lgtm,codescanning
* The `js/incomplete-multi-character-sanitization` query now flags more regular expressions that can result in bad sanitization.