github
diff --git a/‎javascript/ql/test/query-tests/Security/CWE-022/TaintedPath/TaintedPath.expected‎
Lines changed: 36 additions & 8 deletions b/‎javascript/ql/test/query-tests/Security/CWE-022/TaintedPath/TaintedPath.expected‎
Lines changed: 36 additions & 8 deletions
diff --git a/‎javascript/ql/test/query-tests/Security/CWE-078/CommandInjection.expected‎
Lines changed: 4 additions & 3 deletions b/‎javascript/ql/test/query-tests/Security/CWE-078/CommandInjection.expected‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected‎
Lines changed: 4 additions & 3 deletions b/‎javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎javascript/ql/test/query-tests/Security/CWE-079/Xss.expected‎
Lines changed: 8 additions & 6 deletions b/‎javascript/ql/test/query-tests/Security/CWE-079/Xss.expected‎
Lines changed: 8 additions & 6 deletions
diff --git a/‎javascript/ql/test/query-tests/Security/CWE-089/SqlInjection.expected‎
Lines changed: 8 additions & 8 deletions b/‎javascript/ql/test/query-tests/Security/CWE-089/SqlInjection.expected‎
Lines changed: 8 additions & 8 deletions
diff --git a/‎javascript/ql/test/query-tests/Security/CWE-094/CodeInjection/CodeInjection.expected‎
Lines changed: 3 additions & 3 deletions b/‎javascript/ql/test/query-tests/Security/CWE-094/CodeInjection/CodeInjection.expected‎
Lines changed: 3 additions & 3 deletions
@@ -17,14 +17,6 @@ nodes
 | TaintedPath.js:19:33:19:36 | path |
 | TaintedPath.js:23:33:23:36 | path |
 | TaintedPath.js:27:33:27:36 | path |
-| TaintedPath.js:30:7:30:24 | path |
-| TaintedPath.js:34:3:34:3 | path |
-| TaintedPath.js:34:7:34:24 | path |
-| TaintedPath.js:34:29:34:46 | path |
-| TaintedPath.js:38:3:38:3 | path |
-| TaintedPath.js:38:7:38:24 | path |
-| TaintedPath.js:38:29:38:46 | path |
-| TaintedPath.js:39:5:39:5 | path |
 | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:45:3:45:44 | path |
 | TaintedPath.js:45:10:45:33 | url.par ... , true) |
@@ -112,18 +104,54 @@ edges
 | TaintedPath.js:9:7:9:48 | path | TaintedPath.js:23:33:23:36 | path |
 | TaintedPath.js:9:7:9:48 | path | TaintedPath.js:27:33:27:36 | path |
 | TaintedPath.js:9:7:9:48 | path | TaintedPath.js:30:7:30:24 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:34:3:34:3 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:34:7:34:24 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:34:29:34:46 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:38:3:38:3 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:38:7:38:24 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:9:7:9:48 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:9:14:9:37 | url.par ... , true) | TaintedPath.js:9:14:9:43 | url.par ... ).query |
 | TaintedPath.js:9:14:9:43 | url.par ... ).query | TaintedPath.js:9:14:9:48 | url.par ... ry.path |
 | TaintedPath.js:9:14:9:48 | url.par ... ry.path | TaintedPath.js:9:7:9:48 | path |
 | TaintedPath.js:9:24:9:30 | req.url | TaintedPath.js:9:14:9:37 | url.par ... , true) |
 | TaintedPath.js:15:45:15:48 | path | TaintedPath.js:15:29:15:48 | "/home/user/" + path |
