JavaScript: Make all taint-based security queries have @kind path-problem.

javascript/ql/src/Security/CWE-640/HostHeaderPoisoningInEmailGeneration.ql

@@ -2,7 +2,7 @@
  * @name Host header poisoning in email generation
  * @description Using the HTTP Host header to construct a link in an email can facilitate phishing
  *              attacks and leak password reset tokens.
- * @kind problem
+ * @kind path-problem
  * @problem.severity error
  * @precision high
  * @id js/host-header-forgery-in-email-generation