# File lib/brakeman/checks/check_link_to.rb, line 67
  def check_user_input(result, argument)
    input = has_immediate_user_input?(argument)
    return false unless input

    message = msg("Unescaped ", msg_input(input), " in ", msg_code("link_to"))

    warn_xss(result, message, input, :high)
  end