 | TaintedPath.js:30:7:30:24 | path | TaintedPath.js:34:3:34:3 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:34:7:34:24 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:34:29:34:46 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:38:3:38:3 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:38:7:38:24 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:30:7:30:24 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:34:3:34:3 | path | TaintedPath.js:34:7:34:24 | path |
+| TaintedPath.js:34:3:34:3 | path | TaintedPath.js:34:29:34:46 | path |
+| TaintedPath.js:34:3:34:3 | path | TaintedPath.js:38:3:38:3 | path |
+| TaintedPath.js:34:3:34:3 | path | TaintedPath.js:38:7:38:24 | path |
+| TaintedPath.js:34:3:34:3 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:34:3:34:3 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:34:3:34:3 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:34:7:34:24 | path | TaintedPath.js:34:29:34:46 | path |
+| TaintedPath.js:34:7:34:24 | path | TaintedPath.js:38:3:38:3 | path |
+| TaintedPath.js:34:7:34:24 | path | TaintedPath.js:38:7:38:24 | path |
+| TaintedPath.js:34:7:34:24 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:34:7:34:24 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:34:7:34:24 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:34:29:34:46 | path | TaintedPath.js:38:3:38:3 | path |
+| TaintedPath.js:34:29:34:46 | path | TaintedPath.js:38:7:38:24 | path |
+| TaintedPath.js:34:29:34:46 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:34:29:34:46 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:34:29:34:46 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:38:3:38:3 | path | TaintedPath.js:38:7:38:24 | path |
+| TaintedPath.js:38:3:38:3 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:38:3:38:3 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:38:3:38:3 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:38:7:38:24 | path | TaintedPath.js:38:29:38:46 | path |
+| TaintedPath.js:38:7:38:24 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:38:7:38:24 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:38:29:38:46 | path | TaintedPath.js:39:5:39:5 | path |
+| TaintedPath.js:38:29:38:46 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:39:5:39:5 | path | TaintedPath.js:39:31:39:34 | path |
 | TaintedPath.js:45:3:45:44 | path | TaintedPath.js:47:49:47:52 | path |
 | TaintedPath.js:45:3:45:44 | path | TaintedPath.js:49:48:49:51 | path |
 
@@ -11,14 +11,12 @@ nodes
 | child_process-test.js:21:14:21:16 | cmd |
 | child_process-test.js:22:18:22:20 | cmd |
 | child_process-test.js:23:13:23:15 | cmd |
-| child_process-test.js:25:13:25:23 | "foo" + cmd |
 | child_process-test.js:25:13:25:31 | "foo" + cmd + "bar" |
 | child_process-test.js:25:21:25:23 | cmd |
 | child_process-test.js:36:7:36:20 | sh |
 | child_process-test.js:36:12:36:20 | 'cmd.exe' |
 | child_process-test.js:38:7:38:20 | sh |
 | child_process-test.js:38:12:38:20 | '/bin/sh' |
-| child_process-test.js:39:5:39:5 | sh |
