# File lib/brakeman/checks/check_link_to.rb, line 67 def check_user_input(result, argument) input = has_immediate_user_input?(argument) return false unless input message = msg("Unescaped ", msg_input(input), " in ", msg_code("link_to")) warn_xss(result, message, input, :high) end