# File lib/brakeman/checks/check_cross_site_scripting.rb, line 142 def process_escaped_output exp unless check_for_immediate_xss exp if not duplicate? exp if raw_call? exp process exp.value.first_arg elsif html_safe_call? exp process exp.value.target end end end exp end