detect-disable-mustache-escape.md

Detects "object.escapeMarkup = false", which can be used with some template engines to disable escaping of HTML entities (security/detect-disable-mustache-escape)

⚠️ This rule warns in the ✅ recommended config.

This can lead to Cross-Site Scripting (XSS) vulnerabilities.

More information: OWASP XSS