Refactored SortTaintStep to ArrayInPlaceManipulationTaintStep to support both sort and reverse functions. Fixed newly added test case. from 8026a99db7

javascript/ql/lib/semmle/javascript/Arrays.qll

@@ -446,12 +446,12 @@ private module ArrayLibraries {
   }
 
   /**
-   * A taint propagating data flow edge arising from sorting.
+   * A taint propagating data flow edge arising from in-place array manipulation operations.
    */
-  private class SortTaintStep extends TaintTracking::SharedTaintStep {
+  private class ArrayInPlaceManipulationTaintStep extends TaintTracking::SharedTaintStep {
     override predicate heapStep(DataFlow::Node pred, DataFlow::Node succ) {
       exists(DataFlow::MethodCallNode call |
-        call.getMethodName() = "sort" and
+        call.getMethodName() in ["sort", "reverse"] and
         pred = call.getReceiver() and
         succ = call
       )