 | child_process-test.js:39:14:39:15 | sh |
 | child_process-test.js:39:18:39:30 | [ flag, cmd ] |
 | child_process-test.js:39:26:39:28 | cmd |
@@ -39,7 +37,6 @@ nodes
 | child_process-test.js:56:12:56:14 | cmd |
 | child_process-test.js:56:17:56:20 | args |
 | execSeries.js:3:20:3:22 | arr |
-| execSeries.js:5:4:5:3 | arr |
 | execSeries.js:6:14:6:16 | arr |
 | execSeries.js:6:14:6:21 | arr[i++] |
 | execSeries.js:13:19:13:26 | commands |
@@ -71,9 +68,12 @@ edges
 | child_process-test.js:6:25:6:31 | req.url | child_process-test.js:6:15:6:38 | url.par ... , true) |
 | child_process-test.js:25:13:25:23 | "foo" + cmd | child_process-test.js:25:13:25:31 | "foo" + cmd + "bar" |
 | child_process-test.js:25:21:25:23 | cmd | child_process-test.js:25:13:25:23 | "foo" + cmd |
+| child_process-test.js:25:21:25:23 | cmd | child_process-test.js:25:13:25:31 | "foo" + cmd + "bar" |
 | child_process-test.js:36:7:36:20 | sh | child_process-test.js:39:5:39:5 | sh |
+| child_process-test.js:36:7:36:20 | sh | child_process-test.js:39:14:39:15 | sh |
 | child_process-test.js:36:12:36:20 | 'cmd.exe' | child_process-test.js:36:7:36:20 | sh |
 | child_process-test.js:38:7:38:20 | sh | child_process-test.js:39:5:39:5 | sh |
+| child_process-test.js:38:7:38:20 | sh | child_process-test.js:39:14:39:15 | sh |
 | child_process-test.js:38:12:38:20 | '/bin/sh' | child_process-test.js:38:7:38:20 | sh |
 | child_process-test.js:39:5:39:5 | sh | child_process-test.js:39:14:39:15 | sh |
 | child_process-test.js:41:9:41:17 | args | child_process-test.js:44:30:44:33 | args |
@@ -86,6 +86,7 @@ edges
 | child_process-test.js:55:14:55:16 | cmd | child_process-test.js:56:12:56:14 | cmd |
 | child_process-test.js:55:19:55:22 | args | child_process-test.js:56:17:56:20 | args |
 | execSeries.js:3:20:3:22 | arr | execSeries.js:5:4:5:3 | arr |
+| execSeries.js:3:20:3:22 | arr | execSeries.js:6:14:6:16 | arr |
 | execSeries.js:5:4:5:3 | arr | execSeries.js:6:14:6:16 | arr |
 | execSeries.js:6:14:6:16 | arr | execSeries.js:6:14:6:21 | arr[i++] |
 | execSeries.js:6:14:6:21 | arr[i++] | execSeries.js:14:24:14:30 | command |
 
@@ -3,10 +3,7 @@ nodes
 | ReflectedXss.js:8:33:8:45 | req.params.id |
 | etherpad.js:9:5:9:53 | response |
 | etherpad.js:9:16:9:30 | req.query.jsonp |
-| etherpad.js:9:16:9:36 | req.que ... p + "(" |
-| etherpad.js:9:16:9:47 | req.que ... esponse |
 | etherpad.js:9:16:9:53 | req.que ... e + ")" |
-| etherpad.js:11:3:11:3 | response |
 | etherpad.js:11:12:11:19 | response |
 | formatting.js:4:9:4:29 | evil |
 | formatting.js:4:16:4:29 | req.query.evil |
@@ -45,8 +42,12 @@ nodes
 edges
 | ReflectedXss.js:8:33:8:45 | req.params.id | ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id |
 | etherpad.js:9:5:9:53 | response | etherpad.js:11:3:11:3 | response |
+| etherpad.js:9:5:9:53 | response | etherpad.js:11:12:11:19 | response |
 | etherpad.js:9:16:9:30 | req.query.jsonp | etherpad.js:9:16:9:36 | req.que ... p + "(" |
+| etherpad.js:9:16:9:30 | req.query.jsonp | etherpad.js:9:16:9:47 | req.que ... esponse |
