:421:27 | match[1] |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:428:7:428:39 | target | tst.js:430:18:430:23 | target |
-| tst.js:428:16:428:39 | documen ... .search | tst.js:428:7:428:39 | target |
-| tst.js:428:16:428:39 | documen ... .search | tst.js:428:7:428:39 | target |
-| tst.js:430:18:430:23 | target | tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:430:18:430:23 | target | tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:436:6:436:38 | source | tst.js:440:28:440:33 | source |
-| tst.js:436:6:436:38 | source | tst.js:440:28:440:33 | source |
-| tst.js:436:6:436:38 | source | tst.js:441:33:441:38 | source |
-| tst.js:436:6:436:38 | source | tst.js:441:33:441:38 | source |
-| tst.js:436:6:436:38 | source | tst.js:442:34:442:39 | source |
-| tst.js:436:6:436:38 | source | tst.js:442:34:442:39 | source |
-| tst.js:436:6:436:38 | source | tst.js:443:41:443:46 | source |
-| tst.js:436:6:436:38 | source | tst.js:443:41:443:46 | source |
-| tst.js:436:6:436:38 | source | tst.js:444:44:444:49 | source |
-| tst.js:436:6:436:38 | source | tst.js:444:44:444:49 | source |
-| tst.js:436:6:436:38 | source | tst.js:445:32:445:37 | source |
-| tst.js:436:6:436:38 | source | tst.js:445:32:445:37 | source |
-| tst.js:436:15:436:38 | documen ... .search | tst.js:436:6:436:38 | source |
-| tst.js:436:15:436:38 | documen ... .search | tst.js:436:6:436:38 | source |
-| tst.js:453:7:453:39 | source | tst.js:455:18:455:23 | source |
-| tst.js:453:7:453:39 | source | tst.js:455:18:455:23 | source |
-| tst.js:453:7:453:39 | source | tst.js:456:36:456:41 | source |
-| tst.js:453:16:453:39 | documen ... .search | tst.js:453:7:453:39 | source |
-| tst.js:453:16:453:39 | documen ... .search | tst.js:453:7:453:39 | source |
-| tst.js:456:36:456:41 | source | tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:456:36:456:41 | source | tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:460:6:460:38 | source | tst.js:463:21:463:26 | source |
-| tst.js:460:6:460:38 | source | tst.js:463:21:463:26 | source |
-| tst.js:460:6:460:38 | source | tst.js:465:19:465:24 | source |
-| tst.js:460:6:460:38 | source | tst.js:465:19:465:24 | source |
-| tst.js:460:6:460:38 | source | tst.js:467:20:467:25 | source |
-| tst.js:460:6:460:38 | source | tst.js:467:20:467:25 | source |
-| tst.js:460:15:460:38 | documen ... .search | tst.js:460:6:460:38 | source |
-| tst.js:460:15:460:38 | documen ... .search | tst.js:460:6:460:38 | source |
-| tst.js:471:7:471:46 | url | tst.js:473:19:473:21 | url |
-| tst.js:471:7:471:46 | url | tst.js:473:19:473:21 | url |
-| tst.js:471:7:471:46 | url | tst.js:474:26:474:28 | url |
-| tst.js:471:7:471:46 | url | tst.js:474:26:474:28 | url |
-| tst.js:471:7:471:46 | url | tst.js:475:25:475:27 | url |
-| tst.js:471:7:471:46 | url | tst.js:475:25:475:27 | url |
-| tst.js:471:7:471:46 | url | tst.js:476:20:476:22 | url |
-| tst.js:471:7:471:46 | url | tst.js:476:20:476:22 | url |
-| tst.js:471:7:471:46 | url | tst.js:486:22:486:24 | url |
-| tst.js:471:7:471:46 | url | tst.js:486:22:486:24 | url |
-| tst.js:471:13:471:36 | documen ... .search | tst.js:471:13:471:46 | documen ... bstr(1) |
-| tst.js:471:13:471:36 | documen ... .search | tst.js:471:13:471:46 | documen ... bstr(1) |
-| tst.js:471:13:471:46 | documen ... bstr(1) | tst.js:471:7:471:46 | url |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:508:7:508:39 | target | tst.js:509:18:509:23 | target |
-| tst.js:508:16:508:39 | documen ... .search | tst.js:508:7:508:39 | target |
-| tst.js:508:16:508:39 | documen ... .search | tst.js:508:7:508:39 | target |
-| tst.js:509:18:509:23 | target | tst.js:509:18:509:54 | target. ... "), '') |
-| tst.js:509:18:509:23 | target | tst.js:509:18:509:54 | target. ... "), '') |
-| typeahead.js:20:13:20:45 | target | typeahead.js:21:12:21:17 | target |
-| typeahead.js:20:22:20:45 | documen ... .search | typeahead.js:20:13:20:45 | target |
-| typeahead.js:20:22:20:45 | documen ... .search | typeahead.js:20:13:20:45 | target |
-| typeahead.js:21:12:21:17 | target | typeahead.js:24:30:24:32 | val |
-| typeahead.js:24:30:24:32 | val | typeahead.js:25:18:25:20 | val |
-| typeahead.js:24:30:24:32 | val | typeahead.js:25:18:25:20 | val |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:4:14:4:20 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:5:12:5:18 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:6:19:6:25 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:7:14:7:20 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:9:19:9:25 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:10:16:10:22 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:11:24:11:30 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:12:19:12:25 | tainted |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search | various-concat-obfuscations.js:2:6:2:39 | tainted |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search | various-concat-obfuscations.js:2:6:2:39 | tainted |
-| various-concat-obfuscations.js:4:14:4:20 | tainted | various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:4:14:4:20 | tainted | various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:5:12:5:18 | tainted | various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:5:12:5:18 | tainted | various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) | various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) | various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:19:6:25 | tainted | various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) |
-| various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] | various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] | various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:14:7:20 | tainted | various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] |
-| various-concat-obfuscations.js:9:19:9:25 | tainted | various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:9:19:9:25 | tainted | various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:10:16:10:22 | tainted | various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:10:16:10:22 | tainted | various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) | various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) | various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:24:11:30 | tainted | various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) |
-| various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] | various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] | various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:19:12:25 | tainted | various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search | various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search | various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs | various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs | various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search | various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search | various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs | various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs | various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:53 | documen ... ring(1) | winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:17:2:53 | documen ... ring(1) | winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:17:2:53 | documen ... ring(1) | winjs.js:2:7:2:53 | tainted |
 | addEventListener.js:1:43:1:47 | event | semmle.label | event |
 | addEventListener.js:2:20:2:24 | event | semmle.label | event |
 | addEventListener.js:2:20:2:29 | event.data | semmle.label | event.data |
@@ -2433,24 +8,26 @@ edges
 | addEventListener.js:10:21:10:25 | event | semmle.label | event |
 | addEventListener.js:12:24:12:28 | event | semmle.label | event |
 | addEventListener.js:12:24:12:33 | event.data | semmle.label | event.data |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | semmle.label | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | semmle.label | this.ro ... .params |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | semmle.label | this.ro ... yParams |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment | semmle.label | this.ro ... ragment |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') | semmle.label | map.get('foo') |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path | semmle.label | this.ro ... 1].path |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | semmle.label | this.ro ... ameters |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x | semmle.label | this.ro ... eters.x |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') | semmle.label | this.ro ... et('x') |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | semmle.label | this.ro ... .params |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x | semmle.label | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:58 | this.router.url | semmle.label | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url | semmle.label | this.router.url |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | semmle.label | routeSn ... ('foo') |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | semmle.label | \\u0275getDOM ... ().href |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | semmle.label | this.ro ... .params |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | semmle.label | this.ro ... yParams |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment | semmle.label | this.ro ... ragment |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') | semmle.label | map.get('foo') |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | semmle.label | this.ro ... 1].path |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | semmle.label | this.ro ... ameters |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x | semmle.label | this.ro ... eters.x |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | semmle.label | this.ro ... et('x') |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | semmle.label | this.ro ... .params |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x | semmle.label | this.ro ... arams.x |
+| angular2-client.ts:40:44:40:58 | this.router.url | semmle.label | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url | semmle.label | this.router.url |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | semmle.label | this.ro ... yParams |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | semmle.label | routeSn ... ('foo') |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") | semmle.label | Cookie.get("unsafe") |
 | angular-tempate-url.js:13:30:13:31 | ev | semmle.label | ev |
 | angular-tempate-url.js:14:26:14:27 | ev | semmle.label | ev |
@@ -3062,10 +639,11 @@ edges
 | addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:43:5:48 | data | provenance |  |
 | addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event | provenance |  |
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data | provenance |  |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | provenance |  |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | provenance |  |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x | provenance |  |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x | provenance |  |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo | provenance |  |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo | provenance |  |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x | provenance |  |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x | provenance |  |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo | provenance |  |
 | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev | provenance |  |
 | angular-tempate-url.js:14:26:14:27 | ev | angular-tempate-url.js:14:26:14:32 | ev.data | provenance |  |
 | angular-tempate-url.js:14:26:14:32 | ev.data | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") | provenance |  |
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected
index 4f71c567e057..80871ad4e512 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/XssWithAdditionalSources.expected
@@ -1,2530 +1,4 @@
 nodes
-| addEventListener.js:1:43:1:47 | event |
-| addEventListener.js:1:43:1:47 | event |
-| addEventListener.js:1:43:1:47 | event |
-| addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:5:43:5:48 | {data} |
-| addEventListener.js:5:43:5:48 | {data} |
-| addEventListener.js:5:43:5:48 | {data} |
-| addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:10:21:10:25 | event |
-| addEventListener.js:10:21:10:25 | event |
-| addEventListener.js:10:21:10:25 | event |
-| addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params |
-| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams |
-| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters |
-| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params |
-| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams |
-| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| angular-tempate-url.js:13:30:13:31 | ev |
-| angular-tempate-url.js:13:30:13:31 | ev |
-| angular-tempate-url.js:14:26:14:27 | ev |
-| angular-tempate-url.js:14:26:14:32 | ev.data |
-| classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:47:7:69 | classNa ... w.name) |
-| classnames.js:7:58:7:68 | window.name |
-| classnames.js:7:58:7:68 | window.name |
-| classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:47:8:70 | classNa ... w.name) |
-| classnames.js:8:59:8:69 | window.name |
-| classnames.js:8:59:8:69 | window.name |
-| classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:47:9:70 | classNa ... w.name) |
-| classnames.js:9:59:9:69 | window.name |
-| classnames.js:9:59:9:69 | window.name |
-| classnames.js:10:45:10:55 | window.name |
-| classnames.js:10:45:10:55 | window.name |
-| classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:11:47:11:64 | unsafeStyle('foo') |
-| classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:47:13:68 | safeSty ... w.name) |
-| classnames.js:13:57:13:67 | window.name |
-| classnames.js:13:57:13:67 | window.name |
-| classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:47:15:63 | clsx(window.name) |
-| classnames.js:15:52:15:62 | window.name |
-| classnames.js:15:52:15:62 | window.name |
-| classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:48:17:64 | clsx(window.name) |
-| classnames.js:17:53:17:63 | window.name |
-| classnames.js:17:53:17:63 | window.name |
-| clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') |
-| clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') |
-| clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') |
-| clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') |
-| clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:99:23:99:26 | html |
-| custom-element.js:5:26:5:36 | window.name |
-| custom-element.js:5:26:5:36 | window.name |
-| custom-element.js:5:26:5:36 | window.name |
-| custom-element.js:5:26:5:36 | window.name |
-| d3.js:4:12:4:22 | window.name |
-| d3.js:4:12:4:22 | window.name |
-| d3.js:4:12:4:22 | window.name |
-| d3.js:11:15:11:24 | getTaint() |
-| d3.js:11:15:11:24 | getTaint() |
-| d3.js:11:15:11:24 | getTaint() |
-| d3.js:12:20:12:29 | getTaint() |
-| d3.js:12:20:12:29 | getTaint() |
-| d3.js:12:20:12:29 | getTaint() |
-| d3.js:14:20:14:29 | getTaint() |
-| d3.js:14:20:14:29 | getTaint() |
-| d3.js:14:20:14:29 | getTaint() |
-| d3.js:21:15:21:24 | getTaint() |
-| d3.js:21:15:21:24 | getTaint() |
-| d3.js:21:15:21:24 | getTaint() |
-| dates.js:9:9:9:69 | taint |
-| dates.js:9:9:9:69 | taint |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:9:36:9:55 | window.location.hash |
-| dates.js:9:36:9:55 | window.location.hash |
-| dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:11:63:11:67 | taint |
-| dates.js:11:63:11:67 | taint |
-| dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:12:66:12:70 | taint |
-| dates.js:12:66:12:70 | taint |
-| dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:13:59:13:63 | taint |
-| dates.js:13:59:13:63 | taint |
-| dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:16:62:16:66 | taint |
-| dates.js:16:62:16:66 | taint |
-| dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:18:59:18:63 | taint |
-| dates.js:18:59:18:63 | taint |
-| dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:21:61:21:65 | taint |
-| dates.js:21:61:21:65 | taint |
-| dates.js:30:9:30:69 | taint |
-| dates.js:30:9:30:69 | taint |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:30:36:30:55 | window.location.hash |
-| dates.js:30:36:30:55 | window.location.hash |
-| dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:37:77:37:81 | taint |
-| dates.js:37:77:37:81 | taint |
-| dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:38:77:38:81 | taint |
-| dates.js:38:77:38:81 | taint |
-| dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:39:79:39:83 | taint |
-| dates.js:39:79:39:83 | taint |
-| dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:40:77:40:81 | taint |
-| dates.js:40:77:40:81 | taint |
-| dates.js:46:9:46:69 | taint |
-| dates.js:46:9:46:69 | taint |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:46:36:46:55 | window.location.hash |
-| dates.js:46:36:46:55 | window.location.hash |
-| dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:48:83:48:87 | taint |
-| dates.js:48:83:48:87 | taint |
-| dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:49:82:49:86 | taint |
-| dates.js:49:82:49:86 | taint |
-| dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:50:97:50:101 | taint |
-| dates.js:50:97:50:101 | taint |
-| dates.js:54:9:54:69 | taint |
-| dates.js:54:9:54:69 | taint |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:54:36:54:55 | window.location.hash |
-| dates.js:54:36:54:55 | window.location.hash |
-| dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:57:94:57:98 | taint |
-| dates.js:57:94:57:98 | taint |
-| dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:59:80:59:84 | taint |
-| dates.js:59:80:59:84 | taint |
-| dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dates.js:61:81:61:85 | taint |
-| dates.js:61:81:61:85 | taint |
-| dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
-| dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
-| dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
-| dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href |
-| event-handler-receiver.js:2:49:2:61 | location.href |
-| express.js:7:15:7:33 | req.param("wobble") |
-| express.js:7:15:7:33 | req.param("wobble") |
-| express.js:7:15:7:33 | req.param("wobble") |
-| express.js:7:15:7:33 | req.param("wobble") |
-| jquery.js:2:7:2:40 | tainted |
-| jquery.js:2:17:2:40 | documen ... .search |
-| jquery.js:2:17:2:40 | documen ... .search |
-| jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:7:20:7:26 | tainted |
-| jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:8:28:8:34 | tainted |
-| jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:10:13:10:20 | location |
-| jquery.js:10:13:10:20 | location |
-| jquery.js:10:13:10:31 | location.toString() |
-| jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash |
-| jquery.js:14:38:14:57 | window.location.hash |
-| jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search |
-| jquery.js:15:38:15:59 | window. ... .search |
-| jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:16:38:16:52 | window.location |
-| jquery.js:16:38:16:52 | window.location |
-| jquery.js:16:38:16:63 | window. ... tring() |
-| jquery.js:18:7:18:33 | hash |
-| jquery.js:18:14:18:33 | window.location.hash |
-| jquery.js:18:14:18:33 | window.location.hash |
-| jquery.js:21:5:21:8 | hash |
-| jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:22:5:22:8 | hash |
-| jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:23:5:23:8 | hash |
-| jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:24:5:24:8 | hash |
-| jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:27:5:27:8 | hash |
-| jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:28:5:28:26 | window. ... .search |
-| jquery.js:28:5:28:26 | window. ... .search |
-| jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:34:13:34:16 | hash |
-| jquery.js:36:25:36:31 | tainted |
-| jquery.js:36:25:36:31 | tainted |
-| jquery.js:37:25:37:37 | () => tainted |
-| jquery.js:37:25:37:37 | () => tainted |
-| jquery.js:37:31:37:37 | tainted |
-| json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") |
-| json-stringify.jsx:11:16:11:58 | `https: ... ocale}` |
-| json-stringify.jsx:11:51:11:56 | locale |
-| json-stringify.jsx:19:16:19:63 | `https: ... ocale}` |
-| json-stringify.jsx:19:56:19:61 | locale |
-| json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") |
-| jwt-server.js:7:17:7:35 | req.param("wobble") |
-| jwt-server.js:7:17:7:35 | req.param("wobble") |
-| jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt.js:4:36:4:39 | data |
-| jwt.js:4:36:4:39 | data |
-| jwt.js:4:36:4:39 | data |
-| jwt.js:5:9:5:34 | decoded |
-| jwt.js:5:9:5:34 | decoded |
-| jwt.js:5:19:5:34 | jwt_decode(data) |
-| jwt.js:5:19:5:34 | jwt_decode(data) |
-| jwt.js:5:30:5:33 | data |
-| jwt.js:5:30:5:33 | data |
-| jwt.js:6:14:6:20 | decoded |
-| jwt.js:6:14:6:20 | decoded |
-| jwt.js:6:14:6:20 | decoded |
-| nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message |
-| nodemailer.js:13:50:13:66 | req.query.message |
-| optionalSanitizer.js:2:7:2:39 | target |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search |
-| optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:8:7:8:22 | tainted |
-| optionalSanitizer.js:8:17:8:22 | target |
-| optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:15:9:15:14 | target |
-| optionalSanitizer.js:16:18:16:18 | x |
-| optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:26:7:26:39 | target |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search |
-| optionalSanitizer.js:31:7:31:23 | tainted2 |
-| optionalSanitizer.js:31:18:31:23 | target |
-| optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:34:5:34:36 | tainted2 |
-| optionalSanitizer.js:34:16:34:36 | sanitiz ... inted2) |
-| optionalSanitizer.js:34:28:34:35 | tainted2 |
-| optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 |
-| optionalSanitizer.js:38:18:38:23 | target |
-| optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:41:5:41:36 | tainted3 |
-| optionalSanitizer.js:41:16:41:36 | sanitiz ... inted3) |
-| optionalSanitizer.js:41:28:41:35 | tainted3 |
-| optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) |
-| optionalSanitizer.js:45:41:45:46 | target |
-| optionalSanitizer.js:45:51:45:56 | target |
-| pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:18:5:29 | router.query |
-| pages/[id].jsx:5:18:5:29 | router.query |
-| pages/[id].jsx:5:18:5:29 | router.query |
-| pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:25:11:25:24 | context.params |
-| pages/[id].jsx:25:11:25:24 | context.params |
-| pages/[id].jsx:25:11:25:24 | context.params |
-| pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:26:10:26:22 | context.query |
-| pages/[id].jsx:26:10:26:22 | context.query |
-| pages/[id].jsx:26:10:26:22 | context.query |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") |
-| react-native.js:7:17:7:33 | req.param("code") |
-| react-native.js:7:17:7:33 | req.param("code") |
-| react-native.js:8:18:8:24 | tainted |
-| react-native.js:8:18:8:24 | tainted |
-| react-native.js:8:18:8:24 | tainted |
-| react-native.js:9:27:9:33 | tainted |
-| react-native.js:9:27:9:33 | tainted |
-| react-native.js:9:27:9:33 | tainted |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-context.js:16:26:16:36 | window.name |
-| react-use-router.js:4:9:4:28 | router |
-| react-use-router.js:4:18:4:28 | useRouter() |
-| react-use-router.js:8:21:8:26 | router |
-| react-use-router.js:8:21:8:32 | router.query |
-| react-use-router.js:8:21:8:32 | router.query |
-| react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:11:24:11:29 | router |
-| react-use-router.js:11:24:11:35 | router.query |
-| react-use-router.js:11:24:11:35 | router.query |
-| react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:22:15:22:24 | router |
-| react-use-router.js:22:17:22:22 | router |
-| react-use-router.js:23:43:23:48 | router |
-| react-use-router.js:23:43:23:54 | router.query |
-| react-use-router.js:23:43:23:54 | router.query |
-| react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:29:9:29:30 | router |
-| react-use-router.js:29:18:29:30 | myUseRouter() |
-| react-use-router.js:33:21:33:26 | router |
-| react-use-router.js:33:21:33:32 | router.query |
-| react-use-router.js:33:21:33:32 | router.query |
-| react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name |
-| react-use-state.js:4:38:4:48 | window.name |
-| react-use-state.js:4:38:4:48 | window.name |
-| react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name |
-| react-use-state.js:10:14:10:24 | window.name |
-| react-use-state.js:10:14:10:24 | window.name |
-| react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name |
-| react-use-state.js:16:20:16:30 | window.name |
-| react-use-state.js:16:20:16:30 | window.name |
-| react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:25:20:25:30 | window.name |
-| react-use-state.js:25:20:25:30 | window.name |
-| react-use-state.js:25:20:25:30 | window.name |
-| sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name |
-| sanitiser.js:16:17:16:27 | window.name |
-| sanitiser.js:16:17:16:27 | window.name |
-| sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:23:29:23:35 | tainted |
-| sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:29:30:35 | tainted |
-| sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:29:33:35 | tainted |
-| sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:29:38:35 | tainted |
-| sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:29:45:35 | tainted |
-| sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| stored-xss.js:2:39:2:62 | documen ... .search |
-| stored-xss.js:2:39:2:62 | documen ... .search |
-| stored-xss.js:3:35:3:58 | documen ... .search |
-| stored-xss.js:3:35:3:58 | documen ... .search |
-| stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:10:9:10:44 | href |
-| stored-xss.js:10:16:10:44 | localSt ... local') |
-| stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:35:12:38 | href |
-| string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href |
-| string-manipulations.js:6:16:6:37 | documen ... on.href |
-| string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href |
-| string-manipulations.js:7:16:7:37 | documen ... on.href |
-| string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href |
-| string-manipulations.js:8:16:8:37 | documen ... on.href |
-| string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href |
-| string-manipulations.js:9:36:9:57 | documen ... on.href |
-| string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href |
-| string-manipulations.js:10:23:10:44 | documen ... on.href |
-| tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name |
-| tooltip.jsx:6:20:6:30 | window.name |
-| tooltip.jsx:6:20:6:30 | window.name |
-| tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name |
-| tooltip.jsx:22:20:22:30 | window.name |
-| tooltip.jsx:22:20:22:30 | window.name |
-| tooltip.jsx:23:38:23:43 | source |
-| tooltip.jsx:23:38:23:43 | source |
-| translate.js:6:7:6:39 | target |
-| translate.js:6:16:6:39 | documen ... .search |
-| translate.js:6:16:6:39 | documen ... .search |
-| translate.js:7:7:7:61 | searchParams |
-| translate.js:7:22:7:61 | new URL ... ing(1)) |
-| translate.js:7:42:7:47 | target |
-| translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:9:27:9:38 | searchParams |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:50 | searchP ... 'term') |
-| trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:4:20:4:30 | window.name |
-| trusted-types.js:4:20:4:30 | window.name |
-| trusted-types.js:4:20:4:30 | window.name |
-| trusted-types.js:13:20:13:30 | window.name |
-| trusted-types.js:13:20:13:30 | window.name |
-| trusted-types.js:13:20:13:30 | window.name |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) |
-| tst3.js:2:23:2:74 | decodeU ... str(1)) |
-| tst3.js:2:42:2:63 | window. ... .search |
-| tst3.js:2:42:2:63 | window. ... .search |
-| tst3.js:2:42:2:73 | window. ... bstr(1) |
-| tst3.js:4:25:4:28 | data |
-| tst3.js:4:25:4:32 | data.src |
-| tst3.js:4:25:4:32 | data.src |
-| tst3.js:5:26:5:29 | data |
