Consider adding support for taint analysis: * <https://cc-sw.com/semgrep-guide-for-a-security-engineer-part-5-of-6/> * <https://semgrep.dev/docs/writing-rules/data-flow/taint-mode/advanced>