+| etherpad.js:9:16:9:30 | req.query.jsonp | etherpad.js:9:16:9:53 | req.que ... e + ")" |
 | etherpad.js:9:16:9:36 | req.que ... p + "(" | etherpad.js:9:16:9:47 | req.que ... esponse |
+| etherpad.js:9:16:9:36 | req.que ... p + "(" | etherpad.js:9:16:9:53 | req.que ... e + ")" |
 | etherpad.js:9:16:9:47 | req.que ... esponse | etherpad.js:9:16:9:53 | req.que ... e + ")" |
 | etherpad.js:9:16:9:53 | req.que ... e + ")" | etherpad.js:9:5:9:53 | response |
 | etherpad.js:11:3:11:3 | response | etherpad.js:11:12:11:19 | response |
 
@@ -6,7 +6,6 @@ nodes
 | jquery.js:2:17:2:33 | document.location |
 | jquery.js:2:17:2:40 | documen ... .search |
 | jquery.js:4:5:4:11 | tainted |
-| jquery.js:7:5:7:26 | "<div i ... tainted |
 | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
 | jquery.js:7:20:7:26 | tainted |
 | jquery.js:8:18:8:34 | "XSS: " + tainted |
@@ -54,12 +53,10 @@ nodes
 | tst.js:2:16:2:32 | document.location |
 | tst.js:2:16:2:39 | documen ... .search |
 | tst.js:5:18:5:23 | target |
-| tst.js:8:18:8:114 | "<OPTIO ... t=")+8) |
 | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
 | tst.js:8:37:8:53 | document.location |
 | tst.js:8:37:8:58 | documen ... on.href |
 | tst.js:8:37:8:114 | documen ... t=")+8) |
-| tst.js:12:5:12:33 | '<div s ...  target |
 | tst.js:12:5:12:42 | '<div s ...  'px">' |
 | tst.js:12:28:12:33 | target |
 | tst.js:19:25:19:41 | document.location |
@@ -100,7 +97,6 @@ nodes
 | tst.js:73:3:73:19 | document.location |
 | tst.js:73:3:73:26 | documen ... .search |
 | tst.js:73:46:73:46 | x |
-| tst.js:74:7:74:7 | x |
 | tst.js:76:20:76:20 | x |
 | tst.js:80:49:80:65 | document.location |
 | tst.js:80:49:80:72 | documen ... .search |
@@ -147,9 +143,7 @@ nodes
 | tst.js:194:19:194:42 | documen ... .search |
 | tst.js:196:67:196:73 | tainted |
 | tst.js:197:67:197:73 | tainted |
-| tst.js:200:20:200:19 | tainted |
 | tst.js:201:35:201:41 | tainted |
-| tst.js:203:27:203:26 | tainted |
 | tst.js:203:46:203:52 | tainted |
 | tst.js:204:38:204:44 | tainted |
 | tst.js:205:35:205:41 | tainted |
@@ -196,6 +190,7 @@ edges
 | jquery.js:2:17:2:40 | documen ... .search | jquery.js:2:7:2:40 | tainted |
 | jquery.js:7:5:7:26 | "<div i ... tainted | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
 | jquery.js:7:20:7:26 | tainted | jquery.js:7:5:7:26 | "<div i ... tainted |
+| jquery.js:7:20:7:26 | tainted | jquery.js:7:5:7:34 | "<div i ... + "\\">" |
 | jquery.js:8:28:8:34 | tainted | jquery.js:8:18:8:34 | "XSS: " + tainted |
 | nodemailer.js:13:50:13:66 | req.query.message | nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` |
 | react-native.js:7:7:7:33 | tainted | react-native.js:8:18:8:24 | tainted |
@@ -232,8 +227,10 @@ edges
 | tst.js:8:37:8:53 | document.location | tst.js:8:37:8:58 | documen ... on.href |
 | tst.js:8:37:8:58 | documen ... on.href | tst.js:8:37:8:114 | documen ... t=")+8) |
 | tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:114 | "<OPTIO ... t=")+8) |
+| tst.js:8:37:8:114 | documen ... t=")+8) | tst.js:8:18:8:126 | "<OPTIO ... PTION>" |
