Hybrid security analysis of web JavaScript code via dynamic partial evaluation.