Detects variable in filename argument of "fs" calls, which might allow an attacker to access anything on your system (security/detect-non-literal-fs-filename)
recommended config.
More information: OWASP Path Traversal