 | tst.js:12:5:12:33 | '<div s ...  target | tst.js:12:5:12:42 | '<div s ...  'px">' |
 | tst.js:12:28:12:33 | target | tst.js:12:5:12:33 | '<div s ...  target |
+| tst.js:12:28:12:33 | target | tst.js:12:5:12:42 | '<div s ...  'px">' |
 | tst.js:19:25:19:41 | document.location | tst.js:20:18:20:35 | params.get('name') |
 | tst.js:23:42:23:47 | target | tst.js:23:42:23:60 | target.substring(1) |
 | tst.js:23:42:23:60 | target.substring(1) | tst.js:24:18:24:41 | searchP ... 'name') |
@@ -263,6 +260,7 @@ edges
 | tst.js:73:3:73:19 | document.location | tst.js:73:3:73:26 | documen ... .search |
 | tst.js:73:3:73:26 | documen ... .search | tst.js:73:1:73:27 | [,docum ... search] |
 | tst.js:73:46:73:46 | x | tst.js:74:7:74:7 | x |
+| tst.js:73:46:73:46 | x | tst.js:76:20:76:20 | x |
 | tst.js:74:7:74:7 | x | tst.js:76:20:76:20 | x |
 | tst.js:80:49:80:65 | document.location | tst.js:80:49:80:72 | documen ... .search |
 | tst.js:84:26:84:42 | document.location | tst.js:84:26:84:49 | documen ... .search |
@@ -294,7 +292,11 @@ edges
 | tst.js:194:9:194:42 | tainted | tst.js:196:67:196:73 | tainted |
 | tst.js:194:9:194:42 | tainted | tst.js:197:67:197:73 | tainted |
 | tst.js:194:9:194:42 | tainted | tst.js:200:20:200:19 | tainted |
+| tst.js:194:9:194:42 | tainted | tst.js:201:35:201:41 | tainted |
 | tst.js:194:9:194:42 | tainted | tst.js:203:27:203:26 | tainted |
+| tst.js:194:9:194:42 | tainted | tst.js:203:46:203:52 | tainted |
+| tst.js:194:9:194:42 | tainted | tst.js:204:38:204:44 | tainted |
+| tst.js:194:9:194:42 | tainted | tst.js:205:35:205:41 | tainted |
 | tst.js:194:9:194:42 | tainted | tst.js:233:35:233:41 | tainted |
 | tst.js:194:9:194:42 | tainted | tst.js:235:20:235:26 | tainted |
 | tst.js:194:9:194:42 | tainted | tst.js:237:23:237:29 | tainted |
 
@@ -3,24 +3,20 @@ nodes
 | mongodb.js:12:19:12:20 | {} |
 | mongodb.js:13:19:13:26 | req.body |
 | mongodb.js:13:19:13:32 | req.body.title |
-| mongodb.js:14:59:14:58 | query |
 | mongodb.js:18:16:18:20 | query |
 | mongodb.js:26:11:26:32 | title |
 | mongodb.js:26:19:26:26 | req.body |
 | mongodb.js:26:19:26:32 | req.body.title |
-| mongodb.js:27:11:27:35 | title |
 | mongodb.js:32:18:32:45 | { title ... itle) } |
 | mongodb.js:32:27:32:43 | JSON.parse(title) |
 | mongodb.js:32:38:32:42 | title |
 | mongodb.js:48:11:48:20 | query |
 | mongodb.js:48:19:48:20 | {} |
 | mongodb.js:49:19:49:33 | req.query.title |
-| mongodb.js:50:59:50:58 | query |
 | mongodb.js:54:16:54:20 | query |
 | mongodb_bodySafe.js:23:11:23:20 | query |
 | mongodb_bodySafe.js:23:19:23:20 | {} |
 | mongodb_bodySafe.js:24:19:24:33 | req.query.title |
-| mongodb_bodySafe.js:25:59:25:58 | query |
 | mongodb_bodySafe.js:29:16:29:20 | query |
 | mongoose.js:20:11:20:20 | query |
 | mongoose.js:20:19:20:20 | {} |
@@ -48,22 +44,19 @@ nodes
 | socketio.js:10:25:10:30 | handle |
 | socketio.js:11:12:11:53 | `INSERT ... andle}` |
 | socketio.js:11:46:11:51 | handle |
-| tst2.js:9:27:9:78 | "select ... rams.id |
 | tst2.js:9:27:9:84 | "select ... d + "'" |
 | tst2.js:9:66:9:78 | req.params.id |
