Change layout of qhelp example code

Author: aegilops

javascript/ql/src/Security/CWE-693/InsecureHelmet.qhelp

@@ -23,12 +23,12 @@
         </p>
 
         <pre>
-        extensions:
-          - addsTo:
-              pack: codeql/javascript-all
-              extensible: requiredHelmetSecuritySetting
-            data:
-              - name: "frameguard"
+extensions:
+- addsTo:
+    pack: codeql/javascript-all
+    extensible: requiredHelmetSecuritySetting
+data:
+    - name: "frameguard"
         </pre>
 
         <p>
@@ -52,36 +52,36 @@
         </p>
 
         <pre>
-            const helmet = require('helmet');
-            app.use(helmet({
-                frameguard: false,
-                contentSecurityPolicy: false
-            }));
+const helmet = require('helmet');
+app.use(helmet({
+    frameguard: false,
+    contentSecurityPolicy: false
+}));
         </pre>
 
         <p>
             In this example, the defaults are used, which enables frame protection and a default Content Security Policy.
         </p>
 
         <pre>
-            app.use(helmet());
+app.use(helmet());
         </pre>
 
         <p>
             You can also enable a custom Content Security Policy by passing an object to the <code>contentSecurityPolicy</code> key. For example, taken from the <a href="https://helmetjs.github.io/#content-security-policy">Helmet docs</a>:
         </p>
 
         <pre>
-            app.use(
-                helmet({
-                    contentSecurityPolicy: {
-                        directives: {
-                            "script-src": ["'self'", "example.com"],
-                            "style-src": null,
-                        },
-                    },
-                })
-            );
+app.use(
+    helmet({
+        contentSecurityPolicy: {
+            directives: {
+                "script-src": ["'self'", "example.com"],
+                "style-src": null,
+            },
+        },
+    })
+);
         </pre>
 
     </example>