-| tst3.js:5:26:5:31 | data.p |
-| tst3.js:5:26:5:31 | data.p |
-| tst3.js:7:32:7:35 | data |
-| tst3.js:7:32:7:37 | data.p |
-| tst3.js:7:32:7:37 | data.p |
-| tst3.js:9:37:9:40 | data |
-| tst3.js:9:37:9:42 | data.p |
-| tst3.js:9:37:9:42 | data.p |
-| tst3.js:10:38:10:41 | data |
-| tst3.js:10:38:10:43 | data.p |
-| tst3.js:10:38:10:43 | data.p |
-| tst.js:2:7:2:39 | target |
-| tst.js:2:16:2:39 | documen ... .search |
-| tst.js:2:16:2:39 | documen ... .search |
-| tst.js:5:18:5:23 | target |
-| tst.js:5:18:5:23 | target |
-| tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:58 | documen ... on.href |
-| tst.js:8:37:8:58 | documen ... on.href |
-| tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:12:28:12:33 | target |
-| tst.js:17:7:17:56 | params |
-| tst.js:17:16:17:56 | (new UR ... hParams |
-| tst.js:17:25:17:41 | document.location |
-| tst.js:17:25:17:41 | document.location |
-| tst.js:18:18:18:23 | params |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:35 | params.get('name') |
-| tst.js:20:7:20:61 | searchParams |
-| tst.js:20:22:20:61 | new URL ... ing(1)) |
-| tst.js:20:42:20:47 | target |
-| tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:21:18:21:29 | searchParams |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:24:14:24:19 | target |
-| tst.js:26:18:26:23 | target |
-| tst.js:26:18:26:23 | target |
-| tst.js:28:5:28:28 | documen ... .search |
-| tst.js:28:5:28:28 | documen ... .search |
-| tst.js:31:10:31:33 | documen ... .search |
-| tst.js:31:10:31:33 | documen ... .search |
-| tst.js:34:16:34:20 | bar() |
-| tst.js:34:16:34:20 | bar() |
-| tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search |
-| tst.js:40:20:40:43 | documen ... .search |
-| tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search |
-| tst.js:46:21:46:44 | documen ... .search |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search |
-| tst.js:54:21:54:44 | documen ... .search |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search |
-| tst.js:56:21:56:44 | documen ... .search |
-| tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:58:26:58:30 | bar() |
-| tst.js:60:34:60:34 | s |
-| tst.js:62:18:62:18 | s |
-| tst.js:62:18:62:18 | s |
-| tst.js:64:25:64:48 | documen ... .search |
-| tst.js:64:25:64:48 | documen ... .search |
-| tst.js:65:25:65:48 | documen ... .search |
-| tst.js:65:25:65:48 | documen ... .search |
-| tst.js:68:16:68:20 | bar() |
-| tst.js:68:16:68:20 | bar() |
-| tst.js:70:1:70:27 | [,docum ... search] |
-| tst.js:70:3:70:26 | documen ... .search |
-| tst.js:70:3:70:26 | documen ... .search |
-| tst.js:70:46:70:46 | x |
-| tst.js:73:20:73:20 | x |
-| tst.js:73:20:73:20 | x |
-| tst.js:77:49:77:72 | documen ... .search |
-| tst.js:77:49:77:72 | documen ... .search |
-| tst.js:77:49:77:72 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search |
-| tst.js:107:7:107:44 | v |
-| tst.js:107:7:107:44 | v |
-| tst.js:107:7:107:44 | v |
-| tst.js:107:11:107:34 | documen ... .search |
-| tst.js:107:11:107:34 | documen ... .search |
-| tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:110:18:110:18 | v |
-| tst.js:110:18:110:18 | v |
-| tst.js:110:18:110:18 | v |
-| tst.js:110:18:110:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:136:18:136:18 | v |
-| tst.js:148:29:148:50 | window. ... .search |
-| tst.js:148:29:148:50 | window. ... .search |
-| tst.js:151:29:151:29 | v |
-| tst.js:151:49:151:49 | v |
-| tst.js:151:49:151:49 | v |
-| tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search |
-| tst.js:158:40:158:61 | window. ... .search |
-| tst.js:177:9:177:41 | target |
-| tst.js:177:18:177:41 | documen ... .search |
-| tst.js:177:18:177:41 | documen ... .search |
-| tst.js:180:28:180:33 | target |
-| tst.js:180:28:180:33 | target |
-| tst.js:184:9:184:42 | tainted |
-| tst.js:184:19:184:42 | documen ... .search |
-| tst.js:184:19:184:42 | documen ... .search |
-| tst.js:186:31:186:37 | tainted |
-| tst.js:186:31:186:37 | tainted |
-| tst.js:188:42:188:48 | tainted |
-| tst.js:188:42:188:48 | tainted |
-| tst.js:189:33:189:39 | tainted |
-| tst.js:189:33:189:39 | tainted |
-| tst.js:191:54:191:60 | tainted |
-| tst.js:191:54:191:60 | tainted |
-| tst.js:192:45:192:51 | tainted |
-| tst.js:192:45:192:51 | tainted |
-| tst.js:193:49:193:55 | tainted |
-| tst.js:193:49:193:55 | tainted |
-| tst.js:197:9:197:42 | tainted |
-| tst.js:197:19:197:42 | documen ... .search |
-| tst.js:197:19:197:42 | documen ... .search |
-| tst.js:199:67:199:73 | tainted |
-| tst.js:199:67:199:73 | tainted |
-| tst.js:200:67:200:73 | tainted |
-| tst.js:200:67:200:73 | tainted |
-| tst.js:204:35:204:41 | tainted |
-| tst.js:206:46:206:52 | tainted |
-| tst.js:207:38:207:44 | tainted |
-| tst.js:208:35:208:41 | tainted |
-| tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:236:35:236:41 | tainted |
-| tst.js:238:20:238:26 | tainted |
-| tst.js:240:23:240:29 | tainted |
-| tst.js:241:23:241:29 | tainted |
-| tst.js:247:39:247:55 | props.propTainted |
-| tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:255:23:255:29 | tainted |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:259:7:259:17 | window.name |
-| tst.js:260:7:260:10 | name |
-| tst.js:260:7:260:10 | name |
-| tst.js:260:7:260:10 | name |
-| tst.js:260:7:260:10 | name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:264:11:264:21 | window.name |
-| tst.js:280:22:280:29 | location |
-| tst.js:280:22:280:29 | location |
-| tst.js:280:22:280:29 | location |
-| tst.js:285:9:285:29 | tainted |
-| tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name |
-| tst.js:285:19:285:29 | window.name |
-| tst.js:285:19:285:29 | window.name |
-| tst.js:288:59:288:65 | tainted |
-| tst.js:288:59:288:65 | tainted |
-| tst.js:288:59:288:65 | tainted |
-| tst.js:301:9:301:16 | location |
-| tst.js:301:9:301:16 | location |
-| tst.js:302:10:302:10 | e |
-| tst.js:303:20:303:20 | e |
-| tst.js:303:20:303:20 | e |
-| tst.js:308:10:308:17 | location |
-| tst.js:308:10:308:17 | location |
-| tst.js:310:10:310:10 | e |
-| tst.js:311:20:311:20 | e |
-| tst.js:311:20:311:20 | e |
-| tst.js:316:35:316:42 | location |
-| tst.js:316:35:316:42 | location |
-| tst.js:316:35:316:42 | location |
-| tst.js:327:18:327:34 | document.location |
-| tst.js:327:18:327:34 | document.location |
-| tst.js:331:7:331:43 | params |
-| tst.js:331:16:331:43 | getTain ... hParams |
-| tst.js:332:18:332:23 | params |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:35 | params.get('name') |
-| tst.js:341:20:341:36 | document.location |
-| tst.js:341:20:341:36 | document.location |
-| tst.js:343:5:343:17 | getUrl().hash |
-| tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:348:7:348:39 | target |
-| tst.js:348:16:348:39 | documen ... .search |
-| tst.js:348:16:348:39 | documen ... .search |
-| tst.js:349:12:349:17 | target |
-| tst.js:349:12:349:17 | target |
-| tst.js:355:10:355:42 | target |
-| tst.js:355:19:355:42 | documen ... .search |
-| tst.js:355:19:355:42 | documen ... .search |
-| tst.js:356:16:356:21 | target |
-| tst.js:356:16:356:21 | target |
-| tst.js:360:21:360:26 | target |
-| tst.js:360:21:360:26 | target |
-| tst.js:363:18:363:23 | target |
-| tst.js:363:18:363:23 | target |
-| tst.js:371:7:371:39 | target |
-| tst.js:371:16:371:39 | documen ... .search |
-| tst.js:371:16:371:39 | documen ... .search |
-| tst.js:374:18:374:23 | target |
-| tst.js:374:18:374:23 | target |
-| tst.js:381:7:381:39 | target |
-| tst.js:381:16:381:39 | documen ... .search |
-| tst.js:381:16:381:39 | documen ... .search |
-| tst.js:384:18:384:23 | target |
-| tst.js:384:18:384:23 | target |
-| tst.js:386:18:386:23 | target |
-| tst.js:386:18:386:29 | target.taint |
-| tst.js:386:18:386:29 | target.taint |
-| tst.js:391:19:391:42 | documen ... .search |
-| tst.js:391:19:391:42 | documen ... .search |
-| tst.js:392:18:392:30 | target.taint3 |
-| tst.js:392:18:392:30 | target.taint3 |
-| tst.js:397:18:397:23 | target |
-| tst.js:397:18:397:30 | target.taint5 |
-| tst.js:397:18:397:30 | target.taint5 |
-| tst.js:406:18:406:23 | target |
-| tst.js:406:18:406:30 | target.taint7 |
-| tst.js:406:18:406:30 | target.taint7 |
-| tst.js:408:19:408:24 | target |
-| tst.js:408:19:408:31 | target.taint8 |
-| tst.js:409:18:409:30 | target.taint8 |
-| tst.js:409:18:409:30 | target.taint8 |
-| tst.js:416:7:416:46 | payload |
-| tst.js:416:7:416:46 | payload |
-| tst.js:416:7:416:46 | payload |
-| tst.js:416:17:416:36 | window.location.hash |
-| tst.js:416:17:416:36 | window.location.hash |
-| tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:417:18:417:24 | payload |
-| tst.js:417:18:417:24 | payload |
-| tst.js:417:18:417:24 | payload |
-| tst.js:417:18:417:24 | payload |
-| tst.js:419:7:419:55 | match |
-| tst.js:419:15:419:34 | window.location.hash |
-| tst.js:419:15:419:34 | window.location.hash |
-| tst.js:419:15:419:55 | window. ... (\\w+)/) |
-| tst.js:421:20:421:24 | match |
-| tst.js:421:20:421:27 | match[1] |
-| tst.js:421:20:421:27 | match[1] |
-| tst.js:424:18:424:37 | window.location.hash |
-| tst.js:424:18:424:37 | window.location.hash |
-| tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:428:7:428:39 | target |
-| tst.js:428:16:428:39 | documen ... .search |
-| tst.js:428:16:428:39 | documen ... .search |
-| tst.js:430:18:430:23 | target |
-| tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:436:6:436:38 | source |
-| tst.js:436:15:436:38 | documen ... .search |
-| tst.js:436:15:436:38 | documen ... .search |
-| tst.js:440:28:440:33 | source |
-| tst.js:440:28:440:33 | source |
-| tst.js:441:33:441:38 | source |
-| tst.js:441:33:441:38 | source |
-| tst.js:442:34:442:39 | source |
-| tst.js:442:34:442:39 | source |
-| tst.js:443:41:443:46 | source |
-| tst.js:443:41:443:46 | source |
-| tst.js:444:44:444:49 | source |
-| tst.js:444:44:444:49 | source |
-| tst.js:445:32:445:37 | source |
-| tst.js:445:32:445:37 | source |
-| tst.js:453:7:453:39 | source |
-| tst.js:453:16:453:39 | documen ... .search |
-| tst.js:453:16:453:39 | documen ... .search |
-| tst.js:455:18:455:23 | source |
-| tst.js:455:18:455:23 | source |
-| tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:456:36:456:41 | source |
-| tst.js:460:6:460:38 | source |
-| tst.js:460:15:460:38 | documen ... .search |
-| tst.js:460:15:460:38 | documen ... .search |
-| tst.js:463:21:463:26 | source |
-| tst.js:463:21:463:26 | source |
-| tst.js:465:19:465:24 | source |
-| tst.js:465:19:465:24 | source |
-| tst.js:467:20:467:25 | source |
-| tst.js:467:20:467:25 | source |
-| tst.js:471:7:471:46 | url |
-| tst.js:471:13:471:36 | documen ... .search |
-| tst.js:471:13:471:36 | documen ... .search |
-| tst.js:471:13:471:46 | documen ... bstr(1) |
-| tst.js:473:19:473:21 | url |
-| tst.js:473:19:473:21 | url |
-| tst.js:474:26:474:28 | url |
-| tst.js:474:26:474:28 | url |
-| tst.js:475:25:475:27 | url |
-| tst.js:475:25:475:27 | url |
-| tst.js:476:20:476:22 | url |
-| tst.js:476:20:476:22 | url |
-| tst.js:486:22:486:24 | url |
-| tst.js:486:22:486:24 | url |
-| tst.js:491:23:491:35 | location.hash |
-| tst.js:491:23:491:35 | location.hash |
-| tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash |
-| tst.js:494:18:494:30 | location.hash |
-| tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash |
-| tst.js:501:43:501:62 | window.location.hash |
-| tst.js:508:7:508:39 | target |
-| tst.js:508:16:508:39 | documen ... .search |
-| tst.js:508:16:508:39 | documen ... .search |
-| tst.js:509:18:509:23 | target |
-| tst.js:509:18:509:54 | target. ... "), '') |
-| tst.js:509:18:509:54 | target. ... "), '') |
-| typeahead.js:9:28:9:30 | loc |
-| typeahead.js:9:28:9:30 | loc |
-| typeahead.js:9:28:9:30 | loc |
-| typeahead.js:10:16:10:18 | loc |
-| typeahead.js:10:16:10:18 | loc |
-| typeahead.js:10:16:10:18 | loc |
-| typeahead.js:20:13:20:45 | target |
-| typeahead.js:20:22:20:45 | documen ... .search |
-| typeahead.js:20:22:20:45 | documen ... .search |
-| typeahead.js:21:12:21:17 | target |
-| typeahead.js:24:30:24:32 | val |
-| typeahead.js:25:18:25:20 | val |
-| typeahead.js:25:18:25:20 | val |
-| v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location |
-| v-html.vue:6:42:6:58 | document.location |
-| various-concat-obfuscations.js:2:6:2:39 | tainted |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search |
-| various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:4:14:4:20 | tainted |
-| various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:5:12:5:18 | tainted |
-| various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) |
-| various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:19:6:25 | tainted |
-| various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] |
-| various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:14:7:20 | tainted |
-| various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:9:19:9:25 | tainted |
-| various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:10:16:10:22 | tainted |
-| various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) |
-| various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:24:11:30 | tainted |
-| various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] |
-| various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:19:12:25 | tainted |
-| various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search |
-| various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search |
-| various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs |
-| winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:17:2:40 | documen ... .search |
-| winjs.js:2:17:2:40 | documen ... .search |
-| winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:3:43:3:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| winjs.js:4:43:4:49 | tainted |
-| xmlRequest.js:8:13:8:47 | json |
-| xmlRequest.js:8:13:8:47 | json |
-| xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
-| xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
-| xmlRequest.js:8:31:8:46 | xhr.responseText |
-| xmlRequest.js:8:31:8:46 | xhr.responseText |
-| xmlRequest.js:8:31:8:46 | xhr.responseText |
-| xmlRequest.js:9:28:9:31 | json |
-| xmlRequest.js:9:28:9:31 | json |
-| xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:20:11:20:48 | resp |