 | tst3.js:8:7:9:55 | query1 |
-| tst3.js:8:16:9:34 | "SELECT ... ategory |
 | tst3.js:8:16:9:55 | "SELECT ...  PRICE" |
 | tst3.js:9:16:9:34 | req.params.category |
 | tst3.js:10:14:10:19 | query1 |
-| tst4.js:8:10:8:60 | 'SELECT ... rams.id |
 | tst4.js:8:10:8:66 | 'SELECT ... d + '"' |
 | tst4.js:8:46:8:60 | $routeParams.id |
-| tst.js:10:10:10:58 | 'SELECT ... rams.id |
 | tst.js:10:10:10:64 | 'SELECT ... d + '"' |
 | tst.js:10:46:10:58 | req.params.id |
 edges
 | mongodb.js:12:11:12:20 | query | mongodb.js:14:59:14:58 | query |
+| mongodb.js:12:11:12:20 | query | mongodb.js:18:16:18:20 | query |
 | mongodb.js:12:19:12:20 | {} | mongodb.js:12:11:12:20 | query |
 | mongodb.js:13:19:13:26 | req.body | mongodb.js:13:19:13:32 | req.body.title |
 | mongodb.js:13:19:13:32 | req.body.title | mongodb.js:12:11:12:20 | query |
@@ -72,19 +65,22 @@ edges
 | mongodb.js:13:19:13:32 | req.body.title | mongodb.js:18:16:18:20 | query |
 | mongodb.js:14:59:14:58 | query | mongodb.js:18:16:18:20 | query |
 | mongodb.js:26:11:26:32 | title | mongodb.js:27:11:27:35 | title |
+| mongodb.js:26:11:26:32 | title | mongodb.js:32:38:32:42 | title |
 | mongodb.js:26:19:26:26 | req.body | mongodb.js:26:19:26:32 | req.body.title |
 | mongodb.js:26:19:26:32 | req.body.title | mongodb.js:26:11:26:32 | title |
 | mongodb.js:27:11:27:35 | title | mongodb.js:32:38:32:42 | title |
 | mongodb.js:32:27:32:43 | JSON.parse(title) | mongodb.js:32:18:32:45 | { title ... itle) } |
 | mongodb.js:32:38:32:42 | title | mongodb.js:32:27:32:43 | JSON.parse(title) |
 | mongodb.js:48:11:48:20 | query | mongodb.js:50:59:50:58 | query |
+| mongodb.js:48:11:48:20 | query | mongodb.js:54:16:54:20 | query |
 | mongodb.js:48:19:48:20 | {} | mongodb.js:48:11:48:20 | query |
 | mongodb.js:49:19:49:33 | req.query.title | mongodb.js:48:11:48:20 | query |
 | mongodb.js:49:19:49:33 | req.query.title | mongodb.js:48:19:48:20 | {} |
 | mongodb.js:49:19:49:33 | req.query.title | mongodb.js:50:59:50:58 | query |
 | mongodb.js:49:19:49:33 | req.query.title | mongodb.js:54:16:54:20 | query |
 | mongodb.js:50:59:50:58 | query | mongodb.js:54:16:54:20 | query |
 | mongodb_bodySafe.js:23:11:23:20 | query | mongodb_bodySafe.js:25:59:25:58 | query |
+| mongodb_bodySafe.js:23:11:23:20 | query | mongodb_bodySafe.js:29:16:29:20 | query |
 | mongodb_bodySafe.js:23:19:23:20 | {} | mongodb_bodySafe.js:23:11:23:20 | query |
 | mongodb_bodySafe.js:24:19:24:33 | req.query.title | mongodb_bodySafe.js:23:11:23:20 | query |
 | mongodb_bodySafe.js:24:19:24:33 | req.query.title | mongodb_bodySafe.js:23:19:23:20 | {} |
@@ -132,14 +128,18 @@ edges
 | socketio.js:11:46:11:51 | handle | socketio.js:11:12:11:53 | `INSERT ... andle}` |
 | tst2.js:9:27:9:78 | "select ... rams.id | tst2.js:9:27:9:84 | "select ... d + "'" |
 | tst2.js:9:66:9:78 | req.params.id | tst2.js:9:27:9:78 | "select ... rams.id |
+| tst2.js:9:66:9:78 | req.params.id | tst2.js:9:27:9:84 | "select ... d + "'" |
 | tst3.js:8:7:9:55 | query1 | tst3.js:10:14:10:19 | query1 |
 | tst3.js:8:16:9:34 | "SELECT ... ategory | tst3.js:8:16:9:55 | "SELECT ...  PRICE" |
