An expression which may be interpreted as an AngularJS expression.
A taint-tracking configuration for reasoning about code injection vulnerabilities.
An access to a property that may hold (parts of) the document URL.
A source of remote user input, considered as a flow source for code injection.
A sanitizer for code injection vulnerabilities.
A data flow sink for code injection vulnerabilities.
A data flow source for code injection vulnerabilities.