-| xmlRequest.js:20:11:20:48 | resp |
-| xmlRequest.js:20:18:20:48 | await g ... rl }}") |
-| xmlRequest.js:20:18:20:48 | await g ... rl }}") |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") |
-| xmlRequest.js:21:11:21:38 | json |
-| xmlRequest.js:21:11:21:38 | json |
-| xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) |
-| xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) |
-| xmlRequest.js:21:29:21:32 | resp |
-| xmlRequest.js:21:29:21:32 | resp |
-| xmlRequest.js:21:29:21:37 | resp.body |
-| xmlRequest.js:21:29:21:37 | resp.body |
-| xmlRequest.js:22:24:22:27 | json |
-| xmlRequest.js:22:24:22:27 | json |
-| xmlRequest.js:22:24:22:35 | json.message |
-| xmlRequest.js:22:24:22:35 | json.message |
-| xmlRequest.js:22:24:22:35 | json.message |
-edges
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:1:43:1:47 | event | addEventListener.js:2:20:2:24 | event |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:2:20:2:24 | event | addEventListener.js:2:20:2:29 | event.data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | data | addEventListener.js:6:20:6:23 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:44:5:47 | data |
-| addEventListener.js:5:44:5:47 | data | addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:5:44:5:47 | data | addEventListener.js:5:43:5:48 | data |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data |
-| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo |
-| angular2-client.ts:28:44:28:71 | this.ro ... ragment | angular2-client.ts:28:44:28:71 | this.ro ... ragment |
-| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | angular2-client.ts:29:44:29:82 | this.ro ... ('foo') |
-| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | angular2-client.ts:30:44:30:87 | this.ro ... ('foo') |
-| angular2-client.ts:32:46:32:59 | map.get('foo') | angular2-client.ts:32:46:32:59 | map.get('foo') |
-| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | angular2-client.ts:35:44:35:74 | this.ro ... 1].path |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x |
-| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | angular2-client.ts:37:44:37:91 | this.ro ... et('x') |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x |
-| angular2-client.ts:40:44:40:58 | this.router.url | angular2-client.ts:40:44:40:58 | this.router.url |
-| angular2-client.ts:42:45:42:59 | this.router.url | angular2-client.ts:42:45:42:59 | this.router.url |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo |
-| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | angular2-client.ts:47:44:47:76 | routeSn ... ('foo') |
-| angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
-| angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev |
-| angular-tempate-url.js:14:26:14:27 | ev | angular-tempate-url.js:14:26:14:32 | ev.data |
-| angular-tempate-url.js:14:26:14:32 | ev.data | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| angular-tempate-url.js:14:26:14:32 | ev.data | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") |
-| classnames.js:7:47:7:69 | classNa ... w.name) | classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:47:7:69 | classNa ... w.name) | classnames.js:7:31:7:84 | `<span  ... <span>` |
-| classnames.js:7:58:7:68 | window.name | classnames.js:7:47:7:69 | classNa ... w.name) |
-| classnames.js:7:58:7:68 | window.name | classnames.js:7:47:7:69 | classNa ... w.name) |
-| classnames.js:8:47:8:70 | classNa ... w.name) | classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:47:8:70 | classNa ... w.name) | classnames.js:8:31:8:85 | `<span  ... <span>` |
-| classnames.js:8:59:8:69 | window.name | classnames.js:8:47:8:70 | classNa ... w.name) |
-| classnames.js:8:59:8:69 | window.name | classnames.js:8:47:8:70 | classNa ... w.name) |
-| classnames.js:9:47:9:70 | classNa ... w.name) | classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:47:9:70 | classNa ... w.name) | classnames.js:9:31:9:85 | `<span  ... <span>` |
-| classnames.js:9:59:9:69 | window.name | classnames.js:9:47:9:70 | classNa ... w.name) |
-| classnames.js:9:59:9:69 | window.name | classnames.js:9:47:9:70 | classNa ... w.name) |
-| classnames.js:10:45:10:55 | window.name | classnames.js:11:47:11:64 | unsafeStyle('foo') |
-| classnames.js:10:45:10:55 | window.name | classnames.js:11:47:11:64 | unsafeStyle('foo') |
-| classnames.js:11:47:11:64 | unsafeStyle('foo') | classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:11:47:11:64 | unsafeStyle('foo') | classnames.js:11:31:11:79 | `<span  ... <span>` |
-| classnames.js:13:47:13:68 | safeSty ... w.name) | classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:47:13:68 | safeSty ... w.name) | classnames.js:13:31:13:83 | `<span  ... <span>` |
-| classnames.js:13:57:13:67 | window.name | classnames.js:13:47:13:68 | safeSty ... w.name) |
-| classnames.js:13:57:13:67 | window.name | classnames.js:13:47:13:68 | safeSty ... w.name) |
-| classnames.js:15:47:15:63 | clsx(window.name) | classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:47:15:63 | clsx(window.name) | classnames.js:15:31:15:78 | `<span  ... <span>` |
-| classnames.js:15:52:15:62 | window.name | classnames.js:15:47:15:63 | clsx(window.name) |
-| classnames.js:15:52:15:62 | window.name | classnames.js:15:47:15:63 | clsx(window.name) |
-| classnames.js:17:48:17:64 | clsx(window.name) | classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:48:17:64 | clsx(window.name) | classnames.js:17:32:17:79 | `<span  ... <span>` |
-| classnames.js:17:53:17:63 | window.name | classnames.js:17:48:17:64 | clsx(window.name) |
-| classnames.js:17:53:17:63 | window.name | classnames.js:17:48:17:64 | clsx(window.name) |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:11:8:51 | html | clipboard.ts:15:25:15:28 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:8:18:8:51 | clipboa ... /html') | clipboard.ts:8:11:8:51 | html |
-| clipboard.ts:24:23:24:58 | e.clipb ... /html') | clipboard.ts:24:23:24:58 | e.clipb ... /html') |
-| clipboard.ts:29:19:29:54 | e.clipb ... /html') | clipboard.ts:29:19:29:54 | e.clipb ... /html') |
-| clipboard.ts:33:19:33:68 | e.origi ... /html') | clipboard.ts:33:19:33:68 | e.origi ... /html') |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:15:43:55 | html | clipboard.ts:50:29:50:32 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:43:22:43:55 | clipboa ... /html') | clipboard.ts:43:15:43:55 | html |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:13:71:62 | droppedHtml | clipboard.ts:73:29:73:39 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:71:27:71:62 | e.clipb ... /html') | clipboard.ts:71:13:71:62 | droppedHtml |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:15:98:54 | html | clipboard.ts:99:23:99:26 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| clipboard.ts:98:22:98:54 | dataTra ... /html') | clipboard.ts:98:15:98:54 | html |
-| custom-element.js:5:26:5:36 | window.name | custom-element.js:5:26:5:36 | window.name |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:11:15:11:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:12:20:12:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:14:20:14:29 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| d3.js:4:12:4:22 | window.name | d3.js:21:15:21:24 | getTaint() |
-| dates.js:9:9:9:69 | taint | dates.js:11:63:11:67 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:11:63:11:67 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:12:66:12:70 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:12:66:12:70 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:13:59:13:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:13:59:13:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:16:62:16:66 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:16:62:16:66 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:18:59:18:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:18:59:18:63 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:21:61:21:65 | taint |
-| dates.js:9:9:9:69 | taint | dates.js:21:61:21:65 | taint |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) | dates.js:9:9:9:69 | taint |
-| dates.js:9:17:9:69 | decodeU ... ing(1)) | dates.js:9:9:9:69 | taint |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:55 | window.location.hash | dates.js:9:36:9:68 | window. ... ring(1) |
-| dates.js:9:36:9:68 | window. ... ring(1) | dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:9:36:9:68 | window. ... ring(1) | dates.js:9:17:9:69 | decodeU ... ing(1)) |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:42:11:68 | dateFns ...  taint) | dates.js:11:31:11:70 | `Time i ... aint)}` |
-| dates.js:11:63:11:67 | taint | dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:11:63:11:67 | taint | dates.js:11:42:11:68 | dateFns ...  taint) |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:42:12:71 | dateFns ...  taint) | dates.js:12:31:12:73 | `Time i ... aint)}` |
-| dates.js:12:66:12:70 | taint | dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:12:66:12:70 | taint | dates.js:12:42:12:71 | dateFns ...  taint) |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:42:13:70 | dateFns ... )(time) | dates.js:13:31:13:72 | `Time i ... time)}` |
-| dates.js:13:59:13:63 | taint | dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:13:59:13:63 | taint | dates.js:13:42:13:70 | dateFns ... )(time) |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:42:16:67 | moment( ... (taint) | dates.js:16:31:16:69 | `Time i ... aint)}` |
-| dates.js:16:62:16:66 | taint | dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:16:62:16:66 | taint | dates.js:16:42:16:67 | moment( ... (taint) |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:42:18:64 | datefor ...  taint) | dates.js:18:31:18:66 | `Time i ... aint)}` |
-| dates.js:18:59:18:63 | taint | dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:18:59:18:63 | taint | dates.js:18:42:18:64 | datefor ...  taint) |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:42:21:66 | dayjs(t ... (taint) | dates.js:21:31:21:68 | `Time i ... aint)}` |
-| dates.js:21:61:21:65 | taint | dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:21:61:21:65 | taint | dates.js:21:42:21:66 | dayjs(t ... (taint) |
-| dates.js:30:9:30:69 | taint | dates.js:37:77:37:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:37:77:37:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:38:77:38:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:38:77:38:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:39:79:39:83 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:39:79:39:83 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:40:77:40:81 | taint |
-| dates.js:30:9:30:69 | taint | dates.js:40:77:40:81 | taint |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) | dates.js:30:9:30:69 | taint |
-| dates.js:30:17:30:69 | decodeU ... ing(1)) | dates.js:30:9:30:69 | taint |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:55 | window.location.hash | dates.js:30:36:30:68 | window. ... ring(1) |
-| dates.js:30:36:30:68 | window. ... ring(1) | dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:30:36:30:68 | window. ... ring(1) | dates.js:30:17:30:69 | decodeU ... ing(1)) |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:42:37:82 | dateFns ...  taint) | dates.js:37:31:37:84 | `Time i ... aint)}` |
-| dates.js:37:77:37:81 | taint | dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:37:77:37:81 | taint | dates.js:37:42:37:82 | dateFns ...  taint) |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:42:38:82 | luxon.f ...  taint) | dates.js:38:31:38:84 | `Time i ... aint)}` |
-| dates.js:38:77:38:81 | taint | dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:38:77:38:81 | taint | dates.js:38:42:38:82 | luxon.f ...  taint) |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:42:39:84 | moment. ...  taint) | dates.js:39:31:39:86 | `Time i ... aint)}` |
-| dates.js:39:79:39:83 | taint | dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:39:79:39:83 | taint | dates.js:39:42:39:84 | moment. ...  taint) |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:42:40:82 | dayjs.f ...  taint) | dates.js:40:31:40:84 | `Time i ... aint)}` |
-| dates.js:40:77:40:81 | taint | dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:40:77:40:81 | taint | dates.js:40:42:40:82 | dayjs.f ...  taint) |
-| dates.js:46:9:46:69 | taint | dates.js:48:83:48:87 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:48:83:48:87 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:49:82:49:86 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:49:82:49:86 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:50:97:50:101 | taint |
-| dates.js:46:9:46:69 | taint | dates.js:50:97:50:101 | taint |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) | dates.js:46:9:46:69 | taint |
-| dates.js:46:17:46:69 | decodeU ... ing(1)) | dates.js:46:9:46:69 | taint |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:55 | window.location.hash | dates.js:46:36:46:68 | window. ... ring(1) |
-| dates.js:46:36:46:68 | window. ... ring(1) | dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:46:36:46:68 | window. ... ring(1) | dates.js:46:17:46:69 | decodeU ... ing(1)) |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:42:48:88 | DateTim ... (taint) | dates.js:48:31:48:90 | `Time i ... aint)}` |
-| dates.js:48:83:48:87 | taint | dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:48:83:48:87 | taint | dates.js:48:42:48:88 | DateTim ... (taint) |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:42:49:87 | new Dat ... (taint) | dates.js:49:31:49:89 | `Time i ... aint)}` |
-| dates.js:49:82:49:86 | taint | dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:49:82:49:86 | taint | dates.js:49:42:49:87 | new Dat ... (taint) |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:42:50:102 | DateTim ... (taint) | dates.js:50:31:50:104 | `Time i ... aint)}` |
-| dates.js:50:97:50:101 | taint | dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:50:97:50:101 | taint | dates.js:50:42:50:102 | DateTim ... (taint) |
-| dates.js:54:9:54:69 | taint | dates.js:57:94:57:98 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:57:94:57:98 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:59:80:59:84 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:59:80:59:84 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:61:81:61:85 | taint |
-| dates.js:54:9:54:69 | taint | dates.js:61:81:61:85 | taint |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) | dates.js:54:9:54:69 | taint |
-| dates.js:54:17:54:69 | decodeU ... ing(1)) | dates.js:54:9:54:69 | taint |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:55 | window.location.hash | dates.js:54:36:54:68 | window. ... ring(1) |
-| dates.js:54:36:54:68 | window. ... ring(1) | dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:54:36:54:68 | window. ... ring(1) | dates.js:54:17:54:69 | decodeU ... ing(1)) |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:42:57:99 | moment. ... (taint) | dates.js:57:31:57:101 | `Time i ... aint)}` |
-| dates.js:57:94:57:98 | taint | dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:57:94:57:98 | taint | dates.js:57:42:57:99 | moment. ... (taint) |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:42:59:85 | luxon.e ... (taint) | dates.js:59:31:59:87 | `Time i ... aint)}` |
-| dates.js:59:80:59:84 | taint | dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:59:80:59:84 | taint | dates.js:59:42:59:85 | luxon.e ... (taint) |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:42:61:86 | dayjs.s ... (taint) | dates.js:61:31:61:88 | `Time i ... aint)}` |
-| dates.js:61:81:61:85 | taint | dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dates.js:61:81:61:85 | taint | dates.js:61:42:61:86 | dayjs.s ... (taint) |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:11:8:50 | html | dragAndDrop.ts:15:25:15:28 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | dragAndDrop.ts:8:11:8:50 | html |
-| dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
-| dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
-| dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:15:43:54 | html | dragAndDrop.ts:50:29:50:32 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | dragAndDrop.ts:43:15:43:54 | html |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:13:71:61 | droppedHtml | dragAndDrop.ts:73:29:73:39 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') | dragAndDrop.ts:71:13:71:61 | droppedHtml |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| event-handler-receiver.js:2:49:2:61 | location.href | event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' |
-| express.js:7:15:7:33 | req.param("wobble") | express.js:7:15:7:33 | req.param("wobble") |
-| jquery.js:2:7:2:40 | tainted | jquery.js:7:20:7:26 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:8:28:8:34 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:36:25:36:31 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:36:25:36:31 | tainted |
-| jquery.js:2:7:2:40 | tainted | jquery.js:37:31:37:37 | tainted |
-| jquery.js:2:17:2:40 | documen ... .search | jquery.js:2:7:2:40 | tainted |
-| jquery.js:2:17:2:40 | documen ... .search | jquery.js:2:7:2:40 | tainted |
-| jquery.js:7:20:7:26 | tainted | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:7:20:7:26 | tainted | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
-| jquery.js:8:28:8:34 | tainted | jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:8:28:8:34 | tainted | jquery.js:8:18:8:34 | "XSS: " + tainted |
-| jquery.js:10:13:10:20 | location | jquery.js:10:13:10:31 | location.toString() |
-| jquery.js:10:13:10:20 | location | jquery.js:10:13:10:31 | location.toString() |
-| jquery.js:10:13:10:31 | location.toString() | jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:10:13:10:31 | location.toString() | jquery.js:10:5:10:40 | "<b>" + ...  "</b>" |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:14:38:14:57 | window.location.hash | jquery.js:14:19:14:58 | decodeU ... n.hash) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:15:38:15:59 | window. ... .search | jquery.js:15:19:15:60 | decodeU ... search) |
-| jquery.js:16:38:16:52 | window.location | jquery.js:16:38:16:63 | window. ... tring() |
-| jquery.js:16:38:16:52 | window.location | jquery.js:16:38:16:63 | window. ... tring() |
-| jquery.js:16:38:16:63 | window. ... tring() | jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:16:38:16:63 | window. ... tring() | jquery.js:16:19:16:64 | decodeU ... ring()) |
-| jquery.js:18:7:18:33 | hash | jquery.js:21:5:21:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:22:5:22:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:23:5:23:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:24:5:24:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:27:5:27:8 | hash |
-| jquery.js:18:7:18:33 | hash | jquery.js:34:13:34:16 | hash |
-| jquery.js:18:14:18:33 | window.location.hash | jquery.js:18:7:18:33 | hash |
-| jquery.js:18:14:18:33 | window.location.hash | jquery.js:18:7:18:33 | hash |
-| jquery.js:21:5:21:8 | hash | jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:8 | hash | jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:21:5:21:8 | hash | jquery.js:21:5:21:21 | hash.substring(1) |
-| jquery.js:22:5:22:8 | hash | jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:8 | hash | jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:22:5:22:8 | hash | jquery.js:22:5:22:25 | hash.su ... (1, 10) |
-| jquery.js:23:5:23:8 | hash | jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:8 | hash | jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:23:5:23:8 | hash | jquery.js:23:5:23:18 | hash.substr(1) |
-| jquery.js:24:5:24:8 | hash | jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:8 | hash | jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:24:5:24:8 | hash | jquery.js:24:5:24:17 | hash.slice(1) |
-| jquery.js:27:5:27:8 | hash | jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:8 | hash | jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:27:5:27:8 | hash | jquery.js:27:5:27:25 | hash.re ... #', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:28:5:28:26 | window. ... .search | jquery.js:28:5:28:43 | window. ... ?', '') |
-| jquery.js:34:13:34:16 | hash | jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:34:13:34:16 | hash | jquery.js:34:5:34:25 | '<b>' + ...  '</b>' |
-| jquery.js:37:31:37:37 | tainted | jquery.js:37:25:37:37 | () => tainted |
-| jquery.js:37:31:37:37 | tainted | jquery.js:37:25:37:37 | () => tainted |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:11:51:11:56 | locale |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:19:56:19:61 | locale |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:5:9:5:36 | locale | json-stringify.jsx:31:55:31:60 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:5:18:5:36 | req.param("locale") | json-stringify.jsx:5:9:5:36 | locale |
-| json-stringify.jsx:11:16:11:58 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:11:16:11:58 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:11:51:11:56 | locale | json-stringify.jsx:11:16:11:58 | `https: ... ocale}` |
-| json-stringify.jsx:19:16:19:63 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:19:16:19:63 | `https: ... ocale}` | json-stringify.jsx:35:40:35:61 | JSON.st ... jsonLD) |
-| json-stringify.jsx:19:56:19:61 | locale | json-stringify.jsx:19:16:19:63 | `https: ... ocale}` |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| json-stringify.jsx:31:55:31:60 | locale | json-stringify.jsx:31:40:31:61 | JSON.st ... locale) |
-| jwt-server.js:7:9:7:35 | taint | jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:7:9:7:35 | taint | jwt-server.js:9:16:9:20 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:7:17:7:35 | req.param("wobble") | jwt-server.js:7:9:7:35 | taint |
-| jwt-server.js:9:16:9:20 | taint | jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:9:16:9:20 | taint | jwt-server.js:9:55:9:61 | decoded |
-| jwt-server.js:9:55:9:61 | decoded | jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:9:55:9:61 | decoded | jwt-server.js:11:19:11:25 | decoded |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt-server.js:11:19:11:25 | decoded | jwt-server.js:11:19:11:29 | decoded.foo |
-| jwt.js:4:36:4:39 | data | jwt.js:5:30:5:33 | data |
-| jwt.js:4:36:4:39 | data | jwt.js:5:30:5:33 | data |
-| jwt.js:4:36:4:39 | data | jwt.js:5:30:5:33 | data |
-| jwt.js:4:36:4:39 | data | jwt.js:5:30:5:33 | data |
-| jwt.js:5:9:5:34 | decoded | jwt.js:6:14:6:20 | decoded |
-| jwt.js:5:9:5:34 | decoded | jwt.js:6:14:6:20 | decoded |
-| jwt.js:5:9:5:34 | decoded | jwt.js:6:14:6:20 | decoded |
-| jwt.js:5:9:5:34 | decoded | jwt.js:6:14:6:20 | decoded |
-| jwt.js:5:19:5:34 | jwt_decode(data) | jwt.js:5:9:5:34 | decoded |
-| jwt.js:5:19:5:34 | jwt_decode(data) | jwt.js:5:9:5:34 | decoded |
-| jwt.js:5:30:5:33 | data | jwt.js:5:19:5:34 | jwt_decode(data) |
-| jwt.js:5:30:5:33 | data | jwt.js:5:19:5:34 | jwt_decode(data) |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:6:18:6:23 | target |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:8:17:8:22 | target |
-| optionalSanitizer.js:2:7:2:39 | target | optionalSanitizer.js:15:9:15:14 | target |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search | optionalSanitizer.js:2:7:2:39 | target |
-| optionalSanitizer.js:2:16:2:39 | documen ... .search | optionalSanitizer.js:2:7:2:39 | target |
-| optionalSanitizer.js:8:7:8:22 | tainted | optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:8:7:8:22 | tainted | optionalSanitizer.js:9:18:9:24 | tainted |
-| optionalSanitizer.js:8:17:8:22 | target | optionalSanitizer.js:8:7:8:22 | tainted |
-| optionalSanitizer.js:15:9:15:14 | target | optionalSanitizer.js:16:18:16:18 | x |
-| optionalSanitizer.js:16:18:16:18 | x | optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:16:18:16:18 | x | optionalSanitizer.js:17:20:17:20 | x |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:31:18:31:23 | target |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:38:18:38:23 | target |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:45:41:45:46 | target |
-| optionalSanitizer.js:26:7:26:39 | target | optionalSanitizer.js:45:51:45:56 | target |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search | optionalSanitizer.js:26:7:26:39 | target |
-| optionalSanitizer.js:26:16:26:39 | documen ... .search | optionalSanitizer.js:26:7:26:39 | target |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:32:18:32:25 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:34:28:34:35 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:31:7:31:23 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:31:18:31:23 | target | optionalSanitizer.js:31:7:31:23 | tainted2 |
-| optionalSanitizer.js:34:5:34:36 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:34:5:34:36 | tainted2 | optionalSanitizer.js:36:18:36:25 | tainted2 |
-| optionalSanitizer.js:34:16:34:36 | sanitiz ... inted2) | optionalSanitizer.js:34:5:34:36 | tainted2 |
-| optionalSanitizer.js:34:28:34:35 | tainted2 | optionalSanitizer.js:34:16:34:36 | sanitiz ... inted2) |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:39:18:39:25 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:41:28:41:35 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:38:7:38:23 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:38:18:38:23 | target | optionalSanitizer.js:38:7:38:23 | tainted3 |
-| optionalSanitizer.js:41:5:41:36 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:41:5:41:36 | tainted3 | optionalSanitizer.js:43:18:43:25 | tainted3 |
-| optionalSanitizer.js:41:16:41:36 | sanitiz ... inted3) | optionalSanitizer.js:41:5:41:36 | tainted3 |
-| optionalSanitizer.js:41:28:41:35 | tainted3 | optionalSanitizer.js:41:16:41:36 | sanitiz ... inted3) |
-| optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:41:45:46 | target | optionalSanitizer.js:45:29:45:47 | sanitizeBad(target) |
-| optionalSanitizer.js:45:51:45:56 | target | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| optionalSanitizer.js:45:51:45:56 | target | optionalSanitizer.js:45:18:45:56 | sanitiz ...  target |
-| pages/[id].jsx:5:9:5:14 | { id } | pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:9:5:14 | { id } | pages/[id].jsx:5:11:5:12 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:9:5:29 | id | pages/[id].jsx:10:44:10:45 | id |
-| pages/[id].jsx:5:11:5:12 | id | pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:11:5:12 | id | pages/[id].jsx:5:9:5:29 | id |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:5:18:5:29 | router.query | pages/[id].jsx:5:9:5:14 | { id } |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:24 | context.params | pages/[id].jsx:25:11:25:27 | context.params.id |
-| pages/[id].jsx:25:11:25:27 | context.params.id | pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:25:11:25:27 | context.params.id | pages/[id].jsx:25:11:25:33 | context ... d \|\| "" |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:25:11:25:33 | context ... d \|\| "" | pages/[id].jsx:13:44:13:52 | params.id |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:22 | context.query | pages/[id].jsx:26:10:26:30 | context ... .foobar |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar | pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| pages/[id].jsx:26:10:26:30 | context ... .foobar | pages/[id].jsx:26:10:26:36 | context ... r \|\| "" |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| pages/[id].jsx:26:10:26:36 | context ... r \|\| "" | pages/[id].jsx:16:44:16:51 | params.q |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:7:7:33 | tainted | react-native.js:9:27:9:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |
-| react-use-context.js:10:22:10:32 | window.name | react-use-context.js:10:22:10:32 | window.name |
-| react-use-context.js:16:26:16:36 | window.name | react-use-context.js:16:26:16:36 | window.name |
-| react-use-router.js:4:9:4:28 | router | react-use-router.js:8:21:8:26 | router |
-| react-use-router.js:4:9:4:28 | router | react-use-router.js:11:24:11:29 | router |
-| react-use-router.js:4:18:4:28 | useRouter() | react-use-router.js:4:9:4:28 | router |
-| react-use-router.js:8:21:8:26 | router | react-use-router.js:8:21:8:32 | router.query |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:32 | router.query | react-use-router.js:8:21:8:39 | router.query.foobar |
-| react-use-router.js:8:21:8:39 | router.query.foobar | react-use-router.js:4:18:4:28 | useRouter() |
-| react-use-router.js:11:24:11:29 | router | react-use-router.js:11:24:11:35 | router.query |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:11:24:11:35 | router.query | react-use-router.js:11:24:11:42 | router.query.foobar |
-| react-use-router.js:22:15:22:24 | router | react-use-router.js:23:43:23:48 | router |
-| react-use-router.js:22:17:22:22 | router | react-use-router.js:22:15:22:24 | router |
-| react-use-router.js:23:43:23:48 | router | react-use-router.js:23:43:23:54 | router.query |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:54 | router.query | react-use-router.js:23:43:23:61 | router.query.foobar |
-| react-use-router.js:23:43:23:61 | router.query.foobar | react-use-router.js:22:17:22:22 | router |
-| react-use-router.js:29:9:29:30 | router | react-use-router.js:33:21:33:26 | router |
-| react-use-router.js:29:18:29:30 | myUseRouter() | react-use-router.js:29:9:29:30 | router |
-| react-use-router.js:33:21:33:26 | router | react-use-router.js:33:21:33:32 | router.query |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:32 | router.query | react-use-router.js:33:21:33:39 | router.query.foobar |
-| react-use-router.js:33:21:33:39 | router.query.foobar | react-use-router.js:29:18:29:30 | myUseRouter() |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:9:4:49 | state | react-use-state.js:5:51:5:55 | state |
-| react-use-state.js:4:10:4:14 | state | react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:10:4:14 | state | react-use-state.js:4:9:4:49 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:4:38:4:48 | window.name | react-use-state.js:4:10:4:14 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:9:9:43 | state | react-use-state.js:11:51:11:55 | state |
-| react-use-state.js:9:10:9:14 | state | react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:9:10:9:14 | state | react-use-state.js:9:9:9:43 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:10:14:10:24 | window.name | react-use-state.js:9:10:9:14 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:9:15:43 | state | react-use-state.js:17:51:17:55 | state |
-| react-use-state.js:15:10:15:14 | state | react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:15:10:15:14 | state | react-use-state.js:15:9:15:43 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:16:20:16:30 | window.name | react-use-state.js:15:10:15:14 | state |
-| react-use-state.js:21:10:21:14 | state | react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:21:10:21:14 | state | react-use-state.js:22:14:22:17 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:22:14:22:17 | prev | react-use-state.js:23:35:23:38 | prev |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| react-use-state.js:25:20:25:30 | window.name | react-use-state.js:21:10:21:14 | state |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:23:29:23:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:30:29:30:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:33:29:33:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:38:29:38:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:45:29:45:35 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:16:7:16:27 | tainted | sanitiser.js:48:19:48:25 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:16:17:16:27 | window.name | sanitiser.js:16:7:16:27 | tainted |
-| sanitiser.js:23:29:23:35 | tainted | sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:23:29:23:35 | tainted | sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:29:30:35 | tainted | sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:30:29:30:35 | tainted | sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:29:33:35 | tainted | sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:33:29:33:35 | tainted | sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:29:38:35 | tainted | sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:38:29:38:35 | tainted | sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:29:45:35 | tainted | sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:45:29:45:35 | tainted | sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| sanitiser.js:48:19:48:25 | tainted | sanitiser.js:48:19:48:46 | tainted ... /g, '') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:2:39:2:62 | documen ... .search | stored-xss.js:5:20:5:52 | session ... ssion') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:8:20:8:48 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:10:16:10:44 | localSt ... local') |
-| stored-xss.js:3:35:3:58 | documen ... .search | stored-xss.js:10:16:10:44 | localSt ... local') |
-| stored-xss.js:10:9:10:44 | href | stored-xss.js:12:35:12:38 | href |
-| stored-xss.js:10:16:10:44 | localSt ... local') | stored-xss.js:10:9:10:44 | href |
-| stored-xss.js:12:35:12:38 | href | stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:35:12:38 | href | stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| stored-xss.js:12:35:12:38 | href | stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" |
-| string-manipulations.js:3:16:3:32 | document.location | string-manipulations.js:3:16:3:32 | document.location |
-| string-manipulations.js:4:16:4:37 | documen ... on.href | string-manipulations.js:4:16:4:37 | documen ... on.href |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:5:16:5:37 | documen ... on.href | string-manipulations.js:5:16:5:47 | documen ... lueOf() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:6:16:6:37 | documen ... on.href | string-manipulations.js:6:16:6:43 | documen ... f.sup() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:7:16:7:37 | documen ... on.href | string-manipulations.js:7:16:7:51 | documen ... rCase() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:8:16:8:37 | documen ... on.href | string-manipulations.js:8:16:8:48 | documen ... mLeft() |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:9:36:9:57 | documen ... on.href | string-manipulations.js:9:16:9:58 | String. ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| string-manipulations.js:10:23:10:44 | documen ... on.href | string-manipulations.js:10:16:10:45 | String( ... n.href) |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:10:25:10:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:11:6:30 | source | tooltip.jsx:11:25:11:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:6:20:6:30 | window.name | tooltip.jsx:6:11:6:30 | source |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:23:38:23:43 | source |
-| tooltip.jsx:22:11:22:30 | source | tooltip.jsx:23:38:23:43 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:22:20:22:30 | window.name | tooltip.jsx:22:11:22:30 | source |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| tooltip.jsx:23:38:23:43 | source | tooltip.jsx:18:51:18:59 | provide() |
-| translate.js:6:7:6:39 | target | translate.js:7:42:7:47 | target |
-| translate.js:6:16:6:39 | documen ... .search | translate.js:6:7:6:39 | target |
-| translate.js:6:16:6:39 | documen ... .search | translate.js:6:7:6:39 | target |
-| translate.js:7:7:7:61 | searchParams | translate.js:9:27:9:38 | searchParams |
-| translate.js:7:22:7:61 | new URL ... ing(1)) | translate.js:7:7:7:61 | searchParams |
-| translate.js:7:42:7:47 | target | translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:47 | target | translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:47 | target | translate.js:7:42:7:60 | target.substring(1) |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:7:22:7:61 | new URL ... ing(1)) |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:7:42:7:60 | target.substring(1) | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:38 | searchParams | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:38 | searchParams | translate.js:9:27:9:50 | searchP ... 'term') |
-| translate.js:9:27:9:38 | searchParams | translate.js:9:27:9:50 | searchP ... 'term') |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types-lib.js:1:28:1:28 | x | trusted-types-lib.js:2:12:2:12 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:3:62:3:62 | x | trusted-types.js:3:67:3:67 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:4:20:4:30 | window.name | trusted-types.js:3:62:3:62 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| trusted-types.js:13:20:13:30 | window.name | trusted-types-lib.js:1:28:1:28 | x |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:4:25:4:28 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:5:26:5:29 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:7:32:7:35 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:9:37:9:40 | data |
-| tst3.js:2:12:2:75 | JSON.pa ... tr(1))) | tst3.js:10:38:10:41 | data |
-| tst3.js:2:23:2:74 | decodeU ... str(1)) | tst3.js:2:12:2:75 | JSON.pa ... tr(1))) |
-| tst3.js:2:42:2:63 | window. ... .search | tst3.js:2:42:2:73 | window. ... bstr(1) |
-| tst3.js:2:42:2:63 | window. ... .search | tst3.js:2:42:2:73 | window. ... bstr(1) |
-| tst3.js:2:42:2:73 | window. ... bstr(1) | tst3.js:2:23:2:74 | decodeU ... str(1)) |
-| tst3.js:4:25:4:28 | data | tst3.js:4:25:4:32 | data.src |
-| tst3.js:4:25:4:28 | data | tst3.js:4:25:4:32 | data.src |
-| tst3.js:5:26:5:29 | data | tst3.js:5:26:5:31 | data.p |
-| tst3.js:5:26:5:29 | data | tst3.js:5:26:5:31 | data.p |
-| tst3.js:7:32:7:35 | data | tst3.js:7:32:7:37 | data.p |
-| tst3.js:7:32:7:35 | data | tst3.js:7:32:7:37 | data.p |
-| tst3.js:9:37:9:40 | data | tst3.js:9:37:9:42 | data.p |
-| tst3.js:9:37:9:40 | data | tst3.js:9:37:9:42 | data.p |
-| tst3.js:10:38:10:41 | data | tst3.js:10:38:10:43 | data.p |
-| tst3.js:10:38:10:41 | data | tst3.js:10:38:10:43 | data.p |
-| tst.js:2:7:2:39 | target | tst.js:5:18:5:23 | target |
-| tst.js:2:7:2:39 | target | tst.js:5:18:5:23 | target |
-| tst.js:2:7:2:39 | target | tst.js:12:28:12:33 | target |
-| tst.js:2:7:2:39 | target | tst.js:20:42:20:47 | target |
-| tst.js:2:16:2:39 | documen ... .search | tst.js:2:7:2:39 | target |
-| tst.js:2:16:2:39 | documen ... .search | tst.js:2:7:2:39 | target |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
-| tst.js:12:28:12:33 | target | tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:12:28:12:33 | target | tst.js:12:5:12:42 | '<div s ...  'px">' |
-| tst.js:17:7:17:56 | params | tst.js:18:18:18:23 | params |
-| tst.js:17:16:17:56 | (new UR ... hParams | tst.js:17:7:17:56 | params |
-| tst.js:17:25:17:41 | document.location | tst.js:17:16:17:56 | (new UR ... hParams |
-| tst.js:17:25:17:41 | document.location | tst.js:17:16:17:56 | (new UR ... hParams |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:17:25:17:41 | document.location | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:23 | params | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:23 | params | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:18:18:18:23 | params | tst.js:18:18:18:35 | params.get('name') |
-| tst.js:20:7:20:61 | searchParams | tst.js:21:18:21:29 | searchParams |
-| tst.js:20:22:20:61 | new URL ... ing(1)) | tst.js:20:7:20:61 | searchParams |
-| tst.js:20:42:20:47 | target | tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:47 | target | tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:47 | target | tst.js:20:42:20:60 | target.substring(1) |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:20:22:20:61 | new URL ... ing(1)) |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:20:42:20:60 | target.substring(1) | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:29 | searchParams | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:29 | searchParams | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:21:18:21:29 | searchParams | tst.js:21:18:21:41 | searchP ... 'name') |
-| tst.js:24:14:24:19 | target | tst.js:26:18:26:23 | target |
-| tst.js:24:14:24:19 | target | tst.js:26:18:26:23 | target |
-| tst.js:28:5:28:28 | documen ... .search | tst.js:24:14:24:19 | target |
-| tst.js:28:5:28:28 | documen ... .search | tst.js:24:14:24:19 | target |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:34:16:34:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:58:26:58:30 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:58:26:58:30 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:31:10:31:33 | documen ... .search | tst.js:68:16:68:20 | bar() |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:40:20:40:43 | documen ... .search | tst.js:40:16:40:44 | baz(doc ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:46:21:46:44 | documen ... .search | tst.js:46:16:46:45 | wrap(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:54:21:54:44 | documen ... .search | tst.js:54:16:54:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:56:21:56:44 | documen ... .search | tst.js:56:16:56:45 | chop(do ... search) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:21:58:31 | chop(bar()) | tst.js:58:16:58:32 | wrap(chop(bar())) |
-| tst.js:58:26:58:30 | bar() | tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:58:26:58:30 | bar() | tst.js:58:21:58:31 | chop(bar()) |
-| tst.js:60:34:60:34 | s | tst.js:62:18:62:18 | s |
-| tst.js:60:34:60:34 | s | tst.js:62:18:62:18 | s |
-| tst.js:64:25:64:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:64:25:64:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:65:25:65:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:65:25:65:48 | documen ... .search | tst.js:60:34:60:34 | s |
-| tst.js:70:1:70:27 | [,docum ... search] | tst.js:70:46:70:46 | x |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:1:70:27 | [,docum ... search] |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:1:70:27 | [,docum ... search] |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:46:70:46 | x |
-| tst.js:70:3:70:26 | documen ... .search | tst.js:70:46:70:46 | x |
-| tst.js:70:46:70:46 | x | tst.js:73:20:73:20 | x |
-| tst.js:70:46:70:46 | x | tst.js:73:20:73:20 | x |
-| tst.js:77:49:77:72 | documen ... .search | tst.js:77:49:77:72 | documen ... .search |
-| tst.js:81:26:81:49 | documen ... .search | tst.js:81:26:81:49 | documen ... .search |
-| tst.js:82:25:82:48 | documen ... .search | tst.js:82:25:82:48 | documen ... .search |
-| tst.js:84:33:84:56 | documen ... .search | tst.js:84:33:84:56 | documen ... .search |
-| tst.js:85:32:85:55 | documen ... .search | tst.js:85:32:85:55 | documen ... .search |
-| tst.js:90:39:90:62 | documen ... .search | tst.js:90:39:90:62 | documen ... .search |
-| tst.js:96:30:96:53 | documen ... .search | tst.js:96:30:96:53 | documen ... .search |
-| tst.js:102:25:102:48 | documen ... .search | tst.js:102:25:102:48 | documen ... .search |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:110:18:110:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:7:107:44 | v | tst.js:136:18:136:18 | v |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:34 | documen ... .search | tst.js:107:11:107:44 | documen ... bstr(1) |
-| tst.js:107:11:107:44 | documen ... bstr(1) | tst.js:107:7:107:44 | v |
-| tst.js:107:11:107:44 | documen ... bstr(1) | tst.js:107:7:107:44 | v |
-| tst.js:107:11:107:44 | documen ... bstr(1) | tst.js:107:7:107:44 | v |
-| tst.js:148:29:148:50 | window. ... .search | tst.js:151:29:151:29 | v |
-| tst.js:148:29:148:50 | window. ... .search | tst.js:151:29:151:29 | v |
-| tst.js:151:29:151:29 | v | tst.js:151:49:151:49 | v |
-| tst.js:151:29:151:29 | v | tst.js:151:49:151:49 | v |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:158:40:158:61 | window. ... .search | tst.js:155:29:155:46 | xssSourceService() |
-| tst.js:177:9:177:41 | target | tst.js:180:28:180:33 | target |
-| tst.js:177:9:177:41 | target | tst.js:180:28:180:33 | target |
-| tst.js:177:18:177:41 | documen ... .search | tst.js:177:9:177:41 | target |
-| tst.js:177:18:177:41 | documen ... .search | tst.js:177:9:177:41 | target |
-| tst.js:184:9:184:42 | tainted | tst.js:186:31:186:37 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:186:31:186:37 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:188:42:188:48 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:188:42:188:48 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:189:33:189:39 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:189:33:189:39 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:191:54:191:60 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:191:54:191:60 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:192:45:192:51 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:192:45:192:51 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:193:49:193:55 | tainted |
-| tst.js:184:9:184:42 | tainted | tst.js:193:49:193:55 | tainted |
-| tst.js:184:19:184:42 | documen ... .search | tst.js:184:9:184:42 | tainted |
-| tst.js:184:19:184:42 | documen ... .search | tst.js:184:9:184:42 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:199:67:199:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:199:67:199:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:200:67:200:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:200:67:200:73 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:204:35:204:41 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:206:46:206:52 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:207:38:207:44 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:208:35:208:41 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:236:35:236:41 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:238:20:238:26 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:240:23:240:29 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:241:23:241:29 | tainted |
-| tst.js:197:9:197:42 | tainted | tst.js:255:23:255:29 | tainted |
-| tst.js:197:19:197:42 | documen ... .search | tst.js:197:9:197:42 | tainted |
-| tst.js:197:19:197:42 | documen ... .search | tst.js:197:9:197:42 | tainted |
-| tst.js:204:35:204:41 | tainted | tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:204:35:204:41 | tainted | tst.js:212:28:212:46 | this.state.tainted1 |
-| tst.js:206:46:206:52 | tainted | tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:206:46:206:52 | tainted | tst.js:213:28:213:46 | this.state.tainted2 |
-| tst.js:207:38:207:44 | tainted | tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:207:38:207:44 | tainted | tst.js:214:28:214:46 | this.state.tainted3 |
-| tst.js:208:35:208:41 | tainted | tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:208:35:208:41 | tainted | tst.js:218:32:218:49 | prevState.tainted4 |
-| tst.js:236:35:236:41 | tainted | tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:236:35:236:41 | tainted | tst.js:225:28:225:46 | this.props.tainted1 |
-| tst.js:238:20:238:26 | tainted | tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:238:20:238:26 | tainted | tst.js:226:28:226:46 | this.props.tainted2 |
-| tst.js:240:23:240:29 | tainted | tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:240:23:240:29 | tainted | tst.js:227:28:227:46 | this.props.tainted3 |
-| tst.js:241:23:241:29 | tainted | tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:241:23:241:29 | tainted | tst.js:231:32:231:49 | prevProps.tainted4 |
-| tst.js:247:39:247:55 | props.propTainted | tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:247:39:247:55 | props.propTainted | tst.js:251:60:251:82 | this.st ... Tainted |
-| tst.js:255:23:255:29 | tainted | tst.js:247:39:247:55 | props.propTainted |
-| tst.js:259:7:259:17 | window.name | tst.js:259:7:259:17 | window.name |
-| tst.js:260:7:260:10 | name | tst.js:260:7:260:10 | name |
-| tst.js:264:11:264:21 | window.name | tst.js:264:11:264:21 | window.name |
-| tst.js:280:22:280:29 | location | tst.js:280:22:280:29 | location |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:9:285:29 | tainted | tst.js:288:59:288:65 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:285:19:285:29 | window.name | tst.js:285:9:285:29 | tainted |
-| tst.js:301:9:301:16 | location | tst.js:302:10:302:10 | e |
-| tst.js:301:9:301:16 | location | tst.js:302:10:302:10 | e |
-| tst.js:302:10:302:10 | e | tst.js:303:20:303:20 | e |
-| tst.js:302:10:302:10 | e | tst.js:303:20:303:20 | e |
-| tst.js:308:10:308:17 | location | tst.js:310:10:310:10 | e |
-| tst.js:308:10:308:17 | location | tst.js:310:10:310:10 | e |
-| tst.js:310:10:310:10 | e | tst.js:311:20:311:20 | e |
-| tst.js:310:10:310:10 | e | tst.js:311:20:311:20 | e |
-| tst.js:316:35:316:42 | location | tst.js:316:35:316:42 | location |
-| tst.js:327:18:327:34 | document.location | tst.js:331:16:331:43 | getTain ... hParams |
-| tst.js:327:18:327:34 | document.location | tst.js:331:16:331:43 | getTain ... hParams |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:327:18:327:34 | document.location | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:331:7:331:43 | params | tst.js:332:18:332:23 | params |
-| tst.js:331:16:331:43 | getTain ... hParams | tst.js:331:7:331:43 | params |
-| tst.js:332:18:332:23 | params | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:23 | params | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:332:18:332:23 | params | tst.js:332:18:332:35 | params.get('name') |
-| tst.js:341:20:341:36 | document.location | tst.js:343:5:343:17 | getUrl().hash |
-| tst.js:341:20:341:36 | document.location | tst.js:343:5:343:17 | getUrl().hash |
-| tst.js:343:5:343:17 | getUrl().hash | tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:17 | getUrl().hash | tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:343:5:343:17 | getUrl().hash | tst.js:343:5:343:30 | getUrl( ... ring(1) |
-| tst.js:348:7:348:39 | target | tst.js:349:12:349:17 | target |
-| tst.js:348:7:348:39 | target | tst.js:349:12:349:17 | target |
-| tst.js:348:16:348:39 | documen ... .search | tst.js:348:7:348:39 | target |
-| tst.js:348:16:348:39 | documen ... .search | tst.js:348:7:348:39 | target |
-| tst.js:355:10:355:42 | target | tst.js:356:16:356:21 | target |
-| tst.js:355:10:355:42 | target | tst.js:356:16:356:21 | target |
-| tst.js:355:10:355:42 | target | tst.js:360:21:360:26 | target |
-| tst.js:355:10:355:42 | target | tst.js:360:21:360:26 | target |
-| tst.js:355:10:355:42 | target | tst.js:363:18:363:23 | target |
-| tst.js:355:10:355:42 | target | tst.js:363:18:363:23 | target |
-| tst.js:355:19:355:42 | documen ... .search | tst.js:355:10:355:42 | target |
-| tst.js:355:19:355:42 | documen ... .search | tst.js:355:10:355:42 | target |
-| tst.js:371:7:371:39 | target | tst.js:374:18:374:23 | target |
-| tst.js:371:7:371:39 | target | tst.js:374:18:374:23 | target |
-| tst.js:371:16:371:39 | documen ... .search | tst.js:371:7:371:39 | target |
-| tst.js:371:16:371:39 | documen ... .search | tst.js:371:7:371:39 | target |
-| tst.js:381:7:381:39 | target | tst.js:384:18:384:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:384:18:384:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:386:18:386:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:397:18:397:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:406:18:406:23 | target |
-| tst.js:381:7:381:39 | target | tst.js:408:19:408:24 | target |
-| tst.js:381:16:381:39 | documen ... .search | tst.js:381:7:381:39 | target |
-| tst.js:381:16:381:39 | documen ... .search | tst.js:381:7:381:39 | target |
-| tst.js:386:18:386:23 | target | tst.js:386:18:386:29 | target.taint |
-| tst.js:386:18:386:23 | target | tst.js:386:18:386:29 | target.taint |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:391:19:391:42 | documen ... .search | tst.js:392:18:392:30 | target.taint3 |
-| tst.js:397:18:397:23 | target | tst.js:397:18:397:30 | target.taint5 |
-| tst.js:397:18:397:23 | target | tst.js:397:18:397:30 | target.taint5 |
-| tst.js:406:18:406:23 | target | tst.js:406:18:406:30 | target.taint7 |
-| tst.js:406:18:406:23 | target | tst.js:406:18:406:30 | target.taint7 |
-| tst.js:408:19:408:24 | target | tst.js:408:19:408:31 | target.taint8 |
-| tst.js:408:19:408:31 | target.taint8 | tst.js:408:19:408:31 | target.taint8 |
-| tst.js:408:19:408:31 | target.taint8 | tst.js:409:18:409:30 | target.taint8 |
-| tst.js:408:19:408:31 | target.taint8 | tst.js:409:18:409:30 | target.taint8 |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:7:416:46 | payload | tst.js:417:18:417:24 | payload |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:36 | window.location.hash | tst.js:416:17:416:46 | window. ... bstr(1) |
-| tst.js:416:17:416:46 | window. ... bstr(1) | tst.js:416:7:416:46 | payload |
-| tst.js:416:17:416:46 | window. ... bstr(1) | tst.js:416:7:416:46 | payload |
-| tst.js:416:17:416:46 | window. ... bstr(1) | tst.js:416:7:416:46 | payload |
-| tst.js:419:7:419:55 | match | tst.js:421:20:421:24 | match |
-| tst.js:419:15:419:34 | window.location.hash | tst.js:419:15:419:55 | window. ... (\\w+)/) |
-| tst.js:419:15:419:34 | window.location.hash | tst.js:419:15:419:55 | window. ... (\\w+)/) |
-| tst.js:419:15:419:55 | window. ... (\\w+)/) | tst.js:419:7:419:55 | match |
-| tst.js:421:20:421:24 | match | tst.js:421:20:421:27 | match[1] |
-| tst.js:421:20:421:24 | match | tst.js:421:20:421:27 | match[1] |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:37 | window.location.hash | tst.js:424:18:424:48 | window. ... it('#') |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:424:18:424:48 | window. ... it('#') | tst.js:424:18:424:51 | window. ... '#')[1] |
-| tst.js:428:7:428:39 | target | tst.js:430:18:430:23 | target |
-| tst.js:428:16:428:39 | documen ... .search | tst.js:428:7:428:39 | target |
-| tst.js:428:16:428:39 | documen ... .search | tst.js:428:7:428:39 | target |
-| tst.js:430:18:430:23 | target | tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:430:18:430:23 | target | tst.js:430:18:430:89 | target. ... data>') |
-| tst.js:436:6:436:38 | source | tst.js:440:28:440:33 | source |
-| tst.js:436:6:436:38 | source | tst.js:440:28:440:33 | source |
-| tst.js:436:6:436:38 | source | tst.js:441:33:441:38 | source |
-| tst.js:436:6:436:38 | source | tst.js:441:33:441:38 | source |
-| tst.js:436:6:436:38 | source | tst.js:442:34:442:39 | source |
-| tst.js:436:6:436:38 | source | tst.js:442:34:442:39 | source |
-| tst.js:436:6:436:38 | source | tst.js:443:41:443:46 | source |
-| tst.js:436:6:436:38 | source | tst.js:443:41:443:46 | source |
-| tst.js:436:6:436:38 | source | tst.js:444:44:444:49 | source |
-| tst.js:436:6:436:38 | source | tst.js:444:44:444:49 | source |
-| tst.js:436:6:436:38 | source | tst.js:445:32:445:37 | source |
-| tst.js:436:6:436:38 | source | tst.js:445:32:445:37 | source |
-| tst.js:436:15:436:38 | documen ... .search | tst.js:436:6:436:38 | source |
-| tst.js:436:15:436:38 | documen ... .search | tst.js:436:6:436:38 | source |
-| tst.js:453:7:453:39 | source | tst.js:455:18:455:23 | source |
-| tst.js:453:7:453:39 | source | tst.js:455:18:455:23 | source |
-| tst.js:453:7:453:39 | source | tst.js:456:36:456:41 | source |
-| tst.js:453:16:453:39 | documen ... .search | tst.js:453:7:453:39 | source |
-| tst.js:453:16:453:39 | documen ... .search | tst.js:453:7:453:39 | source |
-| tst.js:456:36:456:41 | source | tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:456:36:456:41 | source | tst.js:456:18:456:42 | ansiToH ... source) |
-| tst.js:460:6:460:38 | source | tst.js:463:21:463:26 | source |
-| tst.js:460:6:460:38 | source | tst.js:463:21:463:26 | source |
-| tst.js:460:6:460:38 | source | tst.js:465:19:465:24 | source |
-| tst.js:460:6:460:38 | source | tst.js:465:19:465:24 | source |
-| tst.js:460:6:460:38 | source | tst.js:467:20:467:25 | source |
-| tst.js:460:6:460:38 | source | tst.js:467:20:467:25 | source |
-| tst.js:460:15:460:38 | documen ... .search | tst.js:460:6:460:38 | source |
-| tst.js:460:15:460:38 | documen ... .search | tst.js:460:6:460:38 | source |
-| tst.js:471:7:471:46 | url | tst.js:473:19:473:21 | url |
-| tst.js:471:7:471:46 | url | tst.js:473:19:473:21 | url |
-| tst.js:471:7:471:46 | url | tst.js:474:26:474:28 | url |
-| tst.js:471:7:471:46 | url | tst.js:474:26:474:28 | url |
-| tst.js:471:7:471:46 | url | tst.js:475:25:475:27 | url |
-| tst.js:471:7:471:46 | url | tst.js:475:25:475:27 | url |
-| tst.js:471:7:471:46 | url | tst.js:476:20:476:22 | url |
-| tst.js:471:7:471:46 | url | tst.js:476:20:476:22 | url |
-| tst.js:471:7:471:46 | url | tst.js:486:22:486:24 | url |
-| tst.js:471:7:471:46 | url | tst.js:486:22:486:24 | url |
-| tst.js:471:13:471:36 | documen ... .search | tst.js:471:13:471:46 | documen ... bstr(1) |
-| tst.js:471:13:471:36 | documen ... .search | tst.js:471:13:471:46 | documen ... bstr(1) |