 | tst3.js:8:16:9:55 | "SELECT ...  PRICE" | tst3.js:8:7:9:55 | query1 |
 | tst3.js:9:16:9:34 | req.params.category | tst3.js:8:16:9:34 | "SELECT ... ategory |
+| tst3.js:9:16:9:34 | req.params.category | tst3.js:8:16:9:55 | "SELECT ...  PRICE" |
 | tst4.js:8:10:8:60 | 'SELECT ... rams.id | tst4.js:8:10:8:66 | 'SELECT ... d + '"' |
 | tst4.js:8:46:8:60 | $routeParams.id | tst4.js:8:10:8:60 | 'SELECT ... rams.id |
+| tst4.js:8:46:8:60 | $routeParams.id | tst4.js:8:10:8:66 | 'SELECT ... d + '"' |
 | tst.js:10:10:10:58 | 'SELECT ... rams.id | tst.js:10:10:10:64 | 'SELECT ... d + '"' |
 | tst.js:10:46:10:58 | req.params.id | tst.js:10:10:10:58 | 'SELECT ... rams.id |
+| tst.js:10:46:10:58 | req.params.id | tst.js:10:10:10:64 | 'SELECT ... d + '"' |
 #select
 | mongodb.js:18:16:18:20 | query | mongodb.js:13:19:13:26 | req.body | mongodb.js:18:16:18:20 | query | This query depends on $@. | mongodb.js:13:19:13:26 | req.body | a user-provided value |
 | mongodb.js:32:18:32:45 | { title ... itle) } | mongodb.js:26:19:26:26 | req.body | mongodb.js:32:18:32:45 | { title ... itle) } | This query depends on $@. | mongodb.js:26:19:26:26 | req.body | a user-provided value |
 
@@ -29,13 +29,10 @@ nodes
 | angularjs.js:53:32:53:46 | location.search |
 | eslint-escope-build.js:20:22:20:22 | c |
 | eslint-escope-build.js:21:16:21:16 | c |
-| express.js:7:24:7:62 | "return ... obble") |
 | express.js:7:24:7:69 | "return ...  + "];" |
 | express.js:7:44:7:62 | req.param("wobble") |
-| express.js:9:34:9:72 | "return ... obble") |
 | express.js:9:34:9:79 | "return ...  + "];" |
 | express.js:9:54:9:72 | req.param("wobble") |
-| express.js:12:8:12:46 | "return ... obble") |
 | express.js:12:8:12:53 | "return ...  + "];" |
 | express.js:12:28:12:46 | req.param("wobble") |
 | react-native.js:7:7:7:33 | tainted |
@@ -72,10 +69,13 @@ edges
 | eslint-escope-build.js:20:22:20:22 | c | eslint-escope-build.js:21:16:21:16 | c |
 | express.js:7:24:7:62 | "return ... obble") | express.js:7:24:7:69 | "return ...  + "];" |
 | express.js:7:44:7:62 | req.param("wobble") | express.js:7:24:7:62 | "return ... obble") |
+| express.js:7:44:7:62 | req.param("wobble") | express.js:7:24:7:69 | "return ...  + "];" |
 | express.js:9:34:9:72 | "return ... obble") | express.js:9:34:9:79 | "return ...  + "];" |
 | express.js:9:54:9:72 | req.param("wobble") | express.js:9:34:9:72 | "return ... obble") |
+| express.js:9:54:9:72 | req.param("wobble") | express.js:9:34:9:79 | "return ...  + "];" |
 | express.js:12:8:12:46 | "return ... obble") | express.js:12:8:12:53 | "return ...  + "];" |
 | express.js:12:28:12:46 | req.param("wobble") | express.js:12:8:12:46 | "return ... obble") |
+| express.js:12:28:12:46 | req.param("wobble") | express.js:12:8:12:53 | "return ...  + "];" |
 | react-native.js:7:7:7:33 | tainted | react-native.js:8:32:8:38 | tainted |
 | react-native.js:7:7:7:33 | tainted | react-native.js:10:23:10:29 | tainted |
 | react-native.js:7:17:7:33 | req.param("code") | react-native.js:7:7:7:33 | tainted |