Apply suggestions from code review

Co-authored-by: mc <[email protected]>

Author: esbena

change-notes/1.25/analysis-javascript.md

@@ -37,7 +37,7 @@
 | Unsafe expansion of self-closing HTML tag (`js/unsafe-html-expansion`) | security, external/cwe/cwe-079, external/cwe/cwe-116 | Highlights potential XSS vulnerabilities caused by unsafe expansion of self-closing HTML tags. |
 | Unsafe shell command constructed from library input (`js/shell-command-constructed-from-input`) | correctness, security, external/cwe/cwe-078, external/cwe/cwe-088 | Highlights potential command injections due to a shell command being constructed from library inputs. Results are shown on LGTM by default. |
 | Improper code sanitization (`js/bad-code-sanitization`) | security, external/cwe/cwe-094, external/cwe/cwe-079, external/cwe/cwe-116 | Highlights string concatenation where code is constructed without proper sanitization. Results are shown on LGTM by default. |
-| Disabling certificate validation (`js/disabling-certificate-validation`) | security, external/cwe-295 | Highlights locations where SSL certificate validation is disabled . Results are shown on LGTM by default. | 
+| Disabling certificate validation (`js/disabling-certificate-validation`) | security, external/cwe-295 | Highlights locations where SSL certificate validation is disabled. Results are shown on LGTM by default. | 
 
 ## Changes to existing queries
 

javascript/ql/src/Security/CWE-295/DisablingCertificateValidation.qhelp

@@ -54,7 +54,7 @@
 
 			To make the connection secure, the
 			<code>rejectUnauthorized</code> option should have its default value,
-			or be set explicitly to <code>true</code>.
+			or be explicitly set to <code>true</code>.
 
 		</p>