-| tst.js:471:13:471:46 | documen ... bstr(1) | tst.js:471:7:471:46 | url |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:491:23:491:35 | location.hash | tst.js:491:23:491:45 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:494:18:494:30 | location.hash | tst.js:494:18:494:40 | locatio ... bstr(1) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:501:43:501:62 | window.location.hash | tst.js:501:33:501:63 | decodeU ... n.hash) |
-| tst.js:508:7:508:39 | target | tst.js:509:18:509:23 | target |
-| tst.js:508:16:508:39 | documen ... .search | tst.js:508:7:508:39 | target |
-| tst.js:508:16:508:39 | documen ... .search | tst.js:508:7:508:39 | target |
-| tst.js:509:18:509:23 | target | tst.js:509:18:509:54 | target. ... "), '') |
-| tst.js:509:18:509:23 | target | tst.js:509:18:509:54 | target. ... "), '') |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:9:28:9:30 | loc | typeahead.js:10:16:10:18 | loc |
-| typeahead.js:20:13:20:45 | target | typeahead.js:21:12:21:17 | target |
-| typeahead.js:20:22:20:45 | documen ... .search | typeahead.js:20:13:20:45 | target |
-| typeahead.js:20:22:20:45 | documen ... .search | typeahead.js:20:13:20:45 | target |
-| typeahead.js:21:12:21:17 | target | typeahead.js:24:30:24:32 | val |
-| typeahead.js:24:30:24:32 | val | typeahead.js:25:18:25:20 | val |
-| typeahead.js:24:30:24:32 | val | typeahead.js:25:18:25:20 | val |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| v-html.vue:6:42:6:58 | document.location | v-html.vue:2:8:2:23 | v-html=tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:4:14:4:20 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:5:12:5:18 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:6:19:6:25 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:7:14:7:20 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:9:19:9:25 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:10:16:10:22 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:11:24:11:30 | tainted |
-| various-concat-obfuscations.js:2:6:2:39 | tainted | various-concat-obfuscations.js:12:19:12:25 | tainted |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search | various-concat-obfuscations.js:2:6:2:39 | tainted |
-| various-concat-obfuscations.js:2:16:2:39 | documen ... .search | various-concat-obfuscations.js:2:6:2:39 | tainted |
-| various-concat-obfuscations.js:4:14:4:20 | tainted | various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:4:14:4:20 | tainted | various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" |
-| various-concat-obfuscations.js:5:12:5:18 | tainted | various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:5:12:5:18 | tainted | various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` |
-| various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) | various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) | various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
-| various-concat-obfuscations.js:6:19:6:25 | tainted | various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) |
-| various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] | various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] | various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
-| various-concat-obfuscations.js:7:14:7:20 | tainted | various-concat-obfuscations.js:7:4:7:31 | ["<div> ... /div>"] |
-| various-concat-obfuscations.js:9:19:9:25 | tainted | various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:9:19:9:25 | tainted | various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" |
-| various-concat-obfuscations.js:10:16:10:22 | tainted | various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:10:16:10:22 | tainted | various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` |
-| various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) | various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) | various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
-| various-concat-obfuscations.js:11:24:11:30 | tainted | various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) |
-| various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] | various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] | various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
-| various-concat-obfuscations.js:12:19:12:25 | tainted | various-concat-obfuscations.js:12:4:12:34 | ["<div  ... "\\"/>"] |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search | various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:20:17:20:40 | documen ... .search | various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs | various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:20:17:20:46 | documen ... h.attrs | various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search | various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:21:17:21:40 | documen ... .search | various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs |
-| various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs | various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| various-concat-obfuscations.js:21:17:21:46 | documen ... h.attrs | various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:3:43:3:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:7:2:53 | tainted | winjs.js:4:43:4:49 | tainted |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:40 | documen ... .search | winjs.js:2:17:2:53 | documen ... ring(1) |
-| winjs.js:2:17:2:53 | documen ... ring(1) | winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:17:2:53 | documen ... ring(1) | winjs.js:2:7:2:53 | tainted |
-| winjs.js:2:17:2:53 | documen ... ring(1) | winjs.js:2:7:2:53 | tainted |
-| xmlRequest.js:8:13:8:47 | json | xmlRequest.js:9:28:9:31 | json |
-| xmlRequest.js:8:13:8:47 | json | xmlRequest.js:9:28:9:31 | json |
-| xmlRequest.js:8:20:8:47 | JSON.pa ... seText) | xmlRequest.js:8:13:8:47 | json |
-| xmlRequest.js:8:20:8:47 | JSON.pa ... seText) | xmlRequest.js:8:13:8:47 | json |
-| xmlRequest.js:8:31:8:46 | xhr.responseText | xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
-| xmlRequest.js:8:31:8:46 | xhr.responseText | xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
-| xmlRequest.js:8:31:8:46 | xhr.responseText | xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
-| xmlRequest.js:8:31:8:46 | xhr.responseText | xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
-| xmlRequest.js:9:28:9:31 | json | xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:9:28:9:31 | json | xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:9:28:9:31 | json | xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:9:28:9:31 | json | xmlRequest.js:9:28:9:39 | json.message |
-| xmlRequest.js:20:11:20:48 | resp | xmlRequest.js:21:29:21:32 | resp |
-| xmlRequest.js:20:11:20:48 | resp | xmlRequest.js:21:29:21:32 | resp |
-| xmlRequest.js:20:18:20:48 | await g ... rl }}") | xmlRequest.js:20:11:20:48 | resp |
-| xmlRequest.js:20:18:20:48 | await g ... rl }}") | xmlRequest.js:20:11:20:48 | resp |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") | xmlRequest.js:20:18:20:48 | await g ... rl }}") |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") | xmlRequest.js:20:18:20:48 | await g ... rl }}") |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") | xmlRequest.js:20:18:20:48 | await g ... rl }}") |
-| xmlRequest.js:20:24:20:48 | got.get ... rl }}") | xmlRequest.js:20:18:20:48 | await g ... rl }}") |
-| xmlRequest.js:21:11:21:38 | json | xmlRequest.js:22:24:22:27 | json |
-| xmlRequest.js:21:11:21:38 | json | xmlRequest.js:22:24:22:27 | json |
-| xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) | xmlRequest.js:21:11:21:38 | json |
-| xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) | xmlRequest.js:21:11:21:38 | json |
-| xmlRequest.js:21:29:21:32 | resp | xmlRequest.js:21:29:21:37 | resp.body |
-| xmlRequest.js:21:29:21:32 | resp | xmlRequest.js:21:29:21:37 | resp.body |
-| xmlRequest.js:21:29:21:37 | resp.body | xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) |
-| xmlRequest.js:21:29:21:37 | resp.body | xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) |
-| xmlRequest.js:22:24:22:27 | json | xmlRequest.js:22:24:22:35 | json.message |
-| xmlRequest.js:22:24:22:27 | json | xmlRequest.js:22:24:22:35 | json.message |
-| xmlRequest.js:22:24:22:27 | json | xmlRequest.js:22:24:22:35 | json.message |
-| xmlRequest.js:22:24:22:27 | json | xmlRequest.js:22:24:22:35 | json.message |
 | addEventListener.js:1:43:1:47 | event | semmle.label | event |
 | addEventListener.js:2:20:2:24 | event | semmle.label | event |
 | addEventListener.js:2:20:2:29 | event.data | semmle.label | event.data |
@@ -2534,24 +8,26 @@ edges
 | addEventListener.js:10:21:10:25 | event | semmle.label | event |
 | addEventListener.js:12:24:12:28 | event | semmle.label | event |
 | addEventListener.js:12:24:12:33 | event.data | semmle.label | event.data |
-| angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | semmle.label | \\u0275getDOM ... ().href |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | semmle.label | this.ro ... .params |
-| angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | semmle.label | this.ro ... yParams |
-| angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
-| angular2-client.ts:26:44:26:71 | this.ro ... ragment | semmle.label | this.ro ... ragment |
-| angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
-| angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
-| angular2-client.ts:30:46:30:59 | map.get('foo') | semmle.label | map.get('foo') |
-| angular2-client.ts:33:44:33:74 | this.ro ... 1].path | semmle.label | this.ro ... 1].path |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | semmle.label | this.ro ... ameters |
-| angular2-client.ts:34:44:34:82 | this.ro ... eters.x | semmle.label | this.ro ... eters.x |
-| angular2-client.ts:35:44:35:91 | this.ro ... et('x') | semmle.label | this.ro ... et('x') |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | semmle.label | this.ro ... .params |
-| angular2-client.ts:36:44:36:91 | this.ro ... arams.x | semmle.label | this.ro ... arams.x |
-| angular2-client.ts:38:44:38:58 | this.router.url | semmle.label | this.router.url |
-| angular2-client.ts:40:45:40:59 | this.router.url | semmle.label | this.router.url |
-| angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | semmle.label | routeSn ... ('foo') |
+| angular2-client.ts:24:44:24:71 | \\u0275getDOM ... ().href | semmle.label | \\u0275getDOM ... ().href |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | semmle.label | this.ro ... .params |
+| angular2-client.ts:26:44:26:73 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | semmle.label | this.ro ... yParams |
+| angular2-client.ts:27:44:27:78 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
+| angular2-client.ts:28:44:28:71 | this.ro ... ragment | semmle.label | this.ro ... ragment |
+| angular2-client.ts:29:44:29:82 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
+| angular2-client.ts:30:44:30:87 | this.ro ... ('foo') | semmle.label | this.ro ... ('foo') |
+| angular2-client.ts:32:46:32:59 | map.get('foo') | semmle.label | map.get('foo') |
+| angular2-client.ts:35:44:35:74 | this.ro ... 1].path | semmle.label | this.ro ... 1].path |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | semmle.label | this.ro ... ameters |
+| angular2-client.ts:36:44:36:82 | this.ro ... eters.x | semmle.label | this.ro ... eters.x |
+| angular2-client.ts:37:44:37:91 | this.ro ... et('x') | semmle.label | this.ro ... et('x') |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | semmle.label | this.ro ... .params |
+| angular2-client.ts:38:44:38:91 | this.ro ... arams.x | semmle.label | this.ro ... arams.x |
+| angular2-client.ts:40:44:40:58 | this.router.url | semmle.label | this.router.url |
+| angular2-client.ts:42:45:42:59 | this.router.url | semmle.label | this.router.url |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | semmle.label | this.ro ... yParams |
+| angular2-client.ts:43:75:43:109 | this.ro ... ams.foo | semmle.label | this.ro ... ams.foo |
+| angular2-client.ts:47:44:47:76 | routeSn ... ('foo') | semmle.label | routeSn ... ('foo') |
 | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") | semmle.label | Cookie.get("unsafe") |
 | angular-tempate-url.js:13:30:13:31 | ev | semmle.label | ev |
 | angular-tempate-url.js:14:26:14:27 | ev | semmle.label | ev |
@@ -3183,10 +659,11 @@ edges
 | addEventListener.js:5:43:5:48 | {data} | addEventListener.js:5:43:5:48 | data | provenance |  |
 | addEventListener.js:10:21:10:25 | event | addEventListener.js:12:24:12:28 | event | provenance |  |
 | addEventListener.js:12:24:12:28 | event | addEventListener.js:12:24:12:33 | event.data | provenance |  |
-| angular2-client.ts:24:44:24:69 | this.ro ... .params | angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | provenance |  |
-| angular2-client.ts:25:44:25:74 | this.ro ... yParams | angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | provenance |  |
-| angular2-client.ts:34:44:34:80 | this.ro ... ameters | angular2-client.ts:34:44:34:82 | this.ro ... eters.x | provenance |  |
-| angular2-client.ts:36:44:36:89 | this.ro ... .params | angular2-client.ts:36:44:36:91 | this.ro ... arams.x | provenance |  |
+| angular2-client.ts:26:44:26:69 | this.ro ... .params | angular2-client.ts:26:44:26:73 | this.ro ... ams.foo | provenance |  |
+| angular2-client.ts:27:44:27:74 | this.ro ... yParams | angular2-client.ts:27:44:27:78 | this.ro ... ams.foo | provenance |  |
+| angular2-client.ts:36:44:36:80 | this.ro ... ameters | angular2-client.ts:36:44:36:82 | this.ro ... eters.x | provenance |  |
+| angular2-client.ts:38:44:38:89 | this.ro ... .params | angular2-client.ts:38:44:38:91 | this.ro ... arams.x | provenance |  |
+| angular2-client.ts:43:75:43:105 | this.ro ... yParams | angular2-client.ts:43:75:43:109 | this.ro ... ams.foo | provenance |  |
 | angular-tempate-url.js:13:30:13:31 | ev | angular-tempate-url.js:14:26:14:27 | ev | provenance |  |
 | angular-tempate-url.js:14:26:14:27 | ev | angular-tempate-url.js:14:26:14:32 | ev.data | provenance |  |
 | angular-tempate-url.js:14:26:14:32 | ev.data | angular-tempate-url.js:9:26:9:45 | Cookie.get("unsafe") | provenance |  |