All those who analyze a web application code face the problem of search
for vulnerabilities on the client side, in JavaScript to be exact.
On the one hand, it is difficult to perform a static
analysis of JavaScript, by its nature. On the other hand, there
are not so many types of vulnerabilities there. However, a security
team has to find them and it is better to do it automatically,
rather than